last executing test programs:

3.008073794s ago: executing program 0 (id=540):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x2}, 0x18)
syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, 0x0, 0x0)
connect$tipc(r1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f00005fd000/0x4000)=nil, 0x4000, 0x0, 0x5, 0x20000)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, 0x0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x7, @remote}}}, 0x48)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

2.928017815s ago: executing program 3 (id=541):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x7c6, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x5, 0x3}, 0x50)
r2 = memfd_secret(0x80000)
fcntl$setlease(r2, 0x400, 0x0)
close(r2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000640)={0x1b, 0x0, 0x0, 0xc3f6, 0x0, r1, 0x9, '\x00', 0x0, r2, 0x1, 0x4, 0x5}, 0x50)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$unix(r3, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)="03", 0x1}], 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18, 0x4008005}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
recvmmsg(r4, &(0x7f0000001140), 0x700, 0x2, 0x0)
r5 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NAME_TABLE_GET(r6, &(0x7f0000000580)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000500)={&(0x7f00000006c0)={0x1c0, 0x0, 0x400, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0x4}, @TIPC_NLA_BEARER={0x94, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xb}, @TIPC_NLA_BEARER_NAME={0x13, 0x1, @l2={'eth', 0x3a, 'ip6erspan0\x00'}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xb97}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3f}]}, @TIPC_NLA_BEARER_PROP={0x4}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'pim6reg\x00'}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'pim6reg0\x00'}}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x74}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}]}, @TIPC_NLA_BEARER={0x114, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @local}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x100}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x518, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xbc67}}, {0x14, 0x2, @in={0x2, 0x4e21, @rand_addr=0x64010102}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_NAME={0x14, 0x1, @l2={'ib', 0x3a, 'veth1_to_hsr\x00'}}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'batadv0\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'pimreg0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0xfffffff8, @empty, 0x8}}, {0x14, 0x2, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x1d}}}}}, @TIPC_NLA_BEARER_NAME={0x12, 0x1, @l2={'ib', 0x3a, 'virt_wifi0\x00'}}]}]}, 0x1c0}, 0x1, 0x0, 0x0, 0x1}, 0x20000010)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r5, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x88, 0x3, 0x3, 0x801, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0x8}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0xa33}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffd, 0x75}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffc, 0xd}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffe, 0x1}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffd, 0x101}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffc, 0x7ff}}, @NFQA_VERDICT_HDR={0xc}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffc, 0x3}}]}, 0x88}, 0x1, 0x0, 0x0, 0x4000040}, 0xf7047c739302aa61)

2.825532687s ago: executing program 3 (id=543):
perf_event_open(&(0x7f00000000c0)={0x6, 0x80, 0x2, 0xff, 0x5e, 0x8, 0x0, 0x3, 0x8b008, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0, 0x8}, 0x100040, 0x81, 0x0, 0x6, 0x8, 0x204002, 0x0, 0x0, 0x0, 0x0, 0x400000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000000780)={0x0, {'syz1\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x0, 0x0, 0x800}}, 0x120)
write$UHID_GET_REPORT_REPLY(r0, &(0x7f0000000140)={0xa, {0x1, 0x3, 0x3}}, 0xa)
write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4)
socket(0x10, 0x803, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000400000008000000"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850005007800000095", @ANYRES8=<r2=>r1], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={0x0, 0x0}, 0x28)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1b0000000000000000000000000004", @ANYRES32=r2, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x2d)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000008c0)=@newsa={0x15c, 0x10, 0x800, 0x3, 0x25dfdbfd, {{@in=@loopback, @in=@multicast1=0xac1414bb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x84}, {@in=@local, 0x4000000, 0x33}, @in=@empty, {0xfff, 0x0, 0xa0000000000, 0x0, 0x0, 0xfffffffffffffffa, 0x1000000000000}, {0x7b, 0x0, 0x2000, 0xffffffff}, {}, 0x0, 0x2, 0xa, 0x0, 0x0, 0x6b}, [@algo_auth={0x6c, 0x1, {{'hmac(sha1)\x00'}, 0x120, "d282248e1cd6a2a13ee821d61c32af8efa9adc573c039d37354bbf17a83feb6e06d08cee"}}]}, 0x15c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)

2.449843943s ago: executing program 0 (id=551):
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
getuid()
r0 = syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f00000001c0)=0x2001)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, &(0x7f0000000180)=[{0xff, 0x0, 0x0, 0x0, @tick=0x4, {}, {}, @result={0x1, 0x2}}, {0x0, 0x0, 0xff, 0x3, @tick=0xf27, {0x1, 0x31}, {}, @addr={0x2a, 0x5}}], 0x38)
socket$inet_tcp(0x2, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000540)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], &(0x7f00000001c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r5}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000000, 0x50032, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)

1.900816401s ago: executing program 3 (id=558):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000540)=@framed={{}, [@map_idx={0x18, 0x2, 0x5, 0x0, 0x6}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280))
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x2)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000980)='sys_enter\x00', r5}, 0x10)
arch_prctl$ARCH_REQ_XCOMP_GUEST_PERM(0x1025, 0x6)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000240)={'syztnl0\x00', &(0x7f00000002c0)={'syztnl0\x00', <r6=>0x0, 0x2f, 0x1, 0x32, 0x2462, 0xda9da7d31e252196, @dev={0xfe, 0x80, '\x00', 0x29}, @mcast2, 0x80, 0x7800, 0x4, 0x3}})
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000029c0)={@cgroup, 0xffffffffffffffff, 0x5, 0x20}, 0x20)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000340)={'ip6gre0\x00', &(0x7f00000003c0)={'ip6_vti0\x00', r6, 0x2f, 0x40, 0x2, 0xb, 0xc, @empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7800, 0x7800, 0x81, 0x1}})
r7 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x1f0, 0x0)
mq_notify(r7, &(0x7f00000001c0)={0x0, 0x2a, 0x1})
mq_timedsend(r7, 0x0, 0x0, 0x7, 0x0)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r7, 0xf502, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001180)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000100000000000000040000850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r8}, 0x10)
setitimer(0x2, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

1.515727107s ago: executing program 0 (id=564):
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x1c)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, 0x0, 0x0}, 0x20)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, 0x0, 0x8440)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

1.450112648s ago: executing program 4 (id=566):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000800), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f00000005c0)=ANY=[@ANYRES16=0x0, @ANYRESHEX=0x0, @ANYBLOB="2c686964652c626c6f636b3d3078303030303030303030303030303230302c73657373696f6e3d3078303030303030303030303030303034312c6d61703d61636f726e2c6d61703d6e6f726d616c2c6f76657272696465726f636b7065726d2c6e6f6a6f6c697e0700000000000000662c6f76657272696465726f636b7065726d2c696f6368d32db74f617273655a3d5a656661756c742c0082ca2adfc5e0de278c4413bcdf297872e431d56b76654d4459503f24696339b45f681e76eb0ac47c6054e0937cec38ef0321c2d69a53f910b9904787cec227478e230d190716d6882b22a1582793e710c0f183a1a451cecc1960b043545a353cde9266e776a344eb59036a955e2748ece4dca3828ece740fdc190078b0835c81f3abf509f42fc1379e951ba679c242ae067681df54cf5551e001c25bae594f660da127ded8f066e83f365bceeba339531a73a733005b1863606e29fdc516ff8f53dc4ad0a63a64d17e59655e1cdf459f889e7cdc94bb371cda9179db172754db3d0b2f7be6e4bd78c978e6949ad1db810a041998f54c94c065237e61fa1784d5fb589ef9cfcd3ea3b6059f865b573291dce5b97e0fa661d1e1f985b02ef94e6471275207c5a83b046fd146229d4633280ae2"], 0x2, 0xa1a, &(0x7f0000001880)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xc, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="850000002200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)

1.33486185s ago: executing program 4 (id=568):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000001440), 0x2, 0x0)
gettid()
timer_create(0x0, 0x0, &(0x7f0000000140))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
readv(r0, &(0x7f0000000300)=[{&(0x7f0000000380)=""/4096, 0x1000}], 0x1)

1.30204143s ago: executing program 2 (id=571):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000004000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r3}, &(0x7f0000000080), &(0x7f00000006c0)='%-010d \x00'}, 0x20)
timerfd_create(0x7, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000340), 0x206, 0x8401)
ioctl$USBDEVFS_ALLOW_SUSPEND(r5, 0x5522)
ioctl$USBDEVFS_BULK(r5, 0x5523, 0x0)

1.029333974s ago: executing program 3 (id=573):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000240), &(0x7f0000000280)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
add_key(&(0x7f0000000380)='asymmetric\x00', 0x0, &(0x7f0000000880)="10", 0x1, 0xffffffffffffffff)

1.006718104s ago: executing program 1 (id=574):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x61680, 0x20, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x2, 0x8b6}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000300)=<r4=>0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='kfree\x00', r5}, 0x18)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x202, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r2, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
io_uring_enter(r2, 0x47f6, 0x0, 0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000001a00)=ANY=[@ANYBLOB="1d00000004000000020000000000000001020000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000011", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0100000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
socket$kcm(0x10, 0x2, 0x4)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000540)='/sys/power/reserved_size', 0x80001, 0xd1)

1.001713265s ago: executing program 3 (id=575):
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
getuid()
r0 = syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f00000001c0)=0x2001)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, &(0x7f0000000180)=[{0xff, 0x0, 0x0, 0x0, @tick=0x4, {}, {}, @result={0x1, 0x2}}, {0x0, 0x0, 0xff, 0x3, @tick=0xf27, {0x1, 0x31}, {}, @addr={0x2a, 0x5}}], 0x38)
socket$inet_tcp(0x2, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000540)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], &(0x7f00000001c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r5}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000000, 0x50032, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)

716.146789ms ago: executing program 1 (id=576):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x7c6, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x5, 0x3}, 0x50)
close(0xffffffffffffffff)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000640)={0x1b, 0x0, 0x0, 0xc3f6, 0x0, r1, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x4, 0x5}, 0x50)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$unix(r2, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)="03", 0x1}], 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18, 0x4008005}, 0x0)
recvmmsg(r3, &(0x7f0000001140), 0x700, 0x2, 0x0)

636.40775ms ago: executing program 0 (id=577):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x400, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x4, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xefffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000000000000100000000c00018008000100", @ANYRES32=r5, @ANYBLOB="080011"], 0x28}, 0x1, 0x0, 0x0, 0x40000c5}, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
setresgid(0x0, 0x0, 0xffffffffffffffff)
close_range(r6, 0xffffffffffffffff, 0x0)

635.06244ms ago: executing program 1 (id=578):
syz_emit_ethernet(0x82, &(0x7f0000000340)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb8100000086dd60fec00000483a00fc0000000000000000000000000000fdff02000000000000000000000000000102009078000000006018b08800000000fe80000000000000000000000000002dfe8000000000000000000000000000aa1100000000000000fafb17c163a3040b7758ba1b5be6d88a020a"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0xb, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8f}, 0x94)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x125101, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r2}, 0x10)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0105500, &(0x7f0000000080)={0x0, 0x9, 0x3, 0x0, 0x0, 0x8, 0x0})

537.413001ms ago: executing program 0 (id=579):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="50000000150019092dbd7000fddbdf250a182000", @ANYRES32, @ANYBLOB="140002"], 0x50}, 0x1, 0x0, 0x0, 0x80cf}, 0x400c040)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000000c0)=0x468a, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000040)={'vxcan1\x00', <r2=>0x0})
sendmsg$can_raw(r1, &(0x7f00000003c0)={&(0x7f0000000280)={0x1d, r2}, 0x10, &(0x7f0000000380)={&(0x7f00000002c0)=@can={{0x3, 0x0, 0x1}, 0x4, 0x2, 0x0, 0x0, "e3997e3df56fe25b"}, 0x10}, 0x1, 0x0, 0x0, 0x20000004}, 0x40)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_free\x00', r6, 0x0, 0xfffffffff7fffffe}, 0xe)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
write(r5, &(0x7f0000004200)='t', 0x1)
madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x66)
sendfile(r5, r4, 0x0, 0x3ffff)
r7 = syz_io_uring_setup(0x1725, &(0x7f0000000100)={0x0, 0x1b2f, 0x800, 0x4000001, 0x333}, &(0x7f0000000400)=<r8=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000240)=0xfffffc04, 0x0, 0x4)
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffff000000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000e}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYRES64=r3, @ANYRES64, @ANYRES8, @ANYRESOCT, @ANYRESDEC=r3], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1900000000000000000000000000000018120000", @ANYRES32=r9, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

536.546842ms ago: executing program 1 (id=580):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x2, &(0x7f0000000040)=[{0x40}, {0x6, 0x2, 0x0, 0x5}]}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r0}}, './file0\x00'})
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="1b00000000"], 0x48)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000001440), 0x2, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000140))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
readv(r1, &(0x7f0000000300), 0x0)

459.910333ms ago: executing program 1 (id=581):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100202, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)

459.455503ms ago: executing program 4 (id=582):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100006cc70000000000000000ea04850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0, 0x0, 0x10000000000}, 0x18)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x6c136, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_config_ext={0x5, 0xa5d4}, 0x4c58, 0x5, 0x0, 0x1, 0x6, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2002000, 0x13, r1, 0x0)

458.992723ms ago: executing program 1 (id=583):
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000002c0)={@fallback, 0xffffffffffffffff, 0x18, 0x2014}, 0x20)
r0 = epoll_create1(0x0)
r1 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})
io_uring_enter(r1, 0x48e9, 0x0, 0x2, 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/slabinfo\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r4, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
creat(&(0x7f0000000080)='./file0\x00', 0xa)
pipe2$9p(&(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
r7 = socket(0x10, 0x80002, 0x0)
write$P9_RLERRORu(r6, &(0x7f0000000000)=ANY=[@ANYBLOB="1c00000007ffff", @ANYRES16=r7, @ANYRESDEC], 0x52)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@version_u}]}})
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r4, &(0x7f0000000080)={0x20000011})
r8 = socket$igmp6(0xa, 0x3, 0x3a)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r10}, 0x18)
r11 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedreceive(r11, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0)
setsockopt$MRT6_ADD_MFC(r8, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0x0, 0x101, @loopback, 0xa39}, {0xa, 0xfffe, 0xfffffffd, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4}, 0x1000, {[0x6, 0x0, 0xffffffff, 0xfffffefb, 0x0, 0x1, 0x2]}}, 0x5c)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)={0x38, 0x1403, 0x1, 0x70bd2d, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0)

385.154334ms ago: executing program 2 (id=584):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
syz_emit_ethernet(0x82, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0xb, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8f}, 0x94)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x4, &(0x7f0000000000)=0x3, 0x4)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r5, 0xc0105500, &(0x7f0000000080)={0x0, 0x9, 0x3, 0x0, 0x0, 0x8, 0x0})

338.888705ms ago: executing program 4 (id=585):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r5}, 0x10)
r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r6, 0xc0105500, &(0x7f0000000080)={0x0, 0x9, 0x3, 0x0, 0x0, 0x8, 0x0})

295.419955ms ago: executing program 2 (id=586):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000003700)=""/4081, 0xff1}, {0x0}], 0x2}, 0x0)

270.722536ms ago: executing program 4 (id=587):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sched_switch\x00', r0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000000)=ANY=[@ANYRES16=r2, @ANYBLOB="010228000000fcdbdf2505"], 0x42}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140)

262.661156ms ago: executing program 2 (id=588):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x70, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x2}, 0x18)
r1 = socket$caif_stream(0x25, 0x1, 0x0)
sendmmsg$inet(r1, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000000)="92", 0x1}], 0x1}}], 0x1, 0x0)

249.636616ms ago: executing program 4 (id=589):
r0 = syz_clone(0x4020000, &(0x7f0000000280)="5bfa0b8ef6bc8368db43759bba85c5fc656c1e5cba4e543757d307692d32d1eba2d76f0c8ae7006966187584a805aef4135f87680679959ca52a", 0x3a, &(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000340)="246d7a802220ecf9553a3d63e859bd25cb9c4225dbbfda91f4a720ca76ff216471edab76ec8f3bf7b8624357d64bd9173b2f96b48ebed86a02480cd9d5a364d91d5cbfe0a972a2a3ed6364ef5d3d49ae051e1c198c9f14ee9c60ac3daec01838ce078b4e9209d00f59c1d5286044b2f3cc04e6d33d044b2cdf7e2232ed72346178a54bdea2abbc1b51f40801d8ee5cad62bcc2fcea17458ffbde370a29dbcaf2e56d1018")
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
kcmp(r0, r1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x0, &(0x7f0000000240)})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x48, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x7, 0x3, 0xc06a2f6, 0x1, 0x7}, 0x6, 0x0, 0xa, 0x0, 0x6, 0x8, 0x17, 0x9, 0x3, 0x4, {0x0, 0x2, 0x8, 0x800, 0x48704, 0x27000000}}}}]}, 0x78}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r6}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r7}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000002540)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x48)
syz_usb_connect(0x5, 0x36, 0x0, 0x0)
r8 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r8, 0x0, 0x0)
fchdir(r9)
r10 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50)
getdents(r10, &(0x7f0000001fc0)=""/184, 0xb8)

217.353377ms ago: executing program 2 (id=590):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000100)='./file0\x00', 0x3000000, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0xfd, 0x1bf, &(0x7f0000000300)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r1 = gettid()
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r3}, 0x10)
r4 = perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x5a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x101, 0x7, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000180)='cpu=~0||!')
r5 = socket$netlink(0x10, 0x3, 0x6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r6], &(0x7f0000000380)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r7, 0x0, 0x5}, 0x18)
r8 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000140), 0x438000, 0x0)
faccessat2(r8, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x420842, 0x0)
setrlimit(0x9, &(0x7f0000000000))
fstat(r7, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
r10 = geteuid()
syz_io_uring_setup(0x5c78, &(0x7f0000000cc0)={0x0, 0xf36, 0x4, 0x2, 0x250}, &(0x7f00000006c0), &(0x7f00000008c0))
mount$9p_virtio(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', &(0x7f0000000540), 0x802, &(0x7f0000000ac0)={'trans=virtio,', {[{@uname={'uname', 0x3d, 'kfree\x00'}}, {@cache_none}, {@fscache}, {@cache_none}, {@access_uid={'access', 0x3d, r9}}, {@version_L}, {@dfltuid={'dfltuid', 0x3d, r10}}], [{@fsmagic={'fsmagic', 0x3d, 0x9}}, {@subj_role={'subj_role', 0x3d, 'GPL\x00'}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@fowner_gt}, {@audit}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@fsuuid={'fsuuid', 0x3d, {[0x64, 0x33, 0x38, 0x32, 0x30, 0x38, 0x34, 0x63], 0x2d, [0x37, 0x35, 0x36, 0x30], 0x2d, [0x63, 0x35, 0x35, 0x36], 0x2d, [0x34, 0x61, 0x95, 0x31], 0x2d, [0x67, 0x33, 0x34, 0x35, 0x31, 0x38, 0x32, 0x66]}}}, {@fowner_gt={'fowner>', 0xee01}}]}})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="b400000000000000791028000000000069003a00000000009500740000000000", @ANYRESDEC], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/164, 0x0, 0x25, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffff8f}, 0x48)
sendmsg$netlink(r5, &(0x7f0000005100)={&(0x7f00000002c0)=@proc={0x10, 0x0, 0x25dfdbff, 0x1}, 0xc, &(0x7f0000004f40)=[{&(0x7f00000003c0)={0x10, 0x15, 0x400, 0x70bd25, 0x25dfdbff}, 0x10}], 0x1, &(0x7f00000050c0)=[@cred={{0x1c, 0x1, 0x2, {r1, 0x0, 0xee00}}}], 0x20, 0x4008046}, 0x8)
unshare(0x2c020400)
cachestat(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000000f40)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

86.103048ms ago: executing program 3 (id=591):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x0)
r3 = socket$kcm(0x29, 0x2, 0x0)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$RTC_WKALM_SET(r4, 0x40187014, &(0x7f0000000040)={0x1, 0x0, {0x0, 0xfffffffb, 0x0, 0x2000000, 0x5}})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
r6 = socket$kcm(0x29, 0x2, 0x0)
close(r6)
r7 = socket$kcm(0x2b, 0x1, 0x0)
close(r7)
r8 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$inet(r8, &(0x7f00000007c0)={&(0x7f0000000040)={0x2, 0x0, @private=0xa010101}, 0x10, &(0x7f0000000900)=[{&(0x7f0000000080)="92", 0x1}], 0x1, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x158}, 0x40)
setsockopt$sock_attach_bpf(r6, 0x1, 0xd, &(0x7f0000000080), 0x2cb)
close(r7)
r9 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r9, &(0x7f0000000300)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0}, 0x20000015)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000180)={<r10=>r3})
sendmsg$inet(r10, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000200)='R', 0x1}], 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f0000000040)={r9, r5})
close(r10)
r11 = socket(0x10, 0x80002, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x80, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r11}, 0x2c, {[{@version_9p2000}]}})

64.459179ms ago: executing program 0 (id=592):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x8000000000000001}, 0x5f)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x5, 0x6, 0x8, 0xad, 0x0, 0xffffffffffffffff, 0x4000000}, 0x50)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/bus/input/handlers\x00', 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$eJzs3E1PE10UwPHTF0pbAmXx5DGaGG50o5sJVNdKYyAxNpEgNb4kJgNMtenYkpkGU2NEV26NH8IFYcmORPkCbNzpxo07NiYuZGEc0+kMhTKAlNIi/H8JmcPce6b3zgzk3AnD+r23T4t5W8vrFQnHlYRERDZEBiUsvpC3DbtxTLZ6JZf7fnw+f+f+g1uZbHZsUqnxzNSVtFJqYOjDsxcJr9tKr6wNPlr/nv629v/a2fXfU08KtirYqlSuKF1Nl79W9GnTULMFu6gpNWEaum2oQsk2rHp7ud6eN8tzc1Wll2b7k3OWYdtKL1VV0aiqSllVrKqKPNYLJaVpmupPCvaTW5yc1DMtJs+0eTA4IpaV0SMiktjRklvsyoAAAEBXNdf/YVHtrP+XLqxW+u4uD3j1/0osqP6/+qV+rG31f1xEAut///MD63/9YPX/zorodDlU/Y/jYSi2Y1eoEdYarYye9H5+Xa8fLg27AfU/AAAAAAAAAAAAAAAAAAAAAAD/gg3HSTmOk/K3/leviMRFxP8+IDUiIte7MGS00SGuP06Axot70QER8818bj5X33odVkXEFEOGJSW/3PvBU4v9N49UzaB8NBe8/IX5XMRtyeSl4OaPSKpHmvMdZ/xmdmxE1W3P75Hk1vy0pOS/4Px0YH5MLl3ckq9JSj7NSFlMmXXH0ch/OaLUjdvZpvyE2w8AAAAAgJNAU5sC1++atlt7PX9zfd38fCDSWF8PB67Po3Iu2t25AwAAAABwWtjV50XdNA1rjyAh+/dpPYge0ZH9Gf5tlv+3DEc30z0C/8O3NcW9nW0/LaEDnJZdgrC0kjVUm4067Cz8x0a79ZGJ0c5fQTc48+79z/Yd8NpyfJ+Zth5E9r4Bejr2CwgAAABAxzSKfn/PaHcHBAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAKdSJ/47W7TkCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAx8WfAAAA//+SWQVN")

0s ago: executing program 2 (id=593):
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x1c)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, 0x0, 0x0}, 0x20)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, 0x0, 0x8440)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

kernel console output (not intermixed with test programs):

=process permissive=1
[   25.411504][   T29] audit: type=1400 audit(1751870095.360:61): avc:  denied  { siginh } for  pid=3284 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '10.128.0.35' (ED25519) to the list of known hosts.
[   33.812114][   T29] audit: type=1400 audit(1751870103.850:62): avc:  denied  { mounton } for  pid=3296 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   33.813311][ T3296] cgroup: Unknown subsys name 'net'
[   33.834951][   T29] audit: type=1400 audit(1751870103.850:63): avc:  denied  { mount } for  pid=3296 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   33.862364][   T29] audit: type=1400 audit(1751870103.890:64): avc:  denied  { unmount } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   34.016264][ T3296] cgroup: Unknown subsys name 'cpuset'
[   34.022582][ T3296] cgroup: Unknown subsys name 'rlimit'
[   34.193676][   T29] audit: type=1400 audit(1751870104.230:65): avc:  denied  { setattr } for  pid=3296 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   34.218184][   T29] audit: type=1400 audit(1751870104.230:66): avc:  denied  { create } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   34.238805][   T29] audit: type=1400 audit(1751870104.230:67): avc:  denied  { write } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   34.247514][ T3299] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   34.259204][   T29] audit: type=1400 audit(1751870104.240:68): avc:  denied  { read } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   34.288082][   T29] audit: type=1400 audit(1751870104.240:69): avc:  denied  { mounton } for  pid=3296 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   34.304792][ T3296] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   34.312952][   T29] audit: type=1400 audit(1751870104.240:70): avc:  denied  { mount } for  pid=3296 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   34.345163][   T29] audit: type=1400 audit(1751870104.320:71): avc:  denied  { relabelto } for  pid=3299 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   35.523058][ T3306] chnl_net:caif_netlink_parms(): no params data found
[   35.593253][ T3310] chnl_net:caif_netlink_parms(): no params data found
[   35.616391][ T3307] chnl_net:caif_netlink_parms(): no params data found
[   35.656826][ T3306] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.663902][ T3306] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.671360][ T3306] bridge_slave_0: entered allmulticast mode
[   35.677828][ T3306] bridge_slave_0: entered promiscuous mode
[   35.698095][ T3306] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.705216][ T3306] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.712484][ T3306] bridge_slave_1: entered allmulticast mode
[   35.718990][ T3306] bridge_slave_1: entered promiscuous mode
[   35.761680][ T3315] chnl_net:caif_netlink_parms(): no params data found
[   35.770628][ T3310] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.777729][ T3310] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.784890][ T3310] bridge_slave_0: entered allmulticast mode
[   35.791713][ T3310] bridge_slave_0: entered promiscuous mode
[   35.803575][ T3306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.816180][ T3306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.828203][ T3310] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.835279][ T3310] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.842464][ T3310] bridge_slave_1: entered allmulticast mode
[   35.849229][ T3310] bridge_slave_1: entered promiscuous mode
[   35.894021][ T3307] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.901218][ T3307] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.908428][ T3307] bridge_slave_0: entered allmulticast mode
[   35.914979][ T3307] bridge_slave_0: entered promiscuous mode
[   35.928897][ T3306] team0: Port device team_slave_0 added
[   35.938379][ T3310] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.947636][ T3307] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.954860][ T3307] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.962600][ T3307] bridge_slave_1: entered allmulticast mode
[   35.969011][ T3307] bridge_slave_1: entered promiscuous mode
[   35.976059][ T3306] team0: Port device team_slave_1 added
[   35.986735][ T3310] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.020240][ T3319] chnl_net:caif_netlink_parms(): no params data found
[   36.039437][ T3307] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.049213][ T3310] team0: Port device team_slave_0 added
[   36.062194][ T3315] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.069440][ T3315] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.076684][ T3315] bridge_slave_0: entered allmulticast mode
[   36.083061][ T3315] bridge_slave_0: entered promiscuous mode
[   36.090365][ T3310] team0: Port device team_slave_1 added
[   36.101820][ T3307] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.116130][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.123093][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.149074][ T3306] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.162897][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.170027][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.196050][ T3306] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.206967][ T3315] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.214097][ T3315] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.221332][ T3315] bridge_slave_1: entered allmulticast mode
[   36.227803][ T3315] bridge_slave_1: entered promiscuous mode
[   36.239057][ T3310] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.246042][ T3310] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.272070][ T3310] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.283371][ T3310] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.290456][ T3310] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.316429][ T3310] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.347142][ T3307] team0: Port device team_slave_0 added
[   36.353613][ T3307] team0: Port device team_slave_1 added
[   36.370978][ T3315] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.399656][ T3315] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.414267][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.421294][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.447311][ T3307] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.473650][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.480645][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.506593][ T3307] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.533471][ T3319] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.540678][ T3319] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.547944][ T3319] bridge_slave_0: entered allmulticast mode
[   36.554433][ T3319] bridge_slave_0: entered promiscuous mode
[   36.561466][ T3315] team0: Port device team_slave_0 added
[   36.577957][ T3306] hsr_slave_0: entered promiscuous mode
[   36.584024][ T3306] hsr_slave_1: entered promiscuous mode
[   36.591309][ T3319] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.598513][ T3319] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.605772][ T3319] bridge_slave_1: entered allmulticast mode
[   36.612235][ T3319] bridge_slave_1: entered promiscuous mode
[   36.619191][ T3315] team0: Port device team_slave_1 added
[   36.632749][ T3310] hsr_slave_0: entered promiscuous mode
[   36.638886][ T3310] hsr_slave_1: entered promiscuous mode
[   36.644647][ T3310] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   36.652329][ T3310] Cannot create hsr debugfs directory
[   36.680007][ T3319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.690384][ T3319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.699988][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.706974][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.733061][ T3315] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.767004][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.774067][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.800134][ T3315] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.838282][ T3307] hsr_slave_0: entered promiscuous mode
[   36.844412][ T3307] hsr_slave_1: entered promiscuous mode
[   36.850578][ T3307] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   36.858190][ T3307] Cannot create hsr debugfs directory
[   36.864512][ T3319] team0: Port device team_slave_0 added
[   36.886405][ T3315] hsr_slave_0: entered promiscuous mode
[   36.892471][ T3315] hsr_slave_1: entered promiscuous mode
[   36.898584][ T3315] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   36.906201][ T3315] Cannot create hsr debugfs directory
[   36.912291][ T3319] team0: Port device team_slave_1 added
[   36.969462][ T3319] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.976484][ T3319] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.002463][ T3319] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   37.026874][ T3319] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.033834][ T3319] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.059956][ T3319] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.101887][ T3310] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   37.125724][ T3310] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   37.152546][ T3319] hsr_slave_0: entered promiscuous mode
[   37.158729][ T3319] hsr_slave_1: entered promiscuous mode
[   37.164561][ T3319] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   37.172166][ T3319] Cannot create hsr debugfs directory
[   37.177783][ T3310] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   37.189488][ T3310] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   37.254581][ T3306] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   37.276759][ T3306] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   37.296701][ T3306] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   37.314932][ T3306] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   37.340414][ T3307] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   37.349179][ T3307] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   37.359949][ T3307] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   37.377512][ T3307] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   37.408996][ T3315] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   37.419998][ T3315] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   37.429083][ T3315] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   37.446245][ T3315] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   37.466142][ T3319] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   37.474871][ T3319] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   37.500931][ T3310] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.508291][ T3319] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   37.517883][ T3319] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   37.550627][ T3310] 8021q: adding VLAN 0 to HW filter on device team0
[   37.561238][  T408] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.568366][  T408] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.601405][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.608538][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.649287][ T3315] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.665252][ T3315] 8021q: adding VLAN 0 to HW filter on device team0
[   37.678001][ T3319] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.693607][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.700713][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.710126][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.717281][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.728402][ T3306] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.748496][ T3307] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.759821][ T3306] 8021q: adding VLAN 0 to HW filter on device team0
[   37.783070][ T3319] 8021q: adding VLAN 0 to HW filter on device team0
[   37.791989][  T408] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.799079][  T408] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.809743][  T408] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.816961][  T408] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.828519][ T3307] 8021q: adding VLAN 0 to HW filter on device team0
[   37.838667][ T3315] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   37.864888][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.872028][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.882569][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.889740][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.914642][ T3306] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   37.925211][ T3306] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   37.937931][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.945011][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.953773][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.960849][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.984426][ T3319] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   37.994938][ T3319] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   38.032473][ T3315] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.052535][ T3310] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.077386][ T3306] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.127394][ T3319] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.199137][ T3307] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.279236][ T3310] veth0_vlan: entered promiscuous mode
[   38.293528][ T3315] veth0_vlan: entered promiscuous mode
[   38.309898][ T3315] veth1_vlan: entered promiscuous mode
[   38.327817][ T3310] veth1_vlan: entered promiscuous mode
[   38.352090][ T3319] veth0_vlan: entered promiscuous mode
[   38.372658][ T3319] veth1_vlan: entered promiscuous mode
[   38.381829][ T3315] veth0_macvtap: entered promiscuous mode
[   38.401164][ T3307] veth0_vlan: entered promiscuous mode
[   38.409418][ T3310] veth0_macvtap: entered promiscuous mode
[   38.418732][ T3315] veth1_macvtap: entered promiscuous mode
[   38.428392][ T3319] veth0_macvtap: entered promiscuous mode
[   38.442823][ T3310] veth1_macvtap: entered promiscuous mode
[   38.450249][ T3319] veth1_macvtap: entered promiscuous mode
[   38.460702][ T3307] veth1_vlan: entered promiscuous mode
[   38.472542][ T3306] veth0_vlan: entered promiscuous mode
[   38.484335][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.495033][ T3310] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.503234][ T3306] veth1_vlan: entered promiscuous mode
[   38.511663][ T3319] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.526325][ T3319] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.534337][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.543383][ T3310] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.552128][ T3315] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.560933][ T3315] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.569850][ T3315] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.578615][ T3315] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.594634][ T3319] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.603582][ T3319] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.612380][ T3319] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.621143][ T3319] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.632859][ T3310] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.641879][ T3310] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.650690][ T3310] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.659489][ T3310] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.694642][ T3307] veth0_macvtap: entered promiscuous mode
[   38.702172][ T3307] veth1_macvtap: entered promiscuous mode
[   38.719915][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.727954][ T3306] veth0_macvtap: entered promiscuous mode
[   38.740609][ T3319] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   38.761774][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.774149][ T3306] veth1_macvtap: entered promiscuous mode
[   38.789834][ T3477] loop0: detected capacity change from 0 to 512
[   38.796934][ T3307] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.805789][ T3307] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.814531][ T3307] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.823409][ T3307] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.833522][   T29] kauditd_printk_skb: 21 callbacks suppressed
[   38.833540][   T29] audit: type=1400 audit(1751870108.880:93): avc:  denied  { open } for  pid=3476 comm="syz.0.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   38.862049][   T29] audit: type=1400 audit(1751870108.880:94): avc:  denied  { perfmon } for  pid=3476 comm="syz.0.1" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   38.882720][   T29] audit: type=1400 audit(1751870108.880:95): avc:  denied  { kernel } for  pid=3476 comm="syz.0.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   38.901762][   T29] audit: type=1400 audit(1751870108.880:96): avc:  denied  { tracepoint } for  pid=3476 comm="syz.0.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   38.925467][   T29] audit: type=1400 audit(1751870108.950:97): avc:  denied  { create } for  pid=3476 comm="syz.0.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   38.934378][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.945862][   T29] audit: type=1400 audit(1751870108.950:98): avc:  denied  { write } for  pid=3476 comm="syz.0.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   38.988218][   T29] audit: type=1400 audit(1751870109.020:99): avc:  denied  { map_create } for  pid=3479 comm="syz.3.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   39.007064][   T29] audit: type=1400 audit(1751870109.030:100): avc:  denied  { prog_load } for  pid=3479 comm="syz.3.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   39.025880][   T29] audit: type=1400 audit(1751870109.030:101): avc:  denied  { bpf } for  pid=3479 comm="syz.3.4" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   39.046178][   T29] audit: type=1400 audit(1751870109.030:102): avc:  denied  { watch watch_reads } for  pid=3479 comm="syz.3.4" path="/0" dev="tmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   39.084463][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.117044][ T3306] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.126015][ T3306] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.134939][ T3306] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.143704][ T3306] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.211737][ T3488] loop1: detected capacity change from 0 to 256
[   39.225464][ T3487] netlink: 32 bytes leftover after parsing attributes in process `syz.3.6'.
[   39.302059][ T3488] 9pnet_virtio: no channels available for device syz
[   39.450409][ T3504] netlink: 36 bytes leftover after parsing attributes in process `syz.1.11'.
[   39.520746][ T3497] loop0: detected capacity change from 0 to 2048
[   39.551193][ T3504] loop1: detected capacity change from 0 to 1024
[   39.560407][ T3504] EXT4-fs: Ignoring removed orlov option
[   39.593369][    C1] hrtimer: interrupt took 28099 ns
[   39.594876][ T3504] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.663669][ T3497] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.696404][ T3512] random: crng reseeded on system resumption
[   39.750291][ T3518] loop4: detected capacity change from 0 to 512
[   39.769440][ T3518] EXT4-fs (loop4): too many log groups per flexible block group
[   39.777413][ T3518] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   39.786000][ T3518] EXT4-fs (loop4): mount failed
[   39.902335][ T3527] loop3: detected capacity change from 0 to 512
[   39.939321][ T3526] random: crng reseeded on system resumption
[   40.039526][ T3526] loop4: detected capacity change from 0 to 512
[   40.101229][ T3526] EXT4-fs (loop4): too many log groups per flexible block group
[   40.110221][ T3526] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   40.135786][ T3497] syz.0.8 (3497) used greatest stack depth: 10456 bytes left
[   40.143480][ T3526] EXT4-fs (loop4): mount failed
[   40.228929][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.439836][ T3534] netlink: 256 bytes leftover after parsing attributes in process `syz.4.19'.
[   40.525767][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.944552][ T3548] netlink: 32 bytes leftover after parsing attributes in process `syz.2.23'.
[   40.989053][ T3551] mmap: syz.4.21 (3551) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   41.011099][ T3550] netlink: 36 bytes leftover after parsing attributes in process `syz.2.24'.
[   41.034711][ T3553] loop3: detected capacity change from 0 to 512
[   41.054458][ T3550] loop2: detected capacity change from 0 to 1024
[   41.080251][ T3550] EXT4-fs: Ignoring removed orlov option
[   41.108455][ T3550] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.152796][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.290348][ T3560] netlink: 256 bytes leftover after parsing attributes in process `syz.4.28'.
[   41.303992][ T3558] loop2: detected capacity change from 0 to 2048
[   41.338577][ T3558] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.399786][ T3566] random: crng reseeded on system resumption
[   41.789669][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.810844][ T3577] loop4: detected capacity change from 0 to 2048
[   41.826354][ T3575] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[   41.846183][ T1037] IPVS: starting estimator thread 0...
[   41.847465][ T3577] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.935579][ T3582] IPVS: using max 2352 ests per chain, 117600 per kthread
[   41.947438][ T3586] netlink: 256 bytes leftover after parsing attributes in process `syz.2.33'.
[   42.267075][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.571738][ T3621] loop4: detected capacity change from 0 to 2048
[   42.580093][ T3622] netlink: 256 bytes leftover after parsing attributes in process `syz.1.46'.
[   42.619934][ T3621] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.651456][ T3628] netlink: 44 bytes leftover after parsing attributes in process `syz.1.48'.
[   42.698468][ T3632] loop1: detected capacity change from 0 to 512
[   42.793934][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.867252][ T3640] loop4: detected capacity change from 0 to 2048
[   42.879135][ T3640] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.098597][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.612182][ T3676] netlink: 4 bytes leftover after parsing attributes in process `syz.1.69'.
[   43.647475][ T3676] hsr_slave_0 (unregistering): left promiscuous mode
[   43.678662][ T3682] loop0: detected capacity change from 0 to 256
[   43.710989][ T3682] 9pnet_virtio: no channels available for device syz
[   43.724537][ T3683] random: crng reseeded on system resumption
[   44.039828][ T3712] random: crng reseeded on system resumption
[   44.052943][   T29] kauditd_printk_skb: 336 callbacks suppressed
[   44.052969][   T29] audit: type=1326 audit(1751870114.090:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3715 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92cce3e929 code=0x7ffc0000
[   44.082598][   T29] audit: type=1326 audit(1751870114.090:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3715 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92cce3e929 code=0x7ffc0000
[   44.112817][ T3714] hsr_slave_0 (unregistering): left promiscuous mode
[   44.149462][   T29] audit: type=1326 audit(1751870114.120:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3715 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f92cce3e929 code=0x7ffc0000
[   44.172966][   T29] audit: type=1326 audit(1751870114.120:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3715 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92cce3e929 code=0x7ffc0000
[   44.196265][   T29] audit: type=1326 audit(1751870114.120:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3715 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92cce3e929 code=0x7ffc0000
[   44.219987][   T29] audit: type=1326 audit(1751870114.120:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3715 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92cce3e929 code=0x7ffc0000
[   44.243539][   T29] audit: type=1326 audit(1751870114.120:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3715 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92cce3e929 code=0x7ffc0000
[   44.266717][   T29] audit: type=1326 audit(1751870114.120:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3715 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92cce3e929 code=0x7ffc0000
[   44.290130][   T29] audit: type=1326 audit(1751870114.120:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3715 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92cce3e929 code=0x7ffc0000
[   44.313565][   T29] audit: type=1326 audit(1751870114.120:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3715 comm="syz.4.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92cce3e929 code=0x7ffc0000
[   44.342518][ T3720] random: crng reseeded on system resumption
[   44.443473][ T3732] __nla_validate_parse: 3 callbacks suppressed
[   44.443488][ T3732] netlink: 36 bytes leftover after parsing attributes in process `syz.3.91'.
[   44.467635][ T3732] loop3: detected capacity change from 0 to 1024
[   44.474188][ T3735] loop0: detected capacity change from 0 to 512
[   44.474515][ T3732] EXT4-fs: Ignoring removed orlov option
[   44.523090][ T3732] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.593415][ T3739] netlink: 256 bytes leftover after parsing attributes in process `syz.1.94'.
[   44.773745][ T3754] random: crng reseeded on system resumption
[   45.185993][ T3761] netlink: 4 bytes leftover after parsing attributes in process `syz.1.101'.
[   45.213352][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.327960][ T3766] loop2: detected capacity change from 0 to 128
[   45.649138][ T3776] loop3: detected capacity change from 0 to 2048
[   45.695438][ T3776] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.940495][   T37] kworker/u8:2: attempt to access beyond end of device
[   45.940495][   T37] loop2: rw=1, sector=145, nr_sectors = 896 limit=128
[   45.966776][ T3796] netlink: 36 bytes leftover after parsing attributes in process `syz.0.113'.
[   46.072217][ T3798] loop1: detected capacity change from 0 to 128
[   46.133852][ T3799] loop0: detected capacity change from 0 to 1024
[   46.252416][ T3799] EXT4-fs: Ignoring removed orlov option
[   46.367120][ T3799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.417954][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.534528][ T3807] netlink: 4 bytes leftover after parsing attributes in process `syz.3.117'.
[   46.550553][ T3807] hsr_slave_0 (unregistering): left promiscuous mode
[   46.658203][ T3808] loop2: detected capacity change from 0 to 128
[   46.784456][   T31] kworker/u8:1: attempt to access beyond end of device
[   46.784456][   T31] loop1: rw=1, sector=145, nr_sectors = 896 limit=128
[   46.826333][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.098738][  T408] kworker/u8:6: attempt to access beyond end of device
[   47.098738][  T408] loop2: rw=1, sector=145, nr_sectors = 896 limit=128
[   47.175891][ T3833] loop4: detected capacity change from 0 to 256
[   47.199938][ T3830] netlink: 4 bytes leftover after parsing attributes in process `syz.2.126'.
[   47.222066][ T3833] 9pnet_virtio: no channels available for device syz
[   47.299702][ T3836] random: crng reseeded on system resumption
[   47.557235][ T3855] loop4: detected capacity change from 0 to 128
[   47.810348][ T3866] loop1: detected capacity change from 0 to 256
[   47.860703][ T3868] netlink: 4 bytes leftover after parsing attributes in process `syz.2.143'.
[   47.870923][ T3866] 9pnet_virtio: no channels available for device syz
[   47.993777][ T3879] netlink: 36 bytes leftover after parsing attributes in process `syz.2.147'.
[   48.009020][ T3879] loop2: detected capacity change from 0 to 1024
[   48.015815][ T3879] EXT4-fs: Ignoring removed orlov option
[   48.029424][ T3879] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.147754][ T3886] loop3: detected capacity change from 0 to 128
[   48.289791][  T362] kworker/u8:5: attempt to access beyond end of device
[   48.289791][  T362] loop4: rw=1, sector=145, nr_sectors = 896 limit=128
[   48.680601][ T3910] loop4: detected capacity change from 0 to 256
[   48.700646][ T3911] netlink: 4 bytes leftover after parsing attributes in process `syz.1.157'.
[   48.787679][ T3910] 9pnet_virtio: no channels available for device syz
[   48.881054][ T3919] loop3: detected capacity change from 0 to 1024
[   48.900911][ T3919] =======================================================
[   48.900911][ T3919] WARNING: The mand mount option has been deprecated and
[   48.900911][ T3919]          and is ignored by this kernel. Remove the mand
[   48.900911][ T3919]          option from the mount to silence this warning.
[   48.900911][ T3919] =======================================================
[   48.966964][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.978774][ T3919] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.023233][   T36] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=36 comm=kworker/1:1
[   49.067251][ T3926] loop2: detected capacity change from 0 to 2048
[   49.095140][ T3926] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.299301][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.427049][ T3941] netlink: 4 bytes leftover after parsing attributes in process `syz.2.170'.
[   49.637568][ T3951] loop4: detected capacity change from 0 to 128
[   49.836480][ T3952] loop2: detected capacity change from 0 to 128
[   49.944264][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.045363][ T3960] netlink: 36 bytes leftover after parsing attributes in process `syz.0.176'.
[   50.060462][ T3958] loop3: detected capacity change from 0 to 1024
[   50.063139][ T3960] loop0: detected capacity change from 0 to 1024
[   50.074125][ T3960] EXT4-fs: Ignoring removed orlov option
[   50.092593][ T3960] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.092745][ T3958] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.127775][   T36] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=36 comm=kworker/1:1
[   50.428730][   T29] kauditd_printk_skb: 278 callbacks suppressed
[   50.428748][   T29] audit: type=1326 audit(1751870120.470:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   50.460680][   T29] audit: type=1326 audit(1751870120.470:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   50.484094][   T29] audit: type=1326 audit(1751870120.470:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   50.507428][   T29] audit: type=1326 audit(1751870120.470:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   50.530823][   T29] audit: type=1326 audit(1751870120.470:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   50.554124][   T29] audit: type=1326 audit(1751870120.470:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   50.577565][   T29] audit: type=1326 audit(1751870120.470:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   50.601049][   T29] audit: type=1326 audit(1751870120.470:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   50.624373][   T29] audit: type=1326 audit(1751870120.470:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   50.647677][   T29] audit: type=1326 audit(1751870120.470:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   50.713907][ T3970] loop4: detected capacity change from 0 to 128
[   50.864005][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.884670][ T3975] random: crng reseeded on system resumption
[   50.908263][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.951997][ T3981] netlink: 256 bytes leftover after parsing attributes in process `syz.0.181'.
[   51.000682][ T3977] netlink: 4 bytes leftover after parsing attributes in process `syz.1.182'.
[   51.163309][  T408] kworker/u8:6: attempt to access beyond end of device
[   51.163309][  T408] loop4: rw=1, sector=145, nr_sectors = 896 limit=128
[   51.299842][ T4001] loop2: detected capacity change from 0 to 128
[   51.368497][ T4000] loop4: detected capacity change from 0 to 2048
[   51.461006][ T4000] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.676917][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.765977][ T4019] loop0: detected capacity change from 0 to 128
[   51.804178][ T4020] netlink: 52 bytes leftover after parsing attributes in process `syz.4.195'.
[   51.814473][ T4020] netlink: 52 bytes leftover after parsing attributes in process `syz.4.195'.
[   51.911857][   T31] kworker/u8:1: attempt to access beyond end of device
[   51.911857][   T31] loop2: rw=1, sector=145, nr_sectors = 896 limit=128
[   52.009334][ T4023] netlink: 256 bytes leftover after parsing attributes in process `syz.2.196'.
[   52.119284][ T4032] netlink: 'syz.2.199': attribute type 3 has an invalid length.
[   52.130044][ T4033] Invalid option length (341) for dns_resolver key
[   52.138269][ T4032] netlink: 'syz.2.199': attribute type 3 has an invalid length.
[   52.165400][ T4036] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4036 comm=syz.2.200
[   52.582847][ T4054] loop4: detected capacity change from 0 to 128
[   52.622717][ T4056] netlink: 28 bytes leftover after parsing attributes in process `syz.0.210'.
[   52.698084][ T2996] udevd[2996]: worker [3300] terminated by signal 33 (Unknown signal 33)
[   53.648887][ T4052] loop1: detected capacity change from 0 to 128
[   53.743816][  T408] kworker/u8:6: attempt to access beyond end of device
[   53.743816][  T408] loop1: rw=1, sector=145, nr_sectors = 896 limit=128
[   53.886743][ T4077] loop0: detected capacity change from 0 to 128
[   53.963134][ T4092] netlink: 'syz.0.221': attribute type 10 has an invalid length.
[   53.972607][ T4092] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.979894][ T4092] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.009519][ T4092] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.016653][ T4092] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.022912][ T4100] netlink: 4 bytes leftover after parsing attributes in process `syz.0.221'.
[   54.023972][ T4092] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.039774][ T4092] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.048851][ T4098] loop1: detected capacity change from 0 to 256
[   54.060744][ T4099] netlink: 36 bytes leftover after parsing attributes in process `syz.2.223'.
[   54.077657][ T4098] 9pnet_virtio: no channels available for device syz
[   54.104266][ T4092] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   54.115707][ T4100] bridge_slave_1: left allmulticast mode
[   54.121438][ T4100] bridge_slave_1: left promiscuous mode
[   54.127175][ T4100] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.152410][ T4101] loop2: detected capacity change from 0 to 1024
[   54.163876][ T4100] bridge_slave_0: left allmulticast mode
[   54.166423][ T4101] EXT4-fs: Ignoring removed orlov option
[   54.169643][ T4100] bridge_slave_0: left promiscuous mode
[   54.180960][ T4100] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.198685][ T4101] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.239413][ T4100] bond0: (slave bridge0): Releasing backup interface
[   54.481246][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.737943][ T4123] netlink: 36 bytes leftover after parsing attributes in process `syz.2.229'.
[   54.738048][ T4120] loop4: detected capacity change from 0 to 128
[   54.899734][ T4131] loop2: detected capacity change from 0 to 1024
[   54.918852][ T4131] EXT4-fs: Ignoring removed orlov option
[   54.929106][ T4131] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.941921][ T4092] syz.0.221 (4092) used greatest stack depth: 10016 bytes left
[   55.036741][ T4142] loop0: detected capacity change from 0 to 1024
[   55.043600][ T4142] EXT4-fs: Ignoring removed orlov option
[   55.071456][ T4142] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.229954][ T4157] loop4: detected capacity change from 0 to 256
[   55.260351][ T4157] 9pnet_virtio: no channels available for device syz
[   55.276286][ T4161] __nla_validate_parse: 2 callbacks suppressed
[   55.276301][ T4161] netlink: 256 bytes leftover after parsing attributes in process `syz.1.247'.
[   55.343985][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.411495][ T4178] loop4: detected capacity change from 0 to 1024
[   55.438918][ T4178] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.454971][   T29] kauditd_printk_skb: 309 callbacks suppressed
[   55.454989][   T29] audit: type=1400 audit(1751870125.490:1046): avc:  denied  { read write } for  pid=4177 comm="syz.4.252" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   55.484011][   T29] audit: type=1400 audit(1751870125.490:1047): avc:  denied  { open } for  pid=4177 comm="syz.4.252" path="/58/file1/file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   55.516482][ T4183] netlink: 36 bytes leftover after parsing attributes in process `syz.4.252'.
[   55.563398][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.602383][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.692756][ T4198] netlink: 256 bytes leftover after parsing attributes in process `syz.0.259'.
[   55.800994][ T4203] netlink: 36 bytes leftover after parsing attributes in process `syz.0.260'.
[   55.817212][ T4203] loop0: detected capacity change from 0 to 1024
[   55.824234][ T4203] EXT4-fs: Ignoring removed orlov option
[   56.242017][ T4203] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.313362][ T4218] loop4: detected capacity change from 0 to 1024
[   56.346019][ T4218] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.381195][ T4218] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.264: Allocating blocks 449-513 which overlap fs metadata
[   56.483222][ T4229] netlink: 'syz.1.269': attribute type 10 has an invalid length.
[   56.491506][ T4229] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.499113][ T4229] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.510576][ T4229] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.517765][ T4229] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.525159][ T4229] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.532340][ T4229] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.543203][ T4229] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   56.563763][ T4231] netlink: 4 bytes leftover after parsing attributes in process `syz.1.269'.
[   56.572990][ T4231] bridge_slave_1: left allmulticast mode
[   56.578940][ T4231] bridge_slave_1: left promiscuous mode
[   56.584623][ T4232] FAULT_INJECTION: forcing a failure.
[   56.584623][ T4232] name failslab, interval 1, probability 0, space 0, times 0
[   56.584699][ T4231] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.597355][ T4232] CPU: 1 UID: 0 PID: 4232 Comm: syz.2.270 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(voluntary) 
[   56.597394][ T4232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.597410][ T4232] Call Trace:
[   56.597418][ T4232]  <TASK>
[   56.597428][ T4232]  __dump_stack+0x1d/0x30
[   56.597460][ T4232]  dump_stack_lvl+0xe8/0x140
[   56.597487][ T4232]  dump_stack+0x15/0x1b
[   56.597597][ T4232]  should_fail_ex+0x265/0x280
[   56.597640][ T4232]  should_failslab+0x8c/0xb0
[   56.597687][ T4232]  kmem_cache_alloc_node_noprof+0x57/0x320
[   56.597788][ T4232]  ? __alloc_skb+0x101/0x320
[   56.597829][ T4232]  __alloc_skb+0x101/0x320
[   56.597868][ T4232]  netlink_alloc_large_skb+0xba/0xf0
[   56.597909][ T4232]  netlink_sendmsg+0x3cf/0x6b0
[   56.598036][ T4232]  ? __pfx_netlink_sendmsg+0x10/0x10
[   56.598082][ T4232]  __sock_sendmsg+0x145/0x180
[   56.598196][ T4232]  ____sys_sendmsg+0x31e/0x4e0
[   56.598246][ T4232]  ___sys_sendmsg+0x17b/0x1d0
[   56.598309][ T4232]  __x64_sys_sendmsg+0xd4/0x160
[   56.598415][ T4232]  x64_sys_call+0x2999/0x2fb0
[   56.598446][ T4232]  do_syscall_64+0xd2/0x200
[   56.598490][ T4232]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.598531][ T4232]  ? clear_bhb_loop+0x40/0x90
[   56.598567][ T4232]  ? clear_bhb_loop+0x40/0x90
[   56.598597][ T4232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.598626][ T4232] RIP: 0033:0x7fb559a1e929
[   56.598652][ T4232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.598677][ T4232] RSP: 002b:00007fb558087038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   56.598707][ T4232] RAX: ffffffffffffffda RBX: 00007fb559c45fa0 RCX: 00007fb559a1e929
[   56.598729][ T4232] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[   56.598747][ T4232] RBP: 00007fb558087090 R08: 0000000000000000 R09: 0000000000000000
[   56.598764][ T4232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.598815][ T4232] R13: 0000000000000000 R14: 00007fb559c45fa0 R15: 00007ffffa70af08
[   56.598843][ T4232]  </TASK>
[   56.621342][ T4217] EXT4-fs (loop4): pa ffff888106a770e0: logic 48, phys. 177, len 21
[   56.752150][   T29] audit: type=1400 audit(1751870126.790:1048): avc:  denied  { mounton } for  pid=4233 comm="syz.2.272" path="/66/file0" dev="tmpfs" ino=362 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   56.758395][ T4217] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   56.854119][   T29] audit: type=1400 audit(1751870126.890:1049): avc:  denied  { mount } for  pid=4233 comm="syz.2.272" name="/" dev="ramfs" ino=6056 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   56.876599][ T4231] bridge_slave_0: left allmulticast mode
[   56.882291][ T4231] bridge_slave_0: left promiscuous mode
[   56.887654][ T4236] netlink: 256 bytes leftover after parsing attributes in process `syz.3.271'.
[   56.888336][ T4231] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.905560][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.926117][ T4231] bond0: (slave bridge0): Releasing backup interface
[   57.000139][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.085124][ T4245] loop3: detected capacity change from 0 to 1024
[   57.092137][ T4245] EXT4-fs: Ignoring removed nobh option
[   57.097810][ T4245] EXT4-fs: Ignoring removed bh option
[   57.104485][ T4247] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4247 comm=syz.0.274
[   57.120178][   T29] audit: type=1400 audit(1751870127.170:1050): avc:  denied  { create } for  pid=4248 comm="syz.2.276" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   57.143266][ T4249] Zero length message leads to an empty skb
[   57.144481][ T4245] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.149530][ T4249] FAULT_INJECTION: forcing a failure.
[   57.149530][ T4249] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   57.174988][ T4249] CPU: 1 UID: 0 PID: 4249 Comm: syz.2.276 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(voluntary) 
[   57.175022][ T4249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   57.175112][ T4249] Call Trace:
[   57.175118][ T4249]  <TASK>
[   57.175126][ T4249]  __dump_stack+0x1d/0x30
[   57.175152][ T4249]  dump_stack_lvl+0xe8/0x140
[   57.175171][ T4249]  dump_stack+0x15/0x1b
[   57.175187][ T4249]  should_fail_ex+0x265/0x280
[   57.175233][ T4249]  should_fail+0xb/0x20
[   57.175266][ T4249]  should_fail_usercopy+0x1a/0x20
[   57.175302][ T4249]  _copy_to_user+0x20/0xa0
[   57.175322][ T4249]  simple_read_from_buffer+0xb5/0x130
[   57.175431][ T4249]  proc_fail_nth_read+0x100/0x140
[   57.175467][ T4249]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   57.175591][ T4249]  vfs_read+0x19d/0x6f0
[   57.175624][ T4249]  ? __rcu_read_unlock+0x4f/0x70
[   57.175653][ T4249]  ? __fget_files+0x184/0x1c0
[   57.175673][ T4249]  ? finish_task_switch+0xad/0x2b0
[   57.175757][ T4249]  ksys_read+0xda/0x1a0
[   57.175810][ T4249]  __x64_sys_read+0x40/0x50
[   57.175933][ T4249]  x64_sys_call+0x2d77/0x2fb0
[   57.175960][ T4249]  do_syscall_64+0xd2/0x200
[   57.176029][ T4249]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   57.176057][ T4249]  ? clear_bhb_loop+0x40/0x90
[   57.176084][ T4249]  ? clear_bhb_loop+0x40/0x90
[   57.176169][ T4249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.176189][ T4249] RIP: 0033:0x7fb559a1d33c
[   57.176204][ T4249] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   57.176289][ T4249] RSP: 002b:00007fb558087030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   57.176308][ T4249] RAX: ffffffffffffffda RBX: 00007fb559c45fa0 RCX: 00007fb559a1d33c
[   57.176320][ T4249] RDX: 000000000000000f RSI: 00007fb5580870a0 RDI: 0000000000000008
[   57.176331][ T4249] RBP: 00007fb558087090 R08: 0000000000000000 R09: 0000000000000000
[   57.176342][ T4249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.176353][ T4249] R13: 0000000000000000 R14: 00007fb559c45fa0 R15: 00007ffffa70af08
[   57.176412][ T4249]  </TASK>
[   57.567672][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.622787][ T4257] random: crng reseeded on system resumption
[   57.805862][ T4266] netlink: 36 bytes leftover after parsing attributes in process `syz.4.283'.
[   57.818551][ T4264] random: crng reseeded on system resumption
[   57.825202][ T4266] loop4: detected capacity change from 0 to 1024
[   57.832034][ T4266] EXT4-fs: Ignoring removed orlov option
[   57.841808][ T4266] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.921610][ T4268] loop1: detected capacity change from 0 to 128
[   57.999973][ T4272] netlink: 36 bytes leftover after parsing attributes in process `syz.0.285'.
[   58.034158][ T4273] loop3: detected capacity change from 0 to 2048
[   58.056582][ T4272] loop0: detected capacity change from 0 to 1024
[   58.065286][ T4272] EXT4-fs: Ignoring removed orlov option
[   58.260337][ T4273] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.275690][ T4272] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.516016][ T4284] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[   58.523724][ T4284] audit: out of memory in audit_log_start
[   58.538464][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.565329][ T4284] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[   58.577429][   T29] audit: type=1400 audit(1751870128.620:1051): avc:  denied  { relabelto } for  pid=4283 comm="syz.2.288" name="" dev="pipefs" ino=6713 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=fifo_file permissive=1 trawcon="system_u:object_r:dhcp_state_t:s0"
[   58.606946][  T362] kworker/u8:5: attempt to access beyond end of device
[   58.606946][  T362] loop1: rw=1, sector=145, nr_sectors = 896 limit=128
[   58.669883][ T4286] random: crng reseeded on system resumption
[   58.756463][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.849218][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.888241][   T29] audit: type=1400 audit(1751870128.930:1052): avc:  denied  { create } for  pid=4303 comm=")" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   58.949803][   T29] audit: type=1400 audit(1751870128.930:1053): avc:  denied  { ioctl } for  pid=4303 comm="syz.4.298" path="socket:[7180]" dev="sockfs" ino=7180 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   59.019486][ T4317] netlink: 4 bytes leftover after parsing attributes in process `syz.2.300'.
[   59.149910][ T4330] random: crng reseeded on system resumption
[   59.156844][ T4332] loop0: detected capacity change from 0 to 8192
[   59.198019][ T4332]  loop0: p1 p2 < > p3 p4 < p5 >
[   59.203033][ T4332] loop0: partition table partially beyond EOD, truncated
[   59.212047][ T4332] loop0: p1 size 100663296 extends beyond EOD, truncated
[   59.219863][ T4332] loop0: p2 start 591104 is beyond EOD, truncated
[   59.226359][ T4332] loop0: p3 start 33572980 is beyond EOD, truncated
[   59.234995][ T4332] loop0: p5 size 100663296 extends beyond EOD, truncated
[   59.243781][ T4338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.302'.
[   59.338929][ T4347] loop1: detected capacity change from 0 to 1024
[   59.348296][ T4347] EXT4-fs: Ignoring removed orlov option
[   59.354656][ T4332] loop0: detected capacity change from 0 to 8192
[   59.366424][ T4347] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.449133][ T4352] hsr_slave_0 (unregistering): left promiscuous mode
[   59.456209][ T4358] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   59.559450][ T4365] random: crng reseeded on system resumption
[   59.648757][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.698888][ T4371] loop4: detected capacity change from 0 to 8192
[   59.754864][ T4371]  loop4: p1 p2 < > p3 p4 < p5 >
[   59.759889][ T4371] loop4: partition table partially beyond EOD, truncated
[   59.782194][ T4371] loop4: p1 size 100663296 extends beyond EOD, truncated
[   59.790682][ T4371] loop4: p2 start 591104 is beyond EOD, truncated
[   59.797575][ T4371] loop4: p3 start 33572980 is beyond EOD, truncated
[   59.812930][ T4371] loop4: p5 size 100663296 extends beyond EOD, truncated
[   59.913606][ T4371] loop4: detected capacity change from 0 to 8192
[   59.965120][ T4395] loop1: detected capacity change from 0 to 1024
[   59.972011][ T4395] EXT4-fs: Ignoring removed orlov option
[   59.982844][ T4397] loop4: detected capacity change from 0 to 2048
[   59.983576][ T4395] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.007063][ T4397] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   60.156046][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.216295][ T4406] loop4: detected capacity change from 0 to 1024
[   60.223098][ T4406] EXT4-fs: Ignoring removed orlov option
[   60.231485][ T4406] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.303896][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.509423][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.566523][ T4423] __nla_validate_parse: 6 callbacks suppressed
[   60.566543][ T4423] netlink: 4 bytes leftover after parsing attributes in process `syz.3.341'.
[   60.607048][   T29] kauditd_printk_skb: 209 callbacks suppressed
[   60.607063][   T29] audit: type=1326 audit(1751870130.650:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4428 comm="syz.3.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536a62e929 code=0x7ffc0000
[   60.636835][   T29] audit: type=1326 audit(1751870130.650:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4428 comm="syz.3.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536a62e929 code=0x7ffc0000
[   60.725533][   T29] audit: type=1326 audit(1751870130.700:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4428 comm="syz.3.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f536a62e929 code=0x7ffc0000
[   60.737585][ T4437] loop0: detected capacity change from 0 to 2048
[   60.748923][   T29] audit: type=1326 audit(1751870130.700:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4428 comm="syz.3.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536a62e929 code=0x7ffc0000
[   60.778640][   T29] audit: type=1326 audit(1751870130.700:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4428 comm="syz.3.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536a62e929 code=0x7ffc0000
[   60.802063][   T29] audit: type=1326 audit(1751870130.700:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4428 comm="syz.3.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f536a62e929 code=0x7ffc0000
[   60.825596][   T29] audit: type=1326 audit(1751870130.700:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4428 comm="syz.3.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536a62e929 code=0x7ffc0000
[   60.828845][ T4446] netlink: 36 bytes leftover after parsing attributes in process `syz.2.348'.
[   60.848958][   T29] audit: type=1326 audit(1751870130.700:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4428 comm="syz.3.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536a62e929 code=0x7ffc0000
[   60.881257][   T29] audit: type=1326 audit(1751870130.700:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4428 comm="syz.3.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f536a62e929 code=0x7ffc0000
[   60.885851][ T4430] netlink: 4 bytes leftover after parsing attributes in process `syz.4.344'.
[   60.904679][   T29] audit: type=1326 audit(1751870130.700:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4428 comm="syz.3.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536a62e929 code=0x7ffc0000
[   60.939667][ T4447] loop2: detected capacity change from 0 to 1024
[   60.947003][ T4437] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   60.960218][ T4436] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.971282][ T4447] EXT4-fs: Ignoring removed orlov option
[   60.997170][ T4447] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.014300][ T4436] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.091310][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.118537][ T4436] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.199067][ T4436] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.261195][ T4459] loop1: detected capacity change from 0 to 128
[   61.652735][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.691597][ T4436] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.708749][ T4436] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.717203][ T4463] netlink: 4 bytes leftover after parsing attributes in process `syz.2.353'.
[   61.738951][ T4436] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.757579][ T4436] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.936196][  T408] kworker/u8:6: attempt to access beyond end of device
[   61.936196][  T408] loop1: rw=1, sector=145, nr_sectors = 896 limit=128
[   62.092894][ T4489] netlink: 36 bytes leftover after parsing attributes in process `syz.4.364'.
[   62.107723][ T4489] loop4: detected capacity change from 0 to 1024
[   62.114574][ T4489] EXT4-fs: Ignoring removed orlov option
[   62.180519][ T4485] loop0: detected capacity change from 0 to 128
[   62.269930][ T4500] netlink: 4 bytes leftover after parsing attributes in process `syz.0.368'.
[   62.704464][ T4525] loop0: detected capacity change from 0 to 2048
[   62.728805][ T4530] netlink: 4 bytes leftover after parsing attributes in process `syz.4.381'.
[   62.799370][ T4542] loop4: detected capacity change from 0 to 512
[   62.813276][ T4545] loop2: detected capacity change from 0 to 512
[   62.931037][ T4547] loop3: detected capacity change from 0 to 2048
[   63.533118][ T4576] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=5123 sclass=netlink_audit_socket pid=4576 comm=syz.1.395
[   63.593221][ T4575] netlink: 4 bytes leftover after parsing attributes in process `syz.3.396'.
[   63.723000][ T4582] loop1: detected capacity change from 0 to 128
[   63.844648][ T4589] random: crng reseeded on system resumption
[   63.933331][ T4597] random: crng reseeded on system resumption
[   63.992691][ T4601] netlink: 36 bytes leftover after parsing attributes in process `syz.4.407'.
[   64.036388][ T4601] loop4: detected capacity change from 0 to 1024
[   64.044265][ T4605] netlink: 36 bytes leftover after parsing attributes in process `syz.3.409'.
[   64.054955][ T4601] EXT4-fs: Ignoring removed orlov option
[   64.066551][ T4605] loop3: detected capacity change from 0 to 1024
[   64.073257][ T4605] EXT4-fs: Ignoring removed orlov option
[   64.444594][ T4619] loop1: detected capacity change from 0 to 1024
[   64.470676][ T4625] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   64.479308][ T4619] EXT4-fs: Ignoring removed orlov option
[   64.490341][ T4621] loop4: detected capacity change from 0 to 512
[   64.685836][ T4640] loop0: detected capacity change from 0 to 512
[   64.692649][ T4640] EXT4-fs: Ignoring removed mblk_io_submit option
[   64.912687][ T4640] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   64.946422][ T4640] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   64.992092][ T4640] EXT4-fs (loop0): orphan cleanup on readonly fs
[   65.029935][ T4640] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.421: Invalid block bitmap block 0 in block_group 0
[   65.099291][ T4640] EXT4-fs (loop0): Remounting filesystem read-only
[   65.140131][ T4640] EXT4-fs (loop0): 1 orphan inode deleted
[   65.255810][ T4640] syz.0.421 (4640) used greatest stack depth: 9608 bytes left
[   65.278517][ T4653] loop0: detected capacity change from 0 to 1024
[   65.285156][ T4653] EXT4-fs: Ignoring removed orlov option
[   65.353306][ T4660] loop2: detected capacity change from 0 to 512
[   65.370794][ T4660] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   65.386775][ T4660] EXT4-fs (loop2): mount failed
[   65.457977][ T4672] 9pnet: p9_errstr2errno: server reported unknown error 1844674407
[   65.535415][ T4678] loop2: detected capacity change from 0 to 2048
[   65.547462][ T4681] lo speed is unknown, defaulting to 1000
[   65.553919][ T4681] lo speed is unknown, defaulting to 1000
[   65.560456][ T4681] lo speed is unknown, defaulting to 1000
[   65.566900][ T4681] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   65.574863][ T4681] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   65.588285][ T4681] lo speed is unknown, defaulting to 1000
[   65.595623][ T4681] lo speed is unknown, defaulting to 1000
[   65.601823][ T4681] lo speed is unknown, defaulting to 1000
[   65.608145][ T4681] lo speed is unknown, defaulting to 1000
[   65.614545][ T4681] lo speed is unknown, defaulting to 1000
[   65.692282][ T4684] __nla_validate_parse: 4 callbacks suppressed
[   65.692298][ T4684] netlink: 36 bytes leftover after parsing attributes in process `syz.0.436'.
[   65.712674][ T4684] loop0: detected capacity change from 0 to 1024
[   65.719604][ T4684] EXT4-fs: Ignoring removed orlov option
[   65.818652][ T4694] loop2: detected capacity change from 0 to 512
[   65.956860][   T29] kauditd_printk_skb: 313 callbacks suppressed
[   65.956952][   T29] audit: type=1326 audit(1751870136.000:1582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4696 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98de33e929 code=0x7ffc0000
[   65.987539][   T29] audit: type=1326 audit(1751870136.000:1583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4696 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98de33e929 code=0x7ffc0000
[   66.010902][   T29] audit: type=1326 audit(1751870136.000:1584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4696 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f98de33e929 code=0x7ffc0000
[   66.034350][   T29] audit: type=1326 audit(1751870136.000:1585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4696 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98de33e929 code=0x7ffc0000
[   66.057707][   T29] audit: type=1326 audit(1751870136.000:1586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4696 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f98de33e929 code=0x7ffc0000
[   66.081317][   T29] audit: type=1326 audit(1751870136.000:1587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4696 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98de33e929 code=0x7ffc0000
[   66.104732][   T29] audit: type=1326 audit(1751870136.000:1588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4696 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f98de33e929 code=0x7ffc0000
[   66.128175][   T29] audit: type=1326 audit(1751870136.000:1589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4696 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98de33e929 code=0x7ffc0000
[   66.151628][   T29] audit: type=1326 audit(1751870136.000:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4696 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f98de33e929 code=0x7ffc0000
[   66.175043][   T29] audit: type=1326 audit(1751870136.000:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4696 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98de33e929 code=0x7ffc0000
[   66.220549][ T4707] loop3: detected capacity change from 0 to 128
[   66.260271][ T4708] lo speed is unknown, defaulting to 1000
[   66.702535][ T4717] loop3: detected capacity change from 0 to 128
[   66.753373][ T4725] FAULT_INJECTION: forcing a failure.
[   66.753373][ T4725] name failslab, interval 1, probability 0, space 0, times 0
[   66.766354][ T4725] CPU: 0 UID: 0 PID: 4725 Comm: syz.1.454 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(voluntary) 
[   66.766385][ T4725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   66.766399][ T4725] Call Trace:
[   66.766404][ T4725]  <TASK>
[   66.766411][ T4725]  __dump_stack+0x1d/0x30
[   66.766443][ T4725]  dump_stack_lvl+0xe8/0x140
[   66.766466][ T4725]  dump_stack+0x15/0x1b
[   66.766586][ T4725]  should_fail_ex+0x265/0x280
[   66.766624][ T4725]  should_failslab+0x8c/0xb0
[   66.766651][ T4725]  kmem_cache_alloc_node_noprof+0x57/0x320
[   66.766685][ T4725]  ? __alloc_skb+0x101/0x320
[   66.766761][ T4725]  __alloc_skb+0x101/0x320
[   66.766797][ T4725]  netlink_alloc_large_skb+0xba/0xf0
[   66.766879][ T4725]  netlink_sendmsg+0x3cf/0x6b0
[   66.766942][ T4725]  ? __pfx_netlink_sendmsg+0x10/0x10
[   66.766985][ T4725]  __sock_sendmsg+0x145/0x180
[   66.767062][ T4725]  ____sys_sendmsg+0x345/0x4e0
[   66.767106][ T4725]  ___sys_sendmsg+0x17b/0x1d0
[   66.767155][ T4725]  __sys_sendmmsg+0x178/0x300
[   66.767219][ T4725]  __x64_sys_sendmmsg+0x57/0x70
[   66.767256][ T4725]  x64_sys_call+0x2f2f/0x2fb0
[   66.767359][ T4725]  do_syscall_64+0xd2/0x200
[   66.767393][ T4725]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   66.767480][ T4725]  ? clear_bhb_loop+0x40/0x90
[   66.767506][ T4725]  ? clear_bhb_loop+0x40/0x90
[   66.767534][ T4725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.767587][ T4725] RIP: 0033:0x7fcca6b7e929
[   66.767611][ T4725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.767632][ T4725] RSP: 002b:00007fcca51e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   66.767654][ T4725] RAX: ffffffffffffffda RBX: 00007fcca6da5fa0 RCX: 00007fcca6b7e929
[   66.767669][ T4725] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000007
[   66.767681][ T4725] RBP: 00007fcca51e7090 R08: 0000000000000000 R09: 0000000000000000
[   66.767693][ T4725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.767704][ T4725] R13: 0000000000000000 R14: 00007fcca6da5fa0 R15: 00007ffee5fa7818
[   66.767721][ T4725]  </TASK>
[   67.243531][ T4749] loop1: detected capacity change from 0 to 128
[   67.350215][ T4753] FAULT_INJECTION: forcing a failure.
[   67.350215][ T4753] name failslab, interval 1, probability 0, space 0, times 0
[   67.363038][ T4753] CPU: 0 UID: 0 PID: 4753 Comm: syz.0.465 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(voluntary) 
[   67.363064][ T4753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   67.363076][ T4753] Call Trace:
[   67.363083][ T4753]  <TASK>
[   67.363090][ T4753]  __dump_stack+0x1d/0x30
[   67.363192][ T4753]  dump_stack_lvl+0xe8/0x140
[   67.363212][ T4753]  dump_stack+0x15/0x1b
[   67.363233][ T4753]  should_fail_ex+0x265/0x280
[   67.363271][ T4753]  ? xfrm_policy_alloc+0x62/0x1b0
[   67.363300][ T4753]  should_failslab+0x8c/0xb0
[   67.363400][ T4753]  __kmalloc_cache_noprof+0x4c/0x320
[   67.363428][ T4753]  xfrm_policy_alloc+0x62/0x1b0
[   67.363450][ T4753]  pfkey_compile_policy+0x193/0x410
[   67.363511][ T4753]  ? xfrm_compile_policy+0x106/0x240
[   67.363607][ T4753]  ? __pfx_pfkey_compile_policy+0x10/0x10
[   67.363713][ T4753]  xfrm_user_policy+0x297/0x540
[   67.363764][ T4753]  do_ipv6_setsockopt+0x13c5/0x22e0
[   67.363787][ T4753]  ? __irq_work_queue_local+0x10f/0x2c0
[   67.363816][ T4753]  ? __rcu_read_unlock+0x4f/0x70
[   67.363848][ T4753]  ? avc_has_perm_noaudit+0x1b1/0x200
[   67.363963][ T4753]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[   67.364006][ T4753]  ipv6_setsockopt+0x59/0x130
[   67.364031][ T4753]  rawv6_setsockopt+0x1d2/0x420
[   67.364062][ T4753]  sock_common_setsockopt+0x66/0x80
[   67.364097][ T4753]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   67.364129][ T4753]  __sys_setsockopt+0x181/0x200
[   67.364207][ T4753]  __x64_sys_setsockopt+0x64/0x80
[   67.364292][ T4753]  x64_sys_call+0x2bd5/0x2fb0
[   67.364371][ T4753]  do_syscall_64+0xd2/0x200
[   67.364485][ T4753]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   67.364518][ T4753]  ? clear_bhb_loop+0x40/0x90
[   67.364554][ T4753]  ? clear_bhb_loop+0x40/0x90
[   67.364583][ T4753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.364627][ T4753] RIP: 0033:0x7f98de33e929
[   67.364645][ T4753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.364666][ T4753] RSP: 002b:00007f98dc9a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   67.364713][ T4753] RAX: ffffffffffffffda RBX: 00007f98de565fa0 RCX: 00007f98de33e929
[   67.364725][ T4753] RDX: 0000000000000022 RSI: 0000000000000029 RDI: 0000000000000003
[   67.364739][ T4753] RBP: 00007f98dc9a7090 R08: 000000000000005c R09: 0000000000000000
[   67.364755][ T4753] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.364770][ T4753] R13: 0000000000000000 R14: 00007f98de565fa0 R15: 00007ffe74af49a8
[   67.364792][ T4753]  </TASK>
[   67.666786][ T4755] netlink: 36 bytes leftover after parsing attributes in process `syz.2.466'.
[   67.681414][ T4755] loop2: detected capacity change from 0 to 1024
[   67.688496][ T4755] EXT4-fs: Ignoring removed orlov option
[   67.708964][ T4759] loop0: detected capacity change from 0 to 512
[   67.914494][  T362] kworker/u8:5: attempt to access beyond end of device
[   67.914494][  T362] loop1: rw=1, sector=145, nr_sectors = 896 limit=128
[   68.055822][ T4766] loop4: detected capacity change from 0 to 764
[   68.064614][ T4766] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   68.102467][ T4771] netlink: 36 bytes leftover after parsing attributes in process `syz.4.471'.
[   68.117972][ T4771] loop4: detected capacity change from 0 to 1024
[   68.138397][ T4771] EXT4-fs: Ignoring removed orlov option
[   68.233496][ T4786] loop1: detected capacity change from 0 to 2048
[   68.242436][ T4788] FAULT_INJECTION: forcing a failure.
[   68.242436][ T4788] name failslab, interval 1, probability 0, space 0, times 0
[   68.255153][ T4788] CPU: 1 UID: 0 PID: 4788 Comm: syz.2.474 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(voluntary) 
[   68.255182][ T4788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   68.255195][ T4788] Call Trace:
[   68.255202][ T4788]  <TASK>
[   68.255209][ T4788]  __dump_stack+0x1d/0x30
[   68.255230][ T4788]  dump_stack_lvl+0xe8/0x140
[   68.255253][ T4788]  dump_stack+0x15/0x1b
[   68.255331][ T4788]  should_fail_ex+0x265/0x280
[   68.255367][ T4788]  should_failslab+0x8c/0xb0
[   68.255413][ T4788]  kmem_cache_alloc_noprof+0x50/0x310
[   68.255443][ T4788]  ? alloc_empty_file+0x76/0x200
[   68.255473][ T4788]  alloc_empty_file+0x76/0x200
[   68.255528][ T4788]  alloc_file_pseudo+0xc6/0x160
[   68.255603][ T4788]  __shmem_file_setup+0x1de/0x210
[   68.255640][ T4788]  shmem_file_setup+0x3b/0x50
[   68.255675][ T4788]  __se_sys_memfd_create+0x2c3/0x590
[   68.255713][ T4788]  __x64_sys_memfd_create+0x31/0x40
[   68.255769][ T4788]  x64_sys_call+0x122f/0x2fb0
[   68.255797][ T4788]  do_syscall_64+0xd2/0x200
[   68.255898][ T4788]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   68.255932][ T4788]  ? clear_bhb_loop+0x40/0x90
[   68.255997][ T4788]  ? clear_bhb_loop+0x40/0x90
[   68.256025][ T4788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.256051][ T4788] RIP: 0033:0x7fb559a1e929
[   68.256070][ T4788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.256093][ T4788] RSP: 002b:00007fb558086e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   68.256158][ T4788] RAX: ffffffffffffffda RBX: 000000000000052e RCX: 00007fb559a1e929
[   68.256170][ T4788] RDX: 00007fb558086ef0 RSI: 0000000000000000 RDI: 00007fb559aa14cc
[   68.256250][ T4788] RBP: 0000200000000640 R08: 00007fb558086bb7 R09: 00007fb558086e40
[   68.256266][ T4788] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[   68.256280][ T4788] R13: 00007fb558086ef0 R14: 00007fb558086eb0 R15: 00002000000001c0
[   68.256300][ T4788]  </TASK>
[   68.463126][ T4789] lo speed is unknown, defaulting to 1000
[   68.971185][ T4809] loop0: detected capacity change from 0 to 128
[   69.145360][ T4814] FAULT_INJECTION: forcing a failure.
[   69.145360][ T4814] name failslab, interval 1, probability 0, space 0, times 0
[   69.158199][ T4814] CPU: 1 UID: 0 PID: 4814 Comm: syz.1.483 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(voluntary) 
[   69.158233][ T4814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   69.158248][ T4814] Call Trace:
[   69.158255][ T4814]  <TASK>
[   69.158263][ T4814]  __dump_stack+0x1d/0x30
[   69.158321][ T4814]  dump_stack_lvl+0xe8/0x140
[   69.158345][ T4814]  dump_stack+0x15/0x1b
[   69.158366][ T4814]  should_fail_ex+0x265/0x280
[   69.158440][ T4814]  should_failslab+0x8c/0xb0
[   69.158463][ T4814]  kmem_cache_alloc_noprof+0x50/0x310
[   69.158496][ T4814]  ? audit_log_start+0x365/0x6c0
[   69.158559][ T4814]  audit_log_start+0x365/0x6c0
[   69.158589][ T4814]  ? arch_irq_work_raise+0x46/0x50
[   69.158696][ T4814]  ? __irq_work_queue_local+0x10f/0x2c0
[   69.158739][ T4814]  audit_seccomp+0x48/0x100
[   69.158765][ T4814]  ? __seccomp_filter+0x68c/0x10d0
[   69.158793][ T4814]  __seccomp_filter+0x69d/0x10d0
[   69.158899][ T4814]  ? trace_reschedule_exit+0xd/0xc0
[   69.158930][ T4814]  ? sysvec_reschedule_ipi+0x4f/0x70
[   69.158984][ T4814]  ? trace_reschedule_exit+0xd/0xc0
[   69.159026][ T4814]  __secure_computing+0x82/0x150
[   69.159065][ T4814]  syscall_trace_enter+0xcf/0x1e0
[   69.159213][ T4814]  do_syscall_64+0xac/0x200
[   69.159268][ T4814]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   69.159293][ T4814]  ? clear_bhb_loop+0x40/0x90
[   69.159341][ T4814]  ? clear_bhb_loop+0x40/0x90
[   69.159368][ T4814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.159394][ T4814] RIP: 0033:0x7fcca6b7e929
[   69.159425][ T4814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.159446][ T4814] RSP: 002b:00007fcca51e7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[   69.159469][ T4814] RAX: ffffffffffffffda RBX: 00007fcca6da5fa0 RCX: 00007fcca6b7e929
[   69.159485][ T4814] RDX: ffffffffffffff9c RSI: 0000200000000140 RDI: ffffffffffffffff
[   69.159497][ T4814] RBP: 00007fcca51e7090 R08: 0000000000000000 R09: 0000000000000000
[   69.159508][ T4814] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000001
[   69.159520][ T4814] R13: 0000000000000000 R14: 00007fcca6da5fa0 R15: 00007ffee5fa7818
[   69.159544][ T4814]  </TASK>
[   69.645503][   T59] kworker/u8:4: attempt to access beyond end of device
[   69.645503][   T59] loop0: rw=1, sector=145, nr_sectors = 896 limit=128
[   69.654717][ T4833] loop4: detected capacity change from 0 to 2048
[   69.675826][ T4834] loop3: detected capacity change from 0 to 512
[   69.727923][ T4833] EXT4-fs mount: 26 callbacks suppressed
[   69.727987][ T4833] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.916772][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.070231][ T4849] 9pnet: p9_errstr2errno: server reported unknown error 1844674407
[   70.084083][ T4853] netlink: 4 bytes leftover after parsing attributes in process `syz.0.498'.
[   70.100458][ T4853] hsr_slave_0 (unregistering): left promiscuous mode
[   70.173430][ T4854] lo speed is unknown, defaulting to 1000
[   70.214080][ T4855] siw: device registration error -23
[   70.499207][ T4864] random: crng reseeded on system resumption
[   70.540676][ T4866] netlink: 28 bytes leftover after parsing attributes in process `syz.1.502'.
[   70.559671][ T4866] loop1: detected capacity change from 0 to 2048
[   70.608784][ T4866] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   70.950668][ T4866] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   70.965853][ T4866] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   70.978458][ T4866] EXT4-fs (loop1): This should not happen!! Data will be lost
[   70.978458][ T4866] 
[   70.988204][ T4866] EXT4-fs (loop1): Total free blocks count 0
[   70.994316][ T4866] EXT4-fs (loop1): Free/Dirty block details
[   71.000346][ T4866] EXT4-fs (loop1): free_blocks=2415919104
[   71.006168][ T4866] EXT4-fs (loop1): dirty_blocks=8208
[   71.011483][ T4866] EXT4-fs (loop1): Block reservation details
[   71.017679][ T4866] EXT4-fs (loop1): i_reserved_data_blocks=513
[   71.133093][ T4881] loop2: detected capacity change from 0 to 128
[   71.321212][ T4883] loop3: detected capacity change from 0 to 1024
[   71.525506][ T3437] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   71.576501][ T4883] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.655392][ T4889] netlink: 4 bytes leftover after parsing attributes in process `syz.0.510'.
[   71.768826][ T3437] kworker/u8:7: attempt to access beyond end of device
[   71.768826][ T3437] loop2: rw=1, sector=145, nr_sectors = 896 limit=128
[   71.785432][   T29] kauditd_printk_skb: 158 callbacks suppressed
[   71.785449][   T29] audit: type=1400 audit(1751870141.820:1748): avc:  denied  { create } for  pid=4894 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   71.811928][   T29] audit: type=1400 audit(1751870141.830:1749): avc:  denied  { lock } for  pid=4894 comm="+}[@" path="socket:[8165]" dev="sockfs" ino=8165 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[   71.875244][   T29] audit: type=1400 audit(1751870141.860:1750): avc:  denied  { read } for  pid=4882 comm="syz.3.507" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   71.894622][   T29] audit: type=1326 audit(1751870141.910:1751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4901 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   71.918057][   T29] audit: type=1326 audit(1751870141.910:1752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4901 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   71.941410][   T29] audit: type=1326 audit(1751870141.910:1753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4901 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   71.964787][   T29] audit: type=1326 audit(1751870141.910:1754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4901 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   71.988144][   T29] audit: type=1326 audit(1751870141.910:1755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4901 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   72.011687][   T29] audit: type=1326 audit(1751870141.910:1756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4901 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   72.035062][   T29] audit: type=1326 audit(1751870141.910:1757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4901 comm="syz.2.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb559a1e929 code=0x7ffc0000
[   72.063126][ T4909] siw: device registration error -23
[   72.163639][ T4915] siw: device registration error -23
[   72.169792][ T4914] random: crng reseeded on system resumption
[   72.377082][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.455178][ T4930] loop2: detected capacity change from 0 to 128
[   72.462041][ T4930] ext4: Unknown parameter 'smackfstransmute'
[   72.550911][ T4932] loop1: detected capacity change from 0 to 128
[   73.041867][ T4956] loop4: detected capacity change from 0 to 128
[   73.158570][ T4962] siw: device registration error -23
[   73.232748][ T4969] FAULT_INJECTION: forcing a failure.
[   73.232748][ T4969] name failslab, interval 1, probability 0, space 0, times 0
[   73.245609][ T4969] CPU: 1 UID: 0 PID: 4969 Comm: syz.2.536 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(voluntary) 
[   73.245704][ T4969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   73.245739][ T4969] Call Trace:
[   73.245745][ T4969]  <TASK>
[   73.245754][ T4969]  __dump_stack+0x1d/0x30
[   73.245781][ T4969]  dump_stack_lvl+0xe8/0x140
[   73.245805][ T4969]  dump_stack+0x15/0x1b
[   73.245869][ T4969]  should_fail_ex+0x265/0x280
[   73.245905][ T4969]  should_failslab+0x8c/0xb0
[   73.245931][ T4969]  kmem_cache_alloc_noprof+0x50/0x310
[   73.246004][ T4969]  ? skb_clone+0x151/0x1f0
[   73.246098][ T4969]  skb_clone+0x151/0x1f0
[   73.246135][ T4969]  __netlink_deliver_tap+0x2c9/0x500
[   73.246260][ T4969]  netlink_unicast+0x64c/0x670
[   73.246297][ T4969]  netlink_sendmsg+0x58b/0x6b0
[   73.246335][ T4969]  ? __pfx_netlink_sendmsg+0x10/0x10
[   73.246418][ T4969]  __sock_sendmsg+0x145/0x180
[   73.246441][ T4969]  ____sys_sendmsg+0x31e/0x4e0
[   73.246521][ T4969]  ___sys_sendmsg+0x17b/0x1d0
[   73.246563][ T4969]  __x64_sys_sendmsg+0xd4/0x160
[   73.246663][ T4969]  x64_sys_call+0x2999/0x2fb0
[   73.246684][ T4969]  do_syscall_64+0xd2/0x200
[   73.246746][ T4969]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.246779][ T4969]  ? clear_bhb_loop+0x40/0x90
[   73.246803][ T4969]  ? clear_bhb_loop+0x40/0x90
[   73.246886][ T4969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.246908][ T4969] RIP: 0033:0x7fb559a1e929
[   73.246946][ T4969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.246990][ T4969] RSP: 002b:00007fb558066038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.247013][ T4969] RAX: ffffffffffffffda RBX: 00007fb559c46080 RCX: 00007fb559a1e929
[   73.247025][ T4969] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[   73.247051][ T4969] RBP: 00007fb558066090 R08: 0000000000000000 R09: 0000000000000000
[   73.247066][ T4969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.247081][ T4969] R13: 0000000000000000 R14: 00007fb559c46080 R15: 00007ffffa70af08
[   73.247168][ T4969]  </TASK>
[   73.250136][  T362] kworker/u8:5: attempt to access beyond end of device
[   73.250136][  T362] loop1: rw=1, sector=145, nr_sectors = 896 limit=128
[   73.549041][ T4978] loop2: detected capacity change from 0 to 2048
[   73.669318][ T4978] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.695227][ T4990] loop1: detected capacity change from 0 to 128
[   73.745897][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.965908][ T5002] loop2: detected capacity change from 0 to 128
[   74.465633][ T5021] 9pnet_fd: Insufficient options for proto=fd
[   74.479702][ T5021] syz.3.558 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   74.654705][ T3437] kworker/u8:7: attempt to access beyond end of device
[   74.654705][ T3437] loop2: rw=1, sector=145, nr_sectors = 896 limit=128
[   74.687245][ T5025] loop2: detected capacity change from 0 to 2048
[   74.697859][ T5025] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.722196][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.747485][ T5029] loop2: detected capacity change from 0 to 128
[   74.868270][ T5037] random: crng reseeded on system resumption
[   74.931672][ T5042] loop4: detected capacity change from 0 to 1764
[   75.031630][ T5051] netlink: 36 bytes leftover after parsing attributes in process `syz.1.570'.
[   75.048012][ T5051] loop1: detected capacity change from 0 to 1024
[   75.055260][ T5051] EXT4-fs: Ignoring removed orlov option
[   75.064802][ T5051] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.302003][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.754485][ T5073] random: crng reseeded on system resumption
[   75.789974][ T5075] netlink: 36 bytes leftover after parsing attributes in process `syz.0.579'.
[   75.805819][ T5075] loop0: detected capacity change from 0 to 1024
[   75.812696][ T5075] EXT4-fs: Ignoring removed orlov option
[   75.823194][ T5075] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.912160][ T5084] 9pnet: p9_errstr2errno: server reported unknown error 1844674407
[   76.158132][ T5102] loop2: detected capacity change from 0 to 256
[   76.253311][ T5102] 9pnet_virtio: no channels available for device syz
[   76.283245][ T5105] loop3: detected capacity change from 0 to 1024
[   76.291928][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.319501][ T5105] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.338321][ T3415] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=3415 comm=kworker/1:4
[   76.370882][ T5112] loop0: detected capacity change from 0 to 128
[   76.690347][ T3306] ==================================================================
[   76.698492][ T3306] BUG: KCSAN: data-race in shmem_add_to_page_cache / shmem_getattr
[   76.706443][ T3306] 
[   76.708803][ T3306] read-write to 0xffff888118fa6810 of 8 bytes by task 5099 on cpu 0:
[   76.716891][ T3306]  shmem_add_to_page_cache+0x37f/0x490
[   76.722410][ T3306]  shmem_get_folio_gfp+0x4e8/0xd60
[   76.727555][ T3306]  shmem_write_begin+0xa8/0x190
[   76.732453][ T3306]  generic_perform_write+0x184/0x490
[   76.737771][ T3306]  shmem_file_write_iter+0xc5/0xf0
[   76.742905][ T3306]  __kernel_write_iter+0x253/0x4c0
[   76.748050][ T3306]  dump_user_range+0x407/0x8c0
[   76.752840][ T3306]  elf_core_dump+0x1dc2/0x1f80
[   76.757617][ T3306]  do_coredump+0x1dfd/0x27b0
[   76.762230][ T3306]  get_signal+0xd85/0xf70
[   76.766589][ T3306]  arch_do_signal_or_restart+0x96/0x480
[   76.772151][ T3306]  irqentry_exit_to_user_mode+0x5e/0xa0
[   76.777723][ T3306]  irqentry_exit+0x12/0x50
[   76.782166][ T3306]  exc_general_protection+0x15b/0x1f0
[   76.787551][ T3306]  asm_exc_general_protection+0x26/0x30
[   76.793115][ T3306] 
[   76.795628][ T3306] read to 0xffff888118fa6810 of 8 bytes by task 3306 on cpu 1:
[   76.803189][ T3306]  shmem_getattr+0x68/0x200
[   76.807707][ T3306]  vfs_getattr_nosec+0x146/0x1e0
[   76.812667][ T3306]  vfs_statx+0x113/0x390
[   76.816928][ T3306]  vfs_fstatat+0x115/0x170
[   76.821361][ T3306]  __se_sys_newfstatat+0x55/0x260
[   76.826405][ T3306]  __x64_sys_newfstatat+0x55/0x70
[   76.831452][ T3306]  x64_sys_call+0x2c22/0x2fb0
[   76.836152][ T3306]  do_syscall_64+0xd2/0x200
[   76.840685][ T3306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.846599][ T3306] 
[   76.848933][ T3306] value changed: 0x0000000000003c39 -> 0x0000000000003c3c
[   76.856053][ T3306] 
[   76.858385][ T3306] Reported by Kernel Concurrency Sanitizer on:
[   76.864549][ T3306] CPU: 1 UID: 0 PID: 3306 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(voluntary) 
[   76.875414][ T3306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   76.885487][ T3306] ==================================================================
[   77.122262][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.