last executing test programs:

1m35.071886833s ago: executing program 0 (id=1136):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000e80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x74, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x48, 0x3, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x38, 0xb, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x80000000}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0xc}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x1}]}}}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0xd8}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
ioctl$FS_IOC_GETFSUUID(r0, 0x80111500, &(0x7f0000000080))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x42, 0x1fe)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r2, &(0x7f0000000180)='2', 0x1, 0xfecc)
fallocate(r1, 0x10, 0x7, 0x10001)

1m34.970845126s ago: executing program 0 (id=1139):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x7, &(0x7f00000000c0)={0x0, 0x2, 0x1000})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x26, &(0x7f0000000000)={0x1})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x26, &(0x7f0000000000)={0x1})
fcntl$lock(r0, 0x25, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x4})
close(r0)

1m34.720217588s ago: executing program 3 (id=1144):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='devices.list\x00', 0x275a, 0x0)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002f40)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
write$cgroup_subtree(r2, &(0x7f0000000200)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
setsockopt(r0, 0x84, 0x82, &(0x7f0000000000)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x8)

1m34.662936835s ago: executing program 3 (id=1146):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f00000007c0)={0xa, 0x4e23, 0x0, @loopback, 0x1170}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x62)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000b80)='n', 0x1}], 0x1}, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000040)={0x4, 0x9, 0x728, 0x6}, 0x14)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x304}, '\x00\x00\x00\x00@\x00', "252432e72844858a068b92a5a810f4dc", "11802ff5", "5aee41448c84afb7"}, 0x28)

1m34.662577676s ago: executing program 3 (id=1147):
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'lo\x00'})
r1 = syz_io_uring_setup(0x24fd, &(0x7f0000000180)={0x0, 0x0, 0x10100}, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f0000000040)=ANY=[@ANYBLOB='1q'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index})
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1m34.632024459s ago: executing program 3 (id=1149):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x2301091, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x261)

1m34.603706043s ago: executing program 3 (id=1151):
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000bc0)=@newqdisc={0x6c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x3c, 0x2, {{}, [@TCA_NETEM_RATE={0x14, 0xd}, @TCA_NETEM_CORRUPT={0xc, 0x2}]}}}]}, 0x6c}}, 0x0)

1m34.304366872s ago: executing program 3 (id=1157):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000380)={0x43, 0x4, 0x3, 0x3}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r1, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, 0x0}, 0x0)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x4008030)

1m34.287755624s ago: executing program 32 (id=1157):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000380)={0x43, 0x4, 0x3, 0x3}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r1, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, 0x0}, 0x0)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x4008030)

1m34.158223291s ago: executing program 0 (id=1161):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r1 = io_uring_setup(0x56ab, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0x2c, 0xa0002f5})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfffffffffffffda2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x24, &(0x7f0000000000)=0xa, 0x4)
io_uring_enter(r1, 0x2218, 0x7721, 0x16, 0x0, 0x0)
shutdown(r0, 0x1)

1m34.080155481s ago: executing program 0 (id=1162):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x2301091, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x261)

1m34.00688107s ago: executing program 0 (id=1164):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x1, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0xd, 0xfffff034}, {0x50, 0x0, 0x5, 0xfffffff9}, {0x6, 0x0, 0x4, 0xffffffff}]}, 0x10)
pipe(&(0x7f00000007c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r2, &(0x7f00000000c0)=[{&(0x7f0000000180)='wi', 0x2}], 0x1, 0x1)
close(r2)
socket$nl_generic(0x10, 0x3, 0x10)
splice(r1, 0x0, r2, 0x0, 0xfffd, 0x0)

1m33.501790135s ago: executing program 0 (id=1172):
r0 = syz_io_uring_setup(0x237, &(0x7f0000000480)={0x0, 0x8901, 0x400, 0x0, 0x2cf}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000600)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @empty}}, 0x5, 0x12, 0x0, 0x3}, 0x9c)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='3'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x11, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x40000000})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

1m33.468336659s ago: executing program 33 (id=1172):
r0 = syz_io_uring_setup(0x237, &(0x7f0000000480)={0x0, 0x8901, 0x400, 0x0, 0x2cf}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000600)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @empty}}, 0x5, 0x12, 0x0, 0x3}, 0x9c)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='3'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x11, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x40000000})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

43.463037691s ago: executing program 2 (id=2122):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7a, &(0x7f0000000340)={r2, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
getsockopt$bt_hci(r0, 0x84, 0x83, &(0x7f0000001c40)=""/4130, &(0x7f0000000000)=0x913)

43.426047156s ago: executing program 2 (id=2123):
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000680))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
dup(r0)
socket$packet(0x11, 0x3, 0x300)
pselect6(0x40, &(0x7f00000001c0)={0x300, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0xac, 0xfcb0}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

43.292659583s ago: executing program 2 (id=2124):
socket$unix(0x1, 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fcntl$notify(r0, 0x402, 0x37)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000a80)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0xffffffffffffff2b)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='.\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000000080)=""/43, 0x2b)

43.16282707s ago: executing program 2 (id=2127):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000500)='./file0/../file0\x00', &(0x7f00000004c0)='./file0/../file0\x00', 0x0, 0x202f099, 0x0)
mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
umount2(&(0x7f0000000340)='./file0/../file0\x00', 0x8)

43.034975836s ago: executing program 2 (id=2130):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r1, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4000000010000108fdffffff0000000800000000", @ANYRES32=0x0, @ANYBLOB="000000002104020008001b"], 0x40}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000380)={@multicast2, @loopback, @remote}, 0xc)

42.530982861s ago: executing program 2 (id=2140):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r1=>0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x4e24, @private=0xa010100}]}, &(0x7f0000000140)=0x10)
setsockopt(r0, 0x84, 0x80, &(0x7f0000000000)='\x00\x00\x00\x00\t\x00\x00\x00', 0x8)
ppoll(0x0, 0x0, &(0x7f00000002c0)={0x77359400}, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f00000001c0)={r1, @in={{0x2, 0x4e21, @multicast2}}}, 0x84)

42.526630062s ago: executing program 34 (id=2140):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r1=>0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x4e24, @private=0xa010100}]}, &(0x7f0000000140)=0x10)
setsockopt(r0, 0x84, 0x80, &(0x7f0000000000)='\x00\x00\x00\x00\t\x00\x00\x00', 0x8)
ppoll(0x0, 0x0, &(0x7f00000002c0)={0x77359400}, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f00000001c0)={r1, @in={{0x2, 0x4e21, @multicast2}}}, 0x84)

36.890697826s ago: executing program 4 (id=2246):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd29, 0x0, {0x0, 0x0, 0x0, r1, {0xb, 0x2}, {}, {0x10, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x800}, @TCA_FLOWER_KEY_IP_PROTO={0x5, 0x9, 0x6}, @TCA_FLOWER_KEY_PORT_SRC_MIN={0x6, 0x57, 0x4e22}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4008000}, 0x24004000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

36.829611954s ago: executing program 4 (id=2249):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r2)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)=@newqdisc={0x38, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x5}]}, 0x38}}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=@delchain={0x24, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0xa, 0x1b}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x4000)

36.743062645s ago: executing program 4 (id=2251):
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, 0x0, 0x8000)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
connect$can_bcm(r0, &(0x7f00000002c0), 0x10)
readv(r0, &(0x7f00000006c0)=[{&(0x7f0000001b80)=""/4064, 0xfe0}], 0x1)
sendmsg$can_bcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="05000000030800"/16, @ANYRES64=0x0, @ANYRES64=r0], 0x80}}, 0x0)

36.259161667s ago: executing program 4 (id=2263):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x4)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
mknodat(r1, &(0x7f0000000040)='./file1/file4/file5\x00', 0x100, 0xfffffffc)
renameat2(0xffffffffffffff9c, &(0x7f0000000600)='./file1/file4/file5\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00', 0x2)

36.24124273s ago: executing program 4 (id=2264):
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000a00)={0x0, 0x0, 0x0}, 0x0, 0x50, 0x1})
r0 = syz_io_uring_setup(0x2221, &(0x7f0000000100)={0x0, 0x6e7f, 0x800, 0x0, 0x5cc}, &(0x7f0000000280)=<r1=>0x0, &(0x7f00000005c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffa, 0x0, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000740)=[{0x0}], 0x1)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000200)=[{0x30, 0x4, 0x0, 0x2}]}, 0xffffffffffffff0e)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x1})
io_uring_enter(r0, 0x66ae, 0x4, 0x2, 0x0, 0x0)

35.806940296s ago: executing program 4 (id=2272):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x3e, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40ffffff07000000400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x20004015}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a400000000c0a01010000000000f9ff000a0000090900020073797a31000000200900010073797a310000000014000380100000800c00018006000100582e000014000000110001"], 0x68}, 0x1, 0x0, 0x0, 0x4004850}, 0x40)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x2c, 0xd, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)

35.806821826s ago: executing program 35 (id=2272):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x3e, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40ffffff07000000400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x20004015}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a400000000c0a01010000000000f9ff000a0000090900020073797a31000000200900010073797a310000000014000380100000800c00018006000100582e000014000000110001"], 0x68}, 0x1, 0x0, 0x0, 0x4004850}, 0x40)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x2c, 0xd, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)

2.612781184s ago: executing program 1 (id=2833):
socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = syz_io_uring_setup(0xbd9, &(0x7f0000000640)={0x0, 0xe826, 0x400, 0x1, 0x800021d}, &(0x7f0000000dc0)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0)

2.288051176s ago: executing program 7 (id=2838):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x5e, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x20000000)
r2 = syz_io_uring_setup(0x10d2, &(0x7f0000000540)={0x0, 0x7734, 0x80, 0x0, 0x34f}, &(0x7f0000000600)=<r3=>0x0, &(0x7f00000005c0)=<r4=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_RECVMSG={0xa, 0x4, 0x1cd83f7c25e05491, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x100, 0x1, {0x3}})
io_uring_enter(r2, 0x47bc, 0x685c, 0x2d, 0x0, 0x0)

2.083199563s ago: executing program 7 (id=2839):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='$\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x1000, 0x1)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0xfffffffe, 0x2, 0x8, 0x60005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
truncate(&(0x7f0000000900)='./file2\x00', 0xa4b9)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000002000000)

1.983259815s ago: executing program 8 (id=2840):
socket$inet_tcp(0x2, 0x1, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
socket$qrtr(0x2a, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = syz_io_uring_setup(0x497, &(0x7f0000000300)={0x0, 0x77bc, 0x10, 0x3, 0x285}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f00000003c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x8, 0xfffffffffffffffe, 0x0})
io_uring_enter(r0, 0x3498, 0x969, 0xffff000000000000, 0x0, 0x0)

1.875311319s ago: executing program 8 (id=2841):
epoll_create1(0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ff4000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89d, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff0}, {0xe, 0xffff}}}, 0x24}}, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x8)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1.533046863s ago: executing program 8 (id=2845):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3000001, 0x11, r0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x972, &(0x7f0000006680))
mknod$loop(&(0x7f0000002180)='./file0\x00', 0x800, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x0, 0x0, 0x0, 0x405, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x10000, &(0x7f0000001180)=ANY=[], 0x1, 0xa08, &(0x7f0000008280)="$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")
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFBR(r1, 0x8940, &(0x7f0000003040)=@generic={0x0, 0x9, 0xfffffffffffffff9})

1.463009832s ago: executing program 5 (id=2846):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
timer_settime(0x0, 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=@base={0x6, 0x4, 0x1010, 0x89}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000840)={0x0, &(0x7f0000000780)=""/106, &(0x7f0000000380), &(0x7f0000000000), 0x80, r0, 0x0, 0x7}, 0x38)

1.462866942s ago: executing program 8 (id=2847):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
io_uring_enter(0xffffffffffffffff, 0x0, 0xcb, 0xf, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x430, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0xa98, 0x3}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_usb_disconnect(0xffffffffffffffff)
ioprio_set$pid(0x2, 0x0, 0x4007)
timer_create(0xb, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)

1.378104233s ago: executing program 6 (id=2849):
rt_sigprocmask(0x0, &(0x7f00000000c0)={[0xfffffeffffffffff]}, 0x0, 0x8)
r0 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x12, 0x4, @tid=r0}, &(0x7f0000000380)=<r1=>0x0)
r2 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x12, 0x4, @tid=r2}, &(0x7f0000000380)=<r3=>0x0)
timer_settime(r3, 0x1, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, 0x0)
timer_settime(r1, 0x1, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r4 = gettid()
tkill(r4, 0x16)

1.313653942s ago: executing program 5 (id=2850):
r0 = io_uring_setup(0x1d48, &(0x7f0000000340)={0x0, 0x60b140, 0x0, 0x6, 0x3a2})
r1 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r1, 0x0, 0x0)
listen(r1, 0x4)
recvmmsg(r1, &(0x7f00000050c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000}}], 0x1, 0x40000100, 0x0)
close_range(r0, r1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000033000b3387dad256094bc7c308920fd2", 0x14}], 0x1}, 0x0)

1.137637064s ago: executing program 7 (id=2851):
r0 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd1f, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x4, 0xa}, {}, {0xfff2, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$gtp(&(0x7f0000000300), 0xffffffffffffffff)
r3 = socket(0x10, 0x803, 0x0)
getsockname$packet(r0, &(0x7f00000005c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000500)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="400000001000370400000000fcdbdf2500000000", @ANYRES32=r4, @ANYBLOB="890c04000000000020001280080001006774700014000280050005"], 0x40}}, 0x0)
sendmsg$GTP_CMD_DELPDP(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002cbd7000ffdbdf250100000008000200010000ef08000100", @ANYRES32=r4], 0x34}, 0x1, 0x0, 0x0, 0x8004}, 0x4)

1.135370505s ago: executing program 6 (id=2852):
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB], 0x48)
unshare(0x22020400)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x3800488, &(0x7f0000002200), 0x65, 0x786, &(0x7f00000007c0)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x38)
mount(&(0x7f0000003340)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000300)='./bus\x00', 0x6200, 0x5d)
preadv2(r0, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x100000}], 0x2, 0x0, 0x0, 0x0)

1.096878009s ago: executing program 5 (id=2853):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x72, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_config_ext={0x3, 0x4}, 0x11111a, 0x3, 0x0, 0x6, 0xfff, 0x8001, 0x7fff, 0x0, 0x0, 0x0, 0x100001}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$binfmt_aout(r2, &(0x7f00000000c0)=ANY=[], 0x20)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x12, r3, 0x0)
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x2d, 0x4, 0x0, 0x6, 0x2, 0x2, 0x102, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xa}, 0x0, 0x1, 0x3, 0x5, 0x5}, 0xffffffffffffffff, 0x0, r1, 0x0)

998.589772ms ago: executing program 1 (id=2854):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x900, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x20000041)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a300000000040000000030a09020000000000000000020000000900010073797a30000000000900030073797a3200000000140004800800014000000000080002400000000014000000110001"], 0x88}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0x5, 0x3, '\x00'}, @NFTA_MATCH_NAME={0xb, 0x1, 'socket\x00'}, @NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x88}, 0x1, 0x0, 0x0, 0x24044800}, 0x0)

980.815634ms ago: executing program 7 (id=2855):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f00000005c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x34, r4, 0x1, 0x1070bd0c, 0x4, {0x5}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaa8}, @L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x7}]}, 0x34}, 0x1, 0x0, 0x0, 0x40811}, 0x20)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010013bd70100400000005000000080009000200000008000c00a80a0000060001000700000008000b"], 0x34}}, 0x20)

972.058275ms ago: executing program 1 (id=2856):
r0 = socket(0x28, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000040)=0x3, 0x4)
r1 = epoll_create1(0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
pselect6(0x40, &(0x7f0000000100)={0x2, 0x0, 0xfffffffffffffff8, 0x0, 0x1, 0x10}, 0x0, &(0x7f0000000240)={0x1f, 0xc, 0x715, 0x8000000000000000, 0x0, 0x80000000000000, 0x800, 0x20000}, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100))
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000080)={0x2000a212})

946.222639ms ago: executing program 7 (id=2857):
r0 = socket(0x1e, 0x5, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0xfeda)
listen(r0, 0x0)
accept$packet(r0, 0x0, 0x0)
r1 = socket(0x1e, 0x805, 0x0)
getpeername(r0, &(0x7f00000001c0)=@ethernet={0x0, @remote}, &(0x7f0000000000)=0x80)
statx(0xffffffffffffffff, 0x0, 0x400, 0x400, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f00000000c0)=@req3={0x80000000, 0x0, 0x2}, 0x1c)
sendmsg$tipc(r1, &(0x7f0000000640)={&(0x7f0000000300)=@nameseq={0x1e, 0x1, 0x2, {0x43, 0x0, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x0)

897.651505ms ago: executing program 5 (id=2858):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000840)=@nameseq={0x1e, 0x1, 0x1, {0x42, 0x0, 0x1}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x200000, 0x3}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10)
sendmsg$tipc(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000090}, 0x95)
r2 = dup3(r0, r1, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, 0x0, 0x0)

897.456935ms ago: executing program 6 (id=2859):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
set_robust_list(&(0x7f0000000140)={0x0, 0x4}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0x9800, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf22}, 0x48)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0x1, 0x8470bd27, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x74614, 0x36a01}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0xc, 0x5, 0x0, 0x1, [@IFLA_BRPORT_STATE={0x5, 0x1, 0x33}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2400c081}, 0x8002)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

897.170365ms ago: executing program 6 (id=2860):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r4}, &(0x7f0000000280), &(0x7f0000000240)=r1}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r5, 0x4)
sendmsg$inet(r3, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

873.962428ms ago: executing program 6 (id=2861):
ioperm(0x7, 0x81, 0x2)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x401c2, 0x0)
ftruncate(r0, 0x8800000)
r1 = gettid()
timer_create(0x0, &(0x7f0000001640)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000600)={<r2=>0xffffffffffffffff})
sendfile(r2, r0, 0x0, 0x578410eb)
sendfile(r2, r0, 0x0, 0x100000000)

582.545355ms ago: executing program 8 (id=2862):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r1 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x2, 0x8}}, 0x20)

565.029708ms ago: executing program 8 (id=2863):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
timer_create(0x7, &(0x7f00000000c0)={0x0, 0x12}, &(0x7f0000000280))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setsig(r0, 0xa, 0x13)
fcntl$setlease(r0, 0x400, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x2000)

97.071318ms ago: executing program 7 (id=2864):
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file4\x00', 0x11c0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file4\x00', 0x1, 0x20)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file4\x00', &(0x7f00000000c0)={0x8a001, 0x0, 0x20}, 0x18)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file4\x00', &(0x7f00000002c0)={0x40000, 0x0, 0x22}, 0x18)

76.670331ms ago: executing program 1 (id=2865):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000400)=ANY=[@ANYBLOB="1400000010000100f7000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc08000340000000144c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a3100000000200003801c0000800c00018006000100d10300000c000440000000000000000114000000110001"], 0xb8}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002f40)=ANY=[@ANYBLOB="40000000210a010900000000000000000a0000010900020073797a31000000000900010073797a31"], 0x40}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
close_range(r0, 0xffffffffffffffff, 0x0)

51.159284ms ago: executing program 5 (id=2866):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000500)={0x9, 0x207, 0x5, 0x691}, 0x10)
write(r1, &(0x7f0000000000)="ed0d", 0x2)
sendto$inet6(r1, &(0x7f0000000400)='x', 0x1, 0x10, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x2}, 0x8)

599.98µs ago: executing program 1 (id=2867):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x10000, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10003, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000340)={0xa, 0x5, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffdfe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000480)=@gcm_256={{0x303}, '\x00', "e123c50bae528248d5552bff00", "7e25837b", "360000000002005f"}, 0x38)
write$binfmt_script(r0, &(0x7f0000000500)={'#! ', './file0'}, 0xb)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x1, 0xfc4e)
close_range(r0, r0, 0x0)

410.45µs ago: executing program 1 (id=2868):
r0 = gettid()
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = mq_open(&(0x7f0000001600)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\aXg\xbb\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x8a=\x0f\n*\x8a\x99\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5\x00\x00\x00\x00\x00\x00\x00\x01\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbbV\x1a\x8a\x03#T\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8', 0x40, 0xb, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
mq_open(&(0x7f0000000780)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\t\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x2, 0x136, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

243.79µs ago: executing program 5 (id=2869):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000013"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000780)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000001780)=""/4071, 0xfe7}], 0x12, 0x0, 0x0, 0x406}, 0x40020000)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0xfffe}], 0x1}, 0x0)

0s ago: executing program 6 (id=2870):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x101401, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x1, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0xffff0001, 0x7, 0x6361, 0x5, 0xffffffed, 0x6}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r4, {0x0, 0xc}, {0xb, 0xb}, {0xa, 0xb}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x5, 0xffffff81, 0xce, 0x2, 0x81, 0x8000, 0x18, 0x200, 0x1}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x405c071}, 0x4008000)
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r4, {0xb, 0xd}, {}, {0x8}}}, 0x24}}, 0x40004)

kernel console output (not intermixed with test programs):

967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.4.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  108.095362][   T29] audit: type=1326 audit(1768656891.990:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.4.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  108.119704][   T29] audit: type=1326 audit(1768656891.990:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.4.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  108.143146][   T29] audit: type=1326 audit(1768656891.990:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.4.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  108.167359][   T29] audit: type=1326 audit(1768656891.990:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.4.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  108.190729][   T29] audit: type=1326 audit(1768656891.990:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.4.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  108.214917][   T29] audit: type=1326 audit(1768656892.000:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.4.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  108.239056][   T29] audit: type=1326 audit(1768656892.000:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.4.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  108.262445][   T29] audit: type=1326 audit(1768656892.000:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.4.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  108.558175][ T7955] program syz.2.1517 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  108.834621][ T7977] bond1: Removing last ns target with arp_interval on
[  108.945937][ T7984] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1526'.
[  108.956631][ T7984] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1526'.
[  109.328561][ T8012] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.335763][ T8012] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.374889][ T8019] netlink: 'syz.1.1542': attribute type 29 has an invalid length.
[  109.467559][ T8023] netlink: 'syz.1.1542': attribute type 29 has an invalid length.
[  109.490406][ T8019] netlink: 500 bytes leftover after parsing attributes in process `syz.1.1542'.
[  109.500274][ T8019] unsupported nla_type 58
[  109.515052][ T8028] pimreg: entered allmulticast mode
[  109.529837][ T8028] pimreg: left allmulticast mode
[  109.668996][ T8036] loop6: detected capacity change from 0 to 128
[  109.707668][ T8036] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  109.725354][ T8036] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.017112][ T6782] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  110.190127][ T8058] netlink: 'syz.1.1553': attribute type 83 has an invalid length.
[  110.249003][ T8062] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1557'.
[  110.289370][ T8062] geneve2: entered promiscuous mode
[  110.376062][ T8068] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1559'.
[  110.843188][ T8097] netlink: 'syz.1.1571': attribute type 1 has an invalid length.
[  110.893589][ T8097] bond2: entered promiscuous mode
[  110.926905][ T8097] 8021q: adding VLAN 0 to HW filter on device bond2
[  111.019023][ T8097] bond2: (slave bridge4): making interface the new active one
[  111.026574][ T8097] bridge4: entered promiscuous mode
[  111.043446][ T8097] bridge4: left promiscuous mode
[  111.257471][ T8106] netlink: 'syz.6.1574': attribute type 13 has an invalid length.
[  112.177213][ T8104] net_ratelimit: 624 callbacks suppressed
[  112.177233][ T8104] Set syz1 is full, maxelem 65536 reached
[  112.215624][ T8151] netlink: 'syz.4.1592': attribute type 5 has an invalid length.
[  112.650509][ T8173] loop6: detected capacity change from 0 to 256
[  112.934838][ T8192] netlink: 'syz.6.1604': attribute type 4 has an invalid length.
[  112.975578][ T8163] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.982953][ T8163] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.721795][ T8163] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  113.778608][ T8163] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  113.805025][ T8200] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1611'.
[  113.822633][ T8202] xt_hashlimit: size too large, truncated to 1048576
[  114.105137][ T8214] loop5: detected capacity change from 0 to 128
[  114.124041][ T8214] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  114.261925][ T8222] netlink: 'syz.5.1620': attribute type 1 has an invalid length.
[  114.390447][ T8163] team1: left promiscuous mode
[  114.395378][ T8163] team1: left allmulticast mode
[  114.409055][ T8163] geneve2: left promiscuous mode
[  114.417118][ T8163] bond2: left promiscuous mode
[  114.454666][ T8224] bond1: (slave ip6gre1): The slave device specified does not support setting the MAC address
[  114.465178][ T8224] bond1: (slave ip6gre1): Setting fail_over_mac to active for active-backup mode
[  114.522838][ T8224] bond1: (slave ip6gre1): making interface the new active one
[  114.540718][ T8224] bond1: (slave ip6gre1): Enslaving as an active interface with an up link
[  114.551245][ T8225] bond1: option fail_over_mac: unable to set because the bond device has slaves
[  114.561214][ T1766] netdevsim netdevsim1 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  114.569718][ T1766] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.579383][ T1766] netdevsim netdevsim1 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  114.587850][ T1766] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.596558][ T1766] netdevsim netdevsim1 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  114.605001][ T1766] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.613518][ T1766] netdevsim netdevsim1 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  114.622260][ T1766] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.718418][ T8240] xt_hashlimit: size too large, truncated to 1048576
[  114.746635][ T8242] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1627'.
[  114.824779][ T8242] hsr_slave_1 (unregistering): left promiscuous mode
[  114.975989][ T8251] netlink: 188 bytes leftover after parsing attributes in process `syz.4.1630'.
[  114.985206][ T8251] netlink: 188 bytes leftover after parsing attributes in process `syz.4.1630'.
[  115.091084][ T8256] netlink: 'syz.5.1631': attribute type 4 has an invalid length.
[  115.159338][ T8259] xt_CT: You must specify a L4 protocol and not use inversions on it
[  115.251339][ T8262] loop6: detected capacity change from 0 to 8192
[  115.259222][ T8269] ref_ctr increment failed for inode: 0x768 offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff88811cb9a880
[  115.274449][ T8268] uprobe: syz.4.1637:8268 failed to unregister, leaking uprobe
[  115.360798][ T6782] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000e1b1)
[  115.368741][ T6782] FAT-fs (loop6): Filesystem has been set read-only
[  115.430777][ T8274] gtp0: entered promiscuous mode
[  115.434238][ T8278] sctp: [Deprecated]: syz.4.1640 (pid 8278) Use of struct sctp_assoc_value in delayed_ack socket option.
[  115.434238][ T8278] Use struct sctp_sack_info instead
[  115.453988][ T8278] sctp: [Deprecated]: syz.4.1640 (pid 8278) Use of struct sctp_assoc_value in delayed_ack socket option.
[  115.453988][ T8278] Use struct sctp_sack_info instead
[  115.494901][ T8281] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1643'.
[  115.505248][   T29] kauditd_printk_skb: 64 callbacks suppressed
[  115.505265][   T29] audit: type=1400 audit(1768656899.480:738): avc:  denied  { read } for  pid=8279 comm="syz.6.1642" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  116.132781][ T8309] SELinux: ebitmap: empty map
[  116.137936][ T8309] SELinux: failed to load policy
[  116.203977][ T8316] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1656'.
[  116.656968][ T8345] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1667'.
[  117.104574][ T8325] Set syz1 is full, maxelem 65536 reached
[  117.317046][ T8377] syzkaller1: entered promiscuous mode
[  117.322645][ T8377] syzkaller1: entered allmulticast mode
[  117.427811][   T29] audit: type=1400 audit(1768656901.400:739): avc:  denied  { accept } for  pid=8382 comm="syz.2.1681" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  117.483317][ T8387] loop2: detected capacity change from 0 to 512
[  117.491894][ T8387] EXT4-fs (loop2): external journal device major/minor numbers have changed
[  117.521215][ T8387] EXT4-fs (loop2): failed to open journal device unknown-block(0,8) -6
[  117.537246][ T8391] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1684'.
[  117.741913][ T8402] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1688'.
[  118.507949][ T8466] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1713'.
[  118.516977][ T8466] netlink: 'syz.1.1713': attribute type 5 has an invalid length.
[  118.634273][   T29] audit: type=1400 audit(1768656902.600:740): avc:  denied  { remount } for  pid=8471 comm="syz.2.1715" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  119.045326][ T8518] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1734'.
[  119.106534][   T29] audit: type=1326 audit(1768656903.080:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8519 comm="syz.6.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a410facb9 code=0x7ffc0000
[  119.174836][   T29] audit: type=1326 audit(1768656903.080:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8519 comm="syz.6.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4a410bb58e code=0x7ffc0000
[  119.199044][   T29] audit: type=1326 audit(1768656903.080:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8519 comm="syz.6.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a410facb9 code=0x7ffc0000
[  119.222556][   T29] audit: type=1326 audit(1768656903.080:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8519 comm="syz.6.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4a410bb58e code=0x7ffc0000
[  119.246686][   T29] audit: type=1326 audit(1768656903.080:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8519 comm="syz.6.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4a410bb58e code=0x7ffc0000
[  119.270487][   T29] audit: type=1326 audit(1768656903.080:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8519 comm="syz.6.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4a410bb58e code=0x7ffc0000
[  119.294598][   T29] audit: type=1326 audit(1768656903.080:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8519 comm="syz.6.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4a410bb58e code=0x7ffc0000
[  119.321982][ T8531] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1740'.
[  119.721496][ T8545] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1745'.
[  120.457703][ T8570] loop5: detected capacity change from 0 to 128
[  120.481627][ T8570] vfat: Unknown parameter 's'
[  120.772682][ T8579] netlink: 68 bytes leftover after parsing attributes in process `syz.5.1761'.
[  120.965768][ T8593] netlink: 2028 bytes leftover after parsing attributes in process `syz.2.1764'.
[  120.975552][ T8593] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1764'.
[  121.017217][ T8597] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[  121.498553][ T8623] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1777'.
[  121.530711][   T29] kauditd_printk_skb: 608 callbacks suppressed
[  121.530729][   T29] audit: type=1326 audit(1768656905.500:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8624 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  121.564607][   T29] audit: type=1326 audit(1768656905.500:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8624 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  121.588934][   T29] audit: type=1326 audit(1768656905.500:1358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8624 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  121.612492][   T29] audit: type=1326 audit(1768656905.500:1359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8624 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  121.636608][   T29] audit: type=1326 audit(1768656905.500:1360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8624 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  121.660093][   T29] audit: type=1326 audit(1768656905.500:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8624 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  121.683742][   T29] audit: type=1326 audit(1768656905.500:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8624 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  121.707898][   T29] audit: type=1326 audit(1768656905.500:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8624 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  121.731669][   T29] audit: type=1326 audit(1768656905.500:1364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8624 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  121.755801][   T29] audit: type=1326 audit(1768656905.500:1365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8624 comm="syz.4.1778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40c1f8acb9 code=0x7ffc0000
[  121.809995][ T8633] -1: renamed from syzkaller0
[  121.849398][ T8637] loop2: detected capacity change from 0 to 7
[  122.128474][ T8653] 9p: Bad value for 'wfdno'
[  122.296426][ T3888] IPVS: starting estimator thread 0...
[  122.396083][ T8670] IPVS: using max 2256 ests per chain, 112800 per kthread
[  122.487985][ T8684] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.559148][ T8684] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.627721][ T8684] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.697461][ T8684] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.783571][  T970] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  122.807030][  T970] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  122.831138][ T8632] syz.4.1782 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  122.845244][ T8632] CPU: 0 UID: 0 PID: 8632 Comm: syz.4.1782 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  122.845282][ T8632] Tainted: [W]=WARN
[  122.845289][ T8632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  122.845301][ T8632] Call Trace:
[  122.845307][ T8632]  <TASK>
[  122.845314][ T8632]  __dump_stack+0x1d/0x30
[  122.845357][  T970] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  122.845340][ T8632]  dump_stack_lvl+0x95/0xd0
[  122.845497][ T8632]  dump_stack+0x15/0x1b
[  122.845591][ T8632]  dump_header+0x80/0x240
[  122.845656][ T8632]  oom_kill_process+0x295/0x350
[  122.845800][ T8632]  out_of_memory+0x97d/0xb80
[  122.845873][ T8632]  try_charge_memcg+0x62e/0xa10
[  122.846006][ T8632]  obj_cgroup_charge_pages+0xa6/0x150
[  122.846127][ T8632]  __memcg_kmem_charge_page+0x9e/0x170
[  122.846175][ T8632]  __alloc_frozen_pages_noprof+0x18a/0x350
[  122.846277][ T8632]  alloc_pages_mpol+0xb3/0x260
[  122.846366][ T8632]  alloc_pages_noprof+0x8f/0x130
[  122.846453][ T8632]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  122.846568][ T8632]  __kvmalloc_node_noprof+0x471/0x680
[  122.846721][ T8632]  ? ip_set_alloc+0x24/0x30
[  122.846914][ T8632]  ? ip_set_alloc+0x24/0x30
[  122.847036][ T8632]  ? __kmalloc_cache_noprof+0x3cd/0x4a0
[  122.847116][ T8632]  ip_set_alloc+0x24/0x30
[  122.847285][ T8632]  hash_netiface_create+0x282/0x740
[  122.847391][ T8632]  ? __pfx_hash_netiface_create+0x10/0x10
[  122.847609][ T8632]  ip_set_create+0x3cf/0x970
[  122.847716][ T8632]  ? __nla_parse+0x40/0x60
[  122.847859][ T8632]  nfnetlink_rcv_msg+0x509/0x5d0
[  122.848039][ T8632]  netlink_rcv_skb+0x123/0x220
[  122.848156][ T8632]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  122.848286][ T8632]  nfnetlink_rcv+0x167/0x1720
[  122.848446][ T8632]  ? __kfree_skb+0x109/0x150
[  122.848539][ T8632]  ? nlmon_xmit+0x4f/0x60
[  122.848614][ T8632]  ? consume_skb+0x49/0x140
[  122.848768][ T8632]  ? nlmon_xmit+0x4f/0x60
[  122.848838][ T8632]  ? dev_hard_start_xmit+0x3a8/0x3e0
[  122.849038][ T8632]  ? __dev_queue_xmit+0x139a/0x1f20
[  122.849143][ T8632]  ? __dev_queue_xmit+0x148/0x1f20
[  122.849247][ T8632]  ? mas_wr_walk_descend+0x36e/0x470
[  122.849440][ T8632]  ? ref_tracker_free+0x37d/0x3e0
[  122.849585][ T8632]  ? __netlink_deliver_tap+0x4dc/0x500
[  122.849753][ T8632]  netlink_unicast+0x5c0/0x690
[  122.849905][ T8632]  netlink_sendmsg+0x5c8/0x6f0
[  122.849977][ T8632]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.850058][ T8632]  __sock_sendmsg+0x145/0x170
[  122.850189][ T8632]  ____sys_sendmsg+0x31e/0x4a0
[  122.850303][ T8632]  ___sys_sendmsg+0x195/0x1e0
[  122.850501][ T8632]  __x64_sys_sendmsg+0xd4/0x160
[  122.850611][ T8632]  x64_sys_call+0x17ba/0x3000
[  122.850770][ T8632]  do_syscall_64+0xc0/0x2a0
[  122.850858][ T8632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.850932][ T8632] RIP: 0033:0x7f40c1f8acb9
[  122.850984][ T8632] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  122.851053][ T8632] RSP: 002b:00007f40c09e7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.851147][ T8632] RAX: ffffffffffffffda RBX: 00007f40c2205fa0 RCX: 00007f40c1f8acb9
[  122.851199][ T8632] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000004
[  122.851250][ T8632] RBP: 00007f40c1ff8bf7 R08: 0000000000000000 R09: 0000000000000000
[  122.851285][ T8632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  122.851327][ T8632] R13: 00007f40c2206038 R14: 00007f40c2205fa0 R15: 00007ffda3725908
[  122.851384][ T8632]  </TASK>
[  122.851707][ T8632] memory: usage 307200kB, limit 307200kB, failcnt 3738
[  123.079498][  T970] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  123.080524][ T8632] memory+swap: usage 375420kB, limit 9007199254740988kB, failcnt 0
[  123.222334][ T8632] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  123.229693][ T8632] Memory cgroup stats for /syz4:
[  123.230844][ T8632] cache 4096
[  123.239811][ T8632] rss 0
[  123.242593][ T8632] shmem 0
[  123.245569][ T8632] mapped_file 4096
[  123.249378][ T8632] dirty 0
[  123.252333][ T8632] writeback 0
[  123.255669][ T8632] workingset_refault_anon 104
[  123.260562][ T8632] workingset_refault_file 1197
[  123.265417][ T8632] swap 69861376
[  123.269603][ T8632] swapcached 0
[  123.273186][ T8632] pgpgin 110489
[  123.276807][ T8632] pgpgout 110488
[  123.280377][ T8632] pgfault 118460
[  123.284016][ T8632] pgmajfault 90
[  123.287551][ T8632] inactive_anon 0
[  123.291221][ T8632] active_anon 0
[  123.294702][ T8632] inactive_file 0
[  123.299034][ T8632] active_file 4096
[  123.302777][ T8632] unevictable 0
[  123.306358][ T8632] hierarchical_memory_limit 314572800
[  123.311746][ T8632] hierarchical_memsw_limit 9223372036854771712
[  123.318062][ T8632] total_cache 4096
[  123.321819][ T8632] total_rss 0
[  123.325123][ T8632] total_shmem 0
[  123.329383][ T8632] total_mapped_file 4096
[  123.333719][ T8632] total_dirty 0
[  123.337249][ T8632] total_writeback 0
[  123.341088][ T8632] total_workingset_refault_anon 104
[  123.346337][ T8632] total_workingset_refault_file 1197
[  123.351645][ T8632] total_swap 69861376
[  123.356337][ T8632] total_swapcached 0
[  123.360324][ T8632] total_pgpgin 110489
[  123.364325][ T8632] total_pgpgout 110488
[  123.368451][ T8632] total_pgfault 118460
[  123.372608][ T8632] total_pgmajfault 90
[  123.376689][ T8632] total_inactive_anon 0
[  123.380871][ T8632] total_active_anon 0
[  123.385019][ T8632] total_inactive_file 0
[  123.390069][ T8632] total_active_file 4096
[  123.394381][ T8632] total_unevictable 0
[  123.398521][ T8632] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1782,pid=8631,uid=0
[  123.413293][ T8632] Memory cgroup out of memory: Killed process 8631 (syz.4.1782) total-vm:96180kB, anon-rss:1332kB, file-rss:22228kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:0
[  123.643926][ T8712] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1815'.
[  123.687732][ T8712] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  123.754493][ T8721] netlink: 'syz.1.1818': attribute type 1 has an invalid length.
[  123.777677][ T8721] 8021q: adding VLAN 0 to HW filter on device bond3
[  123.812346][ T8721] bond3: (slave veth9): Enslaving as an active interface with a down link
[  123.842456][ T8721] 8021q: adding VLAN 0 to HW filter on device batadv1
[  123.855891][ T8721] bond3: (slave batadv1): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open
[  123.875744][ T8732] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1822'.
[  124.073409][ T8750] geneve3: entered promiscuous mode
[  124.078746][ T8750] geneve3: entered allmulticast mode
[  124.090963][ T8753] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1832'.
[  124.102316][ T8753] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1832'.
[  124.111428][ T8753] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1832'.
[  124.172754][ T8762] netlink: 'syz.1.1836': attribute type 1 has an invalid length.
[  124.181239][ T8762] netlink: 'syz.1.1836': attribute type 4 has an invalid length.
[  124.189128][ T8762] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.1836'.
[  124.199286][ T8762] netlink: 'syz.1.1836': attribute type 1 has an invalid length.
[  124.207126][ T8762] netlink: 'syz.1.1836': attribute type 4 has an invalid length.
[  124.215006][ T8762] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.1836'.
[  124.249001][ T8767] netdevsim netdevsim2 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  124.258892][ T8767] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.274247][ T8769] loop5: detected capacity change from 0 to 512
[  124.300390][ T8769] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.314103][ T8769] ext4 filesystem being mounted at /133/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  124.327545][ T8767] netdevsim netdevsim2 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  124.337382][ T8767] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.368217][ T6732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.391201][ T8780] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1842'.
[  124.414832][ T8780] bond2: entered promiscuous mode
[  124.421077][ T8780] 8021q: adding VLAN 0 to HW filter on device bond2
[  124.431028][ T8767] netdevsim netdevsim2 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  124.441331][ T8767] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.517957][ T8767] netdevsim netdevsim2 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  124.527908][ T8767] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.598671][ T8800] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  124.618491][ T1766] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  124.627529][ T1766] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  124.640145][ T8802] netlink: 'syz.5.1852': attribute type 1 has an invalid length.
[  124.663607][ T8802] 8021q: adding VLAN 0 to HW filter on device bond3
[  124.692234][ T1766] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  124.700547][ T1766] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  124.716495][ T8802] bond3: (slave ip6gretap1): making interface the new active one
[  124.736024][ T8802] bond3: (slave ip6gretap1): Enslaving as an active interface with an up link
[  124.745005][ T1766] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  124.753964][ T1766] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  124.791890][ T1766] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  124.800241][ T1766] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  124.868489][ T8813] netlink: 'syz.5.1856': attribute type 1 has an invalid length.
[  124.897070][ T8813] 8021q: adding VLAN 0 to HW filter on device bond4
[  124.932967][ T8813] bond4: (slave veth5): Enslaving as an active interface with a down link
[  124.993889][ T8820] 8021q: adding VLAN 0 to HW filter on device batadv1
[  125.029977][ T8820] bond4: (slave batadv1): making interface the new active one
[  125.072316][ T8820] batadv1: entered promiscuous mode
[  125.090428][ T8820] bond4: (slave batadv1): Enslaving as an active interface with an up link
[  125.169205][ T8830] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1862'.
[  125.728852][ T8861] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  125.826305][ T8875] loop6: detected capacity change from 0 to 512
[  125.833046][ T8875] EXT4-fs: Ignoring removed i_version option
[  125.839242][ T8875] EXT4-fs: Ignoring removed nobh option
[  125.853448][ T8875] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  125.865004][ T8875] EXT4-fs (loop6): 1 truncate cleaned up
[  125.871561][ T8875] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.976616][ T6782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.109429][ T8897] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1891'.
[  126.127559][ T8898] bridge0: port 3(gretap0) entered blocking state
[  126.134073][ T8898] bridge0: port 3(gretap0) entered disabled state
[  126.141045][ T8898] gretap0: entered allmulticast mode
[  126.147303][ T8898] gretap0: entered promiscuous mode
[  126.154698][ T8897] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1891'.
[  126.268298][ T8905] loop6: detected capacity change from 0 to 512
[  126.299412][ T8905] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.320320][ T8905] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  126.361757][ T8913] syzkaller1: entered promiscuous mode
[  126.368117][ T8913] syzkaller1: entered allmulticast mode
[  126.401425][ T6782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.582734][ T8927] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1902'.
[  126.601975][ T8920] geneve0: entered promiscuous mode
[  126.607357][ T8920] geneve0: entered allmulticast mode
[  126.624030][   T29] kauditd_printk_skb: 56 callbacks suppressed
[  126.624043][   T29] audit: type=1326 audit(1768656910.590:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8869 comm="syz.5.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7fc00000
[  126.847529][   T29] audit: type=1326 audit(1768656910.820:1423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  126.871796][   T29] audit: type=1326 audit(1768656910.820:1424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  126.966260][   T29] audit: type=1326 audit(1768656910.850:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  126.990426][   T29] audit: type=1326 audit(1768656910.870:1426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdd0d79aa22 code=0x7ffc0000
[  127.014150][   T29] audit: type=1326 audit(1768656910.870:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdd0d79aa22 code=0x7ffc0000
[  127.038020][   T29] audit: type=1326 audit(1768656910.880:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  127.061904][   T29] audit: type=1326 audit(1768656910.880:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  127.165423][ T8950] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000
[  127.409082][   T29] audit: type=1400 audit(1768656911.380:1430): avc:  denied  { read } for  pid=8982 comm="syz.6.1925" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  127.829273][ T9002] loop5: detected capacity change from 0 to 128
[  127.846702][ T9002] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  127.854682][ T9002] System zones: 1-3, 19-19, 35-36
[  127.863167][ T9002] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  127.875457][ T9002] ext4 filesystem being mounted at /150/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  127.887331][ T9002] EXT4-fs warning (device loop5): ext4_group_extend:1862: can't shrink FS - resize aborted
[  127.946125][ T6732] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  128.128553][   T29] audit: type=1400 audit(1768656912.100:1431): avc:  denied  { add_name } for  pid=9025 comm="syz.5.1941" name="vlan1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=dir permissive=1
[  128.304294][ T9033] loop6: detected capacity change from 0 to 1024
[  128.317959][ T9033] EXT4-fs: Ignoring removed orlov option
[  128.339764][ T9033] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.721669][ T6782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.095988][ T9084] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.138850][ T9084] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.188432][ T9084] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.238569][ T9084] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.294973][ T1766] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  129.306966][ T3617] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  129.319182][ T3617] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  129.331253][ T3617] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  129.589431][ T3617] gretap0: left allmulticast mode
[  129.594543][ T3617] gretap0: left promiscuous mode
[  129.599740][ T3617] bridge0: port 3(gretap0) entered disabled state
[  129.613791][ T3617] bridge_slave_1: left allmulticast mode
[  129.620378][ T3617] bridge_slave_1: left promiscuous mode
[  129.626176][ T3617] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.634265][ T3617] bridge_slave_0: left allmulticast mode
[  129.640128][ T3617] bridge_slave_0: left promiscuous mode
[  129.646656][ T3617] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.789919][ T3617] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  129.807929][ T3617] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  129.826908][ T3617] bond0 (unregistering): Released all slaves
[  129.834391][ T3617] bond1 (unregistering): Released all slaves
[  129.941856][ T3617] tipc: Disabling bearer <udp:syz2>
[  129.947341][ T3617] tipc: Left network mode
[  129.975415][ T9086] chnl_net:caif_netlink_parms(): no params data found
[  130.126688][ T3617] hsr_slave_0: left promiscuous mode
[  130.135838][ T3617] hsr_slave_1: left promiscuous mode
[  130.141950][ T3617] batman_adv: batadv0: Removing interface: batadv_slave_0
[  130.149821][ T3617] batman_adv: batadv0: Removing interface: batadv_slave_1
[  130.166463][ T9132] __nla_validate_parse: 8 callbacks suppressed
[  130.166482][ T9132] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1977'.
[  130.214400][ T3617] team0 (unregistering): Port device team_slave_1 removed
[  130.226311][ T3617] team0 (unregistering): Port device team_slave_0 removed
[  130.351648][ T9086] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.359116][ T9086] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.367731][ T9086] bridge_slave_0: entered allmulticast mode
[  130.374394][ T9086] bridge_slave_0: entered promiscuous mode
[  130.384241][ T9086] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.391541][ T9086] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.399711][ T9086] bridge_slave_1: entered allmulticast mode
[  130.406498][ T9086] bridge_slave_1: entered promiscuous mode
[  130.444324][ T9086] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  130.467307][ T9086] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  130.490743][ T9086] team0: Port device team_slave_0 added
[  130.527955][ T9086] team0: Port device team_slave_1 added
[  130.542675][ T9149] loop5: detected capacity change from 0 to 512
[  130.565272][ T9086] batman_adv: batadv0: Adding interface: batadv_slave_0
[  130.572305][ T9086] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  130.587628][ T9149] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  130.599992][ T9086] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  130.651588][ T9149] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0102]
[  130.663193][ T9149] EXT4-fs error (device loop5): ext4_iget_extra_inode:5073: inode #15: comm syz.5.1982: corrupted in-inode xattr: e_value size too large
[  130.679354][ T9086] batman_adv: batadv0: Adding interface: batadv_slave_1
[  130.686463][ T9086] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  130.712530][ T9086] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  130.723676][ T9149] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.1982: couldn't read orphan inode 15 (err -117)
[  130.736646][ T9149] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.768242][ T9086] hsr_slave_0: entered promiscuous mode
[  130.774753][ T9086] hsr_slave_1: entered promiscuous mode
[  130.781031][ T9086] debugfs: 'hsr0' already exists in 'hsr'
[  130.786816][ T9086] Cannot create hsr debugfs directory
[  130.789580][ T9149] EXT4-fs error (device loop5): ext4_check_dx_root:2201: inode #2: comm syz.5.1982: Corrupt dir, invalid name_len for '..', running e2fsck is recommended
[  130.887893][ T6732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.205751][ T9086] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  131.223051][ T9193] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1991'.
[  131.232530][ T9193] unsupported nlmsg_type 40
[  131.241006][ T9086] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  131.262051][ T9086] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  131.281814][ T9086] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  131.417867][ T9086] 8021q: adding VLAN 0 to HW filter on device bond0
[  131.474148][ T9086] 8021q: adding VLAN 0 to HW filter on device team0
[  131.510114][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.517310][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.537670][  T970] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.544780][  T970] bridge0: port 2(bridge_slave_1) entered forwarding state
[  131.589083][ T9220] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1995'.
[  131.632096][ T9220] 8021q: adding VLAN 0 to HW filter on device bond1
[  131.717767][ T9224] 8021q: adding VLAN 0 to HW filter on device bond0
[  131.743893][ T9224] bond1: (slave bond0): Enslaving as an active interface with an up link
[  131.820302][ T9220] bond1 (unregistering): (slave bond0): Releasing backup interface
[  131.864602][   T53] nci: nci_extract_activation_params_iso_dep: unsupported activation_rf_tech_and_mode 0x6
[  131.881601][ T9220] bond1 (unregistering): Released all slaves
[  131.894735][ T9249] loop5: detected capacity change from 0 to 128
[  132.031719][ T9086] 8021q: adding VLAN 0 to HW filter on device batadv0
[  132.044990][   T29] kauditd_printk_skb: 5 callbacks suppressed
[  132.045039][   T29] audit: type=1400 audit(1768656916.010:1437): avc:  denied  { create } for  pid=9264 comm="syz.5.2001" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  132.149822][   T29] audit: type=1400 audit(1768656916.050:1438): avc:  denied  { setopt } for  pid=9264 comm="syz.5.2001" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  132.228225][ T9279] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2004'.
[  132.336417][ T9295] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2008'.
[  132.389023][ T9086] veth0_vlan: entered promiscuous mode
[  132.401788][ T9086] veth1_vlan: entered promiscuous mode
[  132.436722][ T9086] veth0_macvtap: entered promiscuous mode
[  132.467695][ T9086] veth1_macvtap: entered promiscuous mode
[  132.496255][ T9086] batman_adv: batadv0: Interface activated: batadv_slave_0
[  132.515655][ T9086] batman_adv: batadv0: Interface activated: batadv_slave_1
[  132.526463][ T6271] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.546434][ T9308] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2013'.
[  132.589667][ T6271] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.608601][ T6271] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.649979][ T6271] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.659686][ T9312] loop2: detected capacity change from 0 to 128
[  132.695578][ T9312] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  132.737079][ T9312] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  132.754202][ T9312] ext2 filesystem being mounted at /369/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.754532][   T29] audit: type=1400 audit(1768656916.720:1439): avc:  denied  { connect } for  pid=9331 comm="syz.4.2023" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  132.799662][ T3326] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  132.850574][ T9319] lo: Caught tx_queue_len zero misconfig
[  133.158914][   T29] audit: type=1400 audit(1768656917.120:1440): avc:  denied  { unmount } for  pid=9358 comm="syz.4.2031" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=filesystem permissive=1
[  133.736500][ T9376] syzkaller0: entered allmulticast mode
[  133.749659][ T9376] syzkaller0: entered promiscuous mode
[  133.786019][ T9377] uprobe: syz.1.2037:9377 failed to unregister, leaking uprobe
[  133.828884][ T9378] syzkaller0 (unregistering): left allmulticast mode
[  133.835712][ T9378] syzkaller0 (unregistering): left promiscuous mode
[  133.945272][ T9385] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2041'.
[  133.960294][ T9388] loop2: detected capacity change from 0 to 128
[  134.072217][ T9388] syz.2.2042: attempt to access beyond end of device
[  134.072217][ T9388] loop2: rw=2049, sector=169, nr_sectors = 24 limit=128
[  134.086262][ T9388] syz.2.2042: attempt to access beyond end of device
[  134.086262][ T9388] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[  134.101991][ T9388] syz.2.2042: attempt to access beyond end of device
[  134.101991][ T9388] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[  134.122005][ T9388] syz.2.2042: attempt to access beyond end of device
[  134.122005][ T9388] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[  134.137136][ T9388] syz.2.2042: attempt to access beyond end of device
[  134.137136][ T9388] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[  134.190229][ T9388] syz.2.2042: attempt to access beyond end of device
[  134.190229][ T9388] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[  134.210302][ T9388] syz.2.2042: attempt to access beyond end of device
[  134.210302][ T9388] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[  134.239913][ T9388] syz.2.2042: attempt to access beyond end of device
[  134.239913][ T9388] loop2: rw=2049, sector=297, nr_sectors = 8 limit=128
[  134.253586][ T9388] syz.2.2042: attempt to access beyond end of device
[  134.253586][ T9388] loop2: rw=2049, sector=313, nr_sectors = 8 limit=128
[  134.267256][ T9388] syz.2.2042: attempt to access beyond end of device
[  134.267256][ T9388] loop2: rw=2049, sector=329, nr_sectors = 8 limit=128
[  134.470827][   T29] audit: type=1400 audit(1768656918.440:1441): avc:  denied  { watch watch_reads } for  pid=9405 comm="syz.1.2048" path="/" dev="configfs" ino=2049 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  134.741390][ T9414] netlink: 'syz.1.2052': attribute type 13 has an invalid length.
[  134.819088][ T9414] gretap0: refused to change device tx_queue_len
[  134.840427][ T9414] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  135.145817][   T29] audit: type=1400 audit(1768656919.110:1442): avc:  denied  { ioctl } for  pid=9424 comm="syz.1.2058" path="socket:[28073]" dev="sockfs" ino=28073 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  135.183246][ T9428] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2056'.
[  135.222580][   T29] audit: type=1400 audit(1768656919.150:1443): avc:  denied  { bind } for  pid=9427 comm="syz.6.2056" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  135.241975][   T29] audit: type=1400 audit(1768656919.150:1444): avc:  denied  { write } for  pid=9427 comm="syz.6.2056" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  135.602806][ T9433] team_slave_1: Caught tx_queue_len zero misconfig
[  135.968425][ T3406] IPVS: starting estimator thread 0...
[  136.065853][ T9458] IPVS: using max 2496 ests per chain, 124800 per kthread
[  136.136285][ T9473] loop2: detected capacity change from 0 to 1024
[  136.145491][ T9473] EXT4-fs: Ignoring removed oldalloc option
[  136.176837][ T9473] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.177798][ T9477] netlink: 'syz.4.2077': attribute type 1 has an invalid length.
[  136.190045][ T9473] ext4 filesystem being mounted at /374/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.221048][ T9473] EXT4-fs: Ignoring sb option on remount
[  136.226856][ T9473] EXT4-fs (loop2): stripe (249) is not aligned with cluster size (16), stripe is disabled
[  136.238136][ T9473] EXT4-fs (loop2): re-mounted 00000000-0000-0006-0000-000000000000.
[  136.261126][ T9477] bond1: entered promiscuous mode
[  136.266210][ T9477] bond1: entered allmulticast mode
[  136.271512][ T9477] 8021q: adding VLAN 0 to HW filter on device bond1
[  136.290199][ T9477] macvlan0: entered promiscuous mode
[  136.295542][ T9477] macvlan0: entered allmulticast mode
[  136.302411][ T9477] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  136.315192][ T3326] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  136.416599][ T3617] batadv1: left promiscuous mode
[  136.504629][ T9500] 9p: Unknown access argument 18446744073709551615: -34
[  136.511734][   T29] audit: type=1400 audit(1768656920.470:1445): avc:  denied  { mounton } for  pid=9499 comm="syz.4.2083" path="/462/file0" dev="tmpfs" ino=2414 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  136.869154][   T29] audit: type=1400 audit(1768656920.840:1446): avc:  denied  { write } for  pid=9513 comm="syz.4.2090" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  136.902098][ T9519] loop5: detected capacity change from 0 to 1024
[  136.905849][ T9514] SELinux: failed to load policy
[  136.920016][ T9519] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.953680][ T6732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.979189][ T9524] loop5: detected capacity change from 0 to 128
[  137.345133][ T9554] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2105'.
[  137.455572][ T9555] cgroup: fork rejected by pids controller in /syz1
[  137.599209][T10392] l2tp_ppp: sess 2/0: no socket in recv
[  137.698453][T10942] tipc: Started in network mode
[  137.703410][T10942] tipc: Node identity 84e, cluster identity 4711
[  137.710601][T10942] tipc: Node number set to 2126
[  137.999112][T12226] loop6: detected capacity change from 0 to 256
[  138.058207][T12226] FAT-fs (loop6): Directory bread(block 64) failed
[  138.066048][T12226] FAT-fs (loop6): Directory bread(block 65) failed
[  138.102395][T12226] FAT-fs (loop6): Directory bread(block 66) failed
[  138.128246][T12226] FAT-fs (loop6): Directory bread(block 67) failed
[  138.229683][T12226] FAT-fs (loop6): Directory bread(block 68) failed
[  138.255738][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  138.255756][   T29] audit: type=1400 audit(1768656922.220:1449): avc:  denied  { watch watch_reads } for  pid=13826 comm="syz.2.2124" path="/proc/910/task" dev="proc" ino=28335 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  138.286783][T12226] FAT-fs (loop6): Directory bread(block 69) failed
[  138.293477][T12226] FAT-fs (loop6): Directory bread(block 70) failed
[  138.311979][T12226] FAT-fs (loop6): Directory bread(block 71) failed
[  138.325391][T12226] FAT-fs (loop6): Directory bread(block 72) failed
[  138.345041][T13831] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2126'.
[  138.356203][T12226] FAT-fs (loop6): Directory bread(block 73) failed
[  138.379206][T13831] netlink: 'syz.1.2126': attribute type 1 has an invalid length.
[  138.428518][T11579] syzkaller1: entered promiscuous mode
[  138.434059][T11579] syzkaller1: entered allmulticast mode
[  138.581726][T13841] syz_tun: entered allmulticast mode
[  138.595069][T13840] syz_tun: left allmulticast mode
[  138.668169][T13845] loop6: detected capacity change from 0 to 512
[  138.686371][T13845] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  138.722467][T13845] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.729000][T13852] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2135'.
[  138.744419][T13845] ext4 filesystem being mounted at /26/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  138.859979][   T29] audit: type=1400 audit(1768656922.830:1450): avc:  denied  { ioctl } for  pid=13844 comm="syz.6.2133" path="/26/bus/file1" dev="loop6" ino=15 ioctlcmd=0x660f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  138.929195][ T9086] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.954554][   T12] netdevsim netdevsim2 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  138.964464][   T12] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.992351][T13865] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  139.032868][   T12] netdevsim netdevsim2 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  139.042903][   T12] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.089668][   T29] audit: type=1400 audit(1768656923.060:1451): avc:  denied  { execute } for  pid=13870 comm="syz.1.2144" path="/memory.events.local" dev="ramfs" ino=28400 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  139.128007][   T12] netdevsim netdevsim2 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  139.137849][   T12] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.197548][   T12] netdevsim netdevsim2 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  139.207423][   T12] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.415325][   T12] bridge_slave_1: left allmulticast mode
[  139.421842][   T12] bridge_slave_1: left promiscuous mode
[  139.427578][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  139.451178][   T12] bridge_slave_0: left allmulticast mode
[  139.457032][   T12] bridge_slave_0: left promiscuous mode
[  139.462698][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  139.548027][T13903] loop5: detected capacity change from 0 to 1024
[  139.568023][T13903] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  139.587113][T13903] ext4 filesystem being mounted at /195/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.613660][   T29] audit: type=1400 audit(1768656923.580:1452): avc:  denied  { execute } for  pid=13902 comm="syz.5.2153" path="/195/file1/file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  139.668106][T13914] EXT4-fs error (device loop5): ext4_free_blocks:6728: comm syz.5.2153: Freeing blocks not in datazone - block = 0, count = 16
[  139.773597][  T339] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm kworker/u8:5: bg 0: block 112: padding at end of block bitmap is not set
[  139.788811][  T339] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  139.801070][  T339] EXT4-fs (loop5): This should not happen!! Data will be lost
[  139.801070][  T339] 
[  139.810741][  T339] EXT4-fs (loop5): Total free blocks count 0
[  139.816868][  T339] EXT4-fs (loop5): Free/Dirty block details
[  139.822928][  T339] EXT4-fs (loop5): free_blocks=16
[  139.828027][  T339] EXT4-fs (loop5): dirty_blocks=16
[  139.833221][  T339] EXT4-fs (loop5): Block reservation details
[  139.839288][  T339] EXT4-fs (loop5): i_reserved_data_blocks=1
[  139.848264][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  139.859063][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  139.868420][ T6732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  139.871020][   T12] bond0 (unregistering): Released all slaves
[  139.915236][   T12] tipc: Left network mode
[  139.967611][   T12] hsr_slave_0: left promiscuous mode
[  139.985624][   T12] hsr_slave_1: left promiscuous mode
[  139.997135][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  140.004568][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  140.033703][T13934] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2161'.
[  140.043920][   T12] batman_adv: batadv0: Removing interface: dummy0
[  140.055726][   T12] veth1_macvtap: left promiscuous mode
[  140.061451][   T12] veth0_macvtap: left promiscuous mode
[  140.067120][   T12] veth1_vlan: left promiscuous mode
[  140.072419][   T12] veth0_vlan: left promiscuous mode
[  140.161624][T13942] xt_hashlimit: max too large, truncated to 1048576
[  140.202893][T13945] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2164'.
[  140.211880][T13945] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2164'.
[  140.227415][   T12] team0 (unregistering): Port device team_slave_1 removed
[  140.237792][   T12] team0 (unregistering): Port device team_slave_0 removed
[  140.293894][T13947] batadv_slave_0: Caught tx_queue_len zero misconfig
[  140.321996][T13872] chnl_net:caif_netlink_parms(): no params data found
[  140.471987][T13872] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.479187][T13872] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.486629][T13872] bridge_slave_0: entered allmulticast mode
[  140.493216][T13872] bridge_slave_0: entered promiscuous mode
[  140.513835][T13872] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.520988][T13872] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.549100][T13872] bridge_slave_1: entered allmulticast mode
[  140.559213][T13872] bridge_slave_1: entered promiscuous mode
[  140.618837][T13872] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  140.647105][T13872] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  140.698832][T13872] team0: Port device team_slave_0 added
[  140.711494][T13872] team0: Port device team_slave_1 added
[  140.747573][T13872] batman_adv: batadv0: Adding interface: batadv_slave_0
[  140.754601][T13872] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  140.780660][T13872] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  140.799893][T13872] batman_adv: batadv0: Adding interface: batadv_slave_1
[  140.806957][T13872] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  140.833095][T13872] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  140.879940][T13872] hsr_slave_0: entered promiscuous mode
[  140.896437][T13872] hsr_slave_1: entered promiscuous mode
[  140.919174][T13872] debugfs: 'hsr0' already exists in 'hsr'
[  140.925048][T13872] Cannot create hsr debugfs directory
[  140.937601][T14015] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2175'.
[  141.009749][T14023] bond2: (slave ip6tnl3): The slave device specified does not support setting the MAC address
[  141.021277][T14023] bond2: (slave ip6tnl3): Error -95 calling set_mac_address
[  141.100064][T13872] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  141.109365][T13872] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  141.118182][T13872] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  141.129839][T13872] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  141.151640][T14038] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2176'.
[  141.194456][T13872] 8021q: adding VLAN 0 to HW filter on device bond0
[  141.216615][T13872] 8021q: adding VLAN 0 to HW filter on device team0
[  141.233975][  T339] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.241157][  T339] bridge0: port 1(bridge_slave_0) entered forwarding state
[  141.273751][ T1766] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.280960][ T1766] bridge0: port 2(bridge_slave_1) entered forwarding state
[  141.483787][T13872] 8021q: adding VLAN 0 to HW filter on device batadv0
[  141.821403][T13872] veth0_vlan: entered promiscuous mode
[  141.837592][T14113] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2188'.
[  141.859166][T13872] veth1_vlan: entered promiscuous mode
[  141.882022][T14113] team1: entered promiscuous mode
[  141.887241][T14113] team1: entered allmulticast mode
[  141.893988][T14113] 8021q: adding VLAN 0 to HW filter on device team1
[  141.917028][T13872] veth0_macvtap: entered promiscuous mode
[  141.925264][   T29] audit: type=1400 audit(1768656925.890:1453): avc:  denied  { getopt } for  pid=14116 comm="syz.5.2190" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  141.957915][T13872] veth1_macvtap: entered promiscuous mode
[  141.972600][T13872] batman_adv: batadv0: Interface activated: batadv_slave_0
[  141.998149][T13872] batman_adv: batadv0: Interface activated: batadv_slave_1
[  142.021602][ T1766] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  142.062276][ T1766] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  142.071293][ T1766] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  142.091018][ T3623] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  142.162494][T14131] tipc: Failed to remove unknown binding: 66,0,0/2886997162:2504988843/2504988844
[  142.670913][T14163] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2207'.
[  142.721590][T14166] loop6: detected capacity change from 0 to 512
[  142.732673][T14166] EXT4-fs: Ignoring removed i_version option
[  142.738915][T14166] EXT4-fs: Ignoring removed bh option
[  142.767630][T14166] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.780398][T14166] ext4 filesystem being mounted at /46/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  142.874847][ T9086] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.976382][T14174] syzkaller1: entered promiscuous mode
[  142.981947][T14174] syzkaller1: entered allmulticast mode
[  143.020973][   T29] audit: type=1400 audit(1768656926.990:1454): avc:  denied  { relabelfrom } for  pid=14175 comm="syz.5.2212" name="SCTPv6" dev="sockfs" ino=31038 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  143.021010][T14176] SELinux:  Context system_u: is not valid (left unmapped).
[  143.125789][   T29] audit: type=1400 audit(1768656926.990:1455): avc:  denied  { mac_admin } for  pid=14175 comm="syz.5.2212" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  143.147126][   T29] audit: type=1400 audit(1768656927.030:1456): avc:  denied  { relabelto } for  pid=14175 comm="syz.5.2212" name="SCTPv6" dev="sockfs" ino=31038 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 trawcon="system_u:"
[  143.495005][T14181] loop5: detected capacity change from 0 to 512
[  143.577313][T14181] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.591810][T14181] ext4 filesystem being mounted at /208/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.630445][ T6732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.662100][T14195] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  143.669187][T14195] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  143.676820][T14195] vhci_hcd vhci_hcd.0: Device attached
[  143.715051][T14195] vhci_hcd vhci_hcd.0: pdev(5) rhport(1) sockfd(5)
[  143.721779][T14195] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  143.729347][T14195] vhci_hcd vhci_hcd.0: Device attached
[  143.756795][T14195] vhci_hcd vhci_hcd.0: pdev(5) rhport(2) sockfd(7)
[  143.763366][T14195] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  143.771029][T14195] vhci_hcd vhci_hcd.0: Device attached
[  143.829939][T14195] vhci_hcd vhci_hcd.0: pdev(5) rhport(3) sockfd(9)
[  143.836533][T14195] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  143.844211][T14195] vhci_hcd vhci_hcd.0: Device attached
[  143.855720][   T10] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  143.862385][T14206] vhci_hcd vhci_hcd.0: pdev(5) rhport(4) sockfd(12)
[  143.869086][T14206] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  143.876857][T14206] vhci_hcd vhci_hcd.0: Device attached
[  143.902233][T14195] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  143.935754][   T10] usb 11-1: new full-speed USB device number 2 using vhci_hcd
[  143.943975][T14195] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  143.965833][T14195] vhci_hcd vhci_hcd.0: pdev(5) rhport(7) sockfd(17)
[  143.972492][T14195] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  143.980137][T14195] vhci_hcd vhci_hcd.0: Device attached
[  144.005868][T14207] vhci_hcd: connection closed
[  144.005958][T14202] vhci_hcd: connection closed
[  144.007164][T14214] vhci_hcd: connection closed
[  144.010953][T14200] vhci_hcd: connection closed
[  144.015574][ T1766] vhci_hcd vhci_hcd.5: stop threads
[  144.020577][T14198] vhci_hcd: connection closed
[  144.024941][ T1766] vhci_hcd vhci_hcd.5: release socket
[  144.024999][ T1766] vhci_hcd vhci_hcd.5: disconnect device
[  144.039894][T14196] vhci_hcd: connection reset by peer
[  144.074359][ T1766] vhci_hcd vhci_hcd.5: stop threads
[  144.079680][ T1766] vhci_hcd vhci_hcd.5: release socket
[  144.085117][ T1766] vhci_hcd vhci_hcd.5: disconnect device
[  144.113726][ T1766] vhci_hcd vhci_hcd.5: stop threads
[  144.119214][ T1766] vhci_hcd vhci_hcd.5: release socket
[  144.124821][ T1766] vhci_hcd vhci_hcd.5: disconnect device
[  144.156004][ T1766] vhci_hcd vhci_hcd.5: stop threads
[  144.161331][ T1766] vhci_hcd vhci_hcd.5: release socket
[  144.166791][ T1766] vhci_hcd vhci_hcd.5: disconnect device
[  144.180334][ T1766] vhci_hcd vhci_hcd.5: stop threads
[  144.185615][ T1766] vhci_hcd vhci_hcd.5: release socket
[  144.191129][ T1766] vhci_hcd vhci_hcd.5: disconnect device
[  144.207171][ T1766] vhci_hcd vhci_hcd.5: stop threads
[  144.212505][ T1766] vhci_hcd vhci_hcd.5: release socket
[  144.218036][ T1766] vhci_hcd vhci_hcd.5: disconnect device
[  144.352032][T14237] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2231'.
[  144.587152][T14255] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2241'.
[  144.636697][T14262] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2245'.
[  144.645765][T14262] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2245'.
[  144.698478][T14272] loop5: detected capacity change from 0 to 512
[  144.719347][T14272] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x05417272 (sector = 1)
[  144.741839][T14272] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  144.850463][T14281] FAT-fs (loop5): FAT read failed (blocknr 128)
[  145.157237][   T29] audit: type=1400 audit(1768656929.130:1457): avc:  denied  { read } for  pid=14277 comm="syz.4.2251" path="socket:[30485]" dev="sockfs" ino=30485 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  145.471137][T14314] __nla_validate_parse: 6 callbacks suppressed
[  145.471223][T14314] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2267'.
[  145.530206][T14318] loop5: detected capacity change from 0 to 128
[  145.568307][T14318] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.582151][T14320] netlink: 'syz.7.2270': attribute type 4 has an invalid length.
[  145.595817][T14320] netlink: 'syz.7.2270': attribute type 4 has an invalid length.
[  145.647559][T14318] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.668900][   T12] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  145.678789][   T12] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.688660][   T12] netdevsim netdevsim4 eth3 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  145.728455][T14318] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.751840][T14326] loop7: detected capacity change from 0 to 2048
[  145.768401][T14326] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  145.782198][   T12] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  145.792014][   T12] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.801996][   T12] netdevsim netdevsim4 eth2 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  145.827087][T14318] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.857421][   T12] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  145.867331][   T12] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.877233][   T12] netdevsim netdevsim4 eth1 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  145.921054][  T983] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.954954][  T983] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.966942][   T12] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  145.976835][   T12] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.986641][   T12] netdevsim netdevsim4 eth0 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  146.004314][  T983] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  146.021595][  T983] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1288 with error 28
[  146.034427][  T983] EXT4-fs (loop7): This should not happen!! Data will be lost
[  146.034427][  T983] 
[  146.045182][  T983] EXT4-fs (loop7): Total free blocks count 0
[  146.051249][  T983] EXT4-fs (loop7): Free/Dirty block details
[  146.057250][  T983] EXT4-fs (loop7): free_blocks=2415919104
[  146.063025][  T983] EXT4-fs (loop7): dirty_blocks=1472
[  146.068458][  T983] EXT4-fs (loop7): Block reservation details
[  146.074459][  T983] EXT4-fs (loop7): i_reserved_data_blocks=100
[  146.089731][ T3617] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  146.103747][  T983] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 1288 with max blocks 372 with error 28
[  146.127349][  T339] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.146202][   T29] audit: type=1326 audit(1768656930.120:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14339 comm="syz.1.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bf07bacb9 code=0x7ffc0000
[  146.192962][   T12] bridge_slave_1: left allmulticast mode
[  146.198850][   T12] bridge_slave_1: left promiscuous mode
[  146.204674][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.236651][   T29] audit: type=1326 audit(1768656930.140:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14339 comm="syz.1.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bf07bacb9 code=0x7ffc0000
[  146.260392][   T29] audit: type=1326 audit(1768656930.140:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14339 comm="syz.1.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f2bf07bacb9 code=0x7ffc0000
[  146.284327][   T29] audit: type=1326 audit(1768656930.170:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14339 comm="syz.1.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bf07bacb9 code=0x7ffc0000
[  146.308097][   T29] audit: type=1326 audit(1768656930.180:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14345 comm="syz.1.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f2bf077b58e code=0x7ffc0000
[  146.342571][   T12] bridge_slave_0: left allmulticast mode
[  146.348410][   T12] bridge_slave_0: left promiscuous mode
[  146.354083][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.488985][T14349] loop6: detected capacity change from 0 to 8192
[  146.506820][   T29] audit: type=1326 audit(1768656930.260:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14339 comm="syz.1.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bf07bacb9 code=0x7ffc0000
[  146.530467][   T29] audit: type=1326 audit(1768656930.300:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14339 comm="syz.1.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f2bf07bacb9 code=0x7ffc0000
[  146.554090][   T29] audit: type=1326 audit(1768656930.300:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14339 comm="syz.1.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bf07bacb9 code=0x7ffc0000
[  146.577804][   T29] audit: type=1326 audit(1768656930.300:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14339 comm="syz.1.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bf07bacb9 code=0x7ffc0000
[  146.620431][T14359] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2280'.
[  146.999812][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  147.015227][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  147.044206][   T12] bond0 (unregistering): Released all slaves
[  147.069059][   T12] bond1 (unregistering): Released all slaves
[  147.098273][   T12] bond2 (unregistering): Released all slaves
[  147.185203][   T12] tipc: Disabling bearer <udp:s>
[  147.190358][   T12] tipc: Disabling bearer <udp:syz2>
[  147.195609][   T12] tipc: Left network mode
[  147.273091][   T12] hsr_slave_0: left promiscuous mode
[  147.291328][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.299102][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.349730][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  147.357248][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  147.383781][   T12] veth1_macvtap: left promiscuous mode
[  147.391621][   T12] veth0_macvtap: left promiscuous mode
[  147.417279][T14383] SELinux: failed to load policy
[  147.535317][T13872] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  147.546340][T13872] CPU: 1 UID: 0 PID: 13872 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  147.546383][T13872] Tainted: [W]=WARN
[  147.546389][T13872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  147.546402][T13872] Call Trace:
[  147.546408][T13872]  <TASK>
[  147.546415][T13872]  __dump_stack+0x1d/0x30
[  147.546444][T13872]  dump_stack_lvl+0x95/0xd0
[  147.546472][T13872]  dump_stack+0x15/0x1b
[  147.546559][T13872]  dump_header+0x80/0x240
[  147.546634][T13872]  oom_kill_process+0x295/0x350
[  147.546656][T13872]  out_of_memory+0x97d/0xb80
[  147.546679][T13872]  try_charge_memcg+0x62e/0xa10
[  147.546791][T13872]  charge_memcg+0x51/0xc0
[  147.546910][T13872]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  147.546956][T13872]  __read_swap_cache_async+0x17b/0x2d0
[  147.546998][T13872]  swap_cluster_readahead+0x362/0x3c0
[  147.547092][T13872]  swapin_readahead+0xde/0x840
[  147.547127][T13872]  ? kvm_sched_clock_read+0x11/0x20
[  147.547167][T13872]  ? sched_clock+0x3f/0x60
[  147.547276][T13872]  ? __perf_event_task_sched_in+0xa65/0xad0
[  147.547297][T13872]  ? __rcu_read_unlock+0x4e/0x70
[  147.547317][T13872]  ? swap_cache_get_folio+0x26f/0x280
[  147.547365][T13872]  do_swap_page+0x2f4/0x2140
[  147.547467][T13872]  ? _raw_spin_unlock+0x26/0x50
[  147.547490][T13872]  ? finish_task_switch+0x79/0x280
[  147.547535][T13872]  ? __schedule+0x82d/0xc90
[  147.547612][T13872]  ? __pfx_default_wake_function+0x10/0x10
[  147.547686][T13872]  handle_mm_fault+0xb40/0x3030
[  147.547737][T13872]  ? vma_start_read+0x1c7/0x2c0
[  147.547792][T13872]  do_user_addr_fault+0x62f/0x1050
[  147.547911][T13872]  exc_page_fault+0x62/0xa0
[  147.547945][T13872]  asm_exc_page_fault+0x26/0x30
[  147.547964][T13872] RIP: 0033:0x7f2143025ed7
[  147.548023][T13872] Code: 48 89 fa 4c 89 df e8 a8 56 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  147.548047][T13872] RSP: 002b:00007fff76e04b80 EFLAGS: 00010202
[  147.548067][T13872] RAX: 0000000000000000 RBX: 000055556b3db500 RCX: 00007f2143025ed7
[  147.548141][T13872] RDX: 00007fff76e04bc0 RSI: 0000000000000000 RDI: 0000000000000000
[  147.548154][T13872] RBP: 00007fff76e04c2c R08: 0000000000000000 R09: 0000000000000000
[  147.548170][T13872] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[  147.548185][T13872] R13: 00000000000927c0 R14: 0000000000023f70 R15: 00007fff76e04c80
[  147.548209][T13872]  </TASK>
[  147.548217][T13872] memory: usage 307200kB, limit 307200kB, failcnt 668
[  147.795569][T13872] memory+swap: usage 308412kB, limit 9007199254740988kB, failcnt 0
[  147.803651][T13872] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[  147.811083][T13872] Memory cgroup stats for /syz7:
[  147.811689][T13872] cache 20480
[  147.820010][T13872] rss 0
[  147.822828][T13872] shmem 0
[  147.825877][T13872] mapped_file 0
[  147.829379][T13872] dirty 0
[  147.832338][T13872] writeback 0
[  147.835712][T13872] workingset_refault_anon 61
[  147.840319][T13872] workingset_refault_file 456
[  147.845016][T13872] swap 1241088
[  147.848429][T13872] swapcached 0
[  147.851823][T13872] pgpgin 6072
[  147.855129][T13872] pgpgout 6067
[  147.858633][T13872] pgfault 6540
[  147.862027][T13872] pgmajfault 38
[  147.865511][T13872] inactive_anon 0
[  147.869196][T13872] active_anon 0
[  147.872671][T13872] inactive_file 16384
[  147.876820][T13872] active_file 4096
[  147.880599][T13872] unevictable 0
[  147.884152][T13872] hierarchical_memory_limit 314572800
[  147.889704][T13872] hierarchical_memsw_limit 9223372036854771712
[  147.895895][T13872] total_cache 20480
[  147.899730][T13872] total_rss 0
[  147.903040][T13872] total_shmem 0
[  147.906543][T13872] total_mapped_file 0
[  147.910554][T13872] total_dirty 0
[  147.914032][T13872] total_writeback 0
[  147.917950][T13872] total_workingset_refault_anon 61
[  147.923175][T13872] total_workingset_refault_file 456
[  147.928418][T13872] total_swap 1241088
[  147.932331][T13872] total_swapcached 0
[  147.936265][T13872] total_pgpgin 6072
[  147.940090][T13872] total_pgpgout 6067
[  147.944006][T13872] total_pgfault 6540
[  147.947948][T13872] total_pgmajfault 38
[  147.951953][T13872] total_inactive_anon 0
[  147.956158][T13872] total_active_anon 0
[  147.960155][T13872] total_inactive_file 16384
[  147.964716][T13872] total_active_file 4096
[  147.969023][T13872] total_unevictable 0
[  147.973024][T13872] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz7,task_memcg=/syz7,task=syz.7.2274,pid=14325,uid=0
[  147.987869][T13872] Memory cgroup out of memory: Killed process 14325 (syz.7.2274) total-vm:100476kB, anon-rss:1324kB, file-rss:26472kB, shmem-rss:0kB, UID:0 pgtables:148kB oom_score_adj:1000
[  148.005404][   T12] team0 (unregistering): Port device team_slave_1 removed
[  148.068527][   T12] team0 (unregistering): Port device team_slave_0 removed
[  148.149525][   T12] team0 (unregistering): Port device dummy0 removed
[  148.211626][T14403] netlink: 'syz.7.2290': attribute type 13 has an invalid length.
[  148.256134][T14403] gretap0: refused to change device tx_queue_len
[  148.265292][T14403] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  148.292176][T14327] chnl_net:caif_netlink_parms(): no params data found
[  148.451685][T14327] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.454012][   T12] IPVS: stop unused estimator thread 0...
[  148.458843][T14327] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.478050][T14434] loop7: detected capacity change from 0 to 512
[  148.505989][T14434] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  148.517483][T14327] bridge_slave_0: entered allmulticast mode
[  148.524217][T14327] bridge_slave_0: entered promiscuous mode
[  148.531732][T14327] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.538880][T14327] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.546889][T14327] bridge_slave_1: entered allmulticast mode
[  148.554816][T14434] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.567791][T14327] bridge_slave_1: entered promiscuous mode
[  148.573965][T14434] ext4 filesystem being mounted at /18/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  148.604967][T14448] dvmrp0: entered allmulticast mode
[  148.624712][T14327] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  148.658619][T14327] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  148.702577][T14327] team0: Port device team_slave_0 added
[  148.703197][T13872] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.719885][T14327] team0: Port device team_slave_1 added
[  148.791741][T14327] batman_adv: batadv0: Adding interface: batadv_slave_0
[  148.798798][T14327] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  148.824777][T14327] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  148.901720][T14327] batman_adv: batadv0: Adding interface: batadv_slave_1
[  148.908847][T14327] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  148.935077][T14327] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  148.995928][   T10] usb 11-1: enqueue for inactive port 0
[  149.017494][   T10] usb 11-1: enqueue for inactive port 0
[  149.022838][T14327] hsr_slave_0: entered promiscuous mode
[  149.075209][T14327] hsr_slave_1: entered promiscuous mode
[  149.118825][   T10] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  149.299357][T14327] debugfs: 'hsr0' already exists in 'hsr'
[  149.305132][T14327] Cannot create hsr debugfs directory
[  149.466500][T14327] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  149.476736][T14327] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  149.504759][T14502] dummy0: entered promiscuous mode
[  149.510446][T14327] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  149.527846][T14502] dummy0: left promiscuous mode
[  149.532822][T14327] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  149.796783][T14532] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2318'.
[  149.843325][T14327] 8021q: adding VLAN 0 to HW filter on device bond0
[  149.914110][T14327] 8021q: adding VLAN 0 to HW filter on device team0
[  149.968947][ T3628] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.976130][ T3628] bridge0: port 1(bridge_slave_0) entered forwarding state
[  150.035778][ T3628] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.043036][ T3628] bridge0: port 2(bridge_slave_1) entered forwarding state
[  150.136911][T14542] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2321'.
[  150.195001][T14542] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2321'.
[  150.424908][   T29] kauditd_printk_skb: 34 callbacks suppressed
[  150.424928][   T29] audit: type=1326 audit(1768656934.390:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.6.2322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd75f66acb9 code=0x7fc00000
[  150.488003][T14327] 8021q: adding VLAN 0 to HW filter on device batadv0
[  150.660803][T14561] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2324'.
[  150.747474][T14561] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2324'.
[  151.096095][   T29] audit: type=1400 audit(1768656935.070:1502): avc:  denied  { accept } for  pid=14571 comm="syz.1.2326" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  151.311952][T14327] veth0_vlan: entered promiscuous mode
[  151.375393][T14327] veth1_vlan: entered promiscuous mode
[  151.469390][T14327] veth0_macvtap: entered promiscuous mode
[  151.509140][T14327] veth1_macvtap: entered promiscuous mode
[  151.583896][T14327] batman_adv: batadv0: Interface activated: batadv_slave_0
[  151.647747][T14327] batman_adv: batadv0: Interface activated: batadv_slave_1
[  151.716878][ T3617] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  151.777610][ T3617] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  151.799051][   T29] audit: type=1400 audit(1768656935.760:1503): avc:  denied  { mount } for  pid=14327 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  151.852233][ T3617] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  151.902540][ T3617] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  152.108416][T14594] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2330'.
[  152.129361][T14593] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2331'.
[  152.156581][T14594] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2330'.
[  152.174983][   T29] audit: type=1326 audit(1768656936.140:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.6.2322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd75f664ad7 code=0x7fc00000
[  152.301124][   T29] audit: type=1326 audit(1768656936.140:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.6.2322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd75f60c0d9 code=0x7fc00000
[  152.324781][   T29] audit: type=1326 audit(1768656936.140:1506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.6.2322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fd75f60c19d code=0x7fc00000
[  152.348444][   T29] audit: type=1326 audit(1768656936.140:1507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14543 comm="syz.6.2322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fd75f66acb9 code=0x7fc00000
[  152.377121][T14601] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2333'.
[  152.645116][   T29] audit: type=1326 audit(1768656936.610:1508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14621 comm="syz.5.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  152.677389][   T29] audit: type=1326 audit(1768656936.640:1509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14621 comm="syz.5.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  152.701292][   T29] audit: type=1326 audit(1768656936.640:1510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14621 comm="syz.5.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  152.807565][T14633] syz_tun: entered allmulticast mode
[  152.828667][T14633] dvmrp8: entered allmulticast mode
[  152.854808][T14632] syz_tun: left allmulticast mode
[  153.049245][T14648] loop5: detected capacity change from 0 to 512
[  153.127410][T14625] loop7: detected capacity change from 0 to 32768
[  153.166684][T14625]  loop7: p1 p2 p3 < p5 p6 >
[  153.186352][T14625] loop7: p2 size 16775168 extends beyond EOD, truncated
[  153.225364][T14625] loop7: p5 start 4294970168 is beyond EOD, truncated
[  153.258941][T14665] netlink: 'syz.6.2353': attribute type 10 has an invalid length.
[  153.266850][T14665] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2353'.
[  153.310331][T14665] dummy0: entered promiscuous mode
[  153.315528][T14665] dummy0: entered allmulticast mode
[  153.355854][T14665] bridge0: port 3(dummy0) entered blocking state
[  153.362323][T14665] bridge0: port 3(dummy0) entered disabled state
[  153.390006][T14665] bridge0: port 3(dummy0) entered blocking state
[  153.396579][T14665] bridge0: port 3(dummy0) entered forwarding state
[  154.478822][T14769] loop7: detected capacity change from 0 to 1024
[  154.498682][T14769] EXT4-fs: Ignoring removed bh option
[  154.542165][T14769] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.568737][T14769] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4215: comm syz.7.2379: Allocating blocks 385-513 which overlap fs metadata
[  154.587060][T14769] EXT4-fs (loop7): pa ffff888107a62690: logic 16, phys. 129, len 24
[  154.595185][T14769] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 8
[  154.630567][T13872] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.668219][T14777] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2381'.
[  154.682120][T14777] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2381'.
[  154.957323][T14795] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2388'.
[  155.544215][   T29] kauditd_printk_skb: 51 callbacks suppressed
[  155.544233][   T29] audit: type=1400 audit(1768656939.510:1562): avc:  denied  { unmount } for  pid=6732 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  155.642281][T14826] loop5: detected capacity change from 0 to 1024
[  155.680371][T14826] EXT4-fs: Ignoring removed bh option
[  155.727582][T14826] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.828366][T14839] loop8: detected capacity change from 0 to 128
[  155.853089][T14826] EXT4-fs error (device loop5): mb_free_blocks:2037: group 0, inode 15: block 273:freeing already freed block (bit 17); block bitmap corrupt.
[  155.936306][T14826] EXT4-fs (loop5): Remounting filesystem read-only
[  155.936821][T14837] loop7: detected capacity change from 0 to 8192
[  155.969361][T14826] EXT4-fs warning (device loop5): ext4_convert_unwritten_extents:4984: inode #15: block 64: len 64: ext4_ext_map_blocks returned -30
[  155.976106][T14841] bio_check_eod: 97 callbacks suppressed
[  155.976156][T14841] syz.8.2405: attempt to access beyond end of device
[  155.976156][T14841] loop8: rw=2049, sector=145, nr_sectors = 16 limit=128
[  156.085801][T14841] syz.8.2405: attempt to access beyond end of device
[  156.085801][T14841] loop8: rw=2049, sector=169, nr_sectors = 8 limit=128
[  156.147702][T14841] syz.8.2405: attempt to access beyond end of device
[  156.147702][T14841] loop8: rw=2049, sector=185, nr_sectors = 8 limit=128
[  156.198852][T14841] syz.8.2405: attempt to access beyond end of device
[  156.198852][T14841] loop8: rw=2049, sector=201, nr_sectors = 8 limit=128
[  156.213462][T13872] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1)
[  156.221431][T13872] FAT-fs (loop7): Filesystem has been set read-only
[  156.270142][T14841] syz.8.2405: attempt to access beyond end of device
[  156.270142][T14841] loop8: rw=2049, sector=217, nr_sectors = 8 limit=128
[  156.321306][T14841] syz.8.2405: attempt to access beyond end of device
[  156.321306][T14841] loop8: rw=2049, sector=233, nr_sectors = 8 limit=128
[  156.362912][T14841] syz.8.2405: attempt to access beyond end of device
[  156.362912][T14841] loop8: rw=2049, sector=249, nr_sectors = 8 limit=128
[  156.410950][T14841] syz.8.2405: attempt to access beyond end of device
[  156.410950][T14841] loop8: rw=2049, sector=265, nr_sectors = 8 limit=128
[  156.477187][T14841] syz.8.2405: attempt to access beyond end of device
[  156.477187][T14841] loop8: rw=2049, sector=281, nr_sectors = 8 limit=128
[  156.494844][ T6732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.555772][T14841] syz.8.2405: attempt to access beyond end of device
[  156.555772][T14841] loop8: rw=2049, sector=297, nr_sectors = 8 limit=128
[  156.575232][T14807] Process accounting resumed
[  156.631130][T14849] loop5: detected capacity change from 0 to 512
[  156.648176][T14852] __nla_validate_parse: 3 callbacks suppressed
[  156.648233][T14852] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2409'.
[  156.704950][T14849] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.732486][T14856] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2410'.
[  156.775773][T14849] ext4 filesystem being mounted at /256/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.882023][ T6732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.977478][T14861] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  157.036962][T14861] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  157.246410][   T29] audit: type=1400 audit(1768656941.220:1563): avc:  denied  { connect } for  pid=14869 comm="syz.6.2415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  157.553373][T14886] Failed to initialize the IGMP autojoin socket (err -2)
[  157.703587][T14899] loop6: detected capacity change from 0 to 128
[  157.782212][T14899] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.926110][T14899] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.127086][T14886] Set syz1 is full, maxelem 65536 reached
[  158.139960][T14899] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.223528][   T29] audit: type=1400 audit(1768656942.190:1564): avc:  denied  { unmount } for  pid=14910 comm="syz.5.2431" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  158.296744][T14899] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.405125][ T3628] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  158.440527][ T3628] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  158.446065][   T29] audit: type=1400 audit(1768656942.410:1565): avc:  denied  { bind } for  pid=14924 comm="syz.1.2436" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  158.505707][ T3628] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  158.533979][ T3628] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  158.631575][T14936] Failed to initialize the IGMP autojoin socket (err -2)
[  158.708271][   T29] audit: type=1400 audit(1768656942.680:1566): avc:  denied  { accept } for  pid=14944 comm="syz.5.2445" path="socket:[34849]" dev="sockfs" ino=34849 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  158.938884][T14952] loop7: detected capacity change from 0 to 8192
[  159.474442][T14985] ªªªªªª: renamed from wg2
[  159.487036][   T29] audit: type=1400 audit(1768656943.460:1567): avc:  denied  { read } for  pid=14982 comm="syz.7.2462" path="socket:[34753]" dev="sockfs" ino=34753 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  159.523305][   T29] audit: type=1400 audit(1768656943.460:1568): avc:  denied  { setopt } for  pid=14982 comm="syz.7.2462" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  159.715490][   T29] audit: type=1400 audit(1768656943.680:1569): avc:  denied  { getopt } for  pid=15007 comm="syz.7.2469" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  160.202025][T15059] loop8: detected capacity change from 0 to 128
[  160.245127][T15059] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.300253][T15059] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.351392][T15059] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.389670][T15059] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.457596][   T52] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  160.510802][   T52] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  160.527944][   T52] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  160.565880][   T52] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  160.657378][T15082] loop6: detected capacity change from 0 to 512
[  160.716018][T15082] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.736061][T15082] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.795355][T15097] loop7: detected capacity change from 0 to 164
[  160.833863][T15097] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  160.852161][   T29] audit: type=1400 audit(1768656944.820:1570): avc:  denied  { mount } for  pid=15096 comm="syz.7.2497" name="/" dev="loop7" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  160.889291][T15097] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  160.900233][T15097] rock: directory entry would overflow storage
[  160.906479][T15097] rock: sig=0x4f50, size=4, remaining=3
[  160.912084][T15097] iso9660: Corrupted directory entry in block 4 of inode 1792
[  160.938383][   T29] audit: type=1326 audit(1768656944.860:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15096 comm="syz.7.2497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f214306acb9 code=0x7ffc0000
[  160.962015][   T29] audit: type=1326 audit(1768656944.860:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15096 comm="syz.7.2497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f214306acb9 code=0x7ffc0000
[  160.985553][   T29] audit: type=1326 audit(1768656944.860:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15096 comm="syz.7.2497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f214306acb9 code=0x7ffc0000
[  161.009431][   T29] audit: type=1326 audit(1768656944.860:1574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15096 comm="syz.7.2497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f214306acb9 code=0x7ffc0000
[  161.065763][   T29] audit: type=1326 audit(1768656945.030:1575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15096 comm="syz.7.2497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f214306acb9 code=0x7ffc0000
[  161.069797][T15097] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  161.089473][   T29] audit: type=1326 audit(1768656945.030:1576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15096 comm="syz.7.2497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f214306acb9 code=0x7ffc0000
[  161.091773][   T29] audit: type=1326 audit(1768656945.040:1577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15096 comm="syz.7.2497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f214306acb9 code=0x7ffc0000
[  161.143543][T15097] Symlink component flag not implemented
[  161.144967][   T29] audit: type=1326 audit(1768656945.040:1578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15096 comm="syz.7.2497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f214306acb9 code=0x7ffc0000
[  161.150621][T15097] Symlink component flag not implemented
[  161.175478][   T29] audit: type=1326 audit(1768656945.040:1579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15096 comm="syz.7.2497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f214306acb9 code=0x7ffc0000
[  161.186112][T15104] Symlink component flag not implemented (7)
[  161.210144][T15104] Symlink component flag not implemented (116)
[  161.237382][T15079] Set syz1 is full, maxelem 65536 reached
[  161.313693][ T9086] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.397803][   T52] nci: nci_rf_discover_ntf_packet: unsupported rf_tech_and_mode 0x60
[  161.410031][T15121] loop6: detected capacity change from 0 to 512
[  161.446421][T15121] EXT4-fs warning (device loop6): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  161.461674][T15121] EXT4-fs (loop6): mount failed
[  161.532120][T15127] team0 (unregistering): Port device team_slave_0 removed
[  161.552642][T15127] team0 (unregistering): Port device team_slave_1 removed
[  161.999928][T15161] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2520'.
[  162.009188][T15161] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2520'.
[  163.021134][T15228] infiniband !yz!: set down
[  163.025741][T15228] infiniband !yz!: added team_slave_0
[  163.079344][T15228] !yz!: rxe_create_qp: returned err = -2
[  163.085072][T15228] infiniband !yz!: Couldn't create ib_mad QP1
[  163.104810][T15228] infiniband !yz!: Couldn't open port 1
[  163.125216][T15228] RDS/IB: !yz!: added
[  163.155918][T15228] smc: adding ib device !yz! with port count 1
[  163.162265][T15228] smc:    ib device !yz! port 1 has no pnetid
[  163.255435][T15239] netlink: 'syz.8.2542': attribute type 1 has an invalid length.
[  163.309062][T15239] bond1: entered promiscuous mode
[  163.314466][T15239] 8021q: adding VLAN 0 to HW filter on device bond1
[  163.372623][T15241] bond1: (slave bridge1): making interface the new active one
[  163.380325][T15241] bridge1: entered promiscuous mode
[  163.442479][T15241] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  164.005099][T15281] netlink: 104 bytes leftover after parsing attributes in process `syz.5.2559'.
[  164.141578][T15289] loop8: detected capacity change from 0 to 1024
[  164.162618][T15289] EXT4-fs: Ignoring removed bh option
[  164.193421][T15289] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.245022][T15300] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2564'.
[  164.298843][T15304] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2565'.
[  164.414693][T14327] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.444166][T15310] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.538231][T15310] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.580530][T15319] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2574'.
[  164.589489][T15319] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2574'.
[  164.617861][T15310] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.638714][T15323] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2576'.
[  164.670830][T15323] 8021q: adding VLAN 0 to HW filter on device bond2
[  164.696297][T15328] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2576'.
[  164.705219][T15328] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2576'.
[  164.733015][T15310] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.784625][T15328] macsec1: entered promiscuous mode
[  164.790161][T15328] bond2: entered promiscuous mode
[  164.795311][T15328] macsec1: entered allmulticast mode
[  164.800663][T15328] bond2: entered allmulticast mode
[  164.864963][   T37] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.885394][   T37] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.908827][   T37] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.942266][   T37] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  165.128696][T15343] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.135974][T15343] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.201122][T15343] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  165.225129][T15343] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  165.261257][T15343] bond1: left promiscuous mode
[  165.266395][T15343] bridge1: left promiscuous mode
[  165.273756][T15343] bond2: left allmulticast mode
[  165.278697][T15343] bond2: left promiscuous mode
[  165.284061][T15343] macsec1: left promiscuous mode
[  165.289969][T15345] sch_tbf: burst 1821 is lower than device lo mtu (65550) !
[  165.307643][   T52] netdevsim netdevsim8 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.335771][   T52] netdevsim netdevsim8 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.358677][   T52] netdevsim netdevsim8 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.380147][   T52] netdevsim netdevsim8 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.428972][T15353] veth2: entered promiscuous mode
[  165.434125][T15353] veth2: entered allmulticast mode
[  165.726432][T15373] Failed to initialize the IGMP autojoin socket (err -2)
[  165.888169][T15378] ref_ctr increment failed for inode: 0x13f offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff88810005e540
[  165.900300][T15377] uprobe: syz.8.2597:15377 failed to unregister, leaking uprobe
[  165.998196][T15389] netlink: 'syz.7.2602': attribute type 1 has an invalid length.
[  166.012998][T15389] 8021q: adding VLAN 0 to HW filter on device bond1
[  166.036764][T15389] bond1: (slave veth5): Enslaving as an active interface with a down link
[  166.077208][T15389] bond1: (slave dummy0): making interface the new active one
[  166.106551][T15389] dummy0: entered promiscuous mode
[  166.111803][T15389] bond1: (slave dummy0): Enslaving as an active interface with an up link
[  166.160965][T15394] bond1 (unregistering): (slave veth5): Releasing active interface
[  166.186679][T15394] bond1 (unregistering): (slave dummy0): Releasing active interface
[  166.214080][T15394] bond1 (unregistering): Released all slaves
[  166.397526][   T29] kauditd_printk_skb: 99 callbacks suppressed
[  166.397549][   T29] audit: type=1326 audit(1768656950.370:1678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15407 comm="syz.5.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  166.444026][   T29] audit: type=1326 audit(1768656950.400:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15407 comm="syz.5.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  166.468313][   T29] audit: type=1326 audit(1768656950.400:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15407 comm="syz.5.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  166.491954][   T29] audit: type=1326 audit(1768656950.400:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15407 comm="syz.5.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  166.516514][   T29] audit: type=1326 audit(1768656950.400:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15407 comm="syz.5.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  166.540089][   T29] audit: type=1326 audit(1768656950.400:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15407 comm="syz.5.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  166.564352][   T29] audit: type=1326 audit(1768656950.400:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15407 comm="syz.5.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  166.588578][   T29] audit: type=1326 audit(1768656950.400:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15407 comm="syz.5.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  166.612087][   T29] audit: type=1326 audit(1768656950.400:1686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15407 comm="syz.5.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  166.636246][   T29] audit: type=1326 audit(1768656950.400:1687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15407 comm="syz.5.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  166.712571][T15420] loop7: detected capacity change from 0 to 1024
[  166.722422][T15420] EXT4-fs: Ignoring removed bh option
[  166.749833][T15420] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.823264][T15429] bridge0: port 3(batadv1) entered blocking state
[  166.829875][T15429] bridge0: port 3(batadv1) entered disabled state
[  166.838587][T13872] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.854346][T15429] batadv1: entered allmulticast mode
[  166.891242][T15429] batadv1: entered promiscuous mode
[  167.119649][T15460] __nla_validate_parse: 3 callbacks suppressed
[  167.119668][T15460] netlink: 240 bytes leftover after parsing attributes in process `syz.1.2617'.
[  167.135294][T15459] loop7: detected capacity change from 0 to 1024
[  167.144431][T15459] EXT4-fs: Ignoring removed bh option
[  167.158832][T15459] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.177136][T15459] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4215: comm syz.7.2626: Allocating blocks 385-513 which overlap fs metadata
[  167.198072][T15459] EXT4-fs (loop7): pa ffff888107a62700: logic 16, phys. 129, len 24
[  167.206267][T15459] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 8
[  167.239240][T13872] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.321319][T15470] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2630'.
[  167.330353][T15470] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2630'.
[  167.340054][ T1766] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  167.349427][ T1766] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  167.474527][T15476] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2633'.
[  167.951347][T15495] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.035327][T15495] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.117629][T15495] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.183859][T15495] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.300061][ T3617] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.328889][ T3617] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.349649][ T3617] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.381269][ T3617] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.495045][T15511] Bluetooth: hci0: Frame reassembly failed (-90)
[  168.518967][ T3617] Bluetooth: hci0: Frame reassembly failed (-84)
[  168.540013][T15513] Failed to initialize the IGMP autojoin socket (err -2)
[  169.444410][T15533] 9p: Bad value for 'wfdno'
[  169.490968][ T3670] kernel write not supported for file bpf-prog (pid: 3670 comm: kworker/0:7)
[  170.309075][T15565] 9p: Bad value for 'wfdno'
[  170.515731][ T3920] Bluetooth: hci0: command 0x1003 tx timeout
[  170.521831][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  171.002084][T15638] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2681'.
[  171.019332][T15641] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2682'.
[  171.030440][T15641] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2682'.
[  171.355444][T15663] loop8: detected capacity change from 0 to 2048
[  171.375018][T15663] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  171.465558][T15668] Failed to initialize the IGMP autojoin socket (err -2)
[  171.522396][  T983] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  171.582327][  T983] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1520 with error 28
[  171.594960][  T983] EXT4-fs (loop8): This should not happen!! Data will be lost
[  171.594960][  T983] 
[  171.605002][  T983] EXT4-fs (loop8): Total free blocks count 0
[  171.611033][  T983] EXT4-fs (loop8): Free/Dirty block details
[  171.617105][  T983] EXT4-fs (loop8): free_blocks=2415919104
[  171.622981][  T983] EXT4-fs (loop8): dirty_blocks=1536
[  171.628325][  T983] EXT4-fs (loop8): Block reservation details
[  171.634334][  T983] EXT4-fs (loop8): i_reserved_data_blocks=100
[  171.797148][T15683] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2700'.
[  171.806693][T15683] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2700'.
[  171.826974][  T983] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 1520 with max blocks 498 with error 28
[  172.395259][T15714] loop7: detected capacity change from 0 to 2048
[  172.450405][T15714] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.545933][T15723] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2715'.
[  172.636599][T15725] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2716'.
[  172.645534][T15725] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2716'.
[  172.720721][T15714] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.888059][T15730] bridge0: port 3(dummy0) entered disabled state
[  172.894562][T15730] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.901874][T15730] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.974679][T15730] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  173.003585][T15730] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  173.112231][T15730] team1: left promiscuous mode
[  173.144977][ T3628] netdevsim netdevsim6 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.162548][T15752] openvswitch: netlink: Missing key (keys=40, expected=100)
[  173.179461][ T3628] netdevsim netdevsim6 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.217452][ T3628] netdevsim netdevsim6 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.263167][ T3628] netdevsim netdevsim6 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.281744][T15756] bridge_slave_0: left allmulticast mode
[  173.287695][T15756] bridge_slave_0: left promiscuous mode
[  173.293521][T15756] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.332036][T15756] bridge_slave_1: left allmulticast mode
[  173.338088][T15756] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.391902][T15756] bond0: (slave bond_slave_0): Releasing backup interface
[  173.447027][T15756] bond0: (slave bond_slave_1): Releasing backup interface
[  173.482928][T15756] team0: Port device team_slave_0 removed
[  173.517854][T15756] team0: Port device team_slave_1 removed
[  173.537417][T15756] batman_adv: batadv0: Removing interface: batadv_slave_0
[  173.569282][T15756] batman_adv: batadv0: Removing interface: batadv_slave_1
[  173.596461][T15756] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  173.781960][T15768] veth1_to_bond: entered promiscuous mode
[  173.989438][T15766] veth1_to_bond: left promiscuous mode
[  174.223269][ T1816] Bluetooth: hci0: Frame reassembly failed (-84)
[  174.238105][   T29] kauditd_printk_skb: 22 callbacks suppressed
[  174.238124][   T29] audit: type=1400 audit(1768656958.210:1710): avc:  denied  { ioctl } for  pid=15784 comm="syz.8.2739" path="socket:[40943]" dev="sockfs" ino=40943 ioctlcmd=0x48f0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  174.273384][T15787] Failed to initialize the IGMP autojoin socket (err -2)
[  174.394258][T15795] netlink: 'syz.7.2742': attribute type 1 has an invalid length.
[  174.418341][T15795] bond1: entered promiscuous mode
[  174.424776][T15795] 8021q: adding VLAN 0 to HW filter on device bond1
[  174.447878][T15795] 8021q: adding VLAN 0 to HW filter on device bond2
[  174.456562][T15795] bond1: (slave bond2): making interface the new active one
[  174.463951][T15795] bond2: entered promiscuous mode
[  174.469976][T15795] bond1: (slave bond2): Enslaving as an active interface with an up link
[  174.541538][   T29] audit: type=1326 audit(1768656958.510:1711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15806 comm="syz.6.2746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd75f66acb9 code=0x7ffc0000
[  174.565287][   T29] audit: type=1326 audit(1768656958.510:1712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15806 comm="syz.6.2746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fd75f66acb9 code=0x7ffc0000
[  174.589476][   T29] audit: type=1326 audit(1768656958.510:1713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15806 comm="syz.6.2746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd75f66acb9 code=0x7ffc0000
[  174.613109][   T29] audit: type=1326 audit(1768656958.510:1714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15806 comm="syz.6.2746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fd75f66acb9 code=0x7ffc0000
[  174.637831][   T29] audit: type=1326 audit(1768656958.510:1715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15806 comm="syz.6.2746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd75f66acb9 code=0x7ffc0000
[  174.661393][   T29] audit: type=1326 audit(1768656958.510:1716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15806 comm="syz.6.2746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd75f66acb9 code=0x7ffc0000
[  175.625312][T15873] netlink: 'syz.6.2758': attribute type 1 has an invalid length.
[  175.640708][T15873] bond1: entered promiscuous mode
[  175.646064][T15873] 8021q: adding VLAN 0 to HW filter on device bond1
[  175.669761][T15873] 8021q: adding VLAN 0 to HW filter on device bond2
[  175.678618][T15873] bond1: (slave bond2): making interface the new active one
[  175.686085][T15873] bond2: entered promiscuous mode
[  175.692342][T15873] bond1: (slave bond2): Enslaving as an active interface with an up link
[  175.779901][T15891] loop2: detected capacity change from 0 to 7
[  175.793908][ T9107]  loop2:
[  175.807086][T15891]  loop2:
[  176.000856][   T29] audit: type=1326 audit(1768656959.970:1717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15932 comm="syz.5.2767" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  176.024648][   T29] audit: type=1326 audit(1768656959.970:1718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15932 comm="syz.5.2767" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  176.063393][   T29] audit: type=1326 audit(1768656960.020:1719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15932 comm="syz.5.2767" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd0d79acb9 code=0x7ffc0000
[  176.126610][T15939] bridge_slave_0: left allmulticast mode
[  176.132330][T15939] bridge_slave_0: left promiscuous mode
[  176.138158][T15939] bridge0: port 1(bridge_slave_0) entered disabled state
[  176.149299][T15939] bridge_slave_1: left allmulticast mode
[  176.155127][T15939] bridge_slave_1: left promiscuous mode
[  176.160909][T15939] bridge0: port 2(bridge_slave_1) entered disabled state
[  176.171343][T15939] bond0: (slave bond_slave_0): Releasing backup interface
[  176.190377][T15939] bond0: (slave bond_slave_1): Releasing backup interface
[  176.217355][T15939] team0: Port device team_slave_0 removed
[  176.239209][T15939] team0: Port device team_slave_1 removed
[  176.256718][T15939] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  176.264216][T15939] batman_adv: batadv0: Removing interface: batadv_slave_0
[  176.274469][T15939] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  176.276017][ T3920] Bluetooth: hci0: command 0x1003 tx timeout
[  176.282185][T15939] batman_adv: batadv0: Removing interface: batadv_slave_1
[  176.297243][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  176.309932][T15939] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  176.344981][T15944] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2771'.
[  176.530012][T15963] veth0_vlan: entered allmulticast mode
[  176.655823][T15970] veth0_vlan: left promiscuous mode
[  176.679049][T15970] veth0_vlan: entered promiscuous mode
[  176.768852][T15973] tipc: Started in network mode
[  176.773833][T15973] tipc: Node identity 02061dd116bf, cluster identity 4711
[  176.781192][T15973] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  176.897125][T15973] syzkaller0: entered promiscuous mode
[  176.902719][T15973] syzkaller0: entered allmulticast mode
[  176.915924][T15973] tipc: Resetting bearer <eth:syzkaller0>
[  176.958296][T15971] tipc: Resetting bearer <eth:syzkaller0>
[  176.973428][T15971] tipc: Disabling bearer <eth:syzkaller0>
[  177.148846][T16005] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2797'.
[  177.344971][T16016] Failed to initialize the IGMP autojoin socket (err -2)
[  177.493826][T16023] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2805'.
[  177.619487][T16027] Failed to initialize the IGMP autojoin socket (err -2)
[  177.644784][T16029] loop6: detected capacity change from 0 to 128
[  177.668161][T16029] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  177.724917][T16029] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.862854][ T9086] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  178.028927][T16050] loop8: detected capacity change from 0 to 128
[  178.141656][T16046] loop7: detected capacity change from 0 to 8192
[  178.186429][T16057] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2819'.
[  178.320646][T16063] delete_channel: no stack
[  178.983794][T16097] 9p: Bad value for 'rfdno'
[  180.064763][   T29] kauditd_printk_skb: 43 callbacks suppressed
[  180.064833][   T29] audit: type=1326 audit(1768656964.030:1763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16124 comm="syz.6.2848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd75f66acb9 code=0x7ffc0000
[  180.153142][   T29] audit: type=1326 audit(1768656964.050:1764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16126 comm="syz.8.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59375aacb9 code=0x7ffc0000
[  180.177387][   T29] audit: type=1326 audit(1768656964.050:1765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16126 comm="syz.8.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59375aacb9 code=0x7ffc0000
[  180.201130][   T29] audit: type=1326 audit(1768656964.050:1766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16126 comm="syz.8.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f59375aacb9 code=0x7ffc0000
[  180.225420][   T29] audit: type=1326 audit(1768656964.050:1767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16126 comm="syz.8.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59375aacb9 code=0x7ffc0000
[  180.249945][   T29] audit: type=1326 audit(1768656964.050:1768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16126 comm="syz.8.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59375aacb9 code=0x7ffc0000
[  180.273479][   T29] audit: type=1326 audit(1768656964.050:1769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16126 comm="syz.8.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59375aacb9 code=0x7ffc0000
[  180.297874][   T29] audit: type=1326 audit(1768656964.050:1770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16126 comm="syz.8.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59375aacb9 code=0x7ffc0000
[  180.321501][   T29] audit: type=1326 audit(1768656964.050:1771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16126 comm="syz.8.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59375aacb9 code=0x7ffc0000
[  180.345734][   T29] audit: type=1326 audit(1768656964.050:1772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16126 comm="syz.8.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59375aacb9 code=0x7ffc0000
[  180.409531][T16133] loop6: detected capacity change from 0 to 2048
[  180.464268][T16136] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2851'.
[  180.486940][T16136] netlink: 16 bytes leftover after parsing attributes in process `syz.7.2851'.
[  180.506396][T16133] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  180.556070][T16133] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.451755][T16168] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2865'.
[  181.562703][T16179] ==================================================================
[  181.570840][T16179] BUG: KCSAN: data-race in fifo_open / wait_for_partner
[  181.577827][T16179] 
[  181.580176][T16179] read-write to 0xffff88810cd942ac of 4 bytes by task 16166 on cpu 1:
[  181.588363][T16179]  fifo_open+0x86/0x5d0
[  181.592556][T16179]  do_dentry_open+0x54b/0xa60
[  181.597275][T16179]  vfs_open+0x37/0x1e0
[  181.601395][T16179]  path_openat+0x1de9/0x23c0
[  181.606207][T16179]  do_filp_open+0x15d/0x280
[  181.610750][T16179]  do_sys_openat2+0xa6/0x150
[  181.615402][T16179]  __x64_sys_openat+0xf2/0x120
[  181.620226][T16179]  x64_sys_call+0x2b07/0x3000
[  181.624952][T16179]  do_syscall_64+0xc0/0x2a0
[  181.629495][T16179]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.635429][T16179] 
[  181.637776][T16179] read to 0xffff88810cd942ac of 4 bytes by task 16179 on cpu 0:
[  181.645472][T16179]  wait_for_partner+0xd5/0x1e0
[  181.650279][T16179]  fifo_open+0x4b1/0x5d0
[  181.654556][T16179]  do_dentry_open+0x54b/0xa60
[  181.659275][T16179]  vfs_open+0x37/0x1e0
[  181.663380][T16179]  path_openat+0x1de9/0x23c0
[  181.668015][T16179]  do_filp_open+0x15d/0x280
[  181.672571][T16179]  do_sys_openat2+0xa6/0x150
[  181.677283][T16179]  __se_sys_openat2+0x193/0x1f0
[  181.682175][T16179]  __x64_sys_openat2+0x55/0x70
[  181.686983][T16179]  x64_sys_call+0x2c04/0x3000
[  181.691711][T16179]  do_syscall_64+0xc0/0x2a0
[  181.696228][T16179]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.702149][T16179] 
[  181.704491][T16179] value changed: 0x00000001 -> 0x00000002
[  181.710269][T16179] 
[  181.712616][T16179] Reported by Kernel Concurrency Sanitizer on:
[  181.718805][T16179] CPU: 0 UID: 0 PID: 16179 Comm: syz.7.2864 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  181.730393][T16179] Tainted: [W]=WARN
[  181.734251][T16179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  181.744447][T16179] ==================================================================