last executing test programs:

22.736225315s ago: executing program 0 (id=237):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r2=>r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000380)=ANY=[@ANYRES8=r1, @ANYBLOB="0cd80620e6b40bf38178a3a23a4755b013dbdca98292bf85acfb781c80cddc18b0fbcd622e88bb86a736edc1787f9683ed75426f85a166b0feed33858e701ca4d7383c185f52c0e69f8bb6cb2ffe35adbc45be3217f067ffea181ca8eb1a532fb2acae8550", @ANYRES32=r2, @ANYRES8=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00'}, 0x18)
syz_io_uring_setup(0x1116, &(0x7f0000000280)={0x0, 0xb44a, 0x400, 0x40000000, 0x21e}, &(0x7f0000000000), &(0x7f0000000040))
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = getpid()
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, 0x0, 0x0)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r11}, 0x10)
r12 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r13, 0x18000000000002a0, 0x23, 0x0, &(0x7f0000000000)="b9ff0307e804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)
sendmsg$DEVLINK_CMD_RELOAD(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r6, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r4}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x30)
sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="d0000000", @ANYRES16=r6, @ANYBLOB="000027bd7000fbdbdf25450000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008008e0001000000080001007063690011000200303030303a30303a31302e300000000008008e0003000000080001007063690011000200303030303a30303a31302e300000000008008e00010000e20d0001006e657464657673696d0000000f0002006e657464657673696d30000008008e0000000000080001007063690011000200303030303a30303a31302e300000000008008e0000000000"], 0xd0}, 0x1, 0x0, 0x0, 0x4000800}, 0x40000000)

21.635256165s ago: executing program 0 (id=250):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r3=>0x0})
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000001700000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r4, r3, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000a40)=ANY=[], 0x0)

21.566057562s ago: executing program 0 (id=253):
socket$netlink(0x10, 0x3, 0x8000000004)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x86, &(0x7f0000000100)={@local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010105, @local}, @redirect={0x4, 0x2, 0x0, @broadcast=0x1000000, {0x17, 0x4, 0x0, 0x4, 0x4, 0xffff, 0x6, 0x4, 0x11, 0x0, @empty, @dev={0xac, 0x14, 0x14, 0x15}, {[@timestamp_addr={0x44, 0xc, 0x4f, 0x1, 0x5, [{@multicast2, 0x4e20ffff}]}, @timestamp_addr={0x44, 0x3c, 0xed, 0x1, 0x0, [{@multicast1, 0x4}, {@rand_addr=0x64010102}, {@broadcast}, {@initdev={0xac, 0x1e, 0x1, 0x0}}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x5}, {@broadcast}, {@dev, 0x4}]}]}}}}}}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f02, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r1, 0x0, 0x1075}, 0x18)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
io_setup(0x3fe, &(0x7f0000000100))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r2 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r2, 0x8983, 0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x2000080, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000e1ff00000017"], 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)

21.508841267s ago: executing program 0 (id=255):
syz_emit_ethernet(0x2a, &(0x7f0000000380)=ANY=[@ANYBLOB="0380c2000000bbbbbbbbbbbb08070000001c0000000000019078ac1e0001ac1414aa00009078006700080e4948099f0aae7df2a2b4b6432ae607f114b14220e7094be72c494672f429e300dd00398066bc89b5531ebc418a39f279ea6091d382f549e674f6266326d559ec630e55fa7081eff7ae1f9a134cca49468c60e7732e912e5a48d80b537731f03bc4620cfe457084245e18e02cde2cdd1ae611806e6b1e551266f1e5e4941318beb65ca1b31373ab3a92f2ad"], 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0, 0x0, 0x2000000000}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0xd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000800)={&(0x7f0000000040)='hwmon_attr_show_string\x00', r1}, 0x18)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x36e, &(0x7f00000007c0)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105142, 0x2c)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x100000b, 0x2013, r2, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0}, 0x94)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ptrace(0x10, r3)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$inet6(r4, &(0x7f0000000140)={0xa, 0x4e24, 0x2, @private1, 0x7}, 0x1c)
ptrace$getregset(0x4204, r3, 0x202, &(0x7f0000000100)={0x0})

20.595247189s ago: executing program 0 (id=268):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000010c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2c8, 0x280, 0x268, 0x300, 0x280, 0x268, 0x390, 0x460, 0x460, 0x390, 0x460, 0x9, 0x0, {[{{@uncond, 0x0, 0xa8, 0xe8, 0x0, {0x9401}}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x8, 0x21, "6bb6778f9bdec125b0fb4f26be757b1e6f2fb8e9079627dc6726c4bc85e9"}}}, {{@ipv6={@private2, @remote, [], [], 'ip6gretap0\x00', 'ip6_vti0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x328)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r3, 0x0, 0x60, &(0x7f0000000ac0)={'filter\x00', 0x102, 0x4, 0x418, 0x220, 0x220, 0x220, 0x330, 0x220, 0x330, 0x4, 0x0, {[{{@arp={@remote, @remote, 0x0, 0x0, 0x0, 0xfd, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'erspan0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@link_local, @empty, @remote, @multicast1}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@broadcast, @mac=@dev={'\xaa\xaa\xaa\xaa\xaa', 0xb}, @multicast2, @dev={0xac, 0x14, 0x14, 0x3d}, 0x9, 0xffffffff}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'batadv_slave_1\x00', 'ipvlan1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@random="e9fb760d26c0", @multicast2, @broadcast}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x468)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000100000028000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000011"], 0x50)
write$selinux_load(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757815"], 0x65)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
r5 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r5, 0x402, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x18)
close_range(r5, 0xffffffffffffffff, 0x0)
lgetxattr(0x0, &(0x7f0000000280)=ANY=[], 0x0, 0x0)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x1b, 0x100, &(0x7f00000000c0)="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"})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20d00, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000040), 0x3)
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
acct(&(0x7f0000000040)='./file0\x00')

17.868192892s ago: executing program 0 (id=328):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0x8}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0xb8}}, 0x20050800)

17.868008781s ago: executing program 32 (id=328):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0x8}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0xb8}}, 0x20050800)

2.583512422s ago: executing program 4 (id=641):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000040)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x9, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000000)='inet_sock_set_state\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
sendmsg$inet(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x800)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000001640), r3)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x89, 0x7, 0x7ffc0001}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0xc, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000540)='kmem_cache_free\x00', r5}, 0x14)
removexattr(0x0, 0x0)

1.744333245s ago: executing program 2 (id=654):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r0, 0x0, 0x14, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c000", 0x0, 0x86, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.722481638s ago: executing program 2 (id=655):
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={r1, r0, 0x4, 0x0, @void}, 0x10)
r2 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001040)={0x19, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x22}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r3}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0xfff1, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd0c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r5}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r6 = socket$inet(0x2, 0x2, 0x1)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f00000002c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x5, [@func_proto={0x0, 0x2, 0x0, 0xd, 0x0, [{0x2}, {}]}]}, {0x0, [0x0, 0x61, 0x5f]}}, 0x0, 0x39, 0x0, 0x1}, 0x28)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000dc0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GET(r9, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000540)={0x50, r10, 0x1, 0xffffffff, 0x25dfdbff, {0x27}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c, 0x51}}]}, 0x50}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
r11 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r11, &(0x7f0000000040)={0x23, 0x0, 0x0, 0x1}, 0x10)
sendmsg$inet(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x4e24, @private=0xa010102}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000400)="08001ec66e7d586e", 0x8}], 0x1, &(0x7f00000000c0)=[@ip_tos_int={{0x14, 0x0, 0x7}}], 0x18}, 0x20008844)

1.722101308s ago: executing program 5 (id=656):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
sendmsg$NFT_MSG_GETFLOWTABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd1}, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
socket$l2tp6(0xa, 0x2, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000"], &(0x7f00000005c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r3}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = gettid()
sendmsg$unix(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000400)="3e4eaafa", 0x4}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r6, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=r5, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r4, @ANYBLOB="e5ffff6e18"], 0xa0}, 0x4004881)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)

1.672435452s ago: executing program 2 (id=657):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xd, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = syz_open_dev$usbfs(&(0x7f0000000000), 0x800000001ff, 0x2)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f, 0x9}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000e00)={0x6, 0xb, &(0x7f0000000bc0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2}, [@btf_id={0x18, 0x4, 0x3, 0x0, 0x4}, @map_fd={0x18, 0x2, 0x1, 0x0, r0}, @map_val={0x18, 0x3, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xd8f1}, @map_fd={0x18, 0x7, 0x1, 0x0, r5}]}, &(0x7f0000000c40)='syzkaller\x00', 0x9ff, 0xb0, &(0x7f0000000c80)=""/176, 0x41000, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000d40)=[r0, r0], &(0x7f0000000ec0)=[{0x0, 0x2, 0x7, 0xa}, {0x4, 0x2, 0xb, 0x3}, {0x5, 0x5, 0x9, 0xb}, {0x4, 0x1, 0xa, 0x9}, {0x4, 0x1, 0x0, 0xb}, {0x3, 0x2, 0xa, 0x3}, {0x5, 0x2, 0x7, 0x5}], 0x10, 0x6}, 0x94)
r6 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000b80))
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000980)={0x800, <r7=>0x0}, 0x8)
r8 = syz_open_pts(0xffffffffffffffff, 0x400000)
ioctl$VT_OPENQRY(r8, 0x5600, &(0x7f0000000b40))
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x1e, 0x13, &(0x7f0000000500)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x10000}, @map_idx={0x18, 0x7, 0x5, 0x0, 0x6}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000400)='GPL\x00', 0x2, 0x15, &(0x7f00000005c0)=""/21, 0x41000, 0x28, '\x00', 0x0, @fallback=0x1, r6, 0x8, 0x0, 0x0, 0x10, &(0x7f00000008c0)={0x2, 0xd, 0x4f2, 0xd}, 0x10, r7, r1, 0x1, &(0x7f0000000a00)=[r0, r0, r0], &(0x7f0000000a40)=[{0x3, 0x3, 0xe, 0x2}], 0x10, 0x5}, 0x94)
io_setup(0x1, &(0x7f00000004c0)=<r9=>0x0)
r10 = openat(0xffffffffffffff9c, 0x0, 0x101242, 0x0)
io_submit(r9, 0x1, &(0x7f0000000200)=[&(0x7f0000000280)={0xffffff7f00000000, 0x0, 0x0, 0x1, 0xfffd, r10, &(0x7f0000000100)='k', 0x1, 0x4400a03}])
sendmsg$key(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)={0x2, 0x7, 0x1, 0x2, 0x11, 0x0, 0x70bd2b, 0x25dfdbfe, [@sadb_key={0xf, 0x9, 0x378, 0x0, "68e0f6591228e396e81091e6a47d48d520707dacb458654c1b26ede790feefc39c0ebd023f076a957a43eff5c4dc02849b5397a7fc816c13c51f77e808e4f4774d13c5e20015fba79d9ffa9ef652f12ecaef92c0a4b8a6fcb3f9d53801f5ae337a3e9090566a42fdf559d7b64a4e10"}]}, 0x88}}, 0x0)
r11 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r11, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r11, &(0x7f0000000940)={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newlink={0x50, 0x10, 0x437, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, r12, 0x5f501}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_GENEVE_TOS={0x5, 0x4, 0x1}, @IFLA_GENEVE_REMOTE6={0x14, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x11}, 0x40004)
sendmmsg$inet(r3, &(0x7f00000017c0)=[{{&(0x7f0000000000)={0x2, 0x4e1c, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10, 0x0, 0x0, &(0x7f0000000100)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r12, @empty, @loopback}}}], 0x20}}], 0x1, 0x4000080)
r13 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000100)="06", 0x1}, {&(0x7f0000001480)="d1ffacd516de50ac9d15bc75316da4defa1e72f65a65cdd26dcc389aacf7856da9aecf3765d4c032e1960faf25bad906b7d3440b6e71a82f1d8f8b8db35b6091f3af94c6b46b9ab10fe3923f268771078d2668be7bd3eb941d4bb5baa8547e36283a065ce5766cbff3a8fc37fc4507643d3786bbf231d3ed88cb8b01eab14e4372cf4f89bd1b853caa5d9f07f523b9dfa8cc09053ff36fde08e96fb6b3acc196b1bd1e2d3a6c65f585df7e2b8b17439a7ab29a7dfe642c2f0ac7a81eca8073b559663f2daf7a0832b2b09557794a21bf114831f8e6db3922d0cd169e5a8b4adc95d7322ee75944de15f57780b88fef7f3d9b256705ccfa2125b43ce8e3aacaead9", 0x101}], 0x3)
ioctl$SCSI_IOCTL_GET_PCI(r13, 0x5393, &(0x7f0000000000))
r14 = dup(r2)
ioctl$USBDEVFS_CONTROL(r14, 0xc0185500, &(0x7f0000000040)={0x23, 0x1, 0x8, 0x4, 0x0, 0x4, 0x0})

1.671832423s ago: executing program 4 (id=658):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x14, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = memfd_secret(0x80000)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x21081e, &(0x7f0000000b80)={[{@resgid}, {@nogrpid}, {@grpquota}, {@noquota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x104b0d, 0x6, 0x0, 0x0, 0x8, 0x20003, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
statfs(&(0x7f0000000200)='.\x00', &(0x7f0000000440)=""/137)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x20100, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="400d00000000000030001280"], 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_DEV_UP(r5, 0x0, 0x44)
sendmsg$sock(r3, &(0x7f0000000bc0)={&(0x7f0000000500)=@nfc={0x27, 0x0, 0x0, 0x4}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000340)="e6b9057b63865e50bcc70311f3ae8b64366f13e58ae4e17d9b48e335d3051d3501ca27d48177d31c6ecc565041e28121fdbfdc252c", 0x35}], 0x1, &(0x7f0000000ac0)=[@txtime={{0x18}}, @mark={{0x14, 0x1, 0x24, 0xfffffc01}}, @timestamping={{0x14, 0x1, 0x25, 0x8}}, @timestamping={{0x14, 0x1, 0x25, 0x80000001}}, @txtime={{0x18, 0x1, 0x3d, 0xf}}, @txtime={{0x18, 0x1, 0x3d, 0x81}}], 0x90}, 0x4)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f00000000c0)={'macsec0\x00', 0x400})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x5, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x5, 0x1ff003, 0x81, 0xffff, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffc}, 0x50)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0xfffffffe, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x0)
lsetxattr$security_selinux(&(0x7f00000001c0)='.\x00', &(0x7f0000000240), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x1001, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r8 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_STATISTICS(r8, 0x11b, 0x7, 0x0, &(0x7f0000000180))
fchownat(r1, &(0x7f0000000040)='\x00', 0x0, 0x0, 0x1000)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r9)

1.629873217s ago: executing program 3 (id=660):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], 0x0, 0xfffffffe, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.625700967s ago: executing program 5 (id=661):
pipe(&(0x7f0000019480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$inet_mreqn(r1, 0x0, 0x23, 0x0, &(0x7f0000000040))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0}, 0x18)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x18)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x262)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f00000001c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x2d)
syz_clone(0x60000400, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)
close(r1)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet(r1, &(0x7f00000006c0)={0x2, 0x0, @empty}, 0x10)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x400c84, &(0x7f0000000000)={[{@sysvgroups}]}, 0x1, 0x796, &(0x7f0000000800)="$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")
r9 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001940), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r9, 0xc0189374, &(0x7f0000001980)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x5}}, './file0\x00'})
splice(r0, 0x0, r1, 0x0, 0x10500, 0x0)

1.549958204s ago: executing program 2 (id=662):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000080), &(0x7f0000000300)=0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="070000000400000000070000000746002c"], 0x50)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x38, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x4}}}]}]}], {0x14}}, 0xac}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x8401)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r5, 0x8983, 0x0)
sendto$inet6(r5, &(0x7f00000002c0)='E', 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
shutdown(r5, 0x1)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000300)={0x0, 0x10, &(0x7f0000000280)=[@in={0x2, 0x4e24, @private=0xa010100}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r7=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_RTOINFO(r5, 0x84, 0x0, &(0x7f0000000000)={r7, 0x1, 0x0, 0x33}, &(0x7f0000000040)=0x10)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002080)=@newtaction={0xe68, 0x30, 0x25, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{}, {0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x6}, {0x1000}, {0x1}, {}, {}, {0x0, 0x0, 0x0, 0x3, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x20000}, {}, {}, {}, {0x1}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x7}, {0x0, 0x7, 0x5ca}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x2, 0x0, 0x0, 0xfffffffc, 0x1000000}, {}, {}, {}, {0xfffffffc}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {0x0, 0x0, 0x10000000}, {0x0, 0x1, 0x0, 0x0, 0x0, 0x2}, {0x7}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x799c}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0x400}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x800000}, {}, {}, {}, {0x0, 0x0, 0x2}, {0x4, 0xc000000}, {}, {0x0, 0x80000000}, {}, {0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, {0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x23}, {0x0, 0x0, 0x0, 0x404}, {0x0, 0x0, 0x0, 0x2, 0xfffffffd}, {0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x100000}, {}, {0x0, 0x0, 0x0, 0x0, 0x3c67}, {}, {0x0, 0x0, 0x9f, 0x0, 0x0, 0x1}, {0x20000, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {0xfffffffd}, {}, {}, {0x8000}, {}, {0xfffffffd}, {}, {}, {0xfffffffd, 0x0, 0x1, 0x3, 0x747}, {0x8}, {}, {}, {}, {0x2000007}, {0x0, 0x6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {0x0, 0x1ff}, {0x0, 0x6}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, {0x0, 0x0, 0x0, 0x0, 0x401}, {}, {0x0, 0x78}, {0x0, 0x5, 0x4, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x2}], [{0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x5}, {0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r8 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$WPAN_SECURITY(r8, 0x0, 0x1, &(0x7f0000000440), &(0x7f0000000600)=0x4)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000007c0)=ANY=[@ANYBLOB="8e0000000200000000000000631394ef5aa6a4350c8d004b977d3f155acdf93a7195ab613bb72db0c4bc05519041810a39d6e10c0556ea9ca8fa55be4bbc1599b26176906b89f5c7528b8818df80b236204ea97e7141a5d763cb43a3dc31ad277c38d9572117d498cb20ec16d085a0a69f34fdc1fc723d50ec251837a07fb115ba1ffb0d0e5564f40a36b0d848141a21e8d13269dcef4df614e4e2c99c6ff159a0c9c0a8e720c668f92ab09885ce939e68731814a5bbb3aeb5cea0e9ec373a5d63983762904e1d8fb6a2b71b9094ef35c9e0e224b515381e5874150cd3c2c3898420543afb9d054b5e15841544b4dcc0531c446e2f1960dba450384f86cf089f4575ab2c70cf57d819f22687df7e0ae486d3"])
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7fe, 0x9, 0xc, 0x3, 0x59c})
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000017c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546000677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5467a932b77674e802a0d42bc6099ad238af770b5ed8925161729298700000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809b5b9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed3957f813567f7a95435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac559eaf39027ceb379a902d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff7a1ef3282830689da6b53b263339863297771429d120000003341bf4abacac94500fca0493cf29b33dcc9ffffffffffffffd39f6ce0c6ff01589646efd1cf870cd7bb2366fdf870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1293b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd000c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301fb997316dbf17866fb84d4173731efe895ff2e1c55ef08235a0126e01254c44060926e90109b598502d3e959efc71f665c4d75cf2458e3542c9062ece84c99a861887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc74aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7ad333545794f37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea139376f24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff070000001e48418046c216c1f895778cb25122a2a998de0842a486721737390cbf3a74cb2003016f1514216bdf57d2a40dddb51ab63e96ec84ac3571f02f647b3385b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba2f58ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df986741517abf11389b751f4e109b60000000000000000d6d5210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288d139bd3da230ed05a8fe64680b0a3f9f2dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b9100000000a55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c776f4b4ce07e1c6fa66fcfc7a228805f76785efc0ceb1c8e5729c66418d169fc03aa18854693ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7e478950aa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab848753203b458b97ec1afb079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7db3c4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b70ebc660309e1e245b0fdf9743af932cd6db49a47613808bad959719c0000000000378ac2e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x8042, 0x0)

941.508906ms ago: executing program 3 (id=666):
open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e)
pipe2$9p(&(0x7f0000000140), 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000ac03000000000000850000003300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r0}, &(0x7f0000000840), &(0x7f0000000880)=r1}, 0x20)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a00)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELCHAIN={0x28, 0x5, 0xa, 0x201, 0x0, 0x0, {0x7}, [@NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWTABLE={0x14, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x8}}], {0x14}}, 0xb0}}, 0x0)
unshare(0x28000600)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x16, 0x0, 0x4, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00', r6}, 0x10)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000002c0)={r1, r3, 0x25, 0x2}, 0x14)
syz_emit_ethernet(0x82, &(0x7f0000000480)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x24}, @val={@void, {0x8100, 0x3, 0x1, 0xffe}}, {@ipv6={0x86dd, @udp={0xa, 0x6, '\x00', 0x48, 0x11, 0x0, @local, @private1, {[], {0x4e1d, 0x4e20, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "dc521c259b538a2bf2a113dc2eeec0a072edf20b6d59027f", "d646c098cfc27eb8549d66e7b219c2c3b85e4508546e551af9e59631718ba089"}}}}}}}, 0x0)

879.853672ms ago: executing program 1 (id=668):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000180)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000380)='%pS    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000580)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000c40)='sys_enter\x00', r2}, 0x10)
name_to_handle_at(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3)

687.540641ms ago: executing program 1 (id=669):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0xf}, 0x18)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="020300030f0000002cbd7040fcdbdf2503000900800000001cdc0dca1d9f68846960e56de42944af030006000000000002004e22ac1414bb000000000000000002000100000000000000070c00000080030005000000000002004e22ac14140a00000000000000000200130002"], 0x78}, 0x1, 0x7}, 0x0)

601.974859ms ago: executing program 1 (id=670):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000180)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000380)='%pS    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000580)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000c40)='sys_enter\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r6, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054)
name_to_handle_at(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)

579.985362ms ago: executing program 5 (id=671):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
sendmsg$NFT_MSG_GETFLOWTABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd1}, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
socket$l2tp6(0xa, 0x2, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000"], &(0x7f00000005c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r3}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = gettid()
sendmsg$unix(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000400)="3e4eaafa", 0x4}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r6, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=r5, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r4, @ANYBLOB="e5ffff6e18"], 0xa0}, 0x4004881)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)

537.518516ms ago: executing program 5 (id=672):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0xf}, 0x18)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="020300030f0000002cbd7040fcdbdf2503000900800000001cdc0dca1d9f68846960e56de42944af030006000000000002004e22ac1414bb000000000000000002000100000000000000070c00000080030005000000000002004e22ac14140a00000000000000000200130002"], 0x78}, 0x1, 0x7}, 0x0)

536.907326ms ago: executing program 5 (id=673):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xd, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = syz_open_dev$usbfs(&(0x7f0000000000), 0x800000001ff, 0x2)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f, 0x9}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000e00)={0x6, 0xb, &(0x7f0000000bc0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2}, [@btf_id={0x18, 0x4, 0x3, 0x0, 0x4}, @map_fd={0x18, 0x2, 0x1, 0x0, r0}, @map_val={0x18, 0x3, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xd8f1}, @map_fd={0x18, 0x7, 0x1, 0x0, r5}]}, &(0x7f0000000c40)='syzkaller\x00', 0x9ff, 0xb0, &(0x7f0000000c80)=""/176, 0x41000, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000d40)=[r0, r0], &(0x7f0000000ec0)=[{0x0, 0x2, 0x7, 0xa}, {0x4, 0x2, 0xb, 0x3}, {0x5, 0x5, 0x9, 0xb}, {0x4, 0x1, 0xa, 0x9}, {0x4, 0x1, 0x0, 0xb}, {0x3, 0x2, 0xa, 0x3}, {0x5, 0x2, 0x7, 0x5}], 0x10, 0x6}, 0x94)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000840)={0x0, &(0x7f00000007c0)=""/86, 0x0, 0x56, 0x0, 0x1}, 0x28)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000b80))
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000980)={0x800, <r7=>0x0}, 0x8)
r8 = syz_open_pts(0xffffffffffffffff, 0x400000)
ioctl$VT_OPENQRY(r8, 0x5600, &(0x7f0000000b40))
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x1e, 0x13, &(0x7f0000000500)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x10000}, @map_idx={0x18, 0x7, 0x5, 0x0, 0x6}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000400)='GPL\x00', 0x2, 0x15, &(0x7f00000005c0)=""/21, 0x41000, 0x28, '\x00', 0x0, @fallback=0x1, r6, 0x8, 0x0, 0x0, 0x10, &(0x7f00000008c0)={0x2, 0xd, 0x4f2, 0xd}, 0x10, r7, r1, 0x1, &(0x7f0000000a00)=[r0, r0, r0], &(0x7f0000000a40)=[{0x3, 0x3, 0xe, 0x2}], 0x10, 0x5}, 0x94)
io_setup(0x1, &(0x7f00000004c0)=<r9=>0x0)
r10 = openat(0xffffffffffffff9c, 0x0, 0x101242, 0x0)
io_submit(r9, 0x1, &(0x7f0000000200)=[&(0x7f0000000280)={0xffffff7f00000000, 0x0, 0x0, 0x1, 0xfffd, r10, &(0x7f0000000100)='k', 0x1, 0x4400a03}])
sendmsg$key(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)={0x2, 0x7, 0x1, 0x2, 0x11, 0x0, 0x70bd2b, 0x25dfdbfe, [@sadb_key={0xf, 0x9, 0x378, 0x0, "68e0f6591228e396e81091e6a47d48d520707dacb458654c1b26ede790feefc39c0ebd023f076a957a43eff5c4dc02849b5397a7fc816c13c51f77e808e4f4774d13c5e20015fba79d9ffa9ef652f12ecaef92c0a4b8a6fcb3f9d53801f5ae337a3e9090566a42fdf559d7b64a4e10"}]}, 0x88}}, 0x0)
r11 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r11, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r11, &(0x7f0000000940)={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newlink={0x50, 0x10, 0x437, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, r12, 0x5f501}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_GENEVE_TOS={0x5, 0x4, 0x1}, @IFLA_GENEVE_REMOTE6={0x14, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x11}, 0x40004)
sendmmsg$inet(r3, &(0x7f00000017c0)=[{{&(0x7f0000000000)={0x2, 0x4e1c, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10, 0x0, 0x0, &(0x7f0000000100)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r12, @empty, @loopback}}}], 0x20}}], 0x1, 0x4000080)
r13 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000100)="06", 0x1}, {&(0x7f0000001480)="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", 0x101}], 0x3)
ioctl$SCSI_IOCTL_GET_PCI(r13, 0x5393, &(0x7f0000000000))
r14 = dup(r2)
ioctl$USBDEVFS_CONTROL(r14, 0xc0185500, &(0x7f0000000040)={0x23, 0x1, 0x8, 0x4, 0x0, 0x4, 0x0})

429.016417ms ago: executing program 2 (id=674):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000020500000a3c000000090a010400000000000000000a0000040900010073797a3100000000080005400000002b0900020073797a310000000008000a40ff"], 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1, 0xb, 0x100005, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r3, 0xffffffffffffffff, 0x0, 0x2}, 0x48)

428.442707ms ago: executing program 3 (id=675):
socket$netlink(0x10, 0x3, 0x8000000004)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f02, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r1, 0x0, 0x1075}, 0x18)
socket(0x28, 0x5, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
io_setup(0x3fe, &(0x7f0000000100))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r2 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r2, 0x8983, 0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x2000080, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000e1ff00000017"], 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)

382.596362ms ago: executing program 4 (id=676):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000001b40)=ANY=[@ANYBLOB="180000000000000000000000fdffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r2, 0x0, 0xa, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da", 0x0, 0x86, 0x0, 0x31, 0x0, &(0x7f0000000000)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x50)

335.973666ms ago: executing program 2 (id=677):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0x60, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet6(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r3}, 0x10)
sendto$inet6(r1, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005a00)={0x58, 0x2, 0x6, 0x301, 0x0, 0x0, {0x3, 0x0, 0x4}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_NETMASK={0x5, 0x14, 0xfe}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0xe)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x4}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000007c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
close_range(r5, 0xffffffffffffffff, 0x0)

329.829677ms ago: executing program 5 (id=678):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x10001, 0x3, &(0x7f0000000040))
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, 0x0, 0x8040)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001000)={0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x18)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x8}, 0x4, 0x0, 0x10000, 0x0, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
msgget$private(0x0, 0x404)
r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r4, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r3}, 0x18)
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/240, 0xf0}], 0x1}, 0x1f00)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x100000, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000003c0)='kfree\x00', r5, 0x0, 0x8}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000cc0), &(0x7f0000000180)='./file3\x00', 0x1004081, &(0x7f0000000500)=ANY=[@ANYRES16=0x0, @ANYRES32], 0x10, 0x7f4, &(0x7f0000000d80)="$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")
mount$9p_tcp(0x0, &(0x7f00000002c0)='./file1\x00', 0x0, 0x440, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xf1e2aadc595a46a3}, 0xc, &(0x7f0000000280)={&(0x7f0000000680)={0x14, 0x2, 0x6, 0x401, 0x0, 0x0, {0xa, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x1777e06df5af2f7)
lsetxattr$security_ima(&(0x7f0000000380)='./file1\x00', &(0x7f0000000600), &(0x7f0000000640)=@v2={0xebc3a6be2eb393ce, 0x0, 0x8, 0x5, 0x13, "f9b1286e61ffa43c34f147298c607129188cdf"}, 0x1c, 0x1)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)

263.620134ms ago: executing program 1 (id=679):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000014800)={0x0, 0x0, &(0x7f00000147c0)={0x0}, 0x1, 0x0, 0x0, 0x880}, 0x48000)
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x2}, 0x0, 0x0, r0)
add_key(&(0x7f0000000340)='dns_resolver\x00', &(0x7f0000000540)={'syz', 0x1}, &(0x7f0000000580)="fb9c", 0xfffff, r1)

263.318684ms ago: executing program 4 (id=680):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1, 0xb, 0x100005, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r3, 0xffffffffffffffff, 0x0, 0x2}, 0x48)

248.778435ms ago: executing program 3 (id=681):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000680)={[{@minixdf}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@minixdf}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@grpid}, {@dioread_lock}, {@noblock_validity}, {@noquota}]}, 0x3, 0x465, &(0x7f0000000f00)="$eJzs3M9vFFUcAPDvzLYgP1sRf4CoVWJs/NHSgsrBi0YTDxhN9IDH2hZCWKihNRFCpBqDFxND1LPxaOJf4M2LUU8mXvVuSIhyAT3VzOwM7C67pYXtLnQ/n2SX92Ze+963b97Mm3m7BNC3RrK3JGJrRPwREUO1bGOBkdo/Vy+fnf738tnpJJaW3v47yctduXx2uixa/tyWIjOaRqSfJkUljeZPnzk+Va3Oniry4wsn3h+fP33muWMnpo7OHp09OXnw4IH9Ey++MPn8Mq3fuOI4s7iu7P5obs+u19+98Mb04Qvv/fJ91t6txf76ODplJAv8n6Vc3eYvs7cnO11Zj22rSycDPWwIq1KJiKy7BvPxPxSVuN55Q/HaJz1tHLCmsmvTMlfRxSVgHUtihcViZQWBu0V5oc/uf8tXl6Yed4RLL9dugLK4rxav2p6BSIsyg033t500EhGHF//7JnvFGj2HAACo9/n014fi2VbzvzQeqCu3vVhDGY6IeyNiR0TcFxE7I+L+iLzsgxHxUNuaNrTc2rw0dOP8J714y8GtQDb/e6lY22qc/5Wzv8pwpchty+MfTI4cq87uK/4mozG4MctPLFPHj6/+/kW7ffXzv+yV1V/OBYt2XBxoekA3M7UwlU9KO+DSxxG7B1rFn1xbCchu/XdFxO7V/ertZeLY09/taVfo5vEvowPrTEvfRjxV6//FaIq/lCy/Pjl+T1Rn942XR8WNfv3t/Fvt6r+t+Dsg6//Njcd/c5HhpH69dn71dZz/87O29zS3evxvSN7J+6U8q3w4tbBwaiJiQ3Iozzdsn7z+s2W+LJ/FP7q39fjfUUtsyt4ejojsIH4kIh6NiMeKtj8eEU9ExN5l4v/5lfb77oT+n2l5/rt2/Df1/+oTleM//dCu/pX1/4E8NVpsyc9/N7HSBt7O3w4AAADuFmn+GfgkHbuWTtOxsdpn+HfG5rQ6N7/wzJG5D07O1D4rPxyDafmka6jueehEslj8xlp+snhWXO7fXzw3/qqyKc+PTc9VZ3ocO/S7LW3Gf+avSq9bB6y5Vutoky3Xaxu+yAasA83jP23Mnnuzm40Busr3taF/3WT8p91qB9B9rv/Qv1qN/3NNeWsBsD65/kP/Mv6hfxn/0L+Mf+hLt/O9/n5OZKfMO6AZ1aGiH7tfe6S9jl1iLRKt/58mAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAu9X/AQAA//9l+OT1")
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a00)=ANY=[@ANYBLOB="1400"], 0xac}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
sendmmsg$inet(r1, &(0x7f0000005240), 0x4000095, 0x0)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICLIST(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r2, 0x1, 0x70bd25, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'batadv_slave_0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}]}, 0x44}, 0x1, 0x0, 0x0, 0x20008804}, 0x8000)

227.828587ms ago: executing program 1 (id=682):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0xfffffffe, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

199.93347ms ago: executing program 4 (id=683):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0xf}, 0x18)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="020300030f0000002cbd7040fcdbdf2503000900800000001cdc0dca1d9f68846960e56de42944af030006000000000002004e22ac1414bb000000000000000002000100000000000000070c00000080030005000000000002004e22ac14140a00000000000000000200130002"], 0x78}, 0x1, 0x7}, 0x0)

168.006183ms ago: executing program 4 (id=684):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r2, 0x0, 0xf7}, 0x18)
syz_genetlink_get_family_id$team(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
setsockopt$inet6_mreq(r4, 0x29, 0x1b, &(0x7f0000000040)={@remote}, 0x14)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'macsec0\x00', <r5=>0x0})
setsockopt$inet6_mreq(r4, 0x29, 0x1b, &(0x7f0000000000)={@remote, r5}, 0x14)
sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000006500)=@newtfilter={0x40, 0x11, 0x1, 0x70bd28, 0x2000, {0x0, 0x0, 0x74, r5, {0xfffd, 0xfff3}, {0x1, 0xfff1}, {0xfff2, 0x3}}, [@TCA_RATE={0x6, 0x5, {0x35, 0x1}}, @filter_kind_options=@f_cgroup={{0xb}, {0x8, 0x2, [@TCA_CGROUP_ACT={0x4}]}}]}, 0x40}, 0x1, 0xf0ffffffffffff, 0x0, 0x14004804}, 0x840)
close_range(r0, 0xffffffffffffffff, 0x0)

4.542169ms ago: executing program 3 (id=685):
getrlimit(0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

4.01187ms ago: executing program 1 (id=686):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000014800)={0x0, 0x0, &(0x7f00000147c0)={&(0x7f0000000680)=@allocspi={0xf8, 0x16, 0x1, 0x70bd25, 0x25dfdbff, {{{@in6=@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, @in6=@dev={0xfe, 0x80, '\x00', 0x21}, 0x4e23, 0x0, 0x4e20, 0x3, 0x2, 0x20, 0x10, 0x3a}, {@in=@loopback, 0x4d5, 0x33}, @in=@local, {0x1, 0x10, 0x200000000000004, 0x8001, 0x8, 0x7f7, 0xaaf0, 0x2}, {0x500000, 0x4, 0x4, 0x2}, {0xc908, 0x2127268a, 0x8}, 0x70bd2b, 0x3507, 0xa, 0x0, 0x0, 0x10}, 0xff, 0x80000002}}, 0xf8}, 0x1, 0x0, 0x0, 0x880}, 0x48000)
r0 = add_key$keyring(0x0, &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x2}, 0x0, 0x0, r0)
add_key(&(0x7f0000000340)='dns_resolver\x00', &(0x7f0000000540)={'syz', 0x1}, &(0x7f0000000580)="fb9c", 0xfffff, r1)

0s ago: executing program 3 (id=687):
r0 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000140)={&(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000fec000/0x11000)=nil, &(0x7f0000ff5000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff6000/0x1000)=nil, &(0x7f00000000c0)="68bdaea1e006367fe68d5865c0f279144f919d0484df3826620d89ab9eb94890a9dd7f7eb5ca728aaf345393dba52f331910c1d9e7e9840b12b166487eca47e50fa050087d3ae13c524693e008664d67b2ecce2b679ee744705ce522bcfe78ec3e1367c032c1bd65e5a093a1854e4a1d306caee51ca6d89b6967f75b390c66a6", 0x80, r0}, 0x68)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
lseek(r1, 0x10001, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x67}}, './file0\x00'})
r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
setsockopt$IP_VS_SO_SET_EDIT(r2, 0x0, 0x483, &(0x7f0000000040)={0x3a, @dev={0xac, 0x14, 0x14, 0x1d}, 0x4e23, 0x4, 'fo\x00', 0x10, 0x2, 0x70}, 0x2c)
accept4(r0, 0x0, 0x0, 0x800)

kernel console output (not intermixed with test programs):

ev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   28.040471][   T29] audit: type=1400 audit(1763330275.330:66): avc:  denied  { create } for  pid=3302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   28.061034][   T29] audit: type=1400 audit(1763330275.330:67): avc:  denied  { write } for  pid=3302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   28.069783][ T3307] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   28.081972][   T29] audit: type=1400 audit(1763330275.340:68): avc:  denied  { read } for  pid=3302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   28.110768][   T29] audit: type=1400 audit(1763330275.340:69): avc:  denied  { mounton } for  pid=3302 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   28.135816][   T29] audit: type=1400 audit(1763330275.340:70): avc:  denied  { mount } for  pid=3302 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   28.139602][ T3302] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   28.159215][   T29] audit: type=1400 audit(1763330275.410:71): avc:  denied  { relabelto } for  pid=3307 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   29.442463][ T3316] chnl_net:caif_netlink_parms(): no params data found
[   29.490723][ T3314] chnl_net:caif_netlink_parms(): no params data found
[   29.580438][ T3315] chnl_net:caif_netlink_parms(): no params data found
[   29.589480][ T3320] chnl_net:caif_netlink_parms(): no params data found
[   29.602821][ T3316] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.610026][ T3316] bridge0: port 1(bridge_slave_0) entered disabled state
[   29.617250][ T3316] bridge_slave_0: entered allmulticast mode
[   29.623701][ T3316] bridge_slave_0: entered promiscuous mode
[   29.641012][ T3314] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.648141][ T3314] bridge0: port 1(bridge_slave_0) entered disabled state
[   29.655311][ T3314] bridge_slave_0: entered allmulticast mode
[   29.661888][ T3314] bridge_slave_0: entered promiscuous mode
[   29.668379][ T3316] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.675437][ T3316] bridge0: port 2(bridge_slave_1) entered disabled state
[   29.682641][ T3316] bridge_slave_1: entered allmulticast mode
[   29.689038][ T3316] bridge_slave_1: entered promiscuous mode
[   29.710972][ T3314] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.718109][ T3314] bridge0: port 2(bridge_slave_1) entered disabled state
[   29.725293][ T3314] bridge_slave_1: entered allmulticast mode
[   29.731738][ T3314] bridge_slave_1: entered promiscuous mode
[   29.770873][ T3318] chnl_net:caif_netlink_parms(): no params data found
[   29.785304][ T3314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   29.795701][ T3316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   29.815890][ T3314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   29.826055][ T3316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   29.867451][ T3314] team0: Port device team_slave_0 added
[   29.873316][ T3315] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.880404][ T3315] bridge0: port 1(bridge_slave_0) entered disabled state
[   29.887779][ T3315] bridge_slave_0: entered allmulticast mode
[   29.894103][ T3315] bridge_slave_0: entered promiscuous mode
[   29.918089][ T3314] team0: Port device team_slave_1 added
[   29.935196][ T3315] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.942489][ T3315] bridge0: port 2(bridge_slave_1) entered disabled state
[   29.949928][ T3315] bridge_slave_1: entered allmulticast mode
[   29.956491][ T3315] bridge_slave_1: entered promiscuous mode
[   29.962940][ T3320] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.970097][ T3320] bridge0: port 1(bridge_slave_0) entered disabled state
[   29.977498][ T3320] bridge_slave_0: entered allmulticast mode
[   29.983906][ T3320] bridge_slave_0: entered promiscuous mode
[   29.991139][ T3316] team0: Port device team_slave_0 added
[   29.999479][ T3314] batman_adv: batadv0: Adding interface: batadv_slave_0
[   30.006502][ T3314] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   30.032511][ T3314] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   30.049088][ T3320] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.056309][ T3320] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.063579][ T3320] bridge_slave_1: entered allmulticast mode
[   30.070001][ T3320] bridge_slave_1: entered promiscuous mode
[   30.076967][ T3316] team0: Port device team_slave_1 added
[   30.090102][ T3314] batman_adv: batadv0: Adding interface: batadv_slave_1
[   30.097128][ T3314] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   30.123289][ T3314] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   30.158115][ T3315] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   30.173367][ T3320] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   30.188472][ T3318] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.195637][ T3318] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.202896][ T3318] bridge_slave_0: entered allmulticast mode
[   30.209345][ T3318] bridge_slave_0: entered promiscuous mode
[   30.216824][ T3315] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   30.226055][ T3318] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.233144][ T3318] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.240363][ T3318] bridge_slave_1: entered allmulticast mode
[   30.246860][ T3318] bridge_slave_1: entered promiscuous mode
[   30.253438][ T3316] batman_adv: batadv0: Adding interface: batadv_slave_0
[   30.260501][ T3316] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   30.286473][ T3316] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   30.298297][ T3320] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   30.307662][ T3316] batman_adv: batadv0: Adding interface: batadv_slave_1
[   30.314702][ T3316] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   30.340657][ T3316] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   30.389510][ T3315] team0: Port device team_slave_0 added
[   30.400739][ T3320] team0: Port device team_slave_0 added
[   30.414964][ T3314] hsr_slave_0: entered promiscuous mode
[   30.421115][ T3314] hsr_slave_1: entered promiscuous mode
[   30.427663][ T3315] team0: Port device team_slave_1 added
[   30.434620][ T3318] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   30.444429][ T3320] team0: Port device team_slave_1 added
[   30.466297][ T3318] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   30.482330][ T3316] hsr_slave_0: entered promiscuous mode
[   30.488467][ T3316] hsr_slave_1: entered promiscuous mode
[   30.494304][ T3316] debugfs: 'hsr0' already exists in 'hsr'
[   30.500085][ T3316] Cannot create hsr debugfs directory
[   30.532112][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_0
[   30.539319][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   30.565342][ T3315] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   30.581217][ T3320] batman_adv: batadv0: Adding interface: batadv_slave_0
[   30.588264][ T3320] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   30.614202][ T3320] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   30.630679][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_1
[   30.637770][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   30.664227][ T3315] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   30.675724][ T3318] team0: Port device team_slave_0 added
[   30.681842][ T3320] batman_adv: batadv0: Adding interface: batadv_slave_1
[   30.688914][ T3320] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   30.714910][ T3320] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   30.749516][ T3318] team0: Port device team_slave_1 added
[   30.813026][ T3318] batman_adv: batadv0: Adding interface: batadv_slave_0
[   30.820011][ T3318] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   30.846015][ T3318] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   30.859564][ T3318] batman_adv: batadv0: Adding interface: batadv_slave_1
[   30.866527][ T3318] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   30.892507][ T3318] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   30.910555][ T3320] hsr_slave_0: entered promiscuous mode
[   30.916642][ T3320] hsr_slave_1: entered promiscuous mode
[   30.922642][ T3320] debugfs: 'hsr0' already exists in 'hsr'
[   30.928449][ T3320] Cannot create hsr debugfs directory
[   30.945691][ T3315] hsr_slave_0: entered promiscuous mode
[   30.952102][ T3315] hsr_slave_1: entered promiscuous mode
[   30.958138][ T3315] debugfs: 'hsr0' already exists in 'hsr'
[   30.963860][ T3315] Cannot create hsr debugfs directory
[   31.006520][ T3318] hsr_slave_0: entered promiscuous mode
[   31.012603][ T3318] hsr_slave_1: entered promiscuous mode
[   31.018506][ T3318] debugfs: 'hsr0' already exists in 'hsr'
[   31.024244][ T3318] Cannot create hsr debugfs directory
[   31.093848][ T3316] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   31.117547][ T3316] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   31.126359][ T3316] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   31.149058][ T3316] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   31.193107][ T3314] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   31.204224][ T3314] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   31.218198][ T3314] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   31.228235][ T3314] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   31.252927][ T3320] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   31.273205][ T3320] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   31.282514][ T3320] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   31.295566][ T3320] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   31.322184][ T3318] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   31.339364][ T3316] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.347989][ T3318] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   31.362257][ T3318] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   31.379585][ T3318] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   31.396513][ T3316] 8021q: adding VLAN 0 to HW filter on device team0
[   31.422514][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.429603][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.440259][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.447534][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.458871][ T3315] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   31.468013][ T3315] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   31.484282][ T3316] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   31.494766][ T3316] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   31.510630][ T3314] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.528091][ T3315] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   31.536603][ T3315] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   31.582063][ T3314] 8021q: adding VLAN 0 to HW filter on device team0
[   31.591828][ T3320] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.609468][ T3320] 8021q: adding VLAN 0 to HW filter on device team0
[   31.621678][ T1738] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.628764][ T1738] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.637772][ T1738] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.645003][ T1738] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.663986][ T3316] 8021q: adding VLAN 0 to HW filter on device batadv0
[   31.678322][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.685433][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.694329][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.701731][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.733434][ T3318] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.755267][ T3318] 8021q: adding VLAN 0 to HW filter on device team0
[   31.784500][ T3315] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.799108][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.806194][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.830013][ T1738] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.837145][ T1738] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.854614][ T3315] 8021q: adding VLAN 0 to HW filter on device team0
[   31.866075][ T1738] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.873214][ T1738] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.893045][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.900162][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.948539][ T3316] veth0_vlan: entered promiscuous mode
[   31.960846][ T3316] veth1_vlan: entered promiscuous mode
[   31.968831][ T3314] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.018632][ T3320] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.039268][ T3316] veth0_macvtap: entered promiscuous mode
[   32.046852][ T3316] veth1_macvtap: entered promiscuous mode
[   32.095079][ T3318] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.105931][ T3316] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.119841][ T3315] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.132285][ T3316] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.170468][   T31] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.194504][   T31] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.210442][   T31] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.228516][ T3314] veth0_vlan: entered promiscuous mode
[   32.241858][ T1598] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.269303][ T3314] veth1_vlan: entered promiscuous mode
[   32.283654][ T3316] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   32.289932][ T3314] veth0_macvtap: entered promiscuous mode
[   32.312258][ T3314] veth1_macvtap: entered promiscuous mode
[   32.338287][ T3318] veth0_vlan: entered promiscuous mode
[   32.361248][ T3318] veth1_vlan: entered promiscuous mode
[   32.374810][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.397788][ T3315] veth0_vlan: entered promiscuous mode
[   32.406857][ T3315] veth1_vlan: entered promiscuous mode
[   32.426222][ T3315] veth0_macvtap: entered promiscuous mode
[   32.434827][ T3315] veth1_macvtap: entered promiscuous mode
[   32.447973][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.460505][ T3320] veth0_vlan: entered promiscuous mode
[   32.471896][ T3318] veth0_macvtap: entered promiscuous mode
[   32.478850][  T406] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.499004][ T3484] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   32.506448][ T3484] batman_adv: batadv0: Removing interface: batadv_slave_0
[   32.515151][ T3484] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   32.522628][ T3484] batman_adv: batadv0: Removing interface: batadv_slave_1
[   32.544713][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.552738][  T406] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.562787][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.578790][ T3318] veth1_macvtap: entered promiscuous mode
[   32.585462][  T406] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.598314][ T3320] veth1_vlan: entered promiscuous mode
[   32.607175][  T406] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.627712][  T406] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.636574][  T406] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.654236][ T3320] veth0_macvtap: entered promiscuous mode
[   32.661640][  T406] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.673526][ T3318] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.682728][ T3318] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.691324][ T3320] veth1_macvtap: entered promiscuous mode
[   32.704961][  T406] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.723226][   T29] kauditd_printk_skb: 30 callbacks suppressed
[   32.723244][   T29] audit: type=1400 audit(1763330280.040:102): avc:  denied  { create } for  pid=3487 comm="syz.3.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   32.768159][  T406] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.796053][   T29] audit: type=1400 audit(1763330280.110:103): avc:  denied  { create } for  pid=3490 comm="syz.3.6" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   32.796782][ T3320] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.815603][   T29] audit: type=1400 audit(1763330280.110:104): avc:  denied  { ioctl } for  pid=3490 comm="syz.3.6" path="socket:[4817]" dev="sockfs" ino=4817 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   32.835016][ T3320] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.847261][   T29] audit: type=1400 audit(1763330280.110:105): avc:  denied  { write } for  pid=3490 comm="syz.3.6" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   32.874722][ T1738] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.908705][ T1738] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.930591][ T3495] loop1: detected capacity change from 0 to 1024
[   32.932711][ T1738] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.956941][ T3495] =======================================================
[   32.956941][ T3495] WARNING: The mand mount option has been deprecated and
[   32.956941][ T3495]          and is ignored by this kernel. Remove the mand
[   32.956941][ T3495]          option from the mount to silence this warning.
[   32.956941][ T3495] =======================================================
[   32.995850][ T1738] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   33.006335][  T562] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   33.023237][ T3495] EXT4-fs: dax option not supported
[   33.028722][  T562] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   33.028969][   T29] audit: type=1400 audit(1763330280.340:106): avc:  denied  { create } for  pid=3498 comm="syz.3.8" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   33.057060][   T29] audit: type=1400 audit(1763330280.350:107): avc:  denied  { getopt } for  pid=3498 comm="syz.3.8" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   33.077483][ T1738] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   33.077577][   T29] audit: type=1400 audit(1763330280.400:108): avc:  denied  { allowed } for  pid=3500 comm="syz.3.9" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   33.110606][   T29] audit: type=1400 audit(1763330280.430:109): avc:  denied  { create } for  pid=3500 comm="syz.3.9" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   33.149041][ T3495] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   33.155360][ T3504] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3504 comm=syz.4.5
[   33.178396][   T29] audit: type=1326 audit(1763330280.430:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3494 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e3a5f6c9 code=0x7ffc0000
[   33.201609][   T29] audit: type=1326 audit(1763330280.460:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3494 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa5e3a5f6c9 code=0x7ffc0000
[   33.263753][ T3510] geneve2: entered promiscuous mode
[   33.269275][ T3510] geneve2: entered allmulticast mode
[   33.277430][ T1738] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[   33.300981][ T1738] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[   33.337356][   T31] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[   33.345199][ T3514] netlink: '+}[@': attribute type 27 has an invalid length.
[   33.346243][   T31] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[   33.366404][ T3512] netlink: 40 bytes leftover after parsing attributes in process `syz.0.11'.
[   33.404576][ T3514] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.411923][ T3514] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.458279][ T3521] ip6t_srh: unknown srh match flags  4000
[   33.475741][ T3527] capability: warning: `syz.0.11' uses deprecated v2 capabilities in a way that may be insecure
[   33.492022][ T3514] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   33.512957][ T3514] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   33.579052][   T31] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   33.604752][   T31] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   33.626040][ T3539] loop4: detected capacity change from 0 to 512
[   33.634892][   T31] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   33.676264][   T31] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   33.698673][ T3543] netlink: 64 bytes leftover after parsing attributes in process `syz.0.22'.
[   33.720802][ T3539] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.749203][ T3539] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   33.807924][ T3539] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.19: corrupted inode contents
[   33.828329][ T3539] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.19: mark_inode_dirty error
[   33.860803][ T3539] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.19: corrupted inode contents
[   33.874117][ T3566] mmap: syz.0.28 (3566) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   33.896081][ T3571] bond1: Removing last arp target with arp_interval on
[   33.896691][ T3577] loop2: detected capacity change from 0 to 512
[   33.904352][ T3539] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.19: mark_inode_dirty error
[   33.911621][ T3577] EXT4-fs: Ignoring removed bh option
[   33.921964][ T3571] bond1: entered allmulticast mode
[   33.934761][ T3571] 8021q: adding VLAN 0 to HW filter on device bond1
[   33.935362][ T3416] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   33.949253][ T3416] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   33.956748][ T3416] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   33.964190][ T3416] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   33.971620][ T3416] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   33.979126][ T3416] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   33.979768][ T3577] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   33.986551][ T3416] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   33.996530][ T3580] netlink: 16 bytes leftover after parsing attributes in process `syz.0.28'.
[   34.002271][ T3416] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   34.018551][ T3416] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   34.025960][ T3416] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   34.049429][ T3577] EXT4-fs (loop2): 1 truncate cleaned up
[   34.056009][ T3577] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.056119][ T3416] hid-generic 0003:0004:0000.0001: hidraw0: USB HID v0.00 Device [syz0] on syz1
[   34.154495][ T3588] fido_id[3588]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   34.161883][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.196263][ T3591] netlink: 64 bytes leftover after parsing attributes in process `syz.1.36'.
[   34.284264][ T3598] loop2: detected capacity change from 0 to 1024
[   34.319123][ T3598] EXT4-fs: Ignoring removed orlov option
[   34.358349][ T3598] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.390416][ T3608] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   34.454432][ T3598] netlink: 68 bytes leftover after parsing attributes in process `syz.2.35'.
[   34.466243][ T3608] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   34.530591][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.637825][ T3619] loop3: detected capacity change from 0 to 128
[   34.640532][ T3617] loop0: detected capacity change from 0 to 512
[   34.657361][ T3617] EXT4-fs: Ignoring removed bh option
[   34.669606][ T3621] x_tables: duplicate entry at hook 2
[   34.690969][ T3617] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   34.707888][ T3617] EXT4-fs (loop0): 1 truncate cleaned up
[   34.717889][ T3617] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.749509][ T3625] netlink: 64 bytes leftover after parsing attributes in process `syz.4.48'.
[   34.760688][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.079302][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.157522][ T3644] loop2: detected capacity change from 0 to 512
[   35.189662][ T3644] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.224617][ T3650] netlink: 4 bytes leftover after parsing attributes in process `syz.3.58'.
[   35.233893][ T3650] tipc: Enabling of bearer <et:s> rejected, media not registered
[   35.243861][ T3644] ext4 filesystem being mounted at /7/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   35.297271][ T3644] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.56: corrupted inode contents
[   35.307630][ T3652] loop3: detected capacity change from 0 to 128
[   35.348646][ T3644] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #2: comm syz.2.56: mark_inode_dirty error
[   35.363508][ T3644] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.56: corrupted inode contents
[   35.376802][ T3644] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.56: mark_inode_dirty error
[   35.394098][ T3658] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   35.416791][ T2969] hid-generic 0003:0004:0000.0002: hidraw0: USB HID v0.00 Device [syz0] on syz1
[   35.721015][ T3667] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   35.838835][ T3671] netlink: 64 bytes leftover after parsing attributes in process `syz.3.66'.
[   35.914577][ T3677] loop3: detected capacity change from 0 to 512
[   35.943758][ T3677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.959686][ T3677] ext4 filesystem being mounted at /23/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   35.974840][ T3677] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.69: corrupted inode contents
[   35.987838][ T3677] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.69: mark_inode_dirty error
[   36.000087][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.017141][ T3677] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.69: corrupted inode contents
[   36.044192][ T3688] loop4: detected capacity change from 0 to 1764
[   36.050419][ T3690] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   36.052447][ T3677] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.69: mark_inode_dirty error
[   36.061859][ T3690] SELinux: failed to load policy
[   36.114151][ T3697] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   36.126109][ T3693] netlink: 4 bytes leftover after parsing attributes in process `syz.0.75'.
[   36.137083][ T3693] netlink: 4 bytes leftover after parsing attributes in process `syz.0.75'.
[   36.199315][   T36] hid-generic 0003:0004:0000.0003: hidraw0: USB HID v0.00 Device [syz0] on syz1
[   36.318641][ T3710] loop2: detected capacity change from 0 to 1764
[   36.345490][ T3710] ISOFS: Bad logical zone size 2051
[   36.372936][ T3713] loop0: detected capacity change from 0 to 1024
[   36.380015][ T3713] EXT4-fs: Ignoring removed orlov option
[   36.398544][ T3710] loop2: detected capacity change from 0 to 512
[   36.405548][ T3713] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   36.427919][ T3710] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   36.441094][ T3710] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   36.470362][ T3710] EXT4-fs (loop2): orphan file too big: 67108874
[   36.477204][ T3710] EXT4-fs (loop2): mount failed
[   36.489531][ T3710] loop2: detected capacity change from 0 to 256
[   36.550729][ T3718] tipc: Enabling of bearer <et:s> rejected, media not registered
[   36.685712][ T3726] loop4: detected capacity change from 0 to 8192
[   36.763471][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.009493][ T3758] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   37.079966][ T3760] tipc: Enabling of bearer <et:s> rejected, media not registered
[   37.099330][ T3764] Zero length message leads to an empty skb
[   37.149061][ T3766] tipc: Started in network mode
[   37.154043][ T3766] tipc: Node identity ac14140f, cluster identity 4711
[   37.179727][ T3766] tipc: New replicast peer: 255.255.255.255
[   37.186016][ T3766] tipc: Enabled bearer <udp:syz2>, priority 10
[   37.195979][ T3766] tipc: Disabling bearer <udp:syz2>
[   37.209740][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.351437][ T3780] netlink: 'syz.3.107': attribute type 1 has an invalid length.
[   37.424899][ T3791] loop2: detected capacity change from 0 to 512
[   37.434025][ T3791] EXT4-fs: Ignoring removed nomblk_io_submit option
[   37.438976][ T3792] tipc: Enabling of bearer <et:s> rejected, media not registered
[   37.448717][ T3791] EXT4-fs: Ignoring removed oldalloc option
[   37.455731][ T3788] syz.0.110 (3788) used greatest stack depth: 10496 bytes left
[   37.479046][ T3791] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: comm syz.2.111: Parent and EA inode have the same ino 15
[   37.496737][ T3791] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   37.512421][ T3791] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: comm syz.2.111: Parent and EA inode have the same ino 15
[   37.552701][ T3791] EXT4-fs (loop2): 1 orphan inode deleted
[   37.560185][ T3791] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   37.592171][ T3799] FAULT_INJECTION: forcing a failure.
[   37.592171][ T3799] name failslab, interval 1, probability 0, space 0, times 1
[   37.604929][ T3799] CPU: 0 UID: 0 PID: 3799 Comm: syz.4.115 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   37.604961][ T3799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   37.604977][ T3799] Call Trace:
[   37.604985][ T3799]  <TASK>
[   37.604994][ T3799]  __dump_stack+0x1d/0x30
[   37.605020][ T3799]  dump_stack_lvl+0xe8/0x140
[   37.605044][ T3799]  dump_stack+0x15/0x1b
[   37.605155][ T3799]  should_fail_ex+0x265/0x280
[   37.605207][ T3799]  ? serport_ldisc_read+0x8c/0x300
[   37.605316][ T3799]  should_failslab+0x8c/0xb0
[   37.605354][ T3799]  __kmalloc_cache_noprof+0x4c/0x4a0
[   37.605451][ T3799]  serport_ldisc_read+0x8c/0x300
[   37.605480][ T3799]  ? terminate_walk+0x27f/0x2a0
[   37.605531][ T3799]  tty_read+0x154/0x4a0
[   37.605578][ T3799]  ? __import_iovec+0x428/0x540
[   37.605650][ T3799]  do_iter_readv_writev+0x4a1/0x540
[   37.605688][ T3799]  vfs_readv+0x1ea/0x690
[   37.605733][ T3799]  do_readv+0xe7/0x210
[   37.605828][ T3799]  __x64_sys_readv+0x45/0x50
[   37.605862][ T3799]  x64_sys_call+0x29fc/0x3000
[   37.605891][ T3799]  do_syscall_64+0xd2/0x200
[   37.605918][ T3799]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   37.606030][ T3799]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   37.606088][ T3799]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   37.606121][ T3799] RIP: 0033:0x7f57efd7f6c9
[   37.606138][ T3799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   37.606183][ T3799] RSP: 002b:00007f57ee7df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[   37.606209][ T3799] RAX: ffffffffffffffda RBX: 00007f57effd5fa0 RCX: 00007f57efd7f6c9
[   37.606224][ T3799] RDX: 0000000000000001 RSI: 0000200000000600 RDI: 0000000000000007
[   37.606281][ T3799] RBP: 00007f57ee7df090 R08: 0000000000000000 R09: 0000000000000000
[   37.606297][ T3799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   37.606312][ T3799] R13: 00007f57effd6038 R14: 00007f57effd5fa0 R15: 00007ffcfcbb5fa8
[   37.606362][ T3799]  </TASK>
[   37.811636][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.873739][   T29] kauditd_printk_skb: 1530 callbacks suppressed
[   37.873755][   T29] audit: type=1326 audit(1763332863.186:1642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3807 comm="syz.2.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   37.903622][   T29] audit: type=1326 audit(1763332863.186:1643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3807 comm="syz.2.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   37.935637][   T29] audit: type=1326 audit(1763332863.196:1644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3807 comm="syz.2.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   37.959082][   T29] audit: type=1326 audit(1763332863.196:1645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3807 comm="syz.2.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   37.982497][   T29] audit: type=1326 audit(1763332863.196:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3807 comm="syz.2.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   38.076111][   T29] audit: type=1400 audit(1763332863.386:1647): avc:  denied  { setopt } for  pid=3825 comm="syz.1.125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   38.106358][ T3823] netlink: 'syz.2.124': attribute type 1 has an invalid length.
[   38.114286][   T29] audit: type=1400 audit(1763332863.416:1648): avc:  denied  { create } for  pid=3825 comm="syz.1.125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   38.179293][   T29] audit: type=1400 audit(1763332863.456:1649): avc:  denied  { create } for  pid=3816 comm="syz.4.121" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   38.232354][ T3833] tipc: Started in network mode
[   38.237405][ T3833] tipc: Node identity ac14140f, cluster identity 4711
[   38.244628][ T3833] tipc: New replicast peer: 255.255.255.255
[   38.251125][ T3833] tipc: Enabled bearer <udp:syz2>, priority 10
[   38.363764][ T3840] tipc: Enabling of bearer <et:s> rejected, media not registered
[   38.455140][ T3844] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   38.510414][ T3847] loop1: detected capacity change from 0 to 1024
[   38.514467][ T3848] loop0: detected capacity change from 0 to 128
[   38.551661][ T3847] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.561067][   T29] audit: type=1400 audit(1763332863.876:1650): avc:  denied  { module_load } for  pid=3846 comm="syz.0.129" path="/23/file1/file2" dev="loop0" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=system permissive=1
[   38.584919][ T3847] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.603843][ T3848] Invalid ELF header magic: != ELF
[   38.626787][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.687042][ T3859] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   38.706231][ T3860] tipc: Started in network mode
[   38.711268][ T3860] tipc: Node identity ac14140f, cluster identity 4711
[   38.719876][ T3860] tipc: New replicast peer: 255.255.255.255
[   38.726052][ T3860] tipc: Enabled bearer <udp:syz2>, priority 10
[   38.749325][ T3859] SELinux: failed to load policy
[   38.761429][ T3860] __nla_validate_parse: 11 callbacks suppressed
[   38.761448][ T3860] netlink: 12 bytes leftover after parsing attributes in process `syz.4.139'.
[   38.765000][ T3864] loop2: detected capacity change from 0 to 128
[   38.767853][ T3860] tipc: Disabling bearer <udp:syz2>
[   38.862764][   T29] audit: type=1326 audit(1763332864.176:1651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3869 comm="syz.1.142" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa5e3a5f6c9 code=0x0
[   38.990037][    C1] hrtimer: interrupt took 83710 ns
[   39.275026][ T3889] Invalid option length (1048268) for dns_resolver key
[   39.359149][ T3897] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   39.366612][ T3395] tipc: Node number set to 2886997007
[   39.372413][ T3897] SELinux: failed to load policy
[   39.476909][ T3902] loop4: detected capacity change from 0 to 512
[   39.489266][ T3902] EXT4-fs: Ignoring removed bh option
[   39.523024][ T3902] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   39.550447][ T3902] EXT4-fs (loop4): 1 truncate cleaned up
[   39.559413][ T3902] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.609011][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.716720][ T3908] netlink: 96 bytes leftover after parsing attributes in process `syz.1.157'.
[   39.938856][ T3915] FAULT_INJECTION: forcing a failure.
[   39.938856][ T3915] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   39.952276][ T3915] CPU: 0 UID: 0 PID: 3915 Comm: syz.3.155 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   39.952305][ T3915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   39.952320][ T3915] Call Trace:
[   39.952328][ T3915]  <TASK>
[   39.952338][ T3915]  __dump_stack+0x1d/0x30
[   39.952366][ T3915]  dump_stack_lvl+0xe8/0x140
[   39.952440][ T3915]  dump_stack+0x15/0x1b
[   39.952542][ T3915]  should_fail_ex+0x265/0x280
[   39.952581][ T3915]  should_fail_alloc_page+0xf2/0x100
[   39.952611][ T3915]  __alloc_frozen_pages_noprof+0xff/0x360
[   39.952766][ T3915]  alloc_pages_mpol+0xb3/0x260
[   39.952795][ T3915]  folio_alloc_mpol_noprof+0x39/0x80
[   39.952823][ T3915]  shmem_get_folio_gfp+0x3cf/0xd60
[   39.952892][ T3915]  ? simple_xattr_get+0xb9/0x120
[   39.952932][ T3915]  shmem_write_begin+0xa8/0x190
[   39.952957][ T3915]  generic_perform_write+0x184/0x490
[   39.953040][ T3915]  ? _raw_spin_unlock+0x26/0x50
[   39.953124][ T3915]  shmem_file_write_iter+0xc5/0xf0
[   39.953192][ T3915]  do_iter_readv_writev+0x4a1/0x540
[   39.953232][ T3915]  vfs_writev+0x2df/0x8b0
[   39.953285][ T3915]  __se_sys_pwritev2+0xfc/0x1c0
[   39.953370][ T3915]  __x64_sys_pwritev2+0x67/0x80
[   39.953399][ T3915]  x64_sys_call+0x2c59/0x3000
[   39.953421][ T3915]  do_syscall_64+0xd2/0x200
[   39.953493][ T3915]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   39.953525][ T3915]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   39.953562][ T3915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   39.953647][ T3915] RIP: 0033:0x7fb8f1d1f6c9
[   39.953661][ T3915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   39.953740][ T3915] RSP: 002b:00007fb8f077f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   39.953763][ T3915] RAX: ffffffffffffffda RBX: 00007fb8f1f75fa0 RCX: 00007fb8f1d1f6c9
[   39.953778][ T3915] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 000000000000000a
[   39.953791][ T3915] RBP: 00007fb8f077f090 R08: 0000000000000000 R09: 0000000000000003
[   39.953804][ T3915] R10: 0000000000007800 R11: 0000000000000246 R12: 0000000000000001
[   39.953815][ T3915] R13: 00007fb8f1f76038 R14: 00007fb8f1f75fa0 R15: 00007ffc54588b78
[   39.953835][ T3915]  </TASK>
[   40.235681][ T3921] netlink: 4 bytes leftover after parsing attributes in process `syz.3.160'.
[   40.300474][ T3923] netlink: 12 bytes leftover after parsing attributes in process `syz.2.161'.
[   40.318607][ T3923] bridge: RTM_NEWNEIGH with invalid ether address
[   40.332418][ T3923] loop2: detected capacity change from 0 to 1024
[   40.341339][ T3923] EXT4-fs: Ignoring removed orlov option
[   40.373580][ T3923] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   40.407759][ T3923] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.441964][ T3923] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.802804][ T3934] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   40.870821][ T3938] netlink: 64 bytes leftover after parsing attributes in process `syz.2.167'.
[   40.923945][ T3942] loop1: detected capacity change from 0 to 512
[   40.950868][ T3944] loop2: detected capacity change from 0 to 128
[   40.967539][ T3942] EXT4-fs: Ignoring removed bh option
[   40.993421][ T3942] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   41.047233][ T3942] EXT4-fs (loop1): 1 truncate cleaned up
[   41.057858][ T3942] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.228115][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.285592][ T3953] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   41.326845][ T3953] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   41.369858][ T3955] Driver unsupported XDP return value 0 on prog  (id 155) dev N/A, expect packet loss!
[   41.668605][ T3985] ref_ctr_offset mismatch. inode: 0xcd offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[   41.698789][ T3990] netlink: 23 bytes leftover after parsing attributes in process `syz.3.186'.
[   41.713984][ T3994] netlink: 3 bytes leftover after parsing attributes in process `syz.4.185'.
[   41.723190][ T3994] 0ªX¹¦À: renamed from caif0
[   41.730402][ T3994] 0ªX¹¦À: entered allmulticast mode
[   41.735679][ T3994] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[   41.758008][ T3996] loop1: detected capacity change from 0 to 512
[   41.778945][ T3996] EXT4-fs error (device loop1): ext4_xattr_inode_iget:446: comm syz.1.183: error while reading EA inode 32 err=-116
[   41.810880][ T3996] EXT4-fs (loop1): Remounting filesystem read-only
[   41.819554][ T3996] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   41.829845][ T3996] EXT4-fs (loop1): 1 orphan inode deleted
[   41.836121][ T3996] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.856807][ T3996] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.890945][ T4004] netlink: 'syz.3.190': attribute type 1 has an invalid length.
[   41.898707][ T4004] netlink: 224 bytes leftover after parsing attributes in process `syz.3.190'.
[   41.935639][ T4011] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   41.943665][ T4011] SELinux: failed to load policy
[   42.063555][ T4023] loop4: detected capacity change from 0 to 512
[   42.089246][ T4023] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.192: error while reading EA inode 32 err=-116
[   42.102884][ T4023] EXT4-fs (loop4): Remounting filesystem read-only
[   42.109681][ T4023] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   42.120315][ T4023] EXT4-fs (loop4): 1 orphan inode deleted
[   42.126695][ T4023] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.139687][ T4023] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.226596][ T4035] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   42.234474][ T4035] SELinux: failed to load policy
[   42.309627][ T4043] netlink: 64 bytes leftover after parsing attributes in process `syz.2.205'.
[   42.323875][ T4045] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   42.332524][ T4045] SELinux: failed to load policy
[   42.436727][ T4055] netlink: 'syz.1.208': attribute type 1 has an invalid length.
[   42.444450][ T4055] netlink: 224 bytes leftover after parsing attributes in process `syz.1.208'.
[   42.517449][ T4063] can0: slcan on ptm0.
[   42.576663][ T4063] can0 (unregistered): slcan off ptm0.
[   42.715864][ T4085] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   42.726635][ T4085] SELinux: failed to load policy
[   42.810308][ T4095] netlink: 'syz.3.221': attribute type 1 has an invalid length.
[   42.835106][ T4095] bond1: entered promiscuous mode
[   42.840487][ T4095] bond1: entered allmulticast mode
[   43.275069][ T4126] loop3: detected capacity change from 0 to 512
[   43.289891][ T4126] EXT4-fs: Ignoring removed bh option
[   43.317882][ T4126] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   43.335577][ T4128] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   43.344513][ T4128] SELinux: failed to load policy
[   43.350421][   T29] kauditd_printk_skb: 793 callbacks suppressed
[   43.350435][   T29] audit: type=1400 audit(1763332868.667:2445): avc:  denied  { create } for  pid=4129 comm="syz.1.232" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   43.415881][ T4126] EXT4-fs (loop3): 1 truncate cleaned up
[   43.423344][ T4134] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   43.426973][ T4126] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.456263][   T29] audit: type=1400 audit(1763332868.707:2446): avc:  denied  { bind } for  pid=4129 comm="syz.1.232" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   43.475552][   T29] audit: type=1400 audit(1763332868.707:2447): avc:  denied  { write } for  pid=4129 comm="syz.1.232" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   43.494892][   T29] audit: type=1400 audit(1763332868.707:2448): avc:  denied  { write } for  pid=4129 comm="syz.1.232" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   43.518172][   T29] audit: type=1400 audit(1763332868.707:2449): avc:  denied  { open } for  pid=4129 comm="syz.1.232" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   43.575460][   T29] audit: type=1400 audit(1763332868.867:2450): avc:  denied  { create } for  pid=4137 comm="syz.4.235" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   43.603338][   T29] audit: type=1400 audit(1763332868.917:2451): avc:  denied  { bind } for  pid=4137 comm="syz.4.235" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   43.636638][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.798390][ T4155] loop2: detected capacity change from 0 to 1024
[   43.805227][ T4155] EXT4-fs: Ignoring removed orlov option
[   43.833007][ T4155] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.879492][ T4155] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.239: bg 0: block 232: padding at end of block bitmap is not set
[   43.899203][ T4155] EXT4-fs (loop2): Remounting filesystem read-only
[   43.916307][ T4155] EXT4-fs (loop2): error restoring inline_data for inode -- potential data loss! (inode 12, error -30)
[   43.947132][   T29] audit: type=1400 audit(1763332869.267:2452): avc:  denied  { read } for  pid=2988 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   43.969218][   T29] audit: type=1400 audit(1763332869.267:2453): avc:  denied  { search } for  pid=2988 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   43.990923][   T29] audit: type=1400 audit(1763332869.267:2454): avc:  denied  { search } for  pid=2988 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   44.085310][ T4160] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.150861][ T4160] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.199037][ T4160] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.240089][ T4172] netlink: 'syz.1.242': attribute type 1 has an invalid length.
[   44.247861][ T4172] __nla_validate_parse: 3 callbacks suppressed
[   44.247890][ T4172] netlink: 224 bytes leftover after parsing attributes in process `syz.1.242'.
[   44.273506][ T4174] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   44.286252][ T4174] SELinux: failed to load policy
[   44.292561][ T4160] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.359289][  T406] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   44.389691][  T406] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   44.418815][  T406] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   44.419130][ T4182] netlink: 4 bytes leftover after parsing attributes in process `syz.4.247'.
[   44.437396][   T31] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   44.495046][ T4184] loop4: detected capacity change from 0 to 512
[   44.516360][ T4184] EXT4-fs: Ignoring removed bh option
[   44.533593][ T4184] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   44.567793][ T4184] EXT4-fs (loop4): 1 truncate cleaned up
[   44.587258][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.606363][ T4184] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.691722][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.750957][ T4196] netlink: 64 bytes leftover after parsing attributes in process `syz.0.253'.
[   44.765106][ T4194] netlink: 'syz.4.251': attribute type 4 has an invalid length.
[   44.781039][ T4194] netlink: 8 bytes leftover after parsing attributes in process `syz.4.251'.
[   44.790057][ T4194] netlink: 8 bytes leftover after parsing attributes in process `syz.4.251'.
[   44.818345][ T4198] loop0: detected capacity change from 0 to 128
[   44.830215][ T4198] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   44.838191][ T4198] FAT-fs (loop0): Filesystem has been set read-only
[   44.845017][ T4198] syz.0.255: attempt to access beyond end of device
[   44.845017][ T4198] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   44.858995][ T4198] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   44.866911][ T4198] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   44.875126][ T4198] syz.0.255: attempt to access beyond end of device
[   44.875126][ T4198] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   44.892962][ T4198] syz.0.255: attempt to access beyond end of device
[   44.892962][ T4198] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   44.907829][ T4198] syz.0.255: attempt to access beyond end of device
[   44.907829][ T4198] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   44.923102][ T4201] netlink: 'syz.3.254': attribute type 12 has an invalid length.
[   44.923136][ T4198] syz.0.255: attempt to access beyond end of device
[   44.923136][ T4198] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   44.948731][ T4205] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   44.956819][ T4205] SELinux: failed to load policy
[   44.968239][ T4198] syz.0.255: attempt to access beyond end of device
[   44.968239][ T4198] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   44.981661][ T4198] syz.0.255: attempt to access beyond end of device
[   44.981661][ T4198] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   45.000322][ T4198] syz.0.255: attempt to access beyond end of device
[   45.000322][ T4198] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   45.018034][ T4198] syz.0.255: attempt to access beyond end of device
[   45.018034][ T4198] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   45.031366][ T4198] syz.0.255: attempt to access beyond end of device
[   45.031366][ T4198] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   45.086499][ T4209] syz.3.259 (4209) used greatest stack depth: 10088 bytes left
[   45.155440][ T4216] loop1: detected capacity change from 0 to 512
[   45.164453][ T4216] EXT4-fs: Ignoring removed bh option
[   45.175659][ T4216] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   45.188233][ T4213] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   45.196689][ T4216] EXT4-fs (loop1): 1 truncate cleaned up
[   45.198344][ T4213] SELinux: failed to load policy
[   45.204071][ T4216] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.234362][ T4213] loop3: detected capacity change from 0 to 2048
[   45.282397][ T4213] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.296502][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.594401][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.620541][ T4229] loop2: detected capacity change from 0 to 1024
[   45.648874][ T4229] EXT4-fs: Ignoring removed orlov option
[   45.674668][ T4229] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.700876][ T4229] netlink: 68 bytes leftover after parsing attributes in process `syz.2.265'.
[   45.751234][ T4239] loop3: detected capacity change from 0 to 512
[   45.762184][ T4239] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   45.770708][ T4239] EXT4-fs (loop3): invalid journal inode
[   45.776686][ T4239] EXT4-fs (loop3): can't get journal size
[   45.782849][ T4239] EXT4-fs (loop3): orphan cleanup on readonly fs
[   45.789814][ T4239] EXT4-fs (loop3): 1 truncate cleaned up
[   45.796077][ T4239] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   45.819354][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.855457][ T4243] netlink: 'syz.3.271': attribute type 1 has an invalid length.
[   45.863266][ T4243] netlink: 224 bytes leftover after parsing attributes in process `syz.3.271'.
[   45.881780][ T4246] loop4: detected capacity change from 0 to 512
[   45.888394][ T4246] EXT4-fs: Ignoring removed bh option
[   45.894648][ T4246] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   45.906386][ T4246] EXT4-fs (loop4): 1 truncate cleaned up
[   45.912514][ T4246] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.937843][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.961387][ T4249] loop4: detected capacity change from 0 to 512
[   45.978297][ T4249] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.991151][ T4249] ext4 filesystem being mounted at /61/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   46.003800][ T4249] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.273: corrupted inode contents
[   46.016525][ T4249] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.273: mark_inode_dirty error
[   46.018167][ T4253] netlink: 'syz.3.274': attribute type 4 has an invalid length.
[   46.028550][ T4249] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.273: corrupted inode contents
[   46.047655][ T4249] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.273: mark_inode_dirty error
[   46.068181][   T36] hid_parser_main: 44 callbacks suppressed
[   46.068200][   T36] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[   46.081515][   T36] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[   46.088973][   T36] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[   46.096561][   T36] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[   46.103986][   T36] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[   46.111407][   T36] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[   46.118856][   T36] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[   46.126279][   T36] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[   46.133678][   T36] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[   46.141108][   T36] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[   46.149190][   T36] hid-generic 0003:0004:0000.0004: hidraw0: USB HID v0.00 Device [syz0] on syz1
[   46.173459][ T4258] fido_id[4258]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   46.408674][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.431948][ T4264] netlink: 96 bytes leftover after parsing attributes in process `syz.2.278'.
[   46.458084][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.674724][ T4279] netlink: 'syz.4.285': attribute type 4 has an invalid length.
[   46.693347][ T4281] loop3: detected capacity change from 0 to 512
[   46.700216][ T4281] EXT4-fs: Ignoring removed bh option
[   46.725154][ T4281] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   46.734565][ T4281] EXT4-fs (loop3): 1 truncate cleaned up
[   46.740924][ T4281] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.779206][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.089135][ T4307] syzkaller1: entered promiscuous mode
[   47.094671][ T4307] syzkaller1: entered allmulticast mode
[   47.104189][ T4307] loop3: detected capacity change from 0 to 164
[   47.235385][ T4311] loop1: detected capacity change from 0 to 128
[   47.537382][ T4322] netlink: 8 bytes leftover after parsing attributes in process `syz.3.302'.
[   47.554727][ T4322] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[   47.597501][ T4327] serio: Serial port ttyS3
[   47.743592][ T4340] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   47.881523][ T4346] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   47.929574][ T4350] netlink: 4 bytes leftover after parsing attributes in process `syz.2.314'.
[   48.028379][ T4352] loop2: detected capacity change from 0 to 128
[   48.110332][ T4358] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   48.339004][ T4373] ref_ctr_offset mismatch. inode: 0xcd offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[   48.388580][ T1738] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.446106][ T1738] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.500694][   T29] kauditd_printk_skb: 290 callbacks suppressed
[   48.500757][   T29] audit: type=1326 audit(1763332873.817:2745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4382 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e3a5f6c9 code=0x7ffc0000
[   48.526597][ T4383] loop1: detected capacity change from 0 to 1024
[   48.530411][   T29] audit: type=1326 audit(1763332873.817:2746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4382 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e3a5f6c9 code=0x7ffc0000
[   48.562741][ T4383] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   48.584993][ T4383] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.332: Invalid block bitmap block 0 in block_group 0
[   48.601727][ T1738] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.604780][ T4383] Quota error (device loop1): write_blk: dquota write failed
[   48.619027][ T4383] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   48.629820][ T4383] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.332: Failed to acquire dquot type 0
[   48.641329][ T4383] EXT4-fs error (device loop1): ext4_free_blocks:6706: comm syz.1.332: Freeing blocks not in datazone - block = 0, count = 4096
[   48.655064][   T29] audit: type=1326 audit(1763332873.817:2747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4382 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa5e3a5f6c9 code=0x7ffc0000
[   48.678514][   T29] audit: type=1326 audit(1763332873.817:2748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4382 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e3a5f6c9 code=0x7ffc0000
[   48.685573][ T4383] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.332: Invalid inode bitmap blk 0 in block_group 0
[   48.701904][   T29] audit: type=1326 audit(1763332873.817:2749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4382 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e3a5f6c9 code=0x7ffc0000
[   48.737823][   T29] audit: type=1326 audit(1763332873.827:2750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4382 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e3a5f6c9 code=0x7ffc0000
[   48.761264][   T29] audit: type=1326 audit(1763332873.827:2751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4382 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e3a5f6c9 code=0x7ffc0000
[   48.784919][   T29] audit: type=1326 audit(1763332873.827:2752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4382 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e3a5f6c9 code=0x7ffc0000
[   48.792274][ T4383] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   48.809045][   T31] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:1: Failed to release dquot type 0
[   48.829659][ T1738] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.840780][ T4383] EXT4-fs (loop1): 1 orphan inode deleted
[   48.847170][ T4383] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.874262][ T4383] EXT4-fs error (device loop1): ext4_lookup:1787: inode #15: comm syz.1.332: iget: bad extra_isize 65535 (inode size 256)
[   48.906376][ T4383] syz.1.332 (4383) used greatest stack depth: 9232 bytes left
[   48.921976][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.963639][ T1738] bridge_slave_1: left allmulticast mode
[   48.969788][ T1738] bridge_slave_1: left promiscuous mode
[   48.975926][ T1738] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.989908][ T1738] bridge_slave_0: left allmulticast mode
[   48.995703][ T1738] bridge_slave_0: left promiscuous mode
[   49.001357][ T1738] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.105069][ T4403] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   49.118638][ T4403] unsupported nlmsg_type 40
[   49.123755][ T4403] IPv6: Can't replace route, no match found
[   49.136730][ T1738] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   49.146837][ T1738] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   49.157500][ T1738] bond0 (unregistering): Released all slaves
[   49.210622][ T4407] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   49.232223][ T1738] hsr_slave_0: left promiscuous mode
[   49.243151][ T1738] hsr_slave_1: left promiscuous mode
[   49.246952][ T4414] loop2: detected capacity change from 0 to 128
[   49.255132][ T1738] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   49.262644][ T1738] batman_adv: batadv0: Removing interface: batadv_slave_0
[   49.290673][ T1738] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   49.298267][ T1738] batman_adv: batadv0: Removing interface: batadv_slave_1
[   49.340538][ T4423] ref_ctr_offset mismatch. inode: 0xcd offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[   49.364012][ T1738] veth1_macvtap: left promiscuous mode
[   49.369945][ T1738] veth0_macvtap: left promiscuous mode
[   49.388546][ T4430] xt_connbytes: Forcing CT accounting to be enabled
[   49.398117][ T1738] veth1_vlan: left promiscuous mode
[   49.404175][ T1738] veth0_vlan: left promiscuous mode
[   49.585641][ T1738] team0 (unregistering): Port device team_slave_1 removed
[   49.615000][ T1738] team0 (unregistering): Port device team_slave_0 removed
[   49.774437][ T4386] chnl_net:caif_netlink_parms(): no params data found
[   49.787335][ T4444] loop4: detected capacity change from 0 to 4096
[   49.808400][ T4444] EXT4-fs: Ignoring removed nomblk_io_submit option
[   49.839119][ T4444] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.901576][ T4386] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.908858][ T4386] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.929682][ T4386] bridge_slave_0: entered allmulticast mode
[   49.938565][ T4386] bridge_slave_0: entered promiscuous mode
[   49.942177][ T4462] __nla_validate_parse: 4 callbacks suppressed
[   49.942196][ T4462] netlink: 64 bytes leftover after parsing attributes in process `syz.1.348'.
[   49.954346][ T4386] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.966857][ T4386] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.974290][ T4386] bridge_slave_1: entered allmulticast mode
[   49.984912][ T4386] bridge_slave_1: entered promiscuous mode
[   50.049970][ T4386] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   50.084287][ T4386] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   50.127957][ T4473] netlink: 8 bytes leftover after parsing attributes in process `syz.2.351'.
[   50.145537][ T4386] team0: Port device team_slave_0 added
[   50.154229][ T4473] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[   50.178901][ T4386] team0: Port device team_slave_1 added
[   50.239042][ T4386] batman_adv: batadv0: Adding interface: batadv_slave_0
[   50.246167][ T4386] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   50.272113][ T4386] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   50.339923][ T4386] batman_adv: batadv0: Adding interface: batadv_slave_1
[   50.347157][ T4386] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   50.373186][ T4386] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   50.388481][ T4491] SELinux:  Context @ is not valid (left unmapped).
[   50.399514][ T4476] loop1: detected capacity change from 0 to 32768
[   50.410462][ T4491] tmpfs: Bad value for 'mpol'
[   50.434426][ T4386] hsr_slave_0: entered promiscuous mode
[   50.440509][ T4488] netlink: 596 bytes leftover after parsing attributes in process `syz.3.352'.
[   50.440860][ T4386] hsr_slave_1: entered promiscuous mode
[   50.456411][ T4386] debugfs: 'hsr0' already exists in 'hsr'
[   50.462188][ T4386] Cannot create hsr debugfs directory
[   50.468443][ T3305]  loop1: p1 p2 p3 < > p4 < p5 p6 >
[   50.473928][ T3305] loop1: p1 start 460800 is beyond EOD, truncated
[   50.480451][ T3305] loop1: p2 size 83886080 extends beyond EOD, truncated
[   50.491362][ T3305] loop1: p5 start 460800 is beyond EOD, truncated
[   50.497975][ T3305] loop1: p6 size 83886080 extends beyond EOD, truncated
[   50.512774][ T4476]  loop1: p1 p2 p3 < > p4 < p5 p6 >
[   50.518207][ T4476] loop1: p1 start 460800 is beyond EOD, truncated
[   50.524685][ T4476] loop1: p2 size 83886080 extends beyond EOD, truncated
[   50.535776][ T4476] loop1: p5 start 460800 is beyond EOD, truncated
[   50.542353][ T4476] loop1: p6 size 83886080 extends beyond EOD, truncated
[   50.590430][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.650342][ T4502] loop4: detected capacity change from 0 to 512
[   50.696839][ T4502] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.728696][ T4502] ext4 filesystem being mounted at /75/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   50.745792][ T4502] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.353: corrupted inode contents
[   50.758674][ T4502] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.353: mark_inode_dirty error
[   50.759392][ T4386] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   50.777973][ T4502] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.353: corrupted inode contents
[   50.804052][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   50.804125][ T3568] udevd[3568]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   50.824651][ T4386] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   50.831627][ T4502] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.353: mark_inode_dirty error
[   50.833340][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop1p6, 10) failed: No such file or directory
[   50.854942][ T4386] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   50.857243][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   50.878701][ T4386] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   50.878708][   T10] hid-generic 0003:0004:0000.0005: hidraw0: USB HID v0.00 Device [syz0] on syz1
[   50.890141][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   50.907235][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   50.918654][ T3786] udevd[3786]: inotify_add_watch(7, /dev/loop1p6, 10) failed: No such file or directory
[   50.918716][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   50.989170][ T4521] fido_id[4521]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   51.092312][ T4386] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.168859][ T4386] 8021q: adding VLAN 0 to HW filter on device team0
[   51.206860][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.214041][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.228014][ T4549] ref_ctr_offset mismatch. inode: 0xcd offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[   51.247585][ T4551] FAULT_INJECTION: forcing a failure.
[   51.247585][ T4551] name failslab, interval 1, probability 0, space 0, times 0
[   51.260377][ T4551] CPU: 1 UID: 0 PID: 4551 Comm: syz.2.363 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   51.260412][ T4551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   51.260428][ T4551] Call Trace:
[   51.260436][ T4551]  <TASK>
[   51.260447][ T4551]  __dump_stack+0x1d/0x30
[   51.260504][ T4551]  dump_stack_lvl+0xe8/0x140
[   51.260528][ T4551]  dump_stack+0x15/0x1b
[   51.260546][ T4551]  should_fail_ex+0x265/0x280
[   51.260583][ T4551]  should_failslab+0x8c/0xb0
[   51.260662][ T4551]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   51.260702][ T4551]  ? dup_task_struct+0x70/0x6b0
[   51.260740][ T4551]  dup_task_struct+0x70/0x6b0
[   51.260773][ T4551]  ? _parse_integer+0x27/0x40
[   51.260873][ T4551]  copy_process+0x399/0x2000
[   51.260980][ T4551]  ? kstrtouint+0x76/0xc0
[   51.261020][ T4551]  ? kstrtouint_from_user+0x9f/0xf0
[   51.261082][ T4551]  ? __rcu_read_unlock+0x4f/0x70
[   51.261120][ T4551]  kernel_clone+0x16c/0x5c0
[   51.261177][ T4551]  ? vfs_write+0x7e8/0x960
[   51.261212][ T4551]  __x64_sys_clone+0xe6/0x120
[   51.261252][ T4551]  x64_sys_call+0x119c/0x3000
[   51.261325][ T4551]  do_syscall_64+0xd2/0x200
[   51.261366][ T4551]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   51.261449][ T4551]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   51.261621][ T4551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.261648][ T4551] RIP: 0033:0x7f3a86b1f6c9
[   51.261663][ T4551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.261754][ T4551] RSP: 002b:00007f3a8557efe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   51.261777][ T4551] RAX: ffffffffffffffda RBX: 00007f3a86d75fa0 RCX: 00007f3a86b1f6c9
[   51.261793][ T4551] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000026801000
[   51.261808][ T4551] RBP: 00007f3a8557f090 R08: 0000000000000000 R09: 0000000000000000
[   51.261822][ T4551] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   51.261855][ T4551] R13: 00007f3a86d76038 R14: 00007f3a86d75fa0 R15: 00007ffc8fe17fe8
[   51.261876][ T4551]  </TASK>
[   51.471745][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.478884][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.540748][ T4553] Invalid option length (1048268) for dns_resolver key
[   51.594718][ T4386] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.660583][ T4569] loop1: detected capacity change from 0 to 128
[   51.711956][ T4574] netlink: 96 bytes leftover after parsing attributes in process `syz.3.370'.
[   51.757940][ T4582] loop2: detected capacity change from 0 to 128
[   51.855402][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.874341][ T4386] veth0_vlan: entered promiscuous mode
[   51.903368][ T4386] veth1_vlan: entered promiscuous mode
[   51.943510][ T4386] veth0_macvtap: entered promiscuous mode
[   51.957331][ T4386] veth1_macvtap: entered promiscuous mode
[   51.982971][ T4386] batman_adv: batadv0: Interface activated: batadv_slave_0
[   52.002566][ T4386] batman_adv: batadv0: Interface activated: batadv_slave_1
[   52.029177][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.051083][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.081335][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.100929][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.179656][ T4605] netlink: 'syz.1.374': attribute type 4 has an invalid length.
[   52.228036][ T4607] loop5: detected capacity change from 0 to 1024
[   52.242988][ T4605] netlink: 8 bytes leftover after parsing attributes in process `syz.1.374'.
[   52.251912][ T4605] netlink: 8 bytes leftover after parsing attributes in process `syz.1.374'.
[   52.263850][ T4607] EXT4-fs: Ignoring removed orlov option
[   52.288144][ T4607] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.314691][ T4607] netlink: 68 bytes leftover after parsing attributes in process `syz.5.329'.
[   52.364017][ T4618] ref_ctr_offset mismatch. inode: 0xcd offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[   52.392984][ T4620] netlink: 36 bytes leftover after parsing attributes in process `syz.2.376'.
[   52.463218][ T4626] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   52.504706][ T4628] loop1: detected capacity change from 0 to 512
[   52.542884][ T4628] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.604748][ T4632] syzkaller1: entered promiscuous mode
[   52.610307][ T4632] syzkaller1: entered allmulticast mode
[   52.622507][ T4628] ext4 filesystem being mounted at /72/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   52.634703][ T4628] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #2: comm syz.1.381: corrupted inode contents
[   52.649002][ T4628] EXT4-fs error (device loop1): ext4_dirty_inode:6517: inode #2: comm syz.1.381: mark_inode_dirty error
[   52.661281][ T4628] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #2: comm syz.1.381: corrupted inode contents
[   52.675515][ T4628] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.381: mark_inode_dirty error
[   52.710176][ T4637] loop3: detected capacity change from 0 to 128
[   52.720453][   T10] hid_parser_main: 26 callbacks suppressed
[   52.720471][   T10] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[   52.733906][   T10] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[   52.741434][   T10] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[   52.748930][   T10] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[   52.756368][   T10] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[   52.763820][   T10] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[   52.771277][   T10] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[   52.778742][   T10] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[   52.786201][   T10] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[   52.793619][   T10] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[   52.812623][   T10] hid-generic 0003:0004:0000.0006: hidraw0: USB HID v0.00 Device [syz0] on syz1
[   52.879576][ T4644] fido_id[4644]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   52.993177][ T4653] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   53.011783][ T4386] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.070865][ T4659] ref_ctr_offset mismatch. inode: 0xcd offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[   53.088635][ T4662] netlink: 464 bytes leftover after parsing attributes in process `syz.3.391'.
[   53.346065][ T4671] netlink: 'syz.4.395': attribute type 1 has an invalid length.
[   53.353822][ T4671] netlink: 224 bytes leftover after parsing attributes in process `syz.4.395'.
[   53.371657][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.391139][ T4673] netlink: 'syz.3.398': attribute type 4 has an invalid length.
[   53.418328][ T4675] geneve2: entered promiscuous mode
[   53.466972][ T4680] ref_ctr_offset mismatch. inode: 0xcd offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[   53.488651][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   53.505176][   T29] kauditd_printk_skb: 270 callbacks suppressed
[   53.505191][   T29] audit: type=1400 audit(1763332878.828:3022): avc:  denied  { name_bind } for  pid=4682 comm="syz.5.401" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   53.538504][ T4683] x_tables: duplicate entry at hook 2
[   53.540896][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   53.556193][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   53.565275][   T29] audit: type=1326 audit(1763332878.858:3023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4672 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb8f1d51f85 code=0x7ffc0000
[   53.588872][   T29] audit: type=1326 audit(1763332878.868:3024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4672 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb8f1d51f85 code=0x7ffc0000
[   53.612411][   T29] audit: type=1326 audit(1763332878.878:3025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4672 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb8f1d51f85 code=0x7ffc0000
[   53.635811][   T29] audit: type=1326 audit(1763332878.878:3026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4672 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb8f1d51f85 code=0x7ffc0000
[   53.659190][   T29] audit: type=1326 audit(1763332878.888:3027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4672 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb8f1d51f85 code=0x7ffc0000
[   53.674491][ T4685] loop5: detected capacity change from 0 to 128
[   53.689133][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   53.734754][   T29] audit: type=1326 audit(1763332878.978:3028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4672 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb8f1d51f85 code=0x7ffc0000
[   53.758226][   T29] audit: type=1326 audit(1763332878.978:3029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4672 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb8f1d51f85 code=0x7ffc0000
[   53.781803][   T29] audit: type=1326 audit(1763332878.988:3030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4672 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb8f1d51f85 code=0x7ffc0000
[   53.781911][   T29] audit: type=1326 audit(1763332878.988:3031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4672 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb8f1d51f85 code=0x7ffc0000
[   53.831839][ T4689] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   53.831896][ T4689] SELinux: failed to load policy
[   53.905951][ T4697] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   54.018257][ T4701] loop5: detected capacity change from 0 to 512
[   54.082915][ T4701] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.106347][ T4701] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   54.127089][ T4701] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.408: corrupted inode contents
[   54.176420][ T4701] EXT4-fs error (device loop5): ext4_dirty_inode:6517: inode #2: comm syz.5.408: mark_inode_dirty error
[   54.225242][ T4701] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.408: corrupted inode contents
[   54.275275][ T4701] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.408: mark_inode_dirty error
[   54.293394][ T4709] loop4: detected capacity change from 0 to 8192
[   54.313779][ T3395] hid-generic 0003:0004:0000.0007: hidraw0: USB HID v0.00 Device [syz0] on syz1
[   54.627395][ T4732] loop2: detected capacity change from 0 to 128
[   54.641035][ T4733] loop1: detected capacity change from 0 to 1024
[   54.648091][ T4733] EXT4-fs: Ignoring removed orlov option
[   54.660027][ T4735] syz.4.410 uses obsolete (PF_INET,SOCK_PACKET)
[   54.677287][ T4733] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.827552][ T4386] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.878198][ T4745] loop2: detected capacity change from 0 to 1024
[   54.888093][ T4745] EXT4-fs: dax option not supported
[   54.895055][ T4750] netlink: 'syz.4.420': attribute type 1 has an invalid length.
[   54.959119][ T4753] __nla_validate_parse: 4 callbacks suppressed
[   54.959137][ T4753] netlink: 32 bytes leftover after parsing attributes in process `syz.2.425'.
[   54.975913][ T4753] veth1_macvtap: left promiscuous mode
[   55.123867][ T4761] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   55.135322][ T4760] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   55.223967][ T4769] ref_ctr_offset mismatch. inode: 0xcd offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[   55.356212][ T4772] loop3: detected capacity change from 0 to 512
[   55.396343][ T4772] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.409148][ T4772] ext4 filesystem being mounted at /93/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   55.446421][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.486834][ T4779] netlink: 4 bytes leftover after parsing attributes in process `syz.3.433'.
[   55.963011][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.988183][ T4796] geneve3: entered promiscuous mode
[   56.023618][ T4798] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   56.121100][ T4809] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   56.154348][ T4811] loop2: detected capacity change from 0 to 512
[   56.166771][ T4811] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.194068][ T4811] ext4 filesystem being mounted at /115/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   56.209634][ T4817] x_tables: duplicate entry at hook 2
[   56.219827][ T4811] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.446: corrupted inode contents
[   56.232513][ T4811] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #2: comm syz.2.446: mark_inode_dirty error
[   56.246195][ T4811] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.446: corrupted inode contents
[   56.258673][ T4811] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.446: mark_inode_dirty error
[   56.290091][   T23] hid-generic 0003:0004:0000.0008: hidraw0: USB HID v0.00 Device [syz0] on syz1
[   56.294234][ T4821] netlink: 8 bytes leftover after parsing attributes in process `syz.5.449'.
[   56.685689][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.724581][ T4850] netlink: 64 bytes leftover after parsing attributes in process `syz.2.461'.
[   56.860521][ T4854] loop2: detected capacity change from 0 to 512
[   56.867737][ T4854] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   56.883563][ T4854] EXT4-fs (loop2): 1 orphan inode deleted
[   56.889584][ T4854] EXT4-fs (loop2): 1 truncate cleaned up
[   56.901082][ T4854] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.927139][ T4854] 9pnet_fd: p9_fd_create_tcp (4854): problem connecting socket to 127.0.0.1
[   56.941067][ T4863] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=519 sclass=netlink_route_socket pid=4863 comm=syz.1.466
[   56.943941][ T4854] xt_hashlimit: max too large, truncated to 1048576
[   56.961654][ T4854] xt_CT: You must specify a L4 protocol and not use inversions on it
[   56.995495][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.031223][ T4869] loop1: detected capacity change from 0 to 128
[   57.051634][ T4871] geneve2: entered promiscuous mode
[   57.160564][ T4879] netlink: 64 bytes leftover after parsing attributes in process `syz.2.473'.
[   57.216092][ T4888] FAULT_INJECTION: forcing a failure.
[   57.216092][ T4888] name failslab, interval 1, probability 0, space 0, times 0
[   57.228926][ T4888] CPU: 0 UID: 0 PID: 4888 Comm: syz.3.477 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   57.229009][ T4888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   57.229021][ T4888] Call Trace:
[   57.229027][ T4888]  <TASK>
[   57.229036][ T4888]  __dump_stack+0x1d/0x30
[   57.229063][ T4888]  dump_stack_lvl+0xe8/0x140
[   57.229089][ T4888]  dump_stack+0x15/0x1b
[   57.229110][ T4888]  should_fail_ex+0x265/0x280
[   57.229213][ T4888]  should_failslab+0x8c/0xb0
[   57.229314][ T4888]  kmem_cache_alloc_noprof+0x50/0x480
[   57.229352][ T4888]  ? fcntl_setlk+0x53/0x950
[   57.229389][ T4888]  fcntl_setlk+0x53/0x950
[   57.229496][ T4888]  ? should_fail_ex+0xdb/0x280
[   57.229536][ T4888]  do_fcntl+0x5dd/0xdf0
[   57.229604][ T4888]  ? selinux_file_fcntl+0x1cb/0x1e0
[   57.229649][ T4888]  __se_sys_fcntl+0xb1/0x120
[   57.229758][ T4888]  __x64_sys_fcntl+0x43/0x50
[   57.229808][ T4888]  x64_sys_call+0x29a4/0x3000
[   57.229845][ T4888]  do_syscall_64+0xd2/0x200
[   57.229865][ T4888]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   57.229899][ T4888]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   57.229989][ T4888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.230016][ T4888] RIP: 0033:0x7fb8f1d1f6c9
[   57.230117][ T4888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.230140][ T4888] RSP: 002b:00007fb8f077f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[   57.230165][ T4888] RAX: ffffffffffffffda RBX: 00007fb8f1f75fa0 RCX: 00007fb8f1d1f6c9
[   57.230179][ T4888] RDX: 0000200000000000 RSI: 0000000000000026 RDI: 0000000000000008
[   57.230194][ T4888] RBP: 00007fb8f077f090 R08: 0000000000000000 R09: 0000000000000000
[   57.230209][ T4888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.230223][ T4888] R13: 00007fb8f1f76038 R14: 00007fb8f1f75fa0 R15: 00007ffc54588b78
[   57.230317][ T4888]  </TASK>
[   57.525187][ T4910] x_tables: duplicate entry at hook 2
[   57.545449][ T4913] loop1: detected capacity change from 0 to 128
[   57.636307][ T4922] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   57.655791][ T4924] netlink: 'syz.5.490': attribute type 4 has an invalid length.
[   57.672296][ T4924] netlink: 8 bytes leftover after parsing attributes in process `syz.5.490'.
[   57.681179][ T4924] netlink: 8 bytes leftover after parsing attributes in process `syz.5.490'.
[   57.713896][ T4928] loop2: detected capacity change from 0 to 512
[   57.743719][ T4928] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.492: error while reading EA inode 32 err=-116
[   57.758371][ T4928] EXT4-fs (loop2): Remounting filesystem read-only
[   57.766159][ T4928] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   57.776518][ T4928] EXT4-fs (loop2): 1 orphan inode deleted
[   57.782678][ T4928] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.810679][ T4933] netlink: 'syz.5.493': attribute type 30 has an invalid length.
[   57.821388][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.832717][  T562] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   57.841580][  T562] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   57.851008][  T562] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   57.895491][ T4940] loop2: detected capacity change from 0 to 512
[   57.904627][  T562] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   57.930485][ T4940] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.943157][ T4940] ext4 filesystem being mounted at /126/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   57.997703][ T4940] netlink: 4 bytes leftover after parsing attributes in process `syz.2.495'.
[   58.170089][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.210809][ T4957] netlink: 8 bytes leftover after parsing attributes in process `syz.1.501'.
[   58.219897][ T4957] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[   58.352923][ T4971] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   58.395285][ T4975] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   58.406032][ T4976] netlink: 'syz.3.505': attribute type 1 has an invalid length.
[   58.413728][ T4976] netlink: 224 bytes leftover after parsing attributes in process `syz.3.505'.
[   58.644054][ T4988] netlink: 'syz.2.514': attribute type 4 has an invalid length.
[   58.660036][   T29] kauditd_printk_skb: 567 callbacks suppressed
[   58.660054][   T29] audit: type=1326 audit(1763332883.979:3599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4987 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   58.689899][   T29] audit: type=1326 audit(1763332883.979:3600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4987 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   58.713616][   T29] audit: type=1326 audit(1763332883.979:3601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4987 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   58.737260][   T29] audit: type=1326 audit(1763332883.979:3602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4987 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   58.760666][   T29] audit: type=1326 audit(1763332883.979:3603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4987 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   58.784049][   T29] audit: type=1326 audit(1763332883.979:3604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4987 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   58.807632][   T29] audit: type=1326 audit(1763332883.979:3605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4987 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   58.831126][   T29] audit: type=1326 audit(1763332883.979:3606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4987 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   58.854468][   T29] audit: type=1326 audit(1763332883.979:3607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4987 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   58.877977][   T29] audit: type=1326 audit(1763332883.979:3608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4987 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a86b1f6c9 code=0x7ffc0000
[   58.906662][ T4994] FAULT_INJECTION: forcing a failure.
[   58.906662][ T4994] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   58.919869][ T4994] CPU: 1 UID: 0 PID: 4994 Comm: syz.5.517 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   58.919899][ T4994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   58.919915][ T4994] Call Trace:
[   58.919967][ T4994]  <TASK>
[   58.919974][ T4994]  __dump_stack+0x1d/0x30
[   58.919995][ T4994]  dump_stack_lvl+0xe8/0x140
[   58.920017][ T4994]  dump_stack+0x15/0x1b
[   58.920105][ T4994]  should_fail_ex+0x265/0x280
[   58.920200][ T4994]  should_fail+0xb/0x20
[   58.920231][ T4994]  should_fail_usercopy+0x1a/0x20
[   58.920272][ T4994]  _copy_from_user+0x1c/0xb0
[   58.920372][ T4994]  ___sys_sendmsg+0xc1/0x1d0
[   58.920415][ T4994]  __x64_sys_sendmsg+0xd4/0x160
[   58.920445][ T4994]  x64_sys_call+0x191e/0x3000
[   58.920496][ T4994]  do_syscall_64+0xd2/0x200
[   58.920516][ T4994]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   58.920595][ T4994]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   58.920629][ T4994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.920685][ T4994] RIP: 0033:0x7fba42e2f6c9
[   58.920771][ T4994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.920789][ T4994] RSP: 002b:00007fba4188f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   58.920807][ T4994] RAX: ffffffffffffffda RBX: 00007fba43085fa0 RCX: 00007fba42e2f6c9
[   58.920818][ T4994] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000005
[   58.920829][ T4994] RBP: 00007fba4188f090 R08: 0000000000000000 R09: 0000000000000000
[   58.920915][ T4994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.921025][ T4994] R13: 00007fba43086038 R14: 00007fba43085fa0 R15: 00007fffb2432958
[   58.921044][ T4994]  </TASK>
[   59.139257][ T5001] loop2: detected capacity change from 0 to 1024
[   59.151067][ T5001] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   59.162111][ T5001] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   59.177180][ T5001] JBD2: no valid journal superblock found
[   59.182974][ T5001] EXT4-fs (loop2): Could not load journal inode
[   59.199718][ T5004] 9pnet_virtio: no channels available for device /dev/md0
[   59.219662][ T5001] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[   59.279399][ T5010] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.371869][ T5010] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.423161][ T5010] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.525869][ T5010] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.667630][ T5026] FAULT_INJECTION: forcing a failure.
[   59.667630][ T5026] name failslab, interval 1, probability 0, space 0, times 0
[   59.680318][ T5026] CPU: 1 UID: 0 PID: 5026 Comm: syz.1.531 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   59.680357][ T5026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   59.680420][ T5026] Call Trace:
[   59.680428][ T5026]  <TASK>
[   59.680438][ T5026]  __dump_stack+0x1d/0x30
[   59.680464][ T5026]  dump_stack_lvl+0xe8/0x140
[   59.680489][ T5026]  dump_stack+0x15/0x1b
[   59.680509][ T5026]  should_fail_ex+0x265/0x280
[   59.680605][ T5026]  should_failslab+0x8c/0xb0
[   59.680639][ T5026]  kmem_cache_alloc_noprof+0x50/0x480
[   59.680673][ T5026]  ? __se_sys_mbind+0x3d7/0xac0
[   59.680738][ T5026]  ? get_pid_task+0x96/0xd0
[   59.680766][ T5026]  __se_sys_mbind+0x3d7/0xac0
[   59.680803][ T5026]  ? vfs_write+0x7e8/0x960
[   59.680835][ T5026]  ? __rcu_read_unlock+0x4f/0x70
[   59.680874][ T5026]  __x64_sys_mbind+0x78/0x90
[   59.680923][ T5026]  x64_sys_call+0x2936/0x3000
[   59.680948][ T5026]  do_syscall_64+0xd2/0x200
[   59.681056][ T5026]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   59.681117][ T5026]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   59.681149][ T5026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.681241][ T5026] RIP: 0033:0x7fa5e3a5f6c9
[   59.681259][ T5026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.681336][ T5026] RSP: 002b:00007fa5e24bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[   59.681358][ T5026] RAX: ffffffffffffffda RBX: 00007fa5e3cb5fa0 RCX: 00007fa5e3a5f6c9
[   59.681372][ T5026] RDX: 0000000000000004 RSI: 0000000000800000 RDI: 0000200000001000
[   59.681386][ T5026] RBP: 00007fa5e24bf090 R08: 0000000000000563 R09: 0000000000000000
[   59.681414][ T5026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.681428][ T5026] R13: 00007fa5e3cb6038 R14: 00007fa5e3cb5fa0 R15: 00007ffcf9a594b8
[   59.681448][ T5026]  </TASK>
[   59.892403][ T1738] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.904491][ T1738] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.917009][ T1738] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.931793][ T1738] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.017818][ T5036] loop4: detected capacity change from 0 to 512
[   60.061019][ T5036] loop4: detected capacity change from 0 to 512
[   60.068706][ T5036] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   60.099372][ T5045] netlink: 'syz.3.538': attribute type 4 has an invalid length.
[   60.110657][ T5036] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #15: comm syz.4.534: corrupted in-inode xattr: invalid ea_ino
[   60.131942][ T5036] EXT4-fs (loop4): Remounting filesystem read-only
[   60.161923][ T5036] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   60.193416][ T5056] loop1: detected capacity change from 0 to 128
[   60.205983][ T5057] __nla_validate_parse: 3 callbacks suppressed
[   60.206043][ T5057] netlink: 8 bytes leftover after parsing attributes in process `syz.3.538'.
[   60.221269][ T5057] netlink: 8 bytes leftover after parsing attributes in process `syz.3.538'.
[   60.258429][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.399756][ T5064] loop5: detected capacity change from 0 to 8192
[   60.554345][ T5080] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   60.611812][ T5087] program syz.1.556 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   60.669895][ T5091] geneve2: entered promiscuous mode
[   60.744733][ T5099] x_tables: duplicate entry at hook 2
[   60.859245][ T5108] netlink: 'syz.4.565': attribute type 1 has an invalid length.
[   60.867088][ T5108] netlink: 224 bytes leftover after parsing attributes in process `syz.4.565'.
[   60.952555][ T5114] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   61.092038][ T5127] loop4: detected capacity change from 0 to 2048
[   61.120736][ T5127] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   61.141002][ T5133] netlink: 12 bytes leftover after parsing attributes in process `syz.1.575'.
[   61.150420][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.282362][ T5144] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   61.359447][ T5151] loop4: detected capacity change from 0 to 512
[   61.371132][ T5151] EXT4-fs (loop4): 1 truncate cleaned up
[   61.386006][ T5151] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   61.401133][ T5151] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.582: bg 0: block 465: padding at end of block bitmap is not set
[   61.417244][ T5151] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   61.429478][ T5151] EXT4-fs (loop4): This should not happen!! Data will be lost
[   61.429478][ T5151] 
[   61.439193][ T5151] EXT4-fs (loop4): Total free blocks count 0
[   61.445346][ T5151] EXT4-fs (loop4): Free/Dirty block details
[   61.451315][ T5151] EXT4-fs (loop4): free_blocks=0
[   61.456354][ T5151] EXT4-fs (loop4): dirty_blocks=66
[   61.461570][ T5151] EXT4-fs (loop4): Block reservation details
[   61.467591][ T5151] EXT4-fs (loop4): i_reserved_data_blocks=66
[   61.505807][ T5151] 0ªX¹¦À: left allmulticast mode
[   61.510834][ T5151] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[   61.601377][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.645998][ T5165] netlink: 64 bytes leftover after parsing attributes in process `syz.1.588'.
[   61.732164][ T5178] loop2: detected capacity change from 0 to 512
[   61.735262][ T5175] netlink: 'syz.4.594': attribute type 1 has an invalid length.
[   61.741189][ T5178] vfat: Unknown parameter 'å—·\½Þ‚‰œ#wî•w9Á‹C'
[   61.746291][ T5175] netlink: 224 bytes leftover after parsing attributes in process `syz.4.594'.
[   61.813512][ T5186] program syz.1.598 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   61.862927][ T5188] loop5: detected capacity change from 0 to 128
[   61.886334][ T5190] loop2: detected capacity change from 0 to 2048
[   61.917509][ T5190] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   61.943876][ T5190] ext4 filesystem being mounted at /147/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.985421][ T5201] loop4: detected capacity change from 0 to 512
[   61.997875][ T5201] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   62.007112][ T5201] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   62.023572][ T5207] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.597: bg 0: block 345: padding at end of block bitmap is not set
[   62.043798][ T5201] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[   62.063430][ T5201] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   62.081060][ T5209] netlink: 'syz.3.605': attribute type 4 has an invalid length.
[   62.091470][ T5201] System zones: 0-2, 18-18, 34-35
[   62.122173][ T5207] EXT4-fs (loop2): Remounting filesystem read-only
[   62.136320][ T5201] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.151800][ T5214] netlink: 8 bytes leftover after parsing attributes in process `syz.3.605'.
[   62.160693][ T5214] netlink: 8 bytes leftover after parsing attributes in process `syz.3.605'.
[   62.184188][ T5201] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.603: bg 0: block 353: padding at end of block bitmap is not set
[   62.217493][ T5201] netlink: 12 bytes leftover after parsing attributes in process `syz.4.603'.
[   62.245965][ T5220] loop1: detected capacity change from 0 to 128
[   62.261821][ T5220] FAT-fs (loop1): error, clusters badly computed (2 != 0)
[   62.269132][ T5220] FAT-fs (loop1): Filesystem has been set read-only
[   62.279082][ T5220] FAT-fs (loop1): error, clusters badly computed (3 != 1)
[   62.286866][ T5220] FAT-fs (loop1): error, clusters badly computed (4 != 2)
[   62.344654][ T5225] loop1: detected capacity change from 0 to 1024
[   62.351387][ T5225] ext4: Unknown parameter 'smackfstransmute'
[   62.400858][ T5225] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   62.417924][ T5225] xt_CT: You must specify a L4 protocol and not use inversions on it
[   62.451550][ T5227] x_tables: duplicate entry at hook 2
[   62.488559][ T5229] loop1: detected capacity change from 0 to 512
[   62.505919][ T5229] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.520708][ T5229] ext4 filesystem being mounted at /134/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   62.537620][ T5229] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #2: comm syz.1.613: corrupted inode contents
[   62.549470][ T5229] EXT4-fs error (device loop1): ext4_dirty_inode:6517: inode #2: comm syz.1.613: mark_inode_dirty error
[   62.560929][ T5229] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #2: comm syz.1.613: corrupted inode contents
[   62.582802][ T5229] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.613: mark_inode_dirty error
[   62.606954][   T36] hid_parser_main: 44 callbacks suppressed
[   62.606973][   T36] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[   62.620280][   T36] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[   62.627701][   T36] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[   62.635153][   T36] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[   62.642604][   T36] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[   62.650166][   T36] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[   62.657602][   T36] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[   62.665281][   T36] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[   62.672780][   T36] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[   62.680219][   T36] hid-generic 0003:0004:0000.0009: unknown main item tag 0x0
[   62.690059][   T36] hid-generic 0003:0004:0000.0009: hidraw0: USB HID v0.00 Device [syz0] on syz1
[   62.725369][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.740260][ T5242] fido_id[5242]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   62.866711][ T5256] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   62.908119][ T5258] loop2: detected capacity change from 0 to 1024
[   62.917518][ T5258] EXT4-fs: Ignoring removed i_version option
[   63.109711][ T5268] loop5: detected capacity change from 0 to 128
[   63.211929][ T5289] loop1: detected capacity change from 0 to 1024
[   63.224162][ T5289] EXT4-fs: Ignoring removed orlov option
[   63.302963][ T5289] netlink: 68 bytes leftover after parsing attributes in process `syz.1.623'.
[   63.505043][ T5326] loop5: detected capacity change from 0 to 512
[   63.511518][ T5329] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   63.549138][ T5326] ext4 filesystem being mounted at /57/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.578493][ T5326] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.633: corrupted inode contents
[   63.597402][ T5326] EXT4-fs error (device loop5): ext4_dirty_inode:6517: inode #2: comm syz.5.633: mark_inode_dirty error
[   63.609049][ T5326] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.633: corrupted inode contents
[   63.633109][ T3416] hid-generic 0003:0004:0000.000A: hidraw0: USB HID v0.00 Device [syz0] on syz1
[   63.696315][ T5326] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.633: mark_inode_dirty error
[   63.730723][ T5347] netlink: 'syz.4.641': attribute type 4 has an invalid length.
[   63.761094][   T29] kauditd_printk_skb: 238 callbacks suppressed
[   63.761110][   T29] audit: type=1326 audit(1763332889.079:3847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5324 comm="syz.5.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba42e2f6c9 code=0x7ffc0000
[   63.761427][ T5340] fido_id[5340]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   63.767614][   T29] audit: type=1326 audit(1763332889.079:3848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5324 comm="syz.5.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba42e2f6c9 code=0x7ffc0000
[   63.830294][   T29] audit: type=1326 audit(1763332889.149:3849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5346 comm="syz.4.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57efd7f6c9 code=0x7ffc0000
[   63.915964][   T29] audit: type=1326 audit(1763332889.149:3850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5346 comm="syz.4.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57efd7f6c9 code=0x7ffc0000
[   63.939410][   T29] audit: type=1326 audit(1763332889.149:3851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5346 comm="syz.4.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57efd7f6c9 code=0x7ffc0000
[   63.962878][   T29] audit: type=1326 audit(1763332889.149:3852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5346 comm="syz.4.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f57efd7f6c9 code=0x7ffc0000
[   63.986402][   T29] audit: type=1326 audit(1763332889.149:3853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5346 comm="syz.4.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57efd7f6c9 code=0x7ffc0000
[   64.009845][   T29] audit: type=1326 audit(1763332889.149:3854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5346 comm="syz.4.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57efd7f6c9 code=0x7ffc0000
[   64.033221][   T29] audit: type=1326 audit(1763332889.149:3855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5346 comm="syz.4.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57efd7f6c9 code=0x7ffc0000
[   64.056614][   T29] audit: type=1326 audit(1763332889.149:3856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5346 comm="syz.4.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f57efd7f6c9 code=0x7ffc0000
[   64.238252][ T5386] FAULT_INJECTION: forcing a failure.
[   64.238252][ T5386] name failslab, interval 1, probability 0, space 0, times 0
[   64.251201][ T5386] CPU: 1 UID: 0 PID: 5386 Comm: syz.2.649 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   64.251234][ T5386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   64.251298][ T5386] Call Trace:
[   64.251305][ T5386]  <TASK>
[   64.251313][ T5386]  __dump_stack+0x1d/0x30
[   64.251343][ T5386]  dump_stack_lvl+0xe8/0x140
[   64.251442][ T5386]  dump_stack+0x15/0x1b
[   64.251465][ T5386]  should_fail_ex+0x265/0x280
[   64.251507][ T5386]  should_failslab+0x8c/0xb0
[   64.251538][ T5386]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   64.251599][ T5386]  ? __alloc_skb+0x101/0x320
[   64.251632][ T5386]  __alloc_skb+0x101/0x320
[   64.251661][ T5386]  ? audit_log_start+0x342/0x720
[   64.251685][ T5386]  audit_log_start+0x3a0/0x720
[   64.251726][ T5386]  ? kstrtouint+0x76/0xc0
[   64.251760][ T5386]  audit_seccomp+0x48/0x100
[   64.251793][ T5386]  ? __seccomp_filter+0x82d/0x1250
[   64.251895][ T5386]  __seccomp_filter+0x83e/0x1250
[   64.251926][ T5386]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   64.251959][ T5386]  ? vfs_write+0x7e8/0x960
[   64.252071][ T5386]  __secure_computing+0x82/0x150
[   64.252108][ T5386]  syscall_trace_enter+0xcf/0x1e0
[   64.252138][ T5386]  do_syscall_64+0xac/0x200
[   64.252160][ T5386]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   64.252194][ T5386]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   64.252229][ T5386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.252250][ T5386] RIP: 0033:0x7f3a86b1f6c9
[   64.252293][ T5386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.252311][ T5386] RSP: 002b:00007f3a8557f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   64.252331][ T5386] RAX: ffffffffffffffda RBX: 00007f3a86d75fa0 RCX: 00007f3a86b1f6c9
[   64.252343][ T5386] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000005
[   64.252356][ T5386] RBP: 00007f3a8557f090 R08: 0000000000000000 R09: 0000000000000000
[   64.252368][ T5386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.252380][ T5386] R13: 00007f3a86d76038 R14: 00007f3a86d75fa0 R15: 00007ffc8fe17fe8
[   64.252433][ T5386]  </TASK>
[   64.692039][ T5408] loop4: detected capacity change from 0 to 512
[   64.871884][ T5408] ext4 filesystem being mounted at /117/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.030348][ T5422] loop5: detected capacity change from 0 to 2048
[   65.220715][ T5428] netlink: 'syz.4.658': attribute type 13 has an invalid length.
[   65.390879][ T5408] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   65.434826][ T5436] FAULT_INJECTION: forcing a failure.
[   65.434826][ T5436] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   65.448057][ T5436] CPU: 1 UID: 0 PID: 5436 Comm: syz.1.668 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   65.448149][ T5436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   65.448160][ T5436] Call Trace:
[   65.448165][ T5436]  <TASK>
[   65.448171][ T5436]  __dump_stack+0x1d/0x30
[   65.448190][ T5436]  dump_stack_lvl+0xe8/0x140
[   65.448208][ T5436]  dump_stack+0x15/0x1b
[   65.448249][ T5436]  should_fail_ex+0x265/0x280
[   65.448280][ T5436]  should_fail+0xb/0x20
[   65.448306][ T5436]  should_fail_usercopy+0x1a/0x20
[   65.448324][ T5436]  _copy_to_user+0x20/0xa0
[   65.448425][ T5436]  simple_read_from_buffer+0xb5/0x130
[   65.448448][ T5436]  proc_fail_nth_read+0x10e/0x150
[   65.448476][ T5436]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   65.448502][ T5436]  vfs_read+0x1a8/0x770
[   65.448560][ T5436]  ? __rcu_read_unlock+0x4f/0x70
[   65.448583][ T5436]  ? __fget_files+0x184/0x1c0
[   65.448609][ T5436]  ksys_read+0xda/0x1a0
[   65.448659][ T5436]  __x64_sys_read+0x40/0x50
[   65.448681][ T5436]  x64_sys_call+0x27c0/0x3000
[   65.448788][ T5436]  do_syscall_64+0xd2/0x200
[   65.448806][ T5436]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   65.448830][ T5436]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   65.448989][ T5436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.449009][ T5436] RIP: 0033:0x7fa5e3a5e0dc
[   65.449037][ T5436] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   65.449057][ T5436] RSP: 002b:00007fa5e24bf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   65.449080][ T5436] RAX: ffffffffffffffda RBX: 00007fa5e3cb5fa0 RCX: 00007fa5e3a5e0dc
[   65.449094][ T5436] RDX: 000000000000000f RSI: 00007fa5e24bf0a0 RDI: 0000000000000006
[   65.449105][ T5436] RBP: 00007fa5e24bf090 R08: 0000000000000000 R09: 0000000000000000
[   65.449117][ T5436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.449182][ T5436] R13: 00007fa5e3cb6038 R14: 00007fa5e3cb5fa0 R15: 00007ffcf9a594b8
[   65.449206][ T5436]  </TASK>
[   65.452902][ T5425] program syz.2.662 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   65.455596][ T5428] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.668641][ T5428] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.772440][ T5428] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   65.785017][ T5428] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   65.854979][ T1738] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   65.867806][ T1738] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   65.879149][ T1738] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   65.888908][ T1738] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   65.897694][ T5455] __nla_validate_parse: 2 callbacks suppressed
[   65.897714][ T5455] netlink: 64 bytes leftover after parsing attributes in process `syz.3.675'.
[   65.986503][ T5461] netlink: 96 bytes leftover after parsing attributes in process `syz.2.677'.
[   66.067780][ T5469] loop3: detected capacity change from 0 to 512
[   66.134494][ T5469] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #15: comm syz.3.681: corrupted in-inode xattr: invalid ea_ino
[   66.164097][ T5469] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.681: couldn't read orphan inode 15 (err -117)
[   66.173687][ T5477] netlink: 32 bytes leftover after parsing attributes in process `syz.4.684'.
[   66.234700][ T5469] raw_sendmsg: syz.3.681 forgot to set AF_INET. Fix it!
[   66.313905][ T3006] ==================================================================
[   66.322046][ T3006] BUG: KCSAN: data-race in dentry_unlink_inode / step_into
[   66.329384][ T3006] 
[   66.331742][ T3006] write to 0xffff8881058c2570 of 8 bytes by task 3305 on cpu 1:
[   66.339396][ T3006]  dentry_unlink_inode+0x65/0x260
[   66.344488][ T3006]  d_delete+0x164/0x180
[   66.348686][ T3006]  d_delete_notify+0x32/0x100
[   66.353395][ T3006]  vfs_unlink+0x30b/0x420
[   66.357751][ T3006]  do_unlinkat+0x24e/0x480
[   66.362206][ T3006]  __x64_sys_unlink+0x2e/0x40
[   66.366907][ T3006]  x64_sys_call+0x2dcf/0x3000
[   66.371614][ T3006]  do_syscall_64+0xd2/0x200
[   66.376151][ T3006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.382064][ T3006] 
[   66.384401][ T3006] read to 0xffff8881058c2570 of 8 bytes by task 3006 on cpu 0:
[   66.391966][ T3006]  step_into+0x122/0x7f0
[   66.396254][ T3006]  walk_component+0x162/0x220
[   66.400993][ T3006]  path_lookupat+0xfe/0x2a0
[   66.405536][ T3006]  filename_lookup+0x147/0x340
[   66.410344][ T3006]  do_readlinkat+0x7d/0x320
[   66.414872][ T3006]  __x64_sys_readlink+0x47/0x60
[   66.419877][ T3006]  x64_sys_call+0x28de/0x3000
[   66.424773][ T3006]  do_syscall_64+0xd2/0x200
[   66.429314][ T3006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.435223][ T3006] 
[   66.437552][ T3006] value changed: 0xffff88811aba6c18 -> 0x0000000000000000
[   66.444669][ T3006] 
[   66.447001][ T3006] Reported by Kernel Concurrency Sanitizer on:
[   66.453161][ T3006] CPU: 0 UID: 0 PID: 3006 Comm: udevd Not tainted syzkaller #0 PREEMPT(voluntary) 
[   66.462460][ T3006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   66.472532][ T3006] ==================================================================