last executing test programs:

1m52.73612s ago: executing program 0 (id=1568):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x3, [@const={0xf, 0x0, 0x0, 0xa, 0x1}]}, {0x0, [0x30]}}, &(0x7f0000000140)=""/205, 0x27, 0xcd, 0x0, 0xfffffffd}, 0x28)
r2 = socket(0x11, 0x3, 0x0)
r3 = epoll_create1(0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000000)={0xe000202b})
epoll_pwait(r4, &(0x7f00000003c0), 0x0, 0xfffffffffffffff7, 0x0, 0x0)
r5 = dup3(r2, r4, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018010000280e521a29c759b3c6a2625431ffd85e2020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7"], 0x0, 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r6, 0x0, 0x4804}, 0x18)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x20000010) (fail_nth: 5)

1m52.735244051s ago: executing program 0 (id=1569):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x84}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x82044, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000001800599c6d0e0000ded650492d"], 0xfe33)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
ppoll(0x0, 0xfffffffffffffd8e, 0x0, 0x0, 0x4e)
utimensat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
inotify_init()
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000009c0000000b"], 0x50)
pipe2$9p(0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRESOCT], 0x5c}}, 0x0)
write(r5, &(0x7f0000004200)='t', 0x1)
sendfile(r5, r0, 0x0, 0x3ffff)
sendfile(r5, r0, 0x0, 0x7ffff000)

1m52.018840912s ago: executing program 0 (id=1586):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002064ec2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffff00000000008500000006000000181100"/84, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001140)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xdce}, 0x18)
syz_read_part_table(0x1059, &(0x7f0000000000)="$eJzsz8FNw0AUBNDxYmRbogNa4Ewn7scHCuFMT0hUwDmX6EdeR0oHSQ7v3Uazs9IPD/WRlpxqfG+ZkyXJuWpK8nb0VdVakr+ehtuwP+q2ek3ycoRx2f/JsF3LVv+fa9/VsC++l6/5aH4zZf25150AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8MwuAQAA//9ZkRMF")
r2 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f0000000040)={0x1d, r3, 0x8000000000000003}, 0x18)
recvfrom(r2, 0x0, 0x0, 0x40, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x33}, 0x94)
pipe(&(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
vmsplice(r5, &(0x7f0000000000)=[{&(0x7f00000001c0)='\b', 0x1}], 0x1, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
vmsplice(r4, &(0x7f00000007c0)=[{&(0x7f0000000340)="b7", 0x1}], 0x1, 0xa)

1m51.72635227s ago: executing program 0 (id=1591):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000800)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = syz_open_procfs$pagemap(0x0, &(0x7f0000000000))
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00', r0, 0x0, 0x4}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRESOCT=r2, @ANYRESHEX=r3], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000000)={[{@errors_remount}]}, 0x1, 0x4dd, &(0x7f0000000240)="$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")
r5 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
write$selinux_attr(r5, &(0x7f0000000780)='system_u:object_r:hugetlbfs_t:s0\x00', 0x21)
socket$netlink(0x10, 0x3, 0x8)
stat(&(0x7f00000007c0)='./file0\x00', &(0x7f00000008c0))
r6 = socket$tipc(0x1e, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r7, 0x58, &(0x7f0000000300)={0x0, <r8=>0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x18, 0x7, &(0x7f0000000d80)=ANY=[@ANYBLOB="1823024ccef89dfe1fd87ea3a77f565f29778937e4ba1784fb85248ada508e2f4de7ae0e12801ae4241d2bf87f0ec9cbed60f440308c4ce89a740e11df63f7ca9804b1509464cae3f2e135d859a7bed288491ac2147e389a0ff1e78c92bb2c3089363d5a8de16667aae8e3274dbf9d9bbf0f6f15642d0ad0c1610a9bcf1b6724ff335ad247bc1981424eef875b6f30c9b229672104ca", @ANYRES64=r3, @ANYRES16=r7, @ANYRESHEX=r1, @ANYRESOCT=r6, @ANYRESHEX=r8, @ANYRES64=r9, @ANYBLOB, @ANYRESOCT=r9, @ANYBLOB="a067795e127ead165e2b73d2e8d21f3ea165098c20bf33f9a9229d91953ee1f202193b15560aab899b092549cd128a44ac7728b568fa93bd24a9e35db8725db6d0e371005278f76253790e19b2e601412fc7d95abc05f9f343f04f8a98117ca055f2cbbb5888525de2549af87ed72ce738cb8cae5c02457ca695c8f8211cbb9795893b55bfae464aaf7f77121ff9ae4adaa8ca417bc509a026aad1b758d5956d2ba1a6aa00ab56d70f91eeacb0632dd1493bcc5599e83545f0ab62145f5336fbf026528c89150d20860de2f57a439fde86b973733bd6d22b7af2a764fb013ba4b26a038e1262958ed1b6be3f2ab12e007b", @ANYBLOB="b8a9460139c078ff7d41f997c96f5477aaa68101f3e9a2959a2cf28b005d2928352db6e69cf2cb90335d8003393a7e5f96d1638b37cdf4fb56fb88506b2de2a91e652f614cfb2bd65dd8ea4256f250ab8ffe09cf110e9fb85fba7a6fad038460edab475cae52513c20071606ab60cacf0ff3ec263cb029f236714f"], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x62, '\x00', r9, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0xfffffffffffffe4c, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r11, 0x0, 0x9}, 0x18)
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000000000000000eff71d9917bbae90862dd3a658d0fe4f00000e000000850000009b000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702f0ff07000000b703000002000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r12, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xe00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f"], 0x0, 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', r9, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xfffffcd7)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00', r13}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000038000000030a01040000000000000000010000010900010073797a30000000000c0002400000000000000001"], 0xac}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
bind$tipc(r6, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r14 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$KDSIGACCEPT(r14, 0x4b4e, 0x25)

1m51.603367035s ago: executing program 0 (id=1593):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0xac, 0x24, 0xf0b, 0x70bd2b, 0x4000000, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x7c, 0x2, [@TCA_TAPRIO_ATTR_TXTIME_DELAY={0x8, 0xb, 0xe}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x2, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8, 0x0, 0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x7}]}}]}, 0xac}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
socket$inet_sctp(0x2, 0x5, 0x84)
capset(0x0, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r4=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r4, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
r5 = socket(0x40000000015, 0x5, 0x0)
recvmmsg(r5, &(0x7f0000001740)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000001fd8)=ANY=[@ANYBLOB="d70a000010000000620a00000000000007000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0x3, &(0x7f000000cf3d)=""/195}, 0x23)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0x1)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x0)
preadv(r6, &(0x7f00000009c0)=[{&(0x7f0000000840)=""/254, 0xfe}, {&(0x7f0000000940)}, {0xfffffffffffffffd}, {&(0x7f0000000980)=""/39, 0x27}], 0x4, 0x401, 0xfffffffc)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r7)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r7, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01000000040200f2c8dc1b00000018000180140002"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0x1, 0x58, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0}}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000400)={0x1, 0x58, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r10=>0x0}}, 0x10)
r11 = getpgrp(0xffffffffffffffff)
ptrace$setopts(0x4206, r11, 0x0, 0x20004f)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000440)={'vxcan0\x00', <r12=>0x0})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000540)={'syztnl1\x00', &(0x7f0000000480)={'syztnl1\x00', <r13=>r1, 0x8, 0x7, 0x200, 0x9, {{0x1a, 0x4, 0x1, 0x5, 0x68, 0x67, 0x0, 0x40, 0x4, 0x0, @broadcast, @local, {[@rr={0x7, 0x7, 0x96, [@multicast1]}, @timestamp={0x44, 0x24, 0xf8, 0x0, 0x7, [0x9, 0x200, 0x6, 0x9, 0x81, 0xffff, 0x0, 0x42f3]}, @end, @timestamp={0x44, 0x1c, 0xd7, 0x0, 0x3, [0xfffffff7, 0x7, 0x9, 0x1, 0x3, 0xffffff52]}, @generic={0x89, 0x9, "4b7735038359a1"}]}}}}})
sendmsg$ETHTOOL_MSG_WOL_GET(r2, &(0x7f0000000800)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000580)=ANY=[@ANYBLOB="ac010000", @ANYRES16=r8, @ANYBLOB="00012cbd7000fbdbdf2509000000540001801400020067726574617030000000000000000000080003000200000008000100", @ANYRES32=r9, @ANYBLOB="1400020076657468305f746f5f6261746164760008000100", @ANYRES32=r10, @ANYBLOB="080003000200000008000300040000004800018008000100", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="08000300010000000800030000000000140002006e65747063693000000000000000000008000100", @ANYRES32=r1, @ANYBLOB="080003000200000058000180140002007465616d5f736c6176655f310000000008000300020000001400020070696d7265673000000000000000000008000100", @ANYRES32=r12, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="1400220064756d6d793000000000000000000000440001800800030001000000080003000300000008000100", @ANYRES32=r13, @ANYBLOB="140002006e657464657673696d30000000000000140002007465616d3000000000000000000000001c0001800800030003000000080003000000000008000100", @ANYRES32=r1, @ANYBLOB="440001801400020067656e65766531000000000000000000080003000200000008000100", @ANYRES32=r1, @ANYBLOB="140002006272696467655f736c6176655f3000000800030002000000"], 0x1ac}, 0x1, 0x0, 0x0, 0x40801}, 0x20000000)

1m51.272246958s ago: executing program 0 (id=1597):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
open(&(0x7f0000000040)='./file2\x00', 0x4440, 0x4)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x18, &(0x7f0000000100)=0xc, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'gretap0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000180)="0b0368002e0064000200475400f6a13bb1000000086086dd894f", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x8100, r1}, 0x14)

1m51.199343637s ago: executing program 32 (id=1597):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
open(&(0x7f0000000040)='./file2\x00', 0x4440, 0x4)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x18, &(0x7f0000000100)=0xc, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'gretap0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000180)="0b0368002e0064000200475400f6a13bb1000000086086dd894f", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x8100, r1}, 0x14)

2.80761554s ago: executing program 1 (id=3329):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000480)={'pim6reg0\x00', 0x7143})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f00000002c0)='./file0\x00', 0x8004, &(0x7f0000001300)=ANY=[@ANYBLOB='nonumtail=0,shortname=lower,shortname=mixed,utf8=1,iocharset=cp1251,nonumtail=0,rodir,shortname=win95,iocharset=utf8,check=relaxed,shortname=mixed,shortname=win95,errors=remount-ro,shortname=winnt,shortname=win95,uni_xlate=0,nonumtail=0,discard,nnonumtail=1,codepage=865,nonumtail=0,shortname=winnt,shortname=win95,Cscontext=unconfined_u,\x00'], 0x1, 0x36b, &(0x7f0000000a00)="$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")
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r2, 0x2007ffc)
sendfile(r2, r2, 0x0, 0x800000009)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000001500))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000015c0)={0x17, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
linkat(0xffffffffffffffff, &(0x7f0000000600)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000014c0)='mm_migrate_pages\x00', r1}, 0x18)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x80400e, &(0x7f0000000240)={[{@i_version}, {@nodiscard}, {@nobh}, {@lazytime}, {@jqfmt_vfsold}, {@quota}]}, 0x2, 0x447, &(0x7f0000000500)="$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")
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r4 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50)
getdents(r4, &(0x7f0000001fc0)=""/184, 0xb8)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000300)='mm_migrate_pages\x00', r5, 0x0, 0x6}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd2a, 0x8002, {0x0, 0x0, 0x0, r7, {}, {0xb, 0x1}, {0xfff1, 0xfff3}}, [@TCA_RATE={0x6, 0x5, {0x5, 0x7}}, @TCA_CHAIN={0x8, 0xb, 0x200}]}, 0x34}, 0x1, 0x0, 0x0, 0xe8728ce82d5df8ab}, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r8, 0xffffffffffffffff, 0x100000000000000)

1.842369804s ago: executing program 1 (id=3353):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x89, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xd6)
openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x185080, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000012c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34664c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbcebddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cfd7c3a1d37a6ab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ed8dba2f23b01a9aeb980aff9fa3a64709270c701db801f44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af4c0eb97fca585ec6bf58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef3b7cda42013d53046da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea2a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f76062adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b441233151122b41a8d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225a53072423b907c6682f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd1f539bd43007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711d7219ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a26c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29754f928c59306ce105ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc05fea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efdb36b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800000000000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351ba332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d9890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b0783883ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a139d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fcc49a729f11ab377f7132c543d29646a9378eea0761b7ed9d2172e33ed87c6513c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828bf209d0"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000004c0)={@cgroup=r3, r3, 0x2f, 0x0, 0x0, @void, @value=r3}, 0x20)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000240)={@fallback=r3, 0x2f, 0x0, 0x0, &(0x7f0000000140)=[0x0], 0x1, 0x0, &(0x7f0000000200)=[0x0], 0x0, 0x0}, 0x24)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
unshare(0x22020400)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000980)=ANY=[@ANYBLOB="240000003f000500000000000000df25047c0000040000000c0001"], 0x24}, 0x1, 0x0, 0x0, 0x48800}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r5}, 0x10)
ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

1.272562097s ago: executing program 1 (id=3361):
socket$nl_rdma(0x10, 0x3, 0x14)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f0000000340), 0x1, 0x7c3, &(0x7f0000001680)="$eJzs3c1rHOcZAPBnVpJXkt1KhdLWN0HBFRivKle1W+jBpYdSqMHQnmuL1Vq4WmmNdmUsIahNCeQSSEIOgeTicz6cW675gFyS/Bc5BBsnkU0ccggKszsrydKuPmxpV7F+PxjN+87M6nmf+Xx3Z9gN4MgaSf/kIk5GxMtJxFA2PYmIvnqpN+JCY7nHK8v9EVFMYnX1X18n9WUerSwXY8NrUsezym8i4qMXIk7ntsatLi7NTJbLpfmsPlabvT5WXVw6c212cro0XZo7Nz4xcfb8H8+f279cv/186cT9V/7+u3cvfP//X9996eMkLsSJbN7GPPbLSIxk66QvXYVP+Nt+B+uypNsN4Kmkh2ZP4yiPkzEUPfVSGwOdbBkAcFD+FxGrAMARk7j+A8AR0/wc4NHKcrE5dPcTic568NeI6G/k/zgbGnN6s3t2/fX7oIOPkifujCQRMbwP8Uci4s33/3OqJ6un7XAvDeiEW7cj4srwyNbzf7LlmYW9+v12M1fz9dHIpslH7foD3fRB2v/5U6v+X26t/xMt+j/5xrH7q2eNv/Pxn7v3rDG2k/b//tJ4tm1T/2/tobXhnqz2s3qfry+5eq1cSs9tP4+I0ejLp/Xx+qKte26jD3942C5+1v97Ox2+efW/b6Xx0/H6Erl7vfknXzM1Wev95FkTzzy4HYNZcVP+ydr2T9r0fy/tMsY//vziG+3mpfmn+TaHrfkfrNU7Eadabv/1bZls+3ziWH13GGvuFC2898Xrg+3ib9z+6ZDGT8f7n2lrD25HfQdIkvV10Jizlv9wsvF5zereY3x2Z+jDdvN2zr/l/j95LPl3vXwsm3ZzslabH484lvxz6/Sz669t1pvLp/mP/rb18d8I23r/T98TXtll/r33v3rn6fM/WGn+U9vv/5u2f382eX3KToW7j2d62sXf3fafqJdGsynp9t8pr9206+n2ZgAAAAAAAAAAAAAAAAAAAAAAAADYu1xEnIgkV1gr53KFQuM3vH8Zg7lypVo7fbWyMDcV9d/KHo6+XPOrLoc2fB/qePZ9+M362U31P0TELyLitfxAvV4oVspT3U4eAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADLH2/z+f+rLfLdbBwAcmP5uNwAA6DjXfwA4evZ2/R84sHYAAJ3j/T8AHD27vv5fOdh2AACd0+b6v9zpdgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDcunTxYjqsfreyXEzrUzcWF2YqN85MlaozhdmFYqFYmb9emK5UpsulQrEy2/Yf3WqMypXK9YmYW7g5VitVa2PVxaXLs5WFudrla7OT06XLpb6OZQYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAu1ddXJqZLJdL889D4dP8emL7HGKgqwkOHorVu7HQG4eiGYe6kI8ts3KHomG7Kmw8Swx04cwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8NPwYwAAAP//L0cXYQ==")
r3 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
readv(r3, &(0x7f0000000100), 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

1.150531332s ago: executing program 1 (id=3365):
r0 = socket(0x2f, 0x6, 0x26)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_type(r1, &(0x7f0000000300), 0x2, 0x0)
write$cgroup_type(r2, &(0x7f0000000280), 0x9)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000c40), 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r4, &(0x7f0000000200)=0x1, 0x12)

1.108648777s ago: executing program 1 (id=3366):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00'})
sendmmsg$inet6(r0, 0x0, 0x0, 0x4000005)

1.048428386s ago: executing program 2 (id=3368):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r2=>0x0})
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000000c0)={@remote, r2}, 0x14)
sendmmsg$inet6(r0, 0x0, 0x0, 0x4000005)

1.047762525s ago: executing program 1 (id=3369):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x5, &(0x7f0000000440)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r0}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
statx(0xffffffffffffffff, 0x0, 0x6000, 0x6, &(0x7f0000010340))
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000001c40)={[{@dioread_nolock}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@dax_never}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@grpid}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}]}, 0xfd, 0x588, &(0x7f0000000680)="$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")
syz_emit_ethernet(0x36, &(0x7f0000000240)={@local, @link_local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, '\x00', 0x0, 0x0, 0x0, @local, @local}}}}, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x40801, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x22c7, &(0x7f0000000440)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='kfree\x00', r5, 0x0, 0x2}, 0x18)
sendmsg$nl_route_sched(r3, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000a00)=@newtaction={0x894, 0x30, 0x12f, 0x70bd25, 0x0, {}, [{0x880, 0x1, [@m_police={0x87c, 0x1, 0x0, 0x0, {{0xb}, {0x850, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x80000000, 0x0, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x8001, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x401, 0x0, 0x80, 0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0xb, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff35, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8000, 0x5, 0x0, 0xab3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x35, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x8, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x8, 0x0, 0x0, 0x5, 0x0, 0x0, 0x3, 0x0, 0x1]}], [@TCA_POLICE_RATE={0x404, 0x2, [0x7, 0x9, 0xffffffff, 0x7f, 0x401, 0x2, 0x0, 0x2, 0x80000000, 0x4, 0x5, 0x8, 0x0, 0x7fff, 0x75ba, 0x7fffffff, 0x5, 0xffffffff, 0x7fc, 0x2, 0x9, 0x2, 0x0, 0x1000, 0x1, 0x3, 0x6, 0x0, 0xfa, 0x4, 0x0, 0xf, 0x80000001, 0x7, 0xfffffffb, 0x1, 0x20, 0x5, 0xb, 0x1, 0x2f2, 0x7fff, 0x369d, 0x81, 0x206, 0x1ff, 0x7, 0x3, 0x5, 0x3, 0x9, 0x1000, 0x401, 0x1, 0x6, 0x7, 0x2, 0x4, 0x7f, 0x5, 0xfffffffb, 0x1, 0x4, 0x5, 0x8, 0x2000009, 0x9, 0x10, 0x9, 0x7, 0xffffff00, 0x800097, 0x0, 0x4, 0x8, 0x8, 0x1, 0x958, 0x1fe, 0x4, 0x6, 0x2000007, 0x80, 0x5, 0xe53, 0x0, 0xfffffffe, 0x4, 0x8, 0x9, 0x7fff, 0x30, 0x8, 0xfffffff7, 0x4, 0x9, 0x1, 0x4, 0x7, 0x9, 0x5, 0x7, 0x6, 0x0, 0x5, 0x2, 0x7, 0x3, 0xcdd, 0x2, 0xd67, 0x7, 0x4, 0x25, 0x9dc5, 0x7, 0xfffffff7, 0x2, 0x400, 0x8, 0x4, 0x7, 0x5, 0x9, 0xa, 0xa, 0x9, 0x5, 0x20db5, 0x101, 0x4, 0x74e4, 0x7fff, 0x7, 0x7ff, 0x1, 0xd70, 0x5, 0x8, 0xa, 0x7, 0x1, 0x82, 0x52e, 0x7, 0x1, 0x5, 0x26, 0x1, 0x1b2a, 0x81, 0x9, 0x1c, 0x767, 0x7, 0x7, 0x10, 0xc2a, 0xff, 0x7, 0x6, 0x7, 0x3, 0xfffffff4, 0x8, 0x3, 0xfff, 0x8, 0x2, 0x5, 0x6, 0x3, 0xd7c3, 0x2, 0x10000, 0x7fff, 0x5, 0x5, 0x0, 0xfffffffb, 0x4, 0x2, 0x0, 0x6ee1847d, 0x10001, 0x7ff, 0x1, 0xf0, 0x7, 0x2, 0x7, 0x4, 0x7, 0xfff, 0x7, 0xffffffff, 0x0, 0x1, 0x4, 0x3, 0xfff, 0x80000001, 0x7, 0x676, 0x3, 0x9, 0x2, 0x4, 0x7fbf, 0x4a5, 0x23, 0x4, 0x9, 0x8, 0x0, 0x8000, 0xa, 0x9, 0xca000000, 0x1, 0xfffffffa, 0x3, 0x7, 0x6, 0x6, 0x65fe, 0x9, 0x6, 0x4, 0x80000000, 0x5, 0x801, 0xb848, 0x6, 0x6, 0x800, 0x7, 0x1, 0xb, 0x80, 0x2, 0x3, 0x7e54, 0x9, 0x8001, 0x4, 0xc, 0x80000001, 0x5, 0x5, 0x10000002, 0x80000000, 0x7, 0x5, 0x2, 0x4]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x9}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x1, 0x7, 0x4, 0x1, {0x7, 0x0, 0x3, 0x7, 0x7, 0x80000001}, {0x4, 0x2, 0x2, 0xa, 0x1ff, 0x1c0000}, 0x9, 0xc0, 0xdf72c67}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x894}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000004c0)={'vcan0\x00', <r6=>0x0})
bind$can_j1939(r2, &(0x7f0000000340)={0x1d, r6, 0x0, {0x1, 0xf0, 0x4}, 0x1}, 0x18)
setsockopt$sock_int(r2, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$can_j1939(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f00000003c0)="fd42b9a7899170417b523f49b960f80b78d6dc0735d5531a633ad4272d1b6f4fe9c97ec1c6f9", 0x26}, 0x1, 0x0, 0x0, 0x24008085}, 0x4000000)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)=@newtfilter={0x24, 0x11, 0x1, 0x70bd2c, 0x25dfdbfc, {0x0, 0x0, 0x74, r6, {0xfff3, 0x10}, {0xfff1, 0x9}, {0x2, 0x8}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x48040}, 0x20000050)

988.004833ms ago: executing program 5 (id=3370):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000400000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x1000000000000008}, 0x18)
r2 = mq_open(&(0x7f0000000080)='eth0\x00#~\x02\x00\x00\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfd\x05\x00\x00\x00\x00\x00\x80\x00\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94uu_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18A\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x05\x00\x00\x000\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xce\x00\x00\x00\xe8\vq+\xbb\xc7\xaf\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x120, 0x0)
mq_timedsend(r2, &(0x7f0000000600)='m', 0x1, 0x6, 0x0)
mq_timedreceive(r2, &(0x7f000001a600)=""/102385, 0x18ff1, 0x0, 0x0)

987.777113ms ago: executing program 2 (id=3371):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x27e}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r1, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x24000051}, 0x0)
sendmsg$rds(r1, &(0x7f0000000680)={&(0x7f00000002c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8040}, 0x0)
setsockopt$RDS_CANCEL_SENT_TO(r1, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

987.588973ms ago: executing program 5 (id=3372):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x46, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x70, 0x103301)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)

967.265066ms ago: executing program 2 (id=3373):
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x7, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000005c0)={r1, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4, 0x5, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe10859892d0000b420a9c81f40f05f819e0117020000f20020000000e903001000", "90be8b1c5512406c7f00", [0x4, 0x5]}})
r2 = syz_open_dev$loop(&(0x7f0000000300), 0x8f, 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, 0x0)

955.538637ms ago: executing program 2 (id=3375):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='mm_page_free\x00', r0, 0x0, 0x178}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)

924.841622ms ago: executing program 5 (id=3377):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x80c42, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000180)=0x400)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000000)={0xfff, 0x7, 0x10, 0xfff7fff5, 0xe, "262176cf2c9b385e6c136b700c94d8c036e0ff"})
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000002c0)={'vxcan0\x00', <r4=>0x0})
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000480)=ANY=[@ANYBLOB="0b00000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100040006000000060000007d0a00000300000031be7920f5bccd583ba0314c0ee89e18a6ffebb9a51cf6ae2348562a207e87ef5aab58b5d913552c9ab6deac2602e6853a232fdef064b6475a3b45cafca70ed470cfe558ad8eb725ef2d30132683abba989a289e0d1ad1815bc736031883427580daa3522a067eef4600f3b28ab2db76b464afe36570e2a342d4110aff81b69dd8bfd9bbf9dc32ce077bb79311136719c782318e258f47b1356ecba1aba23bf0819f143524d4fe0d744a2423218f412ff6733e2f754ce0f6bc08c3970de9ac8722e5150d5454362b3e03350b55a8a40fc23925256adfa68f7f3c18e3a4d6c19d6ddb671074f28d1dbd631258c6f8e4a2a09f03d002316b7657d65170b97978086a096b298e7e07fcdca44124f2ae35a803d9dbd186bb0c995f632594b5ca46f23e82aa30b4855d155baef5d22820c0ac47ee6ff293c8949ee333ff3be51ee4dc88d72595f3dfd2e1fb126e23aa23b43866df7be3"], 0x119)
bind$can_j1939(r3, &(0x7f0000000100)={0x1d, r4, 0x0, {0x0, 0xff, 0x2}, 0x6621350e9d60fd79}, 0x18)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x5, 0x0, 0x68)
connect$can_j1939(r3, &(0x7f0000000080)={0x1d, r4, 0x0, {0x1, 0xf0}, 0x1}, 0x18)
sendmsg$can_j1939(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)='.', 0x1a000}}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

849.761891ms ago: executing program 5 (id=3379):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00'})
sendmmsg$inet6(r0, &(0x7f0000000500), 0x0, 0x4000005)

827.960414ms ago: executing program 5 (id=3380):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x2802, 0x0)
open$dir(0x0, 0x0, 0x8)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r2, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=@newtfilter={0x5c, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xb, 0xc}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x6, 0x1, 0xff81}, {0x0, 0x800003, 0x78, 0x4, 0x6}}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20041090}, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r4)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000140)=@xdp={0x2c, 0x7, r5, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000540)="18", 0x1}], 0x1}, 0x4)

779.06672ms ago: executing program 4 (id=3382):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r2=>0x0})
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000000c0)={@remote, r2}, 0x14)
sendmmsg$inet6(r0, 0x0, 0x0, 0x4000005)

737.304646ms ago: executing program 4 (id=3383):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'geneve0\x00'}}, 0x1e)
connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x0, @empty, 'netpci0\x00'}}, 0x1e)

736.713425ms ago: executing program 4 (id=3385):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000008385000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x46, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x70, 0x103301)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)

680.703522ms ago: executing program 3 (id=3386):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$lock(r1, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

680.051512ms ago: executing program 4 (id=3387):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0xff0f}], 0x1}, 0x0)
recvmsg(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000400)=""/64, 0x40}], 0x1, 0x0, 0xfffffffffffffd78}, 0x0)

662.562135ms ago: executing program 4 (id=3388):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=<r3=>r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1840000000000000000000000000000095ff000000000000"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000900)=ANY=[@ANYRESOCT=r3, @ANYRES32=0x0, @ANYBLOB="000000000033d08ff840792ba9867b0000000000008ba4347f2fd2a04724", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r5, r5}, &(0x7f0000000600), &(0x7f0000000640)=r4}, 0x1c)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f0000000340)=r4}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
fcntl$dupfd(r0, 0x406, r6)
r7 = syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x2010410, &(0x7f0000000780)=ANY=[@ANYBLOB="6e6f646f74732c646d61736b3d30303030303030006ae26886000000a2616c05218dde1aca9c2c4836303030a1acb78a303030332c757365667265652c6e6f646f74732c666c7573682c646f74732c646f74732c6769643d", @ANYRESOCT, @ANYBLOB], 0x1, 0x219, &(0x7f0000000a80)="$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")
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x20040, 0x1ff)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0)
preadv(r9, &(0x7f0000000140)=[{&(0x7f0000001ec0)=""/4096, 0x60a}], 0x1, 0x3f, 0x101)
r10 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000052c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r10, 0xc08c5332, &(0x7f0000000480)={0xfffffffe, 0xfffffffc, 0x0, 'queue0\x00', 0x100})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r10, 0x402c5342, &(0x7f0000005480)={0x0, 0x20000008, 0x3cdb, {0x0, 0x10000}, 0x0, 0xfffffffe})
r11 = inotify_init1(0x0)
inotify_add_watch(r11, &(0x7f00000006c0)='.\x00', 0xaa)
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file7\x00', 0x5)
renameat2(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file7\x00', 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(0xffffffffffffffff, 0x942e, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r9, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r12=>r10, {0x1}}, './file0\x00'})
getdents64(r12, &(0x7f0000000180)=""/127, 0x7f)
flock(0xffffffffffffffff, 0x1)
flock(0xffffffffffffffff, 0x1)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000300)=ANY=[@ANYBLOB="1808000000100000000000000000001018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000b7020000000000007b9a00fe00000000b5090800000000007baaf0ff00000000be9800000000000004080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018280000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7050000080000004600000076000000bf9100000000000076080000000000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r13, 0x0, 0x0}, 0x10)
getsockopt$inet_mreqn(r7, 0x0, 0x23, &(0x7f0000000400)={@private, @loopback}, &(0x7f0000000440)=0xc)

576.386356ms ago: executing program 3 (id=3389):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000002c0)={'netdevsim0\x00', &(0x7f0000000700)=@ethtool_flash={0x33, 0xea6, '.\x00'}})

566.810087ms ago: executing program 4 (id=3390):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x80c42, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000180)=0x400)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000000)={0xfff, 0x7, 0x10, 0xfff7fff5, 0xe, "262176cf2c9b385e6c136b700c94d8c036e0ff"})
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000002c0)={'vxcan0\x00', <r4=>0x0})
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000480)=ANY=[@ANYBLOB="0b00000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100040006000000060000007d0a00000300000031be7920f5bccd583ba0314c0ee89e18a6ffebb9a51cf6ae2348562a207e87ef5aab58b5d913552c9ab6deac2602e6853a232fdef064b6475a3b45cafca70ed470cfe558ad8eb725ef2d30132683abba989a289e0d1ad1815bc736031883427580daa3522a067eef4600f3b28ab2db76b464afe36570e2a342d4110aff81b69dd8bfd9bbf9dc32ce077bb79311136719c782318e258f47b1356ecba1aba23bf0819f143524d4fe0d744a2423218f412ff6733e2f754ce0f6bc08c3970de9ac8722e5150d5454362b3e03350b55a8a40fc23925256adfa68f7f3c18e3a4d6c19d6ddb671074f28d1dbd631258c6f8e4a2a09f03d002316b7657d65170b97978086a096b298e7e07fcdca44124f2ae35a803d9dbd186bb0c995f632594b5ca46f23e82aa30b4855d155baef5d22820c0ac47ee6ff293c8949ee333ff3be51ee4dc88d72595f3dfd2e1fb126e23aa23b43866df7be3"], 0x119)
bind$can_j1939(r3, &(0x7f0000000100)={0x1d, r4, 0x0, {0x0, 0xff, 0x2}, 0x6621350e9d60fd79}, 0x18)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x5, 0x0, 0x68)
connect$can_j1939(r3, &(0x7f0000000080)={0x1d, r4, 0x0, {0x1, 0xf0}, 0x1}, 0x18)
sendmsg$can_j1939(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)='.', 0x1a000}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

540.716591ms ago: executing program 3 (id=3391):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0xcd3, &(0x7f0000000400)={0x0, 0x5889, 0x1000, 0x0, 0xffeffc03}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x40, 0x0, r0, 0x61, &(0x7f00000000c0)=@un=@abs={0x1, 0x0, 0x4e20}})
io_uring_enter(r1, 0x3516, 0x483, 0x0, 0x0, 0x0)

482.990878ms ago: executing program 3 (id=3392):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='htcp', 0x4)
sendmmsg$inet(r0, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f00000000c0)="91b8a91fd3108691bbc4173c3d6f357d027273117b3d0f171ba4ac4703cad036e68907e50e9997cd9c07bd75e6ff", 0x2e}, {&(0x7f0000001c00)="4490137c227c56ee66c372f3105eb186dd8062fad2d5b5bfb0ba068e74a8d026bd209da8ffa6a26e3b3f8075704a9d0ef9afda48e71255a747b6d03097385fb05cf8db24609f02d34e76992c9df9fe6888c6c9a4825c6223be6ac54536025af1dea54e527c68b0ff250261953f2da79a78104c2d9e7b16ed86b124945aa9ab7581ebd385fb61210c410d799168ffc4b64677af924affd442035db81e18c2d2462d0bb25fff9d3b1ce903597992b2a4d541611ce77f58dce7c9500118229e7cdf4ca7f6adca92c73d97ce54164c1942b25686866f6b53fe7e75cf6854284d501f8535bec8e020b41fb2f8", 0xea}, {&(0x7f00000003c0)="641a6a2b863c0dd898013a3f97a834ebb75a925ab48c844221841a232932fc2e37e327de21450df098c113e179a0d3", 0x2f}, {&(0x7f0000000640)="985e44efeabe001cabcf3d8673c3a254a9a2d3197970cb347b70a243bf77139a94bc3ae91684aaf7b7dff691deb8f8aef2d915fb3a0794a9a9b431a819bca6122c350637808dde804a048fd8696e524b2934126c443ce93d82e931eb9918e6c0827686e59209d2e02c9210fd8048f04ad6c42200fd9232f5aa6a361816bf21afb8473a064f1988536d4b5888807b3aaafaf59f53121782a0a9370dc0feae13c8c2a1dcc8a3122aaa3dcd5b9247a915378e6492e5b94073dcdc87e7c794fb262a7e9ee0b9432f74331c6e9412ac6557c54c6ac72bc24ff70ca2f8ef53773c5c", 0xdf}, {&(0x7f0000000300)="9d14305f5b9176fd46a2d6cc0bf8b00ea77d12943b509e31c729441020bfc543d3aa7b29e7107a90c117dc452406d912306165e7e7628186000661e280329d16092058e2f02d853b230704e80cee683918af77403bbbf00203d23592d737fc6ed554a34c", 0x64}, {&(0x7f0000001d00)="425d01202e24be5080824df8f03955b152c26ff780ae50bf4310f40514e89a2e7e3743a0c54b1ebdae377e00b376c097a5a1177d96c558fdc88e5d092f9c4ee29801393d0b6365bb4f86cca898b6fee05d12420470228e07aa5a2047a4391883cdd86acf0d83021778eb7b5c656c244265c8", 0x72}], 0x6}}, {{0x0, 0x0, &(0x7f00000009c0)=[{0x0}], 0x1}}], 0x2, 0x2090)

482.695818ms ago: executing program 5 (id=3393):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000000)='&pu<\t\t')
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x2, 0x3, 0xff)
sendmmsg$inet(r2, &(0x7f00000008c0)=[{{&(0x7f0000000000)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000040)="0000000035fdca249bf6ffffffffffffff556eab", 0x14}], 0x1, &(0x7f0000000200)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x33}, @empty}}}], 0x20}}], 0x1, 0x4800)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0), r0)
sendmsg$IPVS_CMD_DEL_SERVICE(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="08002dbd7000fcdbdf25030000000800050001800000b59d9e57d32d2ab2d9de007edd1b73c33c9a8a77aabbc4614dfc55dac9b510e4bd5899ece5a8b58a4ca144008c1e9f1f91ffcf04934c064fde2780bc2a16495282e231e5029db89d49de027e8b516a22b37638a71cc5436a7b"], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x4010)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000240)=[{0x200000000006, 0x0, 0x0, 0x9}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdf}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000780)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb86dd6000000000142c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa0600ff"], 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x1, 0x353a, 0x1}}, 0x20)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff6, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0xffffffffffffff62, &(0x7f0000000000)="ff", 0x0, 0x149c, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe, 0x7000000}, 0x48)

482.118048ms ago: executing program 3 (id=3394):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x27e}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3f, 0x0, 0x0, 0x0, 0xb}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x24000051}, 0x0)
sendmsg$rds(r2, &(0x7f0000000680)={&(0x7f00000002c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8040}, 0x0)
setsockopt$RDS_CANCEL_SENT_TO(r2, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

424.166176ms ago: executing program 3 (id=3395):
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1f0519, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x3}, 0x6025, 0x4005, 0xb, 0x3, 0x2, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$perf(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x4000011, r0, 0x0)
io_pgetevents(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_bp={&(0x7f0000000200), 0xa}, 0x120, 0x10000, 0x33f8, 0x1, 0x9, 0x20007, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000280)='kfree\x00', r2, 0x0, 0x8}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r1}, &(0x7f00000008c0), &(0x7f0000000880)=r2}, 0x20)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r4 = syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0x79af, 0x3380, 0x2, 0x40024e}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd_index=0x3, 0x6, 0x0, 0x0, 0x2, 0x1})
io_uring_enter(r4, 0x627, 0x4c1, 0x43, 0x0, 0x0)
r7 = fcntl$dupfd(r3, 0x0, r3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0)
write$tun(r7, &(0x7f0000000400)=ANY=[], 0xa2)
r8 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r8, &(0x7f0000000040)={0x18, 0x0, {0x0, @empty, 'netpci0\x00'}}, 0x1e)

85.905899ms ago: executing program 2 (id=3396):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r3=>0x0})
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000c00), r4)
sendmsg$IEEE802154_LLSEC_ADD_KEY(r4, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000d40)={0x14, r5, 0x1, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4040000)
sendmsg$IEEE802154_LLSEC_DEL_DEV(r0, &(0x7f0000000580)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x20, r5, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000000000001801000060696c0500000000000000207b1af8ff00000000bfa10000000000000701000078ffffffb702000008000000b703000001000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000000)='kfree\x00', r6}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000240)={0x1, &(0x7f00000004c0)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)={0x40, r1, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_SEC_LEVEL={0x24, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x3}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x2}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x7}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x40080)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0)={<r7=>0x0}, &(0x7f0000000240)=0xc)
r8 = perf_event_open$cgroup(&(0x7f0000000400)={0x5, 0x80, 0x1, 0x3, 0x9, 0x0, 0x0, 0x7c, 0x1, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_bp={&(0x7f0000000280), 0x8}, 0x2, 0x9, 0xaa2, 0x9, 0x6, 0x0, 0x800, 0x0, 0xfffffff8, 0x0, 0x7}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
perf_event_open(&(0x7f00000001c0)={0x3, 0x80, 0xe, 0x7, 0x7, 0x3, 0x0, 0x4, 0x6000, 0x4, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000000040), 0x4}, 0x0, 0x9, 0x7, 0x9, 0x3, 0x5426, 0xb, 0x0, 0x3, 0x0, 0xb}, r7, 0x2, r8, 0x1)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000003c0)='./file1\x00', 0x1c, &(0x7f0000000100)={[{@nombcache}, {@dioread_lock}, {@stripe={'stripe', 0x3d, 0x80000001}}, {@nomblk_io_submit}, {@noblock_validity}, {@discard}]}, 0x3, 0x44f, &(0x7f0000000980)="$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")
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x52)
ioctl$FITRIM(r9, 0xc0185879, 0x0)

0s ago: executing program 2 (id=3397):
openat(0xffffffffffffff9c, 0x0, 0x601c2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000005640)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r0}, 0x18)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r2, &(0x7f0000000040)={0x24, @none={0x0, 0x1}}, 0x14)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, 0x0, 0xf00)
r4 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r4, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
connect$inet6(r4, &(0x7f0000000300)={0xa, 0x4e22, 0x2, @private1, 0x5}, 0x1c)
r5 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r5, &(0x7f00000017c0)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x6}, 0x1c)
connect$inet6(r5, &(0x7f0000000300)={0xa, 0x4e22, 0x2, @private1, 0x5}, 0x1c)
r6 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r6, &(0x7f0000006040)=[{{&(0x7f0000000140)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000200)=[{&(0x7f00000005c0)='6', 0x1}], 0x1}}], 0x1, 0x48000)
r7 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r7, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000080)=ANY=[@ANYBLOB="4c000000140011f225bd7000fddbcf250284", @ANYRES32], 0x4c}, 0x1, 0x0, 0x0, 0x48000}, 0x40)
read(r7, &(0x7f00000000c0)=""/171, 0xfdef)
r8 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r8, &(0x7f0000000080)={0xa, 0x4621, 0x0, @mcast2, 0x40000e}, 0x1c)
setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff02000000000000000000000000000104004e200023b0"], 0x0)
recvmmsg(r8, &(0x7f0000001600)=[{{&(0x7f00000000c0)=@can, 0x80, &(0x7f0000000000)=[{&(0x7f0000000140)=""/132, 0x84}, {&(0x7f0000000200)=""/86, 0x56}, {&(0x7f0000000280)=""/159, 0x9f}], 0x3, &(0x7f0000000340)=""/203, 0xcb}, 0x2}, {{&(0x7f0000000440)=@generic, 0x80, &(0x7f0000000540)=[{&(0x7f00000004c0)=""/104, 0x68}], 0x1}, 0x2}, {{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000580)=""/184, 0xb8}, {&(0x7f0000000640)=""/170, 0xaa}, {&(0x7f0000000700)=""/3, 0x3}, {&(0x7f0000000740)=""/143, 0x8f}], 0x4, &(0x7f0000000840)=""/254, 0xfe}, 0x9}, {{&(0x7f0000000940)=@can, 0x80, &(0x7f0000000d80)=[{&(0x7f00000009c0)=""/62, 0x3e}, {&(0x7f0000000a00)=""/244, 0xf4}, {&(0x7f0000000b00)=""/185, 0xb9}, {&(0x7f0000000bc0)=""/77, 0x4d}, {&(0x7f0000000c40)=""/20, 0x14}, {&(0x7f0000000c80)=""/176, 0xb0}, {&(0x7f0000000d40)=""/27, 0x1b}], 0x7}, 0x1}, {{&(0x7f0000000e00)=@alg, 0x80, &(0x7f0000000f80)=[{&(0x7f0000000e80)=""/244, 0xf4}], 0x1, &(0x7f0000000fc0)=""/177, 0xb1}, 0x7}, {{&(0x7f0000001080)=@generic, 0x80, &(0x7f00000013c0)=[{&(0x7f0000001100)=""/236, 0xec}, {&(0x7f0000001200)=""/168, 0x7f}, {&(0x7f00000012c0)=""/198, 0xc6}], 0x3}, 0x6}, {{&(0x7f0000001400)=@xdp, 0x80, &(0x7f0000001500)=[{&(0x7f0000001480)=""/69, 0x45}], 0x1, &(0x7f0000001540)=""/174, 0xae}, 0x7f}], 0x7, 0x0, 0x0)
shutdown(r8, 0x0)

kernel console output (not intermixed with test programs):

+0xb/0x20
[  202.007270][T10897]  should_fail_usercopy+0x1a/0x20
[  202.007299][T10897]  _copy_from_user+0x1c/0xb0
[  202.007332][T10897]  __copy_msghdr+0x244/0x300
[  202.007434][T10897]  ___sys_sendmsg+0x109/0x1d0
[  202.007497][T10897]  __x64_sys_sendmsg+0xd4/0x160
[  202.007546][T10897]  x64_sys_call+0x17ba/0x3000
[  202.007621][T10897]  do_syscall_64+0xca/0x2b0
[  202.007645][T10897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.007669][T10897] RIP: 0033:0x7f47eb2ef749
[  202.007684][T10897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.007700][T10897] RSP: 002b:00007f47e9d57038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  202.007777][T10897] RAX: ffffffffffffffda RBX: 00007f47eb545fa0 RCX: 00007f47eb2ef749
[  202.007791][T10897] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000005
[  202.007806][T10897] RBP: 00007f47e9d57090 R08: 0000000000000000 R09: 0000000000000000
[  202.007820][T10897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  202.007835][T10897] R13: 00007f47eb546038 R14: 00007f47eb545fa0 R15: 00007ffe90bba068
[  202.007854][T10897]  </TASK>
[  202.220742][T10890] rdma_rxe: rxe_newlink: failed to add bond0
[  202.306561][T10908] netlink: 'syz.4.2624': attribute type 13 has an invalid length.
[  202.315910][T10908] syz_tun: refused to change device tx_queue_len
[  202.322289][T10908] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  202.368908][ T4485] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  202.381564][ T4485] hid-generic 0000:0000:0000.002A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  202.524129][T10921] loop4: detected capacity change from 0 to 512
[  202.531440][T10913] loop2: detected capacity change from 0 to 512
[  202.541840][T10913] EXT4-fs: Ignoring removed bh option
[  202.556775][T10913] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  202.566759][T10921] EXT4-fs (loop4): 1 truncate cleaned up
[  202.572836][T10921] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  202.617790][T10913] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.2626: invalid block
[  202.634644][T10913] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2626: invalid indirect mapped block 4294967295 (level 1)
[  202.653670][T10926] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2630: bg 0: block 465: padding at end of block bitmap is not set
[  202.668885][T10913] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2626: invalid indirect mapped block 4294967295 (level 1)
[  202.684794][T10913] EXT4-fs (loop2): 2 truncates cleaned up
[  202.690873][T10913] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.704078][T10921] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  202.716620][T10921] EXT4-fs (loop4): This should not happen!! Data will be lost
[  202.716620][T10921] 
[  202.726296][T10921] EXT4-fs (loop4): Total free blocks count 0
[  202.732308][T10921] EXT4-fs (loop4): Free/Dirty block details
[  202.738263][T10921] EXT4-fs (loop4): free_blocks=0
[  202.743362][T10921] EXT4-fs (loop4): dirty_blocks=2048
[  202.748733][T10921] EXT4-fs (loop4): Block reservation details
[  202.754771][T10921] EXT4-fs (loop4): i_reserved_data_blocks=2048
[  202.765991][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.801695][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.994183][   T29] kauditd_printk_skb: 728 callbacks suppressed
[  202.994237][   T29] audit: type=1326 audit(1768560561.390:59689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10927 comm="syz.5.2632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  203.037747][T10933] syz0: rxe_newlink: already configured on bond0
[  203.057488][T10937] lo speed is unknown, defaulting to 1000
[  203.064171][T10937] lo speed is unknown, defaulting to 1000
[  203.124640][   T29] audit: type=1326 audit(1768560561.430:59690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10927 comm="syz.5.2632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  203.148276][   T29] audit: type=1326 audit(1768560561.430:59691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10927 comm="syz.5.2632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  203.171985][   T29] audit: type=1326 audit(1768560561.430:59692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10927 comm="syz.5.2632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  203.195714][   T29] audit: type=1326 audit(1768560561.430:59693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10927 comm="syz.5.2632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  203.219449][   T29] audit: type=1326 audit(1768560561.430:59694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10927 comm="syz.5.2632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  203.243307][   T29] audit: type=1326 audit(1768560561.430:59695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10927 comm="syz.5.2632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  203.267057][   T29] audit: type=1326 audit(1768560561.430:59696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10927 comm="syz.5.2632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  203.290775][   T29] audit: type=1326 audit(1768560561.430:59697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10927 comm="syz.5.2632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  203.311308][T10946] lo speed is unknown, defaulting to 1000
[  203.314709][   T29] audit: type=1326 audit(1768560561.430:59698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10927 comm="syz.5.2632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  203.348459][T10946] lo speed is unknown, defaulting to 1000
[  203.366305][   T23] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  203.374354][   T23] hid-generic 0000:0000:0000.002B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  203.495478][T10957] loop3: detected capacity change from 0 to 1024
[  203.502457][T10957] EXT4-fs: Ignoring removed orlov option
[  203.565904][T10957] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.654198][T10965] loop5: detected capacity change from 0 to 512
[  203.691548][T10965] EXT4-fs: Ignoring removed bh option
[  203.713561][T10965] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  203.865255][T10965] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.2646: invalid block
[  203.894795][T10982] lo speed is unknown, defaulting to 1000
[  203.901069][T10982] lo speed is unknown, defaulting to 1000
[  203.941483][T10965] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2646: invalid indirect mapped block 4294967295 (level 1)
[  203.999399][T10965] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2646: invalid indirect mapped block 4294967295 (level 1)
[  204.065251][T10965] EXT4-fs (loop5): 2 truncates cleaned up
[  204.087837][T10965] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.105717][T10989] __nla_validate_parse: 4 callbacks suppressed
[  204.105730][T10989] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2652'.
[  204.177976][ T7999] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.285013][T10984] loop4: detected capacity change from 0 to 2048
[  204.303437][T10993] netlink: 664 bytes leftover after parsing attributes in process `syz.1.2654'.
[  204.394997][T10991] lo speed is unknown, defaulting to 1000
[  204.425360][T10984]  loop4: p1 < > p4
[  204.429576][T10991] lo speed is unknown, defaulting to 1000
[  204.436449][T10984] loop4: p4 size 8388608 extends beyond EOD, truncated
[  204.497516][ T3326] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.954259][T11000] lo speed is unknown, defaulting to 1000
[  204.999767][T11000] lo speed is unknown, defaulting to 1000
[  205.289444][T11011] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2662'.
[  205.329928][T11011] netlink: 'syz.1.2662': attribute type 7 has an invalid length.
[  205.358910][T11016] loop2: detected capacity change from 0 to 512
[  205.365448][T11011] xt_connbytes: Forcing CT accounting to be enabled
[  205.377455][T11016] EXT4-fs: Ignoring removed bh option
[  205.380295][T11011] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  205.393708][T11016] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  205.432815][T11016] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.2663: invalid block
[  205.457197][T11016] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2663: invalid indirect mapped block 4294967295 (level 1)
[  205.471902][T11016] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2663: invalid indirect mapped block 4294967295 (level 1)
[  205.486363][T11016] EXT4-fs (loop2): 2 truncates cleaned up
[  205.492646][T11016] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  205.582784][T11025] loop4: detected capacity change from 0 to 512
[  205.591664][   T23] hid-generic 0004:0006:0006.002C: item fetching failed at offset 0/1
[  205.603570][   T23] hid-generic 0004:0006:0006.002C: probe with driver hid-generic failed with error -22
[  205.614800][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.625232][T11025] EXT4-fs: Ignoring removed bh option
[  205.648243][T11025] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  205.676694][T11025] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.2666: invalid block
[  205.690353][T11032] FAULT_INJECTION: forcing a failure.
[  205.690353][T11032] name failslab, interval 1, probability 0, space 0, times 0
[  205.703158][T11032] CPU: 0 UID: 0 PID: 11032 Comm: syz.2.2667 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  205.703280][T11032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  205.703295][T11032] Call Trace:
[  205.703304][T11032]  <TASK>
[  205.703365][T11032]  __dump_stack+0x1d/0x30
[  205.703391][T11032]  dump_stack_lvl+0x95/0xd0
[  205.703480][T11032]  dump_stack+0x15/0x1b
[  205.703500][T11032]  should_fail_ex+0x265/0x280
[  205.703525][T11032]  should_failslab+0x8c/0xb0
[  205.703598][T11032]  kmem_cache_alloc_noprof+0x69/0x4b0
[  205.703699][T11032]  ? security_inode_alloc+0x37/0x100
[  205.703725][T11032]  security_inode_alloc+0x37/0x100
[  205.703747][T11032]  inode_init_always_gfp+0x4b7/0x500
[  205.703773][T11032]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  205.703797][T11032]  alloc_inode+0x58/0x170
[  205.703876][T11032]  new_inode+0x1d/0xe0
[  205.703974][T11032]  __debugfs_create_file+0x97/0x2b0
[  205.703996][T11032]  debugfs_create_file_full+0x3f/0x60
[  205.704026][T11032]  ? __pfx_ipvlan_link_setup+0x10/0x10
[  205.704053][T11032]  ref_tracker_dir_debugfs+0x100/0x210
[  205.704086][T11032]  alloc_netdev_mqs+0x1a7/0xa40
[  205.704121][T11032]  rtnl_create_link+0x239/0x6e0
[  205.704244][T11032]  rtnl_newlink_create+0x14c/0x620
[  205.704266][T11032]  ? security_capable+0x83/0x90
[  205.704338][T11032]  ? netlink_ns_capable+0x86/0xa0
[  205.704387][T11032]  rtnl_newlink+0xf5b/0x1360
[  205.704416][T11032]  ? __rcu_read_unlock+0x34/0x70
[  205.704445][T11032]  ? bpf_trace_run3+0x12c/0x1e0
[  205.704557][T11032]  ? xas_load+0x413/0x430
[  205.704587][T11032]  ? __kfree_skb+0x109/0x150
[  205.704614][T11032]  ? __rcu_read_unlock+0x4f/0x70
[  205.704693][T11032]  ? __rcu_read_unlock+0x4f/0x70
[  205.704713][T11032]  ? avc_has_perm_noaudit+0xab/0x130
[  205.704737][T11032]  ? cred_has_capability+0x210/0x280
[  205.704776][T11032]  ? selinux_capable+0x31/0x40
[  205.704859][T11032]  ? security_capable+0x83/0x90
[  205.704895][T11032]  ? ns_capable+0x7d/0xb0
[  205.704999][T11032]  ? __pfx_rtnl_newlink+0x10/0x10
[  205.705021][T11032]  rtnetlink_rcv_msg+0x5fe/0x6d0
[  205.705048][T11032]  netlink_rcv_skb+0x123/0x220
[  205.705136][T11032]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  205.705175][T11032]  rtnetlink_rcv+0x1c/0x30
[  205.705193][T11032]  netlink_unicast+0x5c0/0x690
[  205.705357][T11032]  netlink_sendmsg+0x58b/0x6b0
[  205.705412][T11032]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.705482][T11032]  __sock_sendmsg+0x145/0x180
[  205.705516][T11032]  ____sys_sendmsg+0x31e/0x4a0
[  205.705552][T11032]  ___sys_sendmsg+0x17b/0x1d0
[  205.705657][T11032]  __x64_sys_sendmsg+0xd4/0x160
[  205.705693][T11032]  x64_sys_call+0x17ba/0x3000
[  205.705720][T11032]  do_syscall_64+0xca/0x2b0
[  205.705771][T11032]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.705795][T11032] RIP: 0033:0x7f47eb2ef749
[  205.705811][T11032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.705828][T11032] RSP: 002b:00007f47e9d57038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  205.705907][T11032] RAX: ffffffffffffffda RBX: 00007f47eb545fa0 RCX: 00007f47eb2ef749
[  205.705923][T11032] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000005
[  205.706008][T11032] RBP: 00007f47e9d57090 R08: 0000000000000000 R09: 0000000000000000
[  205.706019][T11032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  205.706033][T11032] R13: 00007f47eb546038 R14: 00007f47eb545fa0 R15: 00007ffe90bba068
[  205.706056][T11032]  </TASK>
[  205.870828][T11025] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2666: invalid indirect mapped block 4294967295 (level 1)
[  205.875085][T11032] debugfs: out of free dentries, can not create file 'netdev@ffff88810db1d558'
[  205.887000][T11035] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2664'.
[  205.914777][T11025] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2666: invalid indirect mapped block 4294967295 (level 1)
[  205.925589][T11032] bridge0: port 3(ipvlan2) entered blocking state
[  205.943062][T11025] EXT4-fs (loop4): 2 truncates cleaned up
[  205.944034][T11032] bridge0: port 3(ipvlan2) entered disabled state
[  205.954964][T11025] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  205.958049][T11032] ipvlan2: entered allmulticast mode
[  206.110478][T11038] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm +}[@: bg 0: block 5: invalid block bitmap
[  206.120811][T11032] bridge0: entered allmulticast mode
[  206.122190][T11032] ipvlan2: left allmulticast mode
[  206.148416][T11032] bridge0: left allmulticast mode
[  206.346848][T11048] netlink: 664 bytes leftover after parsing attributes in process `syz.3.2672'.
[  206.462884][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.881841][T11055] loop5: detected capacity change from 0 to 128
[  206.923051][T11057] loop5: detected capacity change from 0 to 128
[  206.953257][T11059] FAULT_INJECTION: forcing a failure.
[  206.953257][T11059] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.966459][T11059] CPU: 0 UID: 0 PID: 11059 Comm: syz.5.2676 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  206.966493][T11059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  206.966508][T11059] Call Trace:
[  206.966535][T11059]  <TASK>
[  206.966543][T11059]  __dump_stack+0x1d/0x30
[  206.966573][T11059]  dump_stack_lvl+0x95/0xd0
[  206.966669][T11059]  dump_stack+0x15/0x1b
[  206.966694][T11059]  should_fail_ex+0x265/0x280
[  206.966717][T11059]  should_fail+0xb/0x20
[  206.966736][T11059]  should_fail_usercopy+0x1a/0x20
[  206.966759][T11059]  _copy_from_iter+0xcf/0xe70
[  206.966862][T11059]  ? __alloc_skb+0x396/0x4b0
[  206.966938][T11059]  ? __alloc_skb+0x228/0x4b0
[  206.967014][T11059]  netlink_sendmsg+0x471/0x6b0
[  206.967064][T11059]  ? __pfx_netlink_sendmsg+0x10/0x10
[  206.967131][T11059]  __sock_sendmsg+0x145/0x180
[  206.967207][T11059]  ____sys_sendmsg+0x31e/0x4a0
[  206.967248][T11059]  ___sys_sendmsg+0x17b/0x1d0
[  206.967310][T11059]  __x64_sys_sendmsg+0xd4/0x160
[  206.967362][T11059]  x64_sys_call+0x17ba/0x3000
[  206.967463][T11059]  do_syscall_64+0xca/0x2b0
[  206.967486][T11059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.967556][T11059] RIP: 0033:0x7fdb2c10f749
[  206.967640][T11059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.967657][T11059] RSP: 002b:00007fdb2ab77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  206.967675][T11059] RAX: ffffffffffffffda RBX: 00007fdb2c365fa0 RCX: 00007fdb2c10f749
[  206.967688][T11059] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003
[  206.967700][T11059] RBP: 00007fdb2ab77090 R08: 0000000000000000 R09: 0000000000000000
[  206.967711][T11059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.967725][T11059] R13: 00007fdb2c366038 R14: 00007fdb2c365fa0 R15: 00007fff8b12b688
[  206.967818][T11059]  </TASK>
[  207.196012][T11061] netlink: 'syz.5.2677': attribute type 1 has an invalid length.
[  207.203798][T11061] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2677'.
[  207.273089][T11076] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2681'.
[  207.300930][T11079] loop2: detected capacity change from 0 to 1024
[  207.307707][T11079] EXT4-fs: Ignoring removed orlov option
[  207.311163][T11076] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11076 comm=syz.5.2681
[  207.333910][T11079] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.336312][T11076] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2681'.
[  207.387594][T11086] loop4: detected capacity change from 0 to 128
[  207.459659][T11093] netlink: 'syz.4.2688': attribute type 39 has an invalid length.
[  207.551606][T11100] loop5: detected capacity change from 0 to 1024
[  207.560748][T11100] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.2690: bad orphan inode 134217728
[  207.572821][T11100] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.697394][T11107] netlink: 664 bytes leftover after parsing attributes in process `syz.4.2691'.
[  208.321636][T11111] lo speed is unknown, defaulting to 1000
[  208.328042][T11111] lo speed is unknown, defaulting to 1000
[  208.386950][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.463559][   T29] kauditd_printk_skb: 763 callbacks suppressed
[  208.463576][   T29] audit: type=1326 audit(1768560566.860:60462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.2.2695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  208.510902][   T29] audit: type=1326 audit(1768560566.900:60463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.2.2695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  208.534615][   T29] audit: type=1326 audit(1768560566.900:60464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.2.2695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  208.558293][   T29] audit: type=1326 audit(1768560566.900:60465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.2.2695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  208.581910][   T29] audit: type=1326 audit(1768560566.900:60466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.2.2695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  208.605552][   T29] audit: type=1326 audit(1768560566.900:60467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.2.2695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  208.629155][   T29] audit: type=1326 audit(1768560566.900:60468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.2.2695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  208.652807][   T29] audit: type=1326 audit(1768560566.900:60469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.2.2695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  208.676465][   T29] audit: type=1326 audit(1768560566.900:60470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.2.2695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  208.700159][   T29] audit: type=1326 audit(1768560566.900:60471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11118 comm="syz.2.2695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  208.798569][T11124] loop4: detected capacity change from 0 to 128
[  208.865327][T11128] sch_fq: defrate 4294967295 ignored.
[  208.919125][T11133] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2700'.
[  208.952333][T11137] futex_wake_op: syz.1.2702 tries to shift op by -3; fix this program
[  208.970779][T11133] hub 2-0:1.0: USB hub found
[  208.975583][T11133] hub 2-0:1.0: 8 ports detected
[  208.996871][ T7999] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.044599][ T5176] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  209.058462][ T5176] hid-generic 0000:0000:0000.002D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  209.106657][T11150] lo speed is unknown, defaulting to 1000
[  209.112828][T11150] lo speed is unknown, defaulting to 1000
[  209.194246][T11155] loop4: detected capacity change from 0 to 128
[  209.208540][T11157] __nla_validate_parse: 2 callbacks suppressed
[  209.208556][T11157] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2709'.
[  209.227029][T11154] lo speed is unknown, defaulting to 1000
[  209.251850][T11154] lo speed is unknown, defaulting to 1000
[  209.260049][T11160] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11160 comm=syz.1.2709
[  209.274956][T11160] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2709'.
[  209.425531][T11166] sch_fq: defrate 4294967295 ignored.
[  209.507061][T11169] loop4: detected capacity change from 0 to 2048
[  209.675646][T11169] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.738660][T11180] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2717'.
[  209.747624][T11180] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2717'.
[  209.763937][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.786661][T11182] futex_wake_op: syz.4.2718 tries to shift op by -3; fix this program
[  209.800619][T11180] hub 2-0:1.0: USB hub found
[  209.819266][T11180] hub 2-0:1.0: 8 ports detected
[  209.830354][T11184] sch_fq: defrate 4294967295 ignored.
[  209.869723][T11182] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2718'.
[  209.932206][T11194] loop3: detected capacity change from 0 to 764
[  209.968808][T11199] loop4: detected capacity change from 0 to 512
[  209.977753][T11199] EXT4-fs (loop4): 1 truncate cleaned up
[  209.984617][T11199] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.007082][ T4485] hid-generic 0004:0006:0006.002E: item fetching failed at offset 0/1
[  210.015495][ T4485] hid-generic 0004:0006:0006.002E: probe with driver hid-generic failed with error -22
[  210.039759][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.088022][T11209] loop3: detected capacity change from 0 to 1024
[  210.096486][T11211] loop4: detected capacity change from 0 to 2048
[  210.098365][T11209] EXT4-fs: dax option not supported
[  210.110300][T11214] sch_fq: defrate 4294967295 ignored.
[  210.144647][T11211] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.178759][T11209] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2730'.
[  210.237134][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.292318][T11233] loop4: detected capacity change from 0 to 512
[  210.310285][T11233] EXT4-fs: Ignoring removed bh option
[  210.332879][   T23] hid-generic 0004:0006:0006.002F: item fetching failed at offset 0/1
[  210.342400][   T23] hid-generic 0004:0006:0006.002F: probe with driver hid-generic failed with error -22
[  210.353646][T11233] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  210.375407][T11233] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.2735: invalid block
[  210.390355][T11233] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2735: invalid indirect mapped block 4294967295 (level 1)
[  210.430737][T11233] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2735: invalid indirect mapped block 4294967295 (level 1)
[  210.445113][T11233] EXT4-fs (loop4): 2 truncates cleaned up
[  210.451355][T11233] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.482156][T11245] sch_fq: defrate 4294967295 ignored.
[  210.519497][T11251] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm +}[@: bg 0: block 5: invalid block bitmap
[  210.560403][T11255] loop3: detected capacity change from 0 to 128
[  210.684059][T11267] loop3: detected capacity change from 0 to 512
[  210.704284][T11267] EXT4-fs (loop3): 1 truncate cleaned up
[  210.713321][T11267] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.730586][T11267] EXT4-fs error (device loop3): ext4_find_dest_de:2050: inode #2: block 13: comm syz.3.2752: bad entry in directory: directory entry overrun - offset=76, inode=0, rec_len=1024, size=1024 fake=0
[  210.752276][T11267] EXT4-fs error (device loop3): ext4_find_dest_de:2050: inode #2: block 13: comm syz.3.2752: bad entry in directory: directory entry overrun - offset=76, inode=0, rec_len=1024, size=1024 fake=0
[  210.789050][ T4485] hid-generic 0004:0006:0006.0030: item fetching failed at offset 0/1
[  210.798284][ T4485] hid-generic 0004:0006:0006.0030: probe with driver hid-generic failed with error -22
[  210.819793][ T3326] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.824195][T11241] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.2741: Failed to acquire dquot type 0
[  210.858262][T11241] EXT4-fs error (device loop5): mb_free_blocks:2037: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  210.881381][T11241] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #13: comm syz.5.2741: corrupted inode contents
[  210.896166][T11241] EXT4-fs error (device loop5): ext4_dirty_inode:6502: inode #13: comm syz.5.2741: mark_inode_dirty error
[  210.899324][T11278] sch_fq: defrate 4294967295 ignored.
[  210.914287][T11241] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #13: comm syz.5.2741: corrupted inode contents
[  210.929175][T11241] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #13: comm syz.5.2741: mark_inode_dirty error
[  210.942910][T11241] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #13: comm syz.5.2741: corrupted inode contents
[  210.956846][T11241] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[  210.969064][T11241] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #13: comm syz.5.2741: corrupted inode contents
[  210.974693][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  210.990256][T11241] EXT4-fs error (device loop5): ext4_truncate:4635: inode #13: comm syz.5.2741: mark_inode_dirty error
[  211.013023][T11241] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[  211.040494][T11241] EXT4-fs (loop5): 1 truncate cleaned up
[  211.076720][T11241] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.077669][T11291] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2762'.
[  211.098402][T11291] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2762'.
[  211.113261][T11293] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2763'.
[  211.136925][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.139551][   T23] hid-generic 0000:0000:0000.0031: unknown main item tag 0x0
[  211.154027][   T23] hid-generic 0000:0000:0000.0031: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  211.168505][T11291] hub 2-0:1.0: USB hub found
[  211.173201][T11291] hub 2-0:1.0: 8 ports detected
[  211.176290][ T7999] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.189387][T11295] netlink: 664 bytes leftover after parsing attributes in process `syz.2.2764'.
[  211.198377][T11297] EXT4-fs: Ignoring removed bh option
[  211.204312][T11297] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  211.217749][T11297] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.2765: invalid block
[  211.230083][T11297] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2765: invalid indirect mapped block 4294967295 (level 1)
[  211.244219][T11297] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2765: invalid indirect mapped block 4294967295 (level 1)
[  211.258684][T11297] EXT4-fs (loop4): 2 truncates cleaned up
[  211.266326][T11297] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.310016][T11301] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  211.328941][T11301] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  211.337736][T11301] FAT-fs (loop3): Filesystem has been set read-only
[  211.344848][T11301] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  211.353032][T11301] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  211.371596][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.395099][T11304] EXT4-fs (loop5): 1 truncate cleaned up
[  211.401229][T11304] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  211.421635][T11304] EXT4-fs error (device loop5): ext4_find_dest_de:2050: inode #2: block 13: comm syz.5.2766: bad entry in directory: directory entry overrun - offset=76, inode=0, rec_len=1024, size=1024 fake=0
[  211.467035][ T4485] hid-generic 0004:0006:0006.0032: item fetching failed at offset 0/1
[  211.479335][ T4485] hid-generic 0004:0006:0006.0032: probe with driver hid-generic failed with error -22
[  211.533384][T11304] EXT4-fs error (device loop5): ext4_find_dest_de:2050: inode #2: block 13: comm syz.5.2766: bad entry in directory: directory entry overrun - offset=76, inode=0, rec_len=1024, size=1024 fake=0
[  211.639402][T11318] sch_fq: defrate 4294967295 ignored.
[  211.752372][ T7999] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.958197][T11331] EXT4-fs: Ignoring removed bh option
[  211.968338][T11331] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  211.979594][T11331] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.2775: invalid block
[  212.048190][T11331] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2775: invalid indirect mapped block 4294967295 (level 1)
[  212.073096][T11336] EXT4-fs: Ignoring removed bh option
[  212.078991][T11336] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  212.089962][T11331] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2775: invalid indirect mapped block 4294967295 (level 1)
[  212.105225][T11336] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.2777: invalid block
[  212.117454][T11336] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2777: invalid indirect mapped block 4294967295 (level 1)
[  212.131854][T11331] EXT4-fs (loop5): 2 truncates cleaned up
[  212.138468][T11336] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2777: invalid indirect mapped block 4294967295 (level 1)
[  212.164861][T11331] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.179360][T11336] EXT4-fs (loop2): 2 truncates cleaned up
[  212.185651][T11336] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.309211][T11343] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm +}[@: bg 0: block 5: invalid block bitmap
[  212.324776][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.416269][ T5176] hid-generic 0004:0006:0006.0033: item fetching failed at offset 0/1
[  212.425175][ T5176] hid-generic 0004:0006:0006.0033: probe with driver hid-generic failed with error -22
[  212.475710][T11353] sch_fq: defrate 4294967295 ignored.
[  212.743531][T11364] lo speed is unknown, defaulting to 1000
[  212.749834][T11364] lo speed is unknown, defaulting to 1000
[  212.882188][T11365] lo speed is unknown, defaulting to 1000
[  212.908428][T11365] lo speed is unknown, defaulting to 1000
[  213.283616][T11372] EXT4-fs: Ignoring removed bh option
[  213.294859][T11372] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  213.314077][T11372] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.2791: invalid block
[  213.438756][T11377] EXT4-fs: Ignoring removed orlov option
[  213.456141][T11372] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.2791: invalid indirect mapped block 4294967295 (level 1)
[  213.490386][   T29] kauditd_printk_skb: 827 callbacks suppressed
[  213.490467][   T29] audit: type=1326 audit(1768560571.880:61297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.4.2792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efed5d4f749 code=0x7ffc0000
[  213.519743][T11372] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.2791: invalid indirect mapped block 4294967295 (level 1)
[  213.520486][   T29] audit: type=1326 audit(1768560571.880:61298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.4.2792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efed5d4f749 code=0x7ffc0000
[  213.557951][   T29] audit: type=1326 audit(1768560571.880:61299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.4.2792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efed5d4f749 code=0x7ffc0000
[  213.581717][   T29] audit: type=1326 audit(1768560571.880:61300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.4.2792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efed5d4f749 code=0x7ffc0000
[  213.605386][   T29] audit: type=1326 audit(1768560571.880:61301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.4.2792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efed5d4f749 code=0x7ffc0000
[  213.615287][T11372] EXT4-fs (loop3): 2 truncates cleaned up
[  213.629139][   T29] audit: type=1326 audit(1768560571.880:61302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.4.2792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efed5d4f749 code=0x7ffc0000
[  213.658614][   T29] audit: type=1326 audit(1768560571.880:61303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.4.2792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efed5d4f749 code=0x7ffc0000
[  213.682243][   T29] audit: type=1326 audit(1768560571.880:61304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.4.2792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efed5d4f749 code=0x7ffc0000
[  213.705870][   T29] audit: type=1326 audit(1768560571.880:61305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.4.2792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efed5d4f749 code=0x7ffc0000
[  213.729515][   T29] audit: type=1326 audit(1768560571.880:61306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.4.2792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efed5d4f749 code=0x7ffc0000
[  213.786459][T11383] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11383 comm=syz.2.2803
[  213.946609][T11390] sch_fq: defrate 4294967295 ignored.
[  214.330985][ T3515] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  214.339099][ T3515] hid-generic 0000:0000:0000.0034: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  214.424217][T11395] set_capacity_and_notify: 11 callbacks suppressed
[  214.424239][T11395] loop3: detected capacity change from 0 to 2048
[  214.517399][T11410] __nla_validate_parse: 4 callbacks suppressed
[  214.517415][T11410] netlink: 664 bytes leftover after parsing attributes in process `syz.3.2804'.
[  214.552302][T11408] lo speed is unknown, defaulting to 1000
[  214.585184][T11408] lo speed is unknown, defaulting to 1000
[  214.945768][T11421] loop5: detected capacity change from 0 to 512
[  214.979885][ T5176] hid-generic 0004:0006:0006.0035: item fetching failed at offset 0/1
[  214.994018][T11421] EXT4-fs: Ignoring removed bh option
[  215.004049][ T5176] hid-generic 0004:0006:0006.0035: probe with driver hid-generic failed with error -22
[  215.026397][T11421] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  215.037470][T11411] lo speed is unknown, defaulting to 1000
[  215.113561][T11411] lo speed is unknown, defaulting to 1000
[  215.121675][T11421] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.2807: invalid block
[  215.143937][T11428] sch_fq: defrate 4294967295 ignored.
[  215.159670][T11421] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2807: invalid indirect mapped block 4294967295 (level 1)
[  215.219590][T11421] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.2807: invalid indirect mapped block 4294967295 (level 1)
[  215.234333][T11421] EXT4-fs (loop5): 2 truncates cleaned up
[  215.309044][T11434] loop5: detected capacity change from 0 to 2048
[  215.393607][T11442] netlink: 664 bytes leftover after parsing attributes in process `syz.1.2817'.
[  215.416124][T11448] loop3: detected capacity change from 0 to 128
[  215.563245][ T5176] hid-generic 0000:0000:0000.0036: unknown main item tag 0x0
[  215.621775][   T23] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0
[  215.726856][   T23] hid-generic 0000:0000:0000.0037: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  215.737623][ T5176] hid-generic 0000:0000:0000.0036: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  215.894107][T11465] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2826'.
[  215.903099][T11465] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2826'.
[  216.021171][T11469] loop5: detected capacity change from 0 to 512
[  216.067243][T11469] EXT4-fs (loop5): 1 truncate cleaned up
[  216.081742][T11473] netlink: 664 bytes leftover after parsing attributes in process `syz.3.2829'.
[  216.101131][T11469] EXT4-fs error (device loop5): ext4_find_dest_de:2050: inode #2: block 13: comm syz.5.2828: bad entry in directory: directory entry overrun - offset=76, inode=0, rec_len=1024, size=1024 fake=0
[  216.145471][T11469] EXT4-fs error (device loop5): ext4_find_dest_de:2050: inode #2: block 13: comm syz.5.2828: bad entry in directory: directory entry overrun - offset=76, inode=0, rec_len=1024, size=1024 fake=0
[  216.374769][ T4485] hid-generic 0004:0006:0006.0038: item fetching failed at offset 0/1
[  216.384770][ T4485] hid-generic 0004:0006:0006.0038: probe with driver hid-generic failed with error -22
[  216.558402][ T4485] hid-generic 0000:0000:0000.0039: unknown main item tag 0x0
[  216.591066][T11491] loop4: detected capacity change from 0 to 512
[  216.615411][T11491] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  216.664701][ T4485] hid-generic 0000:0000:0000.0039: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  216.705465][T11491] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  216.714264][T11491] FAT-fs (loop4): Filesystem has been set read-only
[  216.757279][T11499] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2839'.
[  216.766245][T11499] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2839'.
[  216.798524][T11501] loop5: detected capacity change from 0 to 512
[  216.801586][T11491] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548)
[  216.813022][T11491] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548)
[  216.823281][T11501] EXT4-fs (loop5): 1 truncate cleaned up
[  216.831166][T11501] EXT4-fs error (device loop5): ext4_find_dest_de:2050: inode #2: block 13: comm syz.5.2840: bad entry in directory: directory entry overrun - offset=76, inode=0, rec_len=1024, size=1024 fake=0
[  216.852338][T11501] EXT4-fs error (device loop5): ext4_find_dest_de:2050: inode #2: block 13: comm syz.5.2840: bad entry in directory: directory entry overrun - offset=76, inode=0, rec_len=1024, size=1024 fake=0
[  216.897798][ T4485] hid-generic 0000:0000:0000.003A: unknown main item tag 0x0
[  216.906064][ T4485] hid-generic 0000:0000:0000.003A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  216.991290][   T23] hid-generic 0004:0006:0006.003B: item fetching failed at offset 0/1
[  216.999753][T11517] netlink: 664 bytes leftover after parsing attributes in process `syz.1.2854'.
[  217.008961][ T4485] IPVS: starting estimator thread 0...
[  217.014677][   T23] hid-generic 0004:0006:0006.003B: probe with driver hid-generic failed with error -22
[  217.030708][T11518] IPVS: dh: FWM 3 0x00000003 - no destination available
[  217.049147][T11518] loop3: detected capacity change from 0 to 2048
[  217.144853][T11519] IPVS: using max 2256 ests per chain, 112800 per kthread
[  217.152654][T11518]  loop3: p1 < > p4
[  217.157639][T11518] loop3: p4 size 8388608 extends beyond EOD, truncated
[  217.420402][   T23] hid-generic 0000:0000:0000.003C: unknown main item tag 0x0
[  217.454963][   T23] hid-generic 0000:0000:0000.003C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  217.605875][T11540] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2852'.
[  217.614882][T11540] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2852'.
[  217.749865][   T23] hid-generic 0000:0000:0000.003D: unknown main item tag 0x0
[  217.762971][   T23] hid-generic 0000:0000:0000.003D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  217.802025][T11552] lo speed is unknown, defaulting to 1000
[  217.828840][T11552] lo speed is unknown, defaulting to 1000
[  217.885915][T11555] loop3: detected capacity change from 0 to 2048
[  217.946157][T11553] lo speed is unknown, defaulting to 1000
[  217.954221][T11553] lo speed is unknown, defaulting to 1000
[  217.998635][   T23] hid-generic 0000:0000:0000.003E: unknown main item tag 0x0
[  218.009971][   T23] hid-generic 0000:0000:0000.003E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  218.127235][T11574] hub 2-0:1.0: USB hub found
[  218.135247][T11574] hub 2-0:1.0: 8 ports detected
[  218.194710][T11578] loop2: detected capacity change from 0 to 512
[  218.203954][T11578] EXT4-fs: Ignoring removed bh option
[  218.214772][T11578] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  218.249076][T11578] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.2869: invalid block
[  218.275181][T11578] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2869: invalid indirect mapped block 4294967295 (level 1)
[  218.307393][T11578] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2869: invalid indirect mapped block 4294967295 (level 1)
[  218.327487][T11578] EXT4-fs (loop2): 2 truncates cleaned up
[  218.343238][   T23] hid-generic 0004:0006:0006.003F: item fetching failed at offset 0/1
[  218.352403][   T23] hid-generic 0004:0006:0006.003F: probe with driver hid-generic failed with error -22
[  218.367285][   T23] hid-generic 0004:0006:0006.0040: item fetching failed at offset 0/1
[  218.375730][   T23] hid-generic 0004:0006:0006.0040: probe with driver hid-generic failed with error -22
[  218.396156][T11589] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm +}[@: bg 0: block 5: invalid block bitmap
[  218.415220][T11591] EXT4-fs: dax option not supported
[  218.679989][T11611] lo speed is unknown, defaulting to 1000
[  218.686581][T11611] lo speed is unknown, defaulting to 1000
[  218.730137][T11612] lo speed is unknown, defaulting to 1000
[  218.746559][T11612] lo speed is unknown, defaulting to 1000
[  218.811479][   T23] hid-generic 0004:0006:0006.0041: item fetching failed at offset 0/1
[  218.820170][   T23] hid-generic 0004:0006:0006.0041: probe with driver hid-generic failed with error -22
[  218.835675][T11620] EXT4-fs (loop3): 1 truncate cleaned up
[  218.885613][T11625] EXT4-fs: dax option not supported
[  218.949998][T11631] netlink: 'syz.3.2887': attribute type 13 has an invalid length.
[  218.988665][T11631] 8021q: adding VLAN 0 to HW filter on device bond0
[  219.002228][T11631] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  219.155267][   T23] hid-generic 0004:0006:0006.0042: item fetching failed at offset 0/1
[  219.163649][   T23] hid-generic 0004:0006:0006.0042: probe with driver hid-generic failed with error -22
[  219.259338][T11650] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  219.267604][T11650] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  219.357912][ T5176] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0
[  219.372749][ T5176] hid-generic 0000:0000:0000.0043: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  219.433516][T11663] set_capacity_and_notify: 4 callbacks suppressed
[  219.433535][T11663] loop5: detected capacity change from 0 to 1024
[  219.447231][T11663] EXT4-fs: Ignoring removed oldalloc option
[  219.453255][T11663] EXT4-fs: Ignoring removed bh option
[  219.470983][T11660] rdma_rxe: rxe_newlink: failed to add bond0
[  219.521611][T11663] bridge0: port 1(ipvlan2) entered blocking state
[  219.528258][T11663] bridge0: port 1(ipvlan2) entered disabled state
[  219.535510][T11663] ipvlan2: entered allmulticast mode
[  219.540876][T11663] bridge0: entered allmulticast mode
[  219.547973][T11663] ipvlan2: left allmulticast mode
[  219.553131][T11663] bridge0: left allmulticast mode
[  219.564630][   T29] kauditd_printk_skb: 48 callbacks suppressed
[  219.564647][   T29] audit: type=1400 audit(1768560577.910:61355): avc:  denied  { setattr } for  pid=11662 comm="syz.5.2901" name="/" dev="loop5" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  219.592841][   T29] audit: type=1400 audit(1768560577.910:61356): avc:  denied  { create } for  pid=11662 comm="syz.5.2901" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  219.612435][   T29] audit: type=1400 audit(1768560577.920:61357): avc:  denied  { ioctl } for  pid=11662 comm="syz.5.2901" path="socket:[36423]" dev="sockfs" ino=36423 ioctlcmd=0x89eb scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  219.637313][   T29] audit: type=1400 audit(1768560577.920:61358): avc:  denied  { rmdir } for  pid=11662 comm="syz.5.2901" name="bus" dev="loop5" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  219.765659][T11670] loop3: detected capacity change from 0 to 512
[  219.803089][T11670] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  219.847495][T11665] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  219.856307][T11665] FAT-fs (loop3): Filesystem has been set read-only
[  219.877690][T11665] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  219.886724][T11665] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  219.911856][T11677] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  219.920198][T11677] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  219.933598][T11680] __nla_validate_parse: 6 callbacks suppressed
[  219.933610][T11680] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2907'.
[  219.948932][T11680] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2907'.
[  220.093507][   T23] hid-generic 0000:0000:0000.0044: unknown main item tag 0x0
[  220.101552][T11693] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2913'.
[  220.101573][   T23] hid-generic 0000:0000:0000.0044: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  220.192360][T11702] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2918'.
[  220.219433][T11705] loop4: detected capacity change from 0 to 1024
[  220.227461][T11705] EXT4-fs: dax option not supported
[  220.245300][   T29] audit: type=1400 audit(1768560578.650:61359): avc:  denied  { bind } for  pid=11700 comm="syz.5.2918" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  220.283707][T11707] SELinux: failed to load policy
[  220.292200][T11705] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2919'.
[  220.306966][T11711] netlink: 664 bytes leftover after parsing attributes in process `syz.5.2921'.
[  220.336597][T11713] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  220.344951][T11713] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  220.376501][T11715] loop4: detected capacity change from 0 to 512
[  220.383375][T11715] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  220.416632][T11715] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  220.425456][T11715] FAT-fs (loop4): Filesystem has been set read-only
[  220.433480][T11715] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548)
[  220.441806][T11715] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548)
[  220.502055][T11717] loop3: detected capacity change from 0 to 2048
[  220.980766][ T3480] hid-generic 0000:0000:0000.0045: unknown main item tag 0x0
[  220.988866][ T3480] hid-generic 0000:0000:0000.0045: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  221.051511][T11744] loop4: detected capacity change from 0 to 1024
[  221.062647][T11741] hub 2-0:1.0: USB hub found
[  221.074604][T11741] hub 2-0:1.0: 8 ports detected
[  221.075281][T11744] EXT4-fs: dax option not supported
[  221.107078][T11744] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2933'.
[  221.165387][T11756] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2935'.
[  221.174445][T11756] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2935'.
[  221.187394][T11759] sch_fq: defrate 4294967295 ignored.
[  221.237393][ T2485] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.249372][T11756] hub 2-0:1.0: USB hub found
[  221.259229][   T29] audit: type=1326 audit(1768560579.660:61360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11766 comm="syz.5.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  221.283018][T11756] hub 2-0:1.0: 8 ports detected
[  221.291991][T11745] lo speed is unknown, defaulting to 1000
[  221.298095][T11767] bridge0: entered promiscuous mode
[  221.311595][   T29] audit: type=1326 audit(1768560579.690:61361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11766 comm="syz.5.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  221.320860][T11745] lo speed is unknown, defaulting to 1000
[  221.335318][   T29] audit: type=1326 audit(1768560579.690:61362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11766 comm="syz.5.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  221.364590][   T29] audit: type=1326 audit(1768560579.690:61363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11766 comm="syz.5.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  221.388283][   T29] audit: type=1326 audit(1768560579.690:61364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11766 comm="syz.5.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb2c10f749 code=0x7ffc0000
[  221.416687][ T2485] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.518234][T11775] loop4: detected capacity change from 0 to 2048
[  221.528786][ T2485] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.566618][T11775] EXT4-fs mount: 27 callbacks suppressed
[  221.566664][T11775] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  221.588747][ T2485] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.675906][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.730399][ T2485] bridge_slave_1: left allmulticast mode
[  221.736256][ T2485] bridge_slave_1: left promiscuous mode
[  221.742106][ T2485] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.751484][ T2485] bridge_slave_0: left allmulticast mode
[  221.757290][ T2485] bridge_slave_0: left promiscuous mode
[  221.763240][ T2485] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.765729][T11789] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2945'.
[  221.784333][T11787] loop4: detected capacity change from 0 to 512
[  221.791811][T11787] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  221.825876][T11787] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  221.834757][T11787] FAT-fs (loop4): Filesystem has been set read-only
[  221.854027][T11787] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548)
[  221.864494][T11787] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548)
[  222.098277][ T2485] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  222.108708][ T2485] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  222.119537][ T2485] bond0 (unregistering): Released all slaves
[  222.180833][T11745] chnl_net:caif_netlink_parms(): no params data found
[  222.191510][T11799] sch_fq: defrate 4294967295 ignored.
[  222.198775][T11800] rdma_rxe: rxe_newlink: failed to add bond0
[  222.251399][ T2485] IPVS: stopping master sync thread 4530 ...
[  222.844227][T11816] loop4: detected capacity change from 0 to 1024
[  222.875066][ T2485] hsr_slave_0: left promiscuous mode
[  222.896360][ T2485] hsr_slave_1: left promiscuous mode
[  222.921587][ T2485] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  222.929231][ T2485] batman_adv: batadv0: Removing interface: batadv_slave_0
[  222.963522][T11822] loop4: detected capacity change from 0 to 2048
[  222.971063][ T2485] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  222.978526][ T2485] batman_adv: batadv0: Removing interface: batadv_slave_1
[  222.994132][ T2485] veth1_macvtap: left promiscuous mode
[  223.002866][T11822] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.015419][ T2485] veth0_macvtap: left promiscuous mode
[  223.029821][ T2485] veth1_vlan: left promiscuous mode
[  223.050185][ T2485] veth0_vlan: left promiscuous mode
[  223.060160][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.258363][   T36] lo speed is unknown, defaulting to 1000
[  223.264264][   T36] infiniband syz2: ib_query_port failed (-19)
[  223.290799][T11826] EXT4-fs: Ignoring removed orlov option
[  223.297293][T11745] bridge0: port 1(bridge_slave_0) entered blocking state
[  223.304493][T11745] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.313527][T11745] bridge_slave_0: entered allmulticast mode
[  223.326904][T11826] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.330230][T11745] bridge_slave_0: entered promiscuous mode
[  223.346670][T11745] bridge0: port 2(bridge_slave_1) entered blocking state
[  223.353780][T11745] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.361210][T11745] bridge_slave_1: entered allmulticast mode
[  223.367856][T11745] bridge_slave_1: entered promiscuous mode
[  223.405179][T11836] EXT4-fs (loop5): 1 truncate cleaned up
[  223.411373][T11836] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.452299][ T7999] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.473855][T11745] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  223.494211][T11745] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  223.509466][T11843] rdma_rxe: rxe_newlink: failed to add bond0
[  223.526936][T11745] team0: Port device team_slave_0 added
[  223.536005][T11745] team0: Port device team_slave_1 added
[  223.859930][T11849] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  223.924983][ T2485] IPVS: stop unused estimator thread 0...
[  223.995805][T11745] batman_adv: batadv0: Adding interface: batadv_slave_0
[  224.002851][T11745] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  224.028830][T11745] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  224.040587][T11745] batman_adv: batadv0: Adding interface: batadv_slave_1
[  224.047589][T11745] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  224.073565][T11745] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  224.114444][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.115692][T11745] hsr_slave_0: entered promiscuous mode
[  224.129827][T11745] hsr_slave_1: entered promiscuous mode
[  224.135787][T11745] debugfs: 'hsr0' already exists in 'hsr'
[  224.141541][T11745] Cannot create hsr debugfs directory
[  224.216036][T11852] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.242941][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.316940][ T3515] hid-generic 0004:0006:0006.0046: item fetching failed at offset 0/1
[  224.325985][ T3515] hid-generic 0004:0006:0006.0046: probe with driver hid-generic failed with error -22
[  224.359354][T11874] EXT4-fs: dax option not supported
[  224.404687][T11878] lo speed is unknown, defaulting to 1000
[  224.456967][T11881] lo speed is unknown, defaulting to 1000
[  224.582643][T11745] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  224.687023][T11745] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  224.704062][T11887] set_capacity_and_notify: 5 callbacks suppressed
[  224.704080][T11887] loop5: detected capacity change from 0 to 512
[  224.764722][T11745] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  224.782345][T11887] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  224.801303][T11883] lo speed is unknown, defaulting to 1000
[  224.822941][T11745] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  224.886995][T11887] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  224.895891][T11887] FAT-fs (loop5): Filesystem has been set read-only
[  224.903017][T11887] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 548)
[  224.911371][T11887] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 548)
[  224.986094][T11884] lo speed is unknown, defaulting to 1000
[  224.996046][T11745] 8021q: adding VLAN 0 to HW filter on device bond0
[  225.023816][T11745] 8021q: adding VLAN 0 to HW filter on device team0
[  225.047446][ T2588] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.054584][ T2588] bridge0: port 1(bridge_slave_0) entered forwarding state
[  225.083941][ T2588] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.091078][ T2588] bridge0: port 2(bridge_slave_1) entered forwarding state
[  225.115427][T11745] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  225.125892][T11745] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  225.162045][T11902] __nla_validate_parse: 5 callbacks suppressed
[  225.162065][T11902] netlink: 664 bytes leftover after parsing attributes in process `syz.5.2973'.
[  225.294356][T11907] loop4: detected capacity change from 0 to 128
[  225.365759][T11745] 8021q: adding VLAN 0 to HW filter on device batadv0
[  225.384856][T11912] loop2: detected capacity change from 0 to 512
[  225.408265][T11912] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  225.545775][T11916] rdma_rxe: rxe_newlink: failed to add bond0
[  225.602068][T11912] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  225.610914][T11912] FAT-fs (loop2): Filesystem has been set read-only
[  225.664430][T11912] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  225.700430][T11912] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  225.713756][T11745] veth0_vlan: entered promiscuous mode
[  225.728824][T11745] veth1_vlan: entered promiscuous mode
[  225.753350][T11745] veth0_macvtap: entered promiscuous mode
[  225.766053][T11745] veth1_macvtap: entered promiscuous mode
[  225.783443][T11745] batman_adv: batadv0: Interface activated: batadv_slave_0
[  225.800666][T11745] batman_adv: batadv0: Interface activated: batadv_slave_1
[  225.838814][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  225.852607][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  225.864760][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  225.877557][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  225.892994][   T29] kauditd_printk_skb: 89 callbacks suppressed
[  225.893012][   T29] audit: type=1400 audit(1768560584.290:61454): avc:  denied  { mount } for  pid=11745 comm="syz-executor" name="/" dev="gadgetfs" ino=4622 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  226.107036][T11938] netlink: 664 bytes leftover after parsing attributes in process `syz.5.2983'.
[  226.208940][T11939] FAULT_INJECTION: forcing a failure.
[  226.208940][T11939] name failslab, interval 1, probability 0, space 0, times 0
[  226.221807][T11939] CPU: 0 UID: 0 PID: 11939 Comm: syz.2.2981 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  226.221867][T11939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  226.221882][T11939] Call Trace:
[  226.221888][T11939]  <TASK>
[  226.221895][T11939]  __dump_stack+0x1d/0x30
[  226.221926][T11939]  dump_stack_lvl+0x95/0xd0
[  226.221984][T11939]  dump_stack+0x15/0x1b
[  226.222009][T11939]  should_fail_ex+0x265/0x280
[  226.222039][T11939]  should_failslab+0x8c/0xb0
[  226.222067][T11939]  __kmalloc_cache_noprof+0x65/0x4c0
[  226.222098][T11939]  ? nf_tables_newtable+0x375/0xea0
[  226.222155][T11939]  ? __nla_validate_parse+0x1652/0x1d00
[  226.222185][T11939]  nf_tables_newtable+0x375/0xea0
[  226.222234][T11939]  nfnetlink_rcv+0xbc9/0x16c0
[  226.222318][T11939]  netlink_unicast+0x5c0/0x690
[  226.222348][T11939]  netlink_sendmsg+0x58b/0x6b0
[  226.222406][T11939]  ? __pfx_netlink_sendmsg+0x10/0x10
[  226.222449][T11939]  __sock_sendmsg+0x145/0x180
[  226.222470][T11939]  ____sys_sendmsg+0x31e/0x4a0
[  226.222502][T11939]  ___sys_sendmsg+0x17b/0x1d0
[  226.222677][T11939]  __x64_sys_sendmsg+0xd4/0x160
[  226.222783][T11939]  x64_sys_call+0x17ba/0x3000
[  226.222839][T11939]  do_syscall_64+0xca/0x2b0
[  226.222924][T11939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.222946][T11939] RIP: 0033:0x7f47eb2ef749
[  226.222961][T11939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.222982][T11939] RSP: 002b:00007f47e9d57038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  226.223029][T11939] RAX: ffffffffffffffda RBX: 00007f47eb545fa0 RCX: 00007f47eb2ef749
[  226.223045][T11939] RDX: 0000000000000004 RSI: 00002000000000c0 RDI: 0000000000000004
[  226.223061][T11939] RBP: 00007f47e9d57090 R08: 0000000000000000 R09: 0000000000000000
[  226.223078][T11939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  226.223094][T11939] R13: 00007f47eb546038 R14: 00007f47eb545fa0 R15: 00007ffe90bba068
[  226.223128][T11939]  </TASK>
[  226.471067][T11946] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  226.479329][T11946] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  226.654174][T11953] netlink: 'syz.3.2987': attribute type 1 has an invalid length.
[  226.662032][T11953] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2987'.
[  226.780982][T11956] loop2: detected capacity change from 0 to 512
[  226.875394][T11956] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  226.996091][T11963] lo speed is unknown, defaulting to 1000
[  227.009916][T11956] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  227.018725][T11956] FAT-fs (loop2): Filesystem has been set read-only
[  227.076305][T11956] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  227.109075][T11956] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548)
[  227.160899][T11964] lo speed is unknown, defaulting to 1000
[  227.251293][T11973] netlink: 664 bytes leftover after parsing attributes in process `syz.4.2993'.
[  227.308562][T11975] hub 2-0:1.0: USB hub found
[  227.315729][T11975] hub 2-0:1.0: 8 ports detected
[  227.573590][T11984] netlink: 664 bytes leftover after parsing attributes in process `syz.2.2997'.
[  227.967269][T11995] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  227.975667][T11995] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  228.366585][   T29] audit: type=1400 audit(1768560586.770:61455): avc:  denied  { write } for  pid=12009 comm="syz.3.3005" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  228.565758][T12024] loop2: detected capacity change from 0 to 128
[  228.579428][T12024] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  228.594635][T12024] ext4 filesystem being mounted at /581/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  228.606233][T12024] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  228.697058][T12025] hub 2-0:1.0: USB hub found
[  228.703608][T12031] FAULT_INJECTION: forcing a failure.
[  228.703608][T12031] name failslab, interval 1, probability 0, space 0, times 0
[  228.716395][T12031] CPU: 1 UID: 0 PID: 12031 Comm: syz.3.3012 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  228.716450][T12031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  228.716463][T12031] Call Trace:
[  228.716470][T12031]  <TASK>
[  228.716479][T12031]  __dump_stack+0x1d/0x30
[  228.716527][T12031]  dump_stack_lvl+0x95/0xd0
[  228.716550][T12031]  dump_stack+0x15/0x1b
[  228.716623][T12031]  should_fail_ex+0x265/0x280
[  228.716703][T12031]  should_failslab+0x8c/0xb0
[  228.716728][T12031]  kmem_cache_alloc_noprof+0x69/0x4b0
[  228.716749][T12031]  ? alloc_empty_file+0x76/0x200
[  228.716777][T12031]  alloc_empty_file+0x76/0x200
[  228.716897][T12031]  path_openat+0x63/0x23b0
[  228.716932][T12031]  ? _parse_integer_limit+0x170/0x190
[  228.716953][T12031]  ? _parse_integer+0x27/0x40
[  228.717001][T12031]  ? kstrtoull+0x111/0x140
[  228.717025][T12031]  ? kstrtouint+0x76/0xc0
[  228.717124][T12031]  do_filp_open+0x109/0x230
[  228.717175][T12031]  do_sys_openat2+0xa6/0x150
[  228.717228][T12031]  __x64_sys_openat+0xf2/0x120
[  228.717317][T12031]  x64_sys_call+0x2b07/0x3000
[  228.717394][T12031]  do_syscall_64+0xca/0x2b0
[  228.717417][T12031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.717481][T12031] RIP: 0033:0x7f0f676bdf90
[  228.717613][T12031] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44
[  228.717631][T12031] RSP: 002b:00007f0f6611ef10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  228.717649][T12031] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0f676bdf90
[  228.717661][T12031] RDX: 0000000000000002 RSI: 00007f0f6611efa0 RDI: 00000000ffffff9c
[  228.717673][T12031] RBP: 00007f0f6611efa0 R08: 0000000000000000 R09: 0000000000000000
[  228.717688][T12031] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  228.717704][T12031] R13: 00007f0f67916038 R14: 00007f0f67915fa0 R15: 00007ffedc39e5a8
[  228.717771][T12031]  </TASK>
[  228.719746][T12025] hub 2-0:1.0: 8 ports detected
[  228.999944][T12034] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  229.000400][T12006] lo speed is unknown, defaulting to 1000
[  229.008211][T12034] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  229.111809][T12042] loop3: detected capacity change from 0 to 1024
[  229.170837][T12040] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3016'.
[  229.186967][T12040] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3016'.
[  229.196335][   T29] audit: type=1400 audit(1768560587.560:61456): avc:  denied  { module_load } for  pid=12038 comm="syz.1.3016" path="/sys/kernel/notes" dev="sysfs" ino=210 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  229.225627][T12042] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.242375][   T29] audit: type=1400 audit(1768560587.640:61457): avc:  denied  { open } for  pid=12041 comm="syz.3.3017" path="/10/file1/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  229.265647][   T29] audit: type=1400 audit(1768560587.640:61458): avc:  denied  { read } for  pid=12041 comm="syz.3.3017" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  229.287997][   T29] audit: type=1400 audit(1768560587.640:61459): avc:  denied  { ioctl } for  pid=12041 comm="syz.3.3017" path="/10/file1/file1" dev="loop3" ino=15 ioctlcmd=0x5829 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  229.318741][T12049] loop2: detected capacity change from 0 to 1024
[  229.333357][T12049] EXT4-fs: Ignoring removed orlov option
[  229.344195][T11745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.345410][T12049] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.373519][   T29] audit: type=1326 audit(1768560587.770:61460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12048 comm="syz.2.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  229.397211][   T29] audit: type=1326 audit(1768560587.770:61461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12048 comm="syz.2.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  229.449027][   T29] audit: type=1326 audit(1768560587.820:61462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12048 comm="syz.2.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  229.472725][   T29] audit: type=1326 audit(1768560587.820:61463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12048 comm="syz.2.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47eb2ef749 code=0x7ffc0000
[  229.491059][T12058] loop3: detected capacity change from 0 to 512
[  229.538751][T12058] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  229.552019][T12006] chnl_net:caif_netlink_parms(): no params data found
[  229.585426][T12058] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2857: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  229.607592][T12067] hub 2-0:1.0: USB hub found
[  229.612335][T12067] hub 2-0:1.0: 8 ports detected
[  229.633215][T12058] EXT4-fs (loop3): 1 truncate cleaned up
[  229.640729][T12058] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.660924][T12058] netlink: 'syz.3.3023': attribute type 12 has an invalid length.
[  229.668930][T12058] netlink: 'syz.3.3023': attribute type 29 has an invalid length.
[  229.676884][T12058] netlink: 148 bytes leftover after parsing attributes in process `syz.3.3023'.
[  229.685987][T12058] netlink: 'syz.3.3023': attribute type 2 has an invalid length.
[  229.693743][T12058] netlink: 'syz.3.3023': attribute type 3 has an invalid length.
[  229.701662][T12058] netlink: 15 bytes leftover after parsing attributes in process `syz.3.3023'.
[  229.729080][T11745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.764649][T12006] bridge0: port 1(bridge_slave_0) entered blocking state
[  229.771925][T12006] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.820734][T12006] bridge_slave_0: entered allmulticast mode
[  229.830658][T12006] bridge_slave_0: entered promiscuous mode
[  229.934964][ T5176] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  229.950535][T12094] syzkaller0: entered promiscuous mode
[  229.956086][T12094] syzkaller0: entered allmulticast mode
[  229.967715][T12098] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  229.977113][T12006] bridge0: port 2(bridge_slave_1) entered blocking state
[  229.984239][T12006] bridge0: port 2(bridge_slave_1) entered disabled state
[  229.992350][T12098] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.000714][T12098] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.009037][T12098] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.017317][T12098] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.027666][T12006] bridge_slave_1: entered allmulticast mode
[  230.034350][T12006] bridge_slave_1: entered promiscuous mode
[  230.062505][T12101] tmpfs: Unknown parameter 'usrquota'
[  230.111912][T12102] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.159180][T12102] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  230.211009][T12006] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  230.226427][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.247904][T12006] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  230.258626][T12104] syzkaller0: entered promiscuous mode
[  230.259916][T12102] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.264164][T12104] syzkaller0: entered allmulticast mode
[  230.278175][T12102] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.286416][T12102] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  230.306615][T12097] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  230.383717][T12114] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  230.392356][T12114] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  230.518517][T12006] team0: Port device team_slave_0 added
[  230.524568][T12117] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  230.533064][T12117] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  230.542494][T12006] team0: Port device team_slave_1 added
[  230.563120][T12006] batman_adv: batadv0: Adding interface: batadv_slave_0
[  230.570205][T12006] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  230.596303][T12006] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  230.609021][T12006] batman_adv: batadv0: Adding interface: batadv_slave_1
[  230.616066][T12006] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  230.641985][T12006] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  230.656471][T12121] syzkaller0: entered promiscuous mode
[  230.661990][T12121] syzkaller0: entered allmulticast mode
[  230.696947][T12006] hsr_slave_0: entered promiscuous mode
[  230.703317][T12006] hsr_slave_1: entered promiscuous mode
[  230.709381][T12006] debugfs: 'hsr0' already exists in 'hsr'
[  230.715171][T12006] Cannot create hsr debugfs directory
[  230.772923][T12127] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3046'.
[  230.823582][T12006] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.868317][T12143] netlink: 'syz.3.3053': attribute type 1 has an invalid length.
[  230.873036][T12141] syzkaller0: entered promiscuous mode
[  230.876190][T12143] netlink: 224 bytes leftover after parsing attributes in process `syz.3.3053'.
[  230.890885][T12141] syzkaller0: entered allmulticast mode
[  230.903198][T12145] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  230.912859][T12145] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  230.925400][T12006] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.989531][T12006] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.036240][T12157] netlink: 'syz.1.3057': attribute type 1 has an invalid length.
[  231.055502][T12157] bond1: (slave ip6gretap0): Enslaving as a backup interface with an up link
[  231.080185][T12006] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.094689][T12157] 8021q: adding VLAN 0 to HW filter on device bond1
[  231.120128][T12157] veth3: entered promiscuous mode
[  231.127616][T12157] bond1: (slave veth3): Enslaving as a backup interface with a down link
[  231.174766][T12006] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  231.183939][T12006] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  231.197289][T12006] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  231.208771][T12006] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  231.216676][T12173] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  231.232663][T12173] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  231.242293][T12176] usb usb1: usbfs: process 12176 (syz.2.3065) did not claim interface 0 before use
[  231.255345][T12180] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3066'.
[  231.318443][T12006] 8021q: adding VLAN 0 to HW filter on device bond0
[  231.331856][T12006] 8021q: adding VLAN 0 to HW filter on device team0
[  231.345530][ T1009] bridge0: port 1(bridge_slave_0) entered blocking state
[  231.352639][ T1009] bridge0: port 1(bridge_slave_0) entered forwarding state
[  231.363218][ T1009] bridge0: port 2(bridge_slave_1) entered blocking state
[  231.370449][ T1009] bridge0: port 2(bridge_slave_1) entered forwarding state
[  231.471561][T12202] lo speed is unknown, defaulting to 1000
[  231.486523][T12206] sg_write: data in/out 489/10 bytes for SCSI command 0xeb-- guessing data in;
[  231.486523][T12206]    program syz.3.3075 not setting count and/or reply_len properly
[  231.504623][T12006] 8021q: adding VLAN 0 to HW filter on device batadv0
[  231.567812][   T29] kauditd_printk_skb: 38 callbacks suppressed
[  231.567828][   T29] audit: type=1400 audit(1768560589.970:61502): avc:  denied  { write } for  pid=12214 comm="syz.3.3078" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  231.807890][T12006] veth0_vlan: entered promiscuous mode
[  231.827335][T12006] veth1_vlan: entered promiscuous mode
[  231.836668][T12262] 9pnet_virtio: no channels available for device syz
[  231.855407][   T29] audit: type=1400 audit(1768560590.260:61503): avc:  denied  { bind } for  pid=12250 comm="syz.5.3082" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  231.883000][T12006] veth0_macvtap: entered promiscuous mode
[  231.899255][T12006] veth1_macvtap: entered promiscuous mode
[  231.929983][T12006] batman_adv: batadv0: Interface activated: batadv_slave_0
[  231.948196][T12272] syzkaller1: entered promiscuous mode
[  231.953816][T12272] syzkaller1: entered allmulticast mode
[  231.967419][T12006] batman_adv: batadv0: Interface activated: batadv_slave_1
[  231.992952][ T1009] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  232.002927][ T1009] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  232.021617][ T1009] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  232.055009][ T1009] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  232.076237][T12284] netlink: 664 bytes leftover after parsing attributes in process `syz.4.3001'.
[  232.085602][   T29] audit: type=1400 audit(1768560590.480:61504): avc:  denied  { bind } for  pid=12283 comm="syz.2.3086" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  232.105308][   T29] audit: type=1400 audit(1768560590.480:61505): avc:  denied  { node_bind } for  pid=12283 comm="syz.2.3086" saddr=255.255.255.255 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  232.127482][   T29] audit: type=1400 audit(1768560590.480:61506): avc:  denied  { name_bind } for  pid=12283 comm="syz.2.3086" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  232.700202][T12335] lo speed is unknown, defaulting to 1000
[  232.794116][T12355] syzkaller0: entered promiscuous mode
[  232.800059][T12355] syzkaller0: entered allmulticast mode
[  232.858523][T12357] netlink: 'syz.5.3095': attribute type 10 has an invalid length.
[  232.932052][T12335] chnl_net:caif_netlink_parms(): no params data found
[  233.000545][T12369] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  233.025927][T12369] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  233.037531][T12335] bridge0: port 1(bridge_slave_0) entered blocking state
[  233.044748][T12335] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.052062][T12335] bridge_slave_0: entered allmulticast mode
[  233.058867][T12335] bridge_slave_0: entered promiscuous mode
[  233.099252][T12377] 9pnet_virtio: no channels available for device syz
[  233.116875][T12335] bridge0: port 2(bridge_slave_1) entered blocking state
[  233.124001][T12335] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.134681][T12335] bridge_slave_1: entered allmulticast mode
[  233.141450][T12335] bridge_slave_1: entered promiscuous mode
[  233.152088][T12378] tipc: Started in network mode
[  233.157036][T12378] tipc: Node identity fe9658572cc3, cluster identity 4711
[  233.164350][T12378] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  233.188585][T12374] tipc: Resetting bearer <eth:syzkaller0>
[  233.204018][T12374] tipc: Disabling bearer <eth:syzkaller0>
[  233.213225][T12335] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  233.225701][T12382] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3103'.
[  233.236443][T12335] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  233.276902][T12382] hsr_slave_1 (unregistering): left promiscuous mode
[  233.357335][T12335] team0: Port device team_slave_0 added
[  233.364259][T12335] team0: Port device team_slave_1 added
[  233.404577][T12335] batman_adv: batadv0: Adding interface: batadv_slave_0
[  233.411576][T12335] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  233.437582][T12335] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  233.470592][T12335] batman_adv: batadv0: Adding interface: batadv_slave_1
[  233.477715][T12335] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  233.503766][T12335] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  233.542024][T12335] hsr_slave_0: entered promiscuous mode
[  233.557665][T12335] hsr_slave_1: entered promiscuous mode
[  233.563657][T12335] debugfs: 'hsr0' already exists in 'hsr'
[  233.569504][T12335] Cannot create hsr debugfs directory
[  233.717986][T12335] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.787849][T12335] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.842416][T12428] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  233.856236][T12335] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.872907][   T23] IPVS: starting estimator thread 0...
[  233.874519][   T29] audit: type=1400 audit(1768560592.270:61507): avc:  denied  { connect } for  pid=12432 comm="syz.5.3122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  233.885317][T12428] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  233.946668][T12335] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.965163][T12434] IPVS: using max 2256 ests per chain, 112800 per kthread
[  234.029344][T12335] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  234.057288][T12335] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  234.083830][T12335] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  234.125544][T12335] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  234.212749][T12335] 8021q: adding VLAN 0 to HW filter on device bond0
[  234.231164][T12335] 8021q: adding VLAN 0 to HW filter on device team0
[  234.243164][T12327] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.250338][T12327] bridge0: port 1(bridge_slave_0) entered forwarding state
[  234.265390][ T1009] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.272599][ T1009] bridge0: port 2(bridge_slave_1) entered forwarding state
[  234.329300][T12464] batman_adv: batadv0: Adding interface: dummy0
[  234.335689][T12464] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  234.365186][T12464] batman_adv: batadv0: Interface activated: dummy0
[  234.383351][   T29] audit: type=1400 audit(1768560592.780:61508): avc:  denied  { ioctl } for  pid=12461 comm="syz.5.3130" path="socket:[39928]" dev="sockfs" ino=39928 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  234.450643][T12471] 9pnet_virtio: no channels available for device syz
[  234.538775][T12335] 8021q: adding VLAN 0 to HW filter on device batadv0
[  234.639471][T12491] 9pnet_virtio: no channels available for device syz
[  234.651879][T12497] rdma_rxe: rxe_newlink: failed to add bond0
[  234.694155][T12499] netlink: 664 bytes leftover after parsing attributes in process `syz.1.3140'.
[  234.705384][T12335] veth0_vlan: entered promiscuous mode
[  234.718256][T12335] veth1_vlan: entered promiscuous mode
[  234.724598][T12480] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  234.854765][T12480] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  235.336164][T12335] veth0_macvtap: entered promiscuous mode
[  235.359727][T12335] veth1_macvtap: entered promiscuous mode
[  235.380832][T12335] batman_adv: batadv0: Interface activated: batadv_slave_0
[  235.411045][T12335] batman_adv: batadv0: Interface activated: batadv_slave_1
[  235.437308][T12326] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  235.448168][T12326] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  235.486127][T12507] loop5: detected capacity change from 0 to 512
[  235.487499][T12326] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  235.493606][T12507] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  235.519181][T12326] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  235.537636][T12507] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  235.546535][T12507] FAT-fs (loop5): Filesystem has been set read-only
[  235.562461][T12507] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 548)
[  235.571114][T12507] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 548)
[  235.619780][T12516] netlink: 'syz.2.3088': attribute type 1 has an invalid length.
[  235.727720][T12526] rdma_rxe: rxe_newlink: failed to add bond0
[  235.780314][T12531] loop2: detected capacity change from 0 to 512
[  235.799389][T12531] EXT4-fs: Ignoring removed bh option
[  235.813185][T12531] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  235.829073][T12531] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.3151: invalid block
[  235.845039][T12531] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.3151: invalid indirect mapped block 4294967295 (level 1)
[  235.859172][T12531] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.3151: invalid indirect mapped block 4294967295 (level 1)
[  235.859554][T12531] EXT4-fs (loop2): 2 truncates cleaned up
[  235.859938][T12531] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.892675][T12541] loop4: detected capacity change from 0 to 1024
[  235.892964][T12541] EXT4-fs: Ignoring removed orlov option
[  235.904324][T12541] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.910954][   T29] audit: type=1326 audit(1768560594.310:61509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12540 comm="syz.4.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5fea6f749 code=0x7ffc0000
[  235.911126][   T29] audit: type=1326 audit(1768560594.310:61510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12540 comm="syz.4.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5fea6f749 code=0x7ffc0000
[  235.911230][   T29] audit: type=1326 audit(1768560594.310:61511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12540 comm="syz.4.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5fea6f749 code=0x7ffc0000
[  235.926450][T12547] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm +}[@: bg 0: block 5: invalid block bitmap
[  236.031739][T12530] lo speed is unknown, defaulting to 1000
[  236.182795][T12530] chnl_net:caif_netlink_parms(): no params data found
[  236.296440][T12530] bridge0: port 1(bridge_slave_0) entered blocking state
[  236.303615][T12530] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.325552][T12530] bridge_slave_0: entered allmulticast mode
[  236.332340][T12530] bridge_slave_0: entered promiscuous mode
[  236.340956][T12530] bridge0: port 2(bridge_slave_1) entered blocking state
[  236.348068][T12530] bridge0: port 2(bridge_slave_1) entered disabled state
[  236.358515][T12530] bridge_slave_1: entered allmulticast mode
[  236.365292][T12530] bridge_slave_1: entered promiscuous mode
[  236.397646][T12530] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  236.408878][T12530] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  236.455445][T12530] team0: Port device team_slave_0 added
[  236.465093][T12530] team0: Port device team_slave_1 added
[  236.481872][T12563] netlink: 664 bytes leftover after parsing attributes in process `syz.3.3157'.
[  236.508044][T12530] batman_adv: batadv0: Adding interface: batadv_slave_0
[  236.515120][T12530] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  236.541153][T12530] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  236.580045][T12530] batman_adv: batadv0: Adding interface: batadv_slave_1
[  236.587117][T12530] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  236.613094][T12530] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  236.650586][T12530] hsr_slave_0: entered promiscuous mode
[  236.658743][T12530] hsr_slave_1: entered promiscuous mode
[  236.664824][T12530] debugfs: 'hsr0' already exists in 'hsr'
[  236.670595][T12530] Cannot create hsr debugfs directory
[  236.694236][T12335] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.734141][T12006] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.958752][T12572] loop5: detected capacity change from 0 to 764
[  236.982528][  T312] bridge_slave_1: left allmulticast mode
[  236.988532][  T312] bridge_slave_1: left promiscuous mode
[  236.994265][  T312] bridge0: port 2(bridge_slave_1) entered disabled state
[  237.016635][  T312] bridge_slave_0: left allmulticast mode
[  237.022310][  T312] bridge_slave_0: left promiscuous mode
[  237.028153][  T312] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.195546][  T312] bond1 (unregistering): (slave ip6gretap0): Removing an active aggregator
[  237.204537][  T312] bond1 (unregistering): (slave ip6gretap0): Releasing backup interface
[  237.213016][  T312] bond1 (unregistering): (slave ip6gretap0): the permanent HWaddr of slave - ea:b6:1c:02:92:32 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  237.231601][T12587] hub 2-0:1.0: USB hub found
[  237.231648][T12587] hub 2-0:1.0: 8 ports detected
[  237.480351][   T29] kauditd_printk_skb: 52 callbacks suppressed
[  237.480366][   T29] audit: type=1326 audit(1768560595.880:61564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="syz.3.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  237.510762][   T29] audit: type=1326 audit(1768560595.880:61565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="syz.3.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  237.534630][   T29] audit: type=1326 audit(1768560595.880:61566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="syz.3.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  237.538476][T12600] audit: audit_lost=7 audit_rate_limit=0 audit_backlog_limit=64
[  237.560596][   T29] audit: type=1326 audit(1768560595.880:61567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="syz.3.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  237.565957][T12600] audit: out of memory in audit_log_start
[  237.595487][   T29] audit: type=1326 audit(1768560595.880:61568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="syz.3.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  237.619265][   T29] audit: type=1326 audit(1768560595.880:61569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="syz.3.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  237.642970][   T29] audit: type=1326 audit(1768560595.880:61570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="syz.3.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  237.666608][   T29] audit: type=1326 audit(1768560595.880:61571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="syz.3.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  237.907410][  T312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  237.916944][  T312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  237.926579][  T312] bond0 (unregistering): Released all slaves
[  237.938576][  T312] bond1 (unregistering): (slave veth3): Releasing backup interface
[  237.949322][  T312] bond1 (unregistering): Released all slaves
[  238.024575][T12599] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.108575][T12599] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.131646][  T312] hsr_slave_0: left promiscuous mode
[  238.143891][  T312] hsr_slave_1: left promiscuous mode
[  238.228325][T12610] hub 2-0:1.0: USB hub found
[  238.238051][T12610] hub 2-0:1.0: 8 ports detected
[  238.259378][T12599] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.294622][T12530] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  238.306604][T12530] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  238.314278][T12617] netlink: 664 bytes leftover after parsing attributes in process `syz.4.3177'.
[  238.323637][T12620] net_ratelimit: 27 callbacks suppressed
[  238.323654][T12620] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  238.329213][T12530] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  238.329962][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  238.344854][T12621] loop2: detected capacity change from 0 to 1024
[  238.363078][T12599] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.384141][T12530] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  238.426885][T12621] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.441508][T12621] sd 0:0:1:0: device reset
[  238.469782][T12335] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.489846][  T385] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  238.503765][   T37] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.518999][   T37] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.558676][  T312] IPVS: stop unused estimator thread 0...
[  238.778647][T12645] netlink: 'syz.2.3184': attribute type 1 has an invalid length.
[  238.946884][   T37] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  238.971515][T12530] 8021q: adding VLAN 0 to HW filter on device bond0
[  238.985913][T12530] 8021q: adding VLAN 0 to HW filter on device team0
[  239.006811][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.013943][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[  239.038035][T12530] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  239.048436][T12530] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  239.061271][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.068595][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  239.146041][ T3401] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  239.201240][T12530] 8021q: adding VLAN 0 to HW filter on device batadv0
[  239.314248][T12530] veth0_vlan: entered promiscuous mode
[  239.316181][T12683] loop4: detected capacity change from 0 to 128
[  239.330446][T12530] veth1_vlan: entered promiscuous mode
[  239.350685][T12685] netlink: 664 bytes leftover after parsing attributes in process `syz.2.3196'.
[  239.371341][T12530] veth0_macvtap: entered promiscuous mode
[  239.381803][T12530] veth1_macvtap: entered promiscuous mode
[  239.393112][T12530] batman_adv: batadv0: Interface activated: batadv_slave_0
[  239.405789][T12530] batman_adv: batadv0: Interface activated: batadv_slave_1
[  239.416849][  T875] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  239.435180][  T875] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  239.480076][  T875] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  239.499407][ T2588] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  239.753234][ T3401] hid-generic 0004:0006:0006.0047: item fetching failed at offset 0/1
[  239.825490][T12715] loop5: detected capacity change from 0 to 128
[  239.837448][ T3401] hid-generic 0004:0006:0006.0047: probe with driver hid-generic failed with error -22
[  239.859876][T12717] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  239.868161][T12717] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  240.056637][T12731] netlink: 664 bytes leftover after parsing attributes in process `syz.3.3214'.
[  240.069413][T12725] hub 2-0:1.0: USB hub found
[  240.076398][T12725] hub 2-0:1.0: 8 ports detected
[  240.084758][ T3401] hid-generic 0000:0000:0000.0048: unknown main item tag 0x0
[  240.106175][T12735] loop4: detected capacity change from 0 to 2048
[  240.221743][ T3401] hid-generic 0000:0000:0000.0048: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  240.243611][T12735] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  240.260909][T12748] loop5: detected capacity change from 0 to 128
[  240.376122][T12006] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.574309][T12761] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.589541][T12763] loop2: detected capacity change from 0 to 512
[  240.597862][T12763] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  240.612819][T12763] EXT4-fs (loop2): orphan cleanup on readonly fs
[  240.627017][T12763] EXT4-fs warning (device loop2): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  240.642527][T12763] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  240.650857][T12763] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.3228: bg 0: block 15: invalid block bitmap
[  240.665058][T12763] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  240.674758][T12763] EXT4-fs (loop2): 1 truncate cleaned up
[  240.681794][T12763] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  240.721902][T12335] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.900623][T12776] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  240.931882][T12776] loop5: detected capacity change from 0 to 2048
[  240.966638][T12776] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  241.022704][ T7999] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  241.043443][ T7999] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  241.068582][ T7999] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.084024][T12794] loop3: detected capacity change from 0 to 128
[  241.155003][T12800] hub 2-0:1.0: USB hub found
[  241.163230][T12800] hub 2-0:1.0: 8 ports detected
[  241.182447][T12810] loop3: detected capacity change from 0 to 1024
[  241.191428][T12810] EXT4-fs: dax option not supported
[  241.211788][T12810] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3247'.
[  241.269897][T12825] loop5: detected capacity change from 0 to 512
[  241.272989][T12826] loop2: detected capacity change from 0 to 128
[  241.277277][T12825] EXT4-fs: Ignoring removed bh option
[  241.288733][T12825] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  241.301619][T12825] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.3254: invalid block
[  241.313896][T12825] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.3254: invalid indirect mapped block 4294967295 (level 1)
[  241.328513][T12825] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.3254: invalid indirect mapped block 4294967295 (level 1)
[  241.343287][T12825] EXT4-fs (loop5): 2 truncates cleaned up
[  241.350108][T12825] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  241.411955][T12836] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  241.420345][T12836] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  241.427427][T12837] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm +}[@: bg 0: block 5: invalid block bitmap
[  241.533661][T12849] loop2: detected capacity change from 0 to 764
[  241.560713][ T3401] hid-generic 0004:0006:0006.0049: item fetching failed at offset 0/1
[  241.569179][ T3401] hid-generic 0004:0006:0006.0049: probe with driver hid-generic failed with error -22
[  242.110813][ T7999] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.145904][ T3401] hid-generic 0000:0000:0000.004A: unknown main item tag 0x0
[  242.162282][T12869] loop5: detected capacity change from 0 to 2048
[  242.169905][ T3401] hid-generic 0000:0000:0000.004A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  242.186536][T12869] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  242.211366][ T7999] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.220664][T12876] loop4: detected capacity change from 0 to 512
[  242.227539][T12876] EXT4-fs: Ignoring removed bh option
[  242.233304][T12876] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  242.243542][T12876] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.3274: invalid block
[  242.255931][T12876] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.3274: invalid indirect mapped block 4294967295 (level 1)
[  242.270164][T12876] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.3274: invalid indirect mapped block 4294967295 (level 1)
[  242.285423][T12876] EXT4-fs (loop4): 2 truncates cleaned up
[  242.291498][T12876] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.358918][T12880] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm +}[@: bg 0: block 5: invalid block bitmap
[  242.408440][T12882] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  242.416714][T12882] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  242.578047][ T3401] hid-generic 0000:0000:0000.004B: unknown main item tag 0x0
[  242.586059][ T3401] hid-generic 0000:0000:0000.004B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  242.597114][T12902] loop2: detected capacity change from 0 to 2048
[  242.616478][T12902] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  242.638230][T12761] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.650154][T12335] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.683160][   T29] kauditd_printk_skb: 1016 callbacks suppressed
[  242.683256][   T29] audit: type=1400 audit(1768560601.080:62587): avc:  denied  { tracepoint } for  pid=12907 comm="syz.2.3287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  242.713941][   T29] audit: type=1400 audit(1768560601.120:62588): avc:  denied  { read } for  pid=12907 comm="syz.2.3287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  242.788812][T12909] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001158 !
[  243.055445][T12006] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.130078][T12919] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.3291: bad orphan inode 134217728
[  243.141437][T12919] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  243.213380][T12925] FAULT_INJECTION: forcing a failure.
[  243.213380][T12925] name failslab, interval 1, probability 0, space 0, times 0
[  243.226234][T12925] CPU: 1 UID: 0 PID: 12925 Comm: syz.4.3291 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  243.226290][T12925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  243.226306][T12925] Call Trace:
[  243.226314][T12925]  <TASK>
[  243.226324][T12925]  __dump_stack+0x1d/0x30
[  243.226350][T12925]  dump_stack_lvl+0x95/0xd0
[  243.226451][T12925]  dump_stack+0x15/0x1b
[  243.226542][T12925]  should_fail_ex+0x265/0x280
[  243.226566][T12925]  should_failslab+0x8c/0xb0
[  243.226593][T12925]  __kmalloc_noprof+0xb9/0x5a0
[  243.226645][T12925]  ? ext4_update_inline_data+0x154/0x310
[  243.226680][T12925]  ? ext4_xattr_ibody_find+0x1ec/0x220
[  243.226794][T12925]  ext4_update_inline_data+0x154/0x310
[  243.226827][T12925]  ? ext4_find_inline_data_nolock+0x1c0/0x200
[  243.226934][T12925]  ext4_prepare_inline_data+0xe4/0x150
[  243.226963][T12925]  ext4_generic_write_inline_data+0x167/0x740
[  243.227040][T12925]  ext4_try_to_write_inline_data+0x74/0x90
[  243.227064][T12925]  ext4_write_begin+0x1a3/0xe90
[  243.227092][T12925]  ? ext4_write_inline_data_end+0x50d/0x5f0
[  243.227167][T12925]  ? osq_unlock+0x54/0x120
[  243.227239][T12925]  ? inode_to_bdi+0x47/0xa0
[  243.227261][T12925]  ? balance_dirty_pages_ratelimited_flags+0x40b/0x5e0
[  243.227540][T12925]  generic_perform_write+0x184/0x490
[  243.227571][T12925]  ext4_buffered_write_iter+0x1ee/0x3c0
[  243.227602][T12925]  ext4_file_write_iter+0x387/0xf60
[  243.227666][T12925]  ? touch_atime+0x106/0x340
[  243.227770][T12925]  ? splice_from_pipe_next+0x316/0x380
[  243.227796][T12925]  iter_file_splice_write+0x66b/0xa20
[  243.227826][T12925]  ? __pfx_iter_file_splice_write+0x10/0x10
[  243.227851][T12925]  direct_splice_actor+0x156/0x2a0
[  243.227931][T12925]  ? ext4_file_splice_read+0x1/0xb0
[  243.227981][T12925]  splice_direct_to_actor+0x312/0x680
[  243.228003][T12925]  ? __pfx_direct_splice_actor+0x10/0x10
[  243.228033][T12925]  do_splice_direct+0xda/0x150
[  243.228133][T12925]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  243.228156][T12925]  do_sendfile+0x380/0x650
[  243.228187][T12925]  __x64_sys_sendfile64+0x105/0x150
[  243.228253][T12925]  x64_sys_call+0x2db1/0x3000
[  243.228303][T12925]  do_syscall_64+0xca/0x2b0
[  243.228327][T12925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.228397][T12925] RIP: 0033:0x7fd5fea6f749
[  243.228410][T12925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.228481][T12925] RSP: 002b:00007fd5fd4ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  243.228503][T12925] RAX: ffffffffffffffda RBX: 00007fd5fecc6090 RCX: 00007fd5fea6f749
[  243.228518][T12925] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[  243.228532][T12925] RBP: 00007fd5fd4ae090 R08: 0000000000000000 R09: 0000000000000000
[  243.228619][T12925] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000001
[  243.228631][T12925] R13: 00007fd5fecc6128 R14: 00007fd5fecc6090 R15: 00007fff65b6fec8
[  243.228648][T12925]  </TASK>
[  243.677734][T12947] EXT4-fs: Ignoring removed bh option
[  243.685612][T12947] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  243.720228][T12947] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.3303: invalid block
[  243.762971][T12947] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.3303: invalid indirect mapped block 4294967295 (level 1)
[  243.795956][T12947] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.3303: invalid indirect mapped block 4294967295 (level 1)
[  243.814822][T12953] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3305'.
[  243.823881][T12953] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3305'.
[  243.884375][T12947] EXT4-fs (loop2): 2 truncates cleaned up
[  243.895862][T12947] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  243.912957][T12953] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3305'.
[  244.036536][T12956] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.3303: bg 0: block 5: invalid block bitmap
[  244.050175][T12958] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.058552][T12958] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.066837][T12958] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.076691][T12958] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.084914][T12958] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.095956][T12957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.104214][T12957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.138032][T12006] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.211659][T12761] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.257815][T12984] EXT4-fs: dax option not supported
[  244.269558][T12984] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3317'.
[  244.315198][T12761] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.315917][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.380274][T12988] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3318'.
[  244.489336][   T37] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.497981][   T37] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.514458][   T37] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.522691][   T37] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  244.533779][T12335] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.764524][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.774712][T13004] tipc: Started in network mode
[  244.779650][T13004] tipc: Node identity 76b3a4fba231, cluster identity 4711
[  244.787006][T13004] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  244.829521][T13002] tipc: Disabling bearer <eth:syzkaller0>
[  245.159330][T13016] EXT4-fs: dax option not supported
[  245.284216][T13016] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3330'.
[  245.435184][T13035] tipc: Started in network mode
[  245.440111][T13035] tipc: Node identity 36230714f574, cluster identity 4711
[  245.447532][T13035] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  245.486848][T13034] tipc: Disabling bearer <eth:syzkaller0>
[  245.513017][T13049] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  245.521306][T13049] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  245.582536][T13056] EXT4-fs: Ignoring removed orlov option
[  245.587645][T13058] EXT4-fs: Ignoring removed orlov option
[  245.603457][T13056] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.605231][ T4123] hid-generic 0000:0000:0000.004C: unknown main item tag 0x0
[  245.616116][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  245.632886][T13058] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.644027][T13054] hub 2-0:1.0: USB hub found
[  245.652122][   T29] audit: type=1326 audit(1768560604.050:62589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13057 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  245.684553][T13054] hub 2-0:1.0: 8 ports detected
[  245.684687][ T4123] hid-generic 0000:0000:0000.004C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  245.699387][   T29] audit: type=1326 audit(1768560604.050:62590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13057 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  245.723040][   T29] audit: type=1326 audit(1768560604.050:62591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13057 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  245.746950][   T29] audit: type=1326 audit(1768560604.050:62592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13057 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  245.747365][T13063] set_capacity_and_notify: 9 callbacks suppressed
[  245.747406][T13063] loop2: detected capacity change from 0 to 2048
[  245.770734][   T29] audit: type=1326 audit(1768560604.050:62593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13057 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  245.807193][   T29] audit: type=1326 audit(1768560604.050:62594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13057 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  245.830932][   T29] audit: type=1326 audit(1768560604.050:62595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13057 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  245.854573][   T29] audit: type=1326 audit(1768560604.050:62596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13057 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f676bf749 code=0x7ffc0000
[  245.889161][T13063] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.927234][T13068] loop4: detected capacity change from 0 to 128
[  245.935955][T12335] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.075290][T13075] loop2: detected capacity change from 0 to 1024
[  246.082071][T13075] EXT4-fs: dax option not supported
[  246.151004][T13075] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3352'.
[  246.484551][T11745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.497079][T13087] netlink: 'syz.1.3353': attribute type 1 has an invalid length.
[  246.563641][ T3480] hid-generic 0000:0000:0000.004D: unknown main item tag 0x0
[  246.572224][ T3480] hid-generic 0000:0000:0000.004D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  246.588895][T13101] loop3: detected capacity change from 0 to 128
[  246.632681][T13103] loop3: detected capacity change from 0 to 512
[  246.640845][T13103] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  246.684023][T13103] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 548)
[  246.692818][T13103] FAT-fs (loop3): Filesystem has been set read-only
[  246.714918][T13103] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  246.725655][T13103] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 548)
[  246.733809][T13107] hub 2-0:1.0: USB hub found
[  246.739235][T13107] hub 2-0:1.0: 8 ports detected
[  246.748035][ T7999] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.826021][T13115] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3369'.
[  246.868478][T13124] hub 2-0:1.0: USB hub found
[  246.873373][T13124] hub 2-0:1.0: 8 ports detected
[  246.941023][ T3480] hid-generic 0004:0006:0006.004E: item fetching failed at offset 0/1
[  246.949715][ T3480] hid-generic 0004:0006:0006.004E: probe with driver hid-generic failed with error -22
[  247.012690][T13142] syzkaller0: entered promiscuous mode
[  247.018395][T13142] syzkaller0: entered allmulticast mode
[  247.119804][T13151] hub 2-0:1.0: USB hub found
[  247.124756][T13151] hub 2-0:1.0: 8 ports detected
[  247.172009][T13158] loop4: detected capacity change from 0 to 128
[  247.270395][ T4028] hid-generic 0004:0006:0006.004F: item fetching failed at offset 0/1
[  247.279627][ T4028] hid-generic 0004:0006:0006.004F: probe with driver hid-generic failed with error -22
[  247.770043][T13180] loop2: detected capacity change from 0 to 512
[  247.776894][T13180] EXT4-fs: Ignoring removed nomblk_io_submit option
[  247.783859][T13180] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  247.795129][T13180] EXT4-fs (loop2): 1 truncate cleaned up
[  247.801230][T13180] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  247.824347][T12335] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.842819][   T29] kauditd_printk_skb: 109 callbacks suppressed
[  247.842841][   T29] audit: type=1400 audit(1768560606.240:62706): avc:  denied  { bind } for  pid=13184 comm="syz.2.3397" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  247.843091][T13185] ==================================================================
[  247.877249][T13185] BUG: KCSAN: data-race in data_alloc / prb_reserve
[  247.883872][T13185] 
[  247.886210][T13185] write to 0xffffffff8686c3b8 of 8 bytes by task 29 on cpu 1:
[  247.893680][T13185]  data_alloc+0x31c/0x390
[  247.898061][T13185]  prb_reserve+0x8d7/0xad0
[  247.902549][T13185]  vprintk_store+0x53c/0x830
[  247.907455][T13185]  vprintk_emit+0x15a/0x5c0
[  247.912058][T13185]  _printk_deferred+0x82/0xb0
[  247.916745][T13185]  ___ratelimit+0x437/0x460
[  247.921272][T13185]  __printk_ratelimit+0x1c/0x30
[  247.926174][T13185]  kauditd_hold_skb+0x63/0x1c0
[  247.930948][T13185]  kauditd_send_queue+0x273/0x2c0
[  247.936003][T13185]  kauditd_thread+0x442/0x680
[  247.940694][T13185]  kthread+0x489/0x510
[  247.944799][T13185]  ret_from_fork+0x149/0x290
[  247.949429][T13185]  ret_from_fork_asm+0x1a/0x30
[  247.954240][T13185] 
[  247.956584][T13185] read to 0xffffffff8686c3b8 of 8 bytes by task 13185 on cpu 0:
[  247.964214][T13185]  prb_reserve+0x207/0xad0
[  247.968648][T13185]  vprintk_store+0x53c/0x830
[  247.973295][T13185]  vprintk_emit+0x15a/0x5c0
[  247.977896][T13185]  vprintk_default+0x26/0x30
[  247.982498][T13185]  vprintk+0x1d/0x30
[  247.986397][T13185]  _printk+0x79/0xa0
[  247.990306][T13185]  ieee802154_get_dev+0x2b1/0x370
[  247.995346][T13185]  raw_bind+0x1bd/0x290
[  247.999525][T13185]  ieee802154_sock_bind+0x64/0x90
[  248.004575][T13185]  __sys_bind+0x1d1/0x2a0
[  248.008933][T13185]  __x64_sys_bind+0x3f/0x50
[  248.013462][T13185]  x64_sys_call+0x2ceb/0x3000
[  248.018173][T13185]  do_syscall_64+0xca/0x2b0
[  248.022695][T13185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.028617][T13185] 
[  248.030954][T13185] value changed: 0xfffffffffffcbd50 -> 0x0000000000075d88
[  248.038075][T13185] 
[  248.040416][T13185] Reported by Kernel Concurrency Sanitizer on:
[  248.046590][T13185] CPU: 0 UID: 0 PID: 13185 Comm: syz.2.3397 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  248.056420][T13185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  248.066489][T13185] ==================================================================
[  247.842804][T13185] Unsupported ieee802154 address type: 0
[  248.137671][   T29] audit: type=1400 audit(1768560606.540:62707): avc:  denied  { shutdown } for  pid=13184 comm="syz.2.3397" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  248.529045][    C1] vxcan0: j1939_tp_rxtimer: 0xffff88811c542000: rx timeout, send abort
[  248.537444][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff88811c542000: 0x0f001: (3) A timeout occurred and this is the connection abort to close the session.