last executing test programs:

44m53.452277063s ago: executing program 1 (id=188):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r1}, &(0x7f0000000800), &(0x7f0000000840)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x11, 0x3, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
sendmsg$can_bcm(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="050000000808"], 0x80}}, 0x0)
sendmsg$can_bcm(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={0x5, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x2710}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "3acf1ec7ae70bb24"}}, 0x48}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

44m52.907129591s ago: executing program 1 (id=191):
syz_clone(0x44044000, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYRES32, @ANYBLOB="8700", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
futimesat(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$cgroup_int(r1, &(0x7f0000000100)='cpuset.cpus\x00', 0x2, 0x0)
openat$cgroup_procs(r1, &(0x7f0000001a80)='tasks\x00', 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x54)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
pipe2$9p(&(0x7f0000000040)={<r3=>0xffffffffffffffff}, 0x0)
r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
splice(r3, 0x0, r4, 0x0, 0x10000000000016, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000040)=[{0x20, 0x8, 0x0, 0x7f}, {0x6}]}, 0x10)

44m50.253975693s ago: executing program 1 (id=198):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000280)=@tcp6, 0x1}, 0x20)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file1/file0\x00', 0x200010, &(0x7f0000000340)={[], [{@euid_eq}]}, 0xfe, 0x57a, &(0x7f0000000580)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x80049367, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f00000001c0)='cpuset.cpus\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000040), 0x1)

44m48.204243885s ago: executing program 1 (id=203):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000300)={[{@auto_da_alloc_val}, {@test_dummy_encryption_v1}, {@init_itable_val={'init_itable', 0x3d, 0x5c}}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}]}, 0x3, 0x45c, &(0x7f00000003c0)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0x0, 0x0, &(0x7f00000007c0))
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
syz_emit_ethernet(0x46, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
mount$incfs(&(0x7f0000000140)='./bus\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000240), 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x1809449, 0x0, 0xff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, 0x0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup3(r4, r5, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e20, @broadcast}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)

44m44.775905339s ago: executing program 1 (id=210):
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x1b, &(0x7f0000000540)="398b828649789ae68d72d9c98043aa5d4a039a4ead69d35c16e397", 0x1b)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_GET_PIT(r0, 0xc048ae65, &(0x7f00000004c0))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r6, 0x5420, &(0x7f0000000580)=0x281)
ioctl$TCSETS(r6, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0xfffffffe, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
syz_open_pts(r6, 0x0)
ioctl$TIOCL_SETVESABLANK(r5, 0x560e, &(0x7f0000000140))
ioctl$TIOCL_BLANKSCREEN(r4, 0x541c, &(0x7f0000000000))
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r7, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x3, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0], <r8=>0x0, 0x6e, &(0x7f00000001c0)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000200), &(0x7f0000000280), 0x8, 0x77, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000040)='fib6_table_lookup\x00', r9}, 0x10)
r10 = socket(0xa, 0x2400000001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r10, 0x29, 0x2a, &(0x7f0000000340)={0x0, {{0xa, 0x2, 0x0, @mcast1}}}, 0x88)

44m44.232256668s ago: executing program 1 (id=212):
r0 = fsopen(&(0x7f0000000080)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000240), 0x36, 0xcc800)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000c, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r5}, 0x18)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="c80000000002010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000131400042000000000000000000000ffff0a0101020c00028005000100000000003c0003800c00028005000100000000002c00018014000300fc00000000000000000000000000000010000400fe8000000000000000000000000000bb3c0002800c00028005000100000000002c00018014000300fc020000000000000000000000000000140004"], 0xc8}}, 0x0)
fsmount(r0, 0x0, 0x8)
lstat(&(0x7f0000000000)='./file0\x00', &(0x7f00000002c0))

44m43.900626563s ago: executing program 32 (id=212):
r0 = fsopen(&(0x7f0000000080)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000240), 0x36, 0xcc800)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000c, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r5}, 0x18)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="c80000000002010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000131400042000000000000000000000ffff0a0101020c00028005000100000000003c0003800c00028005000100000000002c00018014000300fc00000000000000000000000000000010000400fe8000000000000000000000000000bb3c0002800c00028005000100000000002c00018014000300fc020000000000000000000000000000140004"], 0xc8}}, 0x0)
fsmount(r0, 0x0, 0x8)
lstat(&(0x7f0000000000)='./file0\x00', &(0x7f00000002c0))

43m56.98843197s ago: executing program 2 (id=291):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/19, @ANYRES32=0x0], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f0000000300)={[{@noauto_da_alloc}, {@errors_remount}]}, 0x3, 0x445, &(0x7f0000000b00)="$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")
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x8, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x8c}}, {{0x5, 0x0, 0x4}, {0xac}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000680)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
rmdir(&(0x7f0000000100)='./control\x00')
r6 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r6, 0x11b, 0x2, &(0x7f0000000000)=0x800, 0x4)

43m52.244408014s ago: executing program 2 (id=300):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000180), 0x1, 0x512, &(0x7f0000000c40)="$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")
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r2}, &(0x7f0000000800), &(0x7f0000000840)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = socket$can_raw(0x1d, 0x3, 0x1)
write$cgroup_devices(r8, 0x0, 0xffdd)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
fsmount(r1, 0x1, 0x0)
open(&(0x7f0000000300)='.\x02\x00', 0x14927e, 0x44)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f00000015c0)=ANY=[@ANYBLOB="1800000000000000200000000000000095000000000000996d04739dfeda7f9159b21306aeb6a6c3d1e15ec30601bd65910431a74171f59c5b51de34a42d9c037bca454f40e2cdd72d06ae4d902eb951f7d01b066c43fd7a6479c9766417e29bd7b935d83f08c4efc1a07f7b214c9bc14b920c6e91c31d3ccdae655e77b767084702cd625c5a78ff11dcd365"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2008, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

43m49.038686774s ago: executing program 2 (id=308):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002600)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2b, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000001a40)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000001c00)={0x8c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x5, 0x0, 0x800}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_ADT={0x4}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x5, 0x1a, '\x00'}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_DATA={0x40, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x5}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x8}, @IPSET_ATTR_IP2_TO={0xc, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_ETHER={0xa, 0x11, @random="69d8ede7d40b"}]}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x17}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400c014}, 0x4000001)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ffe000/0x1000)=nil)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$inet6(0xa, 0x4, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r6}, 0x18)
listen(r5, 0x2)

43m44.184797831s ago: executing program 2 (id=313):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000300)={[{@auto_da_alloc_val}, {@test_dummy_encryption_v1}, {@init_itable_val={'init_itable', 0x3d, 0x5c}}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}]}, 0x3, 0x45c, &(0x7f00000003c0)="$eJzs3MtvG0UYAPBv7Til9JFQyqMPIFAQEY+kaQv0wAEQSByKhAQHOEZJWpW6DWqCRKuIpgiVE0JI3BFH/gVOcEGIExJXuKNKFcqlLReM1t5NbMd283BqiH8/aduZ3dnOfJ4de3bHbgB9ayT9I4nYHRG/R8RQLdtYYKT2162lhanbSwtTSVQq7/yVVMvdXFqYyovm5+3KMqM7IuKzJA61qHfu0uVzk+XyzMUsPz5//sPxuUuXnz97fvLMzJmZC8dOnjxxfOKlF4+90JU40zbdPPjJ7OEDb77/1VunvmiIvymOLhnpdPCpSqXL1fXWnrp0MtDDhrAuxYhIu6tUHf9DUYyVzhuKNz7taeOALVWpVCq72h9erADbWBKNeUMe+kX+QZ/e/+Zb8yTgla2bfvTcjVdrN0Bp3LeyrXZkIApZmVLT/W03jUTEe4t/f5NuUe2Hvd1+DgEA0OCHdP7zXKv5XyEerCu3N1sbGo6I+yJiX0TcHxH7I+KBiGrZhyLi4XXW37xIsnr+Wbi+ocDWKJ3/vZytbTXO//LZXwwXs9yeavyl5PTZ8szR7DUZjdKOND/RoY4fX//ty3bH6ud/6ZbWn88Fs3ZcH9jReM705PzkZmKud+NqxMGBVvEnyysBSUQciIiDG6zj7DPfHW537M7xd9CFdabKtxFP1/p/MZrizyWd1yfH74nyzNHx/KpY7Zdfr73douZ/YrPxd0Ha//e2vP6X4x9O6tdr59Zfx7U/Pm97T7Om6/9K4znp9T+YvFtND2b7Pp6cn784ETGYnKo1un7/sZVz83xePo1/9Ejr8b8vVl6JQxGRXsSPRMSjEfFY1vbHI+KJiDjSIf6fX3vyg43Hv7XS+KfX1f8ricFo3tM6UTz30/cNlQ6viv925/e/E9XUaLZnLe9/a2nXxq5mAAAA+P8pRMTuSApjy+lCYWys9n35/RGF8uzc/LOnZz+6MF37jcBwlAr5k66huuehE9ltfS1/NSJqXy3Ijx/Pnht/XdxZzY9NzZanex089LldbcZ/6s9ir1sHbDm/14L+ZfxD/zL+oX8Z/9C/Woz/nb1oB3D3tfr8v9KDdgB3X9P4t+wHfcT9P/SvtuN/O//PP0CVz3/oS3M7484/ku+YyP+lDZ6+bRNR+k80Y/OJStKyc6PQ64ZJbGWit+9LAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3fJvAAAA//+KNeJZ")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0x0, 0x0, &(0x7f00000007c0))
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
syz_emit_ethernet(0x46, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
mount$incfs(&(0x7f0000000140)='./bus\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000240), 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x1809449, 0x0, 0xff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, 0x0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup3(r4, r5, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e20, @broadcast}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)

43m40.004682526s ago: executing program 2 (id=319):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x2818440, &(0x7f00000000c0)={[], [{@smackfshat}, {@obj_user={'obj_user', 0x3d, '},%!-$'}}, {@euid_gt}]}, 0x2, 0x246, &(0x7f0000000ac0)="$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")
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000049000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000100), 0x6e)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x4, [@int={0x4, 0x0, 0x0, 0x1, 0x0, 0x37, 0x0, 0x2b, 0x4}]}, {0x0, [0x5f, 0x0]}}, &(0x7f00000001c0)=""/32, 0x2c, 0x20, 0x1, 0xfffffff7, 0x0, @void, @value}, 0x28)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x5)
syz_emit_ethernet(0x4a, &(0x7f00000002c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "3ff202", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10}}}}}}}, 0x0)
listen(r3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcf06, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r6}, 0x0, &(0x7f00000002c0)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x3, 0xf, 0x0, 0x700, 0x0, [@sadb_key={0x5, 0x9, 0xe0, 0x0, "01d78771b90bd8a3b4914783c58777003d5b9538a9d03e6e9bfdac55"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x78}, 0x1, 0x7}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)

43m35.456190607s ago: executing program 2 (id=337):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002600)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2b, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000001a40)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000001c00)={0x8c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x5, 0x0, 0x800}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_ADT={0x4}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x5, 0x1a, '\x00'}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_DATA={0x40, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x5}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x8}, @IPSET_ATTR_IP2_TO={0xc, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_ETHER={0xa, 0x11, @random="69d8ede7d40b"}]}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x17}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400c014}, 0x4000001)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ffe000/0x1000)=nil)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$inet6(0xa, 0x4, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r6}, 0x18)
listen(r5, 0x2)

43m29.648368179s ago: executing program 33 (id=337):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002600)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2b, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000001a40)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000001c00)={0x8c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x5, 0x0, 0x800}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_ADT={0x4}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x5, 0x1a, '\x00'}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_DATA={0x40, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x5}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x8}, @IPSET_ATTR_IP2_TO={0xc, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_ETHER={0xa, 0x11, @random="69d8ede7d40b"}]}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x17}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400c014}, 0x4000001)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ffe000/0x1000)=nil)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$inet6(0xa, 0x4, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r6}, 0x18)
listen(r5, 0x2)

43m10.784356245s ago: executing program 6 (id=364):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x14)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0x40, 0x10, 0x44b, 0x70bd28, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x12002, 0x75ba4}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x2}]}}}]}, 0x40}}, 0x4)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x30, 0x2, 0x3, 0x401, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x8}}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x2}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x2, 0x1}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000010}, 0x800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f00000003c0)={0x1, 0x8, 0xee, 0x7, 0x10, "09089ce15c3a217164fc15447e44ead9724563"})
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000007900)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRES8=0x0, @ANYRESHEX], 0x6, 0x2e6, &(0x7f00000000c0)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$FS_IOC_RESVSP(r7, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000003})

43m6.940744766s ago: executing program 6 (id=370):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYBLOB], 0x50)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='sched_switch\x00', r1}, 0x18)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
unshare(0x64000600)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000200)=0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r3, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x2404c014}, 0x44094)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xea100, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000080)={0xdc11ab5da6330e84})
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f0000000380)={[0x8000000000000000, 0x100000000, 0x0, 0x20, 0x0, 0x0, 0x2004c9, 0x7000, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x4000000000000004, 0x2], 0xffff1000})
ioctl$KVM_RUN(r8, 0xae80, 0x0)
write(r5, &(0x7f0000000000)="fa", 0xfffffdef)
getrandom(&(0x7f0000000080)=""/240, 0xfffffffffffffe77, 0x0)

43m2.112494551s ago: executing program 6 (id=374):
socket(0x10, 0x3, 0x0)
getpgrp(0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000000)={0x2, {0xc, 0xa00, 0x0, 0x101, 0x100}})
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="200000001500030026bd7000ffdbdf25021842c8", @ANYRES32=r3, @ANYBLOB="e0d939faac1514aa"], 0x20}, 0x1, 0x0, 0x0, 0x8041}, 0x40000880)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000140)={<r6=>0xffffffffffffffff})
sendmsg$tipc(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="fb6bba8839fe8bc048c0cdafd1f8a9918bc4055eaaeb6db4ee9bcb25b1811dbf40b3a7da5a8a64db04ed6dd26eea2e37229c339b1f91201c2796173864", 0x3d}], 0x1, 0x0, 0x0, 0x48040}, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e0000008500"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x9)
recvmsg(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1}, 0x40fd)
read$ptp(r5, 0x0, 0x0)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r8=>0x0)
timer_settime(r8, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r9}, 0x0, &(0x7f0000000040)}, 0x20)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r10}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
recvmsg(r12, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x40002002)
sendmsg(r11, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000001c0)='x', 0x1}], 0x1}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f000000000000000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

42m59.03682066s ago: executing program 6 (id=379):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file1\x00', 0x2912c12, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/25], 0x48)
syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f00000001c0)='./file0\x00', 0x880f54, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
shutdown(r0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf0667000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendfile(r0, r1, 0x0, 0xdc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x5, &(0x7f00000005c0)=0x4)
r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(r7, 0x0)

42m53.851973301s ago: executing program 6 (id=383):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file1/file0\x00', 0x200010, &(0x7f0000000340)={[], [{@euid_eq}]}, 0xfe, 0x57a, &(0x7f0000000580)="$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")
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(0xffffffffffffffff, 0x80049367, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000001c0)='cpuset.cpus\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x1)

42m49.694582356s ago: executing program 6 (id=393):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./bus\x00', 0x480, &(0x7f0000000100)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c757466383d302c73686f77657865632c646973636172642c757466383d312c6e66732c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c757466383d312c757466383d302c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c002d43c85feaa91b9c2c7e69443d6987a2f44801578200aa8d73d6b7d88bb2056dee1336c0e6a2b0376b8bd2"], 0xfd, 0x2a1, &(0x7f00000006c0)="$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")
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0x8)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r2}, 0x18)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x21, &(0x7f0000000240)={0x0, 0x0, 0xfffc, 0x360}, 0x8, 0x7, 0x80, 0x0, 0x1, 0x101, 0x0})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x10008, &(0x7f0000000700), 0xff, 0x49d, &(0x7f0000000740)="$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")
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newlink={0x34, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x12}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r4 = socket(0x10, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32=r5, @ANYBLOB="02000000000080008000120008000100767469367400020060"], 0xa0}}, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(r6, &(0x7f0000000000), 0x4000000000001f2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r7 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r7, &(0x7f0000000480)={'#! ', '', [{0x20, '\x8a\x90B\xe4\xad\x83\x8f\x1b\xbf\xc4\xd0n\x9d\xea\xee5\xcd\x0f\xd4\x01ps\x7f6.\t\x91x\xef\xc0u\xe2\'\xd5\xaa\xf6\x97@\x7f\x12O&\xee\x8aB\xfc\xbd&\xd2\xce\tx[\b\xc9C\xe2\xed\xb8zn\x8c\x05y\xbc\xfc\x00\xd1P@\x06\b\xcaJ\xb9\x9c\xf1\"YL\xc7r\x8d\xdb\xa24\x02\xc3\xb4Q\r\x98Q\xda\xc8\xbb;t\x06+\x8b\x85\aX\xf3kb\aw\xea\x93q\xf8\xa4\xab\x97(\x13\x15\xcf\xc1LA|\x10ZRn4\b\xbd\xb0\x91$X\x92Vo\xf5V\x98g\x13*(\xea\x06\x8e\xee\xf5\xd7c/\x82\xa92\xb9\xf1\x10\x82\x8b\x9d\"\xaa\x8b\x0e)MW\xe71U\xc5\x11\x9e\x89\x7f\x90 M\ad\xfe\xad\xbd\xaf\xc2\xfd\x99\x95J\xaa;i\xa1^*\xfb:\xa6\b\x9b3\x82\x04 \x12\x131\x05\xdd\x15\x8e\\J\xdbo\xf6C\xc5\xda\xb4\"-\x13C?\xf9\xa1\x85\xaf\x06\x15c1\xfe\xb5Fg\xb9?\xb7U\v\xfe\xb1d\xbddz+\x99Z\xb7\x871\xc4\xe6\xd8\xd5%\x06\xa0\x84\x99\x9c\x0e#\xbf\x95\xb3\xac\xf3\x98\xcdt\x12\x84\xe1e\x04\x86\xdd\xfdk\xfdJ)\xdc`\x98qV\xcd\xe0Kz\xdaS\x88Dwix\x10T\x8a9s\xf6\x97_0}\"\xa8$\x02\xb6\xf0ja\xfb\x93\xc3z'}]}, 0x14b)

42m32.986229749s ago: executing program 34 (id=393):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./bus\x00', 0x480, &(0x7f0000000100)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c757466383d302c73686f77657865632c646973636172642c757466383d312c6e66732c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c757466383d312c757466383d302c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c002d43c85feaa91b9c2c7e69443d6987a2f44801578200aa8d73d6b7d88bb2056dee1336c0e6a2b0376b8bd2"], 0xfd, 0x2a1, &(0x7f00000006c0)="$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")
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0x8)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r2}, 0x18)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x21, &(0x7f0000000240)={0x0, 0x0, 0xfffc, 0x360}, 0x8, 0x7, 0x80, 0x0, 0x1, 0x101, 0x0})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x10008, &(0x7f0000000700), 0xff, 0x49d, &(0x7f0000000740)="$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")
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newlink={0x34, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x12}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r4 = socket(0x10, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32=r5, @ANYBLOB="02000000000080008000120008000100767469367400020060"], 0xa0}}, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(r6, &(0x7f0000000000), 0x4000000000001f2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r7 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r7, &(0x7f0000000480)={'#! ', '', [{0x20, '\x8a\x90B\xe4\xad\x83\x8f\x1b\xbf\xc4\xd0n\x9d\xea\xee5\xcd\x0f\xd4\x01ps\x7f6.\t\x91x\xef\xc0u\xe2\'\xd5\xaa\xf6\x97@\x7f\x12O&\xee\x8aB\xfc\xbd&\xd2\xce\tx[\b\xc9C\xe2\xed\xb8zn\x8c\x05y\xbc\xfc\x00\xd1P@\x06\b\xcaJ\xb9\x9c\xf1\"YL\xc7r\x8d\xdb\xa24\x02\xc3\xb4Q\r\x98Q\xda\xc8\xbb;t\x06+\x8b\x85\aX\xf3kb\aw\xea\x93q\xf8\xa4\xab\x97(\x13\x15\xcf\xc1LA|\x10ZRn4\b\xbd\xb0\x91$X\x92Vo\xf5V\x98g\x13*(\xea\x06\x8e\xee\xf5\xd7c/\x82\xa92\xb9\xf1\x10\x82\x8b\x9d\"\xaa\x8b\x0e)MW\xe71U\xc5\x11\x9e\x89\x7f\x90 M\ad\xfe\xad\xbd\xaf\xc2\xfd\x99\x95J\xaa;i\xa1^*\xfb:\xa6\b\x9b3\x82\x04 \x12\x131\x05\xdd\x15\x8e\\J\xdbo\xf6C\xc5\xda\xb4\"-\x13C?\xf9\xa1\x85\xaf\x06\x15c1\xfe\xb5Fg\xb9?\xb7U\v\xfe\xb1d\xbddz+\x99Z\xb7\x871\xc4\xe6\xd8\xd5%\x06\xa0\x84\x99\x9c\x0e#\xbf\x95\xb3\xac\xf3\x98\xcdt\x12\x84\xe1e\x04\x86\xdd\xfdk\xfdJ)\xdc`\x98qV\xcd\xe0Kz\xdaS\x88Dwix\x10T\x8a9s\xf6\x97_0}\"\xa8$\x02\xb6\xf0ja\xfb\x93\xc3z'}]}, 0x14b)

10.743111905s ago: executing program 5 (id=17391):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)

8.054476386s ago: executing program 3 (id=17413):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="300000001a00010000000000000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="04001e8008"], 0x30}}, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r3, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f00000001c0), 0x4)
close_range(r3, 0xffffffffffffffff, 0x0)

7.979471478s ago: executing program 3 (id=17414):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce", 0xb3)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)

7.945495879s ago: executing program 3 (id=17415):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r0, &(0x7f0000000940), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
accept4(r1, 0x0, 0x0, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$selinux_load(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
write$selinux_load(r2, 0x0, 0x3000)

7.606120883s ago: executing program 3 (id=17422):
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(0xffffffffffffffff, 0x28, 0x1, 0x0, 0x0)

7.554974254s ago: executing program 3 (id=17424):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="300000001a00010000000000000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="04001e8008"], 0x30}}, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r3, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f00000001c0), 0x4)
close_range(r3, 0xffffffffffffffff, 0x0)

7.499217125s ago: executing program 5 (id=17426):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r1, &(0x7f0000000940), 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$selinux_load(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
write$selinux_load(r3, 0x0, 0x3000)

7.491711855s ago: executing program 3 (id=17428):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)

7.256602899s ago: executing program 7 (id=17392):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

5.012679074s ago: executing program 7 (id=17433):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r0, &(0x7f0000000940), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
accept4(r1, 0x0, 0x0, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$selinux_load(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
write$selinux_load(r2, 0x0, 0x3000)

4.893030856s ago: executing program 5 (id=17436):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r4}, 0x10)
ioctl$SIOCSIFHWADDR(r3, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @broadcast})

4.892205796s ago: executing program 0 (id=17449):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17", 0xb6)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)

4.868046176s ago: executing program 0 (id=17438):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)

3.688582544s ago: executing program 7 (id=17440):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)

3.664124384s ago: executing program 4 (id=17442):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r1, &(0x7f0000000940), 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
accept4(r2, 0x0, 0x0, 0x800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$selinux_load(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
write$selinux_load(r3, 0x0, 0x3000)

2.468769143s ago: executing program 7 (id=17443):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000000)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x6, 0x0, 0x0, 0xffffff1f}, {0x85, 0x0, 0x0, 0x5}}, {{0x6, 0x0, 0x2}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x2}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0x6, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

2.467942073s ago: executing program 0 (id=17444):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

2.460624013s ago: executing program 5 (id=17448):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="300000001a00010000000000000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="04001e8008"], 0x30}}, 0x0)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)

2.418040383s ago: executing program 7 (id=17450):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r4}, 0x10)
ioctl$SIOCSIFHWADDR(r3, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @broadcast})

2.407190814s ago: executing program 5 (id=17451):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r4}, 0x10)
ioctl$SIOCSIFHWADDR(r3, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @broadcast})

2.397212554s ago: executing program 4 (id=17452):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6", 0xb7)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)

1.33967187s ago: executing program 4 (id=17453):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="300000001a00010000000000000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="04001e8008"], 0x30}}, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r3, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f00000001c0), 0x4)
close_range(r3, 0xffffffffffffffff, 0x0)

1.32020803s ago: executing program 4 (id=17454):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="300000001a00010000000000000000000a00000000000000", @ANYRES32=0x0], 0x30}}, 0x0)

1.269223501s ago: executing program 0 (id=17455):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c", 0xad)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)

1.251194181s ago: executing program 4 (id=17456):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)

1.243553291s ago: executing program 0 (id=17457):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r2, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

1.208682042s ago: executing program 0 (id=17458):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r4}, 0x10)
ioctl$SIOCSIFHWADDR(r3, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @broadcast})

24.7725ms ago: executing program 5 (id=17459):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

24.34697ms ago: executing program 4 (id=17460):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, 0x0, 0x0)
bind$vsock_stream(r0, &(0x7f0000000940), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
accept4(r1, 0x0, 0x0, 0x800)

0s ago: executing program 7 (id=17461):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="300000001a00010000000000000000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="04001e8008"], 0x30}}, 0x0)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)

kernel console output (not intermixed with test programs):

t: type=1326 audit(2000000812.982:25475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9888 comm="syz.7.15902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2349.699306][   T30] audit: type=1326 audit(2000000812.982:25476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9888 comm="syz.7.15902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2349.759331][   T30] audit: type=1326 audit(2000000812.982:25477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9888 comm="syz.7.15902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2349.919443][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2349.930169][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2350.676392][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2350.855324][ T9941] overlayfs: failed to clone upperpath
[ 2354.069386][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2357.864156][T10003] netlink: 'syz.5.15932': attribute type 4 has an invalid length.
[ 2358.147072][T10011] device wg2 left promiscuous mode
[ 2358.337538][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2358.344207][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth7: link becomes ready
[ 2358.355995][T29063] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2358.360698][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[ 2358.364193][T29063] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2358.401618][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2358.413239][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2358.449474][T17412] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2359.036038][T29063] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2359.044725][T29063] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2359.082054][T29063] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2359.098844][T29063] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2359.106875][T29063] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2359.125543][T29063] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2359.442055][T29063] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2359.992698][T29063] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2360.156735][T10036] syz.0.15941[10036] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2360.156813][T10036] syz.0.15941[10036] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2360.393335][T17412] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2360.561439][T10050] netlink: 'syz.7.15947': attribute type 27 has an invalid length.
[ 2360.980604][T10050] device wg2 left promiscuous mode
[ 2360.993127][T10050] device macsec0 left promiscuous mode
[ 2361.012819][T10052] wireguard: wg2: Could not create IPv4 socket
[ 2361.037558][T10052] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check.
[ 2361.053677][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2361.930029][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2362.329459][T10070] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15952'.
[ 2362.459507][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2362.490068][   T30] kauditd_printk_skb: 57 callbacks suppressed
[ 2362.490083][   T30] audit: type=1400 audit(2000000828.462:25535): avc:  denied  { checkpoint_restore } for  pid=10073 comm="syz.4.15954" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 2365.447093][T17412] ip6_tnl_xmit_ctl: 5 callbacks suppressed
[ 2365.447112][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2366.207548][T10111] overlayfs: failed to clone upperpath
[ 2367.749320][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2368.450201][T10129] netlink: 8 bytes leftover after parsing attributes in process `syz.4.15967'.
[ 2370.333957][T10147] netlink: 'syz.5.15973': attribute type 27 has an invalid length.
[ 2370.374473][T10147] device wg2 left promiscuous mode
[ 2370.459755][T10148] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 2370.481170][T10148] device veth1_to_batadv left promiscuous mode
[ 2370.490298][T10148] device veth1_macvtap left promiscuous mode
[ 2370.497040][T10148] device veth1_macvtap entered promiscuous mode
[ 2370.518549][T10148] device veth1_to_batadv entered promiscuous mode
[ 2370.827704][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2370.836782][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2370.847141][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2370.869711][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2370.884017][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2370.892994][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[ 2370.901496][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2370.917477][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 2370.934327][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2370.943285][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 2370.960318][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2370.978145][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 2370.995443][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2371.004458][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2371.012944][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2371.021558][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2371.030250][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2371.038733][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2371.047201][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2371.478636][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2371.489935][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2371.521654][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2371.530519][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2371.539468][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2371.547909][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2371.563013][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2371.577925][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[ 2371.599360][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[ 2371.609769][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth5: link becomes ready
[ 2371.617551][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[ 2371.627343][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2371.637369][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2371.646534][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth7: link becomes ready
[ 2372.149930][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2372.157973][    C0] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2372.731203][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[ 2372.738953][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth9: link becomes ready
[ 2372.747008][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth8: link becomes ready
[ 2372.764826][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth11: link becomes ready
[ 2372.773286][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth10: link becomes ready
[ 2372.781488][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth13: link becomes ready
[ 2372.809656][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth12: link becomes ready
[ 2372.837956][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[ 2372.848954][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth15: link becomes ready
[ 2372.867051][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth14: link becomes ready
[ 2372.883702][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth17: link becomes ready
[ 2375.285654][T24692] IPv6: ADDRCONF(NETDEV_CHANGE): veth16: link becomes ready
[ 2375.311794][T10162] netlink: 24 bytes leftover after parsing attributes in process `syz.0.15975'.
[ 2375.609869][T10188] overlayfs: failed to clone upperpath
[ 2375.989457][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2376.708323][T10203] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[ 2378.549422][    C0] ip6_tunnel: syztnl2 xmit: Local address not yet configured!
[ 2379.178075][T10229] incfs: Error accessing: ./file0.
[ 2379.183794][T10229] incfs: mount failed -2
[ 2379.189924][T10229] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[ 2379.797507][T10238] overlayfs: failed to resolve './file1': -2
[ 2379.807064][T10237] netlink: 'syz.7.15998': attribute type 4 has an invalid length.
[ 2388.149994][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2388.871561][T10327] fuse: Bad value for 'rootmode'
[ 2389.314138][T10335] overlayfs: failed to resolve './file1': -2
[ 2389.429891][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2390.719784][    C0] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2391.462253][T10362] xt_CT: No such helper "netbios-ns"
[ 2392.099919][T10359] 9pnet: Insufficient options for proto=fd
[ 2392.504647][T10372] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16034'.
[ 2392.577267][T10376] syz.4.16027[10376] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2392.580242][T10376] syz.4.16027[10376] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2393.269304][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2393.792989][T10383] overlayfs: failed to resolve './file2': -2
[ 2400.459949][T10437] netlink: 24 bytes leftover after parsing attributes in process `syz.4.16052'.
[ 2406.741559][T10483] overlayfs: failed to resolve './file1': -2
[ 2406.762975][T10486] netlink: 'syz.7.16065': attribute type 12 has an invalid length.
[ 2407.015527][T10490] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 2407.167936][   T30] audit: type=1326 audit(2000000873.132:25536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10494 comm="syz.3.16068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2407.198208][   T30] audit: type=1326 audit(2000000873.132:25537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10494 comm="syz.3.16068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2407.229773][   T30] audit: type=1326 audit(2000000873.202:25538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10494 comm="syz.3.16068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2407.277143][   T30] audit: type=1326 audit(2000000873.202:25539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10494 comm="syz.3.16068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2407.312454][   T30] audit: type=1326 audit(2000000873.202:25540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10494 comm="syz.3.16068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2407.387732][   T30] audit: type=1326 audit(2000000873.222:25541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10494 comm="syz.3.16068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2407.437765][   T30] audit: type=1326 audit(2000000873.222:25542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10494 comm="syz.3.16068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2407.462196][   T30] audit: type=1326 audit(2000000873.222:25543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10494 comm="syz.3.16068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2407.519991][   T30] audit: type=1326 audit(2000000873.222:25544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10494 comm="syz.3.16068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2407.568582][   T30] audit: type=1326 audit(2000000873.242:25545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10494 comm="syz.3.16068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2413.570782][T10542] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16082'.
[ 2415.813265][T10557] SELinux: security_context_str_to_sid(Eá…) failed for (dev ?, type ?) errno=-22
[ 2419.837371][T10587] netlink: 40 bytes leftover after parsing attributes in process `syz.7.16093'.
[ 2420.115300][T10592] netlink: 4 bytes leftover after parsing attributes in process `syz.5.16094'.
[ 2421.429500][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2422.079328][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2427.839282][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2428.068430][T10661] overlayfs: failed to resolve './file1': -2
[ 2428.288423][T10665] overlayfs: failed to clone upperpath
[ 2429.109302][    C0] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2429.376519][T10675] overlayfs: failed to clone upperpath
[ 2432.971794][   T30] kauditd_printk_skb: 4 callbacks suppressed
[ 2432.971814][   T30] audit: type=1400 audit(2000000898.552:25550): avc:  denied  { ioctl } for  pid=10703 comm="syz.0.16126" path="socket:[122629]" dev="sockfs" ino=122629 ioctlcmd=0x89f0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 2437.079894][T10726] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16128'.
[ 2438.137597][T10736] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check.
[ 2438.172712][T10731] futex_wake_op: syz.0.16132 tries to shift op by -1; fix this program
[ 2439.082893][T10740] overlayfs: failed to clone upperpath
[ 2440.353967][T10744] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16135'.
[ 2440.374032][T10744] netlink: 104 bytes leftover after parsing attributes in process `syz.3.16135'.
[ 2440.735070][T10755] fuse: Bad value for 'fd'
[ 2443.377572][T10775] syz.3.16142[10775] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2443.377658][T10775] syz.3.16142[10775] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2443.391445][T10775] netlink: 236 bytes leftover after parsing attributes in process `syz.3.16142'.
[ 2453.221143][T10834] overlayfs: failed to clone upperpath
[ 2453.640515][T10846] netlink: 60 bytes leftover after parsing attributes in process `syz.5.16160'.
[ 2454.119736][T10851] netlink: 'syz.3.16162': attribute type 13 has an invalid length.
[ 2454.137315][T10851] gretap0: refused to change device tx_queue_len
[ 2454.153162][T10851] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 2456.440836][T10856] netlink: 5 bytes leftover after parsing attributes in process `syz.5.16163'.
[ 2457.734268][   T30] audit: type=1326 audit(2000000923.702:25551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10897 comm="syz.4.16175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2458.932386][   T30] audit: type=1326 audit(2000000924.382:25552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10897 comm="syz.4.16175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2458.956219][   T30] audit: type=1326 audit(2000000924.452:25553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10897 comm="syz.4.16175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2458.981473][   T30] audit: type=1326 audit(2000000924.502:25554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10897 comm="syz.4.16175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2464.988442][T10959] overlayfs: failed to clone lowerpath
[ 2471.397363][T11010] overlayfs: failed to clone upperpath
[ 2479.652709][T11090] 9pnet: Insufficient options for proto=fd
[ 2482.419238][T11124] netlink: 56 bytes leftover after parsing attributes in process `syz.7.16234'.
[ 2489.751091][   T30] audit: type=1326 audit(2000000955.722:25555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11156 comm="syz.5.16243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2489.795768][   T30] audit: type=1326 audit(2000000955.722:25556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11156 comm="syz.5.16243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2489.919254][   T30] audit: type=1326 audit(2000000955.792:25557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11156 comm="syz.5.16243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2490.212544][   T30] audit: type=1326 audit(2000000955.792:25558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11156 comm="syz.5.16243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2490.239300][   T30] audit: type=1326 audit(2000000955.792:25559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11156 comm="syz.5.16243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2490.361493][   T30] audit: type=1326 audit(2000000955.792:25560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11156 comm="syz.5.16243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2492.337056][   T30] audit: type=1326 audit(2000000955.792:25561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11156 comm="syz.5.16243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7efc1a3d9963 code=0x7ffc0000
[ 2492.469234][   T30] audit: type=1326 audit(2000000955.792:25562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11156 comm="syz.5.16243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7efc1a3d83df code=0x7ffc0000
[ 2492.546155][   T30] audit: type=1326 audit(2000000955.792:25563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11156 comm="syz.5.16243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7efc1a3d99b7 code=0x7ffc0000
[ 2492.628850][   T30] audit: type=1326 audit(2000000955.792:25564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11156 comm="syz.5.16243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7efc1a3d8290 code=0x7ffc0000
[ 2496.782497][T11214] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 2496.792025][T11214] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[ 2496.800338][T11214] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 2500.179724][   T30] kauditd_printk_skb: 29 callbacks suppressed
[ 2500.179742][   T30] audit: type=1326 audit(2000000966.152:25594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11299 comm="syz.4.16272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2500.300697][   T30] audit: type=1326 audit(2000000966.152:25595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11299 comm="syz.4.16272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2500.324781][   T30] audit: type=1326 audit(2000000966.152:25596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11299 comm="syz.4.16272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2501.078497][   T30] audit: type=1326 audit(2000000966.152:25597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11299 comm="syz.4.16272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2501.152636][   T30] audit: type=1326 audit(2000000966.152:25598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11299 comm="syz.4.16272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2501.222129][   T30] audit: type=1326 audit(2000000966.182:25599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11299 comm="syz.4.16272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2501.429593][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2501.497884][   T30] audit: type=1326 audit(2000000966.182:25600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11299 comm="syz.4.16272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2501.531351][   T30] audit: type=1326 audit(2000000966.182:25601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11299 comm="syz.4.16272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2501.555324][   T30] audit: type=1326 audit(2000000966.182:25602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11299 comm="syz.4.16272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2501.579882][   T30] audit: type=1326 audit(2000000966.182:25603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11299 comm="syz.4.16272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2502.255532][T11335] netlink: 28 bytes leftover after parsing attributes in process `syz.4.16280'.
[ 2506.879077][T11398] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16287'.
[ 2506.888595][T11398] netlink: 12 bytes leftover after parsing attributes in process `syz.0.16287'.
[ 2507.013318][T11403] syz.4.16291[11403] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2507.015172][T11403] syz.4.16291[11403] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2508.005277][T11406] netlink: 28 bytes leftover after parsing attributes in process `syz.0.16292'.
[ 2508.111621][T11413] blk_update_request: I/O error, dev loop15, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2508.142616][T11413] FAT-fs (loop15): unable to read boot sector
[ 2514.173533][T11517] netlink: 28 bytes leftover after parsing attributes in process `syz.3.16306'.
[ 2523.485733][T11571] netlink: 28 bytes leftover after parsing attributes in process `syz.7.16321'.
[ 2523.553992][    C0] Illegal XDP return value 4294967274, expect packet loss!
[ 2527.261988][T11589] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 2530.505504][T11614] sch_tbf: burst 19872 is lower than device lo mtu (39799) !
[ 2530.530870][   T30] kauditd_printk_skb: 17 callbacks suppressed
[ 2530.530886][   T30] audit: type=1326 audit(2000000996.502:25621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11616 comm="syz.3.16334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2530.561883][   T30] audit: type=1326 audit(2000000996.502:25622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11616 comm="syz.3.16334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2530.586575][   T30] audit: type=1326 audit(2000000996.502:25623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11616 comm="syz.3.16334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2530.646793][   T30] audit: type=1326 audit(2000000996.502:25624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11616 comm="syz.3.16334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2530.674492][   T30] audit: type=1326 audit(2000000996.502:25625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11616 comm="syz.3.16334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2530.724060][T11621] netlink: 28 bytes leftover after parsing attributes in process `syz.3.16336'.
[ 2530.841134][   T30] audit: type=1326 audit(2000000996.502:25626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11616 comm="syz.3.16334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2530.867265][   T30] audit: type=1326 audit(2000000996.502:25627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11616 comm="syz.3.16334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2530.900354][   T30] audit: type=1326 audit(2000000996.502:25628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11616 comm="syz.3.16334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2531.437701][T11628] netlink: 96 bytes leftover after parsing attributes in process `syz.0.16337'.
[ 2531.451967][   T30] audit: type=1326 audit(2000000996.502:25629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11616 comm="syz.3.16334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2531.513600][   T30] audit: type=1326 audit(2000000996.502:25630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11616 comm="syz.3.16334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111df9e929 code=0x7ffc0000
[ 2535.057533][T11674] futex_wake_op: syz.5.16350 tries to shift op by -1; fix this program
[ 2535.331188][T11676] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16349'.
[ 2535.340661][T11676] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16349'.
[ 2535.349890][T11676] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16349'.
[ 2535.359003][T11676] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16349'.
[ 2536.606223][T11693] netlink: 12 bytes leftover after parsing attributes in process `syz.7.16354'.
[ 2536.615404][T11693] netlink: 43 bytes leftover after parsing attributes in process `syz.7.16354'.
[ 2537.010721][   T30] kauditd_printk_skb: 33 callbacks suppressed
[ 2537.010737][   T30] audit: type=1326 audit(2000001002.982:25664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.7.16358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2537.926429][   T30] audit: type=1326 audit(2000001003.012:25665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.7.16358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2537.955068][   T30] audit: type=1326 audit(2000001003.012:25666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.7.16358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2537.981043][   T30] audit: type=1326 audit(2000001003.012:25667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.7.16358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2538.040795][   T30] audit: type=1326 audit(2000001003.012:25668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.7.16358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2538.066450][   T30] audit: type=1326 audit(2000001003.012:25669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.7.16358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2538.091945][   T30] audit: type=1326 audit(2000001003.012:25670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.7.16358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2538.144612][   T30] audit: type=1326 audit(2000001003.012:25671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.7.16358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2538.199392][   T30] audit: type=1326 audit(2000001003.012:25672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.7.16358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2538.224622][   T30] audit: type=1326 audit(2000001003.012:25673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11702 comm="syz.7.16358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fb4f8b2f929 code=0x7ffc0000
[ 2539.692339][T11736] sch_tbf: burst 19872 is lower than device lo mtu (39799) !
[ 2540.133854][T11738] 9pnet: Insufficient options for proto=fd
[ 2545.809743][   T30] audit: type=1326 audit(2000001011.732:25674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11771 comm="syz.4.16375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2545.835642][   T30] audit: type=1326 audit(2000001011.742:25675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11771 comm="syz.4.16375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2545.859660][   T30] audit: type=1326 audit(2000001011.742:25676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11771 comm="syz.4.16375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2545.884582][   T30] audit: type=1326 audit(2000001011.742:25677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11771 comm="syz.4.16375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2545.908753][   T30] audit: type=1326 audit(2000001011.742:25678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11771 comm="syz.4.16375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2545.965091][   T30] audit: type=1326 audit(2000001011.742:25679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11771 comm="syz.4.16375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2545.990345][   T30] audit: type=1326 audit(2000001011.742:25680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11771 comm="syz.4.16375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2546.350978][   T30] audit: type=1326 audit(2000001011.742:25681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11771 comm="syz.4.16375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2546.384625][   T30] audit: type=1326 audit(2000001011.742:25682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11771 comm="syz.4.16375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2546.505798][T11787] sch_tbf: burst 19872 is lower than device lo mtu (39799) !
[ 2547.640912][   T30] audit: type=1326 audit(2000001011.742:25683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11771 comm="syz.4.16375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2547.986278][T11791] netlink: 12 bytes leftover after parsing attributes in process `syz.4.16378'.
[ 2549.782533][T11811] xt_policy: output policy not valid in PREROUTING and INPUT
[ 2551.520100][T11834] futex_wake_op: syz.0.16396 tries to shift op by -1; fix this program
[ 2556.729201][   T30] kauditd_printk_skb: 51 callbacks suppressed
[ 2556.729221][   T30] audit: type=1400 audit(2000001022.682:25735): avc:  denied  { create } for  pid=11871 comm="syz.0.16397" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[ 2561.008145][T11897] futex_wake_op: syz.4.16403 tries to shift op by -1; fix this program
[ 2568.337718][T11957] futex_wake_op: syz.5.16417 tries to shift op by -1; fix this program
[ 2569.432632][T11967] IPv6: NLM_F_CREATE should be specified when creating new route
[ 2576.116587][T12019] futex_wake_op: syz.7.16435 tries to shift op by -1; fix this program
[ 2577.300577][T12025] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[ 2579.099853][T12055] netlink: 'syz.4.16447': attribute type 8 has an invalid length.
[ 2579.110766][   T30] audit: type=1326 audit(2000001045.082:25736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12052 comm="syz.4.16447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2579.150430][   T30] audit: type=1326 audit(2000001045.112:25737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12052 comm="syz.4.16447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2579.179173][   T30] audit: type=1326 audit(2000001045.112:25738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12052 comm="syz.4.16447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2579.211797][T12051] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[ 2579.258029][   T30] audit: type=1326 audit(2000001045.112:25739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12052 comm="syz.4.16447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2580.029824][   T30] audit: type=1326 audit(2000001045.112:25740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12052 comm="syz.4.16447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2580.053972][   T30] audit: type=1326 audit(2000001045.112:25741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12052 comm="syz.4.16447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2580.141309][   T30] audit: type=1326 audit(2000001045.112:25742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12052 comm="syz.4.16447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2580.174861][   T30] audit: type=1326 audit(2000001045.112:25743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12052 comm="syz.4.16447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2580.229564][   T30] audit: type=1326 audit(2000001045.112:25744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12052 comm="syz.4.16447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2580.289191][   T30] audit: type=1326 audit(2000001045.112:25745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12052 comm="syz.4.16447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2581.342939][T12073] futex_wake_op: syz.3.16450 tries to shift op by -1; fix this program
[ 2581.812009][T12074] overlayfs: failed to clone lowerpath
[ 2583.572058][T12103] sch_tbf: burst 19872 is lower than device lo mtu (39799) !
[ 2585.635565][T12122] overlayfs: failed to clone lowerpath
[ 2587.108858][T12141] futex_wake_op: syz.4.16467 tries to shift op by -1; fix this program
[ 2588.329482][T12152] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16471'.
[ 2588.937869][T12157] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 2589.939301][T12173] netlink: 'syz.7.16478': attribute type 4 has an invalid length.
[ 2590.953154][T12183] overlayfs: failed to clone lowerpath
[ 2593.094478][T12187] futex_wake_op: syz.4.16483 tries to shift op by -1; fix this program
[ 2594.678573][T12214] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 2595.705149][   T30] kauditd_printk_skb: 10 callbacks suppressed
[ 2595.705166][   T30] audit: type=1326 audit(2000001061.302:25756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12228 comm="syz.0.16493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2596.030830][   T30] audit: type=1326 audit(2000001061.302:25757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12228 comm="syz.0.16493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2596.056202][   T30] audit: type=1326 audit(2000001061.302:25758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12228 comm="syz.0.16493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2596.667323][   T30] audit: type=1326 audit(2000001061.302:25759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12228 comm="syz.0.16493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2596.706325][   T30] audit: type=1326 audit(2000001061.302:25760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12228 comm="syz.0.16493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2596.893475][   T30] audit: type=1326 audit(2000001061.302:25761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12228 comm="syz.0.16493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2596.930225][   T30] audit: type=1326 audit(2000001061.302:25762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12228 comm="syz.0.16493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc85dbd4963 code=0x7ffc0000
[ 2596.956002][   T30] audit: type=1326 audit(2000001061.302:25763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12228 comm="syz.0.16493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc85dbd33df code=0x7ffc0000
[ 2597.019671][T12252] overlayfs: failed to clone lowerpath
[ 2597.026441][   T30] audit: type=1326 audit(2000001061.302:25764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12228 comm="syz.0.16493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fc85dbd49b7 code=0x7ffc0000
[ 2597.050945][   T30] audit: type=1326 audit(2000001061.302:25765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12228 comm="syz.0.16493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc85dbd3290 code=0x7ffc0000
[ 2599.586953][T12246] overlayfs: failed to clone upperpath
[ 2599.907227][T12256] fuse: Bad value for 'fd'
[ 2603.784473][T12285] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 2607.586453][T12303] overlayfs: failed to clone upperpath
[ 2613.570088][T12318] overlayfs: failed to clone lowerpath
[ 2617.487832][T12345] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 2618.141860][T12350] netlink: 68 bytes leftover after parsing attributes in process `syz.4.16522'.
[ 2618.815981][T12360] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 2618.822878][T12363] netlink: 4 bytes leftover after parsing attributes in process `syz.7.16537'.
[ 2620.168921][T12369] netlink: 24 bytes leftover after parsing attributes in process `syz.7.16539'.
[ 2623.409878][T12398] overlayfs: failed to clone lowerpath
[ 2626.956764][T12416] SELinux: security_context_str_to_sid(user_u) failed for (dev ?, type ?) errno=-22
[ 2626.966672][T12416] tmpfs: Unknown parameter 'grpquota_block_hardlimit'
[ 2629.874496][T12425] netlink: 'syz.3.16545': attribute type 3 has an invalid length.
[ 2637.296883][T12464] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16555'.
[ 2638.160769][T12471] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 2638.691763][T12482] syz.4.16559[12482] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2638.709161][T12482] syz.4.16559[12482] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2640.929562][T12497] futex_wake_op: syz.4.16563 tries to shift op by 32; fix this program
[ 2647.547390][T12545] netlink: 4 bytes leftover after parsing attributes in process `syz.3.16578'.
[ 2648.636985][T12554] overlayfs: failed to clone upperpath
[ 2648.646602][T12554] xt_hashlimit: max too large, truncated to 1048576
[ 2649.107621][T12570] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 2649.116819][T12570] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[ 2649.125396][T12570] overlayfs: missing 'lowerdir'
[ 2649.205323][T12577] netlink: 'syz.3.16584': attribute type 3 has an invalid length.
[ 2650.749418][   T30] kauditd_printk_skb: 29 callbacks suppressed
[ 2650.749434][   T30] audit: type=1107 audit(2000001116.718:25795): pid=12605 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[ 2650.775650][T12608] netlink: 24 bytes leftover after parsing attributes in process `syz.7.16596'.
[ 2651.322020][T12614] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev ?, type ?) errno=-22
[ 2651.332573][T12614] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[ 2652.488569][   T30] audit: type=1400 audit(2000001118.429:25796): avc:  denied  { setattr } for  pid=12637 comm="syz.5.16606" name="file0" dev="tmpfs" ino=17457 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[ 2655.027034][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2660.694019][T12726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16628'.
[ 2660.893912][T12726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16628'.
[ 2660.903167][T12726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16628'.
[ 2660.912325][T12726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16628'.
[ 2660.921410][T12726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16628'.
[ 2664.985337][T12748] netlink: 4 bytes leftover after parsing attributes in process `syz.5.16634'.
[ 2665.671833][T12767] netlink: 'syz.4.16638': attribute type 1 has an invalid length.
[ 2665.742005][T12771] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16641'.
[ 2665.752030][T12771] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16641'.
[ 2665.761735][T12771] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16641'.
[ 2665.770959][T12771] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16641'.
[ 2665.780066][T12771] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16641'.
[ 2665.860614][T12774] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=6146 sclass=netlink_route_socket pid=12774 comm=syz.5.16642
[ 2666.656454][T12787] bridge3: the hash_elasticity option has been deprecated and is always 16
[ 2666.786511][T12787] netlink: 4 bytes leftover after parsing attributes in process `syz.3.16646'.
[ 2669.856137][T12818] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16654'.
[ 2669.866172][T12818] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16654'.
[ 2669.875458][T12818] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16654'.
[ 2669.884609][T12818] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16654'.
[ 2674.237616][T12852] xt_bpf: check failed: parse error
[ 2681.175890][T12901] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16674'.
[ 2681.186391][T12901] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16674'.
[ 2681.195583][T12901] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16674'.
[ 2681.204763][T12901] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16674'.
[ 2681.213838][T12901] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16674'.
[ 2681.651696][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 2681.659290][T12912] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 2681.668382][T12912] wireguard: wg2: Could not create IPv4 socket
[ 2681.674578][T12912] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check.
[ 2681.791533][ T9059] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2682.768682][ T9059] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2685.787309][T12951] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16695'.
[ 2685.798072][T12951] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16695'.
[ 2685.807341][T12951] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16695'.
[ 2685.816591][T12951] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16695'.
[ 2685.825780][T12951] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16695'.
[ 2689.018833][T12971] device veth1_macvtap entered promiscuous mode
[ 2689.025393][T12971] device macsec0 left promiscuous mode
[ 2689.031590][T12971] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2689.039064][T12971] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2689.056677][T12971] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[ 2689.065635][T12971] device ip6tnl2 left promiscuous mode
[ 2691.738103][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth15: link becomes ready
[ 2692.104507][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth14: link becomes ready
[ 2693.505831][T13001] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16711'.
[ 2693.516307][T13001] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16711'.
[ 2693.525537][T13001] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16711'.
[ 2693.534672][T13001] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16711'.
[ 2693.609534][T13003] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 2693.623382][T13003] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2693.636122][T13003] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[ 2702.027839][T17412] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2702.036448][T17412] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2702.044218][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2702.055161][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2702.058910][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2702.065131][ T9059] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2702.079907][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2702.089727][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2702.107045][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2702.128087][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2702.136635][ T9059] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2702.157351][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): 
1
@ÿ: link becomes ready
[ 2702.165199][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2702.173573][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 2702.182638][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2702.188232][ T9059] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2702.191659][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 2702.206712][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2702.215161][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 2702.223335][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2702.231644][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2702.789474][ T9059] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2702.798608][ T9059] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2702.807288][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2702.816066][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2702.824790][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2702.833434][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2702.841677][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2702.850021][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2702.858472][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2702.867121][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2702.875741][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2702.884363][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2702.892112][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2702.900165][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[ 2702.908020][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[ 2702.915993][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth5: link becomes ready
[ 2702.923740][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[ 2702.932137][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth7: link becomes ready
[ 2702.939968][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[ 2702.949078][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2704.356684][T13103] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2704.370497][T13103] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[ 2707.401767][T17412] ip6_tnl_xmit_ctl: 7 callbacks suppressed
[ 2707.407676][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2707.589502][T17412] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2707.706112][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2709.640990][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2710.201219][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2710.643044][ T9059] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2710.900372][ T9059] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2711.418937][T13205] netlink: 'syz.5.16780': attribute type 30 has an invalid length.
[ 2711.899934][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2713.271450][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2713.315361][T13242] netlink: 'syz.7.16794': attribute type 30 has an invalid length.
[ 2714.348354][T13286] netlink: 'syz.0.16807': attribute type 30 has an invalid length.
[ 2714.759202][T13312] netlink: 'syz.4.16820': attribute type 30 has an invalid length.
[ 2715.048109][T13332] netlink: 'syz.4.16826': attribute type 30 has an invalid length.
[ 2715.158539][    C0] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2715.991369][T13349] netlink: 'syz.3.16830': attribute type 30 has an invalid length.
[ 2716.713013][T13358] netlink: 156 bytes leftover after parsing attributes in process `syz.5.16840'.
[ 2716.976695][T11068] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2717.014959][T13361] netlink: 'syz.0.16833': attribute type 30 has an invalid length.
[ 2717.077466][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2717.357640][T11068] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2717.420740][T13376] netlink: 'syz.4.16841': attribute type 30 has an invalid length.
[ 2717.450964][T13380] netlink: 'syz.5.16843': attribute type 30 has an invalid length.
[ 2717.561754][T13388] netlink: 'syz.5.16847': attribute type 30 has an invalid length.
[ 2717.572504][T13389] netlink: 'syz.0.16857': attribute type 30 has an invalid length.
[ 2717.643392][T13399] netlink: 'syz.0.16862': attribute type 30 has an invalid length.
[ 2717.668653][T13400] netlink: 'syz.5.16851': attribute type 30 has an invalid length.
[ 2718.818301][T13416] netlink: 156 bytes leftover after parsing attributes in process `syz.4.16856'.
[ 2718.997101][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2719.005145][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2719.042412][T13424] netlink: 'syz.0.16859': attribute type 30 has an invalid length.
[ 2719.130416][T13429] netlink: 'syz.7.16861': attribute type 30 has an invalid length.
[ 2720.388916][T13445] netlink: 128 bytes leftover after parsing attributes in process `syz.7.16870'.
[ 2721.400623][T13474] netlink: 'syz.4.16879': attribute type 30 has an invalid length.
[ 2722.570142][T13499] netlink: 128 bytes leftover after parsing attributes in process `syz.5.16886'.
[ 2722.956897][T13522] validate_nla: 1 callbacks suppressed
[ 2722.956915][T13522] netlink: 'syz.3.16893': attribute type 30 has an invalid length.
[ 2723.675479][T13523] syz.0.16891[13523] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2723.677007][T13523] syz.0.16891[13523] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2725.566071][T13558] netlink: 'syz.5.16905': attribute type 30 has an invalid length.
[ 2725.652823][T13563] netlink: 'syz.5.16906': attribute type 30 has an invalid length.
[ 2727.294802][T13575] syz.7.16907[13575] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2727.294879][T13575] syz.7.16907[13575] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2728.148394][T13593] netlink: 'syz.0.16914': attribute type 30 has an invalid length.
[ 2728.264942][T13600] netlink: 'syz.4.16917': attribute type 30 has an invalid length.
[ 2728.519371][T13616] netlink: 'syz.3.16934': attribute type 30 has an invalid length.
[ 2728.531772][T13617] netlink: 'syz.0.16923': attribute type 30 has an invalid length.
[ 2728.567354][T13623] netlink: 'syz.3.16936': attribute type 30 has an invalid length.
[ 2728.591425][T13625] netlink: 'syz.3.16927': attribute type 30 has an invalid length.
[ 2729.656048][T13629] syz.4.16926[13629] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2729.656132][T13629] syz.4.16926[13629] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2729.921740][T13626] netlink: 128 bytes leftover after parsing attributes in process `syz.0.16924'.
[ 2730.049977][T13635] netlink: 'syz.7.16930': attribute type 30 has an invalid length.
[ 2730.443642][T13643] netlink: 'syz.5.16931': attribute type 30 has an invalid length.
[ 2730.981202][T13656] netlink: 128 bytes leftover after parsing attributes in process `syz.0.16943'.
[ 2731.671091][T13658] syz.5.16947[13658] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2731.671187][T13658] syz.5.16947[13658] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2731.800859][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2732.430598][    C0] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2733.703644][T13662] netlink: 'syz.3.16939': attribute type 30 has an invalid length.
[ 2733.742613][T13664] netlink: 'syz.7.16940': attribute type 30 has an invalid length.
[ 2733.844026][T13675] netlink: 'syz.4.16945': attribute type 30 has an invalid length.
[ 2733.892043][T13682] netlink: 'syz.0.16958': attribute type 30 has an invalid length.
[ 2733.917156][T13685] netlink: 'syz.4.16948': attribute type 30 has an invalid length.
[ 2734.350205][T13696] syz.0.16951[13696] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2734.350288][T13696] syz.0.16951[13696] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2735.160723][T13698] netlink: 'syz.3.16953': attribute type 30 has an invalid length.
[ 2735.232958][T13705] netlink: 'syz.4.16956': attribute type 30 has an invalid length.
[ 2735.325542][T13711] netlink: 'syz.0.16957': attribute type 30 has an invalid length.
[ 2735.376939][T13713] netlink: 'syz.4.16960': attribute type 27 has an invalid length.
[ 2735.426471][T13717] netlink: 'syz.0.16962': attribute type 30 has an invalid length.
[ 2735.439896][T13713] device bridge_slave_0 entered promiscuous mode
[ 2735.449429][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2735.466024][T13713] device veth0_vlan left promiscuous mode
[ 2735.484896][T13713] device veth0_vlan entered promiscuous mode
[ 2735.527071][T11068] ip6_tunnel: syztnl2 xmit: Local address not yet configured!
[ 2735.535346][T11068] ip6_tunnel: syztnl2 xmit: Local address not yet configured!
[ 2735.554386][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2735.563116][T17405] ip6_tunnel: syztnl2 xmit: Local address not yet configured!
[ 2735.582910][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2735.593299][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2735.601806][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2735.610644][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2735.619574][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2735.628065][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): 
c
@ÿ: link becomes ready
[ 2735.636948][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2735.639069][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2735.645642][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 2735.672148][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2735.680402][T17405] ip6_tunnel: syztnl2 xmit: Local address not yet configured!
[ 2735.685468][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 2735.696366][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2735.706143][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 2735.716300][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2735.724598][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2735.733042][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2735.742061][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2735.751154][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2735.759789][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2735.768330][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2735.776554][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2735.785241][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2735.793584][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2735.802143][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2735.810770][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2735.819448][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2735.827368][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): ÿÿÿÿÿÿ: link becomes ready
[ 2735.835203][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[ 2735.843045][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[ 2735.850633][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth5: link becomes ready
[ 2735.858115][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[ 2735.865848][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth7: link becomes ready
[ 2735.873689][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[ 2735.881391][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth9: link becomes ready
[ 2735.888973][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth8: link becomes ready
[ 2735.896543][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth11: link becomes ready
[ 2735.904433][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth10: link becomes ready
[ 2735.912252][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth13: link becomes ready
[ 2735.920036][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth12: link becomes ready
[ 2735.927621][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth15: link becomes ready
[ 2735.935259][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2735.935583][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth14: link becomes ready
[ 2735.950857][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth17: link becomes ready
[ 2735.958430][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth16: link becomes ready
[ 2735.966170][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth19: link becomes ready
[ 2735.974398][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth18: link becomes ready
[ 2735.982163][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth21: link becomes ready
[ 2735.989873][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth20: link becomes ready
[ 2735.997475][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth23: link becomes ready
[ 2736.005176][T11242] IPv6: ADDRCONF(NETDEV_CHANGE): veth22: link becomes ready
[ 2736.029353][T11068] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2736.496762][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2736.509021][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2736.527476][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2736.557655][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2736.576406][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2736.585264][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2736.594956][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2736.604276][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2736.613370][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2736.623239][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2736.643120][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2736.651971][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2736.660117][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[ 2736.667906][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[ 2736.679908][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[ 2736.909019][T17405] ip6_tnl_xmit_ctl: 8 callbacks suppressed
[ 2736.909037][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2738.174812][T11068] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2738.262863][   T58] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2738.279286][   T58] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2738.586720][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2738.595046][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2738.634138][T13823] device veth1_to_batadv left promiscuous mode
[ 2738.688185][T13832] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2738.697002][T13823] device veth0_vlan left promiscuous mode
[ 2738.703442][T13823] device veth0_vlan entered promiscuous mode
[ 2738.713737][T13823] device veth1_macvtap left promiscuous mode
[ 2738.721136][T13823] device veth1_macvtap entered promiscuous mode
[ 2738.727820][T13823] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2738.745742][T13859] validate_nla: 16 callbacks suppressed
[ 2738.745762][T13859] netlink: 'syz.7.17001': attribute type 30 has an invalid length.
[ 2738.760553][T13860] netlink: 'syz.4.17002': attribute type 30 has an invalid length.
[ 2738.796969][T13823] device veth1_to_batadv entered promiscuous mode
[ 2738.803650][T13823] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[ 2738.826893][T13864] netlink: 'syz.4.17005': attribute type 30 has an invalid length.
[ 2738.835916][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2738.853360][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2738.869558][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2738.878113][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2738.886557][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2738.895423][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2738.903947][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2738.913856][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2738.923630][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[ 2738.931437][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2738.940589][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2739.707228][    C1] ip6_tunnel: syztnl2 xmit: Local address not yet configured!
[ 2739.897581][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2739.906265][T13875] netlink: 'syz.4.17009': attribute type 30 has an invalid length.
[ 2739.916403][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2739.940365][T13832] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2739.948834][T13832] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2739.949488][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2739.965380][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2739.973058][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[ 2739.981357][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[ 2739.990017][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[ 2739.998224][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth8: link becomes ready
[ 2740.006151][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth10: link becomes ready
[ 2740.014717][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth12: link becomes ready
[ 2740.022960][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth14: link becomes ready
[ 2741.237170][T13902] netlink: 'syz.5.17015': attribute type 30 has an invalid length.
[ 2741.250043][T13906] netlink: 'syz.0.17016': attribute type 30 has an invalid length.
[ 2741.324384][T13912] netlink: 'syz.5.17019': attribute type 27 has an invalid length.
[ 2741.457338][T13912] tipc: Resetting bearer <eth:syzkaller0>
[ 2741.468107][T13917] netlink: 'syz.7.17020': attribute type 30 has an invalid length.
[ 2741.496910][T13920] netlink: 'syz.3.17021': attribute type 30 has an invalid length.
[ 2741.582773][T13914] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 2741.602703][T13914] device veth1_to_batadv left promiscuous mode
[ 2741.623581][T13914] device veth1_macvtap left promiscuous mode
[ 2741.637150][T13914] device veth1_macvtap entered promiscuous mode
[ 2741.647734][T13914] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2741.656834][T13927] netlink: 'syz.3.17026': attribute type 30 has an invalid length.
[ 2742.426040][    C1] ip6_tnl_xmit_ctl: 11 callbacks suppressed
[ 2742.426059][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2742.637471][T13914] device veth1_to_batadv entered promiscuous mode
[ 2742.644344][T13914] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[ 2742.667484][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2742.686428][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2742.698176][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2742.714621][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2742.723393][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2742.731960][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2742.741206][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2742.749831][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2742.758567][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2743.320347][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[ 2743.487813][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2744.025519][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2744.235921][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2744.247861][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2744.256406][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2744.264666][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2744.272933][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[ 2744.281950][T13944] netlink: 'syz.0.17030': attribute type 30 has an invalid length.
[ 2744.286521][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[ 2744.309217][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2744.318271][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[ 2744.326387][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth8: link becomes ready
[ 2744.334102][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth10: link becomes ready
[ 2744.342088][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth12: link becomes ready
[ 2744.350502][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth14: link becomes ready
[ 2744.358217][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth16: link becomes ready
[ 2745.144823][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2746.567608][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2746.645264][T13832] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2746.653126][T13832] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2746.678651][T13962] netlink: 'syz.0.17036': attribute type 30 has an invalid length.
[ 2746.695873][T13963] fuse: Bad value for 'rootmode'
[ 2746.725926][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2746.770940][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2746.785479][T13972] netlink: 'syz.5.17037': attribute type 30 has an invalid length.
[ 2746.804608][T13973] netlink: 'syz.0.17040': attribute type 27 has an invalid length.
[ 2747.037980][T13982] netlink: 'syz.5.17052': attribute type 30 has an invalid length.
[ 2747.136712][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2747.171613][T13975] device veth1_to_batadv left promiscuous mode
[ 2748.164422][T13975] device veth0_vlan left promiscuous mode
[ 2748.170448][T13975] device veth0_vlan entered promiscuous mode
[ 2748.222415][T13837] ip6_tnl_xmit_ctl: 1 callbacks suppressed
[ 2748.222434][T13837] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2748.237837][T13837] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2748.273305][T13993] netlink: 'syz.4.17044': attribute type 30 has an invalid length.
[ 2748.318534][T13975] device veth1_macvtap left promiscuous mode
[ 2748.352282][T13975] device veth1_macvtap entered promiscuous mode
[ 2748.371983][T14000] netlink: 'syz.4.17046': attribute type 30 has an invalid length.
[ 2748.423333][    C1] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2748.429896][T13975] device veth1_to_batadv entered promiscuous mode
[ 2748.431515][    C1] ip6_tunnel: syztnl2 xmit: Local address not yet configured!
[ 2748.441396][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2748.453150][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2748.464084][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2748.483754][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2748.495216][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[ 2750.343530][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2750.432506][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2750.440936][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 2750.449414][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2750.457968][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 2750.467851][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2750.476653][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 2750.488900][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2750.498925][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2750.507532][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2750.516546][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2750.526208][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2750.534866][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2750.543754][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2750.551899][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2750.560820][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2750.576653][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2750.585760][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2750.594389][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2750.602995][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2750.613787][T14019] fuse: Bad value for 'rootmode'
[ 2750.619755][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2750.627945][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2750.636399][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready
[ 2750.644105][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2750.652620][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2750.661145][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2750.669008][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[ 2750.676858][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[ 2750.685065][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth5: link becomes ready
[ 2750.692902][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[ 2750.700739][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth7: link becomes ready
[ 2750.708882][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[ 2750.716991][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth9: link becomes ready
[ 2750.725720][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth8: link becomes ready
[ 2750.733735][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth11: link becomes ready
[ 2750.741674][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth10: link becomes ready
[ 2750.749929][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth13: link becomes ready
[ 2750.758142][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth12: link becomes ready
[ 2750.766499][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[ 2750.774447][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth15: link becomes ready
[ 2750.782704][T11220] IPv6: ADDRCONF(NETDEV_CHANGE): veth14: link becomes ready
[ 2750.795359][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2750.803620][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2750.861398][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2750.904520][T13837] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2751.023634][T14032] syz.0.17049[14032] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2751.023806][T14032] syz.0.17049[14032] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2751.631889][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2753.541425][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2754.177449][T13837] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2754.198305][T13837] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2754.241165][T13837] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2754.255028][T14039] netlink: 'syz.7.17059': attribute type 30 has an invalid length.
[ 2754.455532][T14045] netlink: 'syz.7.17062': attribute type 30 has an invalid length.
[ 2754.990425][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2756.057444][T13837] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2756.067985][T13837] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2756.083773][T13837] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2756.126564][T13837] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2756.207938][T14070] fuse: Bad value for 'rootmode'
[ 2756.223337][T14077] netlink: 'syz.5.17072': attribute type 30 has an invalid length.
[ 2756.355655][T14080] netlink: 'syz.3.17074': attribute type 30 has an invalid length.
[ 2756.739757][T17405] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2756.751200][T14089] netlink: 'syz.3.17087': attribute type 30 has an invalid length.
[ 2756.811119][   T30] audit: type=1326 audit(2000001222.837:25797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14074 comm="syz.0.17083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2757.289614][   T30] audit: type=1326 audit(2000001222.837:25798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14074 comm="syz.0.17083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2757.313658][   T30] audit: type=1326 audit(2000001222.887:25799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14074 comm="syz.0.17083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2757.338337][   T30] audit: type=1326 audit(2000001222.887:25800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14074 comm="syz.0.17083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2757.362905][   T30] audit: type=1326 audit(2000001222.887:25801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14074 comm="syz.0.17083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2757.389665][   T30] audit: type=1326 audit(2000001222.887:25802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14074 comm="syz.0.17083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2757.413755][   T30] audit: type=1326 audit(2000001222.887:25803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14074 comm="syz.0.17083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2757.437813][   T30] audit: type=1326 audit(2000001222.897:25804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14074 comm="syz.0.17083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2757.462766][   T30] audit: type=1326 audit(2000001222.897:25805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14074 comm="syz.0.17083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2757.542762][   T30] audit: type=1326 audit(2000001222.917:25806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14074 comm="syz.0.17083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc85dbd4929 code=0x7ffc0000
[ 2759.826623][T14106] syz.3.17077[14106] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2759.826712][T14106] syz.3.17077[14106] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2759.938589][    C1] ip6_tnl_xmit_ctl: 1 callbacks suppressed
[ 2759.938607][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2760.418244][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2760.946913][T14120] netlink: 'syz.4.17086': attribute type 30 has an invalid length.
[ 2760.982580][T14125] netlink: 'syz.3.17089': attribute type 30 has an invalid length.
[ 2763.137040][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2763.145122][    C1] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2763.655965][T14166] netlink: 'syz.0.17104': attribute type 30 has an invalid length.
[ 2764.243016][   T30] kauditd_printk_skb: 12 callbacks suppressed
[ 2764.243031][   T30] audit: type=1326 audit(2000001230.261:25819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14167 comm="syz.4.17105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2764.308661][   T30] audit: type=1326 audit(2000001230.301:25820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14167 comm="syz.4.17105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2764.388528][T14177] syz.7.17097[14177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2764.391642][T14177] syz.7.17097[14177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2765.486736][   T30] audit: type=1326 audit(2000001230.301:25821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14167 comm="syz.4.17105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2765.580729][   T30] audit: type=1326 audit(2000001230.301:25822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14167 comm="syz.4.17105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2765.605962][   T30] audit: type=1326 audit(2000001230.301:25823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14167 comm="syz.4.17105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2765.696420][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2765.704532][    C1] ip6_tunnel: syztnl2 xmit: Local address not yet configured!
[ 2765.731802][   T30] audit: type=1326 audit(2000001230.301:25824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14167 comm="syz.4.17105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2765.778974][   T30] audit: type=1326 audit(2000001230.301:25825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14167 comm="syz.4.17105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2766.319369][   T30] audit: type=1326 audit(2000001230.301:25826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14167 comm="syz.4.17105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2766.344872][   T30] audit: type=1326 audit(2000001230.301:25827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14167 comm="syz.4.17105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2766.396669][   T30] audit: type=1326 audit(2000001230.311:25828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14167 comm="syz.4.17105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedbb817929 code=0x7ffc0000
[ 2766.566305][T14207] netlink: 'syz.0.17117': attribute type 30 has an invalid length.
[ 2766.975910][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2767.039582][T14218] netlink: 'syz.7.17121': attribute type 30 has an invalid length.
[ 2768.183465][T14228] netlink: 'syz.7.17134': attribute type 30 has an invalid length.
[ 2768.255164][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2769.038407][T14239] syz.5.17120[14239] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2769.064406][T14239] syz.5.17120[14239] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2769.395539][T14248] netlink: 'syz.4.17130': attribute type 30 has an invalid length.
[ 2769.534357][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2769.542443][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2770.584775][   T30] kauditd_printk_skb: 4 callbacks suppressed
[ 2770.584789][   T30] audit: type=1326 audit(2000001236.613:25833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14243 comm="syz.5.17126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2770.745056][   T30] audit: type=1326 audit(2000001236.613:25834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14243 comm="syz.5.17126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2771.019768][   T30] audit: type=1326 audit(2000001236.643:25835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14243 comm="syz.5.17126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2771.044416][   T30] audit: type=1326 audit(2000001236.643:25836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14243 comm="syz.5.17126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2771.082228][T14274] netlink: 'syz.7.17137': attribute type 30 has an invalid length.
[ 2771.134778][   T30] audit: type=1326 audit(2000001236.643:25837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14243 comm="syz.5.17126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2771.209587][   T30] audit: type=1326 audit(2000001236.643:25838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14243 comm="syz.5.17126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2771.260277][   T30] audit: type=1326 audit(2000001236.643:25839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14243 comm="syz.5.17126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2771.325457][   T30] audit: type=1326 audit(2000001236.643:25840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14243 comm="syz.5.17126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2771.360900][T14290] netlink: 'syz.5.17144': attribute type 30 has an invalid length.
[ 2771.393253][   T30] audit: type=1326 audit(2000001236.643:25841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14243 comm="syz.5.17126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2771.491830][   T30] audit: type=1326 audit(2000001236.663:25842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14243 comm="syz.5.17126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1a3d9929 code=0x7ffc0000
[ 2771.982063][T14306] syz.0.17139[14306] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2771.982152][T14306] syz.0.17139[14306] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2772.484612][T14312] netlink: 8 bytes leftover after parsing attributes in process `syz.4.17153'.
[ 2772.509833][T14312] netlink: 104 bytes leftover after parsing attributes in process `syz.4.17153'.
[ 2774.294274][T14333] netlink: 'syz.5.17158': attribute type 30 has an invalid length.
[ 2774.539942][T14344] fuse: Bad value for 'fd'
[ 2776.547667][T14367] netlink: 'syz.0.17181': attribute type 30 has an invalid length.
[ 2776.597056][T14371] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17172'.
[ 2779.129920][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2779.637359][T14381] netlink: 'syz.0.17175': attribute type 30 has an invalid length.
[ 2780.103309][T14388] netlink: 60 bytes leftover after parsing attributes in process `syz.3.17173'.
[ 2781.932827][T14407] netlink: 'syz.3.17184': attribute type 30 has an invalid length.
[ 2782.209212][T14410] netlink: 5 bytes leftover after parsing attributes in process `syz.4.17183'.
[ 2782.635371][T14426] netlink: 8 bytes leftover after parsing attributes in process `syz.7.17189'.
[ 2782.654333][T14426] netlink: 104 bytes leftover after parsing attributes in process `syz.7.17189'.
[ 2782.828436][T14429] fuse: Bad value for 'fd'
[ 2783.444057][T14442] netlink: 60 bytes leftover after parsing attributes in process `syz.4.17196'.
[ 2784.247821][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2786.500066][T14451] netlink: 60 bytes leftover after parsing attributes in process `syz.0.17207'.
[ 2787.016846][T14459] netlink: 'syz.0.17199': attribute type 30 has an invalid length.
[ 2787.431488][T14467] netlink: 5 bytes leftover after parsing attributes in process `syz.7.17200'.
[ 2787.972606][T14487] fuse: Bad value for 'fd'
[ 2788.086139][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2790.495059][T14503] netlink: 60 bytes leftover after parsing attributes in process `syz.7.17214'.
[ 2790.932565][T14510] netlink: 'syz.4.17217': attribute type 30 has an invalid length.
[ 2791.507516][T14523] netlink: 5 bytes leftover after parsing attributes in process `syz.0.17221'.
[ 2791.795865][T14547] netlink: 'syz.7.17231': attribute type 30 has an invalid length.
[ 2792.564198][    C1] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured!
[ 2795.463350][T14582] netlink: 'syz.5.17243': attribute type 30 has an invalid length.
[ 2795.515794][T14584] netlink: 'syz.4.17242': attribute type 30 has an invalid length.
[ 2795.762837][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2796.207428][T14626] netlink: 'syz.5.17259': attribute type 30 has an invalid length.
[ 2796.239733][T14629] netlink: 'syz.7.17260': attribute type 30 has an invalid length.
[ 2796.252745][T14631] netlink: 'syz.4.17261': attribute type 30 has an invalid length.
[ 2796.343170][T14643] netlink: 'syz.7.17275': attribute type 30 has an invalid length.
[ 2796.723631][T14670] netlink: 'syz.0.17273': attribute type 30 has an invalid length.
[ 2796.892548][T14684] netlink: 'syz.7.17280': attribute type 30 has an invalid length.
[ 2796.907235][T14690] netlink: 'syz.0.17281': attribute type 30 has an invalid length.
[ 2797.712490][T14727] netlink: 'syz.4.17297': attribute type 30 has an invalid length.
[ 2799.483018][T14875] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2799.521301][T14875] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2799.528893][T14875] device bridge_slave_0 entered promiscuous mode
[ 2799.541158][T14875] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2799.561143][T14875] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2799.568844][T14875] device bridge_slave_1 entered promiscuous mode
[ 2799.601162][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2799.609655][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2799.617536][    C1] ip6_tunnel: syztnl2 xmit: Local address not yet configured!
[ 2799.625084][    C1] ------------[ cut here ]------------
[ 2799.630547][    C1] refcount_t: addition on 0; use-after-free.
[ 2799.636687][    C1] WARNING: CPU: 1 PID: 2088 at lib/refcount.c:25 refcount_warn_saturate+0x104/0x1a0
[ 2799.646122][    C1] Modules linked in:
[ 2799.650059][    C1] CPU: 1 PID: 2088 Comm: syz-executor Tainted: G        W         5.15.185-syzkaller-00339-ge678c93d43cc #0
[ 2799.661545][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2799.671651][    C1] RIP: 0010:refcount_warn_saturate+0x104/0x1a0
[ 2799.677847][    C1] Code: 04 01 48 c7 c7 60 ef 62 85 e8 08 9d 50 02 0f 0b eb df e8 5f d6 1c ff c6 05 ba f8 99 04 01 48 c7 c7 a0 ee 62 85 e8 ec 9c 50 02 <0f> 0b eb c3 e8 43 d6 1c ff c6 05 9f f8 99 04 01 48 c7 c7 00 ef 62
[ 2799.697513][    C1] RSP: 0018:ffffc900001d09e0 EFLAGS: 00010246
[ 2799.703627][    C1] RAX: 883c8da47ed11600 RBX: 0000000000000002 RCX: ffff88813596cf00
[ 2799.711652][    C1] RDX: 0000000000000100 RSI: 0000000000000102 RDI: 0000000000000000
[ 2799.719659][    C1] RBP: ffffc900001d09f0 R08: dffffc0000000000 R09: fffff5200003a089
[ 2799.727692][    C1] R10: fffff5200003a089 R11: 1ffff9200003a088 R12: ffff888120272008
[ 2799.735721][    C1] R13: dffffc0000000000 R14: 0000000000000002 R15: ffffc900001d0ba0
[ 2799.743766][    C1] FS:  0000555589bf3500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 2799.752752][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2799.759359][    C1] CR2: 00007fb4f98866c0 CR3: 00000001219de000 CR4: 00000000003526a0
[ 2799.767402][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2799.775426][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2799.783469][    C1] Call Trace:
[ 2799.786767][    C1]  <IRQ>
[ 2799.789637][    C1]  tipc_crypto_xmit+0x1938/0x2400
[ 2799.794753][    C1]  ? tipc_crypto_do_cmd+0xcf0/0xcf0
[ 2799.799975][    C1]  ? __copy_skb_header+0x437/0x600
[ 2799.805141][    C1]  tipc_bearer_xmit_skb+0x226/0x360
[ 2799.810356][    C1]  ? __skb_clone+0x47a/0x790
[ 2799.815006][    C1]  ? tipc_bearer_mtu+0x160/0x160
[ 2799.819982][    C1]  ? skb_clone+0x202/0x360
[ 2799.824451][    C1]  tipc_disc_timeout+0x6a2/0x830
[ 2799.829403][    C1]  ? __kasan_check_write+0x14/0x20
[ 2799.834578][    C1]  ? tipc_disc_init_msg+0x600/0x600
[ 2799.839803][    C1]  ? __kasan_check_write+0x14/0x20
[ 2799.844966][    C1]  ? _raw_spin_lock_irq+0x8f/0xe0
[ 2799.850014][    C1]  ? _raw_spin_lock_irqsave+0x110/0x110
[ 2799.850972][    C0] ------------[ cut here ]------------
[ 2799.855599][    C1]  ? wg_expired_retransmit_handshake+0xd8/0x230
[ 2799.861056][    C0] refcount_t: saturated; leaking memory.
[ 2799.867276][    C1]  ? tipc_disc_init_msg+0x600/0x600
[ 2799.873014][    C0] WARNING: CPU: 0 PID: 14895 at lib/refcount.c:22 refcount_warn_saturate+0x158/0x1a0
[ 2799.878088][    C1]  call_timer_fn+0x38/0x290
[ 2799.887538][    C0] Modules linked in:
[ 2799.892040][    C1]  ? tipc_disc_init_msg+0x600/0x600
[ 2799.895930][    C0] CPU: 0 PID: 14895 Comm: syz.3.17355 Tainted: G        W         5.15.185-syzkaller-00339-ge678c93d43cc #0
[ 2799.901123][    C1]  __run_timers+0x639/0x9a0
[ 2799.912559][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2799.917059][    C1]  ? calc_index+0x200/0x200
[ 2799.927199][    C0] RIP: 0010:refcount_warn_saturate+0x158/0x1a0
[ 2799.931705][    C1]  ? sched_clock_cpu+0x18/0x3c0
[ 2799.937835][    C0] Code: 04 01 48 c7 c7 40 ee 62 85 e8 b4 9c 50 02 0f 0b eb 8b e8 0b d6 1c ff c6 05 65 f8 99 04 01 48 c7 c7 40 ee 62 85 e8 98 9c 50 02 <0f> 0b e9 6c ff ff ff e8 ec d5 1c ff c6 05 4a f8 99 04 01 48 c7 c7
[ 2799.942685][    C1]  run_timer_softirq+0x6a/0xf0
[ 2799.962298][    C0] RSP: 0018:ffffc900000079e0 EFLAGS: 00010246
[ 2799.967140][    C1]  handle_softirqs+0x250/0x560
[ 2799.973207][    C0] RAX: c52e1018407d4300 RBX: 0000000000000001 RCX: ffff8881193e2780
[ 2799.977959][    C1]  __irq_exit_rcu+0x52/0xf0
[ 2799.985924][    C0] RDX: 0000000000000100 RSI: 0000000000000101 RDI: 0000000000000000
[ 2799.990412][    C1]  irq_exit_rcu+0x9/0x10
[ 2799.998375][    C0] RBP: ffffc900000079f0 R08: 0000000000000004 R09: 0000000000000003
[ 2800.002627][    C1]  sysvec_apic_timer_interrupt+0xa9/0xc0
[ 2800.010586][    C0] R10: fffff52000000e9c R11: 1ffff92000000e9c R12: ffff888120272008
[ 2800.016219][    C1]  </IRQ>
[ 2800.024192][    C0] R13: dffffc0000000000 R14: 0000000000000001 R15: ffffc90000007ba0
[ 2800.027119][    C1]  <TASK>
[ 2800.035096][    C0] FS:  00007f111c6076c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 2800.038023][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 2800.046946][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2800.046959][    C0] CR2: 0000001b2d91bff8 CR3: 0000000132f8d000 CR4: 00000000003526b0
[ 2800.052933][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x1/0x60
[ 2800.059511][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2800.067480][    C1] Code: 00 00 0f 0b 0f 1f 44 00 00 55 48 89 e5 53 48 89 fb e8 13 00 00 00 48 8b 3d fc 3a 80 05 48 89 de e8 94 b8 3d 00 5b 5d c3 00 55 <48> 89 e5 48 8b 45 08 65 48 8b 0d e0 c6 99 7e 65 8b 15 e1 c6 99 7e
[ 2800.073535][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2800.081519][    C1] RSP: 0018:ffffc90000d9f6b0 EFLAGS: 00000202
[ 2800.101250][    C0] Call Trace:
[ 2800.101261][    C0]  <IRQ>
[ 2800.109222][    C1] 
[ 2800.109228][    C1] RAX: ffffffff819c5d57 RBX: 0000000000000028 RCX: ffff88813596cf00
[ 2800.115291][    C0]  tipc_crypto_xmit+0x1938/0x2400
[ 2800.118561][    C1] RDX: 0000000000000000 RSI: 0000000000000028 RDI: 0000000000000020
[ 2800.121424][    C0]  ? tipc_crypto_do_cmd+0xcf0/0xcf0
[ 2800.123743][    C1] RBP: ffffc90000d9f970 R08: dffffc0000000000 R09: fffff94000920179
[ 2800.131717][    C0]  ? __copy_skb_header+0x437/0x600
[ 2800.136828][    C1] R10: fffff94000920179 R11: 1ffffd4000920178 R12: 8000000124030007
[ 2800.144801][    C0]  tipc_bearer_xmit_skb+0x226/0x360
[ 2800.149995][    C1] R13: 00007fb4f759e000 R14: ffffea0004900c00 R15: ffff88811a3c8cb8
[ 2800.158113][    C0]  ? __skb_clone+0x47a/0x790
[ 2800.163262][    C1]  ? copy_page_range+0x1107/0x2890
[ 2800.171247][    C0]  ? tipc_bearer_mtu+0x160/0x160
[ 2800.176453][    C1]  ? copy_page_range+0x11c1/0x2890
[ 2800.184452][    C0]  ? skb_clone+0x202/0x360
[ 2800.189050][    C1]  ? pfn_valid+0x1d0/0x1d0
[ 2800.194148][    C0]  tipc_disc_timeout+0x6a2/0x830
[ 2800.199074][    C1]  copy_mm+0xbdc/0x1390
[ 2800.204186][    C0]  ? tipc_disc_init_msg+0x600/0x600
[ 2800.208588][    C1]  ? copy_signal+0x600/0x600
[ 2800.213000][    C0]  ? __kasan_check_write+0x14/0x20
[ 2800.217929][    C1]  ? __init_rwsem+0xfc/0x1d0
[ 2800.222084][    C0]  ? _raw_spin_lock_irq+0x8f/0xe0
[ 2800.227296][    C1]  ? copy_signal+0x4cb/0x600
[ 2800.231880][    C0]  ? _raw_spin_lock_irqsave+0x110/0x110
[ 2800.236993][    C1]  copy_process+0x115c/0x3210
[ 2800.241577][    C0]  ? tipc_disc_init_msg+0x600/0x600
[ 2800.246592][    C1]  ? __pidfd_prepare+0x150/0x150
[ 2800.251177][    C0]  call_timer_fn+0x38/0x290
[ 2800.256713][    C1]  kernel_clone+0x23f/0x940
[ 2800.261384][    C0]  ? tipc_disc_init_msg+0x600/0x600
[ 2800.266570][    C1]  ? do_user_addr_fault+0xa64/0x1180
[ 2800.271501][    C0]  __run_timers+0x639/0x9a0
[ 2800.276001][    C1]  ? create_io_thread+0x130/0x130
[ 2800.280494][    C0]  ? calc_index+0x200/0x200
[ 2800.285687][    C1]  __x64_sys_clone+0x176/0x1d0
[ 2800.290968][    C0]  ? sched_clock_cpu+0x18/0x3c0
[ 2800.295459][    C1]  ? __ia32_sys_vfork+0xf0/0xf0
[ 2800.300469][    C0]  run_timer_softirq+0x6a/0xf0
[ 2800.304975][    C1]  ? fpregs_assert_state_consistent+0xb1/0xe0
[ 2800.309720][    C0]  handle_softirqs+0x250/0x560
[ 2800.314576][    C1]  x64_sys_call+0x41f/0x9a0
[ 2800.319411][    C0]  __irq_exit_rcu+0x52/0xf0
[ 2800.324177][    C1]  do_syscall_64+0x4c/0xa0
[ 2800.330224][    C0]  irq_exit_rcu+0x9/0x10
[ 2800.334984][    C1]  ? clear_bhb_loop+0x50/0xa0
[ 2800.339471][    C0]  sysvec_apic_timer_interrupt+0xa9/0xc0
[ 2800.343988][    C1]  ? clear_bhb_loop+0x50/0xa0
[ 2800.348377][    C0]  </IRQ>
[ 2800.352617][    C1]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2800.357276][    C0]  <TASK>
[ 2800.357285][    C0]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 2800.362908][    C1] RIP: 0033:0x7fb4f8b26193
[ 2800.367564][    C0] RIP: 0010:kasan_check_range+0x13/0x290
[ 2800.370488][    C1] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00
[ 2800.376367][    C0] Code: 0f 0b b8 ea ff ff ff c3 0f 0b b8 ea ff ff ff c3 00 00 cc cc 00 00 cc b0 01 48 85 f6 0f 84 a9 01 00 00 55 48 89 e5 41 57 41 56 <53> 49 89 f8 49 01 f0 0f 82 58 02 00 00 49 89 f8 49 c1 e8 2f 41 81
[ 2800.379300][    C1] RSP: 002b:00007fff516d66f8 EFLAGS: 00000246
[ 2800.385272][    C0] RSP: 0018:ffffc90000ea75c0 EFLAGS: 00000202
[ 2800.389677][    C1]  ORIG_RAX: 0000000000000038
[ 2800.395308][    C0] 
[ 2800.395314][    C0] RAX: ffffffff818f5a01 RBX: ffffea00051ca708 RCX: ffffffff818f5a3b
[ 2800.414914][    C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb4f8b26193
[ 2800.434518][    C0] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffea00051ca700
[ 2800.440573][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2800.446628][    C0] RBP: ffffc90000ea75d0 R08: dffffc0000000000 R09: fffff94000a394e1
[ 2800.451303][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
[ 2800.453618][    C0] R10: fffff94000a394e1 R11: 1ffffd4000a394e0 R12: ffffea00051ca700
[ 2800.461591][    C1] R10: 0000555589bf37d0 R11: 0000000000000246 R12: 0000000000000001
[ 2800.469558][    C0] R13: ffffc90000ea7748 R14: ffffea00051ca700 R15: dffffc0000000000
[ 2800.477536][    C1] R13: 00000000000927c0 R14: 00000000002abc00 R15: 00007fff516d6890
[ 2800.485509][    C0]  ? next_uptodate_page+0x411/0xa40
[ 2800.493481][    C1]  </TASK>
[ 2800.501450][    C0]  ? next_uptodate_page+0x44b/0xa40
[ 2800.501474][    C0]  __kasan_check_write+0x14/0x20
[ 2800.509428][    C1] ---[ end trace b2e19dcd2fd13c0d ]---
[ 2800.517401][    C0]  next_uptodate_page+0x44b/0xa40
[ 2800.525397][    C1] ------------[ cut here ]------------
[ 2800.533345][    C0]  filemap_map_pages+0x827/0x12c0
[ 2800.538521][    C1] refcount_t: underflow; use-after-free.
[ 2800.538646][    C1] WARNING: CPU: 1 PID: 2088 at lib/refcount.c:28 refcount_warn_saturate+0x120/0x1a0
[ 2800.541552][    C0]  ? filemap_read_page+0x340/0x340
[ 2800.546726][    C1] Modules linked in:
[ 2800.551656][    C0]  ? finish_fault+0x38a/0x820
[ 2800.557095][    C1] CPU: 1 PID: 2088 Comm: syz-executor Tainted: G        W         5.15.185-syzkaller-00339-ge678c93d43cc #0
[ 2800.562110][    C0]  handle_pte_fault+0x1a13/0x2680
[ 2800.567549][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2800.572569][    C0]  ? fault_around_bytes_set+0xc0/0xc0
[ 2800.578178][    C1] RIP: 0010:refcount_warn_saturate+0x120/0x1a0
[ 2800.587542][    C0]  do_handle_mm_fault+0x1a6d/0x1d50
[ 2800.592652][    C1] Code: 04 01 48 c7 c7 a0 ee 62 85 e8 ec 9c 50 02 0f 0b eb c3 e8 43 d6 1c ff c6 05 9f f8 99 04 01 48 c7 c7 00 ef 62 85 e8 d0 9c 50 02 <0f> 0b eb a7 e8 27 d6 1c ff c6 05 80 f8 99 04 01 48 c7 c7 40 ee 62
[ 2800.596542][    C0]  ? _raw_spin_unlock+0x4d/0x70
[ 2800.601209][    C1] RSP: 0018:ffffc900001d09e0 EFLAGS: 00010246
[ 2800.612651][    C0]  ? follow_page_pte+0x3b7/0x980
[ 2800.617661][    C1] 
[ 2800.617667][    C1] RAX: 883c8da47ed11600 RBX: 0000000000000003 RCX: ffff88813596cf00
[ 2800.627716][    C0]  ? numa_migrate_prep+0xd0/0xd0
[ 2800.633082][    C1] RDX: 0000000000000100 RSI: 0000000000000102 RDI: 0000000000000000
[ 2800.639219][    C0]  ? follow_page_mask+0x7a6/0xf10
[ 2800.644408][    C1] RBP: ffffc900001d09f0 R08: 0000000000000004 R09: 0000000000000003
[ 2800.664017][    C0]  ? vmacache_find+0x1fa/0x490
[ 2800.668853][    C1] R10: fffff5200003a0ec R11: 1ffff9200003a0ec R12: ffff888120272008
[ 2800.674917][    C0]  __get_user_pages+0x7ee/0x10a0
[ 2800.679837][    C1] R13: dffffc0000000000 R14: 0000000000000003 R15: 00000000c0000000
[ 2800.682167][    C0]  ? up_write+0x7b/0x290
[ 2800.690121][    C1] FS:  0000555589bf3500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 2800.695060][    C0]  ? populate_vma_page_range+0xf0/0xf0
[ 2800.703031][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2800.708039][    C0]  __mm_populate+0x319/0x460
[ 2800.716004][    C1] CR2: 00007fb4f98866c0 CR3: 00000001219de000 CR4: 00000000003526a0
[ 2800.716022][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2800.720788][    C0]  ? check_vma_flags+0x2d0/0x2d0
[ 2800.728744][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2800.733685][    C0]  vm_mmap_pgoff+0x247/0x410
[ 2800.741655][    C1] Call Trace:
[ 2800.741662][    C1]  <IRQ>
[ 2800.745968][    C0]  ? account_locked_vm+0x260/0x260
[ 2800.754892][    C1]  tipc_crypto_xmit+0x1a82/0x2400
[ 2800.760327][    C0]  ? __x64_sys_futex+0x100/0x100
[ 2800.766917][    C1]  ? tipc_crypto_do_cmd+0xcf0/0xcf0
[ 2800.771495][    C0]  ? unlock_page_memcg+0x130/0x130
[ 2800.779456][    C1]  ? __copy_skb_header+0x437/0x600
[ 2800.779478][    C1]  tipc_bearer_xmit_skb+0x226/0x360
[ 2800.787449][    C0]  ksys_mmap_pgoff+0xf6/0x1d0
[ 2800.792381][    C1]  ? __skb_clone+0x47a/0x790
[ 2800.800336][    C0]  ? __kasan_check_write+0x14/0x20
[ 2800.804921][    C1]  ? tipc_bearer_mtu+0x160/0x160
[ 2800.808189][    C0]  __x64_sys_mmap+0xfa/0x110
[ 2800.811039][    C1]  ? skb_clone+0x202/0x360
[ 2800.816126][    C0]  x64_sys_call+0x83/0x9a0
[ 2800.821158][    C1]  tipc_disc_timeout+0x6a2/0x830
[ 2800.826076][    C0]  do_syscall_64+0x4c/0xa0
[ 2800.831266][    C1]  ? __kasan_check_write+0x14/0x20
[ 2800.836370][    C0]  ? clear_bhb_loop+0x50/0xa0
[ 2800.841485][    C1]  ? tipc_disc_init_msg+0x600/0x600
[ 2800.846666][    C0]  ? clear_bhb_loop+0x50/0xa0
[ 2800.851344][    C1]  ? __kasan_check_write+0x14/0x20
[ 2800.855916][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2800.861021][    C1]  ? _raw_spin_lock_irq+0x8f/0xe0
[ 2800.865942][    C0] RIP: 0033:0x7f111df9e929
[ 2800.870526][    C1]  ? _raw_spin_lock_irqsave+0x110/0x110
[ 2800.874922][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2800.879316][    C1]  ? wg_expired_retransmit_handshake+0xd8/0x230
[ 2800.884244][    C0] RSP: 002b:00007f111c607038 EFLAGS: 00000246
[ 2800.888648][    C1]  ? tipc_disc_init_msg+0x600/0x600
[ 2800.893755][    C0]  ORIG_RAX: 0000000000000009
[ 2800.893764][    C0] RAX: ffffffffffffffda RBX: 00007f111e1c5fa0 RCX: 00007f111df9e929
[ 2800.898435][    C1]  call_timer_fn+0x38/0x290
[ 2800.903642][    C0] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[ 2800.908301][    C1]  ? tipc_disc_init_msg+0x600/0x600
[ 2800.913427][    C0] RBP: 00007f111e020b39 R08: ffffffffffffffff R09: 0000000000000000
[ 2800.919312][    C1]  __run_timers+0x639/0x9a0
[ 2800.924350][    C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 2800.928792][    C1]  ? calc_index+0x200/0x200
[ 2800.934349][    C0] R13: 0000000000000000 R14: 00007f111e1c5fa0 R15: 00007ffe213f6408
[ 2800.953964][    C1]  ? sched_clock_cpu+0x18/0x3c0
[ 2800.960194][    C0]  </TASK>
[ 2800.966272][    C1]  run_timer_softirq+0x6a/0xf0
[ 2800.971458][    C0] ---[ end trace b2e19dcd2fd13c0e ]---
[ 2800.976115][    C1]  handle_softirqs+0x250/0x560
[ 2801.057689][    C1]  __irq_exit_rcu+0x52/0xf0
[ 2801.062258][    C1]  irq_exit_rcu+0x9/0x10
[ 2801.066526][    C1]  sysvec_apic_timer_interrupt+0xa9/0xc0
[ 2801.072215][    C1]  </IRQ>
[ 2801.075248][    C1]  <TASK>
[ 2801.078188][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 2801.084227][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x1/0x60
[ 2801.090344][    C1] Code: 00 00 0f 0b 0f 1f 44 00 00 55 48 89 e5 53 48 89 fb e8 13 00 00 00 48 8b 3d fc 3a 80 05 48 89 de e8 94 b8 3d 00 5b 5d c3 00 55 <48> 89 e5 48 8b 45 08 65 48 8b 0d e0 c6 99 7e 65 8b 15 e1 c6 99 7e
[ 2801.110017][    C1] RSP: 0018:ffffc90000d9f6b0 EFLAGS: 00000202
[ 2801.116241][    C1] RAX: ffffffff819c5d57 RBX: 0000000000000028 RCX: ffff88813596cf00
[ 2801.124279][    C1] RDX: 0000000000000000 RSI: 0000000000000028 RDI: 0000000000000020
[ 2801.132289][    C1] RBP: ffffc90000d9f970 R08: dffffc0000000000 R09: fffff94000920179
[ 2801.140288][    C1] R10: fffff94000920179 R11: 1ffffd4000920178 R12: 8000000124030007
[ 2801.148325][    C1] R13: 00007fb4f759e000 R14: ffffea0004900c00 R15: ffff88811a3c8cb8
[ 2801.156381][    C1]  ? copy_page_range+0x1107/0x2890
[ 2801.161562][    C1]  ? copy_page_range+0x11c1/0x2890
[ 2801.166708][    C1]  ? pfn_valid+0x1d0/0x1d0
[ 2801.171185][    C1]  copy_mm+0xbdc/0x1390
[ 2801.175386][    C1]  ? copy_signal+0x600/0x600
[ 2801.180002][    C1]  ? __init_rwsem+0xfc/0x1d0
[ 2801.184642][    C1]  ? copy_signal+0x4cb/0x600
[ 2801.189258][    C1]  copy_process+0x115c/0x3210
[ 2801.193981][    C1]  ? __pidfd_prepare+0x150/0x150
[ 2801.198938][    C1]  kernel_clone+0x23f/0x940
[ 2801.203491][    C1]  ? do_user_addr_fault+0xa64/0x1180
[ 2801.208840][    C1]  ? create_io_thread+0x130/0x130
[ 2801.213938][    C1]  __x64_sys_clone+0x176/0x1d0
[ 2801.218732][    C1]  ? __ia32_sys_vfork+0xf0/0xf0
[ 2801.223673][    C1]  ? fpregs_assert_state_consistent+0xb1/0xe0
[ 2801.229760][    C1]  x64_sys_call+0x41f/0x9a0
[ 2801.234324][    C1]  do_syscall_64+0x4c/0xa0
[ 2801.238763][    C1]  ? clear_bhb_loop+0x50/0xa0
[ 2801.243509][    C1]  ? clear_bhb_loop+0x50/0xa0
[ 2801.248196][    C1]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2801.254148][    C1] RIP: 0033:0x7fb4f8b26193
[ 2801.258572][    C1] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00
[ 2801.278232][    C1] RSP: 002b:00007fff516d66f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2801.286692][    C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb4f8b26193
[ 2801.294713][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2801.302714][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
[ 2801.310723][    C1] R10: 0000555589bf37d0 R11: 0000000000000246 R12: 0000000000000001
[ 2801.318702][    C1] R13: 00000000000927c0 R14: 00000000002abc00 R15: 00007fff516d6890
[ 2801.326724][    C1]  </TASK>
[ 2801.329752][    C1] ---[ end trace b2e19dcd2fd13c0f ]---
[ 2801.367588][T14903] validate_nla: 5 callbacks suppressed
[ 2801.367605][T14903] netlink: 'syz.3.17367': attribute type 30 has an invalid length.
[ 2801.439032][T14910] netlink: 'syz.7.17362': attribute type 30 has an invalid length.
[ 2801.591493][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2801.610582][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2801.653485][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2801.700753][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2801.721845][T14924] netlink: 20 bytes leftover after parsing attributes in process `syz.0.17368'.
[ 2801.735423][T11324] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2801.742559][T11324] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2801.771316][T11450] tipc: Disabling bearer <eth:syzkaller0>
[ 2801.780464][T11450] tipc: Disabling bearer <udp:s>
[ 2801.795788][T11450] tipc: Disabling bearer <udp:syz1>
[ 2801.815994][T11450] tipc: Left network mode
[ 2801.816040][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2801.849711][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2801.869719][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2801.882017][T11324] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2801.889104][T11324] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2801.902396][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2801.910711][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2801.930434][T11450] ------------[ cut here ]------------
[ 2801.936613][T11450] refcount_t: saturated; leaking memory.
[ 2801.942853][T11450] WARNING: CPU: 0 PID: 11450 at lib/refcount.c:19 refcount_warn_saturate+0x13c/0x1a0
[ 2801.953346][T11450] Modules linked in:
[ 2801.957273][T11450] CPU: 0 PID: 11450 Comm: kworker/u4:110 Tainted: G        W         5.15.185-syzkaller-00339-ge678c93d43cc #0
[ 2801.969432][T11450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2801.979835][T11450] Workqueue: netns cleanup_net
[ 2801.985046][T11450] RIP: 0010:refcount_warn_saturate+0x13c/0x1a0
[ 2801.991629][T11450] Code: 04 01 48 c7 c7 00 ef 62 85 e8 d0 9c 50 02 0f 0b eb a7 e8 27 d6 1c ff c6 05 80 f8 99 04 01 48 c7 c7 40 ee 62 85 e8 b4 9c 50 02 <0f> 0b eb 8b e8 0b d6 1c ff c6 05 65 f8 99 04 01 48 c7 c7 40 ee 62
[ 2802.013345][T11450] RSP: 0018:ffffc900070477c0 EFLAGS: 00010246
[ 2802.019649][T11450] RAX: 80d0bec4e4704800 RBX: 0000000000000000 RCX: ffff88812cc83b40
[ 2802.028070][T11450] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[ 2802.051999][T11450] RBP: ffffc900070477d0 R08: dffffc0000000000 R09: ffffed103ee065e8
[ 2802.070098][T11450] R10: ffffed103ee065e8 R11: 1ffff1103ee065e7 R12: 1ffff92000e08f04
[ 2802.088286][T11450] R13: ffff888126a4708c R14: 0000000000000000 R15: 0000000000000cc0
[ 2802.103990][T11450] FS:  0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 2802.114048][T11450] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2802.121184][T11450] CR2: 00007fc85ddfdbac CR3: 00000001313c0000 CR4: 00000000003526b0
[ 2802.129438][T11450] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2802.137801][T11450] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2802.146114][T11450] Call Trace:
[ 2802.151850][T11450]  <TASK>
[ 2802.157427][T11450]  nf_nat_masq_schedule+0x439/0x4c0
[ 2802.163063][T11450]  ? __kasan_check_write+0x14/0x20
[ 2802.168759][T11450]  ? nf_nat_masq_schedule+0x4c0/0x4c0
[ 2802.180570][T14946] netlink: 'syz.7.17375': attribute type 30 has an invalid length.
[ 2802.188635][T11450]  ? masq_device_event+0xd0/0xd0
[ 2802.199672][T11450]  ? nfqnl_rcv_dev_event+0x441/0x470
[ 2802.205238][T11450]  ? __kasan_check_read+0x11/0x20
[ 2802.210533][T11450]  masq_device_event+0x9b/0xd0
[ 2802.215501][T11450]  raw_notifier_call_chain+0x90/0x100
[ 2802.222530][T11450]  dev_close_many+0x32d/0x4d0
[ 2802.227405][T11450]  ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20
[ 2802.235110][T11450]  ? __dev_open+0x4c0/0x4c0
[ 2802.239881][T11450]  ? _raw_spin_lock_irq+0x8f/0xe0
[ 2802.245209][T11450]  ? _raw_spin_lock_irqsave+0x110/0x110
[ 2802.256470][T11450]  ? generic_exec_single+0x226/0x390
[ 2802.261985][T11450]  ? __kasan_check_read+0x11/0x20
[ 2802.267215][T11450]  unregister_netdevice_many+0x44c/0x1990
[ 2802.273349][T11450]  ? alloc_netdev_mqs+0xc90/0xc90
[ 2802.278588][T11450]  ? unregister_netdevice_queue+0x1aa/0x360
[ 2802.284798][T11450]  ? list_netdevice+0x4c0/0x4c0
[ 2802.290279][T11450]  ip6gre_exit_batch_net+0x5a5/0x5f0
[ 2802.295856][T11450]  ? ip6gre_init_net+0x340/0x340
[ 2802.301005][T11450]  ? ip6gre_init_net+0x340/0x340
[ 2802.306131][T11450]  cleanup_net+0x602/0xad0
[ 2802.310821][T11450]  ? ops_init+0x4a0/0x4a0
[ 2802.315316][T11450]  ? pwq_dec_nr_in_flight+0x18c/0x3c0
[ 2802.320903][T11450]  process_one_work+0x6be/0xba0
[ 2802.325920][T11450]  worker_thread+0xa59/0x1200
[ 2802.330889][T11450]  kthread+0x411/0x500
[ 2802.335134][T11450]  ? worker_clr_flags+0x190/0x190
[ 2802.340398][T11450]  ? kthread_blkcg+0xd0/0xd0
[ 2802.345200][T11450]  ret_from_fork+0x1f/0x30
[ 2802.354403][T11450]  </TASK>
[ 2802.358618][T11450] ---[ end trace b2e19dcd2fd13c10 ]---
[ 2802.370493][T14955] netlink: 'syz.3.17377': attribute type 30 has an invalid length.
[ 2802.407253][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2802.416239][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2802.446683][T14960] netlink: 20 bytes leftover after parsing attributes in process `syz.3.17379'.
[ 2802.447103][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2802.486237][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2802.500392][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2802.518089][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2802.530863][T14875] device veth0_vlan entered promiscuous mode
[ 2802.563426][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2802.580212][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2802.595063][T14875] device veth1_macvtap entered promiscuous mode
[ 2802.612511][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2802.622491][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2802.660097][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2802.688526][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2802.713750][T11324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2802.732641][T14976] netlink: 'syz.0.17387': attribute type 30 has an invalid length.
[ 2802.774072][   T30] kauditd_printk_skb: 18 callbacks suppressed
[ 2802.774086][   T30] audit: type=1400 audit(2000001268.817:25861): avc:  denied  { mounton } for  pid=14875 comm="syz-executor" path="/root/syzkaller.t1iyCO/syz-tmp" dev="sda1" ino=2053 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 2802.830471][T14980] netlink: 'syz.5.17348': attribute type 30 has an invalid length.
[ 2802.853664][   T30] audit: type=1400 audit(2000001268.817:25862): avc:  denied  { mounton } for  pid=14875 comm="syz-executor" path="/root/syzkaller.t1iyCO/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[ 2802.935637][   T30] audit: type=1400 audit(2000001268.817:25863): avc:  denied  { mounton } for  pid=14875 comm="syz-executor" path="/root/syzkaller.t1iyCO/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=132986 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[ 2803.099896][   T30] audit: type=1400 audit(2000001268.847:25864): avc:  denied  { mounton } for  pid=14875 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=556 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 2803.194642][T11450] device veth1_to_batadv left promiscuous mode
[ 2803.195968][   T30] audit: type=1400 audit(2000001268.847:25865): avc:  denied  { mounton } for  pid=14875 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[ 2803.225867][T11450] device veth1_macvtap left promiscuous mode
[ 2803.293585][T14994] netlink: 20 bytes leftover after parsing attributes in process `syz.4.17394'.
[ 2803.873168][T15011] netlink: 'syz.4.17401': attribute type 30 has an invalid length.
[ 2804.079721][T14995] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2804.086789][T14995] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2804.129842][T14995] device bridge_slave_0 entered promiscuous mode
[ 2804.149014][T14995] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2804.156518][T14995] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2804.164318][T14995] device bridge_slave_1 entered promiscuous mode
[ 2804.234426][T11450] tipc: Disabling bearer <udp:s>
[ 2804.239740][T11450] tipc: Disabling bearer <udp:syz1>
[ 2804.245829][T11450] tipc: Disabling bearer <udp:syz0>
[ 2804.258218][T11450] tipc: Left network mode
[ 2804.300246][T15026] netlink: 20 bytes leftover after parsing attributes in process `syz.0.17405'.
[ 2804.338044][T14995] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2804.345280][T14995] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2804.352651][T14995] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2804.359707][T14995] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2804.381932][T15031] netlink: 20 bytes leftover after parsing attributes in process `syz.0.17416'.
[ 2804.447710][T11339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2804.464484][T11339] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2804.493590][T11339] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2805.658055][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2805.676580][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2805.687223][T15046] netlink: 'syz.3.17413': attribute type 30 has an invalid length.
[ 2805.698907][T10377] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2805.705990][T10377] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2805.735786][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2805.750730][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2805.764967][T10377] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2805.772083][T10377] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2805.798986][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2805.814028][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2805.852935][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2805.878876][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2805.897222][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2805.919748][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2805.942297][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2805.966759][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2805.985931][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2806.007130][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2806.029024][T14995] device veth0_vlan entered promiscuous mode
[ 2806.064780][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2806.085276][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2806.108240][T14995] device veth1_macvtap entered promiscuous mode
[ 2806.152399][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2806.163701][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2806.175169][T15070] netlink: 'syz.3.17424': attribute type 30 has an invalid length.
[ 2806.198676][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2806.223222][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2806.241761][T10377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2806.279654][   T30] audit: type=1400 audit(2000001272.319:25866): avc:  denied  { write } for  pid=14995 comm="syz-executor" name="cgroup.procs" dev="cgroup" ino=577 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:net_conf_t:s0"
[ 2807.405695][   T30] audit: type=1400 audit(2000001272.319:25867): avc:  denied  { open } for  pid=14995 comm="syz-executor" path="/syzcgroup/cpu/syz7/cgroup.procs" dev="cgroup" ino=577 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:net_conf_t:s0"
[ 2807.548230][T15088] netlink: 'syz.4.17439': attribute type 30 has an invalid length.
[ 2808.789461][T15108] netlink: 20 bytes leftover after parsing attributes in process `syz.4.17447'.
[ 2808.845523][T15117] netlink: 'syz.4.17437': attribute type 30 has an invalid length.
[ 2810.248378][T15114] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2810.255751][T15114] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2810.265699][T15119] device bridge_slave_1 left promiscuous mode
[ 2810.303954][T15119] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2810.409834][T15119] device bridge_slave_0 left promiscuous mode
[ 2810.458239][T15119] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2811.271716][T15138] netlink: 'syz.5.17448': attribute type 30 has an invalid length.
[ 2811.287528][T15095] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2811.301347][T15095] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2811.309321][T15095] device bridge_slave_0 entered promiscuous mode
[ 2811.673984][T15143] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2811.681262][T15143] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2812.370416][T15156] netlink: 'syz.4.17453': attribute type 30 has an invalid length.
[ 2812.385889][T15095] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2812.406527][T15095] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2812.414073][T15095] device bridge_slave_1 entered promiscuous mode
[ 2812.427068][T15159] netlink: 20 bytes leftover after parsing attributes in process `syz.4.17454'.
[ 2812.443306][T15150] device bridge_slave_1 left promiscuous mode
[ 2812.466051][T15150] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2812.475166][T15150] device bridge_slave_0 left promiscuous mode
[ 2812.481409][T15150] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2813.683097][T11450] ==================================================================
[ 2813.691316][T11450] BUG: KASAN: use-after-free in tcp_metrics_flush_all+0xd3/0x210
[ 2813.699053][T11450] Read of size 4 at addr ffff888126a4708c by task kworker/u4:110/11450
[ 2813.707294][T11450] 
[ 2813.709634][T11450] CPU: 1 PID: 11450 Comm: kworker/u4:110 Tainted: G        W         5.15.185-syzkaller-00339-ge678c93d43cc #0
[ 2813.721352][T11450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2813.731409][T11450] Workqueue: netns cleanup_net
[ 2813.736195][T11450] Call Trace:
[ 2813.739480][T11450]  <TASK>
[ 2813.742414][T11450]  __dump_stack+0x21/0x30
[ 2813.746751][T11450]  dump_stack_lvl+0xee/0x150
[ 2813.751341][T11450]  ? show_regs_print_info+0x20/0x20
[ 2813.756540][T11450]  ? load_image+0x3a0/0x3a0
[ 2813.761039][T11450]  ? __kasan_check_read+0x11/0x20
[ 2813.766056][T11450]  ? preempt_schedule_common+0xbe/0xf0
[ 2813.771509][T11450]  print_address_description+0x7f/0x2c0
[ 2813.777048][T11450]  ? tcp_metrics_flush_all+0xd3/0x210
[ 2813.782411][T11450]  kasan_report+0xf1/0x140
[ 2813.786821][T11450]  ? _raw_spin_lock_bh+0x8e/0xe0
[ 2813.791756][T11450]  ? tcp_metrics_flush_all+0xd3/0x210
[ 2813.797146][T11450]  kasan_check_range+0x280/0x290
[ 2813.802092][T11450]  __kasan_check_read+0x11/0x20
[ 2813.806934][T11450]  tcp_metrics_flush_all+0xd3/0x210
[ 2813.812125][T11450]  ? tcp_net_metrics_init+0x150/0x150
[ 2813.817494][T11450]  tcp_net_metrics_exit_batch+0x10/0x20
[ 2813.823049][T11450]  cleanup_net+0x602/0xad0
[ 2813.827462][T11450]  ? ops_init+0x4a0/0x4a0
[ 2813.831795][T11450]  ? pwq_dec_nr_in_flight+0x18c/0x3c0
[ 2813.837170][T11450]  process_one_work+0x6be/0xba0
[ 2813.842025][T11450]  worker_thread+0xa59/0x1200
[ 2813.846708][T11450]  kthread+0x411/0x500
[ 2813.850768][T11450]  ? worker_clr_flags+0x190/0x190
[ 2813.855791][T11450]  ? kthread_blkcg+0xd0/0xd0
[ 2813.860381][T11450]  ret_from_fork+0x1f/0x30
[ 2813.864796][T11450]  </TASK>
[ 2813.867811][T11450] 
[ 2813.870123][T11450] Allocated by task 1207:
[ 2813.874441][T11450]  __kasan_slab_alloc+0xbd/0xf0
[ 2813.879288][T11450]  slab_post_alloc_hook+0x4f/0x2b0
[ 2813.884394][T11450]  kmem_cache_alloc+0xf7/0x260
[ 2813.889162][T11450]  copy_net_ns+0x145/0x5c0
[ 2813.893596][T11450]  create_new_namespaces+0x3a2/0x660
[ 2813.898879][T11450]  unshare_nsproxy_namespaces+0x120/0x170
[ 2813.904592][T11450]  ksys_unshare+0x4ac/0x7b0
[ 2813.909093][T11450]  __x64_sys_unshare+0x38/0x40
[ 2813.913858][T11450]  x64_sys_call+0x442/0x9a0
[ 2813.918451][T11450]  do_syscall_64+0x4c/0xa0
[ 2813.922861][T11450]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2813.928749][T11450] 
[ 2813.931084][T11450] Freed by task 11450:
[ 2813.935145][T11450]  kasan_set_track+0x4a/0x70
[ 2813.939729][T11450]  kasan_set_free_info+0x23/0x40
[ 2813.944667][T11450]  ____kasan_slab_free+0x125/0x160
[ 2813.949771][T11450]  __kasan_slab_free+0x11/0x20
[ 2813.954531][T11450]  slab_free_freelist_hook+0xc2/0x190
[ 2813.959898][T11450]  kmem_cache_free+0x100/0x320
[ 2813.964657][T11450]  cleanup_net+0xa2d/0xad0
[ 2813.969075][T11450]  process_one_work+0x6be/0xba0
[ 2813.973923][T11450]  worker_thread+0xa59/0x1200
[ 2813.978598][T11450]  kthread+0x411/0x500
[ 2813.982660][T11450]  ret_from_fork+0x1f/0x30
[ 2813.987072][T11450] 
[ 2813.989388][T11450] Last potentially related work creation:
[ 2813.995094][T11450]  kasan_save_stack+0x3a/0x60
[ 2813.999804][T11450]  __kasan_record_aux_stack+0xd2/0x100
[ 2814.005257][T11450]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 2814.011058][T11450]  insert_work+0x51/0x310
[ 2814.015388][T11450]  __queue_work+0x8e5/0xc60
[ 2814.019887][T11450]  queue_work_on+0xd2/0x140
[ 2814.024384][T11450]  xfrm_policy_hash_rebuild+0x4f/0x60
[ 2814.029748][T11450]  xfrm_set_spdinfo+0x3f6/0x5e0
[ 2814.034594][T11450]  xfrm_user_rcv_msg+0x45c/0x6e0
[ 2814.039524][T11450]  netlink_rcv_skb+0x1e0/0x430
[ 2814.044287][T11450]  xfrm_netlink_rcv+0x72/0x90
[ 2814.048958][T11450]  netlink_unicast+0x87c/0xa40
[ 2814.053727][T11450]  netlink_sendmsg+0x86a/0xb70
[ 2814.058486][T11450]  ____sys_sendmsg+0x5a2/0x8c0
[ 2814.063249][T11450]  ___sys_sendmsg+0x1f0/0x260
[ 2814.067921][T11450]  __x64_sys_sendmsg+0x1e2/0x2a0
[ 2814.072851][T11450]  x64_sys_call+0x4b/0x9a0
[ 2814.077263][T11450]  do_syscall_64+0x4c/0xa0
[ 2814.081671][T11450]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2814.087557][T11450] 
[ 2814.089873][T11450] Second to last potentially related work creation:
[ 2814.096449][T11450]  kasan_save_stack+0x3a/0x60
[ 2814.101116][T11450]  __kasan_record_aux_stack+0xd2/0x100
[ 2814.106571][T11450]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 2814.112387][T11450]  insert_work+0x51/0x310
[ 2814.116719][T11450]  __queue_work+0x8e5/0xc60
[ 2814.121235][T11450]  queue_work_on+0xd2/0x140
[ 2814.125740][T11450]  xfrm_policy_hash_rebuild+0x4f/0x60
[ 2814.131223][T11450]  xfrm_set_spdinfo+0x3f6/0x5e0
[ 2814.136075][T11450]  xfrm_user_rcv_msg+0x45c/0x6e0
[ 2814.141007][T11450]  netlink_rcv_skb+0x1e0/0x430
[ 2814.145767][T11450]  xfrm_netlink_rcv+0x72/0x90
[ 2814.150437][T11450]  netlink_unicast+0x87c/0xa40
[ 2814.155198][T11450]  netlink_sendmsg+0x86a/0xb70
[ 2814.159962][T11450]  ____sys_sendmsg+0x5a2/0x8c0
[ 2814.164746][T11450]  ___sys_sendmsg+0x1f0/0x260
[ 2814.169423][T11450]  __x64_sys_sendmsg+0x1e2/0x2a0
[ 2814.174366][T11450]  x64_sys_call+0x4b/0x9a0
[ 2814.178776][T11450]  do_syscall_64+0x4c/0xa0
[ 2814.183204][T11450]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2814.189096][T11450] 
[ 2814.191421][T11450] The buggy address belongs to the object at ffff888126a47000
[ 2814.191421][T11450]  which belongs to the cache net_namespace of size 3968
[ 2814.205728][T11450] The buggy address is located 140 bytes inside of
[ 2814.205728][T11450]  3968-byte region [ffff888126a47000, ffff888126a47f80)
[ 2814.219087][T11450] The buggy address belongs to the page:
[ 2814.224710][T11450] page:ffffea00049a9000 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888126a41000 pfn:0x126a40
[ 2814.236243][T11450] head:ffffea00049a9000 order:3 compound_mapcount:0 compound_pincount:0
[ 2814.244573][T11450] flags: 0x4000000000010200(slab|head|zone=1)
[ 2814.250646][T11450] raw: 4000000000010200 ffff88810014a990 ffff88810014a990 ffff8881001c4480
[ 2814.259222][T11450] raw: ffff888126a41000 0000000000080003 00000001ffffffff 0000000000000000
[ 2814.267796][T11450] page dumped because: kasan: bad access detected
[ 2814.274193][T11450] page_owner tracks the page as allocated
[ 2814.279896][T11450] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 281, ts 22718978676, free_ts 0
[ 2814.298047][T11450]  post_alloc_hook+0x192/0x1b0
[ 2814.302807][T11450]  prep_new_page+0x1c/0x110
[ 2814.307323][T11450]  get_page_from_freelist+0x2cc5/0x2d50
[ 2814.312874][T11450]  __alloc_pages+0x18f/0x440
[ 2814.317476][T11450]  new_slab+0xa1/0x4d0
[ 2814.321535][T11450]  ___slab_alloc+0x381/0x810
[ 2814.326130][T11450]  __slab_alloc+0x49/0x90
[ 2814.330449][T11450]  kmem_cache_alloc+0x138/0x260
[ 2814.335292][T11450]  copy_net_ns+0x145/0x5c0
[ 2814.339712][T11450]  create_new_namespaces+0x3a2/0x660
[ 2814.344990][T11450]  unshare_nsproxy_namespaces+0x120/0x170
[ 2814.350718][T11450]  ksys_unshare+0x4ac/0x7b0
[ 2814.355237][T11450]  __x64_sys_unshare+0x38/0x40
[ 2814.360001][T11450]  x64_sys_call+0x442/0x9a0
[ 2814.364513][T11450]  do_syscall_64+0x4c/0xa0
[ 2814.368934][T11450]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2814.374852][T11450] page_owner free stack trace missing
[ 2814.380211][T11450] 
[ 2814.382535][T11450] Memory state around the buggy address:
[ 2814.388152][T11450]  ffff888126a46f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2814.396207][T11450]  ffff888126a47000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2814.404259][T11450] >ffff888126a47080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2814.412413][T11450]                       ^
[ 2814.416732][T11450]  ffff888126a47100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2814.424806][T11450]  ffff888126a47180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 2814.432861][T11450] ==================================================================
[ 2814.440907][T11450] Disabling lock debugging due to kernel taint
[ 2814.447928][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 2814.457472][   T30] audit: type=1400 audit(2000001280.502:25868): avc:  denied  { write } for  pid=273 comm="syz-executor" path="pipe:[14966]" dev="pipefs" ino=14966 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[ 2814.505982][T15180] netlink: 'syz.7.17461': attribute type 30 has an invalid length.
[ 2814.506113][   T30] audit: type=1400 audit(2000001280.532:25869): avc:  denied  { read } for  pid=83 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 2814.540687][   T30] audit: type=1400 audit(2000001280.532:25870): avc:  denied  { search } for  pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2814.568145][   T30] audit: type=1400 audit(2000001280.532:25871): avc:  denied  { append } for  pid=83 comm="syslogd" name="messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 2814.604777][   T30] audit: type=1400 audit(2000001280.532:25872): avc:  denied  { open } for  pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 2814.694554][   T30] audit: type=1400 audit(2000001280.532:25873): avc:  denied  { getattr } for  pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 2814.909965][T11450] tipc: Disabling bearer <udp:syz2>
[ 2814.922790][T11450] tipc: Disabling bearer <udp:syz0>
[ 2814.945247][T11450] tipc: Left network mode
[ 2814.953976][T11450] tipc: Disabling bearer <udp:syz0>
[ 2814.960050][T11450] tipc: Disabling bearer <udp:syz1>
[ 2814.965954][T11450] tipc: Left network mode
[ 2815.750731][T11450] device veth1_to_batadv left promiscuous mode
[ 2815.757111][T11450] device veth1_macvtap left promiscuous mode
[ 2815.763131][T11450] device veth0_vlan left promiscuous mode
[ 2817.078184][T11450] tipc: Disabling bearer <udp:syz2>
[ 2817.083469][T11450] tipc: Left network mode
[ 2817.994912][T11450] device bridge_slave_1 left promiscuous mode
[ 2818.001068][T11450] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2818.008610][T11450] device bridge_slave_0 left promiscuous mode
[ 2818.014806][T11450] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2818.024775][T11450] device veth1_macvtap left promiscuous mode
[ 2818.030790][T11450] device veth0_vlan left promiscuous mode
[ 2818.036709][T11450] device veth1_macvtap left promiscuous mode
[ 2818.042711][T11450] device veth0_vlan left promiscuous mode
[ 2818.049056][T11450] device veth0_vlan left promiscuous mode