last executing test programs:

2m12.294534754s ago: executing program 3 (id=2584):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000003740)={{r0}, &(0x7f0000000400), &(0x7f0000003700)='%pK    \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0xa, 0x300)
syz_read_part_table(0x5f4, &(0x7f0000001500)="$eJzs2zFolGcYB/DnYq4Bpbg4OamDlOKiOHoUlbtTUQinWYoUA4qIN50gnPQgRQc9iuINYjcXK9yidvK8wSkhgUwdQsiQEsiQpSVZAqHQr9zlbWnapJByLRR+Pw4e3vd77v3fezzrF/yvDcVPWZblIiL7PmLPLr891i6Wzh8aPV25EpGLqxHxxTeffNt7kksd2chmPZLWi2n98sXe7qO1c/n2wuX1o9cmm0O/HTnR/8S+V52xAVyPf9nrwtT++w9q5cf1wq35cmP54dzspTerxUrnYrP19kL+7PXUN53qcKp3oh734naMx3B8FTeitsP5X2+3+dHO+c/bS8fzB8vtdzdPbZS6Tz6c6HdtN9c/Z//40rE1vz+wEdHLv3v46eetxplj3x14drL+fqaykqKrae7j90EfH0Q8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADlo+p/fcf1MqP64Vb8+XG8sO52UtvVouVzsVm6+2F/NnrqW861eFU70Q97sXtGI9qVONG1HZM+PiPi5E/P31d2Jr/vL10/JeD5fa7m6c2St0nH06kvtEB3fdv8rNe/t3DTz9rNc4cGznw7GT9/UxlZc9mX/Uvvzz6/x4AAAAAAAAAAAAAAAAAAAAMQrF0/tDo6cqViFxcjYhPf/xyqLefpffdc6nvSKqLaf/li73dR2vn8u2Fy+tHr002f0j7E5GLiYjY96oz9p9fhl37NQAA//9zMJPW")

2m12.060131949s ago: executing program 3 (id=2595):
r0 = socket$kcm(0xa, 0x2, 0x0)
r1 = socket(0x2, 0x80805, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xf}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x14}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000040)={0x84, @rand_addr=0x640100ff, 0x4e20, 0x3, 'lblcr\x00', 0x1, 0xa7e, 0x70}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010102, 0x4e21, 0x3, 'lc\x00', 0x5, 0x8, 0x77}, {@remote, 0x4e20, 0x1, 0xcd}}, 0x44)
sendmsg$sock(r0, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)

2m12.023215219s ago: executing program 3 (id=2598):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0x10000000})
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = inotify_init()
dup3(r4, r2, 0x80000)
r5 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESDEC=r3])

2m11.199488775s ago: executing program 3 (id=2615):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x81, 0x7a5, &(0x7f0000000f80)="$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")
creat(&(0x7f0000000000)='./bus\x00', 0xd931d3864d39ddd8)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x0)
creat(0x0, 0x44)
mount(0x0, 0x0, 0x0, 0x301400, 0x0)
ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000080)=0x3f)
copy_file_range(r0, 0x0, r0, &(0x7f00000000c0)=0xae8, 0x863, 0x0)

2m11.018007479s ago: executing program 3 (id=2621):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x2, 0x4, 0x7fe2, 0x4}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setlease(r0, 0x400, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r3}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)

2m10.012357548s ago: executing program 3 (id=2648):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r2 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x400, 0x0, 0x285}, &(0x7f00000004c0)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r1, 0x0, 0x0})
io_uring_enter(r2, 0x40f9, 0x217, 0xa5, 0x0, 0xf5)

2m10.012255288s ago: executing program 32 (id=2648):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r2 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x400, 0x0, 0x285}, &(0x7f00000004c0)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r1, 0x0, 0x0})
io_uring_enter(r2, 0x40f9, 0x217, 0xa5, 0x0, 0xf5)

1m34.599565252s ago: executing program 0 (id=3672):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000020000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0xb6f8000)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
mlockall(0x7)

1m34.22571107s ago: executing program 0 (id=3680):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xffffffffffffffd3}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
mount$tmpfs(0x0, &(0x7f0000000680)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x1c0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x800000000000000)

1m34.20398194s ago: executing program 0 (id=3681):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x20, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x24}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0x100})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x6, 0xff, 0x7, 0x0, 0x7fffffff, 0xd3751, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x1, 0x8}, 0x11, 0x0, 0x3, 0x8, 0x81, 0x8005, 0x3, 0x0, 0x2cb, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f0, &(0x7f0000000080))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0x100})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0xe9, 0x5, 0x0, 0x4, 0x0, 0x3, 0xd2ffc, 0x9, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xdfffffff, 0x1, @perf_bp={0x0, 0xe}, 0x2, 0x8000, 0x6, 0x8, 0x81, 0x4, 0x3, 0x0, 0xfffffffd, 0x0, 0x400000000002}, 0x0, 0xe, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f0, &(0x7f0000000080))

1m34.113762312s ago: executing program 0 (id=3692):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x206d0d1, 0x0)
umount2(&(0x7f0000000080)='./file0/file0\x00', 0x1)
umount2(&(0x7f00000001c0)='./file0/../file0\x00', 0x0)

1m34.070588763s ago: executing program 0 (id=3683):
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
ioprio_set$pid(0x3, 0x0, 0x0)
ioprio_get$pid(0x2, 0x0)

1m33.799284108s ago: executing program 0 (id=3690):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
getrandom(0x0, 0x0, 0x3)
socket$inet6(0xa, 0x2, 0x0)
r1 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
kexec_load(0x0, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0)

1m33.799170308s ago: executing program 33 (id=3690):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
getrandom(0x0, 0x0, 0x3)
socket$inet6(0xa, 0x2, 0x0)
r1 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
kexec_load(0x0, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0)

13.849523143s ago: executing program 4 (id=6071):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffe}, [@printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @call={0x85, 0x0, 0x0, 0x23}]}, 0x0, 0xfffffffe, 0x0, 0x0, 0x727c45cd4283345, 0x40, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r2}, 0x10)
io_setup(0x3, &(0x7f0000000340))

13.790621453s ago: executing program 4 (id=6075):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@typedef={0xd}]}}, &(0x7f0000000100)=""/141, 0x26, 0x8d, 0x1, 0x7}, 0x28)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xb, &(0x7f0000000100)=ANY=[@ANYBLOB="180800ec0c00000000000000000000001801000020"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYRES8, @ANYRES32, @ANYBLOB="0000000000000000400012800c0001"], 0x68}}, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00', {0x2}})
write$tun(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="06000000bbbbbbbbbbbbaaaaaaaaaabb88f5"], 0x72)

13.719271145s ago: executing program 4 (id=6081):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x5, 0x6, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x7, 0x8000, 0x1}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r2, <r3=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r1}, 0x3d)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r4}, 0x3d)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)

13.661600806s ago: executing program 4 (id=6083):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000540), 0x1, 0x236, &(0x7f0000000780)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=")
creat(&(0x7f00000000c0)='./bus\x00', 0x182)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x19, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c678082004fcffffffffffbdbc65ea9ba9d7fce46ddfdd753abd950100002afffff645eaccd10100", "b7326736181c208259000000b9f83902000000000000f0fffffffff2ff00", [0x4, 0x3ff]})

13.619354637s ago: executing program 4 (id=6084):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)
lstat(0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x70, 0x103301)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)

13.317424892s ago: executing program 4 (id=6087):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000003000), r3)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000003040)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_TP_METER(r3, &(0x7f0000003140)={0x0, 0x60, &(0x7f0000003100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000fbdbdf25020000000a000900aaaaaaaaaa44000008000300", @ANYRES32=r5, @ANYBLOB='\b\x00\v'], 0x30}, 0x1, 0x0, 0x0, 0x20000050}, 0x20040084)

13.313275623s ago: executing program 34 (id=6087):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000003000), r3)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000003040)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_TP_METER(r3, &(0x7f0000003140)={0x0, 0x60, &(0x7f0000003100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000fbdbdf25020000000a000900aaaaaaaaaa44000008000300", @ANYRES32=r5, @ANYBLOB='\b\x00\v'], 0x30}, 0x1, 0x0, 0x0, 0x20000050}, 0x20040084)

1.897662893s ago: executing program 1 (id=6357):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x8, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x7, 0x9)
write$P9_RWRITE(r3, &(0x7f0000000040)={0xb}, 0x11000)
read(r2, &(0x7f0000032440)=""/102364, 0x18fdc)

1.873117463s ago: executing program 7 (id=6358):
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0xc, 0x9}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000280), 0x84, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)={0x1c}, 0x1c}}, 0x0)

1.819297145s ago: executing program 7 (id=6359):
perf_event_open(&(0x7f0000000380)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8008a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, @perf_bp={0x0}, 0x0, 0xc8, 0x0, 0x1, 0x4, 0x0, 0x9}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0xc}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
write$cgroup_subtree(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102033300fefd000e40000200875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)

1.818497344s ago: executing program 6 (id=6360):
openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r0 = gettid()
ptrace$setregset(0x4205, 0xffffffffffffffff, 0x4, &(0x7f0000000400)={&(0x7f0000000680)="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", 0xff})
r1 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xe}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x1)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = timerfd_create(0x0, 0x0)
readv(r2, &(0x7f0000000380)=[{&(0x7f0000000d00)=""/161, 0xa1}], 0x1)

1.801143665s ago: executing program 7 (id=6361):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
openat$cgroup_subtree(r4, &(0x7f0000000100), 0x2, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

1.265670045s ago: executing program 7 (id=6363):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b0000000700000008000000a6ad6a1a05"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
sendto$inet(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

1.264815155s ago: executing program 7 (id=6364):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000009"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x2, 0x3, 0x801, 0x0, &(0x7f0000000040), 0xfffffffc)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)
get_mempolicy(0x0, 0x0, 0x203, &(0x7f0000394000/0x3000)=nil, 0x3)

1.100377998s ago: executing program 2 (id=6368):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r5, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r5, {0xc, 0xffff}, {0x0, 0xf}, {0xfff3, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x8014}, 0x0)

1.03177638s ago: executing program 1 (id=6369):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x3, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt(0xffffffffffffffff, 0x7, 0x3ed, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
open(0x0, 0x40, 0x170)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x3}, 0x8)
sendto$inet6(r0, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r1, 0xffffffffffffffff, 0x0)

998.79011ms ago: executing program 6 (id=6370):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89\x89\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zpo\xd0\xc7\'CT')
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x0, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x2, 0x97, &(0x7f00000005c0)=""/151, 0x82200, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000380)={0x1, 0xa, 0xd1, 0x8}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x415b}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x14, &(0x7f0000000940)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000280)={'\x00', 0x7e, 0x1000, 0x5c8, 0x80000003, 0x6})

995.673591ms ago: executing program 2 (id=6371):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa1b96aadc3618c72}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)={0x14, r4, 0xb3d3e8a28760fb9b, 0x70bd27}, 0x14}, 0x1, 0x0, 0x0, 0x2000c804}, 0x20048004)

963.980691ms ago: executing program 1 (id=6372):
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000500)=[@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e24, 0x3ff, @dev={0xfe, 0x80, '\x00', 0x42}, 0x1}, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, @in={0x2, 0x4e20, @multicast2}, @in6={0xa, 0x4e20, 0x1, @empty, 0x1ff}, @in6={0xa, 0x4e24, 0x5, @local, 0x8}, @in6={0xa, 0x4e22, 0x1, @empty, 0xe7a5}, @in6={0xa, 0x4e23, 0xc, @private1, 0x6}, @in6={0xa, 0x4e20, 0x0, @private1, 0xfffffffe}], 0xd8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r3, &(0x7f0000000600)=[{&(0x7f00000004c0)=""/26, 0x1a}], 0x1, 0x4000ffe, 0xfffffffc)

939.701112ms ago: executing program 6 (id=6373):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x4}, 0x18)
r2 = inotify_init()
r3 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r4 = inotify_add_watch(r2, &(0x7f0000000200)='./file0\x00', 0x400008bf)
write$binfmt_elf32(r3, &(0x7f0000000040)=ANY=[@ANYRES64=r4], 0x69)
close(r3)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

939.244612ms ago: executing program 2 (id=6374):
r0 = perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x67a, 0x1, 0xfffffffe, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r3, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {0x0}, &(0x7f0000000340)=[{&(0x7f0000000380)=""/102, 0x66}], 0x1, 0x60, 0xfffffffefffffffe}}], 0x48, 0x8004}, 0x0)

909.512752ms ago: executing program 1 (id=6375):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000280)={'wg2\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r0}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='percpu_create_chunk\x00', r2}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)

909.346352ms ago: executing program 2 (id=6376):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r0 = syz_io_uring_setup(0x1459, &(0x7f00000004c0)={0x0, 0x4, 0x10180, 0x2000, 0x3ae}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='9'], 0x38}, 0x1, 0x0, 0x0, 0x41}, 0x37aea8e708e70634)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x6a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2040, 0x1})
io_uring_enter(r0, 0x2d3e, 0xfffffffd, 0x0, 0x0, 0x0)

907.850772ms ago: executing program 6 (id=6377):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x42, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
r0 = socket$nl_route(0x10, 0x3, 0x0)
unshare(0x6a040000)
mmap(&(0x7f00002ad000/0xc00000)=nil, 0xc00000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = gettid()
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005f00)=ANY=[@ANYBLOB="2800000010000100"/20, @ANYRES32=r0, @ANYBLOB="6d3082610000000008001300", @ANYRES32=r2], 0x28}, 0x1, 0x0, 0x0, 0x4000004}, 0x0)

836.332444ms ago: executing program 2 (id=6378):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00')
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x44, 0x10, 0x401, 0x0, 0xfffffffe, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0x3, r4}]}, 0x44}}, 0x40000c0)

783.490785ms ago: executing program 1 (id=6379):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
pipe(&(0x7f0000000080))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000730109000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e}, 0x94)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r1, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70)

780.577145ms ago: executing program 2 (id=6380):
openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r0 = gettid()
ptrace$setregset(0x4205, 0xffffffffffffffff, 0x4, &(0x7f0000000400)={&(0x7f0000000680)="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", 0xff})
r1 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xe}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x1)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = timerfd_create(0x0, 0x0)
readv(r2, &(0x7f0000000380)=[{&(0x7f0000000d00)=""/161, 0xa1}], 0x1)

738.165496ms ago: executing program 1 (id=6381):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r0, 0x0, 0x3ffff)
sendfile(r3, r0, 0x0, 0x7ffff000)

504.37188ms ago: executing program 6 (id=6382):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40000100, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x20, 0x800, 0xfffffffc, 0x8, 0x0, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x20000000000002b8, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x8000, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000200)=0xc)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(r3, 0x5608)

494.51529ms ago: executing program 7 (id=6383):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000a40)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@norecovery}, {@resuid}, {@quota}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r1, &(0x7f00000009c0)="3bf5", 0x2)
sendfile(r1, r0, 0x0, 0x3ffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x3c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
sendfile(r1, r0, 0x0, 0x7fffeffd)

419.394992ms ago: executing program 5 (id=6385):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa1b96aadc3618c72}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)={0x14, r4, 0xb3d3e8a28760fb9b, 0x70bd27}, 0x14}, 0x1, 0x0, 0x0, 0x2000c804}, 0x20048004)

418.311632ms ago: executing program 6 (id=6395):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
pipe2(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3f, 0x0, 0x0, 0x0, 0xb}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000400)='kfree\x00', r1}, 0x18)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r2)
syz_usb_connect(0x4, 0x24, &(0x7f00000000c0)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r2, 0x40095505, 0x0)

336.463093ms ago: executing program 5 (id=6386):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x4}, 0x18)
r2 = inotify_init()
r3 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r4 = inotify_add_watch(r2, &(0x7f0000000200)='./file0\x00', 0x400008bf)
write$binfmt_elf32(r3, &(0x7f0000000040)=ANY=[@ANYRES64=r4], 0x69)
close(r3)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

304.312644ms ago: executing program 5 (id=6387):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r2, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xfff3}}}, 0x24}}, 0x0)

231.231435ms ago: executing program 5 (id=6388):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000022007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = epoll_create1(0x0)
r2 = inotify_init1(0x0)
r3 = inotify_add_watch(r2, &(0x7f0000000200)='.\x00', 0x10000a0)
r4 = dup(r2)
inotify_rm_watch(r4, r3)
epoll_pwait(r1, &(0x7f0000000180)=[{}], 0x1, 0xffffffff, 0x0, 0x2b)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r4, &(0x7f0000000140)={0x13})
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

23.568179ms ago: executing program 5 (id=6389):
write$binfmt_aout(0xffffffffffffffff, 0x0, 0x20)
r0 = open$dir(0x0, 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001a80)="d8000000180081064e81f782db4cb904021d0800fd007c05e8fe50a10a000600014002020c600e41b0000900ac000a0501000000160012000a00ff120048035c3b61c1d67f6f94007134cf6efb8007a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667daffffffffff1f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5b7276505de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000001008af26c8b7b55f4d2a6823a45", 0xd8}], 0x1}, 0x894)

0s ago: executing program 5 (id=6390):
mknod$loop(0x0, 0x100000000000600d, 0x1)
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000005e00679a3601ffc4910700004f78d4c1a0731cccff"], 0x1c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
recvmmsg$unix(r0, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x25, 0x0, 0x0, 0x0, 0x102}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="0000333007000000000000000000000000000000e55f619abce6a33caae971bc45dc5186af34e7bce734910b9b850739091fed4912ab29bbb3a4259b874c9c59d0a51e0edf7bb4186de68a", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x16, 0x2, 0x0, 0x0, 0x0, 0x1, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, @perf_config_ext={0x1ff, 0xa6}, 0x17dbc, 0x9, 0xfffffbff, 0x5, 0x2, 0x200, 0x5, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x9)

kernel console output (not intermixed with test programs):

t: type=1326 audit(413.428:9580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16528 comm="syz.1.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  180.139653][   T29] audit: type=1326 audit(413.428:9581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16528 comm="syz.1.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  180.152119][T16534] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  180.162684][   T29] audit: type=1326 audit(413.428:9582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16528 comm="syz.1.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  180.195075][   T29] audit: type=1326 audit(413.428:9583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16528 comm="syz.1.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  180.218118][   T29] audit: type=1326 audit(413.428:9584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16528 comm="syz.1.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  180.241076][   T29] audit: type=1326 audit(413.428:9585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16528 comm="syz.1.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  180.264048][   T29] audit: type=1326 audit(413.428:9586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16528 comm="syz.1.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  180.286923][   T29] audit: type=1326 audit(413.428:9587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16528 comm="syz.1.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  180.420715][T16554] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4402'.
[  180.441290][T16556] wireguard1: entered promiscuous mode
[  180.446793][T16556] wireguard1: entered allmulticast mode
[  180.614896][    T9] IPVS: starting estimator thread 0...
[  180.667506][T16582] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4412'.
[  180.676659][T16582] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4412'.
[  180.685658][T16582] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4412'.
[  180.694956][T16582] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4412'.
[  180.704056][T16582] netlink: 'syz.5.4412': attribute type 6 has an invalid length.
[  180.707531][T16572] IPVS: using max 2736 ests per chain, 136800 per kthread
[  180.829638][T16603] bridge: RTM_NEWNEIGH with invalid ether address
[  181.066407][T16626] ref_ctr_offset mismatch. inode: 0x7cc offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4
[  181.131259][T16632] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4433'.
[  181.204619][T16646] siw: device registration error -23
[  181.329535][T16664] wg2: left promiscuous mode
[  181.334165][T16664] wg2: left allmulticast mode
[  181.344979][T16664] 0·: left allmulticast mode
[  181.349740][T16664] hsr_slave_0: left allmulticast mode
[  181.355321][T16664] hsr_slave_1: left allmulticast mode
[  181.478159][T16666] syzkaller0: entered allmulticast mode
[  181.495931][T16666] syzkaller0: entered promiscuous mode
[  181.517271][T16666] syzkaller0 (unregistering): left allmulticast mode
[  181.524048][T16666] syzkaller0 (unregistering): left promiscuous mode
[  181.672457][T16690] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  181.698772][T16690] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  182.125813][T16714] netlink: 'syz.6.4458': attribute type 1 has an invalid length.
[  182.158335][T16714] bond4: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  182.170762][T16714] bond4: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  182.181220][T16714] bond4: (slave ipvlan2): Setting fail_over_mac to active for active-backup mode
[  182.283769][T16761] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=16761 comm=syz.6.4466
[  182.587222][T16793] loop4: detected capacity change from 0 to 512
[  182.614559][T16793] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  182.699768][T16793] EXT4-fs (loop4): 1 truncate cleaned up
[  182.706003][T16793] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.769005][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.915904][T16889] netlink: 'syz.1.4506': attribute type 1 has an invalid length.
[  183.987457][T16902] loop4: detected capacity change from 0 to 512
[  183.994415][T16902] EXT4-fs: Ignoring removed nobh option
[  184.006635][T16902] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #3: comm syz.4.4512: corrupted inode contents
[  184.018765][T16902] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #3: comm syz.4.4512: mark_inode_dirty error
[  184.031584][T16902] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #3: comm syz.4.4512: corrupted inode contents
[  184.044555][T16902] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #3: comm syz.4.4512: mark_inode_dirty error
[  184.056376][T16902] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.4512: Failed to acquire dquot type 0
[  184.068213][T16902] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.4512: corrupted inode contents
[  184.080705][T16902] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #16: comm syz.4.4512: mark_inode_dirty error
[  184.092328][T16902] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.4512: corrupted inode contents
[  184.104653][T16902] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.4512: mark_inode_dirty error
[  184.135830][T16902] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.4512: corrupted inode contents
[  184.204024][T16902] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  184.213052][T16902] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.4512: corrupted inode contents
[  184.227435][T16902] EXT4-fs error (device loop4): ext4_truncate:4666: inode #16: comm syz.4.4512: mark_inode_dirty error
[  184.239116][T16902] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  184.258210][T16902] EXT4-fs (loop4): 1 truncate cleaned up
[  184.270415][T16902] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.304314][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.355869][T16939] syzkaller0: entered allmulticast mode
[  184.368563][T16939] syzkaller0 (unregistering): left allmulticast mode
[  184.401776][T16944] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  184.459141][T16948] syzkaller0: entered promiscuous mode
[  184.464834][T16948] syzkaller0: entered allmulticast mode
[  184.475121][T16954] netlink: 'syz.5.4530': attribute type 1 has an invalid length.
[  184.486543][T16952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=16952 comm=syz.6.4529
[  184.636270][T16977] __nla_validate_parse: 12 callbacks suppressed
[  184.636288][T16977] netlink: 96 bytes leftover after parsing attributes in process `syz.1.4538'.
[  184.828016][   T29] kauditd_printk_skb: 216 callbacks suppressed
[  184.828031][   T29] audit: type=1326 audit(418.435:9802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16978 comm="syz.1.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  184.858856][   T29] audit: type=1326 audit(418.446:9803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16978 comm="syz.1.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  184.881833][   T29] audit: type=1326 audit(418.467:9804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16978 comm="syz.1.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  184.906907][   T29] audit: type=1400 audit(418.467:9805): avc:  denied  { bind } for  pid=16989 comm="syz.2.4543" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  184.925961][   T29] audit: type=1326 audit(418.498:9806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16978 comm="syz.1.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  184.948819][   T29] audit: type=1326 audit(418.509:9807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16978 comm="syz.1.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  184.971690][   T29] audit: type=1326 audit(418.519:9808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16978 comm="syz.1.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  184.995943][   T29] audit: type=1326 audit(418.519:9809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16978 comm="syz.1.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  185.019210][   T29] audit: type=1326 audit(418.530:9810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16978 comm="syz.1.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  185.042290][   T29] audit: type=1326 audit(418.540:9811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16978 comm="syz.1.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  185.074834][T16994] loop2: detected capacity change from 0 to 128
[  185.608663][T17019] lo speed is unknown, defaulting to 1000
[  185.782488][T17045] lo speed is unknown, defaulting to 1000
[  185.811187][T17072] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4558'.
[  186.331996][T17131] 0ªî{X¹¦: left allmulticast mode
[  186.339862][T17131] dummy0: left promiscuous mode
[  186.345866][T17131] wg2: left promiscuous mode
[  186.350562][T17131] wg2: left allmulticast mode
[  186.356538][T17131] bridge_slave_1: left promiscuous mode
[  186.362701][T17131] veth0_to_team: left promiscuous mode
[  186.369010][T17131] 0·: left allmulticast mode
[  186.373579][T17131] hsr_slave_0: left allmulticast mode
[  186.378966][T17131] hsr_slave_1: left allmulticast mode
[  186.384802][T17131] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  186.393391][T17131] ip6gre1: left allmulticast mode
[  186.399467][T17131] team1: left promiscuous mode
[  186.404283][T17131] team1: left allmulticast mode
[  186.409276][T17131] ip6gre2: left allmulticast mode
[  186.419889][T17125] lo speed is unknown, defaulting to 1000
[  186.917758][T17184] netlink: 36 bytes leftover after parsing attributes in process `syz.1.4581'.
[  187.745505][T17225] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.792858][T17225] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.847985][T17225] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.903666][T17225] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.965067][ T3723] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  187.985493][ T3723] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  188.000091][ T3723] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  188.009379][ T3723] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  188.073117][T17263] loop2: detected capacity change from 0 to 512
[  188.091612][T17263] EXT4-fs: Ignoring removed mblk_io_submit option
[  188.160320][T17263] lo speed is unknown, defaulting to 1000
[  188.584054][T17328] lo speed is unknown, defaulting to 1000
[  188.714305][T17357] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4626'.
[  188.930001][T17364] unsupported nla_type 52263
[  189.448526][T17392] 
: renamed from bond0
[  189.592766][T17421] serio: Serial port ptm0
[  189.648852][T17430] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.711397][T17430] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.805817][T17430] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.873840][T17450] vlan0: entered allmulticast mode
[  189.879624][T17450] dummy0: entered allmulticast mode
[  189.899056][T17430] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.912050][T17458] sch_fq: defrate 0 ignored.
[  189.932742][   T29] kauditd_printk_skb: 955 callbacks suppressed
[  189.932757][   T29] audit: type=1326 audit(423.789:10767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17462 comm="syz.6.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  189.961991][   T29] audit: type=1326 audit(423.789:10768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17462 comm="syz.6.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  189.986000][   T29] audit: type=1326 audit(423.789:10769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17462 comm="syz.6.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  190.009107][   T29] audit: type=1326 audit(423.789:10770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17462 comm="syz.6.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  190.077857][T17471] lo speed is unknown, defaulting to 1000
[  190.097130][T17471] lo speed is unknown, defaulting to 1000
[  190.104286][T17471] lo speed is unknown, defaulting to 1000
[  190.112888][T17471] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  190.138927][T17471] lo speed is unknown, defaulting to 1000
[  190.145306][T17471] lo speed is unknown, defaulting to 1000
[  190.151450][T17471] lo speed is unknown, defaulting to 1000
[  190.157598][T17471] lo speed is unknown, defaulting to 1000
[  190.163714][T17471] lo speed is unknown, defaulting to 1000
[  190.170431][T17471] lo speed is unknown, defaulting to 1000
[  190.261059][   T29] audit: type=1326 audit(424.136:10771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17493 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  190.288993][   T29] audit: type=1326 audit(424.136:10772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17493 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  190.312215][   T29] audit: type=1326 audit(424.146:10773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17493 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe1bdb30b07 code=0x7ffc0000
[  190.335222][   T29] audit: type=1326 audit(424.146:10774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17493 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fe1bdb30a7c code=0x7ffc0000
[  190.358141][   T29] audit: type=1326 audit(424.146:10775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17493 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fe1bdb309b4 code=0x7ffc0000
[  190.381040][   T29] audit: type=1326 audit(424.146:10776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17493 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fe1bdb309b4 code=0x7ffc0000
[  190.448989][T17506] tipc: Enabled bearer <eth:team0>, priority 0
[  190.505308][T17501] lo speed is unknown, defaulting to 1000
[  190.519635][T17518] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4683'.
[  190.530056][T17501] lo speed is unknown, defaulting to 1000
[  190.972165][ T3709] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  190.983456][ T3727] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  190.994144][ T3709] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  191.006289][ T3723] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  191.509738][    T9] tipc: Node number set to 126896079
[  191.612663][T17616] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4708'.
[  191.634815][T17624] netlink: 7 bytes leftover after parsing attributes in process `syz.2.4711'.
[  191.671626][T17624] netlink: 60 bytes leftover after parsing attributes in process `syz.2.4711'.
[  191.680601][T17624] netlink: 60 bytes leftover after parsing attributes in process `syz.2.4711'.
[  191.728167][T17624] netlink: 7 bytes leftover after parsing attributes in process `syz.2.4711'.
[  191.737321][T17624] netlink: 60 bytes leftover after parsing attributes in process `syz.2.4711'.
[  191.746302][T17624] netlink: 60 bytes leftover after parsing attributes in process `syz.2.4711'.
[  191.801369][T17624] netlink: 7 bytes leftover after parsing attributes in process `syz.2.4711'.
[  191.831666][T17624] netlink: 60 bytes leftover after parsing attributes in process `syz.2.4711'.
[  191.950882][ T3404] IPVS: starting estimator thread 0...
[  192.034008][T17645] loop4: detected capacity change from 0 to 2048
[  192.043321][T17643] IPVS: using max 2688 ests per chain, 134400 per kthread
[  192.074994][T17645] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.285370][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.417146][T17705] netlink: 'syz.5.4741': attribute type 21 has an invalid length.
[  192.425130][T17705] netlink: 'syz.5.4741': attribute type 5 has an invalid length.
[  192.432938][T17705] netlink: 'syz.5.4741': attribute type 6 has an invalid length.
[  193.227711][T17762] netlink: 'syz.4.4762': attribute type 4 has an invalid length.
[  193.748605][T17824] SELinux: security policydb version 17 (MLS) not backwards compatible
[  193.757145][T17824] SELinux: failed to load policy
[  193.905059][T17846] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  193.912328][T17846] IPv6: NLM_F_CREATE should be set when creating new route
[  193.927268][T17846] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  193.934589][T17846] IPv6: NLM_F_CREATE should be set when creating new route
[  194.178443][T17893] netlink: 'syz.4.4816': attribute type 1 has an invalid length.
[  194.196708][T17893] 8021q: adding VLAN 0 to HW filter on device bond0
[  194.216172][T17893] bond0 (unregistering): Released all slaves
[  194.306106][T17976] Falling back ldisc for ptm0.
[  194.682751][T18023] ref_ctr_offset mismatch. inode: 0x14f8 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  194.701022][   T29] kauditd_printk_skb: 290 callbacks suppressed
[  194.701038][   T29] audit: type=1326 audit(428.807:11067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18029 comm="syz.4.4842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe4cf995ba7 code=0x7ffc0000
[  194.711314][T18032] netlink: 'syz.6.4843': attribute type 1 has an invalid length.
[  194.732666][   T29] audit: type=1326 audit(428.807:11068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18029 comm="syz.4.4842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe4cf93adb9 code=0x7ffc0000
[  194.760862][   T29] audit: type=1326 audit(428.807:11069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18029 comm="syz.4.4842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  194.783880][   T29] audit: type=1326 audit(428.818:11070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18029 comm="syz.4.4842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe4cf995ba7 code=0x7ffc0000
[  194.806771][   T29] audit: type=1326 audit(428.818:11071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18029 comm="syz.4.4842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe4cf93adb9 code=0x7ffc0000
[  194.829639][   T29] audit: type=1326 audit(428.818:11072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18029 comm="syz.4.4842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  194.853193][   T29] audit: type=1326 audit(428.849:11073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18029 comm="syz.4.4842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe4cf995ba7 code=0x7ffc0000
[  194.876135][   T29] audit: type=1326 audit(428.849:11074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18029 comm="syz.4.4842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe4cf93adb9 code=0x7ffc0000
[  194.899195][   T29] audit: type=1326 audit(428.849:11075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18029 comm="syz.4.4842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  194.922512][   T29] audit: type=1326 audit(428.849:11076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18029 comm="syz.4.4842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe4cf995ba7 code=0x7ffc0000
[  195.073679][T18045] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  195.131872][T18058] pim6reg1: entered promiscuous mode
[  195.137265][T18058] pim6reg1: entered allmulticast mode
[  195.307960][T18090] __nla_validate_parse: 22 callbacks suppressed
[  195.308049][T18090] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4856'.
[  195.384281][T18090] ip6gre1: entered allmulticast mode
[  195.753243][T18178] netlink: 'syz.5.4871': attribute type 1 has an invalid length.
[  195.778590][T18178] 8021q: adding VLAN 0 to HW filter on device bond2
[  195.794281][T18178] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4871'.
[  195.818771][T18178] bond2 (unregistering): Released all slaves
[  196.265613][T18339] dummy0: entered allmulticast mode
[  196.278158][T18339] dummy0: left allmulticast mode
[  196.399053][T18362] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4898'.
[  196.688921][T18375] Set syz1 is full, maxelem 65536 reached
[  196.726766][T18408] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4916'.
[  196.964817][T18439] loop2: detected capacity change from 0 to 1764
[  197.590647][T18500] lo speed is unknown, defaulting to 1000
[  197.597953][T18500] lo speed is unknown, defaulting to 1000
[  198.347581][T18605] loop2: detected capacity change from 0 to 512
[  198.361843][T18605] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  198.370250][T18605] EXT4-fs (loop2): write access unavailable, skipping orphan cleanup
[  198.380056][T18605] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  198.408182][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.418825][T18609] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18609 comm=syz.4.4981
[  198.448870][T18617] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4982'.
[  198.462385][T18621] netlink: 404 bytes leftover after parsing attributes in process `syz.1.4985'.
[  198.467530][T18617] 8021q: adding VLAN 0 to HW filter on device bond8
[  198.494595][T18617] vlan0: entered allmulticast mode
[  198.499781][T18617] bond8: entered allmulticast mode
[  198.590574][T18669] pim6reg1: entered promiscuous mode
[  198.595979][T18669] pim6reg1: entered allmulticast mode
[  198.818913][T18703] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5000'.
[  198.848498][T18708] netlink: 'syz.5.5001': attribute type 4 has an invalid length.
[  198.860126][ T1037] lo speed is unknown, defaulting to 1000
[  198.866001][ T1037] syz0: Port: 1 Link DOWN
[  198.875082][T18708] netlink: 'syz.5.5001': attribute type 4 has an invalid length.
[  198.893045][ T1037] lo speed is unknown, defaulting to 1000
[  198.898827][ T1037] syz0: Port: 1 Link ACTIVE
[  198.982915][T18718] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5005'.
[  199.104300][T18731] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5010'.
[  199.270010][T18753] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5017'.
[  199.385886][T18774] SELinux:  Context system_u:object_r:iptables_unit_file_t:s0 is not valid (left unmapped).
[  199.473362][   T29] kauditd_printk_skb: 709 callbacks suppressed
[  199.473377][   T29] audit: type=1400 audit(433.804:11786): avc:  denied  { write } for  pid=18785 comm="syz.1.5038" path="socket:[49065]" dev="sockfs" ino=49065 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  199.561670][T18795] netlink: 'syz.2.5034': attribute type 4 has an invalid length.
[  199.604662][ T3366] lo speed is unknown, defaulting to 1000
[  199.610560][ T3366] syz2: Port: 1 Link DOWN
[  199.622335][   T29] audit: type=1400 audit(433.962:11787): avc:  denied  { read } for  pid=18801 comm="syz.2.5037" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  199.667532][T18810] loop4: detected capacity change from 0 to 1024
[  199.673318][T18813] loop2: detected capacity change from 0 to 128
[  199.682353][T18810] EXT4-fs: Ignoring removed orlov option
[  199.704355][T18810] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.755987][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.776440][   T29] audit: type=1400 audit(434.119:11788): avc:  denied  { create } for  pid=18828 comm="syz.4.5044" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  199.803733][   T29] audit: type=1400 audit(434.130:11789): avc:  denied  { setopt } for  pid=18828 comm="syz.4.5044" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  200.024429][   T29] audit: type=1326 audit(434.382:11790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18851 comm="syz.6.5050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  200.047551][   T29] audit: type=1326 audit(434.382:11791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18851 comm="syz.6.5050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  200.074305][   T29] audit: type=1326 audit(434.434:11792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18851 comm="syz.6.5050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  200.097507][   T29] audit: type=1326 audit(434.434:11793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18851 comm="syz.6.5050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  200.120529][   T29] audit: type=1326 audit(434.434:11794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18851 comm="syz.6.5050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  200.143510][   T29] audit: type=1326 audit(434.434:11795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18851 comm="syz.6.5050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  200.318547][T18876] loop2: detected capacity change from 0 to 512
[  200.372899][T18887] netlink: 'syz.4.5061': attribute type 4 has an invalid length.
[  200.724573][T18889] Set syz1 is full, maxelem 65536 reached
[  200.775178][T18928] netlink: 'syz.6.5074': attribute type 10 has an invalid length.
[  200.808333][T18928] bond0: (slave dummy0): Releasing backup interface
[  200.830494][T18928] team0: Port device dummy0 added
[  200.923213][T18954] __nla_validate_parse: 5 callbacks suppressed
[  200.923289][T18954] netlink: 48 bytes leftover after parsing attributes in process `syz.1.5083'.
[  201.013051][T18966] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5089'.
[  201.038554][T18970] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5091'.
[  201.047542][T18970] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5091'.
[  201.059119][T18970] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5091'.
[  201.080966][T18970] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5091'.
[  201.089963][T18970] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5091'.
[  201.117603][T18977] loop2: detected capacity change from 0 to 164
[  201.201119][T18990] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5097'.
[  201.500286][T19017] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5105'.
[  201.509282][T19017] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5105'.
[  201.518409][T19017] netlink: 'syz.4.5105': attribute type 6 has an invalid length.
[  201.784118][T19046] netlink: zone id is out of range
[  201.790953][T19046] netlink: zone id is out of range
[  202.037116][T19048] Set syz1 is full, maxelem 65536 reached
[  202.181028][T19062] team0 (unregistering): Port device team_slave_0 removed
[  202.189880][T19062] team0 (unregistering): Port device team_slave_1 removed
[  202.286042][T19098] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  202.625235][T19140] lo speed is unknown, defaulting to 1000
[  202.631609][T19140] lo speed is unknown, defaulting to 1000
[  202.849700][T19187] 8021q: adding VLAN 0 to HW filter on device bond0
[  202.873583][T19187] vlan0: entered allmulticast mode
[  202.878729][T19187] bond0: entered allmulticast mode
[  202.962739][T19240] loop4: detected capacity change from 0 to 2048
[  202.971531][T19242] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=19242 comm=syz.1.5162
[  202.980999][T19240] EXT4-fs (loop4): failed to initialize system zone (-117)
[  202.984277][T19242] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=19242 comm=syz.1.5162
[  202.991736][T19240] EXT4-fs (loop4): mount failed
[  203.036685][T19240] geneve2: entered promiscuous mode
[  203.042580][ T3711] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  203.058699][ T3711] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  203.085942][ T3711] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  203.094301][ T3711] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  204.048045][T19285] loop4: detected capacity change from 0 to 1024
[  204.054630][T19285] EXT4-fs: Ignoring removed orlov option
[  204.064645][T19285] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.090730][T19293] uprobe: syz.2.5179:19293 failed to unregister, leaking uprobe
[  204.304508][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.402047][   T29] kauditd_printk_skb: 458 callbacks suppressed
[  204.402062][   T29] audit: type=1400 audit(438.980:12254): avc:  denied  { write } for  pid=19313 comm="syz.2.5187" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  204.443538][   T29] audit: type=1400 audit(439.022:12255): avc:  denied  { ioctl } for  pid=19313 comm="syz.2.5187" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  204.535860][   T29] audit: type=1400 audit(439.127:12256): avc:  denied  { kexec_image_load } for  pid=19322 comm="syz.5.5189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  204.566094][T19332] netlink: 'syz.2.5193': attribute type 10 has an invalid length.
[  204.574295][   T29] audit: type=1326 audit(439.169:12257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19333 comm="syz.6.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  204.597412][   T29] audit: type=1326 audit(439.169:12258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19333 comm="syz.6.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  204.620424][   T29] audit: type=1326 audit(439.169:12259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19333 comm="syz.6.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  204.643499][   T29] audit: type=1326 audit(439.169:12260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19333 comm="syz.6.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  204.666936][   T29] audit: type=1326 audit(439.169:12261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19333 comm="syz.6.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  204.690029][   T29] audit: type=1326 audit(439.169:12262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19333 comm="syz.6.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  204.713106][   T29] audit: type=1326 audit(439.169:12263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19333 comm="syz.6.5203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  204.736374][T19332] $Hÿ: (slave dummy0): Releasing backup interface
[  204.743861][T19332] dummy0: left promiscuous mode
[  204.755024][T19332] dummy0: entered promiscuous mode
[  204.761122][T19332] team0: Port device dummy0 added
[  204.813658][T19348] syz_tun: entered allmulticast mode
[  204.823164][T19348] dvmrp8: entered allmulticast mode
[  204.831933][T19348] syz_tun: left allmulticast mode
[  204.837354][T19348] dvmrp8: left allmulticast mode
[  205.090458][T19376] netlink: 'syz.1.5209': attribute type 10 has an invalid length.
[  205.376481][T19376] team0: Port device dummy0 added
[  205.385578][ T3727] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  205.407894][ T3727] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  205.416274][ T3727] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  205.446095][ T3727] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  205.502636][T19407] lo speed is unknown, defaulting to 1000
[  205.509961][T19407] lo speed is unknown, defaulting to 1000
[  205.544192][T19430] vlan1: entered allmulticast mode
[  205.549323][T19430] bridge_slave_0: entered allmulticast mode
[  205.785197][T19479] netlink: 'syz.4.5229': attribute type 21 has an invalid length.
[  205.793131][T19479] __nla_validate_parse: 6 callbacks suppressed
[  205.793143][T19479] netlink: 156 bytes leftover after parsing attributes in process `syz.4.5229'.
[  205.828959][T19484] netlink: 96 bytes leftover after parsing attributes in process `syz.6.5241'.
[  205.841949][T19485] vlan0: entered allmulticast mode
[  205.847190][T19485] bridge_slave_0: entered allmulticast mode
[  205.917368][T19493] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5233'.
[  206.434966][T19559] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5252'.
[  206.901851][T19591] ref_ctr increment failed for inode: 0x1697 offset: 0xb ref_ctr_offset: 0x82 of mm: 0xffff888109a8e1c0
[  206.938213][T19591] ref_ctr increment failed for inode: 0x1697 offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff888109a8e1c0
[  206.952203][T19590] uprobe: syz.1.5262:19590 failed to unregister, leaking uprobe
[  207.022600][T19584] SELinux:  Context system_u:object is not valid (left unmapped).
[  207.037726][T19590] uprobe: syz.1.5262:19590 failed to unregister, leaking uprobe
[  207.325945][T19623] netlink: 7 bytes leftover after parsing attributes in process `syz.5.5272'.
[  207.335284][T19623] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5272'.
[  207.509338][T19638] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.516606][T19638] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.576580][T19400] lo speed is unknown, defaulting to 1000
[  207.582375][T19400] syz0: Port: 1 Link DOWN
[  207.587379][T19393] syz1: Port: 1 Link DOWN
[  207.587423][ T3761] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  207.610755][ T3761] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  207.620539][ T3761] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  207.631113][ T3761] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  208.096095][T19670] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.156162][T19670] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.230712][T19666] lo speed is unknown, defaulting to 1000
[  208.240371][T19670] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.259562][T19666] lo speed is unknown, defaulting to 1000
[  208.324427][T19690] IPVS: Error connecting to the multicast addr
[  208.353887][T19670] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.410062][T19710] netlink: 'syz.5.5296': attribute type 1 has an invalid length.
[  208.576879][T19716] bond2: (slave veth1): Enslaving as an active interface with a down link
[  208.586258][T19721] bond2: entered promiscuous mode
[  208.591338][T19721] bond2: entered allmulticast mode
[  208.597951][T19721] 8021q: adding VLAN 0 to HW filter on device bond2
[  208.652793][T19780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5303'.
[  208.688385][ T3761] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  208.722711][ T3761] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  208.741874][ T3761] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  208.757845][ T3761] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  208.834731][T19800] loop4: detected capacity change from 0 to 512
[  208.853445][T19800] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.928235][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.968144][T19815] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000000000008
[  208.987194][T19818] netlink: 'syz.5.5317': attribute type 10 has an invalid length.
[  208.987947][T19819] netlink: 'syz.6.5316': attribute type 1 has an invalid length.
[  208.996250][T19818] netlink: 'syz.5.5317': attribute type 298 has an invalid length.
[  209.043464][T19854] netlink: 5 bytes leftover after parsing attributes in process `syz.4.5318'.
[  209.054586][T19819] bond5: (slave veth5): Enslaving as an active interface with a down link
[  209.063260][T19854] 1ªî{X¹¦: renamed from 
30ªî{X¹¦
[  209.070140][T19854] 1ªî{X¹¦: entered allmulticast mode
[  209.076224][T19854] A link change request failed with some changes committed already. Interface 
31ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  209.092621][T19819] bond5: entered promiscuous mode
[  209.097778][T19819] bond5: entered allmulticast mode
[  209.103363][T19819] 8021q: adding VLAN 0 to HW filter on device bond5
[  209.245626][   T29] kauditd_printk_skb: 314 callbacks suppressed
[  209.245647][   T29] audit: type=1326 audit(444.061:12578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19898 comm="syz.5.5329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  209.276090][   T29] audit: type=1326 audit(444.061:12579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19898 comm="syz.5.5329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  209.299081][   T29] audit: type=1326 audit(444.061:12580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19898 comm="syz.5.5329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  209.322306][   T29] audit: type=1326 audit(444.061:12581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19898 comm="syz.5.5329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  209.345439][   T29] audit: type=1326 audit(444.061:12582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19898 comm="syz.5.5329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff0a6070b07 code=0x7ffc0000
[  209.368403][   T29] audit: type=1326 audit(444.061:12583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19898 comm="syz.5.5329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7ff0a6070a7c code=0x7ffc0000
[  209.391540][   T29] audit: type=1326 audit(444.061:12584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19898 comm="syz.5.5329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7ff0a60709b4 code=0x7ffc0000
[  209.414521][   T29] audit: type=1326 audit(444.061:12585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19898 comm="syz.5.5329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7ff0a60709b4 code=0x7ffc0000
[  209.437578][   T29] audit: type=1326 audit(444.061:12586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19898 comm="syz.5.5329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff0a606d84a code=0x7ffc0000
[  209.460633][   T29] audit: type=1326 audit(444.061:12587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19898 comm="syz.5.5329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  210.012384][T19912] netlink: 'syz.1.5333': attribute type 1 has an invalid length.
[  210.059439][T19912] bond3: (slave veth19): Enslaving as an active interface with a down link
[  210.077040][T19912] bond3: entered promiscuous mode
[  210.082223][T19912] bond3: entered allmulticast mode
[  210.088778][T19912] 8021q: adding VLAN 0 to HW filter on device bond3
[  210.258954][T19966] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19966 comm=syz.2.5339
[  210.474219][T20000] lo speed is unknown, defaulting to 1000
[  210.480651][T20000] lo speed is unknown, defaulting to 1000
[  211.039061][T20029] netlink: 'syz.2.5351': attribute type 1 has an invalid length.
[  211.066537][T20034] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5355'.
[  211.131754][T20029] bond9: (slave veth21): Enslaving as an active interface with a down link
[  211.167349][T20029] bond9: entered promiscuous mode
[  211.172455][T20029] bond9: entered allmulticast mode
[  211.183196][T20029] 8021q: adding VLAN 0 to HW filter on device bond9
[  211.360370][T20101] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5359'.
[  211.402888][T20107] syz.1.5360: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  211.417634][T20107] CPU: 0 UID: 0 PID: 20107 Comm: syz.1.5360 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  211.417669][T20107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  211.417688][T20107] Call Trace:
[  211.417695][T20107]  <TASK>
[  211.417703][T20107]  __dump_stack+0x1d/0x30
[  211.417742][T20107]  dump_stack_lvl+0xe8/0x140
[  211.417764][T20107]  dump_stack+0x15/0x1b
[  211.417782][T20107]  warn_alloc+0x12b/0x1a0
[  211.417869][T20107]  __vmalloc_node_range_noprof+0x9c/0xe00
[  211.417903][T20107]  ? __futex_wait+0x1ff/0x260
[  211.417938][T20107]  ? __pfx_futex_wake_mark+0x10/0x10
[  211.418014][T20107]  ? __rcu_read_unlock+0x4f/0x70
[  211.418040][T20107]  ? avc_has_perm_noaudit+0x1b1/0x200
[  211.418068][T20107]  ? should_fail_ex+0x30/0x280
[  211.418090][T20107]  ? xskq_create+0x36/0xe0
[  211.418167][T20107]  vmalloc_user_noprof+0x7d/0xb0
[  211.418254][T20107]  ? xskq_create+0x80/0xe0
[  211.418284][T20107]  xskq_create+0x80/0xe0
[  211.418321][T20107]  xsk_init_queue+0x95/0xf0
[  211.418353][T20107]  xsk_setsockopt+0x477/0x640
[  211.418403][T20107]  ? __pfx_xsk_setsockopt+0x10/0x10
[  211.418516][T20107]  __sys_setsockopt+0x181/0x200
[  211.418668][T20107]  __x64_sys_setsockopt+0x64/0x80
[  211.418691][T20107]  x64_sys_call+0x20ec/0x2ff0
[  211.418713][T20107]  do_syscall_64+0xd2/0x200
[  211.418805][T20107]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  211.418908][T20107]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  211.418938][T20107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.418962][T20107] RIP: 0033:0x7fe1bdb2ebe9
[  211.418980][T20107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.418998][T20107] RSP: 002b:00007fe1bc597038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  211.419110][T20107] RAX: ffffffffffffffda RBX: 00007fe1bdd65fa0 RCX: 00007fe1bdb2ebe9
[  211.419124][T20107] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000007
[  211.419138][T20107] RBP: 00007fe1bdbb1e19 R08: 0000000000000004 R09: 0000000000000000
[  211.419153][T20107] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[  211.419167][T20107] R13: 00007fe1bdd66038 R14: 00007fe1bdd65fa0 R15: 00007ffe5cc2b178
[  211.419187][T20107]  </TASK>
[  211.637835][T20107] Mem-Info:
[  211.640933][T20107] active_anon:10012 inactive_anon:70 isolated_anon:0
[  211.640933][T20107]  active_file:24618 inactive_file:2646 isolated_file:0
[  211.640933][T20107]  unevictable:0 dirty:312 writeback:0
[  211.640933][T20107]  slab_reclaimable:3608 slab_unreclaimable:49910
[  211.640933][T20107]  mapped:28758 shmem:6686 pagetables:1282
[  211.640933][T20107]  sec_pagetables:0 bounce:0
[  211.640933][T20107]  kernel_misc_reclaimable:0
[  211.640933][T20107]  free:1797959 free_pcp:17450 free_cma:0
[  211.686188][T20107] Node 0 active_anon:25548kB inactive_anon:280kB active_file:98472kB inactive_file:10584kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:115032kB dirty:1248kB writeback:0kB shmem:12244kB kernel_stack:5008kB pagetables:5128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  211.713809][T20107] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  211.742425][T20107] lowmem_reserve[]: 0 2883 7862 7862
[  211.747770][T20107] Node 0 DMA32 free:2949292kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2952824kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[  211.778066][T20107] lowmem_reserve[]: 0 0 4978 4978
[  211.783232][T20107] Node 0 Normal free:4243424kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:23576kB inactive_anon:280kB active_file:98472kB inactive_file:10584kB unevictable:0kB writepending:1248kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:66116kB local_pcp:18136kB free_cma:0kB
[  211.815430][T20107] lowmem_reserve[]: 0 0 0 0
[  211.820052][T20107] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  211.832764][T20107] Node 0 DMA32: 3*4kB (M) 4*8kB (M) 4*16kB (M) 2*32kB (M) 4*64kB (M) 4*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949292kB
[  211.848882][T20107] Node 0 Normal: 1569*4kB (UM) 255*8kB (UME) 93*16kB (UME) 49*32kB (UME) 76*64kB (UME) 63*128kB (UME) 33*256kB (UME) 86*512kB (UME) 109*1024kB (UM) 48*2048kB (UM) 966*4096kB (UME) = 4243436kB
[  211.867954][T20107] Node 0 hugepages_total=4 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  211.877286][T20107] 29890 total pagecache pages
[  211.881974][T20107] 57 pages in swap cache
[  211.886255][T20107] Free swap  = 124736kB
[  211.890429][T20107] Total swap = 124996kB
[  211.894572][T20107] 2097051 pages RAM
[  211.898416][T20107] 0 pages HighMem/MovableOnly
[  211.903099][T20107] 80445 pages reserved
[  212.244869][T20162] netlink: 'syz.5.5377': attribute type 49 has an invalid length.
[  212.634674][T20203] syzkaller0: entered allmulticast mode
[  212.644272][T20203] syzkaller0 (unregistering): left allmulticast mode
[  213.066398][T20227] lo speed is unknown, defaulting to 1000
[  213.074467][T20240] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5404'.
[  213.087638][T20227] lo speed is unknown, defaulting to 1000
[  213.121497][T20240] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5404'.
[  213.312631][T20287] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5408'.
[  213.355686][T20283] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5407'.
[  213.426894][T20299] netlink: 96 bytes leftover after parsing attributes in process `syz.4.5410'.
[  213.521770][T20303] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5414'.
[  213.556061][T20309] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5416'.
[  213.593673][T20318] wg2: entered promiscuous mode
[  213.598558][T20318] wg2: entered allmulticast mode
[  213.692951][T20335] loop4: detected capacity change from 0 to 512
[  213.720433][T20335] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.739843][T20335] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  213.810495][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.820297][T20352] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5428'.
[  213.846824][T20352] netlink: 'syz.6.5428': attribute type 10 has an invalid length.
[  213.876943][T20360] pim6reg1: entered promiscuous mode
[  213.882273][T20360] pim6reg1: entered allmulticast mode
[  213.911815][T20352] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  213.930999][T20380] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000000000008
[  213.959818][T20354] lo speed is unknown, defaulting to 1000
[  213.966099][T20354] lo speed is unknown, defaulting to 1000
[  213.972582][T20384] pim6reg1: entered promiscuous mode
[  213.977982][T20384] pim6reg1: entered allmulticast mode
[  214.065264][   T29] kauditd_printk_skb: 243 callbacks suppressed
[  214.065280][   T29] audit: type=1326 audit(449.121:12831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20411 comm="syz.4.5437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  214.107412][   T29] audit: type=1326 audit(449.163:12832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20411 comm="syz.4.5437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  214.130513][   T29] audit: type=1326 audit(449.163:12833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20411 comm="syz.4.5437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  214.153495][   T29] audit: type=1326 audit(449.163:12834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20411 comm="syz.4.5437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  214.176648][   T29] audit: type=1326 audit(449.163:12835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20411 comm="syz.4.5437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  214.199816][   T29] audit: type=1326 audit(449.163:12836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20411 comm="syz.4.5437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  214.222876][   T29] audit: type=1326 audit(449.163:12837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20411 comm="syz.4.5437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  214.245887][   T29] audit: type=1326 audit(449.163:12838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20411 comm="syz.4.5437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  214.268853][   T29] audit: type=1326 audit(449.173:12839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20411 comm="syz.4.5437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  214.291924][   T29] audit: type=1326 audit(449.173:12840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20411 comm="syz.4.5437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4cf99ebe9 code=0x7ffc0000
[  214.380276][T20435] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  214.443907][T20442] loop2: detected capacity change from 0 to 1024
[  214.451021][T20442] EXT4-fs: Ignoring removed orlov option
[  214.483342][T20449] loop2: detected capacity change from 0 to 512
[  214.587023][T20460] lo speed is unknown, defaulting to 1000
[  214.594440][T20460] lo speed is unknown, defaulting to 1000
[  214.973529][T20545] loop4: detected capacity change from 0 to 1024
[  214.997850][T20545] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.030892][T20545] EXT4-fs error (device loop4): ext4_read_inline_dir:1476: inode #12: block 7: comm syz.4.5466: path /1072/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[  215.118600][T20557] ref_ctr_offset mismatch. inode: 0x1766 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x6
[  215.131108][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.183065][T20561] loop4: detected capacity change from 0 to 8192
[  215.253252][T20572] netlink: 'syz.4.5473': attribute type 1 has an invalid length.
[  215.273753][T20572] bond3: entered promiscuous mode
[  215.278853][T20572] bond3: entered allmulticast mode
[  215.284823][T20572] 8021q: adding VLAN 0 to HW filter on device bond3
[  215.300242][T20572] bridge6: entered promiscuous mode
[  215.305780][T20572] bridge6: entered allmulticast mode
[  215.314840][T20572] bond3: (slave bridge6): Enslaving as a backup interface with an up link
[  215.348538][T20609] bond4: entered promiscuous mode
[  215.353623][T20609] bond4: entered allmulticast mode
[  215.369268][T20609] 8021q: adding VLAN 0 to HW filter on device bond4
[  215.380908][ T3727] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  215.405422][T20651] loop4: detected capacity change from 0 to 1024
[  215.412337][T20651] EXT4-fs: Ignoring removed orlov option
[  215.430381][T20651] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.459186][T20651] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5477: bg 0: block 88: padding at end of block bitmap is not set
[  215.495593][ T3727] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  215.523321][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.586540][T20510] syz.6.5458 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  215.600463][T20510] CPU: 0 UID: 0 PID: 20510 Comm: syz.6.5458 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  215.600491][T20510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  215.600505][T20510] Call Trace:
[  215.600512][T20510]  <TASK>
[  215.600520][T20510]  __dump_stack+0x1d/0x30
[  215.600605][T20510]  dump_stack_lvl+0xe8/0x140
[  215.600626][T20510]  dump_stack+0x15/0x1b
[  215.600688][T20510]  dump_header+0x81/0x220
[  215.600783][T20510]  oom_kill_process+0x342/0x400
[  215.600821][T20510]  out_of_memory+0x979/0xb80
[  215.600858][T20510]  try_charge_memcg+0x5e6/0x9e0
[  215.600890][T20510]  obj_cgroup_charge_pages+0xa6/0x150
[  215.600965][T20510]  __memcg_kmem_charge_page+0x9f/0x170
[  215.601019][T20510]  __alloc_frozen_pages_noprof+0x188/0x360
[  215.601058][T20510]  alloc_pages_mpol+0xb3/0x250
[  215.601196][T20510]  alloc_pages_noprof+0x90/0x130
[  215.601228][T20510]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  215.601305][T20510]  __kvmalloc_node_noprof+0x30f/0x4e0
[  215.601409][T20510]  ? ip_set_alloc+0x1f/0x30
[  215.601428][T20510]  ? ip_set_alloc+0x1f/0x30
[  215.601447][T20510]  ? __kmalloc_cache_noprof+0x189/0x320
[  215.601540][T20510]  ip_set_alloc+0x1f/0x30
[  215.601559][T20510]  hash_netiface_create+0x282/0x740
[  215.601582][T20510]  ? __pfx_hash_netiface_create+0x10/0x10
[  215.601674][T20510]  ip_set_create+0x3c9/0x960
[  215.601707][T20510]  ? __nla_parse+0x40/0x60
[  215.601840][T20510]  nfnetlink_rcv_msg+0x4c6/0x590
[  215.601893][T20510]  netlink_rcv_skb+0x120/0x220
[  215.601916][T20510]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  215.602022][T20510]  nfnetlink_rcv+0x16b/0x1690
[  215.602059][T20510]  ? __list_del_entry_valid_or_report+0x65/0x130
[  215.602156][T20510]  ? __rmqueue_pcplist+0x9d2/0xbd0
[  215.602239][T20510]  ? should_fail_ex+0x30/0x280
[  215.602261][T20510]  ? selinux_nlmsg_lookup+0x99/0x890
[  215.602336][T20510]  ? __rcu_read_unlock+0x34/0x70
[  215.602356][T20510]  ? __netlink_lookup+0x266/0x2a0
[  215.602380][T20510]  netlink_unicast+0x5c0/0x690
[  215.602400][T20510]  netlink_sendmsg+0x58b/0x6b0
[  215.602486][T20510]  ? __pfx_netlink_sendmsg+0x10/0x10
[  215.602507][T20510]  __sock_sendmsg+0x142/0x180
[  215.602538][T20510]  ____sys_sendmsg+0x31e/0x4e0
[  215.602561][T20510]  ___sys_sendmsg+0x17b/0x1d0
[  215.602637][T20510]  __x64_sys_sendmsg+0xd4/0x160
[  215.602693][T20510]  x64_sys_call+0x191e/0x2ff0
[  215.602715][T20510]  do_syscall_64+0xd2/0x200
[  215.602781][T20510]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  215.602807][T20510]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  215.602875][T20510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.602899][T20510] RIP: 0033:0x7f0f5bdbebe9
[  215.602942][T20510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.603025][T20510] RSP: 002b:00007f0f5a81f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  215.603042][T20510] RAX: ffffffffffffffda RBX: 00007f0f5bff5fa0 RCX: 00007f0f5bdbebe9
[  215.603054][T20510] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  215.603068][T20510] RBP: 00007f0f5be41e19 R08: 0000000000000000 R09: 0000000000000000
[  215.603080][T20510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  215.603148][T20510] R13: 00007f0f5bff6038 R14: 00007f0f5bff5fa0 R15: 00007ffd518b7428
[  215.603169][T20510]  </TASK>
[  215.603176][T20510] memory: usage 307200kB, limit 307200kB, failcnt 185
[  215.931682][T20510] memory+swap: usage 307648kB, limit 9007199254740988kB, failcnt 0
[  215.939565][T20510] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  215.946961][T20510] Memory cgroup stats for /syz6:
[  215.949025][T20510] cache 0
[  215.950021][T20670] __nla_validate_parse: 3 callbacks suppressed
[  215.950034][T20670] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5484'.
[  215.953989][T20510] rss 0
[  215.974808][T20510] shmem 0
[  215.977781][T20510] mapped_file 0
[  215.981338][T20510] dirty 0
[  215.984264][T20510] writeback 0
[  215.987646][T20510] workingset_refault_anon 2317
[  215.992430][T20510] workingset_refault_file 0
[  215.996925][T20510] swap 458752
[  216.000268][T20510] swapcached 8192
[  216.003915][T20510] pgpgin 94727
[  216.007313][T20510] pgpgout 94724
[  216.010788][T20510] pgfault 97451
[  216.014240][T20510] pgmajfault 305
[  216.017800][T20510] inactive_anon 4096
[  216.021705][T20510] active_anon 4096
[  216.025408][T20510] inactive_file 0
[  216.029039][T20510] active_file 4096
[  216.032817][T20510] unevictable 0
[  216.036248][T20510] hierarchical_memory_limit 314572800
[  216.041612][T20510] hierarchical_memsw_limit 9223372036854771712
[  216.047788][T20510] total_cache 0
[  216.051240][T20510] total_rss 0
[  216.054518][T20510] total_shmem 0
[  216.057976][T20510] total_mapped_file 0
[  216.061929][T20510] total_dirty 0
[  216.065364][T20510] total_writeback 0
[  216.069214][T20510] total_workingset_refault_anon 2317
[  216.074474][T20510] total_workingset_refault_file 0
[  216.079495][T20510] total_swap 458752
[  216.083362][T20510] total_swapcached 8192
[  216.087551][T20510] total_pgpgin 94727
[  216.091455][T20510] total_pgpgout 94724
[  216.095410][T20510] total_pgfault 97451
[  216.099394][T20510] total_pgmajfault 305
[  216.103464][T20510] total_inactive_anon 4096
[  216.107929][T20510] total_active_anon 4096
[  216.112162][T20510] total_inactive_file 0
[  216.116376][T20510] total_active_file 4096
[  216.120603][T20510] total_unevictable 0
[  216.124579][T20510] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz6,task_memcg=/syz6,task=syz.6.5458,pid=20509,uid=0
[  216.139396][T20510] Memory cgroup out of memory: Killed process 20509 (syz.6.5458) total-vm:96008kB, anon-rss:1008kB, file-rss:22056kB, shmem-rss:0kB, UID:0 pgtables:148kB oom_score_adj:0
[  216.175839][T20683] netlink: 'syz.5.5487': attribute type 13 has an invalid length.
[  216.192477][T20683] gretap0: refused to change device tx_queue_len
[  216.204019][T20683] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  216.219759][ T1037] lo speed is unknown, defaulting to 1000
[  216.225468][ T1037] syz0: Port: 1 Link ACTIVE
[  216.260742][T20689] veth3: entered promiscuous mode
[  216.308153][T20711] bond3: left promiscuous mode
[  216.312942][T20711] bond3: left allmulticast mode
[  216.322111][T20711] bond4: left promiscuous mode
[  216.326937][T20711] bond4: left allmulticast mode
[  216.332719][T20689] lo speed is unknown, defaulting to 1000
[  216.340428][T20715] tipc: Started in network mode
[  216.345365][T20715] tipc: Node identity ac14140f, cluster identity 4711
[  216.364129][T20715] tipc: New replicast peer: 255.255.255.255
[  216.370204][T20715] tipc: Enabled bearer <udp:s>, priority 10
[  216.376665][T20689] lo speed is unknown, defaulting to 1000
[  216.444506][T20748] netlink: zone id is out of range
[  216.449748][T20748] netlink: zone id is out of range
[  216.663381][T20779] loop4: detected capacity change from 0 to 1024
[  216.676594][T20779] EXT4-fs: Ignoring removed bh option
[  216.684223][T20779] EXT4-fs: inline encryption not supported
[  216.722243][T20779] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  216.746172][T20779] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  216.785467][T20779] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 2: comm syz.4.5506: lblock 2 mapped to illegal pblock 2 (length 1)
[  216.800060][T20779] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 48: comm syz.4.5506: lblock 0 mapped to illegal pblock 48 (length 1)
[  216.814894][T20779] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.5506: Failed to acquire dquot type 0
[  216.828764][T20779] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  216.842064][T20779] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.5506: mark_inode_dirty error
[  216.867300][T20779] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  216.886178][T20779] EXT4-fs (loop4): 1 orphan inode deleted
[  216.902295][T20779] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  216.914838][ T3709] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:16: lblock 1 mapped to illegal pblock 1 (length 1)
[  216.930222][ T3709] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:16: Failed to release dquot type 0
[  216.946943][T20779] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.967766][T20779] EXT4-fs error (device loop4): __ext4_get_inode_loc:4861: comm syz.4.5506: Invalid inode table block 1 in block_group 0
[  216.971124][T20796] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5513'.
[  216.992493][T20796] ip6gre1: entered allmulticast mode
[  216.999506][T20779] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  217.019924][T20800] netlink: 'syz.5.5514': attribute type 30 has an invalid length.
[  217.023019][T20779] EXT4-fs error (device loop4): ext4_quota_off:7221: inode #3: comm syz.4.5506: mark_inode_dirty error
[  217.076198][T20808] loop4: detected capacity change from 0 to 512
[  217.083009][T20808] EXT4-fs: Ignoring removed nobh option
[  217.091161][T20808] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  217.101446][T20808] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.5515: iget: bad i_size value: 38620345925642
[  217.115086][T20808] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.5515: couldn't read orphan inode 15 (err -117)
[  217.127992][T20808] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  217.141983][T20814] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5517'.
[  217.172699][T19382] page_pool_release_retry() stalled pool shutdown: id 116, 1 inflight 60 sec
[  217.176546][T20818] netlink: 'syz.5.5519': attribute type 13 has an invalid length.
[  217.227811][T20822] netlink: 'syz.1.5521': attribute type 1 has an invalid length.
[  217.238253][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.247518][T19400] lo speed is unknown, defaulting to 1000
[  217.253373][T19400] syz0: Port: 1 Link DOWN
[  217.280278][T20822] bond5: entered promiscuous mode
[  217.285343][T20822] bond5: entered allmulticast mode
[  217.296166][T20822] 8021q: adding VLAN 0 to HW filter on device bond5
[  217.324723][T19382] tipc: Node number set to 2886997007
[  217.331175][T20822] ip6gretap1: entered promiscuous mode
[  217.336817][T20822] ip6gretap1: entered allmulticast mode
[  217.350511][T20822] bond5: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  217.381139][ T3756] bond5: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  217.506053][ T3756] bond5: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  217.731660][T20873] Set syz1 is full, maxelem 65536 reached
[  217.778740][T20882] netlink: 72 bytes leftover after parsing attributes in process `syz.1.5531'.
[  217.796622][T20882] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5531'.
[  217.805659][T20882] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5531'.
[  217.823809][T20886] ref_ctr_offset mismatch. inode: 0x16f8 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x6
[  217.861039][T20890] 0ªî{X¹¦: left allmulticast mode
[  217.866976][T20890] $Hÿ: left promiscuous mode
[  217.871762][T20890] bond_slave_0: left promiscuous mode
[  217.877377][T20890] bond_slave_1: left promiscuous mode
[  217.882820][T20890] team0: left promiscuous mode
[  217.887665][T20890] team_slave_0: left promiscuous mode
[  217.893178][T20890] team_slave_1: left promiscuous mode
[  217.898701][T20890] geneve1: left promiscuous mode
[  217.904037][T20890] dummy0: left promiscuous mode
[  217.909615][T20890] wg2: left promiscuous mode
[  217.914211][T20890] wg2: left allmulticast mode
[  217.920728][T20890] vlan2: left allmulticast mode
[  217.925742][T20890] dummy0: left allmulticast mode
[  217.932032][T20890] team1: left promiscuous mode
[  217.936812][T20890] team1: left allmulticast mode
[  217.942149][T20890] team2: left promiscuous mode
[  217.946962][T20890] team2: left allmulticast mode
[  217.952352][T20890] ip6gre1: left allmulticast mode
[  217.957791][T20890] bond9: left promiscuous mode
[  217.962713][T20890] bond9: left allmulticast mode
[  218.022481][T19395] IPVS: starting estimator thread 0...
[  218.110130][T20899] IPVS: using max 2784 ests per chain, 139200 per kthread
[  218.207749][T20923] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5548'.
[  218.308161][T20939] netlink: 'syz.2.5551': attribute type 13 has an invalid length.
[  218.332506][T20939] 0ªî{X¹¦: refused to change device tx_queue_len
[  218.345596][T20939] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  218.361569][ T1037] lo speed is unknown, defaulting to 1000
[  218.367492][ T1037] syz2: Port: 1 Link ACTIVE
[  218.516710][T20961] netlink: 'syz.5.5557': attribute type 10 has an invalid length.
[  218.534985][T20961] bond0: (slave dummy0): Releasing backup interface
[  218.553660][T20961] netlink: 'syz.5.5557': attribute type 10 has an invalid length.
[  218.572030][T20961] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  218.681055][T20972] netlink: 'syz.4.5570': attribute type 1 has an invalid length.
[  218.704537][T20972] 8021q: adding VLAN 0 to HW filter on device bond4
[  218.733098][T21010] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5570'.
[  218.771350][T21010] bond4 (unregistering): Released all slaves
[  219.613212][   T29] kauditd_printk_skb: 316 callbacks suppressed
[  219.613237][   T29] audit: type=1326 audit(454.958:13154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21073 comm="syz.2.5575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2d16fd5ba7 code=0x7ffc0000
[  219.658554][   T29] audit: type=1326 audit(454.958:13155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21073 comm="syz.2.5575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2d16f7adb9 code=0x7ffc0000
[  219.681634][   T29] audit: type=1326 audit(454.958:13156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21073 comm="syz.2.5575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2d16fd5ba7 code=0x7ffc0000
[  219.704701][   T29] audit: type=1326 audit(454.958:13157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21073 comm="syz.2.5575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2d16f7adb9 code=0x7ffc0000
[  219.727689][   T29] audit: type=1326 audit(454.958:13158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21073 comm="syz.2.5575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  219.750654][   T29] audit: type=1326 audit(454.958:13159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21073 comm="syz.2.5575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  219.773685][   T29] audit: type=1326 audit(454.989:13160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21073 comm="syz.2.5575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  219.796600][   T29] audit: type=1326 audit(454.989:13161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21073 comm="syz.2.5575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  219.819569][   T29] audit: type=1326 audit(454.989:13162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21073 comm="syz.2.5575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  219.842660][   T29] audit: type=1326 audit(454.989:13163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21073 comm="syz.2.5575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  219.963267][T21083] netlink: 72 bytes leftover after parsing attributes in process `syz.2.5578'.
[  220.064119][T21092] netlink: 'syz.2.5583': attribute type 1 has an invalid length.
[  220.128662][T21092] 8021q: adding VLAN 0 to HW filter on device bond10
[  220.190684][T21134] bond10: (slave veth23): Enslaving as an active interface with a down link
[  220.245681][T21092] bridge6: entered promiscuous mode
[  220.250960][T21092] bridge6: entered allmulticast mode
[  220.271749][T21154] netlink: 14 bytes leftover after parsing attributes in process `syz.5.5590'.
[  220.278414][T21092] bond10: (slave bridge6): Enslaving as an active interface with a down link
[  220.288508][T21048] syz.4.5564 (21048) used greatest stack depth: 6408 bytes left
[  220.334751][T21154] hsr_slave_0: left promiscuous mode
[  220.342020][T21154] hsr_slave_1: left promiscuous mode
[  220.453634][T21176] bridge0: entered allmulticast mode
[  220.460908][T21174] syzkaller0: entered allmulticast mode
[  220.467196][T21176] bridge_slave_1: left allmulticast mode
[  220.473004][T21176] bridge_slave_1: left promiscuous mode
[  220.478874][T21176] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.488286][T21176] bridge_slave_0: left promiscuous mode
[  220.493965][T21176] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.503221][T21176] bridge0 (unregistering): left allmulticast mode
[  220.536636][T21174] syzkaller0 (unregistering): left allmulticast mode
[  220.682747][T21205] netlink: 'syz.1.5606': attribute type 1 has an invalid length.
[  220.707342][T21205] 8021q: adding VLAN 0 to HW filter on device bond6
[  220.720087][T21205] __nla_validate_parse: 1 callbacks suppressed
[  220.720099][T21205] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5606'.
[  220.737086][T21205] bond6 (unregistering): Released all slaves
[  220.803981][T21288] netlink: 14 bytes leftover after parsing attributes in process `syz.2.5608'.
[  220.813603][T21288] hsr_slave_0: left promiscuous mode
[  220.819607][T21288] hsr_slave_1: left promiscuous mode
[  221.006391][T21308] veth21: entered promiscuous mode
[  221.045566][T21308] lo speed is unknown, defaulting to 1000
[  221.051676][T21308] lo speed is unknown, defaulting to 1000
[  221.336772][T21362] tipc: New replicast peer: 255.255.255.83
[  221.342720][T21362] tipc: Enabled bearer <udp:£>, priority 10
[  221.586821][T21393] syzkaller0: entered allmulticast mode
[  221.609369][T21393] syzkaller0 (unregistering): left allmulticast mode
[  221.725832][T21400] netlink: 'syz.5.5635': attribute type 12 has an invalid length.
[  221.748783][T21411] netlink: 'syz.5.5638': attribute type 1 has an invalid length.
[  221.765640][T21411] 8021q: adding VLAN 0 to HW filter on device bond3
[  221.791209][T21411] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5638'.
[  221.804597][T21411] bond3 (unregistering): Released all slaves
[  221.848846][T21490] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5642'.
[  222.005669][T21516] netlink: 72 bytes leftover after parsing attributes in process `syz.4.5650'.
[  222.033451][T21519] batman_adv: batadv0: Adding interface: dummy0
[  222.039808][T21519] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.065218][T21519] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  222.100978][T21523] veth7: entered promiscuous mode
[  222.152714][T21523] lo speed is unknown, defaulting to 1000
[  222.159027][T21523] lo speed is unknown, defaulting to 1000
[  222.393837][T21621] netlink: 2028 bytes leftover after parsing attributes in process `syz.5.5663'.
[  222.403143][T21621] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5663'.
[  222.465812][T21625] ref_ctr increment failed for inode: 0x1766 offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff888109a8a840
[  222.477186][T21624] uprobe: syz.2.5667:21624 failed to unregister, leaking uprobe
[  222.645867][T21639] netlink: 14 bytes leftover after parsing attributes in process `syz.1.5673'.
[  222.655048][T21639] hsr_slave_0: left promiscuous mode
[  222.661030][T21639] hsr_slave_1: left promiscuous mode
[  222.920367][T21656] netlink: 'syz.1.5680': attribute type 1 has an invalid length.
[  222.933419][T21658] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5681'.
[  222.938277][T21656] 8021q: adding VLAN 0 to HW filter on device bond6
[  222.952077][T21658] bond0: (slave bridge0): Releasing backup interface
[  222.991308][T21656] bond6: (slave veth23): Enslaving as an active interface with a down link
[  223.008233][T21656] bridge0: entered promiscuous mode
[  223.013509][T21656] bridge0: entered allmulticast mode
[  223.021135][T21656] bond6: (slave bridge0): Enslaving as an active interface with a down link
[  223.047114][T21709] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5683'.
[  223.075421][T21713] loop4: detected capacity change from 0 to 512
[  223.091991][T21713] EXT4-fs warning (device loop4): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  223.107133][T21713] EXT4-fs (loop4): mount failed
[  223.119194][T21713] loop4: detected capacity change from 0 to 1024
[  223.126333][T21713] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  223.137390][T21713] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  223.148600][T21713] JBD2: no valid journal superblock found
[  223.154455][T21713] EXT4-fs (loop4): Could not load journal inode
[  223.209268][T21730] SELinux: failed to load policy
[  223.551035][T21763] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21763 comm=syz.5.5703
[  224.224898][T21807] loop4: detected capacity change from 0 to 128
[  224.236544][T21807] msdos: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ'
[  224.374873][T21814] netlink: 'syz.2.5724': attribute type 7 has an invalid length.
[  224.424008][   T29] kauditd_printk_skb: 202 callbacks suppressed
[  224.424024][   T29] audit: type=1400 audit(460.007:13365): avc:  denied  { bind } for  pid=21818 comm="syz.1.5725" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  224.424091][T21818] delete_channel: no stack
[  224.549229][   T29] audit: type=1400 audit(460.133:13366): avc:  denied  { mounton } for  pid=21838 comm="syz.2.5732" path="/file0" dev="ramfs" ino=55295 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  224.570829][   T29] audit: type=1400 audit(460.133:13367): avc:  denied  { mount } for  pid=21838 comm="syz.2.5732" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  224.687868][   T29] audit: type=1400 audit(460.259:13368): avc:  denied  { override_creds } for  pid=21848 comm="syz.2.5734" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  224.916472][T21874] syz_tun: entered allmulticast mode
[  224.985465][   T29] audit: type=1400 audit(460.595:13369): avc:  denied  { ioctl } for  pid=21885 comm="syz.1.5747" path="socket:[55754]" dev="sockfs" ino=55754 ioctlcmd=0x89f0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  225.046347][T21891] netlink: 'syz.6.5749': attribute type 21 has an invalid length.
[  225.360540][T21933] loop4: detected capacity change from 0 to 512
[  225.378872][T21933] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.5766: casefold flag without casefold feature
[  225.406523][T21933] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.5766: couldn't read orphan inode 15 (err -117)
[  225.428318][   T29] audit: type=1326 audit(461.057:13370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21938 comm="syz.1.5767" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  225.451519][   T29] audit: type=1326 audit(461.057:13371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21938 comm="syz.1.5767" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  225.474676][   T29] audit: type=1326 audit(461.057:13372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21938 comm="syz.1.5767" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  225.497735][   T29] audit: type=1326 audit(461.057:13373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21938 comm="syz.1.5767" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  225.520803][   T29] audit: type=1326 audit(461.057:13374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21938 comm="syz.1.5767" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fe1bdb2ebe9 code=0x7ffc0000
[  225.556766][T21930] lo speed is unknown, defaulting to 1000
[  225.557769][T21933] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.562709][T21930] lo speed is unknown, defaulting to 1000
[  225.701727][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.752063][T21968] ref_ctr increment failed for inode: 0x180e offset: 0xb ref_ctr_offset: 0x82 of mm: 0xffff888104c1e1c0
[  225.775473][T21968] ref_ctr increment failed for inode: 0x180e offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff888104c1e1c0
[  225.788096][T21966] uprobe: syz.2.5772:21966 failed to unregister, leaking uprobe
[  225.852088][T21966] uprobe: syz.2.5772:21966 failed to unregister, leaking uprobe
[  226.174914][T22010] loop4: detected capacity change from 0 to 1024
[  226.183139][T22010] EXT4-fs: Ignoring removed nomblk_io_submit option
[  226.224628][T22010] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.288880][T22010] __nla_validate_parse: 4 callbacks suppressed
[  226.288967][T22010] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5785'.
[  226.324440][T19393] IPVS: starting estimator thread 0...
[  226.334639][T22029] netlink: 'syz.6.5787': attribute type 10 has an invalid length.
[  226.342492][T22029] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5787'.
[  226.357367][T22031] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5785'.
[  226.411572][T22030] IPVS: using max 2736 ests per chain, 136800 per kthread
[  226.413051][T22037] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  226.429029][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.141909][T22093] vlan0: entered allmulticast mode
[  227.148519][T22093] dummy0: entered allmulticast mode
[  227.240572][T22101] blktrace: Concurrent blktraces are not allowed on loop13
[  227.475582][T22115] netlink: 96 bytes leftover after parsing attributes in process `syz.1.5819'.
[  227.579494][T22122] netlink: 96 bytes leftover after parsing attributes in process `syz.1.5824'.
[  227.869795][T22156] blktrace: Concurrent blktraces are not allowed on loop3
[  229.099679][T22251] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5871'.
[  229.181558][T22257] tipc: Started in network mode
[  229.186615][T22257] tipc: Node identity ac14140f, cluster identity 4711
[  229.223764][T22257] tipc: New replicast peer: 255.255.255.255
[  229.229828][T22257] tipc: Enabled bearer <udp:syz2>, priority 10
[  229.331933][T22276] loop4: detected capacity change from 0 to 164
[  229.753135][T22301] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5891'.
[  229.841395][   T29] kauditd_printk_skb: 201 callbacks suppressed
[  229.841454][   T29] audit: type=1400 audit(465.697:13576): avc:  denied  { map } for  pid=22306 comm="syz.6.5893" path="socket:[57131]" dev="sockfs" ino=57131 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  230.280947][   T29] audit: type=1326 audit(466.149:13577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22327 comm="syz.5.5901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  230.304639][   T29] audit: type=1326 audit(466.149:13578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22327 comm="syz.5.5901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  230.327734][   T29] audit: type=1326 audit(466.149:13579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22327 comm="syz.5.5901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  230.350761][   T29] audit: type=1326 audit(466.159:13580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22327 comm="syz.5.5901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  230.373725][   T29] audit: type=1326 audit(466.159:13581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22327 comm="syz.5.5901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  230.396861][   T29] audit: type=1326 audit(466.159:13582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22327 comm="syz.5.5901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  230.423884][T19383] tipc: Node number set to 2886997007
[  230.482643][   T29] audit: type=1326 audit(466.159:13583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22327 comm="syz.5.5901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  230.506665][   T29] audit: type=1326 audit(466.159:13584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22327 comm="syz.5.5901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  230.530397][   T29] audit: type=1326 audit(466.159:13585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22327 comm="syz.5.5901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  230.870105][T22351] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5912'.
[  230.885431][T22351] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5912'.
[  231.548537][T22388] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  231.578672][T22390] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5928'.
[  231.737505][T22392] lo speed is unknown, defaulting to 1000
[  231.753745][T22392] lo speed is unknown, defaulting to 1000
[  232.125691][T22435] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5936'.
[  232.176356][T22435] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5936'.
[  232.198103][T22442] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=22442 comm=syz.5.5939
[  232.400832][T22458] lo speed is unknown, defaulting to 1000
[  232.407183][T22458] lo speed is unknown, defaulting to 1000
[  232.442501][T22476] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  232.682990][T22499] vlan0: entered allmulticast mode
[  232.946618][T22512] netlink: 'syz.4.5957': attribute type 12 has an invalid length.
[  232.954466][T22512] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5957'.
[  232.985715][ T3730] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  232.994354][ T3730] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  233.002753][T22512] netlink: 'syz.4.5957': attribute type 12 has an invalid length.
[  233.010628][T22512] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5957'.
[  233.038917][ T3730] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  233.075986][ T3730] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  233.224895][T22549] loop4: detected capacity change from 0 to 1024
[  233.246942][T22549] ext4: Unknown parameter 'uid<00000000000000000000'
[  233.442530][T22585] loop4: detected capacity change from 0 to 1024
[  233.449247][T22585] EXT4-fs: Ignoring removed orlov option
[  233.457769][T22585] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.562747][T22591] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5982'.
[  233.769347][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.871746][T22609] netlink: 'syz.4.5989': attribute type 1 has an invalid length.
[  233.905342][T22609] 8021q: adding VLAN 0 to HW filter on device bond4
[  233.940869][T22609] bond4: (slave gretap0): making interface the new active one
[  233.950831][T22609] bond4: (slave gretap0): Enslaving as an active interface with an up link
[  233.979207][T22609] vlan0: entered allmulticast mode
[  233.984426][T22609] bond4: entered allmulticast mode
[  233.989615][T22609] gretap0: entered allmulticast mode
[  233.996804][T22609] bond4: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  234.114963][T22663] netlink: 'syz.1.5994': attribute type 9 has an invalid length.
[  234.174667][T22673] loop4: detected capacity change from 0 to 1024
[  234.190230][T22673] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  234.239937][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.613129][   T29] kauditd_printk_skb: 231 callbacks suppressed
[  234.613142][   T29] audit: type=1326 audit(470.705:13817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22707 comm="syz.6.6012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0f5bdb5ba7 code=0x7ffc0000
[  234.660167][   T29] audit: type=1326 audit(470.736:13818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22707 comm="syz.6.6012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0f5bd5adb9 code=0x7ffc0000
[  234.683157][   T29] audit: type=1326 audit(470.736:13819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22707 comm="syz.6.6012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0f5bdb5ba7 code=0x7ffc0000
[  234.706165][   T29] audit: type=1326 audit(470.736:13820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22707 comm="syz.6.6012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0f5bd5adb9 code=0x7ffc0000
[  234.729307][   T29] audit: type=1326 audit(470.736:13821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22707 comm="syz.6.6012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  234.752318][   T29] audit: type=1326 audit(470.747:13822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22707 comm="syz.6.6012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0f5bdb5ba7 code=0x7ffc0000
[  234.775259][   T29] audit: type=1326 audit(470.747:13823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22707 comm="syz.6.6012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0f5bd5adb9 code=0x7ffc0000
[  234.798205][   T29] audit: type=1326 audit(470.747:13824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22707 comm="syz.6.6012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f0f5bdbebe9 code=0x7ffc0000
[  234.830531][   T29] audit: type=1326 audit(470.757:13825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22707 comm="syz.6.6012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0f5bdb5ba7 code=0x7ffc0000
[  234.853554][   T29] audit: type=1326 audit(470.757:13826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22707 comm="syz.6.6012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0f5bd5adb9 code=0x7ffc0000
[  235.294346][T22764] netlink: 'syz.5.6027': attribute type 1 has an invalid length.
[  235.303401][T22766] netlink: 'syz.4.6033': attribute type 10 has an invalid length.
[  235.312818][T22766] 
: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  235.359472][T22770] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6027'.
[  235.393203][T22764] 8021q: adding VLAN 0 to HW filter on device bond4
[  235.407432][T22770] bond4 (unregistering): Released all slaves
[  235.485620][T22844] netlink: 'syz.5.6038': attribute type 1 has an invalid length.
[  235.493506][T22844] netlink: 'syz.5.6038': attribute type 4 has an invalid length.
[  235.501238][T22844] netlink: 9462 bytes leftover after parsing attributes in process `syz.5.6038'.
[  235.566103][T22852] netlink: 'syz.5.6038': attribute type 1 has an invalid length.
[  235.573851][T22852] netlink: 'syz.5.6038': attribute type 4 has an invalid length.
[  235.581648][T22852] netlink: 9462 bytes leftover after parsing attributes in process `syz.5.6038'.
[  235.588263][T22846] lo speed is unknown, defaulting to 1000
[  235.600675][T22846] lo speed is unknown, defaulting to 1000
[  235.699567][T22879] $Hÿ: (slave team0): Releasing backup interface
[  235.724693][T22879] team0: Port device dummy0 removed
[  235.740132][T22879] $Hÿ: (slave bond_slave_0): Releasing backup interface
[  235.757781][T22879] $Hÿ: (slave bond_slave_1): Releasing backup interface
[  235.795127][T22879] team0: Port device team_slave_0 removed
[  235.810040][T22879] team0: Port device team_slave_1 removed
[  235.830026][T22879] team0: Port device geneve1 removed
[  235.840709][T22879] bond1: (slave veth5): Releasing active interface
[  235.853251][T22879] bond9: (slave veth21): Releasing active interface
[  235.865534][T22879] bond10: (slave veth23): Releasing active interface
[  235.872348][T22879] bond10: (slave veth23): the permanent HWaddr of slave - 62:24:4a:af:20:31 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  235.897684][T22879] bond10: (slave bridge6): Releasing active interface
[  235.920747][T22883] wg2: left promiscuous mode
[  235.925391][T22883] wg2: left allmulticast mode
[  236.136725][T22900] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6051'.
[  236.431920][T22946] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  236.500012][T22952] __nla_validate_parse: 1 callbacks suppressed
[  236.500028][T22952] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6067'.
[  236.586214][T22966] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6073'.
[  236.674478][T22982] team0: Port device dummy0 removed
[  236.747727][T22998] loop4: detected capacity change from 0 to 128
[  236.755858][T22998] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  236.785355][T22998] loop4: detected capacity change from 128 to 0
[  236.810680][    C1] I/O error, dev loop4, sector 8 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[  236.820358][ T3302] EXT4-fs warning (device loop4): htree_dirblock_to_tree:1051: inode #2: lblock 0: comm syz-executor: error -5 reading directory block
[  236.886045][    C0] I/O error, dev loop4, sector 70 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  236.895790][    C0] I/O error, dev loop4, sector 72 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[  236.906283][ T3731] EXT4-fs error (device loop4): __ext4_get_inode_loc_noinmem:4984: inode #12: block 36: comm kworker/u8:34: unable to read itable block
[  236.923079][    C0] I/O error, dev loop4, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  236.932950][    C0] I/O error, dev loop4, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  236.942422][    C0] Buffer I/O error on dev loop4, logical block 1, lost sync page write
[  236.950973][ T3731] EXT4-fs (loop4): I/O error while writing superblock
[  236.961682][ T6518] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  236.984825][    C1] I/O error, dev loop4, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  236.994353][    C1] I/O error, dev loop4, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  237.003822][    C1] Buffer I/O error on dev loop4, logical block 1, lost sync page write
[  237.013213][ T6518] EXT4-fs (loop4): I/O error while writing superblock
[  237.091764][   T41] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  237.101602][   T41] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  237.158583][   T41] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  237.168542][   T41] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  237.243533][   T41] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  237.253339][   T41] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  237.309766][   T41] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  237.319609][   T41] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  237.337133][T23033] tipc: New replicast peer: 255.255.255.254
[  237.343312][T23033] tipc: Enabled bearer <udp:syz2>, priority 10
[  237.401494][T23051] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6098'.
[  237.412607][T23011] lo speed is unknown, defaulting to 1000
[  237.416278][T23051] dummy0: entered promiscuous mode
[  237.439013][T23011] lo speed is unknown, defaulting to 1000
[  237.506469][   T41] bond4 (unregistering): (slave gretap0): Releasing active interface
[  237.523795][   T41] gretap0 (unregistering): left allmulticast mode
[  237.553166][   T41] bridge0 (unregistering): left allmulticast mode
[  237.786255][   T41] bond3 (unregistering): (slave bridge6): Removing an active aggregator
[  237.807082][   T41] bond3 (unregistering): (slave bridge6): Releasing backup interface
[  237.816116][   T41] bridge6 (unregistering): left promiscuous mode
[  237.822538][   T41] bridge6 (unregistering): left allmulticast mode
[  237.892145][   T41] 
 (unregistering): (slave bridge_slave_1): Releasing backup interface
[  237.901717][   T41] 
 (unregistering): Released all slaves
[  237.911055][   T41] bond1 (unregistering): Released all slaves
[  237.920002][   T41] bond2 (unregistering): Released all slaves
[  237.928540][   T41] bond0 (unregistering): Released all slaves
[  237.936758][   T41] bond3 (unregistering): Released all slaves
[  237.946327][   T41] bond4 (unregistering): Released all slaves
[  237.966395][T23094] validate_nla: 3 callbacks suppressed
[  237.966422][T23094] netlink: 'syz.1.6106': attribute type 3 has an invalid length.
[  237.979679][T23094] netlink: 'syz.1.6106': attribute type 3 has an invalid length.
[  238.012585][   T41] tipc: Disabling bearer <eth:team0>
[  238.021797][   T41] tipc: Left network mode
[  238.063059][T23131] netlink: 'syz.2.6117': attribute type 1 has an invalid length.
[  238.074880][   T41] hsr_slave_0: left promiscuous mode
[  238.080482][   T41] hsr_slave_1: left promiscuous mode
[  238.086520][   T41] batman_adv: batadv0: Removing interface: veth1_vlan
[  238.093774][   T41] batman_adv: batadv0: Removing interface: dummy0
[  238.110803][   T41] pim6reg (unregistering): left allmulticast mode
[  238.146714][ T3749] smc: removing ib device syz!
[  238.171979][T23131] 8021q: adding VLAN 0 to HW filter on device bond11
[  238.203750][T23140] bond_slave_1: mtu less than device minimum
[  238.230780][T23142] bond11: (slave veth25): Enslaving as an active interface with a down link
[  238.263971][T23228] ref_ctr increment failed for inode: 0xe5b offset: 0xb ref_ctr_offset: 0x82 of mm: 0xffff888109a8e780
[  238.286602][T23178] bond11: (slave dummy0): making interface the new active one
[  238.307044][T23178] dummy0: entered promiscuous mode
[  238.312931][T23228] ref_ctr increment failed for inode: 0xe5b offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff888109a8e780
[  238.332424][T23178] bond11: (slave dummy0): Enslaving as an active interface with an up link
[  238.366048][T23227] uprobe: syz.5.6122:23227 failed to unregister, leaking uprobe
[  238.402251][   T41] IPVS: stop unused estimator thread 0...
[  238.448086][T23011] chnl_net:caif_netlink_parms(): no params data found
[  238.457382][T23227] uprobe: syz.5.6122:23227 failed to unregister, leaking uprobe
[  238.534889][T23011] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.542215][T23011] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.575876][T23011] bridge_slave_0: entered allmulticast mode
[  238.591697][T23011] bridge_slave_0: entered promiscuous mode
[  238.625744][T23011] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.632994][T23011] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.653373][T23011] bridge_slave_1: entered allmulticast mode
[  238.665366][T23011] bridge_slave_1: entered promiscuous mode
[  238.699239][T23011] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  238.724905][T23011] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  238.775735][T23011] team0: Port device team_slave_0 added
[  238.788117][T23011] team0: Port device team_slave_1 added
[  238.813688][T23011] batman_adv: batadv0: Adding interface: batadv_slave_0
[  238.820769][T23011] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.846823][T23011] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  238.858895][T23011] batman_adv: batadv0: Adding interface: batadv_slave_1
[  238.865893][T23011] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.891845][T23011] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  239.013981][T23460] lo speed is unknown, defaulting to 1000
[  239.022235][T23011] hsr_slave_0: entered promiscuous mode
[  239.035563][T23011] hsr_slave_1: entered promiscuous mode
[  239.063345][T23492] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  239.072507][T23460] lo speed is unknown, defaulting to 1000
[  239.188156][T23011] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  239.198241][T23011] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  239.224987][T23011] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  239.237818][T23011] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  239.311721][T23602] dvmrp0: entered allmulticast mode
[  239.347729][T23011] 8021q: adding VLAN 0 to HW filter on device bond0
[  239.369958][T23011] 8021q: adding VLAN 0 to HW filter on device team0
[  239.415776][ T3731] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.422929][ T3731] bridge0: port 1(bridge_slave_0) entered forwarding state
[  239.461551][   T29] kauditd_printk_skb: 211 callbacks suppressed
[  239.461566][   T29] audit: type=1326 audit(475.786:14038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23611 comm="syz.2.6153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  239.490806][   T29] audit: type=1326 audit(475.786:14039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23611 comm="syz.2.6153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  239.516322][   T29] audit: type=1326 audit(475.849:14040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23611 comm="syz.2.6153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  239.517879][ T3731] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.539497][   T29] audit: type=1326 audit(475.849:14041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23611 comm="syz.2.6153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  239.546427][ T3731] bridge0: port 2(bridge_slave_1) entered forwarding state
[  239.572910][T23616] netlink: 'syz.5.6154': attribute type 1 has an invalid length.
[  239.584456][T23616] netlink: 161700 bytes leftover after parsing attributes in process `syz.5.6154'.
[  239.633506][   T29] audit: type=1326 audit(475.912:14042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23611 comm="syz.2.6153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  239.656655][   T29] audit: type=1326 audit(475.933:14043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23611 comm="syz.2.6153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2d16fdec23 code=0x7ffc0000
[  239.660700][T23011] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  239.679490][   T29] audit: type=1326 audit(475.933:14044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23611 comm="syz.2.6153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2d16fdec23 code=0x7ffc0000
[  239.679529][   T29] audit: type=1326 audit(475.933:14045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23611 comm="syz.2.6153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  239.689854][T23011] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  239.746057][   T29] audit: type=1326 audit(475.933:14046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23611 comm="syz.2.6153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  239.769110][   T29] audit: type=1326 audit(475.954:14047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23611 comm="syz.2.6153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d16fdebe9 code=0x7ffc0000
[  239.829027][T23011] 8021q: adding VLAN 0 to HW filter on device batadv0
[  239.859654][T23631] netlink: 'syz.2.6157': attribute type 7 has an invalid length.
[  239.867499][T23631] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6157'.
[  239.982658][T23653] dvmrp0: entered allmulticast mode
[  240.016251][T23011] veth0_vlan: entered promiscuous mode
[  240.028074][T23011] veth1_vlan: entered promiscuous mode
[  240.053740][T23011] veth0_macvtap: entered promiscuous mode
[  240.080757][T23011] veth1_macvtap: entered promiscuous mode
[  240.087207][T23659] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6162'.
[  240.094226][T23011] batman_adv: batadv0: Interface activated: batadv_slave_0
[  240.118114][T23011] batman_adv: batadv0: Interface activated: batadv_slave_1
[  240.149574][ T3754] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  240.163332][ T3754] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  240.186913][ T3754] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  240.202321][T23662] tipc: Enabling of bearer <udp:£> rejected, already enabled
[  240.212282][ T3754] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  240.307813][T23656] lo speed is unknown, defaulting to 1000
[  240.326665][T23656] lo speed is unknown, defaulting to 1000
[  240.375577][T23682] ------------[ cut here ]------------
[  240.381091][T23682] verifier bug: REG INVARIANTS VIOLATION (false_reg1): range bounds violation u64=[0x0, 0x1] s64=[0x0, 0x1] u32=[0x1, 0x0] s32=[0x0, 0x1] var_off=(0x0, 0x1)(1)
[  240.397434][T23682] WARNING: CPU: 0 PID: 23682 at kernel/bpf/verifier.c:2728 reg_bounds_sanity_check+0x673/0x680
[  240.407847][T23682] Modules linked in:
[  240.411740][T23682] CPU: 0 UID: 0 PID: 23682 Comm: syz.2.6176 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  240.421768][T23682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  240.431862][T23682] RIP: 0010:reg_bounds_sanity_check+0x673/0x680
[  240.438333][T23682] Code: 7c 24 18 41 ff 74 24 20 55 41 56 4d 89 ee 53 48 8b 5c 24 30 ff 74 24 40 ff 74 24 50 ff 74 24 30 e8 02 80 ba ff 48 83 c4 38 90 <0f> 0b 90 90 e9 02 fb ff ff 0f 1f 40 00 90 90 90 90 90 90 90 90 90
[  240.457990][T23682] RSP: 0018:ffffc900027db440 EFLAGS: 00010292
[  240.464148][T23682] RAX: 4c163f7ff9d42200 RBX: ffff88811938c840 RCX: 0000000000080000
[  240.472142][T23682] RDX: ffffc90003ef0000 RSI: 000000000000447c RDI: 000000000000447d
[  240.480141][T23682] RBP: 0000000000000000 R08: 0001c900027db27f R09: 0000000000000000
[  240.488139][T23682] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff88811938c800
[  240.496152][T23682] R13: ffff88814e9c8000 R14: ffff88814e9c8000 R15: ffff88811938c838
[  240.504169][T23682] FS:  00007f2d15a3f6c0(0000) GS:ffff8882aee43000(0000) knlGS:0000000000000000
[  240.513122][T23682] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  240.519720][T23682] CR2: 00007f2d15a3ef98 CR3: 0000000126c0a000 CR4: 00000000003506f0
[  240.527772][T23682] DR0: 00000000000000fd DR1: 0000200000000300 DR2: 0000000000000000
[  240.535759][T23682] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  240.543747][T23682] Call Trace:
[  240.547019][T23682]  <TASK>
[  240.549979][T23682]  reg_set_min_max+0x215/0x260
[  240.554758][T23682]  check_cond_jmp_op+0x1080/0x16e0
[  240.559923][T23682]  do_check+0x332a/0x7a10
[  240.564270][T23682]  ? __rcu_read_unlock+0x4f/0x70
[  240.569360][T23682]  ? __rcu_read_unlock+0x4f/0x70
[  240.574303][T23682]  ? __pfx_verbose+0x10/0x10
[  240.578999][T23682]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  240.584460][T23682]  do_check_common+0xc3a/0x12a0
[  240.589439][T23682]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  240.594913][T23682]  bpf_check+0x942b/0xd9e0
[  240.599357][T23682]  ? __rcu_read_unlock+0x4f/0x70
[  240.604381][T23682]  ? __alloc_frozen_pages_noprof+0x188/0x360
[  240.610412][T23682]  ? alloc_pages_bulk_noprof+0x4b8/0x540
[  240.616157][T23682]  ? __vmap_pages_range_noflush+0xbc4/0xcf0
[  240.622094][T23682]  ? pcpu_block_update+0x3e/0x3b0
[  240.627170][T23682]  ? pcpu_block_update+0x24e/0x3b0
[  240.632294][T23682]  ? _find_next_zero_bit+0x64/0xa0
[  240.637428][T23682]  ? pcpu_block_refresh_hint+0x157/0x170
[  240.643175][T23682]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[  240.649256][T23682]  ? css_rstat_updated+0xb7/0x240
[  240.654309][T23682]  ? __rcu_read_unlock+0x4f/0x70
[  240.659254][T23682]  ? pcpu_memcg_post_alloc_hook+0xf1/0x150
[  240.665165][T23682]  ? should_fail_ex+0x30/0x280
[  240.669940][T23682]  ? selinux_bpf_prog_load+0x36/0xf0
[  240.675298][T23682]  ? should_failslab+0x8c/0xb0
[  240.680133][T23682]  ? __kmalloc_cache_noprof+0x189/0x320
[  240.685719][T23682]  ? selinux_bpf_prog_load+0xbf/0xf0
[  240.691126][T23682]  ? security_bpf_prog_load+0x2c/0xa0
[  240.696507][T23682]  bpf_prog_load+0xedd/0x1070
[  240.701241][T23682]  ? security_bpf+0x2b/0x90
[  240.705802][T23682]  __sys_bpf+0x462/0x7b0
[  240.710336][T23682]  __x64_sys_bpf+0x41/0x50
[  240.714764][T23682]  x64_sys_call+0x2aea/0x2ff0
[  240.719513][T23682]  do_syscall_64+0xd2/0x200
[  240.724021][T23682]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  240.730114][T23682]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  240.735835][T23682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.741768][T23682] RIP: 0033:0x7f2d16fdebe9
[  240.746230][T23682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.765900][T23682] RSP: 002b:00007f2d15a3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  240.774335][T23682] RAX: ffffffffffffffda RBX: 00007f2d17215fa0 RCX: 00007f2d16fdebe9
[  240.782330][T23682] RDX: 000000000000002d RSI: 00002000002a0fb8 RDI: 0000000000000005
[  240.790322][T23682] RBP: 00007f2d17061e19 R08: 0000000000000000 R09: 0000000000000000
[  240.798364][T23682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  240.806369][T23682] R13: 00007f2d17216038 R14: 00007f2d17215fa0 R15: 00007ffd4903e328
[  240.814341][T23682]  </TASK>
[  240.817385][T23682] ---[ end trace 0000000000000000 ]---
[  240.859083][T23714] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6170'.
[  241.036332][T23747] lo speed is unknown, defaulting to 1000
[  241.042434][T23747] lo speed is unknown, defaulting to 1000
[  241.198892][T23794] netlink: 96 bytes leftover after parsing attributes in process `syz.5.6190'.
[  241.667358][T23818] syzkaller1: entered promiscuous mode
[  241.673044][T23818] syzkaller1: entered allmulticast mode
[  242.190100][T23830] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6211'.
[  242.317553][T23844] netlink: 'syz.6.6205': attribute type 10 has an invalid length.
[  242.325486][T23844] netlink: 40 bytes leftover after parsing attributes in process `syz.6.6205'.
[  243.281562][T23869] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6215'.
[  243.628019][T23909] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6228'.
[  243.705031][T23921] lo speed is unknown, defaulting to 1000
[  243.711754][T23921] lo speed is unknown, defaulting to 1000
[  243.938043][T23959] netlink: 64 bytes leftover after parsing attributes in process `syz.6.6240'.
[  244.221771][T23996] netlink: 'syz.1.6249': attribute type 10 has an invalid length.
[  244.244422][T23996] dummy0: left promiscuous mode
[  244.259622][T23996] team0: Port device dummy0 added
[  244.272861][T24004] netlink: 'syz.1.6249': attribute type 10 has an invalid length.
[  244.295106][T24004] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  244.310769][T24007] netlink: 'syz.7.6251': attribute type 1 has an invalid length.
[  244.323282][T24004] team0: Failed to send options change via netlink (err -105)
[  244.332788][T24004] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  244.343102][T24004] team0: Port device dummy0 removed
[  244.391533][T24007] 8021q: VLANs not supported on wg2
[  244.479962][T24030] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.531526][T24030] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.600039][T24030] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.666171][T24030] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.729690][   T41] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.764843][   T41] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.777061][ T3762] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.785608][ T3762] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  244.840965][   T29] kauditd_printk_skb: 84 callbacks suppressed
[  244.840981][   T29] audit: type=1400 audit(481.434:14132): avc:  denied  { write } for  pid=24096 comm="syz.7.6259" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  244.891260][T24105] netlink: 12 bytes leftover after parsing attributes in process `syz.7.6259'.
[  244.997846][T24134] netlink: 20 bytes leftover after parsing attributes in process `syz.7.6263'.
[  245.013279][T24139] netlink: 'syz.6.6264': attribute type 1 has an invalid length.
[  245.029709][T24139] 8021q: adding VLAN 0 to HW filter on device bond6
[  245.048717][T24139] bond6: (slave gretap1): making interface the new active one
[  245.057249][T24139] bond6: (slave gretap1): Enslaving as an active interface with an up link
[  245.074593][T24139] vlan0: entered allmulticast mode
[  245.079757][T24139] bond6: entered allmulticast mode
[  245.084942][T24139] gretap1: entered allmulticast mode
[  245.097709][T24139] bond6: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  245.178305][T24195] lo speed is unknown, defaulting to 1000
[  245.184366][T24195] lo speed is unknown, defaulting to 1000
[  245.328843][T24230] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  245.397964][T24235] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6274'.
[  245.430762][T24057] 9pnet_fd: p9_fd_create_tcp (24057): problem connecting socket to 127.0.0.1
[  245.445400][T24237] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  246.076513][T24260] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  246.078080][ T1037] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=1037 comm=kworker/1:2
[  246.099432][T24259] 9pnet: p9_errstr2errno: server reported unknown error 18446744073
[  246.124305][   T29] audit: type=1326 audit(482.788:14133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24265 comm="syz.5.6283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  246.147525][   T29] audit: type=1326 audit(482.788:14134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24265 comm="syz.5.6283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  246.171575][T24266] netlink: 'gtp': attribute type 30 has an invalid length.
[  246.183171][   T29] audit: type=1326 audit(482.788:14135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24265 comm="syz.5.6283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  246.206108][   T29] audit: type=1326 audit(482.788:14136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24265 comm="syz.5.6283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  246.229113][   T29] audit: type=1326 audit(482.788:14137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24265 comm="syz.5.6283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  246.252078][   T29] audit: type=1326 audit(482.788:14138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24265 comm="syz.5.6283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  246.275090][   T29] audit: type=1326 audit(482.788:14139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24265 comm="syz.5.6283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  246.298072][   T29] audit: type=1326 audit(482.788:14140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24265 comm="syz.5.6283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  246.321024][   T29] audit: type=1326 audit(482.788:14141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24265 comm="syz.5.6283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0a606ebe9 code=0x7ffc0000
[  246.411603][T24284] netlink: 40 bytes leftover after parsing attributes in process `syz.6.6290'.
[  246.453315][T24288] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  246.509271][T24302] ref_ctr increment failed for inode: 0x1b9f offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff888104c18b80
[  246.521785][T24301] uprobe: syz.1.6299:24301 failed to unregister, leaking uprobe
[  246.642527][T24313] tls_set_device_offload: netdev not found
[  246.653240][T24315] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6303'.
[  246.728562][T24323] rdma_rxe: rxe_newlink: failed to add ipvlan1
[  246.827129][T19400] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=19400 comm=kworker/0:16
[  246.840580][T24334] 9pnet: p9_errstr2errno: server reported unknown error 18446744073
[  247.135476][T24349] rdma_rxe: rxe_newlink: failed to add ipvlan1
[  247.324554][T24374] netlink: 'syz.6.6328': attribute type 21 has an invalid length.
[  247.332460][T24374] netlink: 128 bytes leftover after parsing attributes in process `syz.6.6328'.
[  247.349176][T24381] lo speed is unknown, defaulting to 1000
[  247.356550][T24374] netlink: 'syz.6.6328': attribute type 5 has an invalid length.
[  247.364392][T24374] netlink: 'syz.6.6328': attribute type 6 has an invalid length.
[  247.372172][T24374] netlink: 3 bytes leftover after parsing attributes in process `syz.6.6328'.
[  247.383095][T24381] lo speed is unknown, defaulting to 1000
[  247.529324][T24413] netlink: 'syz.2.6332': attribute type 1 has an invalid length.
[  247.547550][T24413] 8021q: adding VLAN 0 to HW filter on device bond12
[  247.592188][T24413] bond12: (slave gretap0): making interface the new active one
[  247.645977][T24413] bond12: (slave gretap0): Enslaving as an active interface with an up link
[  247.656064][T24412] netlink: 'gtp': attribute type 30 has an invalid length.
[  247.696844][T24449] vlan0: entered allmulticast mode
[  247.702019][T24449] bond12: entered allmulticast mode
[  247.707211][T24449] gretap0: entered allmulticast mode
[  247.730706][T24449] bond12: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  247.973275][T24476] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6339'.
[  248.016467][T24476] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6339'.
[  248.466809][T24511] 9pnet: p9_errstr2errno: server reported unknown error 
[  248.565725][T24522] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24522 comm=syz.7.6358
[  249.130286][ T3764] dummy0: left promiscuous mode
[  249.296654][T24548] netlink: 'syz.2.6368': attribute type 1 has an invalid length.
[  249.310499][T24548] 8021q: adding VLAN 0 to HW filter on device bond13
[  249.324622][T24548] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6368'.
[  249.350693][T24548] bond13 (unregistering): Released all slaves
[  249.474225][T24621] 9pnet_fd: Insufficient options for proto=fd
[  249.553109][T24628] lo speed is unknown, defaulting to 1000
[  249.569809][T24628] lo speed is unknown, defaulting to 1000
[  249.942738][T24671] loop7: detected capacity change from 0 to 512
[  249.951205][T24671] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  249.972655][T24671] EXT4-fs (loop7): 1 truncate cleaned up
[  249.990342][T24671] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  250.168665][T24686] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6387'.
[  250.288709][T24691] lo speed is unknown, defaulting to 1000
[  250.319303][T24691] lo speed is unknown, defaulting to 1000
[  250.411442][T24715] netlink: 'syz.5.6389': attribute type 6 has an invalid length.
[  250.434878][T24717] bond0: (slave dummy0): Releasing backup interface
[  250.443804][T24717] bridge_slave_0: left allmulticast mode
[  250.449614][T24717] bridge_slave_0: left promiscuous mode
[  250.455324][T24717] bridge0: port 1(bridge_slave_0) entered disabled state
[  250.467118][T24717] bridge_slave_1: left allmulticast mode
[  250.472828][T24717] bridge_slave_1: left promiscuous mode
[  250.478597][T24717] bridge0: port 2(bridge_slave_1) entered disabled state
[  250.498590][T24717] bond0: (slave bond_slave_0): Releasing backup interface
[  250.522897][T24717] bond0: (slave bond_slave_1): Releasing backup interface
[  250.533351][T24717] bond2: (slave veth1): Releasing active interface
[  250.665458][T24671] ==================================================================
[  250.673574][T24671] BUG: KCSAN: data-race in xas_find_marked / xas_set_mark
[  250.680697][T24671] 
[  250.683009][T24671] write to 0xffff888119a076ac of 4 bytes by task 24682 on cpu 0:
[  250.690716][T24671]  xas_set_mark+0x12b/0x140
[  250.695225][T24671]  __folio_start_writeback+0x1dd/0x440
[  250.700689][T24671]  ext4_bio_write_folio+0x5ad/0x9f0
[  250.705894][T24671]  mpage_process_page_bufs+0x4a1/0x620
[  250.711361][T24671]  mpage_prepare_extent_to_map+0x786/0xc00
[  250.717169][T24671]  ext4_do_writepages+0xa05/0x2750
[  250.722307][T24671]  ext4_writepages+0x176/0x300
[  250.727062][T24671]  do_writepages+0x1c6/0x310
[  250.731644][T24671]  filemap_write_and_wait_range+0x144/0x340
[  250.737539][T24671]  filemap_invalidate_pages+0xa4/0x1a0
[  250.742999][T24671]  kiocb_invalidate_pages+0x6e/0x80
[  250.748205][T24671]  __iomap_dio_rw+0x5d4/0x1250
[  250.752970][T24671]  iomap_dio_rw+0x40/0x90
[  250.757305][T24671]  ext4_file_write_iter+0xad9/0xf00
[  250.762514][T24671]  iter_file_splice_write+0x666/0xa60
[  250.767888][T24671]  direct_splice_actor+0x156/0x2a0
[  250.772999][T24671]  splice_direct_to_actor+0x312/0x680
[  250.778367][T24671]  do_splice_direct+0xda/0x150
[  250.783125][T24671]  do_sendfile+0x380/0x650
[  250.787556][T24671]  __x64_sys_sendfile64+0x105/0x150
[  250.792756][T24671]  x64_sys_call+0x2bb0/0x2ff0
[  250.797436][T24671]  do_syscall_64+0xd2/0x200
[  250.801944][T24671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.807837][T24671] 
[  250.810151][T24671] read to 0xffff888119a076ac of 4 bytes by task 24671 on cpu 1:
[  250.817774][T24671]  xas_find_marked+0x5dc/0x620
[  250.822550][T24671]  find_get_entry+0x5d/0x380
[  250.827138][T24671]  filemap_get_folios_tag+0x92/0x210
[  250.832425][T24671]  mpage_prepare_extent_to_map+0x320/0xc00
[  250.838236][T24671]  ext4_do_writepages+0xa05/0x2750
[  250.843351][T24671]  ext4_writepages+0x176/0x300
[  250.848116][T24671]  do_writepages+0x1c6/0x310
[  250.852708][T24671]  file_write_and_wait_range+0x156/0x2c0
[  250.858353][T24671]  generic_buffers_fsync_noflush+0x45/0x120
[  250.864249][T24671]  ext4_sync_file+0x1ab/0x690
[  250.868920][T24671]  vfs_fsync_range+0x10a/0x130
[  250.873696][T24671]  ext4_buffered_write_iter+0x34f/0x3c0
[  250.879252][T24671]  ext4_file_write_iter+0xdbf/0xf00
[  250.884458][T24671]  iter_file_splice_write+0x666/0xa60
[  250.889819][T24671]  direct_splice_actor+0x156/0x2a0
[  250.894929][T24671]  splice_direct_to_actor+0x312/0x680
[  250.900303][T24671]  do_splice_direct+0xda/0x150
[  250.905064][T24671]  do_sendfile+0x380/0x650
[  250.909480][T24671]  __x64_sys_sendfile64+0x105/0x150
[  250.914688][T24671]  x64_sys_call+0x2bb0/0x2ff0
[  250.919353][T24671]  do_syscall_64+0xd2/0x200
[  250.923850][T24671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.929727][T24671] 
[  250.932029][T24671] value changed: 0x0a000021 -> 0x04000021
[  250.937722][T24671] 
[  250.940034][T24671] Reported by Kernel Concurrency Sanitizer on:
[  250.946168][T24671] CPU: 1 UID: 0 PID: 24671 Comm: syz.7.6383 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  250.957528][T24671] Tainted: [W]=WARN
[  250.961397][T24671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  250.971436][T24671] ==================================================================
[  250.989698][T23011] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.