last executing test programs:

3m41.142148021s ago: executing program 32 (id=1417):
r0 = syz_io_uring_setup(0x3e, &(0x7f0000000640)={0x0, 0xaddb, 0x10100, 0x1, 0x92}, &(0x7f0000000380)=<r1=>0x0, &(0x7f00000003c0)=<r2=>0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000400)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet_sctp(r4, &(0x7f0000001b80)={0x0, 0x0, &(0x7f0000001900)=[{&(0x7f0000001640)="6cb16109942c4a9c7eb3886004a9312ebc8a46c2cf685465713b1dbc0888014b8d93831727995bd68515fe4bb559b7cb75876eeffc6e0c6991248022c5e2f452d110eeb70486450fb879d096c498f14b0596036eede41e93d7d4835e44759ada9c9e5af88678db25e7b7c7b2c86dbefb1a7b3d1639cffb42ab7bec0ebbca65766abfe716ada795fae0ec55ea5773c94c220e58a811db9daa65e148ef6b15c9734be0ef2dd9a0141993b613b5bffac2790212db3d993e31", 0xb7}], 0x1, 0x0, 0x0, 0x1}, 0x48016)
syz_io_uring_submit(r1, r2, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000002c0)=""/183, 0xb7}], 0x1}, 0x0, 0x80002101})
io_uring_enter(r0, 0xd81, 0x0, 0x0, 0x0, 0x0)

3m10.906658091s ago: executing program 33 (id=2657):
getpgid(0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fchmodat(0xffffffffffffff9c, 0x0, 0xfffffed3)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xffffffed]}, 0x0, 0x8)

3m9.239366382s ago: executing program 34 (id=2696):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x20802, 0x0)
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])
write$binfmt_aout(r1, &(0x7f0000000200)=ANY=[], 0x20)

3m7.618245039s ago: executing program 35 (id=2712):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8a}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e)

3m6.879275737s ago: executing program 36 (id=2722):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x8e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r1}, 0x3d)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)

3m6.457036081s ago: executing program 37 (id=2724):
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8e7}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x800}, 0x20)

2m48.774104623s ago: executing program 2 (id=3297):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x100}, 0x18)
r2 = perf_event_open(&(0x7f0000000600)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x235fd, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x8}, 0x20085, 0x4, 0x0, 0xf, 0x4000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f00000001c0)='contention_end\x00')

2m48.722324767s ago: executing program 2 (id=3299):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x200000000}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)

2m48.694147619s ago: executing program 2 (id=3302):
r0 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a"], 0x3c}}, 0x0)

2m48.582397597s ago: executing program 2 (id=3309):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x3a95004, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00')

2m48.55015021s ago: executing program 2 (id=3310):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f000000a280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000000000000000000000000000000000000ac14143b00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000c00000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000000000000000000000a000000000000feffffffff7f400002000000000000080000000000000000010000010000000044000500ac1414aa003100000000000000000000000000003200000002000000ac1414aa000000000000000000000000060000000403"], 0xfc}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "1a8429", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)

2m48.319296678s ago: executing program 2 (id=3318):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000003680)='sched_switch\x00', r0}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
clock_nanosleep(0x2, 0x1, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe)

2m48.319192649s ago: executing program 38 (id=3318):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000003680)='sched_switch\x00', r0}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
clock_nanosleep(0x2, 0x1, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe)

2m46.485409673s ago: executing program 9 (id=3373):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
syz_read_part_table(0x60d, &(0x7f0000000a80)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x105042, 0x1db)
writev(r2, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x100000}], 0x1)

2m46.058689276s ago: executing program 9 (id=3381):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7fff}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)

2m45.989902962s ago: executing program 9 (id=3392):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
write$nci(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="610302100206039040560b68f43397c06802"], 0x12)

2m45.11818313s ago: executing program 9 (id=3409):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x3a95004, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00')

2m44.99394224s ago: executing program 9 (id=3413):
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SG_GET_VERSION_NUM(r1, 0x2284, &(0x7f0000000080))

2m44.850392772s ago: executing program 9 (id=3420):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000500)=ANY=[@ANYBLOB="20000000010101020000040000000000f5ffff070c0019"], 0x20}, 0x1, 0x0, 0x0, 0x20000011}, 0x84)

2m44.813773505s ago: executing program 39 (id=3420):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000500)=ANY=[@ANYBLOB="20000000010101020000040000000000f5ffff070c0019"], 0x20}, 0x1, 0x0, 0x0, 0x20000011}, 0x84)

2m24.596661396s ago: executing program 8 (id=4291):
modify_ldt$write2(0x11, &(0x7f0000000480)={0x0, 0x20000800, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
syz_clone(0x22023500, 0x0, 0x20010, 0x0, 0x0, 0x0)

2m24.434720459s ago: executing program 8 (id=4297):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000001000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='mm_migrate_pages\x00', r1, 0x0, 0x9}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

2m24.334833107s ago: executing program 8 (id=4300):
r0 = epoll_create1(0x80000)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/power/wakeup_count', 0x80800, 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0xe000001a})
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000000))

2m24.323240607s ago: executing program 8 (id=4311):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0xc00, 0x0)
chroot(&(0x7f00000001c0)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00')
pivot_root(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000240)='./file0/../file0\x00')

2m24.196141388s ago: executing program 8 (id=4306):
timer_create(0x9, 0x0, &(0x7f0000bbdffc))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
timer_delete(0x0)

2m24.082824036s ago: executing program 8 (id=4308):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x3, 0x80}, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000300)=[r0], 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x6000, @fd_index, 0x80000001, 0x0, 0x0, 0xf})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)

2m24.082592256s ago: executing program 40 (id=4308):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x3, 0x80}, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000300)=[r0], 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x6000, @fd_index, 0x80000001, 0x0, 0x0, 0xf})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)

2m10.992703587s ago: executing program 6 (id=4863):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x21, 0x0, 0x0, 0x100000, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2000000, 0x0, 0x200000000000000}, 0x50)

2m10.626723496s ago: executing program 6 (id=4880):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000340)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0xea5, './file0\x00'}})

2m9.751873675s ago: executing program 6 (id=4885):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

2m9.69027638s ago: executing program 6 (id=4876):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0xc00, 0x0)
chroot(&(0x7f00000001c0)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00')
pivot_root(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000240)='./file0/../file0\x00')

2m9.526416613s ago: executing program 6 (id=4896):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x531, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

2m9.398964382s ago: executing program 6 (id=4892):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000880)={<r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000013c0)="d0", 0x1}], 0x1}, 0x20000801)

2m9.373528705s ago: executing program 41 (id=4892):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000880)={<r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000013c0)="d0", 0x1}], 0x1}, 0x20000801)

56.320096776s ago: executing program 5 (id=7871):
r0 = perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000180)='cpu~=-||!')

56.283007059s ago: executing program 5 (id=7874):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001040)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448cc, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

56.264028301s ago: executing program 5 (id=7865):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffc}, 0x18)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r2, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x3804, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)

56.202238445s ago: executing program 5 (id=7867):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x24)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f0000000240)='./file0/file0\x00', 0x9)

56.186641516s ago: executing program 5 (id=7869):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000000000000001000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vxcan0\x00', <r3=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000180)={@private0, 0x31, r3})

56.01482214s ago: executing program 5 (id=7877):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000000400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

56.01460023s ago: executing program 42 (id=7877):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000000400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

1.00158809s ago: executing program 0 (id=10048):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000580)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000380), &(0x7f0000000280)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffe7}, 0x48)

805.427786ms ago: executing program 0 (id=10059):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002340)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000002140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000146000/0x1000)=nil, 0x1000, 0x0, 0x0)

733.996912ms ago: executing program 0 (id=10065):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000200100000102000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
io_pgetevents(0x0, 0x800, 0x0, 0x0, 0x0, 0x0)

701.791774ms ago: executing program 0 (id=10067):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
r0 = gettid()
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

522.705589ms ago: executing program 0 (id=10073):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x5a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x101, 0x7, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000380)='cpu~=0||!')

475.254352ms ago: executing program 0 (id=10077):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
write$nci(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="056a0455d3b8c5acabc1e6eb2a"], 0xd)

413.178427ms ago: executing program 1 (id=10082):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0)="1ae96d0103010000", 0x8)
close_range(r0, 0xffffffffffffffff, 0x0)

348.172962ms ago: executing program 3 (id=10087):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2000)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})

339.907723ms ago: executing program 1 (id=10088):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
close_range(r0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000800000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
socket$kcm(0x29, 0x5, 0x0)
r1 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
mount$nfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[@ANYRES64=r1, @ANYRESHEX, @ANYBLOB="11fe8dcb928a75ca31f3310adde1c9"])

325.280094ms ago: executing program 7 (id=10089):
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f00000001c0), 0x0, 0x0, 0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.parent_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0xfea7)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x10012, r0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
fremovexattr(r1, &(0x7f0000000180)=@known='security.apparmor\x00')

324.869154ms ago: executing program 3 (id=10090):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x6004, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fstat(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0xffffffffffffffff)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r2, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d440fe0000000000002900000036000000", 0xfe60)

300.542636ms ago: executing program 1 (id=10091):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56551, 0x70bd28, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x10)
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001380)=@newchain={0x24, 0x64, 0x1, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x10, 0x1}, {0xe, 0x9}, {0x5, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x44851}, 0x20040054)

300.222326ms ago: executing program 7 (id=10092):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
sendto$inet6(r2, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

292.890427ms ago: executing program 3 (id=10093):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r0}, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000040)='cgroup.threads\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x1)

231.553092ms ago: executing program 3 (id=10094):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f0000000280), &(0x7f00000002c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)

230.992391ms ago: executing program 7 (id=10096):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x5, 0xc, 0x8, 0x40, 0xc0, 0x1}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r1, 0x0, &(0x7f0000000180)=""/40}, 0x20)

230.689771ms ago: executing program 7 (id=10097):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000b800000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000ac0)={r2, r3}, 0xc)

229.911361ms ago: executing program 1 (id=10099):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x6, 0x8, 0x8, 0x40}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000400)=ANY=[], 0xfe37, 0x0)

220.835142ms ago: executing program 3 (id=10100):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
r1 = syz_io_uring_setup(0x110, &(0x7f0000000540)={0x0, 0xbad6, 0x0, 0x0, 0x6}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0xdb4, 0x0, 0x0, 0x0, 0x0)
ioctl$EVIOCGABS20(r0, 0x40044591, 0x0)

199.390614ms ago: executing program 7 (id=10101):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000a00)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000440), 0x103940)
close(0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000180)={0x80, 0xc, 0x2, 0xffffffff, 0x0, 0x2})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000040)={0x80, 0x18, 0x2, 0xfffffff7, 0x0, 0x9})

198.901774ms ago: executing program 4 (id=10102):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000220000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)

168.954116ms ago: executing program 7 (id=10103):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x18)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="01002cbd7000fcdbdf25040000000800020005"], 0x1c}, 0x1, 0x0, 0x0, 0x4048081}, 0x20008852)

142.053659ms ago: executing program 3 (id=10104):
r0 = creat(&(0x7f0000000340)='./file0\x00', 0x14)
close(r0)
r1 = getpid()
socket$vsock_stream(0x28, 0x1, 0x0)
r2 = syz_pidfd_open(r1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f00000000c0), 0x1004001, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

141.660118ms ago: executing program 1 (id=10105):
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x2, 0xc, 0x1400}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001040)=@base={0xa, 0x4, 0x4, 0xc}, 0x50)

141.264679ms ago: executing program 4 (id=10106):
socket$inet(0x2, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x100b28, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r1, 0x10001, 0x0)

124.96714ms ago: executing program 1 (id=10107):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001400), r2)

22.747758ms ago: executing program 4 (id=10108):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a40)=@newtfilter={0x30, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r2, {}, {}, {0x8, 0x6}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}]}, 0x30}}, 0x40)

22.479708ms ago: executing program 4 (id=10109):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
chmod(0x0, 0xd)

18.482448ms ago: executing program 4 (id=10110):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0x3c, &(0x7f0000000080)=0x3, 0x4)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @dev, 0x7}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x3e, &(0x7f0000000040)=0x3, 0x4)
write$binfmt_misc(r0, &(0x7f0000000040), 0xfe46)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 4 (id=10111):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r1, &(0x7f00000009c0)="3bf58d7d45d32cfe1da7c797b82f16713d1cb80b3fa1bda74e3977b40e7af46b4c60b70d7a79ed5d8c48f52a50185980", 0x30)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7fffeffd)

kernel console output (not intermixed with test programs):

[  213.679735][T19904]  __dump_stack+0x1d/0x30
[  213.679772][T19904]  dump_stack_lvl+0xe8/0x140
[  213.679797][T19904]  dump_stack+0x15/0x1b
[  213.679818][T19904]  warn_alloc+0x12b/0x1a0
[  213.679889][T19904]  __vmalloc_node_range_noprof+0x9c/0xe00
[  213.679928][T19904]  ? __futex_wait+0x1ff/0x260
[  213.679968][T19904]  ? __pfx_futex_wake_mark+0x10/0x10
[  213.679997][T19904]  ? __rcu_read_unlock+0x4f/0x70
[  213.680021][T19904]  ? avc_has_perm_noaudit+0x1b1/0x200
[  213.680054][T19904]  ? should_fail_ex+0x30/0x280
[  213.680107][T19904]  ? xskq_create+0x36/0xe0
[  213.680151][T19904]  vmalloc_user_noprof+0x7d/0xb0
[  213.680247][T19904]  ? xskq_create+0x80/0xe0
[  213.680286][T19904]  xskq_create+0x80/0xe0
[  213.680396][T19904]  xsk_init_queue+0x95/0xf0
[  213.680435][T19904]  xsk_setsockopt+0x477/0x640
[  213.680474][T19904]  ? __pfx_xsk_setsockopt+0x10/0x10
[  213.680532][T19904]  __sys_setsockopt+0x184/0x200
[  213.680558][T19904]  __x64_sys_setsockopt+0x64/0x80
[  213.680581][T19904]  x64_sys_call+0x20ec/0x2ff0
[  213.680634][T19904]  do_syscall_64+0xd2/0x200
[  213.680670][T19904]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  213.680698][T19904]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  213.680777][T19904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.680800][T19904] RIP: 0033:0x7f464cf9ebe9
[  213.680824][T19904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.680843][T19904] RSP: 002b:00007f464b9ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  213.680915][T19904] RAX: ffffffffffffffda RBX: 00007f464d1c5fa0 RCX: 00007f464cf9ebe9
[  213.680927][T19904] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000004
[  213.680940][T19904] RBP: 00007f464d021e19 R08: 0000000000000004 R09: 0000000000000000
[  213.680955][T19904] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[  213.680982][T19904] R13: 00007f464d1c6038 R14: 00007f464d1c5fa0 R15: 00007ffd85186ef8
[  213.681057][T19904]  </TASK>
[  213.681071][T19904] Mem-Info:
[  213.716340][T19903] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6981'.
[  213.717232][T19904] active_anon:14345 inactive_anon:42 isolated_anon:0
[  213.717232][T19904]  active_file:7237 inactive_file:20743 isolated_file:0
[  213.717232][T19904]  unevictable:0 dirty:245 writeback:0
[  213.717232][T19904]  slab_reclaimable:3529 slab_unreclaimable:20577
[  213.717232][T19904]  mapped:28823 shmem:10133 pagetables:1199
[  213.717232][T19904]  sec_pagetables:0 bounce:0
[  213.717232][T19904]  kernel_misc_reclaimable:0
[  213.717232][T19904]  free:1824877 free_pcp:45820 free_cma:0
[  213.721910][T19903] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6981'.
[  213.726037][T19904] Node 0 active_anon:57380kB inactive_anon:168kB active_file:28948kB inactive_file:82972kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:115292kB dirty:980kB writeback:0kB shmem:40532kB kernel_stack:4912kB pagetables:4796kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  214.001596][T19904] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  214.030337][T19904] lowmem_reserve[]: 0 2883 7862 7862
[  214.035744][T19904] Node 0 DMA32 free:2949196kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2952828kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[  214.066086][T19904] lowmem_reserve[]: 0 0 4978 4978
[  214.071346][T19904] Node 0 Normal free:4327800kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:46396kB inactive_anon:168kB active_file:28948kB inactive_file:82972kB unevictable:0kB writepending:1008kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:197596kB local_pcp:171896kB free_cma:0kB
[  214.104066][T19904] lowmem_reserve[]: 0 0 0 0
[  214.108723][T19904] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  214.121469][T19904] Node 0 DMA32: 3*4kB (M) 2*8kB (M) 3*16kB (M) 2*32kB (M) 3*64kB (M) 4*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949196kB
[  214.137853][T19904] Node 0 Normal: 752*4kB (UE) 505*8kB (UME) 198*16kB (UME) 177*32kB (UME) 219*64kB (UM) 171*128kB (UM) 91*256kB (UM) 44*512kB (UME) 47*1024kB (UME) 24*2048kB (UM) 1009*4096kB (UM) = 4327752kB
[  214.157059][T19904] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  214.166488][T19904] 31391 total pagecache pages
[  214.171424][T19904] 103 pages in swap cache
[  214.175808][T19904] Free swap  = 124584kB
[  214.179977][T19904] Total swap = 124996kB
[  214.184399][T19904] 2097051 pages RAM
[  214.188232][T19904] 0 pages HighMem/MovableOnly
[  214.192942][T19904] 80444 pages reserved
[  214.246096][T19914] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=19914 comm=syz.7.6987
[  214.309034][T19924] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6991'.
[  214.331691][T19924] netem: change failed
[  214.345178][T19932] loop7: detected capacity change from 0 to 512
[  214.372614][T19934] lo speed is unknown, defaulting to 1000
[  214.406158][T19932] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  214.434583][T19946] netlink: 204 bytes leftover after parsing attributes in process `syz.5.7001'.
[  214.448582][T19932] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #2: comm syz.7.6996: corrupted inode contents
[  214.462037][T19944] cgroup: release_agent respecified
[  214.467464][T19932] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #2: comm syz.7.6996: mark_inode_dirty error
[  214.497970][T19932] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #2: comm syz.7.6996: corrupted inode contents
[  214.516269][T19932] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #2: comm syz.7.6996: mark_inode_dirty error
[  214.532109][T19932] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #2: comm syz.7.6996: corrupted inode contents
[  214.544601][T19932] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #2: comm syz.7.6996: mark_inode_dirty error
[  214.559752][T19932] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #2: comm syz.7.6996: corrupted inode contents
[  214.590263][T19955] sd 0:0:1:0: device reset
[  214.647423][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.740797][T19974] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  214.885335][T19995] netlink: 48 bytes leftover after parsing attributes in process `syz.5.7024'.
[  215.094233][   T29] kauditd_printk_skb: 248 callbacks suppressed
[  215.094248][   T29] audit: type=1400 audit(1751.866:8212): avc:  denied  { bind } for  pid=20002 comm="syz.7.7027" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  215.120617][   T29] audit: type=1400 audit(1751.898:8213): avc:  denied  { write } for  pid=20002 comm="syz.7.7027" path="socket:[64651]" dev="sockfs" ino=64651 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  215.169846][   T29] audit: type=1400 audit(1751.919:8214): avc:  denied  { mount } for  pid=20014 comm="syz.5.7033" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  215.191454][   T29] audit: type=1400 audit(1751.940:8215): avc:  denied  { unmount } for  pid=14972 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  215.327970][   T29] audit: type=1400 audit(1752.099:8216): avc:  denied  { create } for  pid=20021 comm="syz.1.7036" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  215.347193][   T29] audit: type=1400 audit(1752.099:8217): avc:  denied  { setopt } for  pid=20021 comm="syz.1.7036" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  215.366338][   T29] audit: type=1400 audit(1752.110:8218): avc:  denied  { execute } for  pid=20023 comm="syz.7.7038" name="file0" dev="tmpfs" ino=4236 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  215.388606][   T29] audit: type=1400 audit(1752.110:8219): avc:  denied  { execute_no_trans } for  pid=20023 comm="syz.7.7038" path="/818/file0" dev="tmpfs" ino=4236 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  215.492897][T20037] SELinux:  unknown common r
[  215.497817][   T29] audit: type=1400 audit(1752.289:8220): avc:  denied  { load_policy } for  pid=20034 comm="syz.7.7042" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  215.499870][T20037] SELinux: failed to load policy
[  215.548461][   T29] audit: type=1326 audit(1752.332:8221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20040 comm="syz.5.7043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976cd8ebe9 code=0x7ffc0000
[  216.147092][T20126] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  216.219457][T20141] futex_wake_op: syz.4.7091 tries to shift op by -1; fix this program
[  216.418585][T20178] batadv_slave_1: entered promiscuous mode
[  216.425107][T20177] batadv_slave_1: left promiscuous mode
[  216.447154][T20181] netlink: 32 bytes leftover after parsing attributes in process `syz.4.7109'.
[  216.504678][T20189] pim6reg: entered allmulticast mode
[  216.510664][T20189] pim6reg: left allmulticast mode
[  216.553500][T20192] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  216.561786][T20192] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  216.728966][T20209] loop7: detected capacity change from 0 to 512
[  216.741866][T20211] rdma_op ffff88810265f580 conn xmit_rdma 0000000000000000
[  216.778732][T20215] 9pnet_fd: Insufficient options for proto=fd
[  217.030426][T20249] netlink: 'syz.1.7140': attribute type 1 has an invalid length.
[  217.310245][T20284] netlink: 292 bytes leftover after parsing attributes in process `syz.4.7156'.
[  217.597629][T20318] netlink: 24 bytes leftover after parsing attributes in process `syz.7.7172'.
[  217.740823][T20342] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7183'.
[  217.903072][T20363] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  217.911443][T20363] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  217.929190][T20365] bridge0: entered promiscuous mode
[  217.934675][T20365] macsec1: entered promiscuous mode
[  217.940576][T20365] bridge0: port 1(macsec1) entered blocking state
[  217.947147][T20365] bridge0: port 1(macsec1) entered disabled state
[  217.954298][T20365] macsec1: entered allmulticast mode
[  217.958146][T20367] SELinux:  Context system_u:object is not valid (left unmapped).
[  217.959699][T20365] bridge0: entered allmulticast mode
[  217.973703][T20365] macsec1: left allmulticast mode
[  217.978874][T20365] bridge0: left allmulticast mode
[  217.985603][T20365] bridge0: left promiscuous mode
[  218.014356][T20372] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7197'.
[  218.023491][T20372] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7197'.
[  218.032548][T20372] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7197'.
[  218.341704][T20399] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in;
[  218.341704][T20399]    program syz.5.7210 not setting count and/or reply_len properly
[  218.595384][T20427] syzkaller1: entered promiscuous mode
[  218.600965][T20427] syzkaller1: entered allmulticast mode
[  218.612433][T20429] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7225'.
[  218.736587][T20447] netlink: 'syz.5.7234': attribute type 10 has an invalid length.
[  218.744657][T20447] netlink: 40 bytes leftover after parsing attributes in process `syz.5.7234'.
[  218.773336][T20447] dummy0: entered promiscuous mode
[  218.783613][T20447] bridge0: port 1(dummy0) entered blocking state
[  218.790215][T20447] bridge0: port 1(dummy0) entered disabled state
[  218.800934][T20447] bridge0: port 1(dummy0) entered blocking state
[  218.807433][T20447] bridge0: port 1(dummy0) entered forwarding state
[  219.051998][T20476] serio: Serial port ptm0
[  219.314314][T20516] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in;
[  219.314314][T20516]    program syz.7.7264 not setting count and/or reply_len properly
[  219.478977][T20527] sd 0:0:1:0: device reset
[  219.647022][T20550] veth1_macvtap: left promiscuous mode
[  219.652608][T20550] macsec0: entered promiscuous mode
[  219.810586][T20571] netlink: 'syz.1.7290': attribute type 10 has an invalid length.
[  219.818490][T20571] netlink: 40 bytes leftover after parsing attributes in process `syz.1.7290'.
[  219.852334][T20571] dummy0: entered promiscuous mode
[  219.860494][T20571] bridge0: port 2(dummy0) entered blocking state
[  219.867002][T20571] bridge0: port 2(dummy0) entered disabled state
[  219.875461][T20571] bridge0: port 2(dummy0) entered blocking state
[  219.881896][T20571] bridge0: port 2(dummy0) entered forwarding state
[  219.940523][   T29] kauditd_printk_skb: 195 callbacks suppressed
[  219.940543][   T29] audit: type=1400 audit(1756.984:8417): avc:  denied  { setopt } for  pid=20585 comm="syz.1.7298" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  220.029000][   T29] audit: type=1400 audit(1757.079:8418): avc:  denied  { write } for  pid=20601 comm="syz.7.7307" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  220.070666][   T29] audit: type=1400 audit(1757.122:8419): avc:  denied  { watch watch_reads } for  pid=20599 comm="syz.3.7306" path="/673" dev="tmpfs" ino=3466 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  220.310353][   T29] audit: type=1326 audit(1757.375:8420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20643 comm="syz.1.7333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  220.333737][   T29] audit: type=1326 audit(1757.375:8421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20643 comm="syz.1.7333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  220.436102][   T29] audit: type=1326 audit(1757.492:8422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20647 comm="syz.7.7327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f464cf9ebe9 code=0x7ffc0000
[  220.459268][   T29] audit: type=1326 audit(1757.492:8423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20647 comm="syz.7.7327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f464cf9ebe9 code=0x7ffc0000
[  220.482371][   T29] audit: type=1326 audit(1757.492:8424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20647 comm="syz.7.7327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f464cf9ebe9 code=0x7ffc0000
[  220.505397][   T29] audit: type=1326 audit(1757.492:8425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20647 comm="syz.7.7327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f464cf9ebe9 code=0x7ffc0000
[  220.528457][   T29] audit: type=1326 audit(1757.492:8426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20647 comm="syz.7.7327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f464cf9ebe9 code=0x7ffc0000
[  220.628397][T20652] SELinux: failed to load policy
[  220.777548][T20674] program syz.7.7337 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  220.802693][T20674] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  221.250142][T20750] __nla_validate_parse: 3 callbacks suppressed
[  221.250160][T20750] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7368'.
[  221.482881][T20766] sd 0:0:1:0: device reset
[  221.528676][T20772] netlink: 288 bytes leftover after parsing attributes in process `syz.7.7378'.
[  221.552282][T20768] SELinux: failed to load policy
[  221.612107][T20787] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  221.620462][T20787] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  221.869972][T20817] SELinux: failed to load policy
[  223.198410][T20908] loop7: detected capacity change from 0 to 512
[  223.219137][T20908] EXT4-fs (loop7): bad s_min_extra_isize: 65528
[  224.319879][T20955] lo speed is unknown, defaulting to 1000
[  224.472656][T20968] netlink: 48 bytes leftover after parsing attributes in process `syz.4.7462'.
[  224.651512][T20982] SELinux:  unknown common r
[  224.659658][T20982] SELinux: failed to load policy
[  224.673261][   T29] kauditd_printk_skb: 147 callbacks suppressed
[  224.673278][   T29] audit: type=1326 audit(1761.994:8574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20983 comm="syz.7.7471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f464cf9ebe9 code=0x7ffc0000
[  224.702480][   T29] audit: type=1326 audit(1761.994:8575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20983 comm="syz.7.7471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f464cf9ebe9 code=0x7ffc0000
[  224.809225][T20995] bridge0: port 1(dummy0) entered disabled state
[  225.065644][ T7233] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.101879][ T7233] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.130757][ T7233] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.145601][T21034] netlink: 12 bytes leftover after parsing attributes in process `syz.7.7483'.
[  225.154589][T21034] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7483'.
[  225.163662][T21034] netlink: 12 bytes leftover after parsing attributes in process `syz.7.7483'.
[  225.216560][T21034] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7483'.
[  225.225749][T21034] netlink: 'syz.7.7483': attribute type 6 has an invalid length.
[  225.270610][ T7233] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.354970][   T29] audit: type=1326 audit(1762.712:8576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm="syz.4.7492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  225.378093][   T29] audit: type=1326 audit(1762.712:8577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm="syz.4.7492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  225.402393][   T29] audit: type=1326 audit(1762.712:8578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm="syz.4.7492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  225.425496][   T29] audit: type=1326 audit(1762.712:8579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm="syz.4.7492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  225.448565][   T29] audit: type=1326 audit(1762.712:8580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm="syz.4.7492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  225.471594][   T29] audit: type=1326 audit(1762.712:8581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm="syz.4.7492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  225.494574][   T29] audit: type=1326 audit(1762.712:8582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm="syz.4.7492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  225.517592][   T29] audit: type=1326 audit(1762.712:8583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21048 comm="syz.4.7492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  225.914180][T21087] pim6reg: entered allmulticast mode
[  225.933938][T21087] pim6reg: left allmulticast mode
[  226.098138][T21101] futex_wake_op: syz.3.7514 tries to shift op by -1; fix this program
[  226.286091][ T7212] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  226.295487][ T7212] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.319332][ T7212] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  226.328342][ T7212] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.346565][ T7212] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  226.355651][ T7212] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.401708][ T7212] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  226.411048][ T7212] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.537468][T21125] futex_wake_op: syz.7.7526 tries to shift op by -1; fix this program
[  227.621603][T21232] pim6reg: entered allmulticast mode
[  227.635787][T21232] pim6reg: left allmulticast mode
[  228.246521][T21258] 9pnet_fd: Insufficient options for proto=fd
[  228.333535][T21271] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7587'.
[  228.536411][T21290] netlink: 'syz.3.7597': attribute type 21 has an invalid length.
[  228.562283][T21290] netlink: 132 bytes leftover after parsing attributes in process `syz.3.7597'.
[  228.571670][T21290] netlink: 'syz.3.7597': attribute type 1 has an invalid length.
[  228.663031][T21307] bridge0: port 1(syz_tun) entered disabled state
[  228.673717][T21307] bridge0: port 2(dummy0) entered disabled state
[  228.878527][   T31] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  228.894858][   T31] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  228.912099][   T31] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  228.927784][   T31] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  229.073778][T21349] netlink: 'syz.1.7625': attribute type 21 has an invalid length.
[  229.091447][T21349] netlink: 132 bytes leftover after parsing attributes in process `syz.1.7625'.
[  229.100664][T21349] netlink: 'syz.1.7625': attribute type 1 has an invalid length.
[  229.452477][   T29] kauditd_printk_skb: 162 callbacks suppressed
[  229.452496][   T29] audit: type=1400 audit(1767.033:8746): avc:  denied  { ioctl } for  pid=21402 comm="syz.5.7651" path="/dev/input/event2" dev="devtmpfs" ino=245 ioctlcmd=0x4590 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  229.598023][T21415] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  229.650229][T21424] 9pnet_fd: Insufficient options for proto=fd
[  229.665662][T21419] bridge0: port 1(syz_tun) entered blocking state
[  229.672286][T21419] bridge0: port 1(syz_tun) entered forwarding state
[  229.703032][T21429] netlink: 'syz.4.7664': attribute type 6 has an invalid length.
[  229.712307][T21419] 8021q: adding VLAN 0 to HW filter on device bond0
[  229.721607][T21419] bridge0: port 2(dummy0) entered blocking state
[  229.728046][T21419] bridge0: port 2(dummy0) entered forwarding state
[  229.747180][T21419] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  229.779010][T21431] loop7: detected capacity change from 0 to 128
[  229.869525][T21448] netlink: 'syz.4.7673': attribute type 3 has an invalid length.
[  229.966671][T21465] netlink: 'syz.1.7690': attribute type 3 has an invalid length.
[  229.975622][T21467] 9pnet_fd: Insufficient options for proto=fd
[  230.117222][ T7240] netdevsim netdevsim7 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  230.125682][ T7240] netdevsim netdevsim7 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.147320][T21477] syz_tun: entered promiscuous mode
[  230.155561][T21477] batadv_slave_0: entered promiscuous mode
[  230.166607][T21477] hsr1: Slave A (syz_tun) is not up; please bring it up to get a fully working HSR network
[  230.176838][T21477] hsr1: Slave B (batadv_slave_0) is not up; please bring it up to get a fully working HSR network
[  230.188377][T21477] hsr1: entered allmulticast mode
[  230.193532][T21477] syz_tun: entered allmulticast mode
[  230.198893][T21477] batadv_slave_0: entered allmulticast mode
[  230.206438][ T7240] netdevsim netdevsim7 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  230.214943][ T7240] netdevsim netdevsim7 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.235208][ T7240] netdevsim netdevsim7 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  230.243863][ T7240] netdevsim netdevsim7 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.256893][ T7240] netdevsim netdevsim7 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  230.264226][T21482] loop7: detected capacity change from 0 to 512
[  230.265330][ T7240] netdevsim netdevsim7 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.290825][T21482] EXT4-fs (loop7): too many log groups per flexible block group
[  230.298941][T21482] EXT4-fs (loop7): failed to initialize mballoc (-12)
[  230.317755][T21482] EXT4-fs (loop7): mount failed
[  230.327847][T21493] netlink: 'syz.5.7692': attribute type 1 has an invalid length.
[  230.346374][T21493] 8021q: adding VLAN 0 to HW filter on device bond4
[  230.387900][   T29] audit: type=1400 audit(1768.026:8747): avc:  denied  { setattr } for  pid=21498 comm="syz.7.7694" name="" dev="pipefs" ino=67479 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  230.427997][T21504] netlink: 96 bytes leftover after parsing attributes in process `syz.5.7699'.
[  230.438102][   T29] audit: type=1400 audit(1768.068:8748): avc:  denied  { mounton } for  pid=21503 comm="syz.1.7698" path="/proc/1883/task" dev="proc" ino=68035 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  230.460864][   T29] audit: type=1400 audit(1768.068:8749): avc:  denied  { mount } for  pid=21503 comm="syz.1.7698" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  230.518770][T21514] 9pnet_fd: Insufficient options for proto=fd
[  230.548198][   T29] audit: type=1326 audit(1768.195:8750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21520 comm="syz.1.7706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  230.571411][   T29] audit: type=1326 audit(1768.195:8751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21520 comm="syz.1.7706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  230.616360][T21523] 8021q: adding VLAN 0 to HW filter on device bond0
[  230.620633][   T29] audit: type=1326 audit(1768.195:8752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21520 comm="syz.1.7706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  230.646181][   T29] audit: type=1326 audit(1768.195:8753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21520 comm="syz.1.7706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  230.669342][   T29] audit: type=1326 audit(1768.195:8754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21520 comm="syz.1.7706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  230.692414][   T29] audit: type=1326 audit(1768.195:8755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21520 comm="syz.1.7706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  230.716269][T21523] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  230.733190][T21526] vlan0: entered allmulticast mode
[  230.738356][T21526] veth0_vlan: entered allmulticast mode
[  230.744309][T21526] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  230.814563][T21528] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  230.997507][T21545] wireguard0: entered promiscuous mode
[  231.003039][T21545] wireguard0: entered allmulticast mode
[  231.276016][T21562] loop7: detected capacity change from 0 to 1024
[  231.295011][T21562] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  231.306076][T21562] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  231.306823][T21560] 8021q: adding VLAN 0 to HW filter on device bond0
[  231.338455][T21562] JBD2: no valid journal superblock found
[  231.344255][T21562] EXT4-fs (loop7): Could not load journal inode
[  231.356301][T21560] 8021q: adding VLAN 0 to HW filter on device team0
[  231.376603][T21562] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  231.394877][T21560] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  231.763064][T21599] 8021q: adding VLAN 0 to HW filter on device bond0
[  231.782035][T21599] bridge0: port 1(dummy0) entered blocking state
[  231.788561][T21599] bridge0: port 1(dummy0) entered forwarding state
[  231.798564][T21599] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  232.834387][T21729] 8021q: adding VLAN 0 to HW filter on device bond0
[  232.842929][T21729] 8021q: adding VLAN 0 to HW filter on device team0
[  232.853402][T21729] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  232.927858][T21739] wireguard0: entered promiscuous mode
[  232.933469][T21739] wireguard0: entered allmulticast mode
[  233.179430][T21761] bridge0: port 1(veth0_to_team) entered blocking state
[  233.183048][T21763] program syz.5.7813 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  233.186535][T21761] bridge0: port 1(veth0_to_team) entered disabled state
[  233.186903][T21761] veth0_to_team: entered allmulticast mode
[  233.209771][T21761] veth0_to_team: entered promiscuous mode
[  233.232470][T21761] veth0_to_team: left allmulticast mode
[  233.238081][T21761] veth0_to_team: left promiscuous mode
[  233.243759][T21761] bridge0: port 1(veth0_to_team) entered disabled state
[  233.295892][T21775] wireguard0: entered promiscuous mode
[  233.301683][T21775] wireguard0: entered allmulticast mode
[  233.610616][T21733] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  233.626329][T21733] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  233.772004][T21828] openvswitch: netlink: Message has 6 unknown bytes.
[  234.329610][   T29] kauditd_printk_skb: 91 callbacks suppressed
[  234.329628][   T29] audit: type=1400 audit(1772.186:8847): avc:  denied  { lock } for  pid=21885 comm="syz.1.7866" path=2F7365637265746D656D202864656C6574656429 dev="secretmem" ino=69042 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  234.461043][T19465] syz_tun (unregistering): left promiscuous mode
[  234.583462][   T29] audit: type=1400 audit(1772.450:8848): avc:  denied  { mounton } for  pid=21905 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  234.676665][T21919] sd 0:0:1:0: device reset
[  234.698021][T21905] lo speed is unknown, defaulting to 1000
[  234.809896][   T29] audit: type=1326 audit(1772.692:8849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21933 comm="syz.3.7888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  234.833192][   T29] audit: type=1326 audit(1772.692:8850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21933 comm="syz.3.7888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  234.859329][   T29] audit: type=1326 audit(1772.692:8851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21933 comm="syz.3.7888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  234.884174][   T29] audit: type=1326 audit(1772.777:8852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21933 comm="syz.3.7888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  234.907239][   T29] audit: type=1326 audit(1772.777:8853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21933 comm="syz.3.7888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  234.942636][T21905] chnl_net:caif_netlink_parms(): no params data found
[  234.988081][   T29] audit: type=1326 audit(1772.830:8854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21933 comm="syz.3.7888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  235.011366][   T29] audit: type=1326 audit(1772.840:8855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21933 comm="syz.3.7888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  235.034487][   T29] audit: type=1326 audit(1772.840:8856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21933 comm="syz.3.7888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  235.079716][T21905] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.086911][T21905] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.105098][T21905] bridge_slave_0: entered allmulticast mode
[  235.119014][T21905] bridge_slave_0: entered promiscuous mode
[  235.139611][T21905] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.146867][T21905] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.156603][T21905] bridge_slave_1: entered allmulticast mode
[  235.163138][T21905] bridge_slave_1: entered promiscuous mode
[  235.191693][T21905] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  235.205061][T21905] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  235.232044][T21905] team0: Port device team_slave_0 added
[  235.243226][T21905] team0: Port device team_slave_1 added
[  235.273115][T21905] batman_adv: batadv0: Adding interface: batadv_slave_0
[  235.280203][T21905] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.306143][T21905] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  235.328486][T21905] batman_adv: batadv0: Adding interface: batadv_slave_1
[  235.335594][T21905] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.361824][T21905] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  235.398871][T21905] hsr_slave_0: entered promiscuous mode
[  235.410441][T21905] hsr_slave_1: entered promiscuous mode
[  235.689821][T21995] loop7: detected capacity change from 0 to 512
[  235.699045][T21995] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  235.726301][T21995] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.739774][T21995] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.789649][T21905] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  235.815958][T21905] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  235.836032][T21905] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  235.858023][T21905] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  235.938368][T21905] 8021q: adding VLAN 0 to HW filter on device bond0
[  235.964606][T21905] 8021q: adding VLAN 0 to HW filter on device team0
[  235.989857][  T314] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.996949][  T314] bridge0: port 1(bridge_slave_0) entered forwarding state
[  236.008692][  T314] bridge0: port 2(bridge_slave_1) entered blocking state
[  236.015814][  T314] bridge0: port 2(bridge_slave_1) entered forwarding state
[  236.034505][T21905] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  236.044957][T21905] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  236.119241][T21905] 8021q: adding VLAN 0 to HW filter on device batadv0
[  236.187384][T21905] veth0_vlan: entered promiscuous mode
[  236.195246][T21905] veth1_vlan: entered promiscuous mode
[  236.211599][T21905] veth0_macvtap: entered promiscuous mode
[  236.219274][T21905] veth1_macvtap: entered promiscuous mode
[  236.230090][T21905] batman_adv: batadv0: Interface activated: batadv_slave_0
[  236.240838][T21905] batman_adv: batadv0: Interface activated: batadv_slave_1
[  236.251370][ T7240] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  236.260185][ T7240] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  236.271617][ T7240] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  236.280682][ T7240] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  236.395654][T20996] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  236.403179][T20996] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  236.410612][T20996] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  236.418564][T20996] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  236.426124][T20996] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  236.433643][T20996] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  236.441186][T20996] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  236.448622][T20996] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  236.456051][T20996] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  236.463481][T20996] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  236.472394][T20996] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  236.546017][T22046] lo speed is unknown, defaulting to 1000
[  236.862569][T22081] sctp: [Deprecated]: syz.1.7935 (pid 22081) Use of struct sctp_assoc_value in delayed_ack socket option.
[  236.862569][T22081] Use struct sctp_sack_info instead
[  237.033259][T22095] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7945'.
[  237.228864][T22109] syzkaller0: entered promiscuous mode
[  237.235124][T22109] syzkaller0: entered allmulticast mode
[  237.442714][T22138] netlink: 48 bytes leftover after parsing attributes in process `syz.3.7965'.
[  237.542756][T22152] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  237.615492][T22159] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7976'.
[  237.647494][T22159] 8021q: adding VLAN 0 to HW filter on device bond1
[  237.699757][T22159] bond1: (slave batadv1): Opening slave failed
[  237.762431][T22175] netlink: 100 bytes leftover after parsing attributes in process `syz.4.7982'.
[  237.956093][T22194] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7992'.
[  238.268648][T22215] bridge0: port 1(syz_tun) entered disabled state
[  238.302047][T22215] bridge0: port 2(dummy0) entered disabled state
[  238.333932][T22224] lo speed is unknown, defaulting to 1000
[  238.514111][T22240] netlink: 100 bytes leftover after parsing attributes in process `syz.7.8011'.
[  238.590044][T22247] sctp: [Deprecated]: syz.7.8013 (pid 22247) Use of struct sctp_assoc_value in delayed_ack socket option.
[  238.590044][T22247] Use struct sctp_sack_info instead
[  239.136320][   T29] kauditd_printk_skb: 126 callbacks suppressed
[  239.136338][   T29] audit: type=1326 audit(1777.262:8983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22278 comm="syz.1.8029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  239.185357][   T29] audit: type=1326 audit(1777.262:8984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22278 comm="syz.1.8029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  239.208518][   T29] audit: type=1326 audit(1777.262:8985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22278 comm="syz.1.8029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  239.231741][   T29] audit: type=1326 audit(1777.294:8986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22278 comm="syz.1.8029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  239.273479][T22266] netlink: 'syz.3.8023': attribute type 10 has an invalid length.
[  239.307520][T22289] macsec1: entered allmulticast mode
[  239.312972][T22289] bond0: entered allmulticast mode
[  239.319965][T22289] bond0: left allmulticast mode
[  239.350743][   T29] audit: type=1326 audit(1777.484:8987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.8035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  239.373824][   T29] audit: type=1326 audit(1777.484:8988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.8035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  239.397096][   T29] audit: type=1326 audit(1777.484:8989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.8035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  239.420231][   T29] audit: type=1326 audit(1777.484:8990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.8035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  239.443413][   T29] audit: type=1326 audit(1777.484:8991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.8035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  239.466643][   T29] audit: type=1326 audit(1777.484:8992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.8035" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  239.568001][T22304] lo speed is unknown, defaulting to 1000
[  240.131310][T22348] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8069'.
[  240.140715][T22348] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  240.255517][T22358] 9pnet: Could not find request transport: 0xffffffffffffffff
[  240.255641][T22355] 9pnet: Could not find request transport: f
[  240.490869][T22352] netlink: 'syz.4.8061': attribute type 10 has an invalid length.
[  240.502465][T22379] macsec1: entered allmulticast mode
[  240.507862][T22379] bond0: entered allmulticast mode
[  240.518315][T22379] bond0: left allmulticast mode
[  240.527335][T22386] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8073'.
[  240.554850][T22386] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8073'.
[  240.680637][T22406] loop7: detected capacity change from 0 to 512
[  240.713361][T22406] EXT4-fs error (device loop7): ext4_orphan_get:1392: inode #15: comm syz.7.8085: casefold flag without casefold feature
[  240.736864][T22406] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.8085: couldn't read orphan inode 15 (err -117)
[  240.772133][T22406] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.785633][T22416] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  240.856219][T22422] bond_slave_0: entered promiscuous mode
[  240.861938][T22422] bond_slave_1: entered promiscuous mode
[  240.905008][T22422] macsec1: entered allmulticast mode
[  240.910434][T22422] bond0: entered allmulticast mode
[  240.915701][T22422] bond_slave_0: entered allmulticast mode
[  240.921445][T22422] bond_slave_1: entered allmulticast mode
[  240.929582][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.939093][T22422] bond0: left allmulticast mode
[  240.944100][T22422] bond_slave_0: left allmulticast mode
[  240.949623][T22422] bond_slave_1: left allmulticast mode
[  240.955135][T22422] bond_slave_0: left promiscuous mode
[  240.960528][T22422] bond_slave_1: left promiscuous mode
[  240.985854][T22431] IPVS: Error connecting to the multicast addr
[  241.070157][T22436] netlink: 'syz.0.8098': attribute type 29 has an invalid length.
[  241.088430][T22436] netlink: 'syz.0.8098': attribute type 29 has an invalid length.
[  241.116306][T22436] netlink: 500 bytes leftover after parsing attributes in process `syz.0.8098'.
[  241.131363][T22427] netlink: 'syz.1.8094': attribute type 10 has an invalid length.
[  241.148589][T22443] loop7: detected capacity change from 0 to 512
[  241.153918][T22427] dummy0: left promiscuous mode
[  241.159918][T22427] bridge0: port 2(dummy0) entered disabled state
[  241.167839][T22443] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  241.178464][T22443] EXT4-fs (loop7): orphan cleanup on readonly fs
[  241.201664][T22443] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.8101: corrupted inode contents
[  241.216307][T22443] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #16: comm syz.7.8101: mark_inode_dirty error
[  241.234661][T22443] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.8101: corrupted inode contents
[  241.249126][T22443] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #16: comm syz.7.8101: mark_inode_dirty error
[  241.275970][T22443] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.8101: corrupted inode contents
[  241.288826][T22443] EXT4-fs error (device loop7) in ext4_orphan_del:305: Corrupt filesystem
[  241.298814][T22443] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.8101: corrupted inode contents
[  241.312103][T22443] EXT4-fs error (device loop7): ext4_truncate:4666: inode #16: comm syz.7.8101: mark_inode_dirty error
[  241.325819][T22443] EXT4-fs error (device loop7) in ext4_process_orphan:347: Corrupt filesystem
[  241.338903][T22443] EXT4-fs (loop7): 1 truncate cleaned up
[  241.345094][   T31] EXT4-fs error (device loop7): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 1
[  241.358706][T22443] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  241.406446][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.470512][T22467] loop7: detected capacity change from 0 to 128
[  241.481105][T22467] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  241.529418][T10477] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  241.574041][T22484] lo speed is unknown, defaulting to 1000
[  242.009161][T22535] lo speed is unknown, defaulting to 1000
[  242.018297][T22535] lo speed is unknown, defaulting to 1000
[  242.026388][T22535] lo speed is unknown, defaulting to 1000
[  242.036694][T22535] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  242.052401][T22535] lo speed is unknown, defaulting to 1000
[  242.068078][T22535] lo speed is unknown, defaulting to 1000
[  242.074910][T22535] lo speed is unknown, defaulting to 1000
[  242.081427][T22535] lo speed is unknown, defaulting to 1000
[  242.088958][T22535] lo speed is unknown, defaulting to 1000
[  242.098071][T22535] lo speed is unknown, defaulting to 1000
[  242.105752][T22535] lo speed is unknown, defaulting to 1000
[  242.291621][T22541] netlink: 'syz.7.8143': attribute type 10 has an invalid length.
[  242.609313][T22603] netlink: 12 bytes leftover after parsing attributes in process `syz.7.8171'.
[  242.642736][T22603] vlan2: entered promiscuous mode
[  242.647831][T22603] gretap0: entered promiscuous mode
[  242.750407][T22625] loop7: detected capacity change from 0 to 128
[  242.765234][T22625] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  242.787172][T22624] siw: device registration error -23
[  242.860548][T10477] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  242.871559][T22597] netlink: 'syz.0.8169': attribute type 10 has an invalid length.
[  242.883626][T22597] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  242.928690][T22645] siw: device registration error -23
[  243.035105][T22657] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8197'.
[  243.096445][T22666] loop7: detected capacity change from 0 to 128
[  243.130019][T22657] vlan2: entered promiscuous mode
[  243.135247][T22657] gretap0: entered promiscuous mode
[  243.554645][T22692] lo speed is unknown, defaulting to 1000
[  243.648703][T22692] lo speed is unknown, defaulting to 1000
[  243.898388][T22690] netlink: 'syz.7.8221': attribute type 10 has an invalid length.
[  243.957459][   T29] kauditd_printk_skb: 150 callbacks suppressed
[  243.957516][   T29] audit: type=1326 audit(1782.348:9142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22701 comm="syz.1.8214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  243.986806][   T29] audit: type=1326 audit(1782.369:9143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22701 comm="syz.1.8214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  244.010434][   T29] audit: type=1326 audit(1782.369:9144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22701 comm="syz.1.8214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  244.033555][   T29] audit: type=1326 audit(1782.369:9145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22701 comm="syz.1.8214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  244.056585][   T29] audit: type=1326 audit(1782.369:9146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22701 comm="syz.1.8214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  244.079626][   T29] audit: type=1326 audit(1782.369:9147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22701 comm="syz.1.8214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  244.102594][   T29] audit: type=1326 audit(1782.369:9148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22701 comm="syz.1.8214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  244.128111][   T29] audit: type=1326 audit(1782.432:9149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22701 comm="syz.1.8214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  244.151215][   T29] audit: type=1326 audit(1782.432:9150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22701 comm="syz.1.8214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  244.174311][   T29] audit: type=1326 audit(1782.464:9151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22701 comm="syz.1.8214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  244.340294][T22731] netlink: 'syz.1.8228': attribute type 1 has an invalid length.
[  244.400372][T22740] 9pnet: p9_errstr2errno: server reported unknown error 
[  244.418769][T22744] netlink: 96 bytes leftover after parsing attributes in process `syz.7.8235'.
[  244.589336][T22761] loop7: detected capacity change from 0 to 2048
[  244.641215][T22761] EXT4-fs: Ignoring removed mblk_io_submit option
[  244.690135][T22761] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  244.728434][T22761] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.8244: bg 0: block 234: padding at end of block bitmap is not set
[  244.804558][T22761] EXT4-fs (loop7): Remounting filesystem read-only
[  244.853036][T22768] netlink: 48 bytes leftover after parsing attributes in process `syz.3.8245'.
[  244.866199][T22770] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8246'.
[  244.876258][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.904950][T22772] netlink: 96 bytes leftover after parsing attributes in process `syz.0.8248'.
[  244.962944][T22784] netlink: 268 bytes leftover after parsing attributes in process `syz.1.8251'.
[  245.048255][T22790] program syz.1.8254 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  245.171410][T22802] netlink: 48 bytes leftover after parsing attributes in process `syz.1.8261'.
[  245.274989][T22818] bridge0: entered allmulticast mode
[  245.372424][T22831] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8274'.
[  245.381484][T22831] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8274'.
[  245.593750][T22856] bridge0: entered allmulticast mode
[  245.699625][T22860] vlan2: entered allmulticast mode
[  245.704969][T22860] bridge_slave_0: entered allmulticast mode
[  245.933365][T22886] loop7: detected capacity change from 0 to 1024
[  245.945544][T22889] 9pnet_fd: Insufficient options for proto=fd
[  245.986217][T22886] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  246.018711][T22893] SELinux:  policydb version 1920 does not match my version range 15-35
[  246.062808][T22886] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4183: comm syz.7.8299: Allocating blocks 449-513 which overlap fs metadata
[  246.134907][T22893] SELinux: failed to load policy
[  246.152423][T22884] EXT4-fs (loop7): pa ffff888106a048c0: logic 48, phys. 177, len 21
[  246.160527][T22884] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  246.191235][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.341423][T22919] 9pnet: Could not find request transport: tc����
[  246.471061][T22932] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  246.478271][T21003] IPVS: starting estimator thread 0...
[  246.575237][T22942] IPVS: using max 2304 ests per chain, 115200 per kthread
[  246.620787][T22958] 9pnet: Could not find request transport: tc����
[  246.900759][T22991] 9pnet_fd: Insufficient options for proto=fd
[  247.037882][T23011] vlan2: entered allmulticast mode
[  247.043144][T23011] bridge_slave_0: entered allmulticast mode
[  247.074448][T23017] netlink: 'syz.0.8358': attribute type 21 has an invalid length.
[  247.374174][T23047] vlan2: entered allmulticast mode
[  247.529986][T23065] batman_adv: batadv0: Adding interface: ipvlan2
[  247.536491][T23065] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  247.567144][T23065] batman_adv: batadv0: Interface activated: ipvlan2
[  247.601703][T23070] 9pnet_fd: Insufficient options for proto=fd
[  247.601850][T23074] __nla_validate_parse: 6 callbacks suppressed
[  247.601867][T23074] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8385'.
[  247.700753][T23083] netlink: 'syz.4.8389': attribute type 21 has an invalid length.
[  247.708888][T23083] netlink: 132 bytes leftover after parsing attributes in process `syz.4.8389'.
[  247.810491][T23091] vlan2: entered allmulticast mode
[  247.815774][T23091] bridge_slave_0: entered allmulticast mode
[  247.860939][T23100] 9pnet_fd: Insufficient options for proto=fd
[  248.019010][T23129] 9pnet_fd: Insufficient options for proto=fd
[  248.342107][T23135] vlan2: entered allmulticast mode
[  248.347293][T23135] bridge_slave_0: entered allmulticast mode
[  248.365027][T23139] batman_adv: batadv0: Adding interface: ipvlan2
[  248.371459][T23139] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  248.397009][T23139] batman_adv: batadv0: Interface activated: ipvlan2
[  248.452566][T21029] hid_parser_main: 18 callbacks suppressed
[  248.452587][T21029] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  248.465886][T21029] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  248.473371][T21029] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  248.480931][T21029] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  248.488346][T21029] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  248.495907][T21029] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  248.503395][T21029] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  248.510860][T21029] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  248.518275][T21029] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  248.525718][T21029] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  248.550308][T21029] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  248.576574][T23155] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8424'.
[  248.786780][T23172] vlan2: entered allmulticast mode
[  249.012985][T23188] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8439'.
[  249.022164][T23188] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8439'.
[  249.032586][T23188] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8439'.
[  249.041617][T23188] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8439'.
[  249.091838][T23196] 9pnet_fd: Insufficient options for proto=fd
[  249.143891][   T29] kauditd_printk_skb: 123 callbacks suppressed
[  249.143910][   T29] audit: type=1326 audit(1787.811:9275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23201 comm="syz.4.8456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  249.173270][   T29] audit: type=1326 audit(1787.811:9276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23201 comm="syz.4.8456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  249.198049][   T29] audit: type=1326 audit(1787.832:9277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23201 comm="syz.4.8456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  249.221108][   T29] audit: type=1326 audit(1787.832:9278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23201 comm="syz.4.8456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  249.244220][   T29] audit: type=1326 audit(1787.832:9279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23201 comm="syz.4.8456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  249.267842][   T29] audit: type=1326 audit(1787.832:9280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23201 comm="syz.4.8456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  249.291290][   T29] audit: type=1326 audit(1787.843:9281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23201 comm="syz.4.8456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  249.314505][   T29] audit: type=1326 audit(1787.843:9282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23201 comm="syz.4.8456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  249.338014][   T29] audit: type=1326 audit(1787.843:9283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23201 comm="syz.4.8456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  249.361541][   T29] audit: type=1326 audit(1787.843:9284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23201 comm="syz.4.8456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  249.408139][T23202] batman_adv: batadv0: Adding interface: ipvlan2
[  249.414743][T23202] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  249.443703][T23202] batman_adv: batadv0: Interface activated: ipvlan2
[  249.527392][T23209] SELinux:  Context system_u:object_r:scanner_device_t:s0 is not valid (left unmapped).
[  249.560029][T23225] netlink: 28 bytes leftover after parsing attributes in process `syz.0.8454'.
[  249.569209][T23225] netlink: 28 bytes leftover after parsing attributes in process `syz.0.8454'.
[  249.589952][T23225] netlink: 28 bytes leftover after parsing attributes in process `syz.0.8454'.
[  249.605357][T23228] netlink: 'syz.7.8457': attribute type 16 has an invalid length.
[  249.613237][T23228] netlink: 'syz.7.8457': attribute type 17 has an invalid length.
[  249.653069][T23236] IPVS: Error connecting to the multicast addr
[  249.798361][T23255] netlink: 'syz.0.8470': attribute type 83 has an invalid length.
[  250.038237][T23286] IPVS: Error connecting to the multicast addr
[  250.420300][T23345] IPVS: Error connecting to the multicast addr
[  250.428701][T23350] pim6reg1: entered promiscuous mode
[  250.434034][T23350] pim6reg1: entered allmulticast mode
[  250.662966][T23388] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  250.674344][T23387] IPVS: stopping master sync thread 23388 ...
[  251.178200][T23444] syzkaller1: entered promiscuous mode
[  251.183926][T23444] syzkaller1: entered allmulticast mode
[  251.403439][T23463] IPv6: Can't replace route, no match found
[  251.646454][T23481] syzkaller1: entered promiscuous mode
[  251.652178][T23481] syzkaller1: entered allmulticast mode
[  251.810951][T23486] loop7: detected capacity change from 0 to 8192
[  251.831221][T23486] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  251.850599][T23486] FAT-fs (loop7): error, fat_free_clusters: deleting FAT entry beyond EOF
[  251.859239][T23486] FAT-fs (loop7): Filesystem has been set read-only
[  251.898067][T23497] netlink: 'syz.7.8581': attribute type 19 has an invalid length.
[  251.907877][T23497] netlink: 'syz.7.8581': attribute type 19 has an invalid length.
[  252.000395][T23515] netlink: 'syz.7.8591': attribute type 5 has an invalid length.
[  252.295682][T23548] I/O error, dev loop15, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  252.336694][T23548] FAT-fs (loop15): unable to read boot sector
[  252.422111][T23556] netlink: 'syz.1.8608': attribute type 5 has an invalid length.
[  252.528229][T23562] __nla_validate_parse: 15 callbacks suppressed
[  252.528249][T23562] netlink: 36 bytes leftover after parsing attributes in process `syz.7.8611'.
[  252.543586][T23562] netlink: 36 bytes leftover after parsing attributes in process `syz.7.8611'.
[  252.560384][T23562] netlink: 36 bytes leftover after parsing attributes in process `syz.7.8611'.
[  252.586594][T23562] netlink: 36 bytes leftover after parsing attributes in process `syz.7.8611'.
[  252.595742][T23562] netlink: 36 bytes leftover after parsing attributes in process `syz.7.8611'.
[  252.605403][T23562] netlink: 36 bytes leftover after parsing attributes in process `syz.7.8611'.
[  252.643653][T23562] netlink: 36 bytes leftover after parsing attributes in process `syz.7.8611'.
[  252.652802][T23562] netlink: 36 bytes leftover after parsing attributes in process `syz.7.8611'.
[  252.664790][T23562] netlink: 36 bytes leftover after parsing attributes in process `syz.7.8611'.
[  253.262612][T23614] netlink: 36 bytes leftover after parsing attributes in process `syz.4.8632'.
[  254.012390][   T29] kauditd_printk_skb: 123 callbacks suppressed
[  254.012408][   T29] audit: type=1326 audit(1792.956:9408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23660 comm="syz.3.8652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  254.045127][   T29] audit: type=1326 audit(1792.988:9409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23660 comm="syz.3.8652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  254.068294][   T29] audit: type=1326 audit(1792.988:9410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23660 comm="syz.3.8652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  254.091327][   T29] audit: type=1326 audit(1792.988:9411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23660 comm="syz.3.8652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  254.114530][   T29] audit: type=1326 audit(1792.988:9412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23656 comm="syz.1.8661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  254.137574][   T29] audit: type=1326 audit(1792.988:9413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23656 comm="syz.1.8661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  254.160595][   T29] audit: type=1326 audit(1792.988:9414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23656 comm="syz.1.8661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  254.183720][   T29] audit: type=1326 audit(1792.988:9415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23656 comm="syz.1.8661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  254.206753][   T29] audit: type=1326 audit(1792.988:9416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23656 comm="syz.1.8661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  254.570756][T23701] loop7: detected capacity change from 0 to 164
[  254.578009][T23701] Unable to read rock-ridge attributes
[  254.585991][   T29] audit: type=1400 audit(1793.557:9417): avc:  denied  { mount } for  pid=23700 comm="syz.7.8668" name="/" dev="loop7" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  254.619193][T23701] Unable to read rock-ridge attributes
[  254.872647][T23739] ipvlan2: entered promiscuous mode
[  254.880193][T23739] bridge0: port 3(ipvlan2) entered blocking state
[  254.886839][T23739] bridge0: port 3(ipvlan2) entered disabled state
[  254.895747][T23739] ipvlan2: entered allmulticast mode
[  254.901163][T23739] bridge0: entered allmulticast mode
[  254.907498][T23739] ipvlan2: left allmulticast mode
[  254.912607][T23739] bridge0: left allmulticast mode
[  255.075661][T23751] 9pnet_fd: Insufficient options for proto=fd
[  255.234314][T21029] Process accounting resumed
[  255.399666][T20996] Process accounting resumed
[  255.649527][T20996] Process accounting resumed
[  255.821094][T23849] SELinux: failed to load policy
[  255.960481][T23872] loop7: detected capacity change from 0 to 1024
[  255.960997][T23872] EXT4-fs: Ignoring removed nobh option
[  255.988227][T23872] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.041563][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.113044][T23893] ipvlan2: entered promiscuous mode
[  256.113254][T23893] bridge0: port 2(ipvlan2) entered blocking state
[  256.113359][T23893] bridge0: port 2(ipvlan2) entered disabled state
[  256.113471][T23893] ipvlan2: entered allmulticast mode
[  256.113488][T23893] bridge0: entered allmulticast mode
[  256.113854][T23893] ipvlan2: left allmulticast mode
[  256.113908][T23893] bridge0: left allmulticast mode
[  256.181442][T23891] loop7: detected capacity change from 0 to 2048
[  256.253523][T23891]  loop7: p1 < > p4
[  256.266221][T23891] loop7: p4 size 8388608 extends beyond EOD, truncated
[  256.392138][T23922] sctp: [Deprecated]: syz.0.8753 (pid 23922) Use of struct sctp_assoc_value in delayed_ack socket option.
[  256.392138][T23922] Use struct sctp_sack_info instead
[  256.432891][T23934] vcan0: entered allmulticast mode
[  256.438615][T23934] vcan0: left allmulticast mode
[  256.460279][T23943] sch_tbf: burst 6 is lower than device ip6gre0 mtu (1448) !
[  256.819333][T23992] vcan0: entered allmulticast mode
[  256.832226][T23992] vcan0: left allmulticast mode
[  257.097488][T24026] loop7: detected capacity change from 0 to 2048
[  257.145652][T24026] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.182273][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.280033][T24058] netlink: 'syz.0.8787': attribute type 3 has an invalid length.
[  257.578175][T24092] ALSA: seq fatal error: cannot create timer (-19)
[  257.613352][T24096] macvtap0: refused to change device tx_queue_len
[  257.769091][T24115] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24115 comm=syz.3.8802
[  257.894764][T24126] bond_slave_1: entered promiscuous mode
[  257.901731][T24126] bond_slave_1: left promiscuous mode
[  257.917780][T24114] SELinux: failed to load policy
[  258.006906][T24137] lo speed is unknown, defaulting to 1000
[  258.049575][T24143] SELinux:  Context system_u:object_r:chfn_exec_t:s0 is not valid (left unmapped).
[  258.059918][T24147] netlink: 'syz.3.8816': attribute type 4 has an invalid length.
[  258.067887][T24147] __nla_validate_parse: 35 callbacks suppressed
[  258.067905][T24147] netlink: 17 bytes leftover after parsing attributes in process `syz.3.8816'.
[  258.070834][T24146] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24146 comm=syz.4.8820
[  258.097816][T24137] lo speed is unknown, defaulting to 1000
[  258.124820][T24151] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  258.167192][T24154] macvtap0: refused to change device tx_queue_len
[  258.352469][T24157] SELinux: failed to load policy
[  258.543324][T24191] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8839'.
[  258.563710][T24186] lo speed is unknown, defaulting to 1000
[  258.588981][T24196] netlink: 'syz.0.8838': attribute type 4 has an invalid length.
[  258.596842][T24196] netlink: 17 bytes leftover after parsing attributes in process `syz.0.8838'.
[  258.633061][T24193] loop7: detected capacity change from 0 to 8192
[  258.635160][T24186] lo speed is unknown, defaulting to 1000
[  258.640223][T24193] FAT-fs (loop7): bogus sectors per cluster 0
[  258.651331][T24193] FAT-fs (loop7): Can't find a valid FAT filesystem
[  258.899645][T24221] netlink: 'syz.4.8851': attribute type 13 has an invalid length.
[  258.932518][T24221] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  258.980871][   T29] kauditd_printk_skb: 150 callbacks suppressed
[  258.980887][   T29] audit: type=1326 audit(1798.184:9568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24228 comm="syz.1.8857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  259.025651][   T29] audit: type=1326 audit(1798.227:9569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24228 comm="syz.1.8857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  259.048902][   T29] audit: type=1326 audit(1798.227:9570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24228 comm="syz.1.8857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  259.072131][   T29] audit: type=1326 audit(1798.227:9571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24228 comm="syz.1.8857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  259.095568][   T29] audit: type=1326 audit(1798.227:9572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24228 comm="syz.1.8857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  259.118592][   T29] audit: type=1326 audit(1798.227:9573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24228 comm="syz.1.8857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  259.141600][   T29] audit: type=1326 audit(1798.227:9574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24228 comm="syz.1.8857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  259.164605][   T29] audit: type=1326 audit(1798.227:9575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24228 comm="syz.1.8857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  259.187664][   T29] audit: type=1326 audit(1798.227:9576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24228 comm="syz.1.8857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  259.210943][   T29] audit: type=1326 audit(1798.227:9577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24228 comm="syz.1.8857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  259.289099][T24241] SELinux:  Context @ is not valid (left unmapped).
[  259.363389][T24255] netlink: 32 bytes leftover after parsing attributes in process `+}[@'.
[  259.966415][T24308] netlink: 'syz.0.8891': attribute type 13 has an invalid length.
[  260.006101][T24308] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  260.021729][T21100] lo speed is unknown, defaulting to 1000
[  260.089280][T24321] netlink: 'syz.3.8909': attribute type 10 has an invalid length.
[  260.100359][T24321] team0: Port device dummy0 added
[  260.109675][T24321] netlink: 'syz.3.8909': attribute type 10 has an invalid length.
[  260.120259][T24321] team0: Port device dummy0 removed
[  260.342628][T24353] vhci_hcd: invalid port number 96
[  260.347985][T24353] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[  260.468062][T24370] netlink: 132 bytes leftover after parsing attributes in process `syz.3.8924'.
[  260.561274][T24388] netlink: 60 bytes leftover after parsing attributes in process `syz.3.8932'.
[  260.573347][T24388] bond0: option downdelay: invalid value (18446744073709551615)
[  260.581134][T24388] bond0: option downdelay: allowed values 0 - 2147483647
[  260.593172][T24387] PF_CAN: dropped non conform CAN XL skbuff: dev type 65534, len 1
[  260.729997][T24411] netlink: 132 bytes leftover after parsing attributes in process `syz.7.8943'.
[  260.888982][T24433] loop7: detected capacity change from 0 to 2048
[  260.889014][T24427] SELinux: failed to load policy
[  260.943161][T24433] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  260.965603][T24441] netlink: 132 bytes leftover after parsing attributes in process `syz.0.8958'.
[  261.002341][T24433] EXT4-fs (loop7): shut down requested (1)
[  261.071544][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.140547][T24469] loop7: detected capacity change from 0 to 1024
[  261.167092][T24469] EXT4-fs: Ignoring removed orlov option
[  261.172947][T24469] ext4: Unknown parameter 'nouser_xattr'
[  261.371488][T24485] loop7: detected capacity change from 0 to 512
[  261.418483][T24485] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[  261.430118][T24485] System zones: 1-12
[  261.434808][T24485] EXT4-fs error (device loop7): ext4_xattr_inode_iget:442: comm syz.7.8976: error while reading EA inode 32 err=-116
[  261.450285][T24485] EXT4-fs (loop7): Remounting filesystem read-only
[  261.456965][T24485] EXT4-fs warning (device loop7): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  261.555503][T24485] EXT4-fs (loop7): 1 orphan inode deleted
[  261.561920][T24485] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.577680][T24485] netlink: 28 bytes leftover after parsing attributes in process `syz.7.8976'.
[  261.586781][T24485] netlink: 108 bytes leftover after parsing attributes in process `syz.7.8976'.
[  261.609605][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.796400][T24503] 0��{X��: renamed from gretap0 (while UP)
[  261.816479][T24503] 0��{X��: entered allmulticast mode
[  261.833607][T24503] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[  261.945552][T24518] 0�: renamed from hsr0
[  261.958150][T24518] 0�: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  261.968477][T24518] 0�: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  262.013691][T24518] 0�: entered allmulticast mode
[  262.018639][T24518] hsr_slave_0: entered allmulticast mode
[  262.024313][T24518] hsr_slave_1: entered allmulticast mode
[  262.032505][T24518] A link change request failed with some changes committed already. Interface 
70� may have been left with an inconsistent configuration, please check.
[  262.295923][T24567] SELinux: failed to load policy
[  262.301505][T24572] ref_ctr_offset mismatch. inode: 0x174e offset: 0x0 ref_ctr_offset(old): 0xc000000 ref_ctr_offset(new): 0x0
[  262.347762][T24577] netlink: 'syz.7.9016': attribute type 3 has an invalid length.
[  262.581798][T24601] atomic_op ffff888104da8d28 conn xmit_atomic 0000000000000000
[  262.690128][ T7257] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  263.320686][T24648] __nla_validate_parse: 7 callbacks suppressed
[  263.320700][T24648] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9047'.
[  263.336008][T24648] netlink: 108 bytes leftover after parsing attributes in process `syz.0.9047'.
[  263.345340][T24648] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9047'.
[  263.354545][T24648] netlink: 108 bytes leftover after parsing attributes in process `syz.0.9047'.
[  263.363694][T24648] netlink: 84 bytes leftover after parsing attributes in process `syz.0.9047'.
[  263.471285][T21029] Process accounting resumed
[  263.498022][T24666] netlink: 'syz.3.9054': attribute type 3 has an invalid length.
[  263.708511][T24678] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9061'.
[  263.717645][T24678] netlink: 108 bytes leftover after parsing attributes in process `syz.3.9061'.
[  263.727097][T24678] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9061'.
[  263.736406][T24678] netlink: 108 bytes leftover after parsing attributes in process `syz.3.9061'.
[  263.745622][T24678] netlink: 84 bytes leftover after parsing attributes in process `syz.3.9061'.
[  263.753972][T24682] loop7: detected capacity change from 0 to 8192
[  263.786326][T24684] netlink: 'syz.3.9063': attribute type 2 has an invalid length.
[  264.399083][   T29] kauditd_printk_skb: 178 callbacks suppressed
[  264.399102][   T29] audit: type=1326 audit(1803.896:9756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24696 comm="syz.4.9070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  264.514441][   T29] audit: type=1326 audit(1803.896:9757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24696 comm="syz.4.9070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  264.537534][   T29] audit: type=1326 audit(1803.938:9758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24696 comm="syz.4.9070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  264.560748][   T29] audit: type=1326 audit(1803.938:9759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24696 comm="syz.4.9070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  264.583851][   T29] audit: type=1326 audit(1803.938:9760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24696 comm="syz.4.9070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  264.606998][   T29] audit: type=1326 audit(1803.969:9761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24701 comm="syz.4.9072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  264.630083][   T29] audit: type=1326 audit(1803.969:9762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24701 comm="syz.4.9072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  264.653190][   T29] audit: type=1326 audit(1803.969:9763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24701 comm="syz.4.9072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  264.676173][   T29] audit: type=1326 audit(1803.969:9764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24701 comm="syz.4.9072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  264.699230][   T29] audit: type=1326 audit(1803.969:9765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24701 comm="syz.4.9072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  264.918418][T24735] loop7: detected capacity change from 0 to 1024
[  264.926252][T24735] EXT4-fs: Ignoring removed nobh option
[  264.931873][T24735] EXT4-fs: Ignoring removed bh option
[  264.946184][T24735] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  264.975423][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.601849][T24787] atomic_op ffff888119a01528 conn xmit_atomic 0000000000000000
[  265.842945][T24804] loop7: detected capacity change from 0 to 8192
[  265.918394][T24824] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24824 comm=syz.4.9126
[  265.931120][T24824] netlink: 'syz.4.9126': attribute type 2 has an invalid length.
[  265.938885][T24824] netlink: 'syz.4.9126': attribute type 1 has an invalid length.
[  265.946615][T24824] netlink: 'syz.4.9126': attribute type 8 has an invalid length.
[  266.195392][T24844] block device autoloading is deprecated and will be removed.
[  266.451120][T24865] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  266.526879][T24872] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=24872 comm=syz.0.9148
[  266.527714][T24870] block device autoloading is deprecated and will be removed.
[  266.743175][T24884] netlink: 'syz.1.9151': attribute type 10 has an invalid length.
[  266.760821][T24884] 8021q: adding VLAN 0 to HW filter on device batadv0
[  267.047209][T24914] wireguard0: entered promiscuous mode
[  267.052823][T24914] wireguard0: entered allmulticast mode
[  267.069355][T24917] IPVS: Error connecting to the multicast addr
[  267.358390][T24956] netlink: 'syz.0.9187': attribute type 10 has an invalid length.
[  267.396356][T24956] 8021q: adding VLAN 0 to HW filter on device batadv0
[  267.431490][T24956] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  267.541336][T24976] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=24976 comm=syz.7.9198
[  267.610334][T24986] program syz.1.9202 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  267.658773][T24989] netlink: 'syz.4.9203': attribute type 10 has an invalid length.
[  267.681078][T24989] 8021q: adding VLAN 0 to HW filter on device batadv0
[  267.762856][T25001] wireguard0: entered promiscuous mode
[  267.768406][T25001] wireguard0: entered allmulticast mode
[  267.976098][T25034] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  267.987749][T25032] IPVS: stopping master sync thread 25034 ...
[  268.092445][T25047] __nla_validate_parse: 9 callbacks suppressed
[  268.092464][T25047] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9230'.
[  268.145637][T25049] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  268.430435][T25067] IPVS: Error connecting to the multicast addr
[  268.469869][T25071] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9241'.
[  268.737538][T25093] netlink: 'syz.7.9250': attribute type 10 has an invalid length.
[  268.777861][T25093] 8021q: adding VLAN 0 to HW filter on device batadv0
[  268.832961][T25093] syz.7.9250 (25093) used greatest stack depth: 9144 bytes left
[  268.987256][T25112] netlink: 'syz.7.9260': attribute type 1 has an invalid length.
[  269.075645][T25122] netlink: 'syz.3.9263': attribute type 10 has an invalid length.
[  269.089709][T25122] 8021q: adding VLAN 0 to HW filter on device batadv0
[  269.155677][   T29] kauditd_printk_skb: 398 callbacks suppressed
[  269.155696][   T29] audit: type=1326 audit(1808.899:10164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25137 comm="syz.0.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  269.188801][   T29] audit: type=1326 audit(1808.910:10165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25137 comm="syz.0.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  269.211912][   T29] audit: type=1400 audit(1808.920:10166): avc:  denied  { watch } for  pid=25140 comm="syz.3.9282" path="/1075/file1" dev="tmpfs" ino=5540 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  269.234226][   T29] audit: type=1400 audit(1808.920:10167): avc:  denied  { execute } for  pid=25140 comm="syz.3.9282" name="file1" dev="tmpfs" ino=5540 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  269.256307][   T29] audit: type=1400 audit(1808.920:10168): avc:  denied  { execute_no_trans } for  pid=25140 comm="syz.3.9282" path="/1075/file1" dev="tmpfs" ino=5540 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  269.279641][   T29] audit: type=1326 audit(1808.941:10169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25137 comm="syz.0.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  269.302825][   T29] audit: type=1326 audit(1808.941:10170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25137 comm="syz.0.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  269.326002][   T29] audit: type=1326 audit(1808.941:10171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25137 comm="syz.0.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  269.349167][   T29] audit: type=1326 audit(1808.941:10172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25137 comm="syz.0.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  269.372395][   T29] audit: type=1326 audit(1808.941:10173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25137 comm="syz.0.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe56216ebe9 code=0x7ffc0000
[  269.397643][T25136] wireguard0: entered promiscuous mode
[  269.403346][T25136] wireguard0: entered allmulticast mode
[  269.636209][  T314] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  269.831083][T25180] hub 8-0:1.0: USB hub found
[  269.836080][T25180] hub 8-0:1.0: 8 ports detected
[  269.962991][T25191] wireguard0: entered promiscuous mode
[  269.968527][T25191] wireguard0: entered allmulticast mode
[  270.092514][T21003] kernel write not supported for file /uhid (pid: 21003 comm: kworker/0:14)
[  270.138402][ T7240] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  270.148576][T25199] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  270.405471][T25216] netlink: 96 bytes leftover after parsing attributes in process `syz.0.9303'.
[  270.431253][T25219] netlink: 'syz.7.9304': attribute type 21 has an invalid length.
[  270.454907][T25219] netlink: 132 bytes leftover after parsing attributes in process `syz.7.9304'.
[  270.508862][T25233] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=25233 comm=syz.1.9311
[  270.521764][T25233] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=25233 comm=syz.1.9311
[  270.526665][T25231] netlink: 'syz.4.9310': attribute type 10 has an invalid length.
[  270.551120][T25231] 8021q: adding VLAN 0 to HW filter on device batadv0
[  270.642560][T25239] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9315'.
[  270.651525][T25239] netlink: 64 bytes leftover after parsing attributes in process `syz.1.9315'.
[  270.749218][T25263] loop7: detected capacity change from 0 to 1024
[  270.769143][T25265] netlink: 'syz.4.9324': attribute type 21 has an invalid length.
[  270.777594][T25263] EXT4-fs: Ignoring removed nomblk_io_submit option
[  270.780411][T25265] netlink: 132 bytes leftover after parsing attributes in process `syz.4.9324'.
[  270.806607][T25263] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  270.866022][T25278] netlink: 'syz.0.9329': attribute type 10 has an invalid length.
[  270.872682][T25280] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  270.881739][ T7257] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  270.913246][T25280] syz.3.9330 (25280) used greatest stack depth: 9136 bytes left
[  270.958876][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.972308][T25288] tipc: Started in network mode
[  270.977445][T25288] tipc: Node identity ac14140f, cluster identity 4711
[  270.984845][T25288] tipc: New replicast peer: 255.255.255.255
[  270.991011][T25288] tipc: Enabled bearer <udp:s>, priority 10
[  271.038108][T25296] netlink: 'syz.3.9340': attribute type 21 has an invalid length.
[  271.058401][T25296] netlink: 132 bytes leftover after parsing attributes in process `syz.3.9340'.
[  271.129366][   T56] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  271.139308][T25308] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  271.354539][T25321] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=25321 comm=syz.7.9351
[  271.367128][T25321] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=25321 comm=syz.7.9351
[  271.791863][T25342] wireguard0: entered promiscuous mode
[  271.797535][T25342] wireguard0: entered allmulticast mode
[  271.814058][T25303] syz.0.9344 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  271.828399][T25303] CPU: 1 UID: 0 PID: 25303 Comm: syz.0.9344 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  271.828444][T25303] Tainted: [W]=WARN
[  271.828453][T25303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  271.828549][T25303] Call Trace:
[  271.828557][T25303]  <TASK>
[  271.828565][T25303]  __dump_stack+0x1d/0x30
[  271.828585][T25303]  dump_stack_lvl+0xe8/0x140
[  271.828604][T25303]  dump_stack+0x15/0x1b
[  271.828619][T25303]  dump_header+0x81/0x220
[  271.828660][T25303]  oom_kill_process+0x342/0x400
[  271.828838][T25303]  out_of_memory+0x979/0xb80
[  271.828879][T25303]  try_charge_memcg+0x5e6/0x9e0
[  271.828992][T25303]  obj_cgroup_charge_pages+0xa6/0x150
[  271.829034][T25303]  __memcg_kmem_charge_page+0x9f/0x170
[  271.829197][T25303]  __alloc_frozen_pages_noprof+0x188/0x360
[  271.829296][T25303]  alloc_pages_mpol+0xb3/0x250
[  271.829340][T25303]  alloc_pages_noprof+0x90/0x130
[  271.829380][T25303]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  271.829462][T25303]  __kvmalloc_node_noprof+0x30f/0x4e0
[  271.829579][T25303]  ? ip_set_alloc+0x1f/0x30
[  271.829613][T25303]  ? ip_set_alloc+0x1f/0x30
[  271.829726][T25303]  ? __kmalloc_cache_noprof+0x189/0x320
[  271.829850][T25303]  ip_set_alloc+0x1f/0x30
[  271.829913][T25303]  hash_netiface_create+0x282/0x740
[  271.829952][T25303]  ? __pfx_hash_netiface_create+0x10/0x10
[  271.830051][T25303]  ip_set_create+0x3c9/0x960
[  271.830088][T25303]  ? __nla_parse+0x40/0x60
[  271.830123][T25303]  nfnetlink_rcv_msg+0x4c3/0x590
[  271.830231][T25303]  netlink_rcv_skb+0x123/0x220
[  271.830256][T25303]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  271.830317][T25303]  nfnetlink_rcv+0x16b/0x1690
[  271.830350][T25303]  ? nlmon_xmit+0x4f/0x60
[  271.830375][T25303]  ? consume_skb+0x49/0x150
[  271.830396][T25303]  ? nlmon_xmit+0x4f/0x60
[  271.830440][T25303]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  271.830471][T25303]  ? __dev_queue_xmit+0x1200/0x2000
[  271.830536][T25303]  ? __dev_queue_xmit+0x182/0x2000
[  271.830563][T25303]  ? ref_tracker_free+0x37d/0x3e0
[  271.830597][T25303]  ? __netlink_deliver_tap+0x4dc/0x500
[  271.830628][T25303]  netlink_unicast+0x5bd/0x690
[  271.830735][T25303]  netlink_sendmsg+0x58b/0x6b0
[  271.830761][T25303]  ? __pfx_netlink_sendmsg+0x10/0x10
[  271.830788][T25303]  __sock_sendmsg+0x145/0x180
[  271.830830][T25303]  ____sys_sendmsg+0x31e/0x4e0
[  271.830862][T25303]  ___sys_sendmsg+0x17b/0x1d0
[  271.830910][T25303]  __x64_sys_sendmsg+0xd4/0x160
[  271.830944][T25303]  x64_sys_call+0x191e/0x2ff0
[  271.830991][T25303]  do_syscall_64+0xd2/0x200
[  271.831024][T25303]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  271.831121][T25303]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  271.831146][T25303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.831253][T25303] RIP: 0033:0x7fe56216ebe9
[  271.831351][T25303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  271.831368][T25303] RSP: 002b:00007fe560bcf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  271.831387][T25303] RAX: ffffffffffffffda RBX: 00007fe562395fa0 RCX: 00007fe56216ebe9
[  271.831401][T25303] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  271.831416][T25303] RBP: 00007fe5621f1e19 R08: 0000000000000000 R09: 0000000000000000
[  271.831432][T25303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  271.831447][T25303] R13: 00007fe562396038 R14: 00007fe562395fa0 R15: 00007fff03650dc8
[  271.831466][T25303]  </TASK>
[  271.831501][T25303] memory: usage 307200kB, limit 307200kB, failcnt 194
[  271.935878][T25350] netlink: 16 bytes leftover after parsing attributes in process `syz.4.9365'.
[  271.938259][T25303] memory+swap: usage 307524kB, limit 9007199254740988kB, failcnt 0
[  271.938277][T25303] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  271.942796][T25350] netlink: 16 bytes leftover after parsing attributes in process `syz.4.9365'.
[  271.948358][T25303] Memory cgroup stats for /syz0:
[  271.952817][T21003] tipc: Node number set to 2886997007
[  271.958250][T25303] cache 0
[  272.223221][T25303] rss 4096
[  272.226279][T25303] shmem 0
[  272.229230][T25303] mapped_file 0
[  272.232714][T25303] dirty 0
[  272.235671][T25303] writeback 0
[  272.238965][T25303] workingset_refault_anon 1452
[  272.243747][T25303] workingset_refault_file 0
[  272.248243][T25303] swap 331776
[  272.251575][T25303] swapcached 8192
[  272.255644][T25303] pgpgin 88064
[  272.259024][T25303] pgpgout 88061
[  272.262610][T25303] pgfault 159630
[  272.266229][T25303] pgmajfault 193
[  272.269854][T25303] inactive_anon 0
[  272.273535][T25303] active_anon 8192
[  272.277254][T25303] inactive_file 0
[  272.280984][T25303] active_file 4096
[  272.284703][T25303] unevictable 0
[  272.288158][T25303] hierarchical_memory_limit 314572800
[  272.293586][T25303] hierarchical_memsw_limit 9223372036854771712
[  272.299811][T25303] total_cache 0
[  272.303270][T25303] total_rss 4096
[  272.306813][T25303] total_shmem 0
[  272.310284][T25303] total_mapped_file 0
[  272.314262][T25303] total_dirty 0
[  272.317722][T25303] total_writeback 0
[  272.321578][T25303] total_workingset_refault_anon 1452
[  272.326908][T25303] total_workingset_refault_file 0
[  272.331945][T25303] total_swap 331776
[  272.335747][T25303] total_swapcached 8192
[  272.339934][T25303] total_pgpgin 88064
[  272.343854][T25303] total_pgpgout 88061
[  272.347871][T25303] total_pgfault 159630
[  272.351952][T25303] total_pgmajfault 193
[  272.356166][T25303] total_inactive_anon 0
[  272.360329][T25303] total_active_anon 8192
[  272.364643][T25303] total_inactive_file 0
[  272.368829][T25303] total_active_file 4096
[  272.373101][T25303] total_unevictable 0
[  272.377120][T25303] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.9344,pid=25301,uid=0
[  272.391991][T25303] Memory cgroup out of memory: Killed process 25301 (syz.0.9344) total-vm:95680kB, anon-rss:944kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  272.508074][T25360] loop7: detected capacity change from 0 to 512
[  272.514859][T25360] EXT4-fs: Ignoring removed mblk_io_submit option
[  272.516090][T25361] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  272.524236][T25360] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  272.544773][T25361] FAT-fs (loop9): unable to read boot sector
[  272.551571][T25360] EXT4-fs (loop7): 1 truncate cleaned up
[  272.558005][T25360] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  272.622454][T25364] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=25364 comm=syz.4.9369
[  272.635214][T25364] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=25364 comm=syz.4.9369
[  272.648087][T25303] syz.0.9344 (25303) used greatest stack depth: 7424 bytes left
[  272.817683][T25380] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  272.974549][T25392] wireguard0: entered promiscuous mode
[  272.980126][T25392] wireguard0: entered allmulticast mode
[  273.318491][T25416] __nla_validate_parse: 7 callbacks suppressed
[  273.318505][T25416] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9393'.
[  273.415475][T25422] netlink: 32 bytes leftover after parsing attributes in process `syz.1.9396'.
[  273.425473][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.446589][T25426] wireguard0: entered promiscuous mode
[  273.452238][T25426] wireguard0: entered allmulticast mode
[  273.704421][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  273.873559][T25443] netlink: 24 bytes leftover after parsing attributes in process `syz.1.9405'.
[  274.110567][T25450] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9407'.
[  274.150916][T25454] wireguard0: entered promiscuous mode
[  274.156518][T25454] wireguard0: entered allmulticast mode
[  274.323436][   T29] kauditd_printk_skb: 143 callbacks suppressed
[  274.323468][   T29] audit: type=1400 audit(1814.355:10317): avc:  denied  { load_policy } for  pid=25460 comm="syz.1.9410" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  274.352170][T25461] SELinux: failed to load policy
[  274.392447][T25471] netlink: 16 bytes leftover after parsing attributes in process `syz.7.9415'.
[  274.401647][T25471] netlink: 16 bytes leftover after parsing attributes in process `syz.7.9415'.
[  274.410703][T25471] netlink: 16 bytes leftover after parsing attributes in process `syz.7.9415'.
[  274.452456][T25471] netlink: 16 bytes leftover after parsing attributes in process `syz.7.9415'.
[  274.461548][T25471] netlink: 16 bytes leftover after parsing attributes in process `syz.7.9415'.
[  274.470631][T25471] netlink: 16 bytes leftover after parsing attributes in process `syz.7.9415'.
[  274.540924][   T29] audit: type=1400 audit(1814.587:10318): avc:  denied  { execute } for  pid=25485 comm="syz.4.9422" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=81366 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  274.691715][    C1] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  275.048899][   T29] audit: type=1400 audit(1815.113:10319): avc:  denied  { read } for  pid=25500 comm="syz.0.9428" name="usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  275.072114][    C1] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  275.079871][   T29] audit: type=1400 audit(1815.113:10320): avc:  denied  { open } for  pid=25500 comm="syz.0.9428" path="/dev/usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  275.130442][   T29] audit: type=1400 audit(1815.176:10321): avc:  denied  { ioctl } for  pid=25500 comm="syz.0.9428" path="/dev/usbmon0" dev="devtmpfs" ino=141 ioctlcmd=0x9206 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  275.183406][   T29] audit: type=1400 audit(1815.250:10322): avc:  denied  { mac_admin } for  pid=25508 comm="syz.0.9432" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  275.308433][   T29] audit: type=1326 audit(1815.387:10323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25535 comm="syz.4.9444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  275.331731][   T29] audit: type=1326 audit(1815.387:10324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25535 comm="syz.4.9444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  275.391767][   T29] audit: type=1326 audit(1815.440:10325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25535 comm="syz.4.9444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  275.415437][   T29] audit: type=1326 audit(1815.440:10326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25535 comm="syz.4.9444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  275.448030][T25542] wireguard0: entered promiscuous mode
[  275.453702][T25542] wireguard0: entered allmulticast mode
[  275.600358][T25565] wireguard0: entered promiscuous mode
[  275.606074][T25565] wireguard0: entered allmulticast mode
[  276.293821][T25611] hub 9-0:1.0: USB hub found
[  276.304444][T25611] hub 9-0:1.0: 8 ports detected
[  276.402866][T25583] Set syz1 is full, maxelem 65536 reached
[  276.905737][T25698] validate_nla: 1 callbacks suppressed
[  276.905755][T25698] netlink: 'syz.4.9522': attribute type 1 has an invalid length.
[  277.116041][T25726] netlink: 'syz.1.9534': attribute type 1 has an invalid length.
[  277.245083][T25737] netlink: 'syz.1.9539': attribute type 10 has an invalid length.
[  277.292792][T25737] dummy0: entered promiscuous mode
[  277.316152][T25737] bridge0: port 2(dummy0) entered blocking state
[  277.322542][T25737] bridge0: port 2(dummy0) entered disabled state
[  277.345520][T25711] Set syz1 is full, maxelem 65536 reached
[  277.390504][T25749] loop7: detected capacity change from 0 to 128
[  277.403291][T25749] syz.7.9544: attempt to access beyond end of device
[  277.403291][T25749] loop7: rw=0, sector=2072, nr_sectors = 1 limit=128
[  277.518946][T25763] hub 9-0:1.0: USB hub found
[  277.527353][T25763] hub 9-0:1.0: 8 ports detected
[  277.559328][T25771] netlink: 'syz.0.9553': attribute type 10 has an invalid length.
[  277.569414][T25771] dummy0: entered promiscuous mode
[  277.582114][T25771] bond0: (slave dummy0): Releasing backup interface
[  277.584308][T25773] loop7: detected capacity change from 0 to 164
[  277.606955][T25771] bridge0: port 3(dummy0) entered blocking state
[  277.613488][T25771] bridge0: port 3(dummy0) entered disabled state
[  277.620978][T25771] dummy0: entered allmulticast mode
[  277.691142][T25781] 9pnet: Could not find request transport: Ae-�p
[  277.785057][T25800] netlink: 'syz.4.9568': attribute type 10 has an invalid length.
[  277.795833][T25800] dummy0: entered promiscuous mode
[  277.801959][T25800] bridge0: port 1(dummy0) entered blocking state
[  277.808562][T25800] bridge0: port 1(dummy0) entered disabled state
[  277.818003][T25800] dummy0: entered allmulticast mode
[  277.824246][T25800] bridge0: port 1(dummy0) entered blocking state
[  277.830701][T25800] bridge0: port 1(dummy0) entered forwarding state
[  277.974093][T25814] SELinux: failed to load policy
[  278.173112][T25851] loop7: detected capacity change from 0 to 512
[  278.182441][T25851] $H�: renamed from bond0
[  278.196815][T25851] $H�: entered promiscuous mode
[  278.568033][T25894] __nla_validate_parse: 12 callbacks suppressed
[  278.568051][T25894] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9612'.
[  278.583336][T25894] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9612'.
[  279.083216][   T29] kauditd_printk_skb: 204 callbacks suppressed
[  279.083309][   T29] audit: type=1400 audit(1819.367:10531): avc:  denied  { create } for  pid=25946 comm="syz.3.9637" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  279.129167][   T29] audit: type=1400 audit(1819.399:10532): avc:  denied  { create } for  pid=25943 comm="syz.1.9645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  279.148430][   T29] audit: type=1400 audit(1819.399:10533): avc:  denied  { write } for  pid=25943 comm="syz.1.9645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  279.190707][   T29] audit: type=1326 audit(1819.472:10534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25941 comm="syz.7.9635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f464cf9ebe9 code=0x7ffc0000
[  279.213908][   T29] audit: type=1326 audit(1819.472:10535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25941 comm="syz.7.9635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f464cf9ebe9 code=0x7ffc0000
[  279.334604][   T29] audit: type=1326 audit(1819.472:10536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25952 comm="syz.1.9650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  279.358592][   T29] audit: type=1326 audit(1819.472:10537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25952 comm="syz.1.9650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  279.381977][   T29] audit: type=1326 audit(1819.504:10538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25952 comm="syz.1.9650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd62a51ebe9 code=0x7ffc0000
[  279.405082][   T29] audit: type=1326 audit(1819.504:10539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25952 comm="syz.1.9650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd62a51ec23 code=0x7ffc0000
[  279.427995][   T29] audit: type=1326 audit(1819.504:10540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25952 comm="syz.1.9650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd62a51d69f code=0x7ffc0000
[  279.491314][T25962] $H�: renamed from bond0 (while UP)
[  279.522003][T25962] $H�: entered promiscuous mode
[  279.534470][T25973] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  280.520020][T26021] loop7: detected capacity change from 0 to 1024
[  280.528158][T26021] EXT4-fs: Ignoring removed nobh option
[  280.533794][T26021] EXT4-fs: Ignoring removed nobh option
[  280.547564][T26021] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  280.558400][T26021] EXT4-fs error (device loop7): ext4_get_journal_inode:5800: comm syz.7.9670: inode #4294967295: comm syz.7.9670: iget: illegal inode #
[  280.574895][T26021] EXT4-fs (loop7): no journal found
[  280.580173][T26021] EXT4-fs (loop7): can't get journal size
[  280.621666][T26021] EXT4-fs (loop7): failed to initialize system zone (-22)
[  280.633662][T26021] EXT4-fs (loop7): mount failed
[  281.453867][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  281.765574][T26135] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  281.827100][T26140] loop7: detected capacity change from 0 to 512
[  281.835469][T26140] EXT4-fs (loop7): orphan cleanup on readonly fs
[  281.842270][T26140] EXT4-fs error (device loop7): ext4_orphan_get:1418: comm syz.7.9723: bad orphan inode 13
[  281.852713][T26140] ext4_test_bit(bit=12, block=18) = 1
[  281.858146][T26140] is_bad_inode(inode)=0
[  281.862412][T26140] NEXT_ORPHAN(inode)=2130706432
[  281.867356][T26140] max_ino=32
[  281.870545][T26140] i_nlink=1
[  281.874272][T26140] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  281.891866][T26140] EXT4-fs (loop7): warning: mounting fs with errors, running e2fsck is recommended
[  281.903212][T26140] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  281.922675][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.061864][    C1] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  282.135586][T26150] lo speed is unknown, defaulting to 1000
[  282.196781][T26150] lo speed is unknown, defaulting to 1000
[  282.353361][T26171] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9736'.
[  282.623149][T26195] netlink: 'syz.0.9746': attribute type 8 has an invalid length.
[  283.164150][T26234] netlink: 'syz.4.9765': attribute type 10 has an invalid length.
[  283.172027][T26234] netlink: 40 bytes leftover after parsing attributes in process `syz.4.9765'.
[  283.227141][T26234] team0: Port device geneve1 added
[  283.239810][  T314] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.278180][    C1] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  283.299190][T26236] loop7: detected capacity change from 0 to 512
[  283.305698][T26236] EXT4-fs: Ignoring removed nomblk_io_submit option
[  283.315876][  T314] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.324603][  T314] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.361711][  T314] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  283.373101][T26236] EXT4-fs: Ignoring removed i_version option
[  283.380915][T26236] EXT4-fs (loop7): 1 orphan inode deleted
[  283.410799][T26236] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  283.514044][T26236] EXT4-fs error (device loop7): ext4_add_entry:2417: inode #2: comm syz.7.9766: Directory hole found for htree leaf block 0
[  283.564320][T26228] Set syz1 is full, maxelem 65536 reached
[  283.605203][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.676391][T26266] netlink: 228 bytes leftover after parsing attributes in process `syz.7.9780'.
[  283.735262][T26279] loop7: detected capacity change from 0 to 512
[  283.741909][T26279] EXT4-fs: Ignoring removed mblk_io_submit option
[  283.749430][T26279] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  283.760470][T26279] EXT4-fs (loop7): 1 truncate cleaned up
[  283.766784][T26279] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  283.985882][T26300] netlink: 'syz.1.9795': attribute type 9 has an invalid length.
[  283.993698][T26300] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9795'.
[  284.017464][T26300] netlink: 'syz.1.9795': attribute type 9 has an invalid length.
[  284.017455][  T314] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  284.017548][  T314] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  284.025353][T26300] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9795'.
[  284.055535][  T314] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  284.067957][   T56] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  284.130300][   T29] kauditd_printk_skb: 257 callbacks suppressed
[  284.130318][   T29] audit: type=1326 audit(1824.641:10798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26305 comm="syz.4.9798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  284.159699][   T29] audit: type=1326 audit(1824.673:10799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26305 comm="syz.4.9798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  284.265761][   T29] audit: type=1326 audit(1824.736:10800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26305 comm="syz.4.9798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  284.288934][   T29] audit: type=1326 audit(1824.736:10801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26305 comm="syz.4.9798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  284.312004][   T29] audit: type=1326 audit(1824.736:10802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26305 comm="syz.4.9798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  284.335205][   T29] audit: type=1326 audit(1824.736:10803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26305 comm="syz.4.9798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  284.358413][   T29] audit: type=1326 audit(1824.736:10804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26305 comm="syz.4.9798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  284.381481][   T29] audit: type=1326 audit(1824.736:10805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26305 comm="syz.4.9798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  284.404556][   T29] audit: type=1326 audit(1824.736:10806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26305 comm="syz.4.9798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  284.427641][   T29] audit: type=1326 audit(1824.736:10807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26305 comm="syz.4.9798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61f18ebe9 code=0x7ffc0000
[  284.504644][T26316] netlink: 'syz.1.9802': attribute type 10 has an invalid length.
[  284.512554][T26316] netlink: 40 bytes leftover after parsing attributes in process `syz.1.9802'.
[  284.521825][T26316] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  284.776629][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  284.936493][T26360] macvtap0: refused to change device tx_queue_len
[  285.113054][T26386] smc: net device bond0 applied user defined pnetid SYZ0
[  285.120723][T26386] smc: net device bond0 erased user defined pnetid SYZ0
[  285.150919][T26388] loop7: detected capacity change from 0 to 764
[  285.175905][T26388] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  285.362298][T26422] netlink: 'syz.7.9854': attribute type 2 has an invalid length.
[  285.619920][T26438] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9861'.
[  285.741824][ T7240] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  285.741882][T26438] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9861'.
[  285.780496][ T7240] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  285.818796][ T7240] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  285.841544][ T7240] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  285.995489][T26460] bond0: entered promiscuous mode
[  286.000583][T26460] bond_slave_0: entered promiscuous mode
[  286.006536][T26460] bond_slave_1: entered promiscuous mode
[  286.012358][T26460] batadv0: entered promiscuous mode
[  286.044019][T26462] netlink: 180 bytes leftover after parsing attributes in process `syz.7.9872'.
[  286.155322][T26477] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  286.175754][T26477] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  286.202559][T26484] lo speed is unknown, defaulting to 1000
[  286.239335][T26484] lo speed is unknown, defaulting to 1000
[  286.437216][T26511] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9892'.
[  286.764897][T26533] lo speed is unknown, defaulting to 1000
[  286.788123][T26539] loop7: detected capacity change from 0 to 128
[  286.832508][T26533] lo speed is unknown, defaulting to 1000
[  286.890869][T26552] netlink: 'syz.4.9911': attribute type 4 has an invalid length.
[  286.898710][T26552] netlink: 152 bytes leftover after parsing attributes in process `syz.4.9911'.
[  286.933152][T26552] .`: renamed from bond0 (while UP)
[  287.161312][T26588] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=26588 comm=syz.4.9928
[  287.174379][T26588] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=26588 comm=syz.4.9928
[  287.593805][T26635] netlink: '+}[@': attribute type 13 has an invalid length.
[  287.609220][T26635] gretap0: refused to change device tx_queue_len
[  287.627666][T26635] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  287.956054][T26684] netlink: 'syz.1.9974': attribute type 1 has an invalid length.
[  287.963932][T26684] netlink: 224 bytes leftover after parsing attributes in process `syz.1.9974'.
[  288.399179][T26740] pim6reg: entered allmulticast mode
[  288.415014][T26740] pim6reg: left allmulticast mode
[  288.613343][T26776] __nla_validate_parse: 3 callbacks suppressed
[  288.613388][T26776] netlink: 12 bytes leftover after parsing attributes in process `syz.3.10015'.
[  288.628858][T26776] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10015'.
[  288.638046][T26776] netlink: 12 bytes leftover after parsing attributes in process `syz.3.10015'.
[  288.648916][T26776] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10015'.
[  288.658020][T26776] netlink: 'syz.3.10015': attribute type 6 has an invalid length.
[  288.744223][T26787] lo speed is unknown, defaulting to 1000
[  288.786216][T26787] lo speed is unknown, defaulting to 1000
[  288.886901][   T29] kauditd_printk_skb: 239 callbacks suppressed
[  288.886910][T26808] SELinux:  Context system_u:object_r:getty_exec_t:s0 is not valid (left unmapped).
[  288.886920][   T29] audit: type=1400 audit(1829.683:11047): avc:  denied  { relabelfrom } for  pid=26807 comm="syz.3.10027" name="NETLINK" dev="sockfs" ino=86344 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  288.937058][   T29] audit: type=1400 audit(1829.694:11048): avc:  denied  { relabelto } for  pid=26807 comm="syz.3.10027" name="NETLINK" dev="sockfs" ino=86344 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=netlink_route_socket permissive=1 trawcon="system_u:object_r:getty_exec_t:s0"
[  289.286939][   T29] audit: type=1326 audit(1830.104:11049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26832 comm="syz.3.10038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  289.331437][   T29] audit: type=1326 audit(1830.104:11050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26832 comm="syz.3.10038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  289.354691][   T29] audit: type=1326 audit(1830.104:11051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26832 comm="syz.3.10038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  289.378328][   T29] audit: type=1326 audit(1830.104:11052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26832 comm="syz.3.10038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  289.401589][   T29] audit: type=1326 audit(1830.104:11053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26832 comm="syz.3.10038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  289.424939][   T29] audit: type=1400 audit(1830.136:11054): avc:  denied  { bind } for  pid=26834 comm="syz.0.10039" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  289.444047][   T29] audit: type=1400 audit(1830.136:11055): avc:  denied  { node_bind } for  pid=26834 comm="syz.0.10039" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  289.463837][   T29] audit: type=1326 audit(1830.136:11056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26832 comm="syz.3.10038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71342aebe9 code=0x7ffc0000
[  289.624721][T26859] netlink: 'syz.3.10051': attribute type 3 has an invalid length.
[  289.737575][T26871] loop7: detected capacity change from 0 to 2048
[  289.745649][T26871] EXT4-fs: Ignoring removed mblk_io_submit option
[  289.753439][T26873] rdma_op ffff8881040bbd80 conn xmit_rdma 0000000000000000
[  289.789346][T26871] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  289.886593][T10477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.936008][T26896] vlan2: entered promiscuous mode
[  289.941209][T26896] bridge0: entered promiscuous mode
[  289.973940][T26898] 9pnet: p9_errstr2errno: server reported unknown error �Ȫjn�
[  289.973940][T26898] �2�$�tO*����m�տ*�Dž��j`c��?ڊ#t>r���)
[  290.388822][T26969] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10102'.
[  290.398749][T26969] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10102'.
[  290.670353][T26991] ==================================================================
[  290.678491][T26991] BUG: KCSAN: data-race in shmem_file_splice_read / shmem_file_splice_read
[  290.687117][T26991] 
[  290.689450][T26991] write to 0xffff88811a6f30a8 of 8 bytes by task 26990 on cpu 1:
[  290.697177][T26991]  shmem_file_splice_read+0x470/0x600
[  290.702565][T26991]  splice_direct_to_actor+0x26f/0x680
[  290.707955][T26991]  do_splice_direct+0xda/0x150
[  290.712739][T26991]  do_sendfile+0x380/0x650
[  290.717187][T26991]  __x64_sys_sendfile64+0x105/0x150
[  290.722414][T26991]  x64_sys_call+0x2bb0/0x2ff0
[  290.727106][T26991]  do_syscall_64+0xd2/0x200
[  290.731643][T26991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.737549][T26991] 
[  290.739890][T26991] write to 0xffff88811a6f30a8 of 8 bytes by task 26991 on cpu 0:
[  290.747607][T26991]  shmem_file_splice_read+0x470/0x600
[  290.753010][T26991]  splice_direct_to_actor+0x26f/0x680
[  290.758395][T26991]  do_splice_direct+0xda/0x150
[  290.763346][T26991]  do_sendfile+0x380/0x650
[  290.767777][T26991]  __x64_sys_sendfile64+0x105/0x150
[  290.773014][T26991]  x64_sys_call+0x2bb0/0x2ff0
[  290.777695][T26991]  do_syscall_64+0xd2/0x200
[  290.782263][T26991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.788238][T26991] 
[  290.790560][T26991] value changed: 0x000000000002b5e0 -> 0x000000000002b610
[  290.797672][T26991] 
[  290.800005][T26991] Reported by Kernel Concurrency Sanitizer on:
[  290.806163][T26991] CPU: 0 UID: 0 PID: 26991 Comm: syz.4.10111 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  290.817721][T26991] Tainted: [W]=WARN
[  290.821787][T26991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  290.831857][T26991] ==================================================================
[  290.940994][   T56] dummy0: left promiscuous mode
[  290.946040][   T56] bridge0: port 1(dummy0) entered disabled state
[  291.022265][   T56] bond0 (unregistering): Released all slaves
[  291.033903][   T56] bond1 (unregistering): Released all slaves
[  291.043094][   T56] bond2 (unregistering): Released all slaves
[  291.052422][   T56] bond3 (unregistering): Released all slaves
[  291.064783][   T56] bond4 (unregistering): Released all slaves
[  291.101826][   T56] tipc: Disabling bearer <udp:�>
[  291.106984][   T56] tipc: Left network mode
[  291.113343][   T56] IPVS: stopping backup sync thread 19398 ...
[  291.138895][   T56] batadv_slave_0: left promiscuous mode
[  291.150205][   T56] hsr_slave_0: left promiscuous mode
[  291.156755][   T56] hsr_slave_1: left promiscuous mode
[  291.203403][ T7257] smc: removing ib device syz!
[  291.416133][   T56] IPVS: stop unused estimator thread 0...
[  295.440122][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  297.264365][    C1] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  299.697950][    C1] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!