last executing test programs:

25.86892324s ago: executing program 1 (id=305):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000700"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fc, 0x301)
ioctl$USBDEVFS_REAPURB(r2, 0x4004550c, 0x0)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0x0, 0x40, &(0x7f0000000000)={0x4b5a9da54893e123, 0x14, 0x8, 0x2}, 0x8, 0x7, 0x200, 0x0, 0x0, 0x20000, 0x0})
close(0xffffffffffffffff)

25.722461222s ago: executing program 1 (id=311):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/vmstat\x00', 0x0, 0x0)
r1 = syz_io_uring_setup(0x49d, &(0x7f00000003c0)={0x0, 0x79ae, 0x400, 0x7ffd, 0x32c, 0x0, r0}, &(0x7f0000000680)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r4, &(0x7f0000000000)=0xfe8e, 0x12)
setsockopt$RDS_GET_MR_FOR_DEST(r0, 0x114, 0x7, &(0x7f00000004c0)={@pppol2tpv3in6={0x18, 0x1, {0x0, r4, 0x4, 0x0, 0x1, 0x2, {0xa, 0x4e24, 0xc, @dev={0xfe, 0x80, '\x00', 0x3f}}}}, {&(0x7f0000000800)=""/200, 0xc8}, &(0x7f00000002c0), 0x9}, 0xa0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x2007, @fd=r0, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
io_uring_enter(r1, 0xfd0, 0x4c1, 0x43, 0x0, 0x0)

25.514487168s ago: executing program 1 (id=322):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ioctl$BTRFS_IOC_SNAP_CREATE(r2, 0x50009401, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)

25.427916226s ago: executing program 1 (id=325):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x469, &(0x7f0000000ac0)="$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")
chdir(0x0)
creat(0x0, 0x2)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x10001, 0x400, 0x0, 0x0, 0x1, 0x11, "0e36af413bb901527fe4d0ce5d295c3676345a41499dd6aac69c4730251a0ca0ea0000000000000000000c00002000", "038447c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})

25.142335729s ago: executing program 1 (id=329):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r4=>0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r4], 0x1c}}, 0x0)
write$nci(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="61030604030280727ce716"], 0xb)

24.871963611s ago: executing program 3 (id=339):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000002400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000e"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r2, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)
shutdown(r2, 0x1)

24.829102444s ago: executing program 3 (id=341):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x7, &(0x7f0000000540)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
unshare(0x2040400)
r2 = socket$netlink(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000002c0)={'batadv0\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_MESH(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010027bd7000fbdbdf250f00000005002f000100000005002ae800000000050029000100000008000300", @ANYRES32=r3], 0x54}, 0x1, 0x0, 0x0, 0x24004040}, 0x24008824)

24.799962286s ago: executing program 3 (id=342):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000200)='kmem_cache_free\x00', r1, 0x0, 0x4000000000000002}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
io_setup(0x58, &(0x7f00000001c0)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000080)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
write(r2, 0x0, 0x0)
connect$unix(r3, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e21}, 0x6e)

24.763670399s ago: executing program 1 (id=343):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000400000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
lgetxattr(0x0, &(0x7f0000000280)=ANY=[], 0x0, 0x0)

24.703211724s ago: executing program 32 (id=343):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000400000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
lgetxattr(0x0, &(0x7f0000000280)=ANY=[], 0x0, 0x0)

24.642744999s ago: executing program 3 (id=348):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2208c08, 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x0)

24.619448651s ago: executing program 3 (id=349):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='kfree\x00', r0}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffff9, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@newtfilter={0x60, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0xb, 0xfff3}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x30, 0x2, [@TCA_BASIC_EMATCHES={0x2c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x20, 0x2, 0x0, 0x1, [@TCF_EM_META={0x1c, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x1}, {0x5, 0x40}}}, @TCA_EM_META_LVALUE={0x4}]}}]}]}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x20041090}, 0x0)

24.343703713s ago: executing program 3 (id=354):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x124, 0x2c, 0xd2b, 0x70bd2b, 0x35dfdbfb, {0x0, 0x0, 0x0, r4, {0xf, 0x3}, {}, {0xfff1, 0xfff2}}, [@filter_kind_options=@f_u32={{0x8}, {0xf8, 0x2, [@TCA_U32_SEL={0xf4, 0x5, {0x10, 0x9, 0xe, 0x10da, 0xa760, 0x0, 0x10, 0xfc, [{0xffff8001, 0xf073, 0x4010000, 0x8000}, {0x40, 0x80000001, 0xfffffffe, 0xffffffff}, {0x2, 0x9, 0x2}, {0x2008, 0x80000000, 0x1e0a}, {0xffffffff, 0x9, 0x800, 0x100}, {0x5e3, 0x4, 0x8e, 0x3}, {0x2, 0xffffffff, 0x5, 0x1ad}, {0x3ff, 0xb, 0x3, 0xa6d}, {0x1, 0x5, 0x5127, 0x800}, {0x6, 0x1, 0x2, 0x1}, {0x40, 0x40, 0x3, 0x5}, {0x2, 0x8, 0x6, 0x201}, {0x5, 0x406, 0x2, 0xfffffeff}, {0x94b0, 0x81, 0x80000001, 0xfffffffc}]}}]}}]}, 0x124}, 0x1, 0x0, 0x0, 0x48001}, 0x4000)

24.319562225s ago: executing program 33 (id=354):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x124, 0x2c, 0xd2b, 0x70bd2b, 0x35dfdbfb, {0x0, 0x0, 0x0, r4, {0xf, 0x3}, {}, {0xfff1, 0xfff2}}, [@filter_kind_options=@f_u32={{0x8}, {0xf8, 0x2, [@TCA_U32_SEL={0xf4, 0x5, {0x10, 0x9, 0xe, 0x10da, 0xa760, 0x0, 0x10, 0xfc, [{0xffff8001, 0xf073, 0x4010000, 0x8000}, {0x40, 0x80000001, 0xfffffffe, 0xffffffff}, {0x2, 0x9, 0x2}, {0x2008, 0x80000000, 0x1e0a}, {0xffffffff, 0x9, 0x800, 0x100}, {0x5e3, 0x4, 0x8e, 0x3}, {0x2, 0xffffffff, 0x5, 0x1ad}, {0x3ff, 0xb, 0x3, 0xa6d}, {0x1, 0x5, 0x5127, 0x800}, {0x6, 0x1, 0x2, 0x1}, {0x40, 0x40, 0x3, 0x5}, {0x2, 0x8, 0x6, 0x201}, {0x5, 0x406, 0x2, 0xfffffeff}, {0x94b0, 0x81, 0x80000001, 0xfffffffc}]}}]}}]}, 0x124}, 0x1, 0x0, 0x0, 0x48001}, 0x4000)

20.199645298s ago: executing program 4 (id=429):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
ioctl$SNAPSHOT_FREE(0xffffffffffffffff, 0x3305)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000), 0x13f}}, 0x20)
close(r2)

20.150315922s ago: executing program 4 (id=431):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50"], 0x0}, 0x94)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d002000001311ff00000000000000000000000000000000ff0200000003000000000000e9ffff004f194e20"], 0x4b)

20.019892783s ago: executing program 4 (id=436):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757811"], 0x65)

19.940593639s ago: executing program 4 (id=439):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x81, 0x7a5, &(0x7f0000000f80)="$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")
creat(&(0x7f0000000000)='./bus\x00', 0xd931d3864d39ddd8)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x0)
creat(0x0, 0x44)
mount(0x0, 0x0, 0x0, 0x301400, 0x0)
ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000080)=0x3f)
copy_file_range(r0, 0x0, r0, &(0x7f00000000c0)=0xae8, 0x863, 0x0)

19.543948871s ago: executing program 4 (id=444):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000300b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='fib6_table_lookup\x00', r3}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="b9ff03076844268cb89e14f086dd47e0ffff00122c00631177fbac141416e000030a44079f034d2f87e589ca6aab845013f2325f1a3911050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0xfe, 0x60000000, 0x0, 0x7000002}, 0x2c)

18.863886956s ago: executing program 4 (id=461):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014800000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

18.863666736s ago: executing program 34 (id=461):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014800000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

15.947731901s ago: executing program 5 (id=527):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r2=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r2}, 0x10)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000200), &(0x7f0000000240)=0x30)

15.881075447s ago: executing program 5 (id=530):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000280)={@remote}, 0x14)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
close(r0)

15.809819672s ago: executing program 5 (id=533):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x2, 0x8}}]}}]}, 0x48}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000026c0)=@newtfilter={0x70, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x10}, {0xe40ca4f7c51e5624}, {0xfff1, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x38, 0x2, [@TCA_CGROUP_ACT={0x34, 0x1, [@m_skbmod={0x30, 0x16, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x2, 0x2}}]}, 0x70}, 0x1, 0x0, 0x0, 0x4810}, 0x0)

15.740089838s ago: executing program 5 (id=537):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f00000001c0)='./file0/file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

15.679224403s ago: executing program 5 (id=538):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbfc, 0x2ffffffff}, 0xc)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x0, 0x5}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r4, {0x0, 0xfff2}, {}, {0xa, 0x6}}, [@filter_kind_options=@f_flower={{0xb}, {0x44, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x8, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x4}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x38, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x34, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x9}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x18, 0x3, 0x5}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0xfff2}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x3}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x8001}]}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x22044028}, 0x0)

15.495732438s ago: executing program 5 (id=543):
socket$packet(0x11, 0x2, 0x300)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x1, 0xa, 0x15c, 0xb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100000}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8f0, &(0x7f0000002400)=<r2=>0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x2b, 0x81}]}, 0x10)
io_submit(r2, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r1, &(0x7f0000000040)='\x00\x00\x00\x00\x00\x00', 0x6, 0x0, 0x0, 0x2}])

15.478587019s ago: executing program 35 (id=543):
socket$packet(0x11, 0x2, 0x300)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x1, 0xa, 0x15c, 0xb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100000}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8f0, &(0x7f0000002400)=<r2=>0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x2b, 0x81}]}, 0x10)
io_submit(r2, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r1, &(0x7f0000000040)='\x00\x00\x00\x00\x00\x00', 0x6, 0x0, 0x0, 0x2}])

2.408490826s ago: executing program 2 (id=861):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r0, 0x0, 0x3ffff)

2.146241567s ago: executing program 0 (id=869):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x30000c6, &(0x7f00000000c0), 0x2, 0x572, &(0x7f0000001600)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x20042, 0x1)
fallocate(r2, 0x0, 0x0, 0x8000c62)
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r3, r3, 0x0, 0x100000800000009)

1.48924961s ago: executing program 2 (id=878):
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x80, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
unshare(0x22020400)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)

1.124845349s ago: executing program 7 (id=893):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r2, &(0x7f0000000180), 0x40010)

1.076954733s ago: executing program 7 (id=896):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000070000002800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000100)={'vlan0\x00', 0x400})

926.352476ms ago: executing program 7 (id=898):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x8000)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r4}, 0x10)

833.178913ms ago: executing program 8 (id=900):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000000)=@chain)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
bind$tipc(0xffffffffffffffff, &(0x7f00000002c0)=@nameseq={0x1e, 0x1, 0x1, {0x2, 0x3}}, 0x10)
add_key$keyring(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x2}, 0x0, 0x0, r1)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a78000000060a010400000000000000000200000038000480340001800a0001006d617463680000002400028008000100756470000e0003007acc6338a90100b03bd9000008000240000000000900010073797a30000000000900020073797a32"], 0xa0}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

749.494709ms ago: executing program 8 (id=902):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000280), 0x40900, 0x0)
r3 = syz_io_uring_setup(0x494, &(0x7f0000000180)={0x0, 0x79ab, 0x8, 0x8002, 0x400250}, &(0x7f00000003c0)=<r4=>0x0, &(0x7f0000000400)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x2007, @fd=r2, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2000009, 0x4082172, 0xffffffffffffffff, 0x0)
io_uring_enter(r3, 0x74d1, 0x4c3, 0x43, 0x0, 0xfffffffffffffd1d)

669.673816ms ago: executing program 8 (id=903):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})

666.628846ms ago: executing program 0 (id=904):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x400}}}]}, 0x38}}, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='kfree\x00', r5, 0x0, 0xfffffffffffffffd}, 0x18)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newtfilter={0x60, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xf}, {}, {0x7, 0x4}}, [@filter_kind_options=@f_flow={{0x9}, {0x30, 0x2, [@TCA_FLOW_EMATCHES={0x2c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x20, 0x2, 0x0, 0x1, [@TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0xdb4a, 0x3, 0x367a}, {0xf935, 0x7, 0x1, 0xffff}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}]}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x0)

649.283597ms ago: executing program 8 (id=905):
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x30000c6, &(0x7f00000000c0), 0x2, 0x572, &(0x7f0000001600)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x20042, 0x1)
fallocate(r2, 0x0, 0x0, 0x8000c62)
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r3, r3, 0x0, 0x100000800000009)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)

648.643657ms ago: executing program 2 (id=906):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10)
sendto$inet(r0, &(0x7f0000000140), 0xffffffffffffff58, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000040)={[{@errors_remount}, {@discard}]}, 0x1, 0x512, &(0x7f0000000380)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000200100000102"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
shutdown(r0, 0x1)
close(r0)

587.779272ms ago: executing program 6 (id=907):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4, "0040001e1d113c812e5d6000"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}})
ppoll(&(0x7f0000000000)=[{r0, 0x4}], 0x1, 0x0, 0x0, 0x0)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000180)={0xd, 0x8, 0xfffffffc, 0xb6b, 0x4, "aa00003986b9ee6bd231334c1a280d7ea400"})

540.005677ms ago: executing program 0 (id=908):
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r0, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r1, &(0x7f0000001800)={@val={0x8, 0x800}, @val={0x3, 0x0, 0x0, 0x0, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x1, 0x2b, 0x16, 0x68, 0x0, 0x60, 0x67, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}, "21f3"}}, 0x24)

519.345538ms ago: executing program 2 (id=909):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f0000000100)={'vlan0\x00', 0x400})

395.924328ms ago: executing program 8 (id=910):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0x2a, &(0x7f0000000380)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x33, 0x0, @private, @broadcast}, {0x0, 0x4e20, 0x8}}}}}, 0x0)
write(0xffffffffffffffff, &(0x7f0000000580), 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000540)='./file0\x00', &(0x7f0000000280), 0x44, &(0x7f0000000340)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x21}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x10000}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r0}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)

376.29516ms ago: executing program 0 (id=911):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket(0x10, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000340)={0xa, 0x3, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000080)=@gcm_128={{0x304}, "a6341a1a379332f5", "1fd33c81cf7995313c09de00fd6ded74", "62266bd8", "1e00040000000100"}, 0x28)
write$binfmt_script(r1, &(0x7f0000000500)={'#! ', './file0'}, 0xb)
close_range(r0, r1, 0x0)

371.75802ms ago: executing program 6 (id=912):
timer_create(0xfffffffffffffffd, 0x0, &(0x7f00000000c0)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000000)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = syz_io_uring_setup(0x10c, &(0x7f0000000140)={0x0, 0x8b7c, 0x800, 0x200007, 0x22}, &(0x7f0000000940)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000440)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r2, 0x47f9, 0x4db, 0x0, 0x0, 0x0)
clock_nanosleep(0x2, 0x37dc12502000000, &(0x7f00000000c0)={0x0, 0x989680}, 0x0)

359.996161ms ago: executing program 7 (id=913):
syz_mount_image$ext4(&(0x7f00000007c0)='ext4\x00', &(0x7f00000006c0)='./file1\x00', 0x40, &(0x7f00000000c0)={[{@user_xattr}, {@nodioread_nolock}]}, 0x1, 0x576, &(0x7f0000000140)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000005c0)='\"', 0x1, 0x4fed0)
sendfile(r0, r0, 0x0, 0xe3aa6ea)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file3\x00', 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r1, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

340.919692ms ago: executing program 2 (id=914):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3f, 0x0, 0x0, 0x0, 0xb}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
socket$inet6_sctp(0xa, 0x1, 0x84)
close_range(r3, 0xffffffffffffffff, 0x0)

283.858257ms ago: executing program 2 (id=915):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x30000c6, &(0x7f00000000c0), 0x2, 0x572, &(0x7f0000001600)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x20042, 0x1)
fallocate(r2, 0x0, 0x0, 0x8000c62)
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r3, r3, 0x0, 0x100000800000009)

276.604898ms ago: executing program 0 (id=925):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
brk(0x5)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)

233.317601ms ago: executing program 6 (id=916):
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000280)=0x14)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
wait4(0x0, 0x0, 0x40000000, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00'}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~'], 0x1c}, 0x1, 0x0, 0x0, 0x4008084}, 0x0)
read(r0, &(0x7f00000019c0)=""/4097, 0x1001)

174.847236ms ago: executing program 0 (id=917):
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x80, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
unshare(0x22020400)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)

174.216816ms ago: executing program 8 (id=918):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000640), 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000000)={0x0, r0, 0x6, 0x5, 0x2, 0x483})

75.074674ms ago: executing program 6 (id=919):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='sched_switch\x00', r0}, 0x18)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000340)={{0x1, 0x3}})
ioctl$SNDRV_TIMER_IOCTL_START(r2, 0x54a0)
readv(r2, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x8}], 0x2)

74.777544ms ago: executing program 7 (id=920):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x5, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r1}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bond_slave_1\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8922, &(0x7f0000000080))

73.306714ms ago: executing program 6 (id=921):
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'gre0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r2}, 0x14)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r3}, &(0x7f0000000080), &(0x7f00000006c0)='%-010d \x00'}, 0x20)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="02017d29012918000e3580009f0001140000002f0600ac141414e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88942a31f48597e36e039b1c599db6e466749c2d4c8303a0f7fbda34fb8825f80200e3c0aba61f6304a80500ffffca88faca"], 0xdd12}], 0x1}, 0x0)

17.798239ms ago: executing program 7 (id=922):
socket$kcm(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x80002, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000006800e97800000000000000000a0000000000000008000500", @ANYRES8=r0], 0x20}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0x1, 0x1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x420}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)

0s ago: executing program 6 (id=923):
sendmsg$tipc(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000180), 0x10, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7}, 0x48)
r2 = socket$kcm(0x29, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000180)={r3, r1})
sendmmsg$inet(r2, &(0x7f0000000580)=[{{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000440)='{', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000640)='&', 0x1}], 0x1}}], 0x2, 0x0)

kernel console output (not intermixed with test programs):

 6081 - 0
[   31.894247][ T3509] =======================================================
[   31.894247][ T3509] WARNING: The mand mount option has been deprecated and
[   31.894247][ T3509]          and is ignored by this kernel. Remove the mand
[   31.894247][ T3509]          option from the mount to silence this warning.
[   31.894247][ T3509] =======================================================
[   31.929952][ T3506] netlink: 120 bytes leftover after parsing attributes in process `syz.1.14'.
[   31.939774][ T3454] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.965845][ T3509] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   31.981880][ T3509] ext4 filesystem being mounted at /2/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   32.016455][ T3519] loop3: detected capacity change from 0 to 164
[   32.026625][ T3519] process 'syz.3.20' launched '/dev/fd/6' with NULL argv: empty string added
[   32.033097][ T3506] syz.1.14 (3506) used greatest stack depth: 10176 bytes left
[   32.045171][ T3519] syz.3.20: attempt to access beyond end of device
[   32.045171][ T3519] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   32.112544][ T3519] syz.3.20: attempt to access beyond end of device
[   32.112544][ T3519] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   32.119892][ T3526] smc: net device bond0 applied user defined pnetid SYZ0
[   32.138730][ T3305] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   32.143368][ T3526] smc: net device bond0 erased user defined pnetid SYZ0
[   32.214137][ T3534] netlink: 12 bytes leftover after parsing attributes in process `syz.3.27'.
[   32.216016][ T3528] loop2: detected capacity change from 0 to 4096
[   32.223095][ T3534] netlink: 28 bytes leftover after parsing attributes in process `syz.3.27'.
[   32.238296][ T3534] netlink: 12 bytes leftover after parsing attributes in process `syz.3.27'.
[   32.240256][ T3528] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   32.267788][ T3534] netlink: 28 bytes leftover after parsing attributes in process `syz.3.27'.
[   32.276617][ T3534] netlink: 'syz.3.27': attribute type 6 has an invalid length.
[   32.313440][ T3401] Process accounting resumed
[   32.317548][ T3538] sd 0:0:1:0: device reset
[   32.340535][ T3528] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   32.378016][ T3544] dummy0: entered promiscuous mode
[   32.383206][ T3544] macsec1: entered allmulticast mode
[   32.388861][ T3544] dummy0: entered allmulticast mode
[   32.403464][ T3544] dummy0: left allmulticast mode
[   32.408594][ T3544] dummy0: left promiscuous mode
[   32.421790][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.436549][ T3548] syz.4.32 (3548) used greatest stack depth: 8880 bytes left
[   32.479776][ T3552] netlink: 360 bytes leftover after parsing attributes in process `syz.2.33'.
[   32.613203][ T3560] loop1: detected capacity change from 0 to 4096
[   32.621419][ T3560] EXT4-fs: Ignoring removed nomblk_io_submit option
[   32.623728][ T3566] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   32.655370][ T3560] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   32.657089][ T3566] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   32.823415][ T3592] loop2: detected capacity change from 0 to 4096
[   32.833082][ T3592] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   32.843727][ T3598] syz_tun: entered allmulticast mode
[   32.855091][ T3592] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   32.873795][ T3597] syz_tun: left allmulticast mode
[   32.933126][ T3592] capability: warning: `syz.2.48' uses deprecated v2 capabilities in a way that may be insecure
[   33.005134][ T3604] loop3: detected capacity change from 0 to 512
[   33.015219][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.050409][ T3604] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.52: error while reading EA inode 32 err=-116
[   33.068307][ T3604] EXT4-fs (loop3): Remounting filesystem read-only
[   33.074863][ T3604] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   33.100084][ T3604] EXT4-fs (loop3): 1 orphan inode deleted
[   33.123702][ T3604] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   33.188941][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.215950][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.231080][ T3614] loop2: detected capacity change from 0 to 512
[   33.270431][ T3618] loop1: detected capacity change from 0 to 512
[   33.270566][ T3616] netlink: 256 bytes leftover after parsing attributes in process `syz.3.58'.
[   33.289171][ T3620] netlink: 'syz.0.59': attribute type 10 has an invalid length.
[   33.301337][ T3614] EXT4-fs warning (device loop2): dx_probe:861: inode #2: comm syz.2.56: dx entry: limit 0 != root limit 125
[   33.313004][ T3614] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.56: Corrupt directory, running e2fsck is recommended
[   33.326646][ T3624] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   33.330367][ T3620] team0: Device hsr_slave_0 failed to register rx_handler
[   33.347614][ T3614] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[   33.356106][ T3618] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   33.364715][ T3614] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.56: corrupted in-inode xattr: invalid ea_ino
[   33.378687][ T3618] EXT4-fs (loop1): invalid journal inode
[   33.384359][ T3618] EXT4-fs (loop1): can't get journal size
[   33.391859][ T3614] EXT4-fs (loop2): Remounting filesystem read-only
[   33.398877][ T3614] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.419139][ T3614] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[   33.428571][ T3618] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e056c118, mo2=0002]
[   33.436666][ T3618] System zones: 1-12, 13-13
[   33.442030][ T3618] EXT4-fs (loop1): 1 truncate cleaned up
[   33.448411][ T3618] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.485120][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.529643][ T3618] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.55: bg 0: block 255: padding at end of block bitmap is not set
[   33.545186][ T3618] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   33.569869][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.988106][ T3656] loop3: detected capacity change from 0 to 2048
[   34.031505][ T3656] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.242648][ T3678] loop1: detected capacity change from 0 to 1024
[   34.275788][ T3678] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   34.448235][ T3673] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.71: bg 0: block 234: padding at end of block bitmap is not set
[   34.468606][ T3678] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.482518][ T3673] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   34.489510][ T3678] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.495347][ T3673] EXT4-fs (loop3): This should not happen!! Data will be lost
[   34.495347][ T3673] 
[   34.513878][ T3673] EXT4-fs (loop3): Total free blocks count 0
[   34.519918][ T3673] EXT4-fs (loop3): Free/Dirty block details
[   34.525890][ T3673] EXT4-fs (loop3): free_blocks=0
[   34.530876][ T3673] EXT4-fs (loop3): dirty_blocks=8208
[   34.536178][ T3673] EXT4-fs (loop3): Block reservation details
[   34.542250][ T3673] EXT4-fs (loop3): i_reserved_data_blocks=513
[   34.612134][ T3690] loop4: detected capacity change from 0 to 1024
[   34.626982][ T3690] EXT4-fs: Ignoring removed orlov option
[   34.654224][ T3690] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.673197][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   34.788037][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.041981][ T3701] netlink: 12 bytes leftover after parsing attributes in process `syz.3.84'.
[   35.078139][ T3701] netlink: 12 bytes leftover after parsing attributes in process `syz.3.84'.
[   35.180724][ T3707] macvlan1: entered promiscuous mode
[   35.195563][ T3707] ipvlan0: entered promiscuous mode
[   35.210376][ T3707] ipvlan0: left promiscuous mode
[   35.221741][ T3707] macvlan1: left promiscuous mode
[   35.405534][ T3714] loop0: detected capacity change from 0 to 512
[   35.434255][ T3714] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   35.447894][ T3714] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   35.477777][ T3716] loop3: detected capacity change from 0 to 128
[   35.490538][ T3716] FAT-fs (loop3): Directory bread(block 162) failed
[   35.504241][ T3714] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #16: comm syz.0.89: invalid indirect mapped block 4294967295 (level 0)
[   35.505967][ T3716] FAT-fs (loop3): Directory bread(block 163) failed
[   35.545159][ T3714] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #16: comm syz.0.89: invalid indirect mapped block 4294967295 (level 1)
[   35.561551][ T3716] FAT-fs (loop3): Directory bread(block 164) failed
[   35.573847][ T3716] FAT-fs (loop3): Directory bread(block 165) failed
[   35.592107][ T3714] EXT4-fs (loop0): 1 orphan inode deleted
[   35.598172][ T3714] EXT4-fs (loop0): 1 truncate cleaned up
[   35.604804][ T3716] FAT-fs (loop3): Directory bread(block 166) failed
[   35.620298][ T3716] FAT-fs (loop3): Directory bread(block 167) failed
[   35.633014][ T3714] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.650068][ T3716] FAT-fs (loop3): Directory bread(block 168) failed
[   35.663513][ T3716] FAT-fs (loop3): Directory bread(block 169) failed
[   35.701203][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.738845][ T3716] FAT-fs (loop3): Directory bread(block 162) failed
[   35.753841][ T3716] FAT-fs (loop3): Directory bread(block 163) failed
[   35.765012][ T3723] loop2: detected capacity change from 0 to 512
[   35.772225][ T3716] syz.3.90: attempt to access beyond end of device
[   35.772225][ T3716] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[   35.793455][ T3723] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.799501][ T3716] syz.3.90: attempt to access beyond end of device
[   35.799501][ T3716] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[   35.879804][    C0] IPv4: Oversized IP packet from 172.20.20.24
[   35.986839][ T3731] loop4: detected capacity change from 0 to 1024
[   36.013518][ T3731] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.030185][ T3733] loop3: detected capacity change from 0 to 2048
[   36.046697][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.080163][ T3733] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   36.108308][ T3731] loop4: detected capacity change from 1024 to 127
[   36.192321][ T3305] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -12)
[   36.220488][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.251509][ T3734] kmmpd-loop4: attempt to access beyond end of device
[   36.251509][ T3734] loop4: rw=14337, sector=128, nr_sectors = 2 limit=127
[   36.265188][ T3734] Buffer I/O error on dev loop4, logical block 64, lost sync page write
[   36.327263][ T3745] loop4: detected capacity change from 0 to 512
[   36.350049][ T3745] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   36.369151][ T3745] EXT4-fs (loop4): 1 truncate cleaned up
[   36.387329][ T3745] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.496206][ T3745] EXT4-fs (loop4): shut down requested (0)
[   36.509209][   T29] kauditd_printk_skb: 121 callbacks suppressed
[   36.509225][   T29] audit: type=1400 audit(1756511785.703:240): avc:  denied  { read } for  pid=2975 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   36.537474][   T29] audit: type=1400 audit(1756511785.703:241): avc:  denied  { search } for  pid=2975 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   36.559271][   T29] audit: type=1400 audit(1756511785.703:242): avc:  denied  { search } for  pid=2975 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   36.580969][   T29] audit: type=1400 audit(1756511785.703:243): avc:  denied  { add_name } for  pid=2975 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   36.601802][   T29] audit: type=1400 audit(1756511785.703:244): avc:  denied  { create } for  pid=2975 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   36.622479][   T29] audit: type=1400 audit(1756511785.703:245): avc:  denied  { append open } for  pid=2975 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   36.646075][   T29] audit: type=1400 audit(1756511785.703:246): avc:  denied  { getattr } for  pid=2975 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   36.672322][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.808749][   T29] audit: type=1400 audit(1756511786.003:247): avc:  denied  { tracepoint } for  pid=3755 comm="syz.4.104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   36.874384][   T29] audit: type=1400 audit(1756511786.023:248): avc:  denied  { create } for  pid=3757 comm="syz.2.105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   36.894742][   T29] audit: type=1400 audit(1756511786.023:249): avc:  denied  { ioctl } for  pid=3757 comm="syz.2.105" path="socket:[5070]" dev="sockfs" ino=5070 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   36.905971][ T3764] loop8: detected capacity change from 0 to 16384
[   36.942827][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.184038][ T3779] netlink: 'syz.4.114': attribute type 10 has an invalid length.
[   37.195148][ T3779] 8021q: adding VLAN 0 to HW filter on device team0
[   37.203804][ T3779] bond0: (slave team0): Enslaving as an active interface with an up link
[   37.217024][ T3769] loop8: detected capacity change from 16384 to 16383
[   37.381355][ T3786] vlan2: entered allmulticast mode
[   37.698436][ T3800] loop1: detected capacity change from 0 to 164
[   37.705836][ T3800] Unable to read rock-ridge attributes
[   37.716820][ T3768] syz.3.109 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   37.730894][ T3768] CPU: 0 UID: 0 PID: 3768 Comm: syz.3.109 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   37.731001][ T3768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   37.731095][ T3768] Call Trace:
[   37.731101][ T3768]  <TASK>
[   37.731108][ T3768]  __dump_stack+0x1d/0x30
[   37.731128][ T3768]  dump_stack_lvl+0xe8/0x140
[   37.731146][ T3768]  dump_stack+0x15/0x1b
[   37.731166][ T3768]  dump_header+0x81/0x220
[   37.731205][ T3768]  oom_kill_process+0x342/0x400
[   37.731263][ T3768]  out_of_memory+0x979/0xb80
[   37.731313][ T3768]  try_charge_memcg+0x5e6/0x9e0
[   37.731361][ T3768]  obj_cgroup_charge_pages+0xa6/0x150
[   37.731403][ T3768]  __memcg_kmem_charge_page+0x9f/0x170
[   37.731447][ T3768]  __alloc_frozen_pages_noprof+0x188/0x360
[   37.731586][ T3768]  alloc_pages_mpol+0xb3/0x250
[   37.731629][ T3768]  alloc_pages_noprof+0x90/0x130
[   37.731685][ T3768]  __vmalloc_node_range_noprof+0x6f2/0xe00
[   37.731744][ T3768]  __kvmalloc_node_noprof+0x30f/0x4e0
[   37.731784][ T3768]  ? ip_set_alloc+0x1f/0x30
[   37.731805][ T3768]  ? ip_set_alloc+0x1f/0x30
[   37.731824][ T3768]  ? __kmalloc_cache_noprof+0x189/0x320
[   37.731886][ T3768]  ip_set_alloc+0x1f/0x30
[   37.731908][ T3768]  hash_netiface_create+0x282/0x740
[   37.731952][ T3768]  ? __pfx_hash_netiface_create+0x10/0x10
[   37.732075][ T3768]  ip_set_create+0x3c9/0x960
[   37.732150][ T3768]  ? __nla_parse+0x40/0x60
[   37.732180][ T3768]  nfnetlink_rcv_msg+0x4c3/0x590
[   37.732232][ T3768]  netlink_rcv_skb+0x123/0x220
[   37.732255][ T3768]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   37.732334][ T3768]  nfnetlink_rcv+0x16b/0x1690
[   37.732393][ T3768]  ? nlmon_xmit+0x4f/0x60
[   37.732426][ T3768]  ? consume_skb+0x49/0x150
[   37.732451][ T3768]  ? nlmon_xmit+0x4f/0x60
[   37.732569][ T3768]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   37.732600][ T3768]  ? __dev_queue_xmit+0x1200/0x2000
[   37.732642][ T3768]  ? __dev_queue_xmit+0x182/0x2000
[   37.732673][ T3768]  ? ref_tracker_free+0x37d/0x3e0
[   37.732700][ T3768]  ? __netlink_deliver_tap+0x4dc/0x500
[   37.732727][ T3768]  netlink_unicast+0x5bd/0x690
[   37.732746][ T3768]  netlink_sendmsg+0x58b/0x6b0
[   37.732774][ T3768]  ? __pfx_netlink_sendmsg+0x10/0x10
[   37.732803][ T3768]  __sock_sendmsg+0x145/0x180
[   37.732943][ T3768]  ____sys_sendmsg+0x31e/0x4e0
[   37.733009][ T3768]  ___sys_sendmsg+0x17b/0x1d0
[   37.733053][ T3768]  __x64_sys_sendmsg+0xd4/0x160
[   37.733088][ T3768]  x64_sys_call+0x191e/0x2ff0
[   37.733116][ T3768]  do_syscall_64+0xd2/0x200
[   37.733158][ T3768]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   37.733181][ T3768]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   37.733207][ T3768]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   37.733263][ T3768] RIP: 0033:0x7faffa71ebe9
[   37.733281][ T3768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   37.733309][ T3768] RSP: 002b:00007faff917f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   37.733389][ T3768] RAX: ffffffffffffffda RBX: 00007faffa955fa0 RCX: 00007faffa71ebe9
[   37.733405][ T3768] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[   37.733421][ T3768] RBP: 00007faffa7a1e19 R08: 0000000000000000 R09: 0000000000000000
[   37.733435][ T3768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   37.733446][ T3768] R13: 00007faffa956038 R14: 00007faffa955fa0 R15: 00007ffcdf6f4738
[   37.733510][ T3768]  </TASK>
[   37.733519][ T3768] memory: usage 307200kB, limit 307200kB, failcnt 190
[   37.760418][ T3805] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   37.763903][ T3768] memory+swap: usage 307360kB, limit 9007199254740988kB, failcnt 0
[   37.828900][ T3800] Unable to read rock-ridge attributes
[   37.829111][ T3768] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[   37.858268][ T3800] iso9660: Corrupted directory entry in block 4 of inode 1792
[   37.859010][ T3768] Memory cgroup stats for /syz3:
[   38.123770][ T3768] cache 4096
[   38.132119][ T3768] rss 0
[   38.134949][ T3768] shmem 0
[   38.137961][ T3768] mapped_file 0
[   38.141429][ T3768] dirty 0
[   38.144383][ T3768] writeback 12288
[   38.148182][ T3768] workingset_refault_anon 46
[   38.152795][ T3768] workingset_refault_file 17
[   38.157425][ T3768] swap 167936
[   38.160719][ T3768] swapcached 24576
[   38.164515][ T3768] pgpgin 11285
[   38.167943][ T3768] pgpgout 11278
[   38.171418][ T3768] pgfault 11982
[   38.174882][ T3768] pgmajfault 42
[   38.178417][ T3768] inactive_anon 20480
[   38.182465][ T3768] active_anon 4096
[   38.186193][ T3768] inactive_file 4096
[   38.190151][ T3768] active_file 0
[   38.193625][ T3768] unevictable 0
[   38.197133][ T3768] hierarchical_memory_limit 314572800
[   38.202529][ T3768] hierarchical_memsw_limit 9223372036854771712
[   38.208750][ T3768] total_cache 4096
[   38.212486][ T3768] total_rss 0
[   38.216131][ T3768] total_shmem 0
[   38.219632][ T3768] total_mapped_file 0
[   38.223626][ T3768] total_dirty 0
[   38.227182][ T3768] total_writeback 12288
[   38.231351][ T3768] total_workingset_refault_anon 46
[   38.236474][ T3768] total_workingset_refault_file 17
[   38.241623][ T3768] total_swap 167936
[   38.245436][ T3768] total_swapcached 24576
[   38.249713][ T3768] total_pgpgin 11285
[   38.253673][ T3768] total_pgpgout 11278
[   38.257681][ T3768] total_pgfault 11982
[   38.261687][ T3768] total_pgmajfault 42
[   38.265681][ T3768] total_inactive_anon 20480
[   38.270231][ T3768] total_active_anon 4096
[   38.274483][ T3768] total_inactive_file 4096
[   38.278930][ T3768] total_active_file 0
[   38.282979][ T3768] total_unevictable 0
[   38.286997][ T3768] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.109,pid=3767,uid=0
[   38.301742][ T3768] Memory cgroup out of memory: Killed process 3767 (syz.3.109) total-vm:95744kB, anon-rss:1008kB, file-rss:22316kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   38.425993][ T3821] loop4: detected capacity change from 0 to 512
[   38.475779][ T3821] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.512722][ T3821] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.588833][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.682072][ T3850] syz.4.136 uses obsolete (PF_INET,SOCK_PACKET)
[   38.754802][ T3854] loop1: detected capacity change from 0 to 512
[   38.783526][ T3768] syz.3.109 (3768) used greatest stack depth: 7528 bytes left
[   38.809258][ T3854] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.837300][ T3854] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.899494][ T3867] netlink: 'syz.0.147': attribute type 1 has an invalid length.
[   38.955316][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.979994][ T3879] loop4: detected capacity change from 0 to 512
[   38.993393][ T3879] EXT4-fs: Ignoring removed nobh option
[   39.006556][ T3879] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   39.021103][ T3881] bridge: RTM_NEWNEIGH with invalid ether address
[   39.040509][ T3879] EXT4-fs (loop4): 1 truncate cleaned up
[   39.046644][ T3879] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.098020][ T3889] vxcan1: entered allmulticast mode
[   39.142473][ T3894] __nla_validate_parse: 1 callbacks suppressed
[   39.142488][ T3894] netlink: 8 bytes leftover after parsing attributes in process `syz.1.159'.
[   39.164657][ T3896] loop0: detected capacity change from 0 to 512
[   39.165136][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.191472][ T3896] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.207133][ T3896] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   39.222163][   T37] tipc: Subscription rejected, illegal request
[   39.242764][ T3906] Driver unsupported XDP return value 0 on prog  (id 126) dev N/A, expect packet loss!
[   39.284305][ T3908] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.291475][ T3908] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.363935][ T3916] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   39.395822][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.417847][ T3922] loop4: detected capacity change from 0 to 128
[   39.418953][ T3920] SELinux: failed to load policy
[   39.427052][ T3922] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   39.441965][ T3922] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   39.472593][ T3924] Zero length message leads to an empty skb
[   39.482978][ T3924] openvswitch: netlink: Message has 6 unknown bytes.
[   39.505431][   T57] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   39.535815][ T3929] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3929 comm=syz.3.176
[   39.603138][ T3939] netlink: 32 bytes leftover after parsing attributes in process `syz.4.180'.
[   39.611783][    C0] hrtimer: interrupt took 36403 ns
[   39.662679][ T3947] loop4: detected capacity change from 0 to 128
[   39.729201][ T3955] loop2: detected capacity change from 0 to 128
[   39.769285][ T3955] syz.2.188: attempt to access beyond end of device
[   39.769285][ T3955] loop2: rw=2049, sector=138, nr_sectors = 112 limit=128
[   39.796621][ T3955] syz.2.188: attempt to access beyond end of device
[   39.796621][ T3955] loop2: rw=2049, sector=138, nr_sectors = 2 limit=128
[   39.802770][ T3960] loop0: detected capacity change from 0 to 256
[   39.810119][ T3955] Buffer I/O error on dev loop2, logical block 69, lost async page write
[   39.831474][ T3955] syz.2.188: attempt to access beyond end of device
[   39.831474][ T3955] loop2: rw=2049, sector=140, nr_sectors = 2 limit=128
[   39.844859][ T3955] Buffer I/O error on dev loop2, logical block 70, lost async page write
[   39.873912][ T3962] loop4: detected capacity change from 0 to 128
[   39.909558][ T3962] FAT-fs (loop4): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[   39.974361][ T3967] loop4: detected capacity change from 0 to 1764
[   40.314094][ T3997] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   40.359439][ T4001] netlink: 100 bytes leftover after parsing attributes in process `syz.2.209'.
[   40.430245][ T4012] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4012 comm=syz.2.214
[   40.442681][ T4012] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4012 comm=syz.2.214
[   40.518282][ T4018] netlink: 'syz.2.217': attribute type 39 has an invalid length.
[   40.612854][ T4028] netlink: 'syz.3.221': attribute type 7 has an invalid length.
[   40.620614][ T4028] netlink: 32 bytes leftover after parsing attributes in process `syz.3.221'.
[   40.649825][ T4031] loop3: detected capacity change from 0 to 512
[   40.672052][ T4031] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.688665][ T4031] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.765505][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.942499][ T4061] loop1: detected capacity change from 0 to 164
[   40.968709][ T4061] rock: directory entry would overflow storage
[   40.974925][ T4061] rock: sig=0x66, size=4, remaining=3
[   41.073818][ T4068] loop3: detected capacity change from 0 to 2048
[   41.100657][ T4070] loop1: detected capacity change from 0 to 512
[   41.123220][ T4068] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.136762][ T4070] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.161521][ T4070] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   41.214113][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.238952][ T4082] loop1: detected capacity change from 0 to 128
[   41.257302][ T4082] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   41.272501][ T4082] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   41.300130][   T57] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   41.319644][ T4086] netlink: 12 bytes leftover after parsing attributes in process `syz.1.243'.
[   41.330541][ T4087] netlink: 24 bytes leftover after parsing attributes in process `syz.2.240'.
[   41.353714][ T4086] 8021q: adding VLAN 0 to HW filter on device bond1
[   41.378773][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.449920][ T4098] program syz.1.248 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   41.459301][ T4098] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   41.500903][ T4100] loop2: detected capacity change from 0 to 128
[   41.561447][   T29] kauditd_printk_skb: 121 callbacks suppressed
[   41.561490][   T29] audit: type=1400 audit(1756511790.753:371): avc:  denied  { watch watch_reads } for  pid=4105 comm="syz.1.251" path="/40" dev="tmpfs" ino=225 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   41.620603][ T4109] syz.2.249: attempt to access beyond end of device
[   41.620603][ T4109] loop2: rw=2049, sector=153, nr_sectors = 8 limit=128
[   41.634230][ T4109] syz.2.249: attempt to access beyond end of device
[   41.634230][ T4109] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[   41.649814][ T4109] syz.2.249: attempt to access beyond end of device
[   41.649814][ T4109] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[   41.664098][ T4109] syz.2.249: attempt to access beyond end of device
[   41.664098][ T4109] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[   41.679811][ T4109] syz.2.249: attempt to access beyond end of device
[   41.679811][ T4109] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[   41.695535][ T4109] syz.2.249: attempt to access beyond end of device
[   41.695535][ T4109] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[   41.716140][   T29] audit: type=1326 audit(1756511790.903:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4115 comm="syz.1.255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f967e43ebe9 code=0x7ffc0000
[   41.719304][ T4109] syz.2.249: attempt to access beyond end of device
[   41.719304][ T4109] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[   41.739585][   T29] audit: type=1326 audit(1756511790.903:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4115 comm="syz.1.255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f967e43ebe9 code=0x7ffc0000
[   41.780533][   T29] audit: type=1326 audit(1756511790.953:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4115 comm="syz.1.255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f967e43ebe9 code=0x7ffc0000
[   41.803854][   T29] audit: type=1326 audit(1756511790.953:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4115 comm="syz.1.255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f967e43ebe9 code=0x7ffc0000
[   41.827606][   T29] audit: type=1326 audit(1756511790.953:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4115 comm="syz.1.255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f967e43ebe9 code=0x7ffc0000
[   41.851029][   T29] audit: type=1326 audit(1756511790.953:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4115 comm="syz.1.255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f967e43ebe9 code=0x7ffc0000
[   41.874288][   T29] audit: type=1326 audit(1756511790.953:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4115 comm="syz.1.255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f967e43ebe9 code=0x7ffc0000
[   41.897627][   T29] audit: type=1326 audit(1756511790.953:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4115 comm="syz.1.255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f967e43ebe9 code=0x7ffc0000
[   41.920974][   T29] audit: type=1326 audit(1756511790.953:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4115 comm="syz.1.255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f967e43ebe9 code=0x7ffc0000
[   41.955145][ T4119] syzkaller0: refused to change device tx_queue_len
[   42.043481][ T4130] tipc: Started in network mode
[   42.048580][ T4130] tipc: Node identity ac14140f, cluster identity 4711
[   42.061542][ T4130] tipc: New replicast peer: 255.255.255.83
[   42.067586][ T4130] tipc: Enabled bearer <udp:£>, priority 10
[   42.096575][ T4139] loop3: detected capacity change from 0 to 512
[   42.119241][ T4143] netlink: 1868 bytes leftover after parsing attributes in process `syz.1.266'.
[   42.140887][ T4139] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.248725][ T4156] netlink: 'syz.1.268': attribute type 39 has an invalid length.
[   42.280111][ T4160] loop4: detected capacity change from 0 to 128
[   42.287887][ T4158] netlink: 4 bytes leftover after parsing attributes in process `syz.2.269'.
[   42.307676][ T4160] Buffer I/O error on dev loop4, logical block 69, lost async page write
[   42.316248][ T4160] Buffer I/O error on dev loop4, logical block 70, lost async page write
[   42.353083][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.692965][ T4190] ref_ctr_offset mismatch. inode: 0x163 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[   42.736559][ T4192] netlink: 'syz.3.285': attribute type 39 has an invalid length.
[   42.863149][ T4194] loop4: detected capacity change from 0 to 1024
[   42.879499][ T4194] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.898671][ T4194] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.985254][ T1435] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 15)
[   43.047485][ T1435] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   43.060005][ T1435] EXT4-fs (loop4): This should not happen!! Data will be lost
[   43.060005][ T1435] 
[   43.080946][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.098056][ T4208] tipc: Started in network mode
[   43.103080][ T4208] tipc: Node identity 5e6cc43cec7, cluster identity 4711
[   43.110250][ T4208] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   43.152864][ T4208] tipc: Disabling bearer <eth:syzkaller0>
[   43.159570][ T4214] netlink: 32 bytes leftover after parsing attributes in process `syz.0.293'.
[   43.186846][ T1035] tipc: Node number set to 2886997007
[   43.219366][ T1035] kernel write not supported for file /86/attr/exec (pid: 1035 comm: kworker/0:2)
[   43.498298][ T4245] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   43.505738][ T4245] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[   43.513938][ T4244] vhci_hcd: invalid port number 96
[   43.519219][ T4244] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   43.577598][ T4251] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   43.604447][ T4257] syzkaller1: entered promiscuous mode
[   43.610002][ T4257] syzkaller1: entered allmulticast mode
[   43.667829][ T4263] netlink: 32 bytes leftover after parsing attributes in process `syz.2.315'.
[   43.787896][ T4276] loop3: detected capacity change from 0 to 256
[   43.813567][ T4276] program syz.3.323 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   43.841023][ T4282] loop1: detected capacity change from 0 to 512
[   43.867336][ T4282] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   43.867801][ T4280] loop4: detected capacity change from 0 to 8192
[   43.884895][ T4282] EXT4-fs (loop1): invalid journal inode
[   43.892591][ T4282] EXT4-fs (loop1): can't get journal size
[   43.902629][ T4280] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   43.920823][ T4282] EXT4-fs (loop1): 1 truncate cleaned up
[   43.933658][ T4282] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.008824][ T4287] vcan0: tx drop: invalid da for name 0x0000000000000003
[   44.066873][ T4282] loop1: detected capacity change from 512 to 2
[   44.080052][ T3294] Buffer I/O error on dev loop1, logical block 3, async page read
[   44.104406][ T3294] Buffer I/O error on dev loop1, logical block 3, async page read
[   44.132994][ T3300] EXT4-fs warning (device loop1): htree_dirblock_to_tree:1051: inode #2: lblock 0: comm syz-executor: error -12 reading directory block
[   44.150981][ T3294] Buffer I/O error on dev loop1, logical block 3, async page read
[   44.159241][ T3294] Buffer I/O error on dev loop1, logical block 3, async page read
[   44.167341][ T3294] Buffer I/O error on dev loop1, logical block 3, async page read
[   44.177300][ T3300] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Out of memory
[   44.186885][ T3300] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   44.195147][ T3300] EXT4-fs (loop1): I/O error while writing superblock
[   44.201974][ T3300] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz-executor: mark_inode_dirty error
[   44.230055][ T3300] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   44.238462][ T3300] EXT4-fs (loop1): I/O error while writing superblock
[   44.275064][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.284973][ T3300] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   44.293675][ T3300] EXT4-fs (loop1): I/O error while writing superblock
[   44.341285][ T4305] loop4: detected capacity change from 0 to 512
[   44.378442][ T4305] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.336: casefold flag without casefold feature
[   44.391406][ T4305] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.336: couldn't read orphan inode 15 (err -117)
[   44.404029][ T4305] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.453798][ T4314] netlink: 32 bytes leftover after parsing attributes in process `syz.3.341'.
[   44.726008][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.772050][ T4340] loop4: detected capacity change from 0 to 1024
[   44.811019][ T4340] EXT4-fs: Ignoring removed bh option
[   44.850561][ T3454] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.900090][ T4340] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.935077][ T3454] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.019472][ T3454] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.032029][ T4357] IPv4: Oversized IP packet from 127.202.26.0
[   45.064663][ T4329] chnl_net:caif_netlink_parms(): no params data found
[   45.066632][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.081952][ T4360] netlink: 28 bytes leftover after parsing attributes in process `syz.2.358'.
[   45.090887][ T4360] netlink: 8 bytes leftover after parsing attributes in process `syz.2.358'.
[   45.109492][ T3454] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.143842][ T4370] netlink: 'syz.2.358': attribute type 10 has an invalid length.
[   45.168671][ T4370] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.175880][ T4370] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.185771][ T4370] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.192874][ T4370] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.200213][ T4370] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.207304][ T4370] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.218330][ T4370] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   45.239104][ T4329] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.246185][ T4329] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.254941][ T4329] bridge_slave_0: entered allmulticast mode
[   45.261599][ T4329] bridge_slave_0: entered promiscuous mode
[   45.268505][ T4329] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.275637][ T4329] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.283087][ T4329] bridge_slave_1: entered allmulticast mode
[   45.289909][ T4329] bridge_slave_1: entered promiscuous mode
[   45.339514][ T4329] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.373972][ T4329] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.443755][ T4329] team0: Port device team_slave_0 added
[   45.467737][ T4329] team0: Port device team_slave_1 added
[   45.488227][ T3454] bridge_slave_1: left allmulticast mode
[   45.493950][ T3454] bridge_slave_1: left promiscuous mode
[   45.499655][ T3454] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.546967][ T3454] bridge_slave_0: left allmulticast mode
[   45.552695][ T3454] bridge_slave_0: left promiscuous mode
[   45.558496][ T3454] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.611805][ T4404] SELinux: failed to load policy
[   45.660605][ T4414] loop2: detected capacity change from 0 to 512
[   45.691166][ T4414] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   45.692263][ T4418] netlink: 'syz.4.372': attribute type 10 has an invalid length.
[   45.711814][ T3454] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   45.722265][ T3454] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   45.731678][ T4414] EXT4-fs (loop2): 1 truncate cleaned up
[   45.732563][ T3454] bond0 (unregistering): Released all slaves
[   45.739418][ T4414] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.762495][ T4414] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   45.779333][ T4421] netlink: 'syz.4.372': attribute type 10 has an invalid length.
[   45.799978][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.801324][ T4418] team0: Port device dummy0 added
[   45.816120][ T4329] batman_adv: batadv0: Adding interface: batadv_slave_0
[   45.823119][ T4329] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.850416][ T4329] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   45.862320][ T3454] tipc: Left network mode
[   45.868732][ T4421] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   45.883320][ T4421] team0: Failed to send options change via netlink (err -105)
[   45.894033][ T4421] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   45.903152][ T4421] team0: Port device dummy0 removed
[   45.911339][ T4421] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   45.941473][ T4329] batman_adv: batadv0: Adding interface: batadv_slave_1
[   45.948555][ T4329] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.974659][ T4329] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.004610][ T3454] hsr_slave_0: left promiscuous mode
[   46.013160][ T3454] hsr_slave_1: left promiscuous mode
[   46.018801][ T3454] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   46.026255][ T3454] batman_adv: batadv0: Removing interface: batadv_slave_0
[   46.035554][ T3454] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   46.043005][ T3454] batman_adv: batadv0: Removing interface: batadv_slave_1
[   46.059740][ T4434] loop2: detected capacity change from 0 to 512
[   46.070343][ T3454] veth1_macvtap: left promiscuous mode
[   46.075910][ T3454] veth0_macvtap: left promiscuous mode
[   46.083270][ T3454] veth1_vlan: left promiscuous mode
[   46.088885][ T3454] veth0_vlan: left promiscuous mode
[   46.101447][ T4434] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.114224][ T4434] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.164619][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.174250][ T3454] team0 (unregistering): Port device team_slave_1 removed
[   46.189885][ T3454] team0 (unregistering): Port device team_slave_0 removed
[   46.201763][ T4442] netlink: 4 bytes leftover after parsing attributes in process `syz.2.379'.
[   46.297486][ T4329] hsr_slave_0: entered promiscuous mode
[   46.303220][ T4451] loop4: detected capacity change from 0 to 2048
[   46.313449][ T4329] hsr_slave_1: entered promiscuous mode
[   46.333727][ T4451] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.350723][ T4329] debugfs: 'hsr0' already exists in 'hsr'
[   46.356497][ T4329] Cannot create hsr debugfs directory
[   46.446745][ T4361] chnl_net:caif_netlink_parms(): no params data found
[   46.632539][ T4361] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.639903][ T4361] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.677140][ T4361] bridge_slave_0: entered allmulticast mode
[   46.683762][ T4361] bridge_slave_0: entered promiscuous mode
[   46.723319][ T4361] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.730502][ T4361] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.749962][ T4361] bridge_slave_1: entered allmulticast mode
[   46.762333][ T4361] bridge_slave_1: entered promiscuous mode
[   46.788594][ T4329] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   46.813567][   T29] kauditd_printk_skb: 143 callbacks suppressed
[   46.813625][   T29] audit: type=1400 audit(1756511796.003:524): avc:  denied  { ioctl } for  pid=4503 comm="syz.2.386" path="socket:[8560]" dev="sockfs" ino=8560 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   46.860077][ T4329] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   46.880505][ T4361] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.891196][ T4329] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   46.904505][   T29] audit: type=1400 audit(1756511796.093:525): avc:  denied  { setattr } for  pid=4448 comm="syz.4.381" name="memory.events" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   46.908994][ T4329] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   46.945896][ T4470] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.381: bg 0: block 234: padding at end of block bitmap is not set
[   46.987112][ T4470] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   46.999625][ T4470] EXT4-fs (loop4): This should not happen!! Data will be lost
[   46.999625][ T4470] 
[   47.009311][ T4470] EXT4-fs (loop4): Total free blocks count 0
[   47.015364][ T4470] EXT4-fs (loop4): Free/Dirty block details
[   47.021291][ T4470] EXT4-fs (loop4): free_blocks=0
[   47.026245][ T4470] EXT4-fs (loop4): dirty_blocks=8208
[   47.029757][ T4361] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.031607][ T4470] EXT4-fs (loop4): Block reservation details
[   47.031642][ T4470] EXT4-fs (loop4): i_reserved_data_blocks=513
[   47.091194][ T4361] team0: Port device team_slave_0 added
[   47.104267][   T29] audit: type=1400 audit(1756511796.293:526): avc:  denied  { mount } for  pid=4525 comm="syz.0.390" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   47.133757][ T4361] team0: Port device team_slave_1 added
[   47.159622][ T3454] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   47.180248][ T4361] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.187257][ T4361] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.213247][ T4361] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.229013][ T4361] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.235974][ T4361] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.262006][ T4361] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.264666][ T4532] serio: Serial port ptm0
[   47.338200][ T4361] hsr_slave_0: entered promiscuous mode
[   47.353958][ T4361] hsr_slave_1: entered promiscuous mode
[   47.369474][ T4361] debugfs: 'hsr0' already exists in 'hsr'
[   47.375244][ T4361] Cannot create hsr debugfs directory
[   47.390395][ T4329] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.420378][ T4329] 8021q: adding VLAN 0 to HW filter on device team0
[   47.457489][ T3454] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.464596][ T3454] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.476394][ T3454] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.483568][ T3454] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.573334][   T29] audit: type=1400 audit(1756511796.763:527): avc:  denied  { listen } for  pid=4552 comm="syz.0.401" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   47.577235][ T4361] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   47.605757][ T4361] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   47.621570][ T4361] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   47.633317][ T4559] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   47.640597][ T4559] IPv6: NLM_F_CREATE should be set when creating new route
[   47.646123][ T4361] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   47.647815][ T4559] IPv6: NLM_F_CREATE should be set when creating new route
[   47.662625][ T4559] ------------[ cut here ]------------
[   47.668145][ T4559] WARNING: CPU: 0 PID: 4559 at drivers/net/netdevsim/fib.c:831 nsim_fib_event_nb+0xc41/0xcb0
[   47.678485][ T4559] Modules linked in:
[   47.682392][ T4559] CPU: 0 UID: 0 PID: 4559 Comm: syz.0.402 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   47.692108][ T4559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   47.702215][ T4559] RIP: 0010:nsim_fib_event_nb+0xc41/0xcb0
[   47.707984][ T4559] Code: c5 12 fe be 01 00 00 00 4c 8b 74 24 18 49 8d 7e 2c e8 a3 7f a8 fe 4c 8b 2c 24 48 8b 6c 24 10 e9 93 f6 ff ff e8 00 c5 12 fe 90 <0f> 0b 90 e9 5a fc ff ff e8 f2 c4 12 fe e9 a5 f9 ff ff e8 e8 c4 12
[   47.727713][ T4559] RSP: 0018:ffffc900011df618 EFLAGS: 00010283
[   47.733789][ T4559] RAX: ffffffff834534d0 RBX: 0000000000000000 RCX: 0000000000080000
[   47.741819][ T4559] RDX: ffffc90001c9a000 RSI: 0000000000016ebe RDI: 0000000000016ebf
[   47.749823][ T4559] RBP: 0000000000000001 R08: 000188811a1a901f R09: 0000000000000000
[   47.757858][ T4559] R10: ffff88811844d190 R11: 0000000000000002 R12: ffffc900011df718
[   47.765849][ T4559] R13: ffff888119e98800 R14: ffff88811a1a9018 R15: 0000000000000001
[   47.773953][ T4559] FS:  00007f9d92d2f6c0(0000) GS:ffff8882aee43000(0000) knlGS:0000000000000000
[   47.782934][ T4559] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   47.789564][ T4559] CR2: 0000001b33120ff8 CR3: 000000010c760000 CR4: 00000000003506f0
[   47.797569][ T4559] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   47.805550][ T4559] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[   47.813551][ T4559] Call Trace:
[   47.816855][ T4559]  <TASK>
[   47.819787][ T4559]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[   47.825251][ T4559]  atomic_notifier_call_chain+0x76/0x1c0
[   47.830927][ T4559]  call_fib_notifiers+0x65/0xa0
[   47.835833][ T4559]  call_fib6_notifiers+0x30/0x40
[   47.840869][ T4559]  call_fib6_multipath_entry_notifiers+0x94/0xc0
[   47.847305][ T4559]  inet6_rtm_newroute+0xaf1/0x1020
[   47.852546][ T4559]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[   47.858129][ T4559]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   47.863107][ T4559]  netlink_rcv_skb+0x123/0x220
[   47.868034][ T4559]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   47.873608][ T4559]  rtnetlink_rcv+0x1c/0x30
[   47.878129][ T4559]  netlink_unicast+0x5bd/0x690
[   47.882918][ T4559]  netlink_sendmsg+0x58b/0x6b0
[   47.887751][ T4559]  ? __pfx_netlink_sendmsg+0x10/0x10
[   47.893105][ T4559]  __sock_sendmsg+0x145/0x180
[   47.897847][ T4559]  ____sys_sendmsg+0x31e/0x4e0
[   47.902657][ T4559]  ___sys_sendmsg+0x17b/0x1d0
[   47.907380][ T4559]  __x64_sys_sendmsg+0xd4/0x160
[   47.912293][ T4559]  x64_sys_call+0x191e/0x2ff0
[   47.917125][ T4559]  do_syscall_64+0xd2/0x200
[   47.921657][ T4559]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   47.927758][ T4559]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   47.933530][ T4559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.939450][ T4559] RIP: 0033:0x7f9d942cebe9
[   47.943906][ T4559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.963574][ T4559] RSP: 002b:00007f9d92d2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   47.972032][ T4559] RAX: ffffffffffffffda RBX: 00007f9d94505fa0 RCX: 00007f9d942cebe9
[   47.980034][ T4559] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[   47.988086][ T4559] RBP: 00007f9d94351e19 R08: 0000000000000000 R09: 0000000000000000
[   47.996081][ T4559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   48.004127][ T4559] R13: 00007f9d94506038 R14: 00007f9d94505fa0 R15: 00007ffd015eda68
[   48.012157][ T4559]  </TASK>
[   48.015177][ T4559] ---[ end trace 0000000000000000 ]---
[   48.061915][ T4329] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.126324][   T29] audit: type=1400 audit(1756511797.313:528): avc:  denied  { create } for  pid=4580 comm="syz.2.407" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   48.144970][ T4361] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.163665][   T29] audit: type=1400 audit(1756511797.343:529): avc:  denied  { write } for  pid=4580 comm="syz.2.407" name="file0" dev="tmpfs" ino=509 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   48.186092][   T29] audit: type=1400 audit(1756511797.343:530): avc:  denied  { open } for  pid=4580 comm="syz.2.407" path="/95/file0" dev="tmpfs" ino=509 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   48.193053][ T4361] 8021q: adding VLAN 0 to HW filter on device team0
[   48.208575][   T29] audit: type=1400 audit(1756511797.343:531): avc:  denied  { ioctl } for  pid=4580 comm="syz.2.407" path="/95/file0" dev="tmpfs" ino=509 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   48.260220][   T29] audit: type=1400 audit(1756511797.453:532): avc:  denied  { unlink } for  pid=3307 comm="syz-executor" name="file0" dev="tmpfs" ino=509 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   48.284623][ T1457] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.291720][ T1457] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.309286][ T1457] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.316534][ T1457] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.337422][   T29] audit: type=1326 audit(1756511797.523:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4588 comm="syz.2.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4d3b4ebe9 code=0x7ffc0000
[   48.384651][ T4361] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   48.395268][ T4361] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   48.508541][ T4612] loop2: detected capacity change from 0 to 1024
[   48.515647][ T4612] EXT4-fs: Ignoring removed orlov option
[   48.518363][ T4361] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.521431][ T4612] EXT4-fs: Ignoring removed nomblk_io_submit option
[   48.538541][ T4329] veth0_vlan: entered promiscuous mode
[   48.549554][ T4329] veth1_vlan: entered promiscuous mode
[   48.571453][ T4329] veth0_macvtap: entered promiscuous mode
[   48.578115][ T4612] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.591816][ T4329] veth1_macvtap: entered promiscuous mode
[   48.610783][ T4329] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.630620][ T4329] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.648869][   T31] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.710455][   T31] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.736163][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.754986][   T31] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.808791][   T31] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.963758][ T4361] veth0_vlan: entered promiscuous mode
[   48.982158][ T4660] macvtap0: refused to change device tx_queue_len
[   48.994156][ T4361] veth1_vlan: entered promiscuous mode
[   49.028830][ T4361] veth0_macvtap: entered promiscuous mode
[   49.061003][ T4361] veth1_macvtap: entered promiscuous mode
[   49.085329][ T4666] veth0_vlan: entered allmulticast mode
[   49.129777][ T4666] ÿÿÿÿÿÿ: renamed from vlan1
[   49.156278][ T4361] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.179614][ T4361] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.199917][ T3454] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.241587][ T3454] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.267096][ T1457] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.291583][ T4686] SELinux: security policydb version 17 (MLS) not backwards compatible
[   49.302072][ T1457] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.311455][ T4686] SELinux: failed to load policy
[   49.355386][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.362957][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.381983][ T4693] loop4: detected capacity change from 0 to 2048
[   49.382355][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.395957][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.403439][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.405271][ T4696] tipc: Started in network mode
[   49.410886][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.415885][ T4696] tipc: Node identity 1a04b1e592f4, cluster identity 4711
[   49.423201][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.423229][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.430472][ T4696] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   49.437872][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.459446][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.478431][ T4698] tipc: Disabling bearer <eth:syzkaller0>
[   49.484229][ T4693] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.484417][   T36] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   49.529143][ T4693] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   49.588659][ T4693] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[   49.601015][ T4693] EXT4-fs (loop4): This should not happen!! Data will be lost
[   49.601015][ T4693] 
[   49.610763][ T4693] EXT4-fs (loop4): Total free blocks count 0
[   49.616814][ T4693] EXT4-fs (loop4): Free/Dirty block details
[   49.622718][ T4693] EXT4-fs (loop4): free_blocks=2415919104
[   49.628567][ T4693] EXT4-fs (loop4): dirty_blocks=16
[   49.633686][ T4693] EXT4-fs (loop4): Block reservation details
[   49.633832][ T4701] fido_id[4701]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   49.639778][ T4693] EXT4-fs (loop4): i_reserved_data_blocks=1
[   49.707424][ T3305] EXT4-fs error (device loop4): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /99/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[   49.733064][ T4707] netlink: 44 bytes leftover after parsing attributes in process `syz.0.443'.
[   49.749169][ T3305] EXT4-fs error (device loop4): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[   49.769635][ T3305] EXT4-fs warning (device loop4): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[   49.793355][ T3305] EXT4-fs error (device loop4): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /99/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[   49.831384][ T4708] syz.6.442 (4708) used obsolete PPPIOCDETACH ioctl
[   49.842126][ T3305] EXT4-fs error (device loop4): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[   49.859571][ T4712] netlink: 20 bytes leftover after parsing attributes in process `syz.5.446'.
[   49.862673][ T3305] EXT4-fs warning (device loop4): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[   49.886043][ T3305] EXT4-fs error (device loop4): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /99/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[   49.911204][ T3305] EXT4-fs error (device loop4): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[   49.932032][ T3305] EXT4-fs warning (device loop4): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[   49.945144][ T3305] EXT4-fs error (device loop4): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /99/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[   49.985387][ T3305] EXT4-fs error (device loop4): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[   50.005831][ T3305] EXT4-fs warning (device loop4): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[   50.034573][ T3305] EXT4-fs error (device loop4): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /99/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[   50.057460][ T4723] pim6reg1: entered promiscuous mode
[   50.062835][ T4723] pim6reg1: entered allmulticast mode
[   50.064876][ T3305] EXT4-fs warning (device loop4): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[   50.082260][ T3305] EXT4-fs warning (device loop4): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[   50.094373][ T3305] EXT4-fs warning (device loop4): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[   50.106780][ T3305] EXT4-fs warning (device loop4): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[   50.120118][ T3305] EXT4-fs warning (device loop4): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[   50.133648][ T3305] EXT4-fs warning (device loop4): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[   50.238070][ T4738] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   50.245585][ T4738] batman_adv: batadv0: Removing interface: batadv_slave_0
[   50.254596][ T4738] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   50.262163][ T4738] batman_adv: batadv0: Removing interface: batadv_slave_1
[   50.337698][ T3305] Trying to write to read-only block-device loop4
[   50.345297][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.347855][ T4742] netlink: 80 bytes leftover after parsing attributes in process `syz.0.460'.
[   50.434605][ T4745] netlink: 132 bytes leftover after parsing attributes in process `syz.2.463'.
[   50.468507][ T4750] tipc: Started in network mode
[   50.473485][ T4750] tipc: Node identity 46d3630ba7ba, cluster identity 4711
[   50.480847][ T4750] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   50.594155][ T4746] chnl_net:caif_netlink_parms(): no params data found
[   50.647410][ T4746] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.654499][ T4746] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.670556][ T4746] bridge_slave_0: entered allmulticast mode
[   50.677796][ T4746] bridge_slave_0: entered promiscuous mode
[   50.686449][ T4746] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.693609][ T4746] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.701168][ T4746] bridge_slave_1: entered allmulticast mode
[   50.708019][ T4746] bridge_slave_1: entered promiscuous mode
[   50.728615][ T4746] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   50.738994][ T4746] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   50.761677][ T4746] team0: Port device team_slave_0 added
[   50.768746][ T4746] team0: Port device team_slave_1 added
[   50.803497][ T4746] batman_adv: batadv0: Adding interface: batadv_slave_0
[   50.810455][ T4746] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.836554][ T4746] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   50.848283][ T4746] batman_adv: batadv0: Adding interface: batadv_slave_1
[   50.855240][ T4746] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.881301][ T4746] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   50.914838][ T4763] loop6: detected capacity change from 0 to 1024
[   50.939652][ T4746] hsr_slave_0: entered promiscuous mode
[   50.945964][ T4746] hsr_slave_1: entered promiscuous mode
[   50.952003][ T4746] debugfs: 'hsr0' already exists in 'hsr'
[   50.957876][ T4746] Cannot create hsr debugfs directory
[   50.967552][ T4763] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.003178][ T4763] EXT4-fs error (device loop6): ext4_xattr_inode_iget:437: comm syz.6.465: inode #1868835941: comm syz.6.465: iget: illegal inode #
[   51.017574][ T4763] EXT4-fs error (device loop6): ext4_xattr_inode_iget:442: comm syz.6.465: error while reading EA inode 1868835941 err=-117
[   51.071323][ T4361] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.092690][ T4746] netdevsim netdevsim7 netdevsim0: renamed from eth0
[   51.113262][ T4746] netdevsim netdevsim7 netdevsim1: renamed from eth1
[   51.122894][ T4746] netdevsim netdevsim7 netdevsim2: renamed from eth2
[   51.131939][ T4746] netdevsim netdevsim7 netdevsim3: renamed from eth3
[   51.152170][ T4746] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.159420][ T4746] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.166839][ T4746] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.173910][ T4746] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.207244][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.215290][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.234756][ T4746] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.263521][ T4746] 8021q: adding VLAN 0 to HW filter on device team0
[   51.281082][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.288190][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.341477][ T1457] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.348654][ T1457] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.368537][ T4749] tipc: Disabling bearer <eth:syzkaller0>
[   51.443258][ T4789] netlink: 'syz.5.473': attribute type 3 has an invalid length.
[   51.513568][ T4746] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.532991][ T4799] SELinux: failed to load policy
[   51.650233][ T4819] netlink: 96 bytes leftover after parsing attributes in process `syz.5.481'.
[   51.716140][ T4825] tipc: Started in network mode
[   51.721218][ T4825] tipc: Node identity 2e6dd5c15622, cluster identity 4711
[   51.728563][ T4825] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   51.738137][ T4746] veth0_vlan: entered promiscuous mode
[   51.745666][ T4746] veth1_vlan: entered promiscuous mode
[   51.756220][ T4828] SELinux:  Context @ is not valid (left unmapped).
[   51.757114][ T4825] tipc: Disabling bearer <eth:syzkaller0>
[   51.809423][ T4746] veth0_macvtap: entered promiscuous mode
[   51.818440][   T29] kauditd_printk_skb: 116 callbacks suppressed
[   51.818454][   T29] audit: type=1326 audit(1756511801.013:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   51.850627][ T4746] veth1_macvtap: entered promiscuous mode
[   51.867469][ T3411] kernel write not supported for file /231/attr/exec (pid: 3411 comm: kworker/1:5)
[   51.883597][ T4746] batman_adv: batadv0: Interface activated: batadv_slave_0
[   51.899504][   T29] audit: type=1326 audit(1756511801.043:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   51.906432][ T4746] batman_adv: batadv0: Interface activated: batadv_slave_1
[   51.922823][   T29] audit: type=1326 audit(1756511801.043:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   51.922852][   T29] audit: type=1326 audit(1756511801.043:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   51.976748][   T29] audit: type=1326 audit(1756511801.043:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   51.994213][ T1435] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.000165][   T29] audit: type=1326 audit(1756511801.043:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   52.000197][   T29] audit: type=1326 audit(1756511801.043:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   52.000249][   T29] audit: type=1326 audit(1756511801.043:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   52.000278][   T29] audit: type=1326 audit(1756511801.043:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   52.102055][   T29] audit: type=1326 audit(1756511801.043:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   52.132607][ T1435] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.160466][ T4838] netlink: 'syz.6.489': attribute type 2 has an invalid length.
[   52.168182][ T4838] netlink: 'syz.6.489': attribute type 1 has an invalid length.
[   52.175830][ T4838] netlink: 199820 bytes leftover after parsing attributes in process `syz.6.489'.
[   52.201629][ T1435] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.224583][ T1435] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.265884][ T4845] loop5: detected capacity change from 0 to 512
[   52.302666][ T4845] EXT4-fs: Ignoring removed nobh option
[   52.329656][ T4845] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.492: corrupted inode contents
[   52.344827][ T4845] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #3: comm syz.5.492: mark_inode_dirty error
[   52.368919][ T4845] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.492: corrupted inode contents
[   52.382626][ T4857] netlink: 'syz.7.495': attribute type 10 has an invalid length.
[   52.390663][ T4845] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #3: comm syz.5.492: mark_inode_dirty error
[   52.406485][ T4857] team0: Device hsr_slave_0 failed to register rx_handler
[   52.422110][ T4845] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.492: Failed to acquire dquot type 0
[   52.424078][ T4860] netlink: 4 bytes leftover after parsing attributes in process `syz.0.496'.
[   52.485832][ T4845] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.492: corrupted inode contents
[   52.516618][ T4863] netlink: 8 bytes leftover after parsing attributes in process `syz.2.498'.
[   52.528730][ T4845] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #16: comm syz.5.492: mark_inode_dirty error
[   52.543976][ T4845] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.492: corrupted inode contents
[   52.571419][ T4845] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #16: comm syz.5.492: mark_inode_dirty error
[   52.624921][ T4845] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.492: corrupted inode contents
[   52.646530][ T4845] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[   52.655779][ T4845] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.492: corrupted inode contents
[   52.669700][ T4845] EXT4-fs error (device loop5): ext4_truncate:4666: inode #16: comm syz.5.492: mark_inode_dirty error
[   52.706210][ T4845] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[   52.716572][ T4845] EXT4-fs (loop5): 1 truncate cleaned up
[   52.729925][ T4845] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.730484][ T4878] vlan0: entered allmulticast mode
[   52.747721][ T4878] batadv0: entered allmulticast mode
[   52.753641][ T4876] usb usb8: usbfs: process 4876 (syz.2.503) did not claim interface 0 before use
[   52.755963][ T4845] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.780383][ T4845] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.075812][ T4907] I/O error, dev loop13, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   53.089865][ T4907] FAT-fs (loop13): unable to read boot sector
[   53.440495][ T4942] tipc: Started in network mode
[   53.445563][ T4942] tipc: Node identity de6d7e0dfe87, cluster identity 4711
[   53.452959][ T4942] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   53.475405][ T4942] tipc: Disabling bearer <eth:syzkaller0>
[   53.500426][ T4948] netlink: 12 bytes leftover after parsing attributes in process `syz.5.533'.
[   53.510323][ T4950] netlink: 'syz.0.535': attribute type 10 has an invalid length.
[   53.527718][ T4950] team0: Port device dummy0 added
[   53.543779][ T4950] netlink: 'syz.0.535': attribute type 10 has an invalid length.
[   53.562859][ T4950] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   53.582798][ T4950] team0: Failed to send options change via netlink (err -105)
[   53.592845][ T4950] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   53.602226][ T4950] team0: Port device dummy0 removed
[   53.610120][ T4950] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   53.694207][ T4959] ref_ctr increment failed for inode: 0x272 offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff88810a7d3980
[   53.707464][ T4958] uprobe: syz.0.540:4958 failed to unregister, leaking uprobe
[   53.711606][ T4962] bond1: entered promiscuous mode
[   53.720126][ T4962] bond1: entered allmulticast mode
[   53.725516][ T4962] 8021q: adding VLAN 0 to HW filter on device bond1
[   53.735238][ T4962] bond1 (unregistering): Released all slaves
[   53.785855][ T1457] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.856137][ T1457] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.857367][ T4968] SELinux: ebitmap: truncated map
[   53.880081][ T4968] SELinux: failed to load policy
[   53.912185][ T1457] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.960379][ T1457] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.042431][ T4971] chnl_net:caif_netlink_parms(): no params data found
[   54.068507][ T1457] bridge_slave_1: left allmulticast mode
[   54.074207][ T1457] bridge_slave_1: left promiscuous mode
[   54.080191][ T1457] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.088427][ T1457] bridge_slave_0: left allmulticast mode
[   54.094075][ T1457] bridge_slave_0: left promiscuous mode
[   54.099780][ T1457] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.200176][ T1457] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   54.210622][ T1457] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   54.220805][ T1457] bond0 (unregistering): Released all slaves
[   54.252470][ T4971] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.259621][ T4971] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.266846][ T4971] bridge_slave_0: entered allmulticast mode
[   54.273257][ T4971] bridge_slave_0: entered promiscuous mode
[   54.280089][ T1457] tipc: Left network mode
[   54.280495][ T4971] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.291612][ T4971] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.299545][ T4971] bridge_slave_1: entered allmulticast mode
[   54.306089][ T4971] bridge_slave_1: entered promiscuous mode
[   54.316580][ T1457] hsr_slave_0: left promiscuous mode
[   54.322976][ T1457] hsr_slave_1: left promiscuous mode
[   54.328844][ T1457] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   54.336245][ T1457] batman_adv: batadv0: Removing interface: batadv_slave_0
[   54.344101][ T1457] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   54.351682][ T1457] batman_adv: batadv0: Removing interface: batadv_slave_1
[   54.363060][ T1457] veth1_macvtap: left promiscuous mode
[   54.368603][ T1457] veth0_macvtap: left promiscuous mode
[   54.376367][ T1457] veth1_vlan: left promiscuous mode
[   54.382042][ T1457] veth0_vlan: left promiscuous mode
[   54.425715][ T5006] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   54.433017][ T5006] IPv6: NLM_F_CREATE should be set when creating new route
[   54.498919][ T1457] team0 (unregistering): Port device team_slave_1 removed
[   54.509369][ T1457] team0 (unregistering): Port device team_slave_0 removed
[   54.587475][ T5016] bond1: entered promiscuous mode
[   54.592573][ T5016] bond1: entered allmulticast mode
[   54.599801][ T5016] 8021q: adding VLAN 0 to HW filter on device bond1
[   54.610510][ T5016] bond1 (unregistering): Released all slaves
[   54.624049][ T4971] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.642681][ T4971] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.673796][ T4971] team0: Port device team_slave_0 added
[   54.689230][ T4971] team0: Port device team_slave_1 added
[   54.736507][ T4971] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.743683][ T4971] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.769746][ T4971] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.879199][ T4971] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.886290][ T4971] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.912611][ T4971] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.994836][ T5062] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   55.002113][ T5062] IPv6: NLM_F_CREATE should be set when creating new route
[   55.023622][ T5067] loop7: detected capacity change from 0 to 512
[   55.054954][ T5067] EXT4-fs (loop7): couldn't mount as ext3 due to feature incompatibilities
[   55.082191][ T4971] hsr_slave_0: entered promiscuous mode
[   55.105053][ T4971] hsr_slave_1: entered promiscuous mode
[   55.118367][ T4971] debugfs: 'hsr0' already exists in 'hsr'
[   55.124141][ T4971] Cannot create hsr debugfs directory
[   55.135199][ T5074] netlink: 24 bytes leftover after parsing attributes in process `syz.0.567'.
[   55.203040][ T5078] netlink: 4 bytes leftover after parsing attributes in process `syz.2.568'.
[   55.232651][   T31] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.271261][ T5078] team1: entered promiscuous mode
[   55.276351][ T5078] team1: entered allmulticast mode
[   55.292890][   T31] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.383461][   T31] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.400605][ T5097] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   55.408058][ T5097] batman_adv: batadv0: Removing interface: batadv_slave_0
[   55.417219][ T5097] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   55.424672][ T5097] batman_adv: batadv0: Removing interface: batadv_slave_1
[   55.464930][   T31] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.488104][ T5104] netlink: 96 bytes leftover after parsing attributes in process `syz.6.573'.
[   55.549749][ T4971] netdevsim netdevsim8 netdevsim0: renamed from eth0
[   55.573364][ T4971] netdevsim netdevsim8 netdevsim1: renamed from eth1
[   55.589963][ T4971] netdevsim netdevsim8 netdevsim2: renamed from eth2
[   55.617567][ T4971] netdevsim netdevsim8 netdevsim3: renamed from eth3
[   55.662527][   T31] bridge_slave_1: left allmulticast mode
[   55.668467][   T31] bridge_slave_1: left promiscuous mode
[   55.674290][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.698664][   T31] bridge_slave_0: left allmulticast mode
[   55.704407][   T31] bridge_slave_0: left promiscuous mode
[   55.710135][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.040585][   T31] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   56.050691][   T31] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   56.061050][   T31] bond0 (unregistering): (slave team0): Releasing backup interface
[   56.070822][   T31] bond0 (unregistering): (slave dummy0): Releasing backup interface
[   56.083199][   T31] bond0 (unregistering): Released all slaves
[   56.203579][   T31] hsr_slave_0: left promiscuous mode
[   56.209715][   T31] hsr_slave_1: left promiscuous mode
[   56.215518][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   56.222951][   T31] batman_adv: batadv0: Removing interface: batadv_slave_0
[   56.231089][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   56.238615][   T31] batman_adv: batadv0: Removing interface: batadv_slave_1
[   56.248429][   T31] veth1_macvtap: left promiscuous mode
[   56.263062][   T31] veth0_macvtap: left promiscuous mode
[   56.268819][   T31] veth1_vlan: left promiscuous mode
[   56.276839][   T31] veth0_vlan: left promiscuous mode
[   56.298471][ T5157] loop7: detected capacity change from 0 to 1024
[   56.321595][ T5157] EXT4-fs: Ignoring removed bh option
[   56.337516][ T5157] EXT4-fs: inline encryption not supported
[   56.345647][ T5157] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   56.363198][ T5157] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   56.375271][ T5157] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #3: block 2: comm syz.7.585: lblock 2 mapped to illegal pblock 2 (length 1)
[   56.391800][   T31] team0 (unregistering): Port device team_slave_1 removed
[   56.392726][ T5157] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #3: block 48: comm syz.7.585: lblock 0 mapped to illegal pblock 48 (length 1)
[   56.413620][   T31] team0 (unregistering): Port device team_slave_0 removed
[   56.414800][ T5157] EXT4-fs error (device loop7): ext4_acquire_dquot:6937: comm syz.7.585: Failed to acquire dquot type 0
[   56.433229][ T5157] EXT4-fs error (device loop7) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   56.447846][ T5157] EXT4-fs error (device loop7): ext4_evict_inode:254: inode #11: comm syz.7.585: mark_inode_dirty error
[   56.459284][ T5157] EXT4-fs warning (device loop7): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   56.469607][ T5157] EXT4-fs (loop7): 1 orphan inode deleted
[   56.475723][ T5157] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.482604][ T5159] netlink: 'syz.6.586': attribute type 9 has an invalid length.
[   56.495850][ T5159] netlink: 32 bytes leftover after parsing attributes in process `syz.6.586'.
[   56.502971][ T5157] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #2: block 16: comm syz.7.585: lblock 0 mapped to illegal pblock 16 (length 1)
[   56.518864][ T1435] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   56.533372][ T1435] EXT4-fs error (device loop7): ext4_release_dquot:6973: comm kworker/u8:5: Failed to release dquot type 0
[   56.548685][ T5157] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   56.556139][ T5157] batman_adv: batadv0: Removing interface: batadv_slave_0
[   56.577693][ T5157] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   56.585320][ T5157] batman_adv: batadv0: Removing interface: batadv_slave_1
[   56.631618][ T4971] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.654977][ T5180] netlink: 332 bytes leftover after parsing attributes in process `syz.6.589'.
[   56.666016][ T5180] netlink: 'syz.6.589': attribute type 9 has an invalid length.
[   56.667149][ T4971] 8021q: adding VLAN 0 to HW filter on device team0
[   56.673727][ T5180] netlink: 108 bytes leftover after parsing attributes in process `syz.6.589'.
[   56.689289][ T5180] netlink: 32 bytes leftover after parsing attributes in process `syz.6.589'.
[   56.700788][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.707997][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.739421][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.746572][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.773520][ T4746] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.802120][ T5193] loop6: detected capacity change from 0 to 512
[   56.805867][ T4746] EXT4-fs error (device loop7): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[   56.812412][ T4971] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.835395][ T4746] EXT4-fs error (device loop7) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   56.849231][ T5193] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   56.854196][ T4746] EXT4-fs error (device loop7): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[   56.887076][ T5193] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.908138][ T5193] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.925936][ T5193] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.593: corrupted xattr block 19: overlapping e_value 
[   56.948274][ T5193] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[   56.958076][   T29] kauditd_printk_skb: 781 callbacks suppressed
[   56.958092][   T29] audit: type=1400 audit(1756511806.143:1436): avc:  denied  { bind } for  pid=5204 comm="syz.2.596" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   56.983509][   T29] audit: type=1400 audit(1756511806.143:1437): avc:  denied  { name_bind } for  pid=5204 comm="syz.2.596" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   57.005195][   T29] audit: type=1400 audit(1756511806.143:1438): avc:  denied  { node_bind } for  pid=5204 comm="syz.2.596" saddr=::1 src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[   57.027085][ T5193] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.593: corrupted xattr block 19: overlapping e_value 
[   57.043764][ T5193] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[   57.053395][ T5209] netlink: 96 bytes leftover after parsing attributes in process `syz.2.597'.
[   57.067006][ T5193] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.593: corrupted xattr block 19: overlapping e_value 
[   57.082262][ T4971] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.097727][   T29] audit: type=1400 audit(1756511806.153:1439): avc:  denied  { shutdown } for  pid=5204 comm="syz.2.596" laddr=::1 lport=20004 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   57.119407][   T29] audit: type=1400 audit(1756511806.263:1440): avc:  denied  { setattr } for  pid=5192 comm="syz.6.593" name="file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   57.142687][ T4361] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.215490][   T29] audit: type=1326 audit(1756511806.403:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.7.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9aa7debe9 code=0x7ffc0000
[   57.238917][   T29] audit: type=1326 audit(1756511806.403:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.7.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9aa7debe9 code=0x7ffc0000
[   57.267787][   T29] audit: type=1326 audit(1756511806.463:1443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.7.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9aa7debe9 code=0x7ffc0000
[   57.291238][   T29] audit: type=1326 audit(1756511806.463:1444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.7.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9aa7debe9 code=0x7ffc0000
[   57.314686][   T29] audit: type=1326 audit(1756511806.463:1445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.7.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9aa7debe9 code=0x7ffc0000
[   57.346551][ T5240] netlink: 4 bytes leftover after parsing attributes in process `syz.2.602'.
[   57.401449][ T5240] team2: entered promiscuous mode
[   57.406558][ T5240] team2: entered allmulticast mode
[   57.438526][ T5250] netlink: 12 bytes leftover after parsing attributes in process `syz.7.605'.
[   57.519888][ T4971] veth0_vlan: entered promiscuous mode
[   57.536123][ T4971] veth1_vlan: entered promiscuous mode
[   57.590049][ T4971] veth0_macvtap: entered promiscuous mode
[   57.618085][ T4971] veth1_macvtap: entered promiscuous mode
[   57.629084][ T4971] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.641249][ T4971] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.653817][   T51] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.673666][   T51] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.713881][   T51] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.728172][   T51] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.982644][ T5319] netlink: 'syz.8.623': attribute type 1 has an invalid length.
[   58.256109][ T5364] macvlan2: entered promiscuous mode
[   58.261528][ T5364] macvlan2: entered allmulticast mode
[   58.280082][ T5364] bond0: entered promiscuous mode
[   58.285146][ T5364] bond_slave_0: entered promiscuous mode
[   58.290957][ T5364] bond_slave_1: entered promiscuous mode
[   58.299804][ T5364] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   58.307655][ T5364] bond0: left promiscuous mode
[   58.312478][ T5364] bond_slave_0: left promiscuous mode
[   58.318005][ T5364] bond_slave_1: left promiscuous mode
[   58.631780][ T5403] loop6: detected capacity change from 0 to 512
[   58.652263][ T5407] netlink: 'syz.8.652': attribute type 13 has an invalid length.
[   58.668165][ T5403] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.684535][ T5403] ext4 filesystem being mounted at /36/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.702247][ T5407] gretap0: refused to change device tx_queue_len
[   58.709578][ T5407] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   58.782109][ T4361] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.218569][ T5465] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   59.225806][ T5465] IPv6: NLM_F_CREATE should be set when creating new route
[   59.250527][ T5465] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   59.257773][ T5465] IPv6: NLM_F_CREATE should be set when creating new route
[   59.295498][ T5476] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[   59.305358][ T5472] loop6: detected capacity change from 0 to 512
[   59.348652][ T5481] loop8: detected capacity change from 0 to 512
[   59.359096][ T5472] EXT4-fs (loop6): too many log groups per flexible block group
[   59.367077][ T5472] EXT4-fs (loop6): failed to initialize mballoc (-12)
[   59.375766][ T5481] EXT4-fs error (device loop8): ext4_orphan_get:1392: inode #15: comm syz.8.676: iget: bad extended attribute block 1
[   59.394813][ T5472] EXT4-fs (loop6): mount failed
[   59.420792][ T5481] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.676: couldn't read orphan inode 15 (err -117)
[   59.489473][ T5481] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.526512][ T5493] loop6: detected capacity change from 0 to 2048
[   59.545604][ T5481] program syz.8.676 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   59.557120][ T5493] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.622863][ T4971] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.634066][ T4361] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.720891][ T5515] pim6reg1: entered promiscuous mode
[   59.726345][ T5515] pim6reg1: entered allmulticast mode
[   59.743286][ T5517] can0: slcan on ttyS3.
[   59.837134][ T5522] can0 (unregistered): slcan off ttyS3.
[   59.887926][ T5517] can0: slcan on ttyS3.
[   59.899272][ T5529] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   59.924295][ T5527] tipc: Resetting bearer <eth:syzkaller0>
[   59.953113][ T5527] tipc: Disabling bearer <eth:syzkaller0>
[   59.967241][ T5516] can0 (unregistered): slcan off ttyS3.
[   60.057024][ T5544] SELinux: failed to load policy
[   60.126994][ T5554] netlink: zone id is out of range
[   60.143090][ T5554] netlink: zone id is out of range
[   60.394412][ T5582] 8021q: adding VLAN 0 to HW filter on device bond1
[   60.403660][ T5583] loop7: detected capacity change from 0 to 1024
[   60.458821][ T5583] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.480811][ T5583] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   60.511623][ T3411] IPVS: starting estimator thread 0...
[   60.523253][ T5593] pim6reg1: entered promiscuous mode
[   60.528643][ T5593] pim6reg1: entered allmulticast mode
[   60.546757][ T4746] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.599151][ T5612] vlan0: entered allmulticast mode
[   60.604969][ T5612] dummy0: entered allmulticast mode
[   60.611030][ T5604] IPVS: using max 2112 ests per chain, 105600 per kthread
[   60.635571][ T5618] loop7: detected capacity change from 0 to 1024
[   60.642977][ T5618] EXT4-fs: Ignoring removed orlov option
[   60.661896][ T5618] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   60.675779][ T5621] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   60.684268][ T5620] tipc: Resetting bearer <eth:syzkaller0>
[   60.699794][ T5620] tipc: Disabling bearer <eth:syzkaller0>
[   60.748284][ T4746] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.768730][ T5632] __nla_validate_parse: 7 callbacks suppressed
[   60.768745][ T5632] netlink: 24 bytes leftover after parsing attributes in process `syz.2.720'.
[   60.802859][ T5634] pim6reg1: entered promiscuous mode
[   60.808308][ T5634] pim6reg1: entered allmulticast mode
[   60.843128][ T5640] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   60.855168][ T5640] tipc: Disabling bearer <eth:syzkaller0>
[   60.869348][ T5644] SELinux:  policydb version 0 does not match my version range 15-35
[   60.877882][ T5644] SELinux: failed to load policy
[   60.904154][ T5648] loop7: detected capacity change from 0 to 128
[   60.911192][ T5648] FAT-fs (loop7): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[   61.213005][ T5677] loop7: detected capacity change from 0 to 1024
[   61.240001][ T5677] EXT4-fs: Ignoring removed bh option
[   61.245440][ T5677] EXT4-fs: inline encryption not supported
[   61.262416][ T5677] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   61.273635][ T5677] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   61.287714][ T5677] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #3: block 2: comm syz.7.740: lblock 2 mapped to illegal pblock 2 (length 1)
[   61.334413][ T5677] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #3: block 48: comm syz.7.740: lblock 0 mapped to illegal pblock 48 (length 1)
[   61.354879][ T5677] EXT4-fs error (device loop7): ext4_acquire_dquot:6937: comm syz.7.740: Failed to acquire dquot type 0
[   61.396786][ T5677] EXT4-fs error (device loop7) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   61.416843][ T5677] EXT4-fs error (device loop7): ext4_evict_inode:254: inode #11: comm syz.7.740: mark_inode_dirty error
[   61.440452][ T5677] EXT4-fs warning (device loop7): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   61.451646][ T5677] EXT4-fs (loop7): 1 orphan inode deleted
[   61.461023][ T5677] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.473612][   T31] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1)
[   61.489194][   T31] EXT4-fs error (device loop7): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 0
[   61.512669][ T5677] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #3: block 48: comm syz.7.740: lblock 0 mapped to illegal pblock 48 (length 1)
[   61.553657][ T4746] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.619681][ T5692] netlink: 76 bytes leftover after parsing attributes in process `syz.2.747'.
[   61.820997][ T5700] pim6reg1: entered promiscuous mode
[   61.826369][ T5700] pim6reg1: entered allmulticast mode
[   62.099831][   T29] kauditd_printk_skb: 340 callbacks suppressed
[   62.099846][   T29] audit: type=1400 audit(1756511811.293:1782): avc:  denied  { read } for  pid=5703 comm="syz.8.752" name="mISDNtimer" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   62.129483][   T29] audit: type=1400 audit(1756511811.293:1783): avc:  denied  { open } for  pid=5703 comm="syz.8.752" path="/dev/mISDNtimer" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   62.272579][ T5707] serio: Serial port ptm0
[   62.428075][   T29] audit: type=1400 audit(1756511811.613:1784): avc:  denied  { mount } for  pid=5711 comm="syz.2.755" name="/" dev="configfs" ino=2081 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   62.450862][   T29] audit: type=1400 audit(1756511811.623:1785): avc:  denied  { search } for  pid=5711 comm="syz.2.755" name="/" dev="configfs" ino=2081 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   62.473072][   T29] audit: type=1400 audit(1756511811.623:1786): avc:  denied  { search } for  pid=5711 comm="syz.2.755" name="/" dev="configfs" ino=2081 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   62.496238][   T29] audit: type=1400 audit(1756511811.623:1787): avc:  denied  { read open } for  pid=5711 comm="syz.2.755" path="/" dev="configfs" ino=2081 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   62.583909][ T5717] loop6: detected capacity change from 0 to 1024
[   62.628236][ T5717] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.648111][   T29] audit: type=1400 audit(1756511811.653:1788): avc:  denied  { create } for  pid=5713 comm="syz.2.756" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   62.667864][   T29] audit: type=1400 audit(1756511811.733:1789): avc:  denied  { create } for  pid=5716 comm="syz.2.758" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   62.687286][   T29] audit: type=1400 audit(1756511811.733:1790): avc:  denied  { write } for  pid=5716 comm="syz.2.758" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   62.706562][   T29] audit: type=1400 audit(1756511811.743:1791): avc:  denied  { module_request } for  pid=5716 comm="syz.2.758" kmod="crypto-digest_null" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   62.717094][ T5717] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4183: comm syz.6.757: Allocating blocks 385-513 which overlap fs metadata
[   62.783522][ T5732] EXT4-fs (loop6): pa ffff888106b1a850: logic 16, phys. 129, len 24
[   62.791620][ T5732] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   62.895257][ T4361] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.964768][ T5748] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5748 comm=syz.6.759
[   62.980124][ T5694] loop7: detected capacity change from 0 to 1024
[   63.007031][ T5694] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.025502][ T5752] hub 2-0:1.0: USB hub found
[   63.041977][ T5752] hub 2-0:1.0: 8 ports detected
[   63.047259][ T5694] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.123136][ T5763] netlink: 4 bytes leftover after parsing attributes in process `syz.8.762'.
[   63.248861][ T5778] pim6reg1: entered promiscuous mode
[   63.254294][ T5778] pim6reg1: entered allmulticast mode
[   63.317458][ T3454] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   63.341663][ T3454] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 304 with error 28
[   63.354169][ T3454] EXT4-fs (loop7): This should not happen!! Data will be lost
[   63.354169][ T3454] 
[   63.363907][ T3454] EXT4-fs (loop7): Total free blocks count 0
[   63.369956][ T3454] EXT4-fs (loop7): Free/Dirty block details
[   63.375865][ T3454] EXT4-fs (loop7): free_blocks=4293918720
[   63.381681][ T3454] EXT4-fs (loop7): dirty_blocks=304
[   63.386935][ T3454] EXT4-fs (loop7): Block reservation details
[   63.392925][ T3454] EXT4-fs (loop7): i_reserved_data_blocks=19
[   63.397115][ T5787] loop8: detected capacity change from 0 to 1024
[   63.429035][ T5787] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.442785][ T4746] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.528769][ T5787] EXT4-fs error (device loop8): ext4_mb_mark_diskspace_used:4183: comm syz.8.767: Allocating blocks 449-513 which overlap fs metadata
[   63.624734][ T5786] EXT4-fs (loop8): pa ffff8881007730e0: logic 48, phys. 177, len 21
[   63.632823][ T5786] EXT4-fs error (device loop8): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[   63.686391][ T4971] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.785871][ T5828] vhci_hcd: invalid port number 96
[   63.791042][ T5828] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   63.858004][ T5839] loop8: detected capacity change from 0 to 1024
[   63.899076][ T5839] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.965704][ T5856] netlink: 52 bytes leftover after parsing attributes in process `syz.6.782'.
[   63.982718][ T5839] EXT4-fs error (device loop8): ext4_mb_mark_diskspace_used:4183: comm syz.8.780: Allocating blocks 449-513 which overlap fs metadata
[   64.031280][ T5837] EXT4-fs (loop8): pa ffff888100773150: logic 48, phys. 177, len 21
[   64.039383][ T5837] EXT4-fs error (device loop8): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[   64.112965][ T4971] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.267563][ T5892] loop7: detected capacity change from 0 to 1024
[   64.301665][ T5892] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.320820][ T5904] loop8: detected capacity change from 0 to 2048
[   64.333730][ T5892] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4183: comm syz.7.790: Allocating blocks 385-513 which overlap fs metadata
[   64.358578][ T5904] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.398640][ T5892] EXT4-fs (loop7): pa ffff888106b1a850: logic 16, phys. 129, len 24
[   64.406861][ T5892] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   64.439545][ T4971] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.468549][ T5920] syzkaller1: entered promiscuous mode
[   64.474094][ T5920] syzkaller1: entered allmulticast mode
[   64.579026][ T5935] netlink: 76 bytes leftover after parsing attributes in process `syz.6.798'.
[   64.678319][ T5958] pim6reg1: entered promiscuous mode
[   64.683683][ T5958] pim6reg1: entered allmulticast mode
[   64.702268][ T5962] vlan2: entered allmulticast mode
[   64.707496][ T5962] dummy0: entered allmulticast mode
[   64.958080][ T5993] syzkaller0: entered promiscuous mode
[   64.963695][ T5993] syzkaller0: entered allmulticast mode
[   64.991718][ T5996] loop7: detected capacity change from 0 to 1024
[   65.022265][ T5996] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.044756][ T5996] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   65.064121][ T6003] loop6: detected capacity change from 0 to 1024
[   65.162157][ T6003] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4183: comm syz.6.815: Allocating blocks 449-513 which overlap fs metadata
[   65.192006][ T6002] EXT4-fs (loop6): pa ffff8881007730e0: logic 48, phys. 177, len 21
[   65.197860][ T6015] netlink: 'syz.0.818': attribute type 13 has an invalid length.
[   65.200209][ T6002] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5434: group 0, 
[   65.207822][ T6015] netlink: 'syz.0.818': attribute type 14 has an invalid length.
[   65.224038][ T6002] free 0, pa_free 4
[   65.375274][ T6032] netlink: 4 bytes leftover after parsing attributes in process `syz.7.824'.
[   65.440185][ T6040] ALSA: seq fatal error: cannot create timer (-19)
[   65.556133][ T6057] syzkaller1: entered promiscuous mode
[   65.561732][ T6057] syzkaller1: entered allmulticast mode
[   65.794609][ T6076] netlink: 4 bytes leftover after parsing attributes in process `syz.2.842'.
[   65.866666][ T6085] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   65.880155][ T6084] IPVS: stopping master sync thread 6085 ...
[   66.178868][ T6100] syzkaller1: entered promiscuous mode
[   66.184391][ T6100] syzkaller1: entered allmulticast mode
[   66.281314][ T6103] ------------[ cut here ]------------
[   66.286856][ T6103] verifier bug: REG INVARIANTS VIOLATION (false_reg1): range bounds violation u64=[0x0, 0x1] s64=[0x0, 0x1] u32=[0x1, 0x0] s32=[0x0, 0x1] var_off=(0x0, 0x1)(1)
[   66.303092][ T6103] WARNING: CPU: 1 PID: 6103 at kernel/bpf/verifier.c:2728 reg_bounds_sanity_check+0x673/0x680
[   66.313516][ T6103] Modules linked in:
[   66.317627][ T6103] CPU: 1 UID: 0 PID: 6103 Comm: syz.8.853 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   66.329114][ T6103] Tainted: [W]=WARN
[   66.332924][ T6103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   66.343059][ T6103] RIP: 0010:reg_bounds_sanity_check+0x673/0x680
[   66.349448][ T6103] Code: 7c 24 18 41 ff 74 24 20 55 41 56 4d 89 ee 53 48 8b 5c 24 30 ff 74 24 40 ff 74 24 50 ff 74 24 30 e8 92 80 ba ff 48 83 c4 38 90 <0f> 0b 90 90 e9 02 fb ff ff 0f 1f 40 00 90 90 90 90 90 90 90 90 90
[   66.369117][ T6103] RSP: 0018:ffffc90006d23440 EFLAGS: 00010292
[   66.375225][ T6103] RAX: 189915331b696800 RBX: ffff888119411040 RCX: 0000000000080000
[   66.383332][ T6103] RDX: ffffc90007235000 RSI: 0000000000003eca RDI: 0000000000003ecb
[   66.391355][ T6103] RBP: 0000000000000000 R08: 0001c90006d2327f R09: 0000000000000000
[   66.399445][ T6103] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff888119411000
[   66.407457][ T6103] R13: ffff888104738000 R14: ffff888104738000 R15: ffff888119411038
[   66.415453][ T6103] FS:  00007f03f3ba76c0(0000) GS:ffff8882aef43000(0000) knlGS:0000000000000000
[   66.424603][ T6103] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   66.431337][ T6103] CR2: 00007f03f3ba6f98 CR3: 0000000115302000 CR4: 00000000003506f0
[   66.439450][ T6103] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   66.447483][ T6103] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[   66.455557][ T6103] Call Trace:
[   66.458891][ T6103]  <TASK>
[   66.461843][ T6103]  reg_set_min_max+0x215/0x260
[   66.466656][ T6103]  check_cond_jmp_op+0x1080/0x16e0
[   66.471874][ T6103]  do_check+0x332a/0x7a10
[   66.476334][ T6103]  ? __pfx_verbose+0x10/0x10
[   66.481038][ T6103]  ? __pfx_disasm_kfunc_name+0x10/0x10
[   66.486639][ T6103]  do_check_common+0xc3a/0x12a0
[   66.491661][ T6103]  ? __pfx_disasm_kfunc_name+0x10/0x10
[   66.497205][ T6103]  bpf_check+0x942b/0xd9e0
[   66.501674][ T6103]  ? __rcu_read_unlock+0x4f/0x70
[   66.506680][ T6103]  ? __alloc_frozen_pages_noprof+0x188/0x360
[   66.512818][ T6103]  ? alloc_pages_bulk_noprof+0x4b8/0x540
[   66.518546][ T6103]  ? __vmap_pages_range_noflush+0xbb3/0xbd0
[   66.524557][ T6103]  ? css_rstat_updated+0xb7/0x240
[   66.529787][ T6103]  ? try_charge_memcg+0x200/0x9e0
[   66.534874][ T6103]  ? pcpu_block_update+0x232/0x3b0
[   66.540034][ T6103]  ? _find_next_zero_bit+0x64/0xa0
[   66.545165][ T6103]  ? pcpu_block_refresh_hint+0x157/0x170
[   66.550861][ T6103]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[   66.556983][ T6103]  ? css_rstat_updated+0xb7/0x240
[   66.562182][ T6103]  ? __rcu_read_unlock+0x4f/0x70
[   66.567164][ T6103]  ? pcpu_memcg_post_alloc_hook+0xf1/0x150
[   66.573048][ T6103]  ? should_fail_ex+0x30/0x280
[   66.577887][ T6103]  ? selinux_bpf_prog_load+0x36/0xf0
[   66.583229][ T6103]  ? should_failslab+0x8c/0xb0
[   66.588078][ T6103]  ? __kmalloc_cache_noprof+0x189/0x320
[   66.593684][ T6103]  ? selinux_bpf_prog_load+0xbf/0xf0
[   66.599032][ T6103]  ? security_bpf_prog_load+0x2c/0xa0
[   66.604610][ T6103]  bpf_prog_load+0xedd/0x1070
[   66.609394][ T6103]  ? security_bpf+0x2b/0x90
[   66.613933][ T6103]  __sys_bpf+0x462/0x7b0
[   66.618260][ T6103]  __x64_sys_bpf+0x41/0x50
[   66.622740][ T6103]  x64_sys_call+0x2aea/0x2ff0
[   66.627533][ T6103]  do_syscall_64+0xd2/0x200
[   66.632076][ T6103]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   66.638228][ T6103]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   66.644010][ T6103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.650060][ T6103] RIP: 0033:0x7f03f513ebe9
[   66.654558][ T6103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.674236][ T6103] RSP: 002b:00007f03f3ba7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   66.682744][ T6103] RAX: ffffffffffffffda RBX: 00007f03f5375fa0 RCX: 00007f03f513ebe9
[   66.690770][ T6103] RDX: 000000000000002d RSI: 00002000002a0fb8 RDI: 0000000000000005
[   66.698783][ T6103] RBP: 00007f03f51c1e19 R08: 0000000000000000 R09: 0000000000000000
[   66.706871][ T6103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   66.714905][ T6103] R13: 00007f03f5376038 R14: 00007f03f5375fa0 R15: 00007ffe3d12c848
[   66.722995][ T6103]  </TASK>
[   66.726119][ T6103] ---[ end trace 0000000000000000 ]---
[   66.769607][ T6112] loop7: detected capacity change from 0 to 1024
[   66.788704][ T6112] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.806566][ T6112] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   66.823132][ T6112] EXT4-fs (loop7): Remounting filesystem read-only
[   66.897165][ T6122] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   66.905740][ T6121] tipc: Resetting bearer <eth:syzkaller0>
[   66.930756][ T6121] tipc: Disabling bearer <eth:syzkaller0>
[   66.960931][ T6130] loop6: detected capacity change from 0 to 512
[   66.978153][ T6130] EXT4-fs warning (device loop6): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   67.004437][ T6130] EXT4-fs (loop6): mount failed
[   67.032015][ T6130] loop6: detected capacity change from 0 to 1024
[   67.036579][ T6136] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   67.056032][ T6130] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   67.067058][ T6130] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   67.080354][ T6130] JBD2: no valid journal superblock found
[   67.086125][ T6130] EXT4-fs (loop6): Could not load journal inode
[   67.135780][   T29] kauditd_printk_skb: 152 callbacks suppressed
[   67.135799][   T29] audit: type=1326 audit(1756511816.323:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6142 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   67.165339][   T29] audit: type=1326 audit(1756511816.323:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6142 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   67.191717][   T29] audit: type=1326 audit(1756511816.383:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6142 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   67.215195][   T29] audit: type=1326 audit(1756511816.383:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6142 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   67.238541][   T29] audit: type=1326 audit(1756511816.383:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6142 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   67.264637][   T29] audit: type=1326 audit(1756511816.453:1948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6142 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   67.288028][   T29] audit: type=1326 audit(1756511816.453:1949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6142 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   67.311566][   T29] audit: type=1326 audit(1756511816.453:1950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6142 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   67.374536][   T29] audit: type=1326 audit(1756511816.563:1951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6142 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   67.398020][   T29] audit: type=1326 audit(1756511816.563:1952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6142 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d942cebe9 code=0x7ffc0000
[   67.454194][ T6152] random: crng reseeded on system resumption
[   68.135200][ T6209] bridge: RTM_NEWNEIGH with invalid ether address
[   68.287094][ T6227] tipc: Started in network mode
[   68.292028][ T6227] tipc: Node identity 22827233cad7, cluster identity 4711
[   68.299421][ T6227] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   68.337271][ T6222] tipc: Resetting bearer <eth:syzkaller0>
[   68.367496][ T6222] tipc: Disabling bearer <eth:syzkaller0>
[   68.399927][ T6235] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.453441][ T6248] netlink: 20 bytes leftover after parsing attributes in process `syz.8.900'.
[   68.478063][ T6248] x_tables: ip_tables: udp match: only valid for protocol 17
[   68.497892][ T6235] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.579559][ T6235] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.633826][ T6263] loop8: detected capacity change from 0 to 1024
[   68.650864][ T6263] EXT4-fs mount: 7 callbacks suppressed
[   68.650878][ T6263] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.671553][ T6235] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.692603][ T6263] EXT4-fs error (device loop8): ext4_mb_mark_diskspace_used:4183: comm syz.8.905: Allocating blocks 385-513 which overlap fs metadata
[   68.712543][ T6263] EXT4-fs (loop8): pa ffff8881007731c0: logic 16, phys. 129, len 24
[   68.720699][ T6263] EXT4-fs error (device loop8): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[   68.771221][ T6274] syzkaller1: entered promiscuous mode
[   68.776742][ T6274] syzkaller1: entered allmulticast mode
[   68.795054][   T51] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.820742][   T51] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.836105][ T4971] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.846249][   T51] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.860446][   T51] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.905281][ T6281] 9pnet_fd: Insufficient options for proto=fd
[   68.946842][ T6287] loop7: detected capacity change from 0 to 1024
[   68.966111][ T6287] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.989146][ T6287] ext4 filesystem being mounted at /81/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.015140][ T6287] EXT4-fs error (device loop7): ext4_map_blocks:814: inode #15: block 1: comm syz.7.913: lblock 1 mapped to illegal pblock 1 (length 15)
[   69.038043][ T6287] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[   69.050468][ T6287] EXT4-fs (loop7): This should not happen!! Data will be lost
[   69.050468][ T6287] 
[   69.067070][ T6287] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   69.083836][ T6301] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #15: block 1: comm syz.7.913: lblock 1 mapped to illegal pblock 1 (length 3)
[   69.104209][ T6301] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #15: block 1: comm syz.7.913: lblock 1 mapped to illegal pblock 1 (length 3)
[   69.131969][ T6301] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #15: block 1: comm syz.7.913: lblock 1 mapped to illegal pblock 1 (length 3)
[   69.146964][ T6304] loop8: detected capacity change from 0 to 2048
[   69.168369][ T6304] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.189103][ T4746] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.239036][ T6313] bond_slave_1: mtu less than device minimum
[   69.299776][ T6316] ==================================================================
[   69.307931][ T6316] BUG: KCSAN: data-race in __writeback_single_inode / xas_set_mark
[   69.315855][ T6316] 
[   69.318179][ T6316] write to 0xffff888118db76ac of 4 bytes by task 6304 on cpu 0:
[   69.325827][ T6316]  xas_set_mark+0x12b/0x140
[   69.330355][ T6316]  __folio_start_writeback+0x1dd/0x440
[   69.335817][ T6316]  ext4_bio_write_folio+0x5ad/0x9f0
[   69.341037][ T6316]  mpage_process_page_bufs+0x4a1/0x620
[   69.346492][ T6316]  mpage_prepare_extent_to_map+0x786/0xc00
[   69.352386][ T6316]  ext4_do_writepages+0xa05/0x2750
[   69.357512][ T6316]  ext4_writepages+0x176/0x300
[   69.362282][ T6316]  do_writepages+0x1c3/0x310
[   69.366968][ T6316]  file_write_and_wait_range+0x156/0x2c0
[   69.372712][ T6316]  generic_buffers_fsync_noflush+0x45/0x120
[   69.378607][ T6316]  ext4_sync_file+0x1ab/0x690
[   69.383303][ T6316]  vfs_fsync_range+0x10d/0x130
[   69.388080][ T6316]  ext4_buffered_write_iter+0x34f/0x3c0
[   69.393672][ T6316]  ext4_file_write_iter+0x383/0xf00
[   69.398885][ T6316]  iter_file_splice_write+0x663/0xa60
[   69.404268][ T6316]  direct_splice_actor+0x153/0x2a0
[   69.409374][ T6316]  splice_direct_to_actor+0x30f/0x680
[   69.414755][ T6316]  do_splice_direct+0xda/0x150
[   69.419519][ T6316]  do_sendfile+0x380/0x650
[   69.423948][ T6316]  __x64_sys_sendfile64+0x105/0x150
[   69.429188][ T6316]  x64_sys_call+0x2bb0/0x2ff0
[   69.433873][ T6316]  do_syscall_64+0xd2/0x200
[   69.438393][ T6316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.444289][ T6316] 
[   69.446633][ T6316] read to 0xffff888118db76ac of 4 bytes by task 6316 on cpu 1:
[   69.454170][ T6316]  __writeback_single_inode+0x1f9/0x7c0
[   69.459726][ T6316]  writeback_single_inode+0x167/0x3e0
[   69.465112][ T6316]  sync_inode_metadata+0x5b/0x90
[   69.470052][ T6316]  generic_buffers_fsync_noflush+0xd9/0x120
[   69.475946][ T6316]  ext4_sync_file+0x1ab/0x690
[   69.480632][ T6316]  vfs_fsync_range+0x10d/0x130
[   69.485406][ T6316]  ext4_buffered_write_iter+0x34f/0x3c0
[   69.490972][ T6316]  ext4_file_write_iter+0x383/0xf00
[   69.496187][ T6316]  iter_file_splice_write+0x663/0xa60
[   69.501563][ T6316]  direct_splice_actor+0x153/0x2a0
[   69.506675][ T6316]  splice_direct_to_actor+0x30f/0x680
[   69.512045][ T6316]  do_splice_direct+0xda/0x150
[   69.516826][ T6316]  do_sendfile+0x380/0x650
[   69.521252][ T6316]  __x64_sys_sendfile64+0x105/0x150
[   69.526450][ T6316]  x64_sys_call+0x2bb0/0x2ff0
[   69.531124][ T6316]  do_syscall_64+0xd2/0x200
[   69.535642][ T6316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.541532][ T6316] 
[   69.543846][ T6316] value changed: 0x0a000021 -> 0x00000021
[   69.549551][ T6316] 
[   69.551896][ T6316] Reported by Kernel Concurrency Sanitizer on:
[   69.558065][ T6316] CPU: 1 UID: 0 PID: 6316 Comm: syz.8.918 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   69.569467][ T6316] Tainted: [W]=WARN
[   69.573287][ T6316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   69.583341][ T6316] ==================================================================
[   69.593201][ T6319] EXT4-fs (loop8): Online defrag not supported with bigalloc
[   69.614376][ T6315] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.621624][ T6315] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.710020][   T31] netdevsim netdevsim7 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   69.734121][   T31] netdevsim netdevsim7 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   69.757992][   T31] netdevsim netdevsim7 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   69.766579][ T1435] netdevsim netdevsim7 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   70.148495][ T4971] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.