last executing test programs:

3m49.052862401s ago: executing program 1 (id=1051):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd7000fcdbdf250200000008000100", @ANYRES32=r3], 0x1c}}, 0x840)
write$nci(r0, &(0x7f0000000640)=ANY=[@ANYBLOB="61050208030480010d09"], 0x61)

3m48.21368988s ago: executing program 1 (id=1076):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r1=>0x0})
r2 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r2, &(0x7f0000000000)={0x1d, r1}, 0x10)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000100)=[{{0x4, 0x1, 0x1, 0x1}, {0x2, 0x1}}, {{0x3, 0x0, 0x0, 0x1}, {0x3, 0x0, 0x1, 0x1}}], 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x3}, {0xb}, {0x0, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x8041}, 0x40044)

3m48.125436385s ago: executing program 1 (id=1078):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000380)='x', 0x1, 0x480c1, 0x0, 0x0)

3m48.093898647s ago: executing program 1 (id=1079):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x1b8)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000000)='..\x00')
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0\x00', 0x0, 0x98d046, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)

3m48.032394241s ago: executing program 1 (id=1080):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x1248, &(0x7f0000000200)={0x0, 0xd59e, 0x1, 0x40000002, 0xbc}, &(0x7f0000000400)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0xdfffffffffffffff, &(0x7f0000000380)=[r0, 0xffffffffffffffff], 0x2, 0x0, 0x1})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)

3m47.558979588s ago: executing program 1 (id=1087):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r1 = syz_io_uring_setup(0x116c, &(0x7f0000000000)={0x0, 0x7f36, 0x0, 0x1, 0x34f}, &(0x7f00000000c0), &(0x7f0000000080))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x55af)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r1, 0x18, &(0x7f00000001c0)={0x79c, r0, 0x32, {0xb, 0x100004000}, 0x2}, 0x1)

3m47.558857888s ago: executing program 32 (id=1087):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r1 = syz_io_uring_setup(0x116c, &(0x7f0000000000)={0x0, 0x7f36, 0x0, 0x1, 0x34f}, &(0x7f00000000c0), &(0x7f0000000080))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x55af)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r1, 0x18, &(0x7f00000001c0)={0x79c, r0, 0x32, {0xb, 0x100004000}, 0x2}, 0x1)

2m12.827215173s ago: executing program 3 (id=3174):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e22, @empty}, 0x10)
listen(r0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x5e22, 0x0, @empty}, 0x1c)
listen(r1, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x4)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000180)="580000001500add427323b470c45b4560a067fffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a09000000ffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1)

2m12.676645822s ago: executing program 3 (id=3176):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000080), &(0x7f00000004c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000940)={r3, r2, 0x25, 0x4, @val=@iter={0x0}}, 0x20)
syz_emit_ethernet(0x11, &(0x7f0000000b40)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@llc={0x4, {@llc={0xbc, 0xf4, '5'}}}}}, 0x0)

2m12.615081156s ago: executing program 3 (id=3179):
syz_io_uring_setup(0xbc3, &(0x7f0000000100)={0x0, 0x1568, 0x10000, 0x2, 0x285}, 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000013000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000016000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x56ab, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0x1, 0xa0002f8})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xffffffffffffff77, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {0x2}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x10}}]}, 0x1c}}, 0x40000)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x24, &(0x7f0000000000)=0x9, 0x4)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

2m12.473917454s ago: executing program 3 (id=3184):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000080)='proc\x00', 0x189, 0x0)
r2 = syz_open_procfs(r0, &(0x7f0000000000)='map_files\x00')
fchdir(r2)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0xffffffff, 0x81, 0xffffffff})
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)

2m12.299795554s ago: executing program 3 (id=3186):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
mknodat(r0, &(0x7f0000000040)='./file1/file4/file5\x00', 0x100, 0xfffffffc)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x140, 0x82)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000002c0)=0x20)
renameat2(0xffffffffffffff9c, &(0x7f0000000600)='./file1/file4/file5\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00', 0x2)

2m12.176779911s ago: executing program 3 (id=3189):
r0 = io_uring_setup(0x6001, &(0x7f0000000000)={0x0, 0xeec2, 0x800, 0x3, 0x116})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000013c0)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r1, &(0x7f0000000400)="b3", 0x1, 0x0, 0x0, 0x0)
recvmsg(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000b00)=""/241, 0xf1}], 0x1}, 0x10122)
close_range(r0, r0, 0x0)

1m56.881800583s ago: executing program 33 (id=3189):
r0 = io_uring_setup(0x6001, &(0x7f0000000000)={0x0, 0xeec2, 0x800, 0x3, 0x116})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000013c0)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r1, &(0x7f0000000400)="b3", 0x1, 0x0, 0x0, 0x0)
recvmsg(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000b00)=""/241, 0xf1}], 0x1}, 0x10122)
close_range(r0, r0, 0x0)

17.040793706s ago: executing program 0 (id=5315):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f00000002c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x7)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r4, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x8}, {0xfff1, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@delchain={0x24, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xfff3, 0xffff}, {0x0, 0x1b}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

16.911609644s ago: executing program 0 (id=5319):
socket$nl_route(0x10, 0x3, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_config_ext={0x7fffffff, 0x6e}, 0x4, 0x0, 0x11000, 0x0, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0xb)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x101000, 0x0)
ioctl$TUNSETIFF(r0, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00'})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x80400, 0x0)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f00000002c0)={'bond0\x00', 0x4000})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})

16.738085093s ago: executing program 0 (id=5326):
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x2c09}}]})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0xfffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000380)=@gcm_128={{0x303}, "0aa4ef40632818b4", "a4af99b36f2afe4cdea2a1ef2c530fe6", "4f4f75db"}, 0x28)

16.214251594s ago: executing program 0 (id=5331):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file2\x00', 0x404, &(0x7f0000000040)={[{@nogrpid}, {@noinit_itable}, {@jqfmt_vfsold}, {@debug}, {@jqfmt_vfsv1}, {@quota}]}, 0x1, 0x43d, &(0x7f0000000700)="$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")
socket(0xa, 0x1, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
mkdirat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
lseek(r0, 0x10001, 0x0)

16.097210221s ago: executing program 0 (id=5332):
memfd_create(0x0, 0x7)
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r0 = creat(&(0x7f0000001940)='./file0/file1\x00', 0x90)
write$cgroup_type(r0, &(0x7f00000009c0), 0xd4ba0ff)
unlink(&(0x7f0000000100)='./file0/file1\x00')
rename(&(0x7f0000000440)='./file0/file1\x00', &(0x7f0000000480)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r1, 0x0, 0x22)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x44851)

15.59662326s ago: executing program 0 (id=5341):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c0000006800e97800000000000000000a00000000000000040004"], 0x1c}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x2, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)

15.560599833s ago: executing program 34 (id=5341):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c0000006800e97800000000000000000a00000000000000040004"], 0x1c}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x2, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)

8.512826133s ago: executing program 6 (id=5491):
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000180)={0x2, 0xce20, @empty}, 0x10)
listen(r0, 0x3)
r1 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
listen(r1, 0x80)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000004000000000000000300000784"], 0x0, 0x5, 0x0, 0x0, 0x41100, 0x9}, 0x94)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x4014001}, 0x9590f6cc1ea35512)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="540000001200b7a325bd7000fddbdf25200f0707ce204e22030000002f00000001ffffffc300000006000000000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="de00fbffa611195cc93f034708000000080003"], 0x54}, 0x1, 0x0, 0x0, 0x4008000}, 0x40000)

8.512203943s ago: executing program 6 (id=5493):
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2}, &(0x7f0000000300)=<r0=>0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(r2, 0x0, 0x20000000, 0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d7, 0x5, r2})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)

8.331706714s ago: executing program 6 (id=5494):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e22, @multicast1}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x800000000f, &(0x7f0000000080)=0x7, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e22, 0x7f, @ipv4={'\x00', '\xff\xff', @multicast1}, 0xffffffff}, 0x1c)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e22, 0x10003, @empty, 0xfffbffff}, 0x1c)

8.269001008s ago: executing program 6 (id=5495):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfffffc, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x7000000)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x152)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0xa0835c, &(0x7f0000000340)={[{@nojournal_checksum}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@dioread_nolock}, {@usrjquota}, {@oldalloc}, {@sysvgroups}]}, 0x2, 0x44a, &(0x7f0000000880)="$eJzs281vFOUfAPDvzLbl9+OtFfEFRK0SY+NLSwsqBy8aTTxgNNEDHuu2EMJCDa2JECLVGLyYGBI9G48m/gXevBj1ZOJV74aEKBfQU83MzsDuslsobHcr+/kkA8+z82yf57vPPDPPzLMbwMAaz/5JIrZGxG8RMVrPNhcYr/939fLZ6t+Xz1aTWFl5688kL3fl8tlqWbR835YiM5FGpJ8kRSXNFk+fOT5bq82fKvJTSyfem1o8febZYydmj84fnT85c/Dggf3TLzw/81xX4sziurL7w4U9u15758Lr1cMX3v3p26y9W4v9jXF0y3gW+F8rudZ9T3S7sj7b1pBOhvrYENakEhFZdw3n4380KnG980bj1Y/72jhgXWXXpk2ddy+vAHexJPrdAqA/ygt9dv9bbj2aemwIl16q3wBlcV8ttvqeoUiLMsMt97fdNB4Rh5f/+SrbYp2eQwAANPqs+uWheKbd/C+N+xvKbS/WUMYi4p6I2BER90bEzoi4LyIv+0BEPLjG+luXhm6c/6QXbyuwW5TN/14s1raa53/l7C/GKkVuWx7/cHLkWG1+X/GZTMTwpiw/vUod37/y6+ed9jXO/7Itq7+cCxbtuDjU8oBubnZpNp+UdsGljyJ2D7WLP7m2EpBExK6I2L22P729TBx76ps9nQrdPP5VdGGdaeXriCfr/b8cLfGXktXXJ6f+F7X5fVPlUXGjn385/2an+u8o/i7I+n9z8/HfWmQsaVyvXVx7Hed//7TjPc3tHv8jydv5+WikeO2D2aWlU9MRI8mhPN/0+sz195b5snwW/8Te9uN/R/GeLP6HIiI7iB+OiEci4tGi7Y9FxOMRsXeV+H98ufO+jdD/c23Pf9eO/5b+X3uicvyH7zrVf2v9fyBPTRSv5Oe/m7jVBt7JZwcAAAD/FWn+HfgknbyWTtPJyfp3+HfG5rS2sLj09JGF90/O1b8rPxbDafmka7Theeh0slz8xXp+pnhWXO7fXzw3/qLy/zw/WV2ozfU5dhh0WzqM/8wflX63Dlh37dbRZkb60BCg51rHf9qcPfdGLxsD9JTfa8Pgusn4T3vVDqD3XP9hcLUb/+da8tYC4O7k+g+Dy/iHwWX8w+Ay/mEg3cnv+iUGORHphmiGxDol+n1mAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6I5/AwAA///K8u7c")
socket$kcm(0x10, 0x400000002, 0x0)
io_setup(0x10000, 0x0)
r0 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x4206, r0)

7.840513983s ago: executing program 6 (id=5497):
r0 = io_uring_setup(0x401, &(0x7f0000000300)={0x0, 0x77ae, 0x402, 0x8000002, 0x3d7})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

7.120117575s ago: executing program 6 (id=5516):
socket$l2tp(0x2, 0x2, 0x73)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
r2 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xe539, 0x800, 0x3fffff, 0x40000333}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0})
io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0)

7.076283867s ago: executing program 35 (id=5516):
socket$l2tp(0x2, 0x2, 0x73)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
r2 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xe539, 0x800, 0x3fffff, 0x40000333}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0})
io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0)

2.335238134s ago: executing program 2 (id=5601):
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000000)={0x2, 0x6c800}, 0x8)
creat(0x0, 0xc0)
creat(0x0, 0x175)
setsockopt$inet_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0)
pipe(&(0x7f0000000400)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$key(0xf, 0x3, 0x2)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

2.086542968s ago: executing program 4 (id=5604):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000600)={<r0=>0xffffffffffffffff})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc8df, 0xc800, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)

2.015368913s ago: executing program 4 (id=5606):
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x22)
rmdir(&(0x7f0000000080)='./cgroup/../file0\x00')
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0xc)
r2 = openat$cgroup_subtree(r1, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000980)={[{0x2d, 'pids'}]}, 0x1f)
r3 = socket(0x40000000015, 0x5, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000f40)={0xa, 0x0, 0x1, @ipv4={'\x00', '\xff\xff', @broadcast}}, 0x1c)

1.981089284s ago: executing program 4 (id=5607):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x8})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
r2 = syz_io_uring_setup(0x38a9, &(0x7f0000000300)={0x0, 0xffffffff, 0x10100, 0x0, 0xfffffffe}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, r1})
io_uring_enter(r2, 0x44fd, 0x3, 0x1, 0x0, 0x0)
rt_sigsuspend(&(0x7f0000000040)={[0xfffffffffffbfefd]}, 0x8)

1.448209965s ago: executing program 2 (id=5616):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x1a08083, &(0x7f00000000c0), 0x0, 0x4fc, &(0x7f0000000a40)="$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")
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1d459d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x3}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1000, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getpid()
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
symlinkat(0x0, 0xffffffffffffff9c, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0a00000004000000060000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000940), &(0x7f0000000a40), 0x401, r0}, 0x38)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r1}, 0xc)

1.36342852s ago: executing program 5 (id=5617):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x55)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4)
bind$inet6(r1, &(0x7f0000000540)={0xa, 0x4e22, 0x7651, @empty, 0x200}, 0x1c)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e22, @empty}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000040)=[{&(0x7f0000000280)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010000081000418e00000004fcff", 0x58}], 0x1)

1.065318308s ago: executing program 2 (id=5618):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r0, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
listen(r0, 0xda90)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r1 = io_uring_setup(0x56ab, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0xc, 0xa0002f5})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000000)=0x1201a, 0x4)
io_uring_enter(r1, 0x2219, 0x7721, 0x14, 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)

1.03561712s ago: executing program 5 (id=5619):
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r1)
socketpair(0x11, 0xa, 0x9, &(0x7f00000001c0))
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)

941.463065ms ago: executing program 5 (id=5620):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000580)={0x2, 0x0, 0x6, 0xffffffff}, 0x10)
sendto$inet6(r1, &(0x7f0000000200)='x', 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000001400)={0x0, 0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f00000005c0)={0x0, 0x2, 0x9}, 0x8)

917.546887ms ago: executing program 5 (id=5621):
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000), 0x101000, 0x800, 0x3, 0x1}, 0x20)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth1_to_batadv\x00', <r2=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r0, &(0x7f00000001c0)={0x2c, 0x8, r2}, 0x10)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x2, 0x100000000, 0xffffffffffffffff}, 0x0, &(0x7f0000000240)={0x1f, 0x100000, 0x7, 0x0, 0x229c, 0x1, 0x800000000000000, 0x2}, &(0x7f0000000280), 0x0)

889.902548ms ago: executing program 5 (id=5622):
r0 = io_uring_setup(0x3c93, &(0x7f0000000900)={0x0, 0x7b61, 0x80, 0x1, 0x60})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x39b3)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r2, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r1}, 0x20)
recvmmsg(r1, &(0x7f0000000840)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000340)=""/237, 0xed}], 0x1}, 0x8}], 0x1, 0x23, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xfa, 0x5, 0x0, 0x0, 0x0, 0x6, 0x20510, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, @perf_bp={0x0, 0x9}, 0x90, 0x7, 0xfffffffe, 0x1, 0x363c, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x400000000010, 0x3, 0x0)

776.675855ms ago: executing program 4 (id=5627):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x42718, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0xd07, 0x40}, 0x100b28, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r1 = io_uring_setup(0xaae, &(0x7f00000003c0)={0x0, 0xffffeffa, 0x2, 0x7, 0x2})
socket$kcm(0x29, 0x5, 0x0)
io_uring_register$IORING_UNREGISTER_RING_FDS(0xffffffffffffffff, 0x15, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x337)

737.296567ms ago: executing program 5 (id=5629):
io_submit(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]})
syz_clone3(0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000000)={<r3=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r2, 0x40182103, &(0x7f0000000080)={r3, 0x1, r2, 0x4})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21891d, &(0x7f0000000500)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@resgid}, {@noinit_itable}, {@quota}, {@noauto_da_alloc}, {@sysvgroups}, {@resgid, 0x32}]}, 0x1, 0x4e8, &(0x7f0000000f40)="$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")

501.669871ms ago: executing program 7 (id=5634):
setgroups(0x0, 0x0)
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x1}], 0x1}}], 0x1, 0x80)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r3 = dup3(r1, r0, 0x0)
recvmmsg$unix(r3, &(0x7f0000001280)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000005140)=""/4111, 0x100f}], 0x1}}], 0x1, 0x58ca2280, 0x0)

481.637732ms ago: executing program 7 (id=5635):
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000a40))
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x28028, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0xd}, 0x806, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc92b18236457ee3c8", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

365.933638ms ago: executing program 8 (id=5637):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000000)={0x40000042}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f00000001c0)={0x8000042}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

337.26152ms ago: executing program 7 (id=5638):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
write$binfmt_aout(r1, &(0x7f00000001c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0xfe, "0062ba7d82000000160000000000f738096304"})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x10031, 0xffffffffffffffff, 0x65be1000)
r2 = syz_open_pts(r1, 0x80)
r3 = dup3(r2, r1, 0x80000)
read$watch_queue(r3, &(0x7f0000002d40)=""/4105, 0x1009)

333.97741ms ago: executing program 8 (id=5639):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x2, 0x2)
sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000940)=@newqdisc={0x64, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xffe0}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x38, 0x2, [@TCA_TBF_RATE64={0xc, 0x4, 0x4e1e2563543d84f9}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x2, 0x0, 0xffff}, {}, 0x1000000, 0x81}}]}}]}, 0x64}}, 0x4000080)
bind$packet(r0, &(0x7f0000000040)={0x11, 0x2, r3, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x20}}, 0x14)
sendto$inet6(r0, &(0x7f0000000800)="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", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0)

294.063133ms ago: executing program 4 (id=5640):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x10, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x1}, 0x2002, 0x32, 0x43a1bd56, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @multicast1}}}], 0x20}}], 0x1, 0x9880)
r2 = socket$inet(0x2, 0x2, 0x0)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a0101"], 0x57)
setsockopt$inet_mreqsrc(r3, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000008c0)={0x1, {{0x2, 0x0, @multicast2}}}, 0x88)

288.698183ms ago: executing program 8 (id=5641):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x4, 0x2}, 0x10)
sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000080), 0x10, 0x0}, 0x0)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000100)={0x41, 0x0, 0x2}, 0x1be)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44010}, 0x0)

274.190944ms ago: executing program 7 (id=5642):
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
io_uring_setup(0x4822, &(0x7f0000000100)={0x0, 0x7437, 0x80})
close(0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))
mremap(&(0x7f00003ef000/0x3000)=nil, 0x3000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[], 0x7c}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002400000000010000380140001007465616d3000000000000000000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014"], 0xfc}}, 0x0)

267.874494ms ago: executing program 8 (id=5643):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x42718, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0xd07, 0x40}, 0x100b28, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000010c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000100)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)
recvfrom(r1, &(0x7f0000004000)=""/4112, 0xfffffffffffffedc, 0x2080, 0x0, 0x0)

223.480127ms ago: executing program 7 (id=5644):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000002040), 0x82401, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x3f, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r0, &(0x7f0000002900)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002280)=""/156, 0x9c}, 0x6}], 0x1, 0x60010020, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
clock_adjtime(0xffffffd3, 0x0)

213.760677ms ago: executing program 8 (id=5645):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_drop_memb(r0, 0x107, 0x2, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x1200000, &(0x7f0000000180)={[{@block_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nobarrier}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x52}}, {@norecovery}]}, 0x3, 0x576, &(0x7f0000000400)="$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")
sync()
sync()
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000240)={{{@in6=@empty, @in=@empty}}, {{@in6=@mcast2}, 0x0, @in=@dev}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
lseek(r1, 0x3, 0x1)
getdents64(r1, 0x0, 0x0)

183.242469ms ago: executing program 2 (id=5646):
r0 = syz_io_uring_setup(0x5c4, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x4}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0xb0c9fa2cdd4cf720}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc1ffe}]})
clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0)

175.58594ms ago: executing program 4 (id=5647):
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
setsockopt(0xffffffffffffffff, 0x4, 0x7c0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
r1 = memfd_create(&(0x7f00000005c0)='\x103q}2[\xe0\x9a\xee\xaf\x03\x97\x9et\v\"|Ma\x86\xe7\xc0\x14\x9f\xb9h\xb1\x96\xe7=I\x860S6\xb5\xa8\xc2\x95Je%\xfeG\'\b\x00\x00\x00\x00\x00\x00\x00\x1c\xa6\xab\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94k\xcd\t\x00\x90k\xd6\x05\xb6&\xd0\x9daA\xc5\x9c_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2Oc\xc0c\x03gB!\xb0\xb8n\x01\x9bT\x95\x10\x86\xe8$\x7f\r[\xf9\x0e1v\xb1\n\x88\v\x95uy\xb5:`\x8b\nC\x18A;\xaa%\xaf\xc7\xa3\xac\xa2D\xb5\xe2\xe1\xdc(\xfd\x05\x9fB\x84O\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1a\xa0\x17\xe3\xac\xe9\xc9\xa7\x8a\x1b\x03\"&\xac\xcap>\xccZ\x01\xbc\x18\xc1\xb9\xe9\v\x8b\x9c\xb4Q\xd4\x96EV<>\x99\xca\xb3\xe0\xc4tL\xed\xf5W\xbd#\xcf\x8a\x84\xed\x9f/\xd4\xbb\xea;-Dp\xf8\xd0F\x90\xf8\x92Ip6\xf4\x16\xe8\x14\xe0\x92!\x92-F\xe2\x14D\x91\xa8b\x04\xdd\x1d\a\xdc\xe0\x18\x85{\x80Q\xf6k\x96\xfaQ\x9fW\vO\xf0\xe4O\\\xceS\xe2\x05\x049d\x06#\x88\xc3\xdf\x85O\x1c\xc3\xad?r\xd7\x0e\x00\xd7\x83\xb0\x88\x9c\xf6Y-F\x98\xdd\x9c~\xfd\x95\xc3\xb6lC\xaa\"Y\xa2K\xecz\x84:*\xf5Y\xd1\x9b1\xbd\x9b\x15\xd4\xec\x02o\x01&\xaa\x90w\xc4\xc7\x8en\xb5\x1ag\xab&?\xbe\xcb\xe8v\xa8\xe0\xa4\x81sW\xacf\x149\xd2}\xef\x03Ga\x9a$4\x8c\xa5!p\x83\x05\x96%\x02%\xabj\n\b\xc8NC\x91}&y\xd3\xe1\xeep\'\xc5\xab\x19GsX5\x8c\n\x9fh\xee;4\xb1%V\xe0\xa9\x8e\xf30:\xd8\x18N~G\x139\xcaf2\x02F1\xc6\x82\x00E\xae\x9d\x17\x871N:\xb4\xea \x8e\xdelP\x83\x1f\'\xe2\xd6\xc0\xc3\xfc\xc9677u\xf3RUP@o>\xee\xb8\xa3\t\x02\xb7\\,\xebK\xed\x1b\xc9e\xb3\x16\xce\x9bI\xdb\xfa\x82\x85\t\x9bg\xd0s\xe2\f{\x8cp~;\xf8\x96\xf2\x91\x06\x89\xa6D\xce\xac\x03\xc1\x83\xd1\xe6 |\xa75\xd7\x80t\xfc\xf8\xd2\x12N\x1cB7^\xfd4\xae\xb0VFw\b!\xae\x1baTv\xc0z\x19\xc5\xc8w\xba\x97N\x9a`\x8f\xfc\x9ee\xf9\x00\x1cQA\x14]\r\xd4\"\xc2\x12GD\xdb{\x88\xaa\x81\xc8\xa2\xdeI\xa2\xbel\x0e\xec\x17fNI\x05\xff\x8d\xf4_\x1a\vqA\xb7\x0ed<\x98\xee\xb8\x19\xec\x9f\xee\xe1_\xacG\x8b\xa3\xc3\x13\x80\x0f\xf4I\xdeAwG\xbdkno\xa2\b\x126\x97\x9b\xf9|P\xd94\v\x15\xcb\xc0\x9d\x11\xf3\x18\xae!2\x1b\x12\xa9\xc8~\xb7S\x94\xb5\xc7;\xa90D>s\xe9\xa4N\xf8\xdb\xab\xa0\x94~\xa1]b\xa4\xe5\xe2e\x1c\x8b\xd2\xc7Md\x93\x02\xd8\xb0,\xeb\x03\xaa\v\xed\x9bR\x8a\x80\xc2\x1f\x17ej\x973wv\x83a\xe06\x96\xde\xbc%Uh;H\xf8S\xf1\xa1g\x02\xc4\xc3\xa4\xa8\x96\t\xfex\xa2?\xcb\\Y\x1e\xfe\xca\xa0i\x80O\x11\xac\xb7$\xdb\xbc\xb0\xcb\xacqU\xb5*\x00\x00\x00\x00\x00\x00\x00\f\xda\xf8oV\x89\xd3\x1f\x99+\xe5T\x8eM4\x1c\xc6\x7f\xd4\xf2\xcc\xd3\x94\xca\xd4\x00\x00\x00\x00\x00\x00\x00\x00\x00~A9\xf6IBu2L\x9e\xa2\xd0\x92\xd1\xbc\xb8\tJ\xa1\aN\x87\x95\xbb\xa9s\xab\x90\x06\xc6!p\x9e?~\xf9\xe6\xae*\v\xa3\xd9gxKN\'z]*\x93\xf7\b\x91\xd0\xff\xd9\xc6a\xb5q\x9c\xa1Go\xd58\x93\xe0,\x9f\xe4\xa9\xd9A\x9e\x95e\x98\xd0V\x9d\xed\x97\xf1\xc5\xce\xf5\x90!d\x9a\xd8\x10\xbbx\r8\xff\x8bNUK\xebA\xe5\x92f\xc4\xd1\xa8\x15\xbf\xb5iW\xdb.kbf*\x89\xf0\xecq m-~\xbbf?\xec=\xd2\xe2\x1e\x8d/o\xcd\xc8x\xdb\xe6\xd0W\xca\xc5kz\x8e9\xfa\x86\x0f\x96p', 0x3)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1000000})

101.508224ms ago: executing program 7 (id=5648):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"/1664], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffffe}, 0x48)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xe}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x60000400, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8983, &(0x7f0000000080))

32.540918ms ago: executing program 2 (id=5649):
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, 0x0, 0x800)
capset(&(0x7f00000004c0)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200006, 0x801, 0x4, 0x7, 0xb0})
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x9, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x31, 0x43a1bd76, 0x7, 0x3, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x4008030)
r1 = socket$netlink(0x10, 0x3, 0xb)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000000)=0x9, 0x4)

10.123209ms ago: executing program 2 (id=5650):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0xb, 0x88}, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000005240)=@newchain={0xe8c, 0x64, 0x800, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x10, 0xc}, {0xffe0, 0xffe0}, {0x3, 0xd}}, [@filter_kind_options=@f_matchall={{0xd}, {0xe58, 0x2, [@TCA_MATCHALL_ACT={0xe54, 0x2, [@m_pedit={0xe50, 0xd, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x2b1e, 0x2, 0x0, 0x1, 0x6}, 0x8, 0xd}, [{0x4df, 0xdf46, 0x1, 0x2, 0x42, 0x2}, {0x4, 0x0, 0x9, 0x12, 0x7, 0xf}, {0x3a, 0x80000001, 0x1, 0x1, 0x40, 0xc41}, {0x7, 0x1, 0x0, 0x1, 0x6, 0x4}, {0xa1, 0x5, 0x200000, 0x7ff, 0x7fffffff, 0x3}, {0x5, 0xa4, 0x86d, 0x1, 0x4, 0x100}, {0x4, 0x7ff, 0x1, 0xfffffffc, 0x7ff, 0x2}, {0x40, 0x4, 0x6, 0x0, 0x7fffffff, 0x9}, {0x81, 0x6, 0x7, 0x4}, {0xd9, 0x0, 0x3, 0x6, 0x80000001, 0x6}, {0x2, 0x3, 0xffffff01, 0x8d7, 0xfff, 0x8}, {0x5, 0x3126, 0x80, 0x1b, 0x1, 0x1000}, {0x0, 0x6, 0x2, 0x7fff, 0x8, 0xd64}, {0x45c, 0xa8, 0xdf, 0x8, 0x4bee, 0xd}, {0x2, 0xb, 0x1, 0x7, 0x8, 0xe}, {0xfc000000, 0x18, 0x6, 0x80000000, 0x4, 0x7fff}, {0x5, 0x7, 0x7, 0x5, 0x2, 0x7}, {0xfffffffd, 0x0, 0x0, 0xffffffff, 0x1ff, 0x8}, {0x3, 0xe, 0x40000000, 0xfffff001, 0x100, 0x7fffffff}, {0x9, 0x7, 0x9, 0x2, 0xb, 0x6}, {0x401, 0x80000000, 0x8, 0x729, 0x3, 0x6}, {0xfffffff9, 0x738, 0x1000, 0x9, 0x0, 0x59a}, {0x20000000, 0x8db0, 0x3, 0x400, 0x0, 0xf}, {0xf16, 0x65af, 0x0, 0xffffffff, 0x8, 0xffff}, {0x0, 0x400, 0x1, 0xd, 0x5b2f, 0x2}, {0x3a, 0x5, 0x0, 0x9, 0x6, 0x1}, {0xe5f7, 0x4, 0x6, 0x0, 0x7, 0xfef0}, {0x9, 0x6624, 0x7ff, 0xad2a, 0x2, 0x10}, {0x800, 0x1, 0x9, 0x6, 0xfffff9ea, 0x4}, {0x0, 0x1, 0x0, 0x2, 0xef, 0xffffffff}, {0x9, 0x5, 0x4, 0x4, 0xc, 0x5}, {0x7f, 0xfff, 0x3, 0x10000, 0x1, 0x8000}, {0x6, 0x9, 0x7, 0x401, 0x112, 0x7}, {0x1, 0x52, 0x0, 0x1, 0x400, 0x9}, {0x101, 0x7fffffff, 0x8001, 0x6, 0x0, 0x7}, {0xa4, 0x40, 0x8, 0xfffffff6, 0x6, 0xfffffffc}, {0x80000001, 0x3, 0x3, 0x5, 0x2, 0x400}, {0x1, 0x5, 0x4, 0x6, 0xfffff800, 0x10000}, {0xfffffffb, 0x5, 0x10001, 0x5, 0x80000001}, {0x0, 0x40, 0x7, 0x6714, 0x8, 0x2}, {0x7fffffff, 0x7, 0xffff19e4, 0x800, 0xfff, 0x1}, {0x8, 0x5, 0x4b, 0x80000001, 0x6, 0x2b0}, {0xfffffffb, 0x3, 0x1, 0x6, 0x4, 0x387e}, {0xca, 0x0, 0x8, 0x4, 0x5, 0x9}, {0x3, 0x100, 0x8, 0xe000000, 0xa, 0x8}, {0x9, 0x9, 0x9, 0x0, 0x0, 0x6}, {0x54fb, 0x8001, 0x7, 0x8001, 0xf3e8, 0x2}, {0x4, 0x4, 0x7, 0x0, 0x101, 0x6}, {0x3, 0x8, 0x9, 0x3, 0x7, 0x28000000}, {0xbafe, 0x1ff, 0x5, 0x8, 0x7, 0x5}, {0x7, 0x8, 0x2, 0x2, 0x6, 0x7}, {0x4, 0x1a, 0x9, 0x4, 0x4cc, 0x5}, {0xfffffff7, 0xe, 0x1, 0x9, 0x5194e008, 0x7}, {0x5, 0x7, 0x2, 0xe, 0x1ff, 0x3}, {0x5, 0x28, 0x1, 0x0, 0x1562df21, 0x2}, {0x1, 0x81, 0x8b, 0x4, 0x2, 0x7fff}, {0x80, 0x7, 0x1000, 0x7f, 0x3, 0x5}, {0x0, 0x0, 0x5c8, 0x15, 0xffffff6b, 0x3f}, {0x71, 0x81, 0x0, 0x665, 0x0, 0x8}, {0x8b, 0x7, 0xeca, 0x5, 0x8, 0x3}, {0xe, 0x3, 0x8001, 0xe2c6, 0x82, 0x2}, {0x7ce, 0x8001, 0x7fff, 0x9b1a, 0x8001, 0x3}, {0xc, 0x5, 0x6, 0x5, 0xbd, 0xc6}, {0x2, 0x80000001, 0x0, 0x869b, 0x1, 0x5595}, {0xe7, 0x4, 0x4, 0x71b, 0xd69, 0x2}, {0xba, 0xfffffff7, 0x6, 0x40, 0x8, 0x6}, {0x7, 0x3, 0x8, 0x1, 0x9, 0x100}, {0x64ecce2d, 0x6, 0x5, 0x2, 0xf, 0x1}, {0x7, 0x9, 0x8, 0x2d08, 0x0, 0xbe}, {0x27b5, 0x7, 0x9196, 0x9, 0x6, 0x1000}, {0x2, 0x3e5f, 0xab0, 0x9, 0x200}, {0x2, 0x4001, 0xd, 0x5, 0x3, 0x9}, {0x2, 0x6, 0x4d5, 0x3, 0x1ff, 0x2c9}, {0xd, 0x800, 0x3c49, 0x9, 0x7, 0xe}, {0x200, 0x7, 0x80000001, 0xffffffff, 0x1, 0x6}, {0x8, 0x8, 0xfffffff7, 0xc71, 0x1}, {0x7fff, 0x8, 0x3, 0x80000000, 0x3ff, 0x1}, {0x5, 0xc76, 0xfffffffb, 0x276, 0x4, 0x81}, {0xffff, 0x7, 0x8, 0xfffffeff, 0xf, 0x4}, {0xe, 0x7, 0x101, 0x1, 0x3, 0x1}, {0x0, 0xd8ad, 0x6, 0x5, 0x6, 0x7}, {0x2, 0x6fe, 0x0, 0x6, 0xfffffff8, 0x200}, {0x3ff, 0x384, 0x7, 0x7, 0x1, 0x5}, {0x1b, 0x5, 0x2, 0x813, 0x3, 0xfff}, {0x8000, 0x1000, 0x5, 0x401, 0x6d3, 0x4}, {0x9, 0x6, 0x4, 0x8, 0x3, 0xffff8001}, {0x4, 0x7, 0x9, 0xa9, 0x5, 0x6}, {0x10000, 0x9, 0x0, 0x80000001, 0x1, 0x7800000}, {0x9, 0xffffff34, 0x5, 0x8, 0x5cb, 0x8}, {0x4, 0x7, 0x3, 0x9957, 0x9, 0x3}, {0x4, 0x4, 0x2f4, 0x7, 0x8, 0x7f}, {0x6, 0x1, 0x6, 0x5218, 0x3, 0x6}, {0x5f22, 0xffffffff, 0x5, 0xb, 0x9}, {0x1, 0x7, 0x5, 0x3e, 0x8740, 0x180ee0b3}, {0x1, 0xb, 0x81, 0x1, 0x4, 0xb}, {0xffffffff, 0x4, 0xd9be, 0x4, 0xffff, 0x3}, {0x9a, 0xff, 0x1, 0x1, 0x80000001, 0x6}, {0x2, 0x3, 0xfffffff8, 0x7, 0xffff, 0xffffffb4}, {0x5, 0x42, 0x3, 0x80000000, 0x9, 0x8}, {0x36f3, 0x5, 0x8, 0x1, 0x0, 0x1}, {0x8, 0x0, 0x7, 0xaa, 0x0, 0x4}, {0x2, 0x9, 0xa0, 0xfffffff8, 0x6c5d}, {0x91d, 0x8, 0x5, 0x9, 0x6, 0x2a8f}, {0xfffffff9, 0x10000, 0x2, 0x40, 0xfffffffc, 0xfffffffc}, {0xff, 0xb23, 0x8, 0x4d14, 0xfff, 0x5}, {0x2, 0x5, 0xfffffffe, 0x7, 0x9, 0xd74}, {0xffffffff, 0xfffffff8, 0x8, 0xfffffffa, 0x3, 0xbcbb}, {0x3, 0x6, 0xc, 0x5, 0x81, 0xfffff24c}, {0x80000001, 0x200, 0x1, 0x5523c58a, 0x98b2, 0x3}, {0x9, 0x3, 0x401, 0x1, 0x1ff, 0x4}, {0x0, 0x7, 0x7, 0x0, 0x0, 0x9}, {0x0, 0xe, 0x9, 0x1, 0x5, 0x3}, {0x8, 0x9, 0x1, 0xfa05, 0x8001, 0xad8}, {0x7ff, 0x2, 0x8fb, 0x7fff, 0x2, 0x80}, {0x6, 0x0, 0x7, 0x401, 0x2, 0x2}, {0x2, 0x43, 0x1ff, 0x8, 0xfffffffc, 0x6}, {0x87, 0x2, 0xb74, 0x6, 0x3, 0x3}, {0x3, 0x6, 0xe7ee, 0x3, 0x6461, 0x40}, {0xd, 0x3, 0x9, 0x8001, 0x2, 0x5c58f335}, {0x1, 0x101, 0x9, 0xf, 0x6}, {0x0, 0x5, 0x8, 0x3, 0x1, 0x1}, {0x2, 0x6, 0x5, 0xb141, 0x780, 0x40000}, {0x0, 0xf42, 0x2, 0xad5, 0x1, 0x9}, {0xf, 0x6, 0x7, 0x35, 0xfffffc01, 0x1000}, {0x1, 0x2, 0x6, 0x4, 0x0, 0xf2e}, {0x2, 0x1, 0x1, 0x9, 0x0, 0x7}, {0x9, 0x205cf756, 0xe204, 0x3, 0x8, 0x4}, {0x1, 0x0, 0x55ec, 0x7fff, 0x40}], [{}, {0x5, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x4}, {0x2, 0x1}, {0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x0, 0x4d0a313f22e5281e}, {0x2, 0x1}, {0x4}, {0x3}, {}, {0x4, 0x1}, {0x4, 0x1}, {0x4}, {0x2}, {0x1, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x4}, {0x1}, {0x2, 0x971fb3afb9a3d83d}, {0x5}, {0x6, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x4}, {0x2}, {0x2}, {0x3, 0x1}, {0x4}, {0x0, 0x1}, {0x2, 0x1}, {0x1}, {}, {0x1, 0x1}, {0x1}, {0x3}, {0x4, 0x1}, {0x2}, {0x0, 0x1}, {0x2}, {0x2}, {}, {0x1, 0x1}, {0x2, 0x1}, {0x3}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x2}, {0x2, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x3}, {0x3}, {0x5, 0x1}, {0x0, 0x1}, {0x3}, {}, {0x5}, {0x3}, {0x2}, {}, {0x1, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x3}, {0x3}, {0x3}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {}, {0x2}, {0x3}, {0x5, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x3}, {0xa, 0x1}, {0x3, 0x1}, {}, {0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {0x2}, {0x1, 0x1}, {}, {0x1}, {0x5, 0x1}, {}, {0x5, 0x1}, {0x4, 0x1}, {0x4}, {0x3, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x5}, {0x1}, {0x1}, {}, {0x4}, {0x2}, {0x3}, {0x1}, {0x4}, {0x73a016b4584e9d1f}, {0x2}, {0x0, 0x1}, {0x2}, {0x3}, {}, {0x5, 0x1}, {0x2}, {0x4}, {0x1, 0x1}, {0x4}, {}, {0x1, 0x1}, {0x4, 0x1}], 0x1}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3}}}}]}]}}]}, 0xe8c}}, 0x4000800)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x635c, 0x1f480, 0x0, 0x399})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
io_uring_enter(r0, 0x8ae, 0x6933, 0x17, 0x0, 0xeffd)

0s ago: executing program 8 (id=5651):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x42718, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0xd07, 0x40}, 0x100b28, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r1 = io_uring_setup(0xaae, &(0x7f00000003c0)={0x0, 0xffffeffa, 0x2, 0x7, 0x2})
socket$kcm(0x29, 0x5, 0x0)
io_uring_register$IORING_UNREGISTER_RING_FDS(0xffffffffffffffff, 0x15, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x337)

kernel console output (not intermixed with test programs):

43509][T13921] EXT4-fs error (device loop6): ext4_do_update_inode:5617: inode #12: comm syz.6.3952: corrupted inode contents
[  221.362746][T13921] EXT4-fs error (device loop6): ext4_truncate:4635: inode #12: comm syz.6.3952: mark_inode_dirty error
[  221.382378][T13921] EXT4-fs error (device loop6) in ext4_process_orphan:345: Corrupt filesystem
[  221.391769][T13921] EXT4-fs (loop6): 1 truncate cleaned up
[  221.398030][T13921] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  221.507617][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.945510][   T29] audit: type=1400 audit(2000000314.185:2141): avc:  denied  { read } for  pid=13985 comm="syz.4.3976" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  222.159264][   T29] audit: type=1326 audit(2000000314.395:2142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14005 comm="syz.2.3982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  222.183086][   T29] audit: type=1326 audit(2000000314.395:2143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14005 comm="syz.2.3982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  222.207090][   T29] audit: type=1326 audit(2000000314.395:2144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14005 comm="syz.2.3982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  222.230739][   T29] audit: type=1326 audit(2000000314.395:2145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14005 comm="syz.2.3982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  222.254578][   T29] audit: type=1326 audit(2000000314.395:2146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14005 comm="syz.2.3982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  222.314734][T14013] __nla_validate_parse: 3 callbacks suppressed
[  222.314817][T14013] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3985'.
[  222.712814][T14049] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  223.423079][T14087] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4014'.
[  223.923310][T14118] dvmrp0: entered allmulticast mode
[  223.991240][T14120] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4026'.
[  224.015602][T14120] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4026'.
[  224.126108][T14122] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4027'.
[  224.655354][T14150] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4038'.
[  225.275580][T14161] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4053'.
[  225.284633][T14161] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4053'.
[  226.193744][T14199] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4055'.
[  226.663825][   T29] kauditd_printk_skb: 9 callbacks suppressed
[  226.663844][   T29] audit: type=1400 audit(2000000318.905:2156): avc:  denied  { watch watch_reads } for  pid=14228 comm="syz.0.4068" path="/" dev="ramfs" ino=45714 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  226.776808][T14235] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4071'.
[  226.803073][T14235] hsr_slave_0: left promiscuous mode
[  226.813621][T14235] hsr_slave_1: left promiscuous mode
[  227.118309][   T29] audit: type=1400 audit(2000000319.355:2157): avc:  denied  { bind } for  pid=14262 comm="syz.4.4083" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  227.160363][T14265] netlink: 'syz.2.4084': attribute type 1 has an invalid length.
[  227.212653][T14265] bond6: entered promiscuous mode
[  227.218094][T14265] 8021q: adding VLAN 0 to HW filter on device bond6
[  227.238639][T14265] bond6: (slave bridge5): making interface the new active one
[  227.246196][T14265] bridge5: entered promiscuous mode
[  227.252961][T14265] bond6: (slave bridge5): Enslaving as an active interface with an up link
[  227.587503][T14289] __nla_validate_parse: 2 callbacks suppressed
[  227.587524][T14289] netlink: 2028 bytes leftover after parsing attributes in process `syz.4.4092'.
[  227.602953][T14289] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4092'.
[  227.629946][T14290] loop0: detected capacity change from 0 to 1024
[  227.672075][T14290] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.4093: bad orphan inode 134217728
[  227.714325][T14290] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.045573][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.067932][T14312] bridge_slave_1: left allmulticast mode
[  228.073695][T14312] bridge_slave_1: left promiscuous mode
[  228.079361][T14312] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.093841][T14312] bond0: (slave bridge_slave_1): Enslaving as an active interface with a down link
[  228.123609][   T29] audit: type=1400 audit(2000000320.365:2158): avc:  denied  { write } for  pid=14309 comm="syz.5.4100" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1
[  228.146284][T14315] loop0: detected capacity change from 0 to 128
[  228.153370][T14315] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  228.327166][   T29] audit: type=1400 audit(2000000320.565:2159): avc:  denied  { name_bind } for  pid=14316 comm="syz.2.4103" src=65530 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=rawip_socket permissive=1
[  228.373531][T14315] loop0: detected capacity change from 0 to 512
[  228.524514][T14315] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.541067][T14315] ext4 filesystem being mounted at /777/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  228.642012][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.788060][T14339] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4112'.
[  229.076709][   T29] audit: type=1400 audit(2000000321.315:2160): avc:  denied  { mount } for  pid=14360 comm="syz.5.4121" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  229.123223][   T29] audit: type=1400 audit(2000000321.365:2161): avc:  denied  { search } for  pid=14360 comm="syz.5.4121" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  229.183560][   T29] audit: type=1400 audit(2000000321.385:2162): avc:  denied  { search } for  pid=14360 comm="syz.5.4121" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  229.206700][   T29] audit: type=1400 audit(2000000321.385:2163): avc:  denied  { read open } for  pid=14360 comm="syz.5.4121" path="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  229.594540][T14386] 9p: Bad value for 'rfdno'
[  229.932247][T14399] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4136'.
[  230.111528][T14406] netlink: 56 bytes leftover after parsing attributes in process `syz.0.4139'.
[  230.472618][   T29] audit: type=1400 audit(2000000322.705:2164): avc:  denied  { create } for  pid=14414 comm="syz.0.4143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  230.668060][T14423] netlink: 52 bytes leftover after parsing attributes in process `syz.2.4147'.
[  230.699601][   T29] audit: type=1400 audit(2000000322.935:2165): avc:  denied  { execute } for  pid=14424 comm="syz.4.4148" name="file1" dev="ramfs" ino=46417 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  230.944528][T14445] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4156'.
[  230.972875][T14445] chnl_net:caif_netlink_parms(): no params data found
[  231.288437][T14467] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  231.690542][T14485] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4173'.
[  231.729834][T14485] netlink: 'syz.6.4173': attribute type 1 has an invalid length.
[  231.786144][T14487] loop6: detected capacity change from 0 to 512
[  231.809472][T14487] EXT4-fs: Ignoring removed bh option
[  231.828718][T14487] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  231.852676][T14487] EXT4-fs (loop6): 1 truncate cleaned up
[  231.869654][T14487] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  231.904062][T14491] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4175'.
[  231.934636][T14487] netlink: 32 bytes leftover after parsing attributes in process `syz.6.4174'.
[  232.021710][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.216591][T14511] net_ratelimit: 55 callbacks suppressed
[  232.216610][T14511] openvswitch: netlink: ufid size 36 bytes exceeds the range (1, 16)
[  232.230470][T14511] openvswitch: netlink: Message has 4 unknown bytes.
[  232.427448][   T29] kauditd_printk_skb: 3 callbacks suppressed
[  232.427467][   T29] audit: type=1400 audit(2000000324.665:2169): avc:  denied  { shutdown } for  pid=14518 comm="syz.0.4186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  233.373744][T14562] loop6: detected capacity change from 0 to 512
[  233.393557][T14562] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.418527][T14562] ext4 filesystem being mounted at /124/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  233.489016][T14568] __nla_validate_parse: 2 callbacks suppressed
[  233.489125][T14568] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4205'.
[  233.505207][T14568] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4205'.
[  233.514692][T14568] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4205'.
[  233.524346][T14568] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4205'.
[  233.560499][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.604032][T14576] netlink: 48 bytes leftover after parsing attributes in process `syz.6.4208'.
[  233.813831][T14590] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4216'.
[  233.825853][T14588] netlink: 16178 bytes leftover after parsing attributes in process `syz.2.4215'.
[  233.843502][T14590] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4216'.
[  234.037923][T14618] loop0: detected capacity change from 0 to 1024
[  234.061511][T14618] EXT4-fs: Ignoring removed nomblk_io_submit option
[  234.079403][T14618] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  234.102185][T14618] System zones: 0-1, 3-36
[  234.114009][T14618] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.203079][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.421900][   T29] audit: type=1326 audit(2000000326.655:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.6.4238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  234.449083][T14644] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  234.458660][   T29] audit: type=1326 audit(2000000326.685:2171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.6.4238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  234.482358][   T29] audit: type=1326 audit(2000000326.685:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.6.4238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  234.506065][   T29] audit: type=1326 audit(2000000326.685:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14645 comm="syz.6.4238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd7543bb78e code=0x7ffc0000
[  234.530338][   T29] audit: type=1326 audit(2000000326.685:2174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.6.4238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  234.554987][   T29] audit: type=1326 audit(2000000326.685:2175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.6.4238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  234.578527][   T29] audit: type=1326 audit(2000000326.685:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.6.4238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  234.602737][   T29] audit: type=1326 audit(2000000326.685:2177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.6.4238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  234.626367][   T29] audit: type=1326 audit(2000000326.685:2178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.6.4238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  234.814614][T14660] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4243'.
[  235.029534][T14669] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4248'.
[  235.704429][T14702] vxcan1: entered promiscuous mode
[  236.466736][T14742] loop0: detected capacity change from 0 to 1024
[  236.493515][T14742] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  236.505929][T14742] ext4 filesystem being mounted at /820/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  236.521648][T14742] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4276: bg 0: block 112: padding at end of block bitmap is not set
[  236.541147][T14742] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 117
[  236.553911][T14742] EXT4-fs (loop0): This should not happen!! Data will be lost
[  236.553911][T14742] 
[  236.589200][ T6538] EXT4-fs error (device loop0): ext4_map_blocks:825: inode #15: comm kworker/u8:10: lblock 0 mapped to illegal pblock 0 (length 1)
[  236.611956][ T6538] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  236.624458][ T6538] EXT4-fs (loop0): This should not happen!! Data will be lost
[  236.624458][ T6538] 
[  236.688746][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  236.776522][T14764] loop0: detected capacity change from 0 to 136
[  236.964779][T14776] bridge0: port 2(bridge_slave_1) entered disabled state
[  236.972395][T14776] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.054801][T14776] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  237.079848][T14776] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  237.244642][ T3441] netdevsim netdevsim6 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  237.260143][ T3441] netdevsim netdevsim6 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  237.279665][ T3441] netdevsim netdevsim6 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  237.299947][ T3441] netdevsim netdevsim6 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  237.614328][T14809] sctp: [Deprecated]: syz.4.4300 (pid 14809) Use of struct sctp_assoc_value in delayed_ack socket option.
[  237.614328][T14809] Use struct sctp_sack_info instead
[  237.842525][   T29] kauditd_printk_skb: 20 callbacks suppressed
[  237.842547][   T29] audit: type=1400 audit(2000000330.065:2199): avc:  denied  { map } for  pid=14823 comm="syz.6.4307" path="socket:[46898]" dev="sockfs" ino=46898 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  238.151574][   T29] audit: type=1400 audit(2000000330.385:2200): avc:  denied  { setopt } for  pid=14844 comm="syz.2.4315" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  239.098163][T14902] __nla_validate_parse: 7 callbacks suppressed
[  239.098184][T14902] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4335'.
[  239.630152][T14928] loop6: detected capacity change from 0 to 1024
[  239.644032][T14928] EXT4-fs: Ignoring removed orlov option
[  239.675123][T14930] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4346'.
[  239.694156][T14928] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  239.750657][T14930] 8021q: adding VLAN 0 to HW filter on device bond3
[  239.790675][T14935] team0: Port device dummy0 removed
[  239.827370][T14935] bond3: (slave dummy0): Enslaving as an active interface with an up link
[  239.889013][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.922831][T14936] bond3: entered allmulticast mode
[  239.928144][T14936] dummy0: entered allmulticast mode
[  239.990422][   T29] audit: type=1400 audit(2000000332.225:2201): avc:  denied  { unmount } for  pid=14948 comm="syz.5.4352" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=filesystem permissive=1
[  240.303860][   T29] audit: type=1400 audit(2000000332.535:2202): avc:  denied  { create } for  pid=14969 comm="syz.5.4361" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  240.887044][   T29] audit: type=1326 audit(2000000333.125:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15003 comm="syz.6.4373" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x0
[  241.054048][T14973] gretap1: left promiscuous mode
[  241.116974][T15013] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4376'.
[  241.238558][T14973] veth4: left promiscuous mode
[  241.243485][T14973] veth4: left allmulticast mode
[  241.381364][T14973] bond6: left promiscuous mode
[  241.386332][T14973] bridge5: left promiscuous mode
[  241.407272][T15018] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4377'.
[  241.574278][T15023] 9pnet: p9_errstr2errno: server reported unknown error 000000000
[  241.608295][   T29] audit: type=1400 audit(2000000333.845:2204): avc:  denied  { nlmsg_read } for  pid=15033 comm="syz.2.4383" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  241.852430][T15055] netlink: 52 bytes leftover after parsing attributes in process `syz.4.4393'.
[  241.903406][T15060] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4394'.
[  241.912436][T15060] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4394'.
[  242.034979][   T29] audit: type=1400 audit(2000000334.275:2205): avc:  denied  { map } for  pid=15063 comm="syz.5.4395" path="socket:[48244]" dev="sockfs" ino=48244 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  242.122766][   T29] audit: type=1400 audit(2000000334.275:2206): avc:  denied  { read } for  pid=15063 comm="syz.5.4395" path="socket:[48244]" dev="sockfs" ino=48244 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  242.897392][   T29] audit: type=1400 audit(2000000335.135:2207): avc:  denied  { write } for  pid=15110 comm="syz.6.4412" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  242.977925][   T29] audit: type=1400 audit(2000000335.165:2208): avc:  denied  { setopt } for  pid=15110 comm="syz.6.4412" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  242.998520][   T29] audit: type=1400 audit(2000000335.175:2209): avc:  denied  { read } for  pid=15110 comm="syz.6.4412" path="socket:[47914]" dev="sockfs" ino=47914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  243.157900][T15121] netlink: 100 bytes leftover after parsing attributes in process `syz.6.4415'.
[  243.233120][   T29] audit: type=1326 audit(2000000335.465:2210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15123 comm="syz.4.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  243.257382][   T29] audit: type=1326 audit(2000000335.465:2211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15123 comm="syz.4.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  243.281093][   T29] audit: type=1326 audit(2000000335.465:2212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15123 comm="syz.4.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  243.304715][   T29] audit: type=1326 audit(2000000335.465:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15123 comm="syz.4.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  243.328887][   T29] audit: type=1326 audit(2000000335.465:2214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15123 comm="syz.4.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  243.352467][   T29] audit: type=1326 audit(2000000335.465:2215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15123 comm="syz.4.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  243.376691][   T29] audit: type=1326 audit(2000000335.465:2216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15123 comm="syz.4.4416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  243.667033][T15158] IPv6: sit2: Disabled Multicast RS
[  243.867031][T15184] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4443'.
[  243.876086][T15184] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4443'.
[  244.029124][T15193] 9pnet: p9_errstr2errno: server reported unknown error 0x00000000
[  244.221341][T15199] ip6gre1: left allmulticast mode
[  244.228429][T15199] gretap1: left allmulticast mode
[  244.254185][T15199] gtp0: left promiscuous mode
[  244.263333][T15199] geneve2: left promiscuous mode
[  244.283984][T15199] ip6tnl2: left promiscuous mode
[  244.300531][ T6561] netdevsim netdevsim4 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  244.309667][ T6561] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  244.333945][ T6561] netdevsim netdevsim4 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  244.342375][ T6561] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  244.350904][T15213] can: request_module (can-proto-0) failed.
[  244.367226][ T3441] netdevsim netdevsim4 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  244.375743][ T3441] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  244.408239][ T3441] netdevsim netdevsim4 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  244.416672][ T3441] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  244.857627][T15254] batman_adv: batadv0: Adding interface: dummy0
[  244.864169][T15254] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  244.892985][T15254] batman_adv: batadv0: Interface activated: dummy0
[  244.914378][T15258] batadv0: mtu less than device minimum
[  244.920727][T15258] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  244.931777][T15258] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  244.942947][T15258] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  244.954040][T15258] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  244.965014][T15258] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  244.975914][T15258] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  244.986956][T15258] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  244.998054][T15258] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  245.009143][T15258] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  245.133640][T15264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4474'.
[  245.635876][T15281] netlink: 64 bytes leftover after parsing attributes in process `syz.2.4481'.
[  245.822496][T15288] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4483'.
[  245.863863][T15288] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4483'.
[  245.968597][T15290] ref_ctr_offset mismatch. inode: 0x130a offset: 0x0 ref_ctr_offset(old): 0x100 ref_ctr_offset(new): 0x0
[  246.447048][    C0] vxcan0: j1939_tp_rxtimer: 0xffff888119a8aa00: rx timeout, send abort
[  246.455590][    C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff888119a8aa00: 0x0f000: (3) A timeout occurred and this is the connection abort to close the session.
[  246.489360][T15302] netlink: 'syz.0.4490': attribute type 27 has an invalid length.
[  246.517554][T15302] geneve3: left promiscuous mode
[  246.523518][T15302] team1: left promiscuous mode
[  246.528339][T15302] team1: left allmulticast mode
[  246.534232][T15302] vlan0: left promiscuous mode
[  246.539033][T15302] dummy0: left promiscuous mode
[  246.544225][T15302] geneve4: left promiscuous mode
[  246.549189][T15302] geneve4: left allmulticast mode
[  246.557500][T15302] ip6gre1: left promiscuous mode
[  246.562500][T15302] ip6gre1: left allmulticast mode
[  246.648909][T15307] 8021q: adding VLAN 0 to HW filter on device team0
[  246.777427][T15327] netlink: 'syz.2.4499': attribute type 1 has an invalid length.
[  246.797794][T15327] bond7: entered promiscuous mode
[  246.805477][T15327] 8021q: adding VLAN 0 to HW filter on device bond7
[  246.844598][T15337] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4505'.
[  246.854547][T15327] 8021q: adding VLAN 0 to HW filter on device bond8
[  246.866089][T15327] bond7: (slave bond8): making interface the new active one
[  246.873613][T15327] bond8: entered promiscuous mode
[  246.882187][T15327] bond7: (slave bond8): Enslaving as an active interface with an up link
[  246.973640][T15352] netlink: 44 bytes leftover after parsing attributes in process `syz.6.4506'.
[  246.982779][T15352] netlink: 35 bytes leftover after parsing attributes in process `syz.6.4506'.
[  246.991887][T15352] netlink: 'syz.6.4506': attribute type 5 has an invalid length.
[  246.999800][T15352] netlink: 'syz.6.4506': attribute type 6 has an invalid length.
[  247.007602][T15352] netlink: 35 bytes leftover after parsing attributes in process `syz.6.4506'.
[  247.182010][T15365] loop0: detected capacity change from 0 to 512
[  247.221930][T15365] EXT4-fs (loop0): orphan cleanup on readonly fs
[  247.245929][T15370] netlink: 'syz.2.4516': attribute type 13 has an invalid length.
[  247.278599][T15365] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  247.323402][T15365] EXT4-fs (loop0): 1 truncate cleaned up
[  247.358565][T15365] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  247.498712][T15365] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4513'.
[  247.507982][T15365] netlink: 'syz.0.4513': attribute type 7 has an invalid length.
[  247.515837][T15365] netlink: 'syz.0.4513': attribute type 8 has an invalid length.
[  247.523700][T15365] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4513'.
[  247.624347][T15375] ref_ctr going negative. vaddr: 0x200000ffc002, curr val: -29824, delta: 1
[  247.633983][T15375] ref_ctr increment failed for inode: 0x404 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88814afe57c0
[  247.671628][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  248.488931][   T29] kauditd_printk_skb: 78 callbacks suppressed
[  248.488950][   T29] audit: type=1326 audit(2000000340.725:2295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15420 comm="syz.6.4536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  248.519354][   T29] audit: type=1326 audit(2000000340.725:2296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15420 comm="syz.6.4536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  248.566357][   T29] audit: type=1326 audit(2000000340.785:2297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15420 comm="syz.6.4536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  248.590664][   T29] audit: type=1326 audit(2000000340.785:2298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15420 comm="syz.6.4536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  248.614987][   T29] audit: type=1326 audit(2000000340.785:2299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15420 comm="syz.6.4536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  248.741644][   T29] audit: type=1326 audit(2000000340.965:2300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.4.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  248.765947][   T29] audit: type=1326 audit(2000000340.965:2301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.4.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  248.789596][   T29] audit: type=1326 audit(2000000340.965:2302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.4.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  248.813958][   T29] audit: type=1326 audit(2000000340.965:2303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.4.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  248.837841][   T29] audit: type=1326 audit(2000000340.965:2304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.4.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  248.977094][T15436] loop0: detected capacity change from 0 to 1024
[  249.001598][T15436] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  249.037281][T15436] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 18: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  249.128481][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.508297][T15452] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  249.518961][T15452] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  249.528908][T15452] netdevsim netdevsim5 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  249.708012][T15452] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  249.717912][T15452] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  249.727938][T15452] netdevsim netdevsim5 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  249.870855][T15456] syzkaller0: entered promiscuous mode
[  249.877450][T15456] syzkaller0: entered allmulticast mode
[  249.885575][T15452] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  249.895494][T15452] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  249.906205][T15452] netdevsim netdevsim5 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  249.955662][T15452] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  249.966428][T15452] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  249.976398][T15452] netdevsim netdevsim5 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  250.051774][T15464] netlink: 'syz.6.4551': attribute type 27 has an invalid length.
[  250.076955][T15464] 8021q: adding VLAN 0 to HW filter on device bond0
[  250.086155][T15464] 8021q: adding VLAN 0 to HW filter on device team0
[  250.102899][T15464] net_ratelimit: 11 callbacks suppressed
[  250.102913][T15464] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  250.133564][ T6561] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 2816 - 0
[  250.141818][ T6561] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 20004 - 0
[  250.150569][ T6561] netdevsim netdevsim5 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  250.175408][ T6561] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 2816 - 0
[  250.183811][ T6561] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 20004 - 0
[  250.192184][ T6561] netdevsim netdevsim5 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  250.219665][ T6561] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 2816 - 0
[  250.228024][ T6561] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 20004 - 0
[  250.236493][ T6561] netdevsim netdevsim5 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  250.268055][T15470] loop6: detected capacity change from 0 to 1024
[  250.353723][ T6561] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 2816 - 0
[  250.361980][ T6561] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 20004 - 0
[  250.370377][ T6561] netdevsim netdevsim5 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  250.424532][T15470] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.522381][T15486] IPVS: dh: FWM 3 0x00000003 - no destination available
[  250.741059][T15507] netlink: 'syz.2.4566': attribute type 4 has an invalid length.
[  250.761488][T15507] netlink: 'syz.2.4566': attribute type 4 has an invalid length.
[  250.772966][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.942590][T15516] loop6: detected capacity change from 0 to 512
[  250.998047][T15516] EXT4-fs (loop6): 1 orphan inode deleted
[  251.014608][ T6561] EXT4-fs error (device loop6): ext4_release_dquot:7022: comm kworker/u8:17: Failed to release dquot type 1
[  251.015032][T15516] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.069532][T15516] ext4 filesystem being mounted at /209/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.452252][T15547] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  251.462262][T15547] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  251.472923][T15547] netdevsim netdevsim5 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  251.506271][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.520786][T15547] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  251.530752][T15547] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  251.541168][T15551] netlink: 'syz.4.4589': attribute type 1 has an invalid length.
[  251.549135][T15547] netdevsim netdevsim5 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  251.566842][T15552] __nla_validate_parse: 1 callbacks suppressed
[  251.566863][T15552] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4587'.
[  251.608221][T15551] 8021q: adding VLAN 0 to HW filter on device bond3
[  251.701643][T15555] bond3: (slave veth19): Enslaving as an active interface with a down link
[  251.879922][T15551] batman_adv: batadv0: Interface deactivated: dummy0
[  251.887994][T15551] batman_adv: batadv0: Removing interface: dummy0
[  251.908413][T15551] bond3: (slave dummy0): making interface the new active one
[  251.941656][T15551] dummy0: entered promiscuous mode
[  251.954794][T15551] bond3: (slave dummy0): Enslaving as an active interface with an up link
[  251.971726][T15568] loop0: detected capacity change from 0 to 512
[  252.011838][T15555] bond3 (unregistering): (slave veth19): Releasing active interface
[  252.020312][T15568] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  252.044023][T15568] EXT4-fs (loop0): orphan cleanup on readonly fs
[  252.056828][T15555] bond3 (unregistering): (slave dummy0): Releasing active interface
[  252.073030][T15568] EXT4-fs warning (device loop0): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  252.093114][T15555] bond3 (unregistering): Released all slaves
[  252.108669][T15568] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  252.138965][T15547] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  252.148921][T15547] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  252.159053][T15547] netdevsim netdevsim5 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  252.179674][T15568] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.4593: bg 0: block 15: invalid block bitmap
[  252.225261][T15568] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  252.255776][T15568] EXT4-fs (loop0): 1 truncate cleaned up
[  252.262129][T15568] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  252.296574][T15547] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  252.306496][T15547] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  252.316469][T15547] netdevsim netdevsim5 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  252.327745][T15568] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #16: comm syz.0.4593: corrupted xattr block 31: invalid header
[  252.341510][T15568] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=16
[  252.352862][T15568] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #16: comm syz.0.4593: corrupted xattr block 31: invalid header
[  252.372946][T15568] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=16
[  252.378919][T15580] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #16: comm syz.0.4593: corrupted xattr block 31: invalid header
[  252.392851][T15568] EXT4-fs error (device loop0): ext4_get_link:106: inode #16: comm syz.0.4593: bad symlink.
[  252.412326][T15580] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=16
[  252.442444][T15580] EXT4-fs error (device loop0): ext4_get_link:106: inode #16: comm syz.0.4593: bad symlink.
[  252.496580][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.487892][T15631] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  253.529454][T15631] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  254.333510][T15763] tipc: Started in network mode
[  254.338449][T15763] tipc: Node identity 84e, cluster identity 4711
[  254.345609][T15763] tipc: Node number set to 2126
[  254.428334][T15777] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4629'.
[  254.490814][T15779] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  254.626699][T15790] loop6: detected capacity change from 0 to 128
[  254.642092][T15790] netlink: 'syz.6.4636': attribute type 10 has an invalid length.
[  254.652290][T15790] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  254.666818][T15791] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  254.689770][ T6016] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 2816 - 0
[  254.698121][ T6016] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 20004 - 0
[  254.706462][ T6016] netdevsim netdevsim5 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  254.733410][T15795] bio_check_eod: 80 callbacks suppressed
[  254.733468][T15795] syz.6.4636: attempt to access beyond end of device
[  254.733468][T15795] loop6: rw=1, sector=153, nr_sectors = 8 limit=128
[  254.742857][ T6016] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 2816 - 0
[  254.761350][ T6016] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 20004 - 0
[  254.767448][T15795] syz.6.4636: attempt to access beyond end of device
[  254.767448][T15795] loop6: rw=1, sector=169, nr_sectors = 8 limit=128
[  254.770046][ T6016] netdevsim netdevsim5 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  254.795770][T15795] syz.6.4636: attempt to access beyond end of device
[  254.795770][T15795] loop6: rw=1, sector=185, nr_sectors = 8 limit=128
[  254.845234][T15795] syz.6.4636: attempt to access beyond end of device
[  254.845234][T15795] loop6: rw=1, sector=201, nr_sectors = 8 limit=128
[  254.858804][T15795] syz.6.4636: attempt to access beyond end of device
[  254.858804][T15795] loop6: rw=1, sector=217, nr_sectors = 8 limit=128
[  254.872480][T15795] syz.6.4636: attempt to access beyond end of device
[  254.872480][T15795] loop6: rw=1, sector=233, nr_sectors = 8 limit=128
[  254.886132][T15795] syz.6.4636: attempt to access beyond end of device
[  254.886132][T15795] loop6: rw=1, sector=249, nr_sectors = 8 limit=128
[  254.892895][ T6016] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 2816 - 0
[  254.906200][T15795] syz.6.4636: attempt to access beyond end of device
[  254.906200][T15795] loop6: rw=1, sector=265, nr_sectors = 8 limit=128
[  254.909519][ T6016] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 20004 - 0
[  254.921912][T15795] syz.6.4636: attempt to access beyond end of device
[  254.921912][T15795] loop6: rw=1, sector=281, nr_sectors = 8 limit=128
[  254.929127][ T6016] netdevsim netdevsim5 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  254.942833][T15795] syz.6.4636: attempt to access beyond end of device
[  254.942833][T15795] loop6: rw=1, sector=297, nr_sectors = 8 limit=128
[  254.965508][ T6016] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 2816 - 0
[  254.974520][ T6016] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 20004 - 0
[  254.982853][ T6016] netdevsim netdevsim5 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  255.168753][T15819] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4647'.
[  255.179560][T15819] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4647'.
[  255.213327][T15821] loop6: detected capacity change from 0 to 512
[  255.220045][   T29] kauditd_printk_skb: 123 callbacks suppressed
[  255.220062][   T29] audit: type=1400 audit(2000000347.455:2426): avc:  denied  { ioctl } for  pid=15822 comm="syz.5.4649" path="socket:[51738]" dev="sockfs" ino=51738 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  255.251254][T15821] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  255.268790][T15821] EXT4-fs (loop6): 1 truncate cleaned up
[  255.276608][T15825] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4650'.
[  255.286543][T15821] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  255.299353][T15825] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4650'.
[  255.327174][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.583811][   T29] audit: type=1400 audit(2000000347.815:2427): avc:  denied  { append } for  pid=15841 comm="syz.0.4655" name="event1" dev="devtmpfs" ino=243 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  255.595869][T15842] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  255.619693][T15842] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  256.343781][T15854] syzkaller0: entered promiscuous mode
[  256.349361][T15854] syzkaller0: entered allmulticast mode
[  256.561143][T15868] netlink: 40 bytes leftover after parsing attributes in process `syz.6.4662'.
[  256.580225][T15868] netlink: 32 bytes leftover after parsing attributes in process `syz.6.4662'.
[  256.945784][T15878] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4667'.
[  256.955565][T15878] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4667'.
[  257.332324][T15896] loop0: detected capacity change from 0 to 1024
[  257.346913][T15896] EXT4-fs: Ignoring removed nomblk_io_submit option
[  257.364934][T15896] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  257.385961][T15896] System zones: 0-1, 3-36
[  257.417571][T15896] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.739066][T15904] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4678'.
[  257.755715][T15905] loop6: detected capacity change from 0 to 512
[  257.781530][T15905] EXT4-fs: inline encryption not supported
[  257.787551][T15905] EXT4-fs: Ignoring removed nomblk_io_submit option
[  257.804757][T15905] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  257.813286][T15905] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  257.855865][T15905] Quota error (device loop6): do_insert_tree: Free block already used in tree: block 1
[  257.883253][T15905] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota
[  257.925160][T15905] EXT4-fs error (device loop6): ext4_acquire_dquot:6986: comm syz.6.4679: Failed to acquire dquot type 1
[  257.956331][T15905] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 46 vs 41 free clusters
[  258.032770][T15905] EXT4-fs error (device loop6): ext4_do_update_inode:5617: inode #12: comm syz.6.4679: corrupted inode contents
[  258.105301][T15905] EXT4-fs error (device loop6): ext4_dirty_inode:6502: inode #12: comm syz.6.4679: mark_inode_dirty error
[  258.148486][T15905] EXT4-fs error (device loop6): ext4_do_update_inode:5617: inode #12: comm syz.6.4679: corrupted inode contents
[  258.183233][T15905] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #12: comm syz.6.4679: mark_inode_dirty error
[  258.200342][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.220765][T15905] EXT4-fs error (device loop6): ext4_do_update_inode:5617: inode #12: comm syz.6.4679: corrupted inode contents
[  258.255390][T15905] EXT4-fs error (device loop6) in ext4_orphan_del:303: Corrupt filesystem
[  258.264748][T15905] EXT4-fs error (device loop6): ext4_do_update_inode:5617: inode #12: comm syz.6.4679: corrupted inode contents
[  258.303485][T15905] EXT4-fs error (device loop6): ext4_truncate:4635: inode #12: comm syz.6.4679: mark_inode_dirty error
[  258.323854][T15905] EXT4-fs error (device loop6) in ext4_process_orphan:345: Corrupt filesystem
[  258.339744][T15905] EXT4-fs (loop6): 1 truncate cleaned up
[  258.353278][T15905] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  258.423533][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.509986][T15918] loop0: detected capacity change from 0 to 512
[  258.520321][T15918] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  258.555037][T15922] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  258.564471][T15918] EXT4-fs (loop0): 1 truncate cleaned up
[  258.571930][T15922] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  258.582432][T15918] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.062107][   T29] audit: type=1400 audit(2000000351.295:2428): avc:  denied  { shutdown } for  pid=15938 comm="syz.4.4691" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  259.120482][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.154681][T15944] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4694'.
[  259.190460][T15944] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4694'.
[  259.479577][T15940] cgroup: fork rejected by pids controller in /syz4
[  259.569129][T15985] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4701'.
[  259.610019][T15985] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4701'.
[  259.740717][T15992] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4704'.
[  259.884421][T16002] syz_tun: entered allmulticast mode
[  259.890172][T16001] syz_tun: left allmulticast mode
[  260.002744][T16010] netlink: 'syz.4.4713': attribute type 10 has an invalid length.
[  260.012344][T16010] team0: Failed to send options change via netlink (err -105)
[  260.019923][T16010] team0: Port device dummy0 added
[  260.031881][T16010] netlink: 'syz.4.4713': attribute type 10 has an invalid length.
[  260.043554][T16010] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  260.056867][T16010] team0: Failed to send options change via netlink (err -105)
[  260.064547][T16010] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  260.074279][T16010] team0: Port device dummy0 removed
[  260.083408][T16010] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  260.596012][T16038] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4724'.
[  260.605109][T16038] netlink: 'syz.6.4724': attribute type 12 has an invalid length.
[  260.625734][T15701] netdevsim netdevsim6 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  260.625783][T16038] netlink: 'syz.6.4724': attribute type 12 has an invalid length.
[  260.645496][T15701] netdevsim netdevsim6 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  260.667517][T15701] netdevsim netdevsim6 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  260.680960][T15701] netdevsim netdevsim6 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  260.716649][ T9850] IPVS: starting estimator thread 0...
[  260.761494][T16047] loop6: detected capacity change from 0 to 128
[  260.809136][T16050] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=16050 comm=syz.6.4729
[  260.828501][T16043] IPVS: using max 2208 ests per chain, 110400 per kthread
[  260.860412][   T29] audit: type=1400 audit(2000000353.095:2429): avc:  denied  { getopt } for  pid=16053 comm="syz.6.4731" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  260.882147][   T29] audit: type=1326 audit(2000000353.095:2430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16053 comm="syz.6.4731" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd7543faeb9 code=0x0
[  260.912343][T16056] netlink: 'syz.2.4730': attribute type 6 has an invalid length.
[  261.709738][T16069] bridge3: entered allmulticast mode
[  261.863513][T16080] loop0: detected capacity change from 0 to 128
[  261.877598][T16080] bio_check_eod: 102 callbacks suppressed
[  261.877617][T16080] syz.0.4742: attempt to access beyond end of device
[  261.877617][T16080] loop0: rw=2049, sector=154, nr_sectors = 8 limit=128
[  261.908842][T16080] syz.0.4742: attempt to access beyond end of device
[  261.908842][T16080] loop0: rw=8390657, sector=160, nr_sectors = 2 limit=128
[  261.922631][T16080] Buffer I/O error on dev loop0, logical block 80, lost async page write
[  261.933315][T16082] syz.0.4742: attempt to access beyond end of device
[  261.933315][T16082] loop0: rw=2049, sector=154, nr_sectors = 2 limit=128
[  261.989476][T16084] loop6: detected capacity change from 0 to 128
[  262.005841][T16084] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  262.018938][T16084] ext4 filesystem being mounted at /251/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  262.054748][T16084] EXT4-fs (loop6): shut down requested (0)
[  262.090786][T12468] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  262.189434][T16099] __nla_validate_parse: 1 callbacks suppressed
[  262.189452][T16099] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4749'.
[  262.240848][T16104] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4749'.
[  262.255797][T16102] 8021q: adding VLAN 0 to HW filter on device bond3
[  262.309339][T16102] bond3: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  262.373626][   T37] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  262.523450][ T3331] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  263.364166][T16140] loop6: detected capacity change from 0 to 128
[  263.403042][T16140] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  263.457976][T16140] ext4 filesystem being mounted at /256/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  264.076439][ T6561] netdevsim netdevsim6 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  264.088539][ T6561] netdevsim netdevsim6 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  264.152047][ T6561] netdevsim netdevsim6 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  264.200182][ T6561] netdevsim netdevsim6 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  264.271281][T16172] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4772'.
[  264.306269][T16174] netlink: 'syz.4.4773': attribute type 3 has an invalid length.
[  264.314367][T16174] netlink: 'syz.4.4773': attribute type 3 has an invalid length.
[  264.325044][T16174] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2581 sclass=netlink_route_socket pid=16174 comm=syz.4.4773
[  264.644878][T12468] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  264.760519][T16193] netlink: 1304 bytes leftover after parsing attributes in process `syz.6.4781'.
[  264.849771][   T29] audit: type=1400 audit(2000000357.085:2431): avc:  denied  { mounton } for  pid=16196 comm="syz.4.4784" path="/file0" dev="ramfs" ino=59489 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  264.937053][   T29] audit: type=1400 audit(2000000357.175:2432): avc:  denied  { ioctl } for  pid=16198 comm="syz.4.4786" path="socket:[59496]" dev="sockfs" ino=59496 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  265.013448][   T29] audit: type=1400 audit(2000000357.205:2433): avc:  denied  { accept } for  pid=16198 comm="syz.4.4786" path="socket:[59495]" dev="sockfs" ino=59495 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  265.181732][   T29] audit: type=1400 audit(2000000357.415:2434): avc:  denied  { ioctl } for  pid=16216 comm="syz.0.4795" path="/dev/ptp0" dev="devtmpfs" ino=247 ioctlcmd=0x3d07 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  265.200271][T16220] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4793'.
[  265.286625][   T29] audit: type=1400 audit(2000000357.525:2435): avc:  denied  { getopt } for  pid=16231 comm="syz.2.4801" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  265.867978][T16267] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4813'.
[  266.422750][   T29] audit: type=1400 audit(2000000358.655:2436): avc:  denied  { getopt } for  pid=16294 comm="syz.2.4825" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  266.478793][T16299] delete_channel: no stack
[  266.500426][   T29] audit: type=1400 audit(2000000358.715:2437): avc:  denied  { bind } for  pid=16299 comm="syz.4.4827" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  266.571015][   T29] audit: type=1400 audit(2000000358.755:2438): avc:  denied  { ioctl } for  pid=16304 comm="syz.2.4829" path="socket:[59628]" dev="sockfs" ino=59628 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  267.573077][T16349] netlink: 'syz.0.4847': attribute type 2 has an invalid length.
[  267.581379][T16349] netlink: 'syz.0.4847': attribute type 8 has an invalid length.
[  267.605737][T16349] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4847'.
[  267.662337][   T29] audit: type=1400 audit(2000000359.895:2439): avc:  denied  { watch watch_reads } for  pid=16353 comm="syz.5.4849" path="/" dev="hugetlbfs" ino=59346 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1
[  267.853185][   T29] audit: type=1400 audit(2000000360.095:2440): avc:  denied  { getopt } for  pid=16366 comm="syz.5.4855" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  267.959652][T16377] loop6: detected capacity change from 0 to 7
[  267.970762][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  267.980518][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  267.989144][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  267.998872][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  268.007433][T16377]  loop6: unable to read partition table
[  268.014088][T16377] loop_reread_partitions: partition scan of loop6 (úùƒå¡™‰ü�¾SêjÌ–ã¢P=ý?ã}X‹ºÐ	œëÜ%õ«`ÉæÖ€ù…ˆŠ5) failed (rc=-5)
[  268.029471][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  268.039121][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  268.048381][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  268.058480][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  268.070731][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  268.080392][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  268.091236][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  268.100854][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  268.113180][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  268.122904][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  268.201037][T16385] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4863'.
[  268.643703][T16415] loop0: detected capacity change from 0 to 512
[  268.666450][T16415] EXT4-fs: Ignoring removed oldalloc option
[  268.688041][T16415] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: comm syz.0.4874: Parent and EA inode have the same ino 15
[  268.716425][T16415] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: comm syz.0.4874: Parent and EA inode have the same ino 15
[  268.751736][T16415] EXT4-fs (loop0): 1 orphan inode deleted
[  268.766702][T16415] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.816035][T16415] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4874'.
[  268.951223][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.971582][   T29] audit: type=1400 audit(2000000361.205:2441): avc:  denied  { name_bind } for  pid=16437 comm="syz.6.4883" src=255 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  269.078239][T16446] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4886'.
[  269.214993][T16455] netlink: 'syz.4.4891': attribute type 32 has an invalid length.
[  269.341413][   T29] audit: type=1326 audit(2000000361.575:2442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16463 comm="syz.2.4893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  269.365652][   T29] audit: type=1326 audit(2000000361.575:2443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16463 comm="syz.2.4893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  269.389284][   T29] audit: type=1326 audit(2000000361.575:2444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16463 comm="syz.2.4893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  269.413110][   T29] audit: type=1326 audit(2000000361.575:2445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16463 comm="syz.2.4893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  269.984124][T16499] bond4: entered promiscuous mode
[  270.022860][T16499] macvlan2: entered promiscuous mode
[  270.028245][T16499] macvlan2: entered allmulticast mode
[  270.044010][T16499] bond4: (slave macvlan2): Opening slave failed
[  270.421567][T16472] syz.4.4896 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  270.433130][T16472] CPU: 1 UID: 0 PID: 16472 Comm: syz.4.4896 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  270.433222][T16472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  270.433245][T16472] Call Trace:
[  270.433258][T16472]  <TASK>
[  270.433269][T16472]  __dump_stack+0x1d/0x30
[  270.433302][T16472]  dump_stack_lvl+0x95/0xd0
[  270.433392][T16472]  dump_stack+0x15/0x1b
[  270.433420][T16472]  dump_header+0x80/0x240
[  270.433448][T16472]  oom_kill_process+0x295/0x350
[  270.433483][T16472]  out_of_memory+0x97d/0xb80
[  270.433558][T16472]  try_charge_memcg+0x62e/0xa10
[  270.433596][T16472]  mem_cgroup_swapin_charge_folio+0x103/0x1f0
[  270.433645][T16472]  __read_swap_cache_async+0x17b/0x2d0
[  270.433741][T16472]  swap_cluster_readahead+0x262/0x3c0
[  270.433796][T16472]  swapin_readahead+0xde/0x840
[  270.433880][T16472]  ? mod_memcg_lruvec_state+0x262/0x280
[  270.433965][T16472]  ? lruvec_stat_mod_folio+0xd2/0x110
[  270.433999][T16472]  ? __rcu_read_unlock+0x4e/0x70
[  270.434060][T16472]  ? swap_cache_get_folio+0x26f/0x280
[  270.434102][T16472]  do_swap_page+0x59b/0x2a50
[  270.434150][T16472]  ? __rcu_read_lock+0x36/0x50
[  270.434188][T16472]  ? __pfx_default_wake_function+0x10/0x10
[  270.434303][T16472]  handle_mm_fault+0xb40/0x3030
[  270.434407][T16472]  ? vma_start_read+0x1c7/0x2c0
[  270.434443][T16472]  do_user_addr_fault+0x62f/0x1050
[  270.434542][T16472]  ? fpregs_assert_state_consistent+0xb3/0xe0
[  270.434567][T16472]  ? arch_exit_to_user_mode_prepare+0x26/0x80
[  270.434682][T16472]  ? irqentry_exit+0x3c/0x510
[  270.434710][T16472]  exc_page_fault+0x62/0xa0
[  270.434735][T16472]  asm_exc_page_fault+0x26/0x30
[  270.434809][T16472] RIP: 0033:0x7f5f80f036de
[  270.434833][T16472] Code: e9 47 69 13 00 0f 1f 80 00 00 00 00 48 83 c4 28 48 c7 c0 ff ff ff ff 5b 5d c3 66 90 41 57 41 56 41 55 41 54 55 53 48 83 ec 38 <80> 3d 1b e9 3a 00 00 89 7c 24 18 48 89 74 24 28 0f 85 cd 09 00 00
[  270.434853][T16472] RSP: 002b:00007ffc36911630 EFLAGS: 00010206
[  270.434871][T16472] RAX: 00007f5f812b5fa0 RBX: 00007f5f812b5fa0 RCX: 0000000000000026
[  270.434886][T16472] RDX: 0000000000000001 RSI: 00007f5f812b6038 RDI: 0000000000000008
[  270.434900][T16472] RBP: 00007f5f812b7da0 R08: 0000000000000000 R09: 0000000000000001
[  270.434971][T16472] R10: 0000000000000026 R11: 0000000000000246 R12: 0000000000041ff4
[  270.434985][T16472] R13: 00007f5f812b5fac R14: 0000000000041d15 R15: 00007ffc369117a0
[  270.435007][T16472]  </TASK>
[  270.435019][T16472] memory: usage 307200kB, limit 307200kB, failcnt 404
[  270.678472][T16472] memory+swap: usage 308380kB, limit 9007199254740988kB, failcnt 0
[  270.686450][T16472] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[  270.693813][T16472] Memory cgroup stats for /syz4:
[  270.694160][T16472] cache 0
[  270.702160][T16472] rss 4096
[  270.705338][T16472] shmem 0
[  270.708298][T16472] mapped_file 0
[  270.711788][T16472] dirty 0
[  270.714865][T16472] writeback 12288
[  270.718517][T16472] workingset_refault_anon 2290
[  270.723365][T16472] workingset_refault_file 516
[  270.728088][T16472] swap 1208320
[  270.731476][T16472] swapcached 28672
[  270.735269][T16472] pgpgin 329378
[  270.738751][T16472] pgpgout 329371
[  270.742337][T16472] pgfault 284237
[  270.745991][T16472] pgmajfault 304
[  270.749648][T16472] inactive_anon 28672
[  270.753672][T16472] active_anon 0
[  270.757201][T16472] inactive_file 0
[  270.760846][T16472] active_file 0
[  270.764444][T16472] unevictable 0
[  270.767930][T16472] hierarchical_memory_limit 314572800
[  270.773373][T16472] hierarchical_memsw_limit 9223372036854771712
[  270.779557][T16472] total_cache 0
[  270.783100][T16472] total_rss 4096
[  270.786678][T16472] total_shmem 0
[  270.790203][T16472] total_mapped_file 0
[  270.794235][T16472] total_dirty 0
[  270.797710][T16472] total_writeback 12288
[  270.801860][T16472] total_workingset_refault_anon 2290
[  270.807198][T16472] total_workingset_refault_file 516
[  270.812410][T16472] total_swap 1208320
[  270.816344][T16472] total_swapcached 28672
[  270.820663][T16472] total_pgpgin 329378
[  270.824673][T16472] total_pgpgout 329371
[  270.828895][T16472] total_pgfault 284237
[  270.833074][T16472] total_pgmajfault 304
[  270.837158][T16472] total_inactive_anon 28672
[  270.841660][T16472] total_active_anon 0
[  270.845696][T16472] total_inactive_file 0
[  270.849865][T16472] total_active_file 0
[  270.853908][T16472] total_unevictable 0
[  270.857912][T16472] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.4896,pid=16472,uid=0
[  270.872987][T16472] Memory cgroup out of memory: Killed process 16472 (syz.4.4896) total-vm:94000kB, anon-rss:1208kB, file-rss:22284kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:0
[  271.404619][T16566] bridge0: entered promiscuous mode
[  271.410156][T16566] bridge0: left promiscuous mode
[  271.571279][T16580] netlink: 'syz.4.4939': attribute type 1 has an invalid length.
[  271.588302][T16580] 8021q: adding VLAN 0 to HW filter on device bond3
[  271.598316][T16580] erspan0: entered allmulticast mode
[  271.608287][T16580] bond3: (slave erspan0): making interface the new active one
[  271.617624][T16580] bond3: (slave erspan0): Enslaving as an active interface with an up link
[  272.293658][ T3392] page_pool_release_retry() stalled pool shutdown: id 118, 1 inflight 60 sec
[  272.425539][T16613] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.4952'.
[  272.542380][T16619] sctp: [Deprecated]: syz.5.4956 (pid 16619) Use of struct sctp_assoc_value in delayed_ack socket option.
[  272.542380][T16619] Use struct sctp_sack_info instead
[  272.608962][   T29] kauditd_printk_skb: 16 callbacks suppressed
[  272.608981][   T29] audit: type=1400 audit(2000000364.845:2462): avc:  denied  { write } for  pid=16617 comm="syz.0.4954" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  272.836338][T16638] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4961'.
[  272.845301][T16638] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4961'.
[  272.992819][   T29] audit: type=1400 audit(2000000365.235:2463): avc:  denied  { setcurrent } for  pid=16647 comm="syz.0.4965" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  273.016177][   T29] audit: type=1401 audit(2000000365.235:2464): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[  273.033089][   T29] audit: type=1400 audit(2000000365.235:2465): avc:  denied  { write } for  pid=16647 comm="syz.0.4965" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  273.062778][T16652] xt_nat: multiple ranges no longer supported
[  273.357261][   T29] audit: type=1326 audit(2000000365.595:2466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16670 comm="syz.4.4974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  273.381365][   T29] audit: type=1326 audit(2000000365.595:2467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16670 comm="syz.4.4974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  273.404946][   T29] audit: type=1326 audit(2000000365.595:2468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16670 comm="syz.4.4974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  273.428495][   T29] audit: type=1326 audit(2000000365.595:2469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16670 comm="syz.4.4974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  273.452011][   T29] audit: type=1326 audit(2000000365.595:2470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16670 comm="syz.4.4974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  273.475750][   T29] audit: type=1326 audit(2000000365.595:2471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16670 comm="syz.4.4974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7f5f8103aeb9 code=0x7ffc0000
[  273.515854][T16676] VFS: Mount too revealing
[  273.652243][T16688] macvlan2: entered promiscuous mode
[  273.664963][T16688] batman_adv: batadv0: Adding interface: macvlan2
[  273.671455][T16688] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  273.697141][T16688] batman_adv: batadv0: Not using interface macvlan2 (retrying later): interface not active
[  274.266240][T16742] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5004'.
[  274.292520][T16744] netlink: 'syz.2.5005': attribute type 4 has an invalid length.
[  274.305466][T16744] netlink: 'syz.2.5005': attribute type 4 has an invalid length.
[  274.315636][T16746] netlink: 'syz.5.5006': attribute type 2 has an invalid length.
[  274.420117][T16756] ip6gre1: entered promiscuous mode
[  274.425490][T16756] ip6gre1: entered allmulticast mode
[  274.434737][ T6016] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  274.442465][ T6016] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  274.455634][T16756] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  274.472852][ T9829] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  274.516287][T16764] sch_fq: defrate 7 ignored.
[  274.576878][T16773] loop6: detected capacity change from 0 to 128
[  274.667775][T16773] syz.6.5018: attempt to access beyond end of device
[  274.667775][T16773] loop6: rw=2049, sector=145, nr_sectors = 8 limit=128
[  274.681688][T16773] syz.6.5018: attempt to access beyond end of device
[  274.681688][T16773] loop6: rw=2049, sector=161, nr_sectors = 8 limit=128
[  274.707247][T16773] syz.6.5018: attempt to access beyond end of device
[  274.707247][T16773] loop6: rw=2049, sector=177, nr_sectors = 8 limit=128
[  274.720920][T16773] syz.6.5018: attempt to access beyond end of device
[  274.720920][T16773] loop6: rw=2049, sector=193, nr_sectors = 8 limit=128
[  274.742866][ T9829] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  274.755918][T16773] syz.6.5018: attempt to access beyond end of device
[  274.755918][T16773] loop6: rw=2049, sector=209, nr_sectors = 8 limit=128
[  274.769848][T16773] syz.6.5018: attempt to access beyond end of device
[  274.769848][T16773] loop6: rw=2049, sector=225, nr_sectors = 8 limit=128
[  274.784092][T16773] syz.6.5018: attempt to access beyond end of device
[  274.784092][T16773] loop6: rw=2049, sector=241, nr_sectors = 8 limit=128
[  274.798176][T16773] syz.6.5018: attempt to access beyond end of device
[  274.798176][T16773] loop6: rw=2049, sector=257, nr_sectors = 8 limit=128
[  274.851846][T16773] syz.6.5018: attempt to access beyond end of device
[  274.851846][T16773] loop6: rw=2049, sector=273, nr_sectors = 8 limit=128
[  274.866694][T16773] syz.6.5018: attempt to access beyond end of device
[  274.866694][T16773] loop6: rw=2049, sector=289, nr_sectors = 8 limit=128
[  275.333347][ T9829] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  275.682316][T16808] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5031'.
[  275.814237][T16820] netlink: 'syz.4.5036': attribute type 4 has an invalid length.
[  275.822528][T16820] netlink: 'syz.4.5036': attribute type 4 has an invalid length.
[  276.128717][T16832] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5040'.
[  276.137820][T16832] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5040'.
[  276.236353][T16845] kernel read not supported for file /s (pid: 16845 comm: syz.4.5045)
[  276.253352][T16847] openvswitch: netlink: Missing key (keys=40, expected=100)
[  276.271004][T16849] netlink: 64 bytes leftover after parsing attributes in process `syz.4.5047'.
[  276.400585][T16866] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5053'.
[  276.409642][T16866] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5053'.
[  276.591165][T16881] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  276.607536][T16881] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  276.619359][T16881] ref_ctr_offset mismatch. inode: 0x13b1 offset: 0x0 ref_ctr_offset(old): 0x100 ref_ctr_offset(new): 0x0
[  276.990019][T16899] bridge0: entered allmulticast mode
[  277.008279][T16899] bridge_slave_1: left allmulticast mode
[  277.014188][T16899] bridge_slave_1: left promiscuous mode
[  277.019911][T16899] bridge0: port 2(bridge_slave_1) entered disabled state
[  277.028374][T16899] bridge_slave_0: left allmulticast mode
[  277.034110][T16899] bridge_slave_0: left promiscuous mode
[  277.039988][T16899] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.287833][ T9829] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  278.295361][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  278.334289][T16940] loop6: detected capacity change from 0 to 2048
[  278.358350][ T9829] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  278.395171][T16940] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  278.451382][T16950] netlink: 'syz.0.5090': attribute type 1 has an invalid length.
[  278.596807][T16950] 8021q: adding VLAN 0 to HW filter on device bond2
[  278.623879][T16954] bond2: (slave dummy0): making interface the new active one
[  278.632623][T16954] bond2: (slave dummy0): Enslaving as an active interface with an up link
[  278.667096][T16950] bond2: entered promiscuous mode
[  278.682193][T16950] dummy0: entered promiscuous mode
[  278.718504][T16949] bond2: left promiscuous mode
[  278.728898][T16949] dummy0: left promiscuous mode
[  278.748849][   T29] kauditd_printk_skb: 23 callbacks suppressed
[  278.748869][   T29] audit: type=1400 audit(2000000370.985:2495): avc:  denied  { watch watch_reads } for  pid=16955 comm="syz.2.5092" path="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  279.133774][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.203343][   T29] audit: type=1400 audit(2000000371.445:2496): avc:  denied  { unmount } for  pid=12468 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  279.236498][   T29] audit: type=1326 audit(2000000371.475:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16973 comm="syz.6.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  279.260272][   T29] audit: type=1326 audit(2000000371.475:2498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16973 comm="syz.6.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  279.284009][   T29] audit: type=1326 audit(2000000371.475:2499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16973 comm="syz.6.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  279.307558][   T29] audit: type=1326 audit(2000000371.475:2500): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16973 comm="syz.6.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  279.331501][   T29] audit: type=1326 audit(2000000371.475:2501): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16973 comm="syz.6.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  279.355452][   T29] audit: type=1326 audit(2000000371.475:2502): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16973 comm="syz.6.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  279.379444][   T29] audit: type=1326 audit(2000000371.475:2503): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16973 comm="syz.6.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  279.490576][T16978] loop6: detected capacity change from 0 to 1024
[  279.509288][T16978] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[  279.547327][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  279.650919][   T29] audit: type=1400 audit(2000000371.885:2504): avc:  denied  { read open } for  pid=16988 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=482 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  279.703453][T16986] SELinux: failed to load policy
[  279.840327][T17011] loop6: detected capacity change from 0 to 512
[  279.860505][T17011] EXT4-fs: Ignoring removed bh option
[  279.901233][T17011] EXT4-fs: Ignoring removed oldalloc option
[  279.912853][T17019] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5111'.
[  279.926698][T17011] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  279.960080][T17011] EXT4-fs (loop6): 1 truncate cleaned up
[  279.973145][T17011] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  280.066509][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.027355][T17082] bond2: (slave dummy0): Releasing active interface
[  281.053811][T17082] bridge_slave_0: left allmulticast mode
[  281.059528][T17082] bridge_slave_0: left promiscuous mode
[  281.065314][T17082] bridge0: port 1(bridge_slave_0) entered disabled state
[  281.106171][T17082] bond0: (slave bridge_slave_1): Releasing active interface
[  281.133215][T17082] team0: Port device team_slave_0 removed
[  281.144124][T17082] team0: Port device team_slave_1 removed
[  281.160814][T17082] batman_adv: batadv0: Removing interface: batadv_slave_0
[  281.178798][T17082] batman_adv: batadv0: Removing interface: batadv_slave_1
[  281.196625][T17082] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  281.215084][T17083] team0: Mode changed to "loadbalance"
[  281.979003][T17124] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5142'.
[  282.064437][T17127] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5143'.
[  282.184289][T17116] bond9: entered promiscuous mode
[  282.189760][T17116] 8021q: adding VLAN 0 to HW filter on device bond9
[  282.210210][T17125] bridge9: entered promiscuous mode
[  282.240164][T17137] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5145'.
[  282.256997][T17132] batadv_slave_1: entered promiscuous mode
[  282.324622][T17131] batadv_slave_1: left promiscuous mode
[  282.629917][T17165] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5153'.
[  282.680054][T17171] xt_connbytes: Forcing CT accounting to be enabled
[  282.713691][T17173] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5159'.
[  282.713713][T17173] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5159'.
[  282.713880][T17173] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5159'.
[  282.713902][T17173] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5159'.
[  282.714900][T17171] set match dimension is over the limit!
[  282.872707][T17185] netlink: 32 bytes leftover after parsing attributes in process `syz.0.5164'.
[  283.170817][T17209] loop6: detected capacity change from 0 to 128
[  283.195097][T17209] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  283.770174][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  283.770190][   T29] audit: type=1326 audit(2000000376.005:2519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17219 comm="syz.2.5177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  283.850686][   T29] audit: type=1326 audit(2000000376.045:2520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17219 comm="syz.2.5177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  283.874284][   T29] audit: type=1326 audit(2000000376.045:2521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17219 comm="syz.2.5177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  283.897847][   T29] audit: type=1326 audit(2000000376.045:2522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17219 comm="syz.2.5177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  283.921515][   T29] audit: type=1326 audit(2000000376.045:2523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17219 comm="syz.2.5177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  283.945095][   T29] audit: type=1326 audit(2000000376.045:2524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17219 comm="syz.2.5177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  283.968847][   T29] audit: type=1326 audit(2000000376.045:2525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17219 comm="syz.2.5177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  283.992450][   T29] audit: type=1326 audit(2000000376.045:2526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17219 comm="syz.2.5177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  284.016077][   T29] audit: type=1326 audit(2000000376.045:2527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17219 comm="syz.2.5177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  284.039803][   T29] audit: type=1326 audit(2000000376.045:2528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17219 comm="syz.2.5177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  285.185244][T17284] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  285.954170][T17320] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  285.964144][T17320] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  285.974201][T17320] netdevsim netdevsim5 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  286.074881][T17320] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  286.084740][T17320] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  286.094674][T17320] netdevsim netdevsim5 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  286.156038][T17320] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  286.165964][T17320] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  286.175892][T17320] netdevsim netdevsim5 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  286.257570][T17320] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  286.267444][T17320] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  286.277372][T17320] netdevsim netdevsim5 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  286.318381][ T6016] tipc: Subscription rejected, illegal request
[  286.353711][ T6561] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 2816 - 0
[  286.361987][ T6561] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 20004 - 0
[  286.370358][ T6561] netdevsim netdevsim5 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  286.402717][ T6561] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 2816 - 0
[  286.410970][ T6561] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 20004 - 0
[  286.419493][ T6561] netdevsim netdevsim5 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  286.462754][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  286.474565][ T6561] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 2816 - 0
[  286.482822][ T6561] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 20004 - 0
[  286.491119][ T6561] netdevsim netdevsim5 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  286.503770][ T6561] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 2816 - 0
[  286.512065][ T6561] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 20004 - 0
[  286.520439][ T6561] netdevsim netdevsim5 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  286.632233][T17345] __nla_validate_parse: 3 callbacks suppressed
[  286.632253][T17345] netlink: 188 bytes leftover after parsing attributes in process `syz.5.5223'.
[  286.905286][T17353] loop6: detected capacity change from 0 to 512
[  286.913197][T17353] EXT4-fs: Ignoring removed orlov option
[  286.918930][T17353] EXT4-fs: Ignoring removed mblk_io_submit option
[  286.952943][T17353] EXT4-fs error (device loop6): ext4_iget_extra_inode:5073: inode #15: comm syz.6.5228: corrupted in-inode xattr: e_value size too large
[  286.977584][T17353] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.5228: couldn't read orphan inode 15 (err -117)
[  287.019128][T17353] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  287.109929][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.166516][T17367] netlink: 176 bytes leftover after parsing attributes in process `syz.4.5234'.
[  287.441053][T17391] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5242'.
[  287.486381][T17387] loop6: detected capacity change from 0 to 2048
[  287.544869][ T3303] GPT:first_usable_lbas don't match.
[  287.550232][ T3303] GPT:34 != 290
[  287.553762][ T3303] GPT: Use GNU Parted to correct GPT errors.
[  287.559904][ T3303]  loop6: p1 p2 p3
[  287.598396][T17399] netlink: 'syz.5.5245': attribute type 39 has an invalid length.
[  287.606792][T17387] GPT:first_usable_lbas don't match.
[  287.612130][T17387] GPT:34 != 290
[  287.615875][T17387] GPT: Use GNU Parted to correct GPT errors.
[  287.622000][T17387]  loop6: p1 p2 p3
[  287.741386][ T3508] udevd[3508]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory
[  287.752245][ T3301] udevd[3301]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  288.298265][T17416] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5251'.
[  288.341881][T17416] team1: entered promiscuous mode
[  288.347111][T17416] team1: entered allmulticast mode
[  289.142610][T17442] loop0: detected capacity change from 0 to 128
[  289.169898][   T29] kauditd_printk_skb: 31 callbacks suppressed
[  289.169913][   T29] audit: type=1400 audit(2000000381.405:2560): avc:  denied  { watch watch_reads } for  pid=17441 comm="syz.0.5260" path="/997/file0" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[  289.293441][T17453] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5263'.
[  289.417003][   T29] audit: type=1400 audit(2000000381.655:2561): avc:  denied  { getopt } for  pid=17457 comm="syz.2.5266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  289.469259][T17461] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5268'.
[  289.520111][   T29] audit: type=1400 audit(2000000381.755:2562): avc:  denied  { shutdown } for  pid=17464 comm="syz.2.5269" lport=5 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  289.615909][T17471] bond0: (slave bond_slave_0): Releasing backup interface
[  289.628482][T17471] bond0: (slave bond_slave_1): Releasing backup interface
[  289.644294][T17471] team0: Port device team_slave_1 removed
[  289.650425][T17471] batman_adv: batadv0: Removing interface: batadv_slave_0
[  289.660694][T17471] batman_adv: batadv0: Removing interface: batadv_slave_1
[  289.670254][T17471] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  289.701507][T17473] ip6gre2: entered allmulticast mode
[  289.713667][T17473] team0: Port device ip6gre2 added
[  290.111064][T17489] xt_CT: No such helper "pptp"
[  290.253450][   T29] audit: type=1400 audit(2000000382.495:2563): avc:  denied  { create } for  pid=17501 comm="syz.6.5280" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  290.284938][   T29] audit: type=1400 audit(2000000382.525:2564): avc:  denied  { read } for  pid=17501 comm="syz.6.5280" path="socket:[63859]" dev="sockfs" ino=63859 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  290.320948][   T29] audit: type=1400 audit(2000000382.525:2565): avc:  denied  { setopt } for  pid=17501 comm="syz.6.5280" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  290.427425][   T29] audit: type=1400 audit(2000000382.665:2566): avc:  denied  { bind } for  pid=17512 comm="syz.2.5283" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  290.631365][   T29] audit: type=1400 audit(2000000382.865:2567): avc:  denied  { map } for  pid=17526 comm="syz.4.5288" path="socket:[63893]" dev="sockfs" ino=63893 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  290.726716][   T29] audit: type=1326 audit(2000000382.965:2568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.2.5293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  290.750747][   T29] audit: type=1326 audit(2000000382.965:2569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17539 comm="syz.2.5293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  291.014477][T17545] macvtap1: entered promiscuous mode
[  291.020670][T17545] team0: entered promiscuous mode
[  291.035453][T17545] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  291.058087][T17545] team0: Device macvtap1 is already an upper device of the team interface
[  291.082477][T17545] team0: left promiscuous mode
[  291.170686][T17549] netlink: 1347 bytes leftover after parsing attributes in process `syz.0.5296'.
[  291.298588][T17559] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5300'.
[  291.526706][T17559] 8021q: adding VLAN 0 to HW filter on device bond4
[  291.941074][T17603] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5310'.
[  292.094426][T17601] team_slave_1: entered promiscuous mode
[  292.102507][T17601] macvtap1: entered promiscuous mode
[  292.109908][T17601] team0: entered promiscuous mode
[  292.164096][T17601] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  292.193086][T17601] team0: Device macvtap1 is already an upper device of the team interface
[  292.229780][T17601] team0: left promiscuous mode
[  292.239783][T17601] team_slave_1: left promiscuous mode
[  292.466642][T17617] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5315'.
[  292.524093][T17622] netlink: 'syz.4.5318': attribute type 10 has an invalid length.
[  292.531964][T17622] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5318'.
[  292.567079][T17622] dummy0: entered allmulticast mode
[  292.590210][T17622] bond0: (slave dummy0): Releasing backup interface
[  292.599452][T17622] bridge0: port 1(dummy0) entered blocking state
[  292.606162][T17622] bridge0: port 1(dummy0) entered disabled state
[  293.039314][T17648] netlink: 1347 bytes leftover after parsing attributes in process `syz.2.5329'.
[  293.268391][T17653] loop0: detected capacity change from 0 to 512
[  293.275649][T17653] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  293.294235][T17653] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=200ec018, mo2=0002]
[  293.302466][T17653] System zones: 1-12
[  293.307476][T17653] EXT4-fs (loop0): 1 truncate cleaned up
[  293.314821][T17653] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.345471][ T3315] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 11: block 54:freeing already freed block (bit 53); block bitmap corrupt.
[  293.362034][ T3315] EXT4-fs error (device loop0): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39
[  293.374609][ T3315] EXT4-fs error (device loop0): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39
[  293.494372][T17657] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5333'.
[  293.692027][T17665] loop6: detected capacity change from 0 to 512
[  293.711903][T17665] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  293.741472][T17665] EXT4-fs (loop6): 1 truncate cleaned up
[  293.760510][T17665] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.792612][T10189] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.936910][T17680] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5343'.
[  293.996359][T17687] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5346'.
[  294.005530][T17687] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5346'.
[  294.218664][T12468] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.241192][T17684] chnl_net:caif_netlink_parms(): no params data found
[  294.322583][T17684] bridge0: port 1(bridge_slave_0) entered blocking state
[  294.329942][T17684] bridge0: port 1(bridge_slave_0) entered disabled state
[  294.350089][T17684] bridge_slave_0: entered allmulticast mode
[  294.363413][T17684] bridge_slave_0: entered promiscuous mode
[  294.381200][T17684] bridge0: port 2(bridge_slave_1) entered blocking state
[  294.388345][T17684] bridge0: port 2(bridge_slave_1) entered disabled state
[  294.422938][T17684] bridge_slave_1: entered allmulticast mode
[  294.430810][T17720] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5354'.
[  294.440849][T17684] bridge_slave_1: entered promiscuous mode
[  294.470793][T17684] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  294.493516][T17684] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  294.542231][T17684] team0: Port device team_slave_0 added
[  294.554330][T17684] team0: Port device team_slave_1 added
[  294.572022][T17684] batman_adv: batadv0: Adding interface: batadv_slave_0
[  294.579076][T17684] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  294.603419][T17718] loop6: detected capacity change from 0 to 512
[  294.605083][T17684] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  294.639170][T17718] ext4: Unknown parameter 'noacl'
[  294.669137][T17684] batman_adv: batadv0: Adding interface: batadv_slave_1
[  294.676260][T17684] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  294.702322][T17684] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  294.707572][T17726] netlink: 'syz.4.5357': attribute type 1 has an invalid length.
[  294.770211][T17726] bond4: (slave veth21): Enslaving as an active interface with a down link
[  294.798137][T17684] hsr_slave_0: entered promiscuous mode
[  294.810221][T17684] hsr_slave_1: entered promiscuous mode
[  294.816414][T17684] debugfs: 'hsr0' already exists in 'hsr'
[  294.822192][T17684] Cannot create hsr debugfs directory
[  294.834767][T17726] bond4: entered promiscuous mode
[  294.839820][T17726] bond4: entered allmulticast mode
[  294.860491][T17726] 8021q: adding VLAN 0 to HW filter on device bond4
[  294.907699][   T29] kauditd_printk_skb: 42 callbacks suppressed
[  294.907716][   T29] audit: type=1400 audit(2000000387.145:2612): avc:  denied  { name_bind } for  pid=17739 comm="syz.4.5362" src=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1
[  294.962564][T17684] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  295.006789][T17684] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  295.052989][T17684] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  295.075397][T17684] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  295.218064][T17684] 8021q: adding VLAN 0 to HW filter on device bond0
[  295.239416][T17684] 8021q: adding VLAN 0 to HW filter on device team0
[  295.252184][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[  295.259346][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[  295.270674][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  295.277824][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  295.301702][T17761] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  295.318630][T17684] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  295.329391][T17684] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  295.366768][   T29] audit: type=1326 audit(2000000387.605:2613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17766 comm="syz.2.5369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  295.396069][   T29] audit: type=1326 audit(2000000387.635:2614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17766 comm="syz.2.5369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  295.420157][   T29] audit: type=1326 audit(2000000387.635:2615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17766 comm="syz.2.5369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  295.443959][   T29] audit: type=1326 audit(2000000387.635:2616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17766 comm="syz.2.5369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  295.467976][   T29] audit: type=1326 audit(2000000387.635:2617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17766 comm="syz.2.5369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa527d5c747 code=0x7ffc0000
[  295.491517][   T29] audit: type=1326 audit(2000000387.635:2618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17766 comm="syz.2.5369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fa527d1b78e code=0x7ffc0000
[  295.515135][   T29] audit: type=1326 audit(2000000387.635:2619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17766 comm="syz.2.5369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fa527d1b78e code=0x7ffc0000
[  295.538730][   T29] audit: type=1326 audit(2000000387.635:2620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17766 comm="syz.2.5369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fa527d1b78e code=0x7ffc0000
[  295.562224][   T29] audit: type=1326 audit(2000000387.635:2621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17766 comm="syz.2.5369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fa527d1b78e code=0x7ffc0000
[  295.590409][T17684] 8021q: adding VLAN 0 to HW filter on device batadv0
[  295.709843][T17684] veth0_vlan: entered promiscuous mode
[  295.718646][T17684] veth1_vlan: entered promiscuous mode
[  295.737375][T17684] veth0_macvtap: entered promiscuous mode
[  295.745585][T17684] veth1_macvtap: entered promiscuous mode
[  295.757333][T17684] batman_adv: batadv0: Interface activated: batadv_slave_0
[  295.769326][T17684] batman_adv: batadv0: Interface activated: batadv_slave_1
[  295.782850][   T37] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  295.806636][   T37] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  295.815515][   T37] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  295.824578][   T37] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  295.948501][T17800] loop7: detected capacity change from 0 to 512
[  295.959064][T17800] ext4: Unknown parameter 'barrier2'
[  296.301665][ T9850] IPVS: starting estimator thread 0...
[  296.345483][T17820] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5384'.
[  296.392902][T17818] IPVS: using max 2208 ests per chain, 110400 per kthread
[  296.543969][T17841] netlink: 'syz.7.5393': attribute type 1 has an invalid length.
[  296.561887][T17841] vlan2: entered promiscuous mode
[  296.567115][T17841] veth0: entered promiscuous mode
[  296.578062][T17844] netlink: 'syz.4.5395': attribute type 1 has an invalid length.
[  296.597782][T17844] bond5: entered promiscuous mode
[  296.602981][T17844] bond5: entered allmulticast mode
[  296.608471][T17844] 8021q: adding VLAN 0 to HW filter on device bond5
[  296.625136][T17844] bridge6: entered promiscuous mode
[  296.630574][T17844] bridge6: entered allmulticast mode
[  296.636869][T17844] bond5: (slave bridge6): Enslaving as a backup interface with an up link
[  296.703020][ T3331] bond5: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  296.850813][   T37] bond5: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  297.361869][T17886] x_tables: unsorted entry at hook 3
[  297.499955][T17896] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=17896 comm=syz.7.5410
[  297.663651][T17906] __nla_validate_parse: 1 callbacks suppressed
[  297.663698][T17906] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5416'.
[  298.434846][T17950] batadv_slave_0: entered promiscuous mode
[  298.494145][T17949] batadv_slave_0: left promiscuous mode
[  298.817466][T17971] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  300.059731][T18033] syz.7.5466 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  300.070696][T18033] CPU: 0 UID: 0 PID: 18033 Comm: syz.7.5466 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  300.070730][T18033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  300.070747][T18033] Call Trace:
[  300.070756][T18033]  <TASK>
[  300.070766][T18033]  __dump_stack+0x1d/0x30
[  300.070792][T18033]  dump_stack_lvl+0x95/0xd0
[  300.070990][T18033]  dump_stack+0x15/0x1b
[  300.071018][T18033]  dump_header+0x80/0x240
[  300.071042][T18033]  oom_kill_process+0x295/0x350
[  300.071068][T18033]  out_of_memory+0x97d/0xb80
[  300.071108][T18033]  try_charge_memcg+0x62e/0xa10
[  300.071140][T18033]  mem_cgroup_swapin_charge_folio+0x103/0x1f0
[  300.071242][T18033]  __read_swap_cache_async+0x17b/0x2d0
[  300.071280][T18033]  swap_cluster_readahead+0x262/0x3c0
[  300.071321][T18033]  swapin_readahead+0xde/0x840
[  300.071396][T18033]  ? perf_iterate_sb+0x629/0x650
[  300.071458][T18033]  ? __pfx_perf_event_switch_output+0x10/0x10
[  300.071509][T18033]  ? __perf_event_task_sched_in+0xa65/0xad0
[  300.071543][T18033]  ? perf_iterate_sb+0x629/0x650
[  300.071628][T18033]  ? __rcu_read_unlock+0x4e/0x70
[  300.071670][T18033]  ? swap_cache_get_folio+0x26f/0x280
[  300.071712][T18033]  do_swap_page+0x59b/0x2a50
[  300.071746][T18033]  ? finish_task_switch+0x79/0x280
[  300.071819][T18033]  ? __schedule+0x82d/0xc90
[  300.071839][T18033]  ? __rcu_read_lock+0x36/0x50
[  300.071902][T18033]  ? __pfx_default_wake_function+0x10/0x10
[  300.071991][T18033]  handle_mm_fault+0xb40/0x3030
[  300.072161][T18033]  ? vma_start_read+0x1c7/0x2c0
[  300.072196][T18033]  do_user_addr_fault+0x62f/0x1050
[  300.072244][T18033]  exc_page_fault+0x62/0xa0
[  300.072270][T18033]  asm_exc_page_fault+0x26/0x30
[  300.072292][T18033] RIP: 0033:0x7f5c12e1894c
[  300.072310][T18033] Code: ca 30 13 00 eb 24 66 66 2e 0f 1f 84 00 00 00 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 81 c3 f0 00 00 00 48 39 dd 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 f0 00 00
[  300.072331][T18033] RSP: 002b:00007ffd83d46a80 EFLAGS: 00010206
[  300.072349][T18033] RAX: 0000000000000000 RBX: 00007f5c131c5fa0 RCX: 00005555625f2808
[  300.072414][T18033] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  300.072453][T18033] RBP: 00007f5c131c7da0 R08: 0000000000000000 R09: 0000000000000000
[  300.072467][T18033] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000494cc
[  300.072480][T18033] R13: 00007f5c131c5fac R14: 00000000000491c7 R15: 00007ffd83d46b80
[  300.072502][T18033]  </TASK>
[  300.072511][T18033] memory: usage 307196kB, limit 307200kB, failcnt 106
[  300.224134][T18067] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5475'.
[  300.225310][T18033] memory+swap: usage 307356kB, limit 9007199254740988kB, failcnt 0
[  300.331945][T18033] kmem: usage 241432kB, limit 9007199254740988kB, failcnt 0
[  300.339399][T18033] Memory cgroup stats for /syz7:
[  300.339876][T18033] cache 67317760
[  300.348497][T18033] rss 0
[  300.351285][T18033] shmem 0
[  300.354260][T18033] mapped_file 0
[  300.357729][T18033] dirty 0
[  300.360715][T18033] writeback 4096
[  300.364318][T18033] workingset_refault_anon 14
[  300.368976][T18033] workingset_refault_file 0
[  300.373764][T18033] swap 159744
[  300.377082][T18033] swapcached 28672
[  300.380859][T18033] pgpgin 25346
[  300.384322][T18033] pgpgout 8904
[  300.387883][T18033] pgfault 15348
[  300.391402][T18033] pgmajfault 1
[  300.394896][T18033] inactive_anon 28672
[  300.398901][T18033] active_anon 0
[  300.402435][T18033] inactive_file 0
[  300.406149][T18033] active_file 0
[  300.409634][T18033] unevictable 67317760
[  300.413762][T18033] hierarchical_memory_limit 314572800
[  300.419183][T18033] hierarchical_memsw_limit 9223372036854771712
[  300.425528][T18033] total_cache 67317760
[  300.429620][T18033] total_rss 0
[  300.432950][T18033] total_shmem 0
[  300.436473][T18033] total_mapped_file 0
[  300.440475][T18033] total_dirty 0
[  300.444006][T18033] total_writeback 4096
[  300.448145][T18033] total_workingset_refault_anon 14
[  300.453516][T18033] total_workingset_refault_file 0
[  300.458869][T18033] total_swap 159744
[  300.462743][T18033] total_swapcached 28672
[  300.467008][T18033] total_pgpgin 25346
[  300.470919][T18033] total_pgpgout 8904
[  300.474863][T18033] total_pgfault 15348
[  300.478884][T18033] total_pgmajfault 1
[  300.482884][T18033] total_inactive_anon 28672
[  300.487416][T18033] total_active_anon 0
[  300.491419][T18033] total_inactive_file 0
[  300.495619][T18033] total_active_file 0
[  300.499621][T18033] total_unevictable 67317760
[  300.504261][T18033] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz7,task_memcg=/syz7,task=syz.7.5466,pid=18033,uid=0
[  300.519057][T18033] Memory cgroup out of memory: Killed process 18033 (syz.7.5466) total-vm:94000kB, anon-rss:1204kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:0
[  300.679095][   T29] kauditd_printk_skb: 39 callbacks suppressed
[  300.679115][   T29] audit: type=1400 audit(2000000392.915:2661): avc:  denied  { lock } for  pid=18084 comm="syz.4.5483" path="socket:[66641]" dev="sockfs" ino=66641 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  301.229168][   T29] audit: type=1326 audit(2000000393.465:2662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18119 comm="syz.6.5495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  301.252958][   T29] audit: type=1326 audit(2000000393.465:2663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18119 comm="syz.6.5495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  301.255853][T18120] loop6: detected capacity change from 0 to 512
[  301.285802][T18120] EXT4-fs: Ignoring removed oldalloc option
[  301.296323][   T29] audit: type=1326 audit(2000000393.465:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18119 comm="syz.6.5495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  301.319944][   T29] audit: type=1326 audit(2000000393.465:2665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18119 comm="syz.6.5495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  301.343555][   T29] audit: type=1326 audit(2000000393.465:2666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18119 comm="syz.6.5495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  301.367069][   T29] audit: type=1326 audit(2000000393.465:2667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18119 comm="syz.6.5495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  301.390627][   T29] audit: type=1326 audit(2000000393.465:2668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18119 comm="syz.6.5495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  301.403813][T18120] EXT4-fs error (device loop6): ext4_xattr_inode_iget:437: comm syz.6.5495: Parent and EA inode have the same ino 15
[  301.414347][   T29] audit: type=1326 audit(2000000393.465:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18119 comm="syz.6.5495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  301.414405][   T29] audit: type=1326 audit(2000000393.465:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18119 comm="syz.6.5495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd7543faeb9 code=0x7ffc0000
[  301.489925][T18120] EXT4-fs error (device loop6): ext4_xattr_inode_iget:437: comm syz.6.5495: Parent and EA inode have the same ino 15
[  301.507945][T18120] EXT4-fs (loop6): 1 orphan inode deleted
[  301.515938][T18120] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  301.586523][T12468] EXT4-fs error (device loop6): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz-executor: bad entry in directory: directory entry overrun - offset=76, inode=0, rec_len=1024, size=1024 fake=0
[  301.620268][T12468] EXT4-fs error (device loop6): ext4_lookup:1789: inode #2: comm syz-executor: deleted inode referenced: 15
[  301.645437][T12468] EXT4-fs error (device loop6): ext4_lookup:1789: inode #2: comm syz-executor: deleted inode referenced: 15
[  302.283409][T18163] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5515'.
[  302.323225][T17485] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  302.324609][T18163] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5515'.
[  302.590849][   T12] bond3 (unregistering): (slave ip6gretap1): Removing an active aggregator
[  302.605448][   T12] bond3 (unregistering): (slave ip6gretap1): Releasing backup interface
[  302.621300][   T12] team0: Port device ip6gre2 removed
[  302.754802][   T12] bond0 (unregistering): Released all slaves
[  302.765415][   T12] bond1 (unregistering): (slave veth3): Releasing active interface
[  302.773530][   T12] batadv1: entered promiscuous mode
[  302.787702][   T12] bond1 (unregistering): (slave batadv1): Releasing active interface
[  302.797162][   T12] bond1 (unregistering): Released all slaves
[  302.810372][   T12] bond2 (unregistering): Released all slaves
[  302.822781][   T12] bond3 (unregistering): Released all slaves
[  302.840222][   T12] bond4 (unregistering): Released all slaves
[  303.092787][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  303.128888][T18173] chnl_net:caif_netlink_parms(): no params data found
[  303.306604][T18173] bridge0: port 1(bridge_slave_0) entered blocking state
[  303.313878][T18173] bridge0: port 1(bridge_slave_0) entered disabled state
[  303.355772][T18173] bridge_slave_0: entered allmulticast mode
[  303.381591][T18173] bridge_slave_0: entered promiscuous mode
[  303.392250][T18173] bridge0: port 2(bridge_slave_1) entered blocking state
[  303.399439][T18173] bridge0: port 2(bridge_slave_1) entered disabled state
[  303.417061][T18173] bridge_slave_1: entered allmulticast mode
[  303.430153][T18173] bridge_slave_1: entered promiscuous mode
[  303.474546][T18242] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5533'.
[  303.485207][T18173] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  303.503909][T18173] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  303.542782][T18233] netlink: 72 bytes leftover after parsing attributes in process `syz.4.5532'.
[  303.595328][T18173] team0: Port device team_slave_0 added
[  303.609554][T18173] team0: Port device team_slave_1 added
[  303.657381][T18262] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5540'.
[  303.678452][T18173] batman_adv: batadv0: Adding interface: batadv_slave_0
[  303.685489][T18173] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  303.711760][T18173] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  303.743180][T18173] batman_adv: batadv0: Adding interface: batadv_slave_1
[  303.750241][T18173] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  303.776538][T18173] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  303.792398][T18266] syz_tun: entered allmulticast mode
[  303.822993][T18255] syz_tun: left allmulticast mode
[  303.835354][T18173] hsr_slave_0: entered promiscuous mode
[  303.841840][T18173] hsr_slave_1: entered promiscuous mode
[  303.866235][T18173] debugfs: 'hsr0' already exists in 'hsr'
[  303.872123][T18173] Cannot create hsr debugfs directory
[  303.877754][T18262] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5540'.
[  303.947935][T18284] 9p: Bad value for 'rfdno'
[  304.095019][T18173] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  304.108532][T18173] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  304.151421][T18173] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  304.174780][T18173] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  304.325442][T18173] 8021q: adding VLAN 0 to HW filter on device bond0
[  304.367431][T18173] 8021q: adding VLAN 0 to HW filter on device team0
[  304.424851][ T6541] bridge0: port 1(bridge_slave_0) entered blocking state
[  304.432003][ T6541] bridge0: port 1(bridge_slave_0) entered forwarding state
[  304.459513][ T6541] bridge0: port 2(bridge_slave_1) entered blocking state
[  304.466764][ T6541] bridge0: port 2(bridge_slave_1) entered forwarding state
[  304.517026][   T12] hsr_slave_0: left promiscuous mode
[  304.538511][   T12] hsr_slave_1: left promiscuous mode
[  304.703890][T18351] bridge0: port 1(bridge_slave_0) entered disabled state
[  304.797200][T18351] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  304.834536][T18351] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  305.010231][T18362] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5563'.
[  305.031022][T15701] netdevsim netdevsim5 eth0: unset [0, 0] type 1 family 0 port 2816 - 0
[  305.039586][T15701] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 20004 - 0
[  305.048208][T15701] netdevsim netdevsim5 eth0: unset [1, 1] type 2 family 0 port 6081 - 0
[  305.063015][T15701] netdevsim netdevsim5 eth1: unset [0, 0] type 1 family 0 port 2816 - 0
[  305.071476][T15701] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 20004 - 0
[  305.080032][T15701] netdevsim netdevsim5 eth1: unset [1, 1] type 2 family 0 port 6081 - 0
[  305.210603][T15701] netdevsim netdevsim5 eth2: unset [0, 0] type 1 family 0 port 2816 - 0
[  305.219372][T15701] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 20004 - 0
[  305.228011][T15701] netdevsim netdevsim5 eth2: unset [1, 1] type 2 family 0 port 6081 - 0
[  305.318165][T15701] netdevsim netdevsim5 eth3: unset [0, 0] type 1 family 0 port 2816 - 0
[  305.326653][T15701] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 20004 - 0
[  305.335346][T15701] netdevsim netdevsim5 eth3: unset [1, 1] type 2 family 0 port 6081 - 0
[  305.364834][T18173] 8021q: adding VLAN 0 to HW filter on device batadv0
[  305.407279][   T12] IPVS: stop unused estimator thread 0...
[  305.625231][T18399] netlink: 108 bytes leftover after parsing attributes in process `syz.4.5572'.
[  306.105434][T18173] veth0_vlan: entered promiscuous mode
[  306.113628][T18173] veth1_vlan: entered promiscuous mode
[  306.146240][T18428] netlink: 'syz.2.5581': attribute type 1 has an invalid length.
[  306.170397][T18428] bond10: entered promiscuous mode
[  306.175811][T18428] 8021q: adding VLAN 0 to HW filter on device bond10
[  306.200117][T18428] 8021q: adding VLAN 0 to HW filter on device bond10
[  306.207598][T18428] bond10: (slave wireguard0): The slave device specified does not support setting the MAC address
[  306.218289][T18428] bond10: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[  306.231270][T18428] bond10: (slave wireguard0): making interface the new active one
[  306.239209][T18428] wireguard0: entered promiscuous mode
[  306.246956][T18428] bond10: (slave wireguard0): Enslaving as an active interface with an up link
[  306.263787][T18173] veth0_macvtap: entered promiscuous mode
[  306.271998][T18173] veth1_macvtap: entered promiscuous mode
[  306.308610][T18173] batman_adv: batadv0: Interface activated: batadv_slave_0
[  306.324658][T18173] batman_adv: batadv0: Interface activated: batadv_slave_1
[  306.358797][T15701] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  306.419570][T15701] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  306.446970][T15701] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  306.480748][T15701] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  306.901264][T18470] sch_tbf: burst 1821 is lower than device lo mtu (65550) !
[  306.926748][T18472] ref_ctr increment failed for inode: 0x17a1 offset: 0x5 ref_ctr_offset: 0x1000 of mm: 0xffff88813a31b600
[  306.946587][T18470] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5597'.
[  307.872063][T18517] infiniband !yz!: set active
[  307.876927][T18517] infiniband !yz!: added team_slave_0
[  307.895455][T18517] RDS/IB: !yz!: added
[  307.903206][T18517] smc: adding ib device !yz! with port count 1
[  307.920427][T18517] smc:    ib device !yz! port 1 has no pnetid
[  308.044058][   T29] kauditd_printk_skb: 54 callbacks suppressed
[  308.044076][   T29] audit: type=1326 audit(2000000400.285:2725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.2.5616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  308.073913][   T29] audit: type=1326 audit(2000000400.285:2726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.2.5616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  308.113229][   T29] audit: type=1326 audit(2000000400.335:2727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.2.5616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  308.136814][   T29] audit: type=1326 audit(2000000400.335:2728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.2.5616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  308.160468][   T29] audit: type=1326 audit(2000000400.335:2729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.2.5616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fa527d5aeb9 code=0x7ffc0000
[  308.184286][   T29] audit: type=1326 audit(2000000400.335:2730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.2.5616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa527d5ac22 code=0x7ffc0000
[  308.207749][   T29] audit: type=1326 audit(2000000400.335:2731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.2.5616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa527d1b78e code=0x7ffc0000
[  308.231372][   T29] audit: type=1326 audit(2000000400.335:2732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.2.5616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fa527d5ace7 code=0x7ffc0000
[  308.255070][   T29] audit: type=1326 audit(2000000400.345:2733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.2.5616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa527d1b78e code=0x7ffc0000
[  308.278669][   T29] audit: type=1326 audit(2000000400.345:2734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18525 comm="syz.2.5616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fa527d1b78e code=0x7ffc0000
[  308.506647][T18532] netlink: 'syz.5.5619': attribute type 39 has an invalid length.
[  308.712624][T18550] netlink: 'syz.8.5626': attribute type 6 has an invalid length.
[  309.151047][T18583] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5639'.
[  309.222547][T18588] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5642'.
[  309.269893][T18595] loop8: detected capacity change from 0 to 1024
[  309.277046][T18595] EXT4-fs: Ignoring removed orlov option
[  309.298925][T18595] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  309.472168][T18173] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.486918][T18173] ==================================================================
[  309.495066][T18173] BUG: KCSAN: data-race in __lru_add_drain_all / folio_add_lru
[  309.502665][T18173] 
[  309.505020][T18173] read-write to 0xffff888237d26468 of 1 bytes by task 18613 on cpu 1:
[  309.513215][T18173]  folio_add_lru+0xa4/0x1e0
[  309.517771][T18173]  folio_add_lru_vma+0x49/0x70
[  309.522574][T18173]  handle_mm_fault+0x2c45/0x3030
[  309.527571][T18173]  __get_user_pages+0x1023/0x1ea0
[  309.532648][T18173]  __gup_longterm_locked+0x2fa/0xe30
[  309.537969][T18173]  gup_fast_fallback+0x1f3/0x13c0
[  309.543019][T18173]  pin_user_pages_fast+0x5f/0x90
[  309.547984][T18173]  io_pin_pages+0xba/0x170
[  309.552443][T18173]  io_region_pin_pages+0x58/0xf0
[  309.557405][T18173]  io_create_region+0x2c4/0x330
[  309.562276][T18173]  io_allocate_scq_urings+0x279/0x3d0
[  309.567702][T18173]  io_uring_create+0x2d6/0x4e0
[  309.572505][T18173]  __se_sys_io_uring_setup+0x1cb/0x1e0
[  309.578036][T18173]  __x64_sys_io_uring_setup+0x31/0x40
[  309.583453][T18173]  x64_sys_call+0x244c/0x3000
[  309.588187][T18173]  do_syscall_64+0xc0/0x2a0
[  309.592735][T18173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.598654][T18173] 
[  309.600996][T18173] read to 0xffff888237d26468 of 1 bytes by task 18173 on cpu 0:
[  309.608644][T18173]  __lru_add_drain_all+0x17e/0x450
[  309.613789][T18173]  lru_add_drain_all+0x10/0x20
[  309.618583][T18173]  invalidate_bdev+0x47/0x70
[  309.623217][T18173]  ext4_put_super+0x624/0x7d0
[  309.628005][T18173]  generic_shutdown_super+0xe6/0x210
[  309.633322][T18173]  kill_block_super+0x2a/0x70
[  309.638023][T18173]  ext4_kill_sb+0x42/0x80
[  309.642477][T18173]  deactivate_locked_super+0x75/0x1c0
[  309.647891][T18173]  deactivate_super+0x97/0xa0
[  309.652599][T18173]  cleanup_mnt+0x2bb/0x330
[  309.657051][T18173]  __cleanup_mnt+0x19/0x20
[  309.661496][T18173]  task_work_run+0x130/0x1a0
[  309.666118][T18173]  exit_to_user_mode_loop+0x1f7/0x6f0
[  309.671528][T18173]  do_syscall_64+0x1d3/0x2a0
[  309.676161][T18173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.682089][T18173] 
[  309.684431][T18173] value changed: 0x15 -> 0x19
[  309.689129][T18173] 
[  309.691478][T18173] Reported by Kernel Concurrency Sanitizer on:
[  309.697650][T18173] CPU: 0 UID: 0 PID: 18173 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  309.707660][T18173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  309.717740][T18173] ==================================================================
[  310.237738][T18600] syz.4.5647 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  310.251698][T18600] CPU: 0 UID: 0 PID: 18600 Comm: syz.4.5647 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  310.251729][T18600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  310.251742][T18600] Call Trace:
[  310.251781][T18600]  <TASK>
[  310.251793][T18600]  __dump_stack+0x1d/0x30
[  310.251970][T18600]  dump_stack_lvl+0x95/0xd0
[  310.251995][T18600]  dump_stack+0x15/0x1b
[  310.252051][T18600]  dump_header+0x80/0x240
[  310.252074][T18600]  oom_kill_process+0x295/0x350
[  310.252109][T18600]  out_of_memory+0x97d/0xb80
[  310.252139][T18600]  try_charge_memcg+0x62e/0xa10
[  310.252168][T18600]  obj_cgroup_charge_pages+0x23/0xc0
[  310.252291][T18600]  __memcg_kmem_charge_page+0x9e/0x170
[  310.252327][T18600]  __alloc_frozen_pages_noprof+0x18a/0x350
[  310.252372][T18600]  alloc_pages_mpol+0xb3/0x260
[  310.252549][T18600]  alloc_pages_noprof+0x8f/0x130
[  310.252592][T18600]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  310.252643][T18600]  __kvmalloc_node_noprof+0x471/0x680
[  310.252684][T18600]  ? ip_set_alloc+0x24/0x30
[  310.252785][T18600]  ? ip_set_alloc+0x24/0x30
[  310.252883][T18600]  ? __kmalloc_cache_noprof+0x3cd/0x4a0
[  310.252922][T18600]  ip_set_alloc+0x24/0x30
[  310.253012][T18600]  hash_netiface_create+0x282/0x740
[  310.253058][T18600]  ? __pfx_hash_netiface_create+0x10/0x10
[  310.253144][T18600]  ip_set_create+0x3cf/0x970
[  310.253261][T18600]  ? __nla_parse+0x40/0x60
[  310.253298][T18600]  nfnetlink_rcv_msg+0x509/0x5d0
[  310.253438][T18600]  netlink_rcv_skb+0x123/0x220
[  310.253481][T18600]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  310.253531][T18600]  nfnetlink_rcv+0x167/0x1720
[  310.253600][T18600]  ? __list_del_entry_valid_or_report+0x65/0x130
[  310.253636][T18600]  ? __rmqueue_pcplist+0x9b6/0xb80
[  310.253732][T18600]  ? _raw_spin_lock_bh+0x56/0xb0
[  310.253861][T18600]  ? should_fail_ex+0x30/0x280
[  310.253902][T18600]  ? selinux_nlmsg_lookup+0x99/0x890
[  310.253927][T18600]  ? __rcu_read_unlock+0x33/0x70
[  310.253958][T18600]  ? __netlink_lookup+0x276/0x2b0
[  310.253991][T18600]  netlink_unicast+0x5c0/0x690
[  310.254071][T18600]  netlink_sendmsg+0x5c8/0x6f0
[  310.254103][T18600]  ? __pfx_netlink_sendmsg+0x10/0x10
[  310.254130][T18600]  ____sys_sendmsg+0x5af/0x600
[  310.254162][T18600]  ___sys_sendmsg+0x195/0x1e0
[  310.254199][T18600]  __x64_sys_sendmsg+0xd4/0x160
[  310.254263][T18600]  x64_sys_call+0x17ba/0x3000
[  310.254299][T18600]  do_syscall_64+0xc0/0x2a0
[  310.254371][T18600]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.254404][T18600] RIP: 0033:0x7f5f8103aeb9
[  310.254431][T18600] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  310.254450][T18600] RSP: 002b:00007f5f7fa97028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  310.254480][T18600] RAX: ffffffffffffffda RBX: 00007f5f812b5fa0 RCX: 00007f5f8103aeb9
[  310.254500][T18600] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006
[  310.254550][T18600] RBP: 00007f5f810a8c1f R08: 0000000000000000 R09: 0000000000000000
[  310.254564][T18600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  310.254576][T18600] R13: 00007f5f812b6038 R14: 00007f5f812b5fa0 R15: 00007ffc36911538
[  310.254602][T18600]  </TASK>
[  310.565001][T18600] memory: usage 307200kB, limit 307200kB, failcnt 938
[  310.571857][T18600] memory+swap: usage 308400kB, limit 9007199254740988kB, failcnt 0
[  310.579794][T18600] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[  310.587182][T18600] Memory cgroup stats for /syz4:
[  310.589549][T18600] cache 0
[  310.598211][T18600] rss 0
[  310.600994][T18600] shmem 0
[  310.604023][T18600] mapped_file 0
[  310.607505][T18600] dirty 0
[  310.610542][T18600] writeback 0
[  310.614010][T18600] workingset_refault_anon 3471
[  310.618788][T18600] workingset_refault_file 3149
[  310.624361][T18600] swap 1228800
[  310.627742][T18600] swapcached 28672
[  310.631485][T18600] pgpgin 394338
[  310.635002][T18600] pgpgout 394331
[  310.638562][T18600] pgfault 348324
[  310.642190][T18600] pgmajfault 569
[  310.645781][T18600] inactive_anon 28672
[  310.649829][T18600] active_anon 0
[  310.653941][T18600] inactive_file 0
[  310.657684][T18600] active_file 0
[  310.661145][T18600] unevictable 0
[  310.664657][T18600] hierarchical_memory_limit 314572800
[  310.670309][T18600] hierarchical_memsw_limit 9223372036854771712
[  310.676564][T18600] total_cache 0
[  310.680036][T18600] total_rss 0
[  310.684053][T18600] total_shmem 0
[  310.687519][T18600] total_mapped_file 0
[  310.691551][T18600] total_dirty 0
[  310.695303][T18600] total_writeback 0
[  310.699130][T18600] total_workingset_refault_anon 3471
[  310.704594][T18600] total_workingset_refault_file 3149
[  310.709908][T18600] total_swap 1228800
[  310.714484][T18600] total_swapcached 28672
[  310.718728][T18600] total_pgpgin 394338
[  310.722737][T18600] total_pgpgout 394331
[  310.726872][T18600] total_pgfault 348324
[  310.730969][T18600] total_pgmajfault 569
[  310.735100][T18600] total_inactive_anon 28672
[  310.739646][T18600] total_active_anon 0
[  310.744396][T18600] total_inactive_file 0
[  310.748586][T18600] total_active_file 0
[  310.752601][T18600] total_unevictable 0
[  310.756700][T18600] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.5647,pid=18599,uid=0
[  310.771552][T18600] Memory cgroup out of memory: Killed process 18599 (syz.4.5647) total-vm:96180kB, anon-rss:1208kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:0