last executing test programs:

11m35.642125563s ago: executing program 32 (id=96):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=ANY=[@ANYBLOB="540000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="15020000fe0f00001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3, @ANYBLOB="080004"], 0x54}, 0x1, 0xba01, 0x0, 0x4010}, 0x0)

10m58.779652539s ago: executing program 33 (id=1070):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x13)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000280)={0xf7ffffba, 0xf21f96af, 0x4e4a, 0x7, 0xc, "00000000001a0004ff7d0d0000220100", 0x100000a, 0x27})
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000001c0)=0x8)

10m58.057764472s ago: executing program 34 (id=1083):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_config_ext={0x3fffffffc, 0x4}, 0x11111a, 0x0, 0x0, 0x3, 0xfff, 0x8001, 0x7fff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@noload}, {@noload}, {@data_err_abort}, {@noload}, {@data_err_ignore}, {@auto_da_alloc}]}, 0xff, 0x451, &(0x7f0000000940)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x82000, 0x12)
getdents(r0, &(0x7f00000004c0)=""/66, 0x42)

10m46.326713091s ago: executing program 35 (id=1230):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='lp', 0x2)
sendmmsg$inet(r0, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f00000003c0)="76cd3737249e92cdba", 0x9}, {0x0}, {0x0}], 0x3}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000300)="5d87983beb66847f43f344859bad98770a8811d5abac050ef453de3c", 0x1c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000ec0)=[{&(0x7f0000000740)="b973", 0x2}], 0x1}}], 0x4, 0x420d1)

10m41.084720812s ago: executing program 36 (id=1314):
r0 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
ptrace(0x10, r0)
ptrace$peeksig(0x4209, r0, &(0x7f0000000140)={0x0, 0x0, 0x4e}, &(0x7f0000000fc0))

9m29.711271946s ago: executing program 37 (id=2994):
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f00000000c0)=0xb, 0x4)
recvfrom$packet(r0, 0x0, 0x0, 0x20, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f00000003c0)=ANY=[], 0x0)

9m9.0434951s ago: executing program 38 (id=3421):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = memfd_create(&(0x7f0000000240)='+\x8b\x8a\xa9\x16\x11\x91J\xbc+  \x18\x17\xc2:}\xa3\x9bO\xdd\xdf\xdf\x92\xd5\xed\xb4\x17\xe5\xd6\x9a\xb2\xd8\x9ba\xde\xb2.F\xc0\x99}|\xaf\xd3\x1d\x84[*_\x9f\x9d\xb0rYP\x1b\x9f \xe0\x9cgq\x103\x89\x11\x87Rv\x169\xdf\xe3>B\x04\x00\x00\x00W\xd3\xec\xfb\xdf?\xa2\x90+\xa4!\xb2\xf2\xff\x90\a\xc3\x12\xc4;\xffh\xf1x=\xb9c\xce\x03h\xdap\x88U\x1788\x82\xd7\xfd\x83\x00Sx\x91%\x99_\xfe\xd4c\x83\x86\x0f\xa4a-\xaf\x9e\xd9\xef\xe0)]\x00F\xfa\x03\xbc4\xc4\x9a\v\x03\x8b\xa4\xf3\x8f\xf4\"\'\xd3\a9\x14H}j&~\xe9\x16\x83o\xbd\xab\xcd[\xbd\xcb\x04\xfc\xe7\xe3\x9e?\x12\xf0\xf4\x83M3\xd88\x92?@\v\xe6\xd1\xd2\xe4\xde\xdaUeJ\x9fR\xd1`\xfa\xc8\v\xed\xfd\x0e\xc8\x89W\x847\x88\x82\x94\x14\xe33\xb7H\xc8b\xd6@3F#\xb7\x04C\x8dm\t\x16a\x0fI\xf4\xfe\xf8\x06j\x19Pz&\xb8\x0f\x98`W\xdb\xc6\"81A\xa4\x8bT\xf1\xcb\xab\xa3\t\xef\xdf&\x0e\xad\x03\x123.\xc2V\xaa\xd5\xf8\xde\x8aV\xa4p{\xcez\xa2\x92\xdb8*wLO\f\x97X\x05\x9a\xc2\xe8\x85\x9d\xcb\xc8\xf0\xc4\x01\x03\xe3?\x9f1\xf4\xfb\xa5y`KB\xdf\xae#\x94C\a\x04\xea\xccG\xf2\b\x8f\xf7\xb1\xe96\x90\xf5P\xa4\'\xce\xe3\xa24\x196\xc5Q\xa1K\x95\xd6\xfal\xe9\xd1\\\r&\xb2c\xb3\x8d\xa7\xb7\xa8\x03S\xbd\xdd\b{\xae\f\x10\xc2\xbb\xd0\xdd*\xa3\xb4\fJ\x00X\xab`N; LF\xa5D\xee\xdf\x7f\x80p\xf6o\x1c\xbdXR\xf2\xa0\x81a\xa1\xe1B\x93Xn\xaf\xfc\x05?\xab\xac\x91x\xa8#\xe1\xbeQ\xd1^\x9b\xb9)\xd3\n\xf7(3!\x18\b\xc0\xaampRl\xfdQ\x03\x8c\xd5\xe4\\\xed\x9a\xd1?\xd21\xc8\x90\x1dl|\xd1\x14\xbc3\xe0\x1e\x0e\xe6\x88Y\x99K\x93\x1c@_P\x8c\xc7\x9eZ\xb74KT:\x8a\xdbJ#w\x18\x14\x00\x93\x86\xa5wo\xf6M\xe7D\xf4*\xe3X\x1d\x19\x83\xa7w\xc7+7\x89s\xed\x8a\xd7O\xdd\rhh`\xc0\xa8$\x06pu\xa0\xd0L\x0ez@I\xb8\x83\xb2f\x93j\a0I\xc8l\xe5\x9b\x06\xb5\xac`d\xa3\xcf/\x14\x10\xab\xab\t\xec\xc1c\fA\xaf\x14\xef\xbap@*7\x86\xdf\',\x03Y\xb1$\xf0\xb5}\xf0\x82%)9`\x8f\x04\x85m\x80\xd2\xcf@\x06}\xea\xe7w`\xa5\x11\x9f\x9b\x9e\x8f\xb7cb\x1a\xe1\xcf\x87\x1c\\\xf5\xc21\xf7\x82C*\xd5;\x00\x00\x00\x00\x03\xba\xe3\xdc\x92\'\x8e\xd5\x7fG\xfd.\x91\x89T\x99t\xd4d,\xd5\x92O\xf1\xafT!Y\x8e\\\xac\xf7\x11R\x05p\x1a\"\r\xe9\xe5\x8b&\x0f\x8c\xfb\xef\xf8\xd5\x18\xde\xeb\xe5\x19\xdd\xebQ8\xc5iS+\x06D\x16\xfe\xf5.\xe5\v\x89\xb0\"\xa3M\xe9\x81\x11P\xdb\xc4\xc2y\x14\x04\x06\xf6\f\xb0\xecz\x8d`\xb5\x9b\xb43\xcc1\xa7\x9e\xa8\xb5\'\xc6MAe\x0f\xd1\xfcG\xc2/\xe8\xe9t\xcaQ\xf1\fI\x1chM\xc1\x92\xe3\xc3\x01M\xc8/\xefJ\xcb\xd0]\f\xff\xf5\x92\xce\x97Z\xea\xe8\x99\xfa\x96\xce\xa7\x02\xad\xa2\xce\x955\xeaNg\x02\xcd\xfd\x1a}.\xd3\"x\x89/8H\xc2\x93B\na)\x86\xa9U\xa0\xb7\x18\xfb\xe9\xd1\x97', 0x3)
write$binfmt_misc(r1, &(0x7f0000000140)="f09bda31", 0x4)
sendfile(r0, r1, &(0x7f0000000000), 0xfffb)
fcntl$addseals(r1, 0x409, 0x8)

8m35.503469224s ago: executing program 39 (id=4275):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x44, 0x4, 0x2}, 0x50)
socketpair(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000005c0)={r0, &(0x7f00000003c0), &(0x7f0000000580)=@tcp=r1}, 0x20)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000380)={r0, &(0x7f0000000140), &(0x7f0000000340)=@udp6=r2, 0x1}, 0x20)

8m23.909344151s ago: executing program 40 (id=4518):
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x4, 0x8001, 0x0, 0xb49, 0x200000000002, 0x5, 0x8, 0x3}, 0x0)
r0 = socket(0xa, 0x2, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x5}, 0x1c)
sendfile(r0, r1, 0x0, 0xffffffff)

8m9.077935403s ago: executing program 41 (id=4890):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000001c0)='./file0\x00', 0x2048c5, &(0x7f0000000340)=ANY=[@ANYBLOB='uid=', @ANYRESHEX=0xee00, @ANYBLOB=',shortname=winnt,uni_xlate=0,usefree,uni_xlate=1,uni_xlate=0,sys_immutable,nfs=stale_rw,debug,shortname=mixed,tz=UUC,utf8=0,utf8=1,\x00'], 0x1, 0x2b4, &(0x7f0000000e40)="$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")
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)

8m0.607996707s ago: executing program 42 (id=5055):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x8, &(0x7f00000000c0)={[{@lazytime}, {@errors_remount}]}, 0x2, 0x53a, &(0x7f0000000c80)="$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")
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f00000002c0)='./file0\x00', 0x2)

7m42.083459763s ago: executing program 43 (id=5501):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7a, &(0x7f0000000340)={<r3=>r2, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000100)={r3, 0x400, 0x10, 0x2, 0x7}, &(0x7f0000000240)=0x18)

7m12.560293584s ago: executing program 44 (id=6091):
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x2000300, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

6m55.197067038s ago: executing program 45 (id=6122):
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000900)={0x41, 0x4}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x41}, 0x10)

5m6.774399744s ago: executing program 46 (id=8240):
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x2000c0c0}, 0x4000000)
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f0000000700)={0xcf4a, 0x9, 0xb066, 0x9e02, 0xfe, "8003e3ffff072000"})
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0x20000000002, &(0x7f0000000040))
ptrace$cont(0x21, r0, 0x80000001, 0x4)

4m48.161198168s ago: executing program 47 (id=8555):
socket(0x40000000015, 0x5, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0x1}, &(0x7f0000000100)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r1, 0x567, 0x1000a387, 0x0, 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f0000000280)=ANY=[], 0xff2e)

4m47.127530019s ago: executing program 48 (id=8761):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0xfffffffffffffe42, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
fsetxattr(0xffffffffffffffff, &(0x7f0000000100)=@random={'osx.', ':{\x00'}, 0x0, 0x0, 0x2)
write$P9_RLERRORu(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="d1cc67"], 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x2], 0x0, 0x0, 0x1, 0x1}}, 0x40)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r0, 0x0)

4m3.69678321s ago: executing program 49 (id=9434):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0), 0x58, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x20)
sendmsg$tipc(r0, &(0x7f0000000000)={&(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x3, 0x4}}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000140)="06c0bffa92", 0x5}], 0x1, 0x0, 0x0, 0xc8045}, 0x40011)

3m47.044336622s ago: executing program 2 (id=9700):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=@newtfilter={0x54, 0x2c, 0xd3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0xfff2}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0xfffd, 0x8, 0x3c}, {0x3, 0x3, 0x5}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000814}, 0x0)

3m46.914716224s ago: executing program 2 (id=9706):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000004c0)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000680)={0x1, 0x8c0, 0x0, {}, {0x77359400}, {}, 0x1, @canfd={{0x4, 0x0, 0x1, 0x1}, 0x38, 0x3, 0x0, 0x0, "649cf69ea3e76f79ccd3238e0834d952b6054bdd457e2802a4c866ea94d240e73fb1c08097bae00c3c267a2b5dcdfb946272ca085f4fa96d531abcde7ae0ca2d"}}, 0x80}, 0x1, 0x0, 0x0, 0x44084}, 0x50)
sendmsg$can_bcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1, 0x1, 0x3, {}, {0x0, 0x2710}, {0x3, 0x1, 0x1, 0x1}, 0x1, @can={{0x4, 0x0, 0x0, 0x1}, 0x7, 0x2, 0x0, 0x0, "d467aef0f23fe738"}}, 0x48}, 0x1, 0x0, 0x0, 0x4001}, 0x4000000)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r2, 0xffffffffffffffff, 0x0)

3m46.881041257s ago: executing program 2 (id=9708):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00000000c0)={0x3, 0x1000}, 0x4)
r1 = socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000240)=@req3={0x1000, 0x1, 0x1000, 0x1, 0x7ff, 0xf84, 0x3}, 0x1c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

3m46.787746795s ago: executing program 2 (id=9720):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200404, &(0x7f0000000280)={[{@noblock_validity}, {@nodelalloc}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@debug}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f0000000700)="$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")
creat(&(0x7f0000000380)='./bus\x00', 0x4a)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
open(0x0, 0x8000, 0x112)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000002380)={0x0, 0x0, 0x0, 0x1, 0x8008, 0x0, 0x0, 0x19, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8, 0x4]})
mknod$loop(&(0x7f0000000680)='./file0\x00', 0x80, 0x0)

3m46.49928251s ago: executing program 2 (id=9715):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x14, 0x4, 0x4, 0x22}, 0x50)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e23, @private=0xa010102}, 0x10)

3m46.223196814s ago: executing program 2 (id=9723):
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
r0 = syz_io_uring_setup(0x810, &(0x7f0000000480)={0x0, 0x5c2d, 0x80, 0x2, 0x3be}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffff8, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x28, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_TEE={0x21, 0xda1a0b6210925d15, 0x0, @fd=r0, 0x0, 0x0, 0x1, 0x1})
io_uring_enter(r0, 0x22d0, 0x20, 0x0, 0x0, 0x0)

3m46.201123836s ago: executing program 50 (id=9723):
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
r0 = syz_io_uring_setup(0x810, &(0x7f0000000480)={0x0, 0x5c2d, 0x80, 0x2, 0x3be}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffff8, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x28, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_TEE={0x21, 0xda1a0b6210925d15, 0x0, @fd=r0, 0x0, 0x0, 0x1, 0x1})
io_uring_enter(r0, 0x22d0, 0x20, 0x0, 0x0, 0x0)

3m30.982800322s ago: executing program 4 (id=9968):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r1=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x7d, &(0x7f0000000080)={r1, 0x8000}, 0x8)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r2, 0x84, 0x7f, &(0x7f0000000080)="d3d0666d223e4686", 0x8)

3m30.893132689s ago: executing program 4 (id=9970):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
r0 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000600)={0xa, 0x4e1f, 0x1, @empty, 0x3}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e25, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000640)=@mangle={'mangle\x00', 0x1f, 0x6, 0x3a0, 0x2a8, 0x2a8, 0x0, 0xf0, 0x3b8, 0x458, 0x458, 0x458, 0x458, 0x458, 0x6, 0x0, {[{{@ip={@remote, @multicast1, 0xff, 0xffffff00, 'syzkaller0\x00', 'batadv_slave_1\x00', {}, {}, 0x32, 0x1, 0x20}, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00', 0x0, {0x0, 0xc7}}}, {{@uncond, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x3, 0x81, @local, 0x4e20}}}, {{@ip={@loopback, @dev={0xac, 0x14, 0x14, 0x39}, 0xffffff00, 0xffffff00, 'veth0_macvtap\x00', 'wlan0\x00', {}, {}, 0x4, 0x0, 0x40}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@ip={@private=0xa010100, @remote, 0xffffff00, 0xff, 'veth0\x00', 'team0\x00', {0xff}, {}, 0x33, 0x2, 0xb}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x9, 0x2, @broadcast, 0x4e24}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x400)

3m30.859382982s ago: executing program 4 (id=9973):
bpf$PROG_LOAD(0x5, &(0x7f0000001740)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
write$P9_RLERRORu(r0, &(0x7f0000000300)=ANY=[@ANYRESHEX], 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x2], 0x0, 0x0, 0x1, 0x1}}, 0x40)
write$P9_RSTATu(r0, &(0x7f0000000500)={0x45, 0x7d, 0x7, {{0x0, 0x274, 0x7, 0x5, {0x0, 0x1, 0x5}, 0xc6100000, 0x8, 0x7, 0x2, 0x1, '\x85', 0xcc, '\xa2\xca\x00\x00\x00\x00\x00\x00\xdd\x8fJ9&\x1eY\xf4k:p<JR\xc0[\xd1\xe2\xe2\xe3gR\a\xdf\xda\x9c\n\xa7\x9a\x9c\xd5{\xe2\xb1s/\x12^\xe3t\xfb\x18L%\x9cK\xea\x90\x19\x16\xa4B\a\xfdfm\xdbS\xa4\xc1\x9e=\xc4|x\x92\xbf\xb8\xb3\xda\xb0\xfd\x8ag|\x02Y\xaaF*\xba\x93\x1aC\x8f1\xd7`\xb3\x1a\x9b\vw\x02.%\xfdE\xc72dt>\xe8q\xf5\x9f\xbb\xf0\x86|\xef\x83/\x12\xb5\x1d\xc5\xa1\x80\xe7BhhkN\x8b\td\xab\xcc-V\x99\xf0\x03\xc1\xe3F\xf5\xfd\x90\x86\x1b<\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\f\xdaf\xd6\xec\xa5\x8e\x8e\xdb2;\x8a\xd4g\x15\xb3\x98\xac\x13\xee\x88d\xb2\xae\xc3\xc0\xe4\xdf\xe6\xf1`E>\x00\xfc\n\xa1t\x00P', 0x173, '\x17\xe0_|s/\xec\xcf\x1e|~\xf4*wIX\xbe[_\x12\xd4zZs\x85\xc4/\xa2?\xbc=\x82O\xc7\xf7\xf1\r\xd0\x06\x14\xbb\f\xa9\xe0\xf1\xbb\x99\xaa\xdb\xf1\xf0\xe3\xdf\x1c\x16{\"\f\x8c0\xd0I\xff\x02):9\xe7\xa6\x9e\x1bm+\xcb\xf1\xbf\x0e\xaa\xd6|\"\xf73r+F\x10\xf2P\xcc\x1f\xd7\x7f\xfc\x0e,x\xe5\x10^\xff\xf9\x12\x00\x00\x00\x00\x00\x00\xafR\x93\x95\xe4\x92\x12H\x8dU\x92\xf4\xccX=d\xfd0\x97nr\x9a33\xf2\xd8\xe5=\xa7/\xcb\xdd\'\xd1`(\xc5\xcf+\xbf\xda<\x9a\x990\xbd\x14\xe0\x05_\xf3\xc7v\xfdr\xea\x81C\x10\x03\x1f\xd3$vF\xe9l\xcaF\x93fU\xf5\xc5\xa4\xb5)\vg\x8a\xc3\xf2\xe8\xae)\xc3\xdf\x05\x99\xd5\xde,Rq\xd36\xe9\xfd/\xd1m:\x8a\xf1\xe3X6\xac\xe9\x83\xbc\xd12\xa9r\x0f\xfc\xb4\x90,$\xbei\xbe\xddu\xf1\xc8q\xf50\xe4?\xdd\x8f\x88\aA \xbc}F\x86&\xd9,\xa2\a:\x00D\x11\xa2\xe0\xbd\x85\x82\xb4]?\x1b\x80\x05\xec\xa7\xf7.\xa3\xa29x\x98\xf0M\xc6\xbe\xae?8\xeb\n9(\x9d\xb4g$\x83\xaf3\xba\xe6m\xe9\xa4z\xba\xdekP=\\\xfe\x82\x9d\x05\x9a\xc7\xfd\xc0\xa2\xea\xde7L\xaf\xe5j)Q~\rO\x97vC\x94\xb4\x92\xf5\xed]V\xcd\xda\t$\x04\\~Vp\x05\x1bc\xb2\xad\x00\x00\x00\x00\x00\x00\x00\x00\x00(\n\xae\x15\xd4\xd4\xbb\x84R\x02\x94=e\xc8vm\x19#\xe5\xfaK\xea3\xa9s\xa6[g\xb2\x15\r\xd0\x8f\x14\x90l\xfe\x98\xa8\xa6\xbe\xea\xccds', 0x1, '{'}, 0x7, '\x97\xfe\xef\x85z\x03\x86'}}, 0x290)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r0, 0x0)

3m30.793993369s ago: executing program 4 (id=9976):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000280)='./file0/../file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x28a5291, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x44000, 0x0)

3m30.762056072s ago: executing program 4 (id=9977):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x42718, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x100b28, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x12, r0, 0x0)
utime(0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1f}, [@FRA_GENERIC_POLICY=@FRA_IP_PROTO={0x5, 0x16, 0x11}]}, 0x24}}, 0x44004)

3m30.279381323s ago: executing program 4 (id=9985):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000080)=r1, 0x4)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)={0x14, 0x6, 0x1, 0x101, 0x0, 0x0, {0x1, 0x0, 0x204}}, 0x14}, 0x1, 0x0, 0x0, 0x2404c031}, 0x4850)
sendmsg$IPSET_CMD_TYPE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0xd, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8040410}, 0x40)

3m30.266892345s ago: executing program 51 (id=9985):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000080)=r1, 0x4)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)={0x14, 0x6, 0x1, 0x101, 0x0, 0x0, {0x1, 0x0, 0x204}}, 0x14}, 0x1, 0x0, 0x0, 0x2404c031}, 0x4850)
sendmsg$IPSET_CMD_TYPE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0xd, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8040410}, 0x40)

2m57.749105279s ago: executing program 1 (id=10499):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x8}, 0x4, 0x0, 0x10000, 0x0, 0x2, 0x6, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = socket$kcm(0x29, 0x2, 0x0)
sendmmsg$inet(r0, 0x0, 0x0, 0x810)
syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x8084, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0xfe, 0x16b, &(0x7f0000000300)="$eJzs20GrElEUB/Azab73avPW0WKgTSupVi2LeEE0UBQualVgbTSE3Eyt/BSt+4JBuGrVDZ3QEkWknJHn77fxwB+958rMXO7AfXPzw6A/Gr8fPZ/GaZZF+0Hk8TOL87gSrahMAgC4TH6kFN9TSulkEmdfI6XUdEcAwL5Z/wHg+Gxd/+831BgAsDf2/wBwfF6+ev30YVFcvMjz04hvk7JX9qrPKn/8pLi4k8+dL781Lctea5HfrfL87/xqXPud31ubd+L2rSqfZY+eFSv59ejvf/oAAABwFLr5wtr9fbe7Ka+qP94PrOzf23GjXds0AIAdjD99HrwdDt99rKE4m4+Y1TvobsWXBv6Wgy1acRBtKLYWs0v2f/9yk08loA7Lm77pTgAAAAAAAAAAAAAAgE3+8ahQJyLWRBGdbScLTmqfKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACz8CgAA//9vQEW+")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)

2m57.709353532s ago: executing program 1 (id=10501):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000140)=0x400030, 0x4)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000080)={'filter\x00', 0x7, 0x4, 0x438, 0x240, 0x240, 0x0, 0x350, 0x370, 0x350, 0x4, 0x0, {[{{@arp={@private, @local, 0x0, 0x0, 0x0, 0x0, {@mac=@broadcast}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth1_to_batadv\x00', 'batadv0\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "bc2e329885ea3654891fbae8c6c66e07212432bde429bcda7deb48d85c6f5e269c2021c8f8dc09af0b3f2e10e8ac79cc67e264613c4be6838ee2daacf7926a6e"}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @rand_addr, @broadcast}}}, {{@arp={@private, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0\x00', 'veth0_to_bond\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x488)
syz_emit_ethernet(0x2e, &(0x7f0000000300)={@broadcast, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e21, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}, 0x0)

2m56.816494821s ago: executing program 1 (id=10523):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400020}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r1)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a3000000000e4000000160a01000000000000000000010000010900010073797a30000000000900020073797a3000000000b80003800800014000000000a400038014000100776c616e3000000000000000000000001400010076657468305f746f5f62617461647600140001006d6163766c616e3100000000000000001400010076657468310000000000000000000000140001006772653000000000000000000000000014000100776c616e3100000000000000000000009400010076657468315f766972745f77696669001400010076657468305f746f5f626f6e6400000008000240"], 0x378}}, 0x0)

2m56.763517845s ago: executing program 1 (id=10525):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='proc\x00', 0x810c03, 0x0)
setxattr$incfs_size(0x0, 0x0, 0x0, 0x0, 0x1)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0/../file0\x00')

2m56.747363167s ago: executing program 1 (id=10527):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@block_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@norecovery}]}, 0x3, 0x566, &(0x7f00000015c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup\x00', 0x42, 0x0)
r0 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x9000)
fallocate(r0, 0x0, 0x0, 0x8800000)
r1 = open(&(0x7f0000000140)='./file1\x00', 0x66842, 0x21)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3)

2m55.812613259s ago: executing program 1 (id=10539):
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x106200, 0x10004, 0x20da, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x181000, 0x0)
ioctl$TUNSETIFF(r0, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00', 0x800})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x80400, 0x0)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f00000002c0)={'bond0\x00', 0x4000})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})

2m55.776672722s ago: executing program 52 (id=10539):
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x106200, 0x10004, 0x20da, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x181000, 0x0)
ioctl$TUNSETIFF(r0, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00', 0x800})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x80400, 0x0)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f00000002c0)={'bond0\x00', 0x4000})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})

2m48.62616643s ago: executing program 6 (id=10625):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[], 0x18}}, 0x20004000)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x40000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x50, 0x32, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x3, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x20, 0x1, [{0x10, 0xb, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x1c, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x40}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x4048840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2m48.364866362s ago: executing program 6 (id=10621):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0xa, 0x0, 0x7fffffff}]})
r1 = socket$unix(0x1, 0x5, 0x0)
r2 = dup2(r1, r0)
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
close_range(r3, r2, 0x2)

2m48.303165608s ago: executing program 6 (id=10623):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0xfffffffffffffe42, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
fsetxattr(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="6f3a8fa0"], 0x0, 0x0, 0x2)
write$P9_RLERRORu(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="d1cc67"], 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x2], 0x0, 0x0, 0x1, 0x1}}, 0x40)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r0, 0x0)

2m48.147505602s ago: executing program 6 (id=10628):
prlimit64(0x0, 0x8, &(0x7f0000000080), 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x5, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8006, 0x6}, 0x0, 0x10001, 0xd9, 0x5, 0xc31bc7e, 0x20005, 0xa, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000280)='./bus\x00', 0x1200840, &(0x7f0000000100)=ANY=[@ANYBLOB="757466383d312c636865636b3d7374726963742c73686f72746e616d653d6d697865642c6e6f6e756d7461696c3d302c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c696f636861727365743d73703836322c696f636861727365743d63703433372c73686f72746e616d653d77696e39352c756e695f786c6174653d312c756e695f786c6174653d302c757466383d302c756e695f786c6174653d302c003c24d06816418f4be78ed4fbfe47efc82f966a602a8db43ad053c978bbd3501706515140ef63c2a58653ced497550b22917b09702604bc162c57e05beec5bb0c11fc2f9238b25e4527e24bab534e9ba458d92a597c3fee89f57053a4a1535771c9877b3ab101fb26937779cff75a95a296fafddf11280fafeb9bd5f2da4a88b43f3e4d5b4fb9b81300b11a9aed1f659d88f914548fba990603b0d4f14adda86d459c62701d3d6f007c7e50da9608a03eff5843f6739a8ec5ff33791394a5c075018b5d92bbd7d9874589f3561fbdfc44653bb6"], 0x3, 0x394, &(0x7f0000000700)="$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")
creat(&(0x7f00000004c0)='./bus\x00', 0x14c)
mount(&(0x7f0000000480)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x801400, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x44c00, 0xe898d2275f586997)
preadv2(r0, &(0x7f0000000980)=[{&(0x7f0000001200)=""/4096, 0xffffffa4}], 0x1, 0x8000, 0x9, 0x1b)

2m47.81777925s ago: executing program 6 (id=10632):
r0 = socket(0x2b, 0x80801, 0x1)
listen(r0, 0x9)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x7542d000)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
syz_clone3(&(0x7f0000000180)={0x23800000, &(0x7f0000000040)=<r1=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x8, &(0x7f0000000600)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r1, 0x0}])

2m46.872852633s ago: executing program 6 (id=10651):
perf_event_open(0x0, 0x0, 0x4000000000, 0xffffffffffffffff, 0xa)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r0, 0xf)
wait4(r0, 0x0, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_clone(0x400100, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x1, r1, 0x0, 0x40000004, 0x0)

2m46.80194771s ago: executing program 53 (id=10651):
perf_event_open(0x0, 0x0, 0x4000000000, 0xffffffffffffffff, 0xa)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r0, 0xf)
wait4(r0, 0x0, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_clone(0x400100, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x1, r1, 0x0, 0x40000004, 0x0)

2m38.233629162s ago: executing program 0 (id=10788):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
symlink(&(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlinkat(0xffffffffffffff9c, &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffffff, 0xb4)
readlink(&(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000004c0)=""/79, 0x4f)

2m38.220127123s ago: executing program 0 (id=10790):
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x6}, 0x106200, 0x6, 0x20da, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0x7, 0xffffffffffffffff, 0xb)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{r1}, &(0x7f0000000200), &(0x7f0000000640)=r0}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000240), &(0x7f0000000280)='%pS    \x00'}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000380), &(0x7f00000003c0)='%pB    \x00'}, 0x20)

2m38.182299536s ago: executing program 0 (id=10792):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x42901, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
r2 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r2, &(0x7f0000000240)={0x11, 0xfa, 0x0, 0x1, 0x10, 0x6, @local}, 0x14)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000240)=ANY=[], 0xfdef)

2m38.072820856s ago: executing program 0 (id=10794):
open(0x0, 0x60840, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x4, @perf_bp={0x0}, 0x2bac, 0x0, 0x8, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=@framed={{}, [@jmp={0x5, 0x0, 0xe, 0x0, 0x0, 0x3}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @jmp={0x5, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}]}, &(0x7f0000000140)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x8}, 0x94)

2m37.312632762s ago: executing program 0 (id=10805):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

2m37.258865787s ago: executing program 0 (id=10806):
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
pwrite64(r0, &(0x7f0000000f40)="341dc3ad9528dbad3d2f", 0xa, 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
sendfile(r0, r0, &(0x7f00000001c0)=0x9, 0x7fd)
symlink(&(0x7f00000010c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000000c0)='./file0\x00')
chdir(&(0x7f0000000400)='./file0\x00')

2m21.764376077s ago: executing program 54 (id=10806):
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
pwrite64(r0, &(0x7f0000000f40)="341dc3ad9528dbad3d2f", 0xa, 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
sendfile(r0, r0, &(0x7f00000001c0)=0x9, 0x7fd)
symlink(&(0x7f00000010c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000000c0)='./file0\x00')
chdir(&(0x7f0000000400)='./file0\x00')

3.431191949s ago: executing program 8 (id=12820):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_DELETE(r0, 0x0, 0x80)
r1 = socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x9, 0x13012, r1, 0x0)
mprotect(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0xb)

3.402152051s ago: executing program 8 (id=12821):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10002, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}, 0x2000000b}, 0x1c)
sendmmsg$inet6(r0, &(0x7f00000022c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4000000)

2.859910019s ago: executing program 7 (id=12828):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffdf, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0xffffffffffffffff, 0x2}, 0x106020, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
r2 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8, 0xa0}, &(0x7f0000010080), &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000003c0)=[{0x0}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

2.604640041s ago: executing program 7 (id=12835):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x16, 0x10, &(0x7f0000000700)=@framed={{0x18, 0x5, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r3, 0xfffff000, 0xe, 0x0, &(0x7f0000000300)="882f1242a03c3f98722780b605a7", 0x0, 0x990d, 0x7000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.491722101s ago: executing program 8 (id=12837):
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x8}, 0x4, 0x0, 0x10000, 0x0, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
syz_usb_connect$uac1(0x2, 0x0, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
read$msr(r1, 0x0, 0x0)
write(r0, &(0x7f0000000000)="fa", 0xfffffdef)

1.697035791s ago: executing program 7 (id=12847):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=@newtfilter={0x38, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r3, {0x0, 0xe}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_FLAGS={0x8, 0xb, 0x1}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)

1.077196785s ago: executing program 7 (id=12849):
sched_setscheduler(0x0, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x16, 0x13, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c252500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000180100002020702500000000002020207b1ad8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000080000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe, 0xfffffffffffffffd, &(0x7f00000001c0)="186bf7ffffffffffffffef0a3254", 0x0, 0xff, 0x60000009, 0x0, 0x0, 0x0, 0x0}, 0x50)

963.509416ms ago: executing program 5 (id=12851):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x67ce, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
setsockopt$inet_int(r0, 0x0, 0x17, &(0x7f0000000140)=0x3, 0x4)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r0, 0x0, 0x12, &(0x7f0000000180)=0x6, 0x4)
recvmmsg(r0, &(0x7f0000000340)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x45833af92e4b38ff, 0x0)

822.514358ms ago: executing program 5 (id=12853):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f00000000c0)='.\x00', 0xa4000061)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)

822.373358ms ago: executing program 3 (id=12854):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
fdatasync(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ftruncate(r0, 0x5)

812.676959ms ago: executing program 9 (id=12855):
socket$inet6(0xa, 0x3, 0xff)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040), 0x13f, 0x4}}, 0x20)
r0 = syz_io_uring_setup(0x81f, &(0x7f0000000480)={0x0, 0x0, 0x10, 0x0, 0x34f}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000540)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xdffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x9, 0x1, 0x0, 0x4}]}, 0x8)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x47bc, 0x0, 0x21, 0x0, 0x0)

731.936446ms ago: executing program 5 (id=12856):
syz_open_dev$loop(0x0, 0x75f, 0x2a382)
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
utimensat(r2, 0x0, 0x0, 0x0)

640.138894ms ago: executing program 5 (id=12858):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x16, 0x10, &(0x7f0000000700)=@framed={{0x18, 0x5, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r3, 0xfffff000, 0xe, 0x0, &(0x7f0000000300)="882f1242a03c3f98722780b605a7", 0x0, 0x990d, 0x7000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

639.976124ms ago: executing program 9 (id=12859):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000002280)={0x3, &(0x7f0000000280)=[{0x20, 0x2, 0x81, 0xfffff034}, {0x20, 0x0, 0x8, 0xfffff00c}, {0x6, 0xba, 0x2, 0xffff}]}, 0x10)
socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0x36, &(0x7f00000020c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @multicast, @val={@val={0x88a8, 0x4, 0x1, 0x4}, {0x8100, 0x6, 0x1, 0x1}}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x1, 0x3, 0x6, 0x0, @void}}}}}}}, 0x0)
r1 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r1, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, 0x0, 0x0)

634.828924ms ago: executing program 9 (id=12860):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000500)={0x9, 0x207, 0x5, 0x691}, 0x10)
sendto$inet6(r1, &(0x7f0000000400)='x', 0x1, 0x10, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x3}, 0x8)

617.155366ms ago: executing program 8 (id=12861):
openat$ppp(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x24000106)
recvmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x100)
writev(0xffffffffffffffff, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
clock_nanosleep(0xfffffffffffffffe, 0x1, 0x0, 0x0)

594.035478ms ago: executing program 3 (id=12862):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = syz_io_uring_setup(0x497, &(0x7f0000002180)={0x0, 0x787f, 0x100, 0x4, 0x1b0}, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0x1f, 0x3}]}, 0x1, 0x1}, 0x1)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000d00)={0x8, {"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", 0x1000}}, 0x1006)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x2, r0, 0x0, 0x0, 0x0, 0x200, 0x1, {0x1}})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)

588.634848ms ago: executing program 7 (id=12863):
pipe(&(0x7f0000000500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f00000005c0)='fd', 0x0, r0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x2)
fchdir(r2)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
newfstatat(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x1000)

560.359611ms ago: executing program 7 (id=12864):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0x4, 0x9, 0x3, 0xfff, 0x8001, 0x7fff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x2)
socket(0x10, 0x3, 0x0)
r0 = perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x6, 0x40, 0x3, 0x0, 0x4000000000, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x8}, 0x100882, 0x7ff, 0x6, 0x3, 0xb, 0x2, 0x3ff, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12011, r0, 0x0)
prlimit64(0x0, 0xd, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x45, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xff, 0x30000000000}, 0x12122, 0x10000, 0xfffffffe, 0x5, 0x8, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
migrate_pages(0x0, 0x171, 0x0, 0x0)

556.414791ms ago: executing program 5 (id=12865):
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r1, 0x4)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r2, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000000440)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

552.008361ms ago: executing program 9 (id=12866):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040), 0x10)
listen(r0, 0x0)
setreuid(0x0, 0xee01)
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x5}, 0x8)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094)

529.626613ms ago: executing program 3 (id=12867):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x4e20, 0x7, @empty, 0x4}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000b80)='n', 0x1}], 0x1}, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000040)={0x0, 0x9, 0x7a8, 0x6}, 0x14)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "db57cda808852139", "252432e72844858a068b92a5a810f4dc", "11802ff5", "08e48ff0bf597edc"}, 0x28)

213.765741ms ago: executing program 9 (id=12868):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x5}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000001100)={0x5, 0x80, 0xd, 0x8, 0xb, 0xfb, 0x0, 0x3e, 0x1c144, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x18842, 0x0, 0x7fffffff, 0x7, 0x9, 0x9, 0x7, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x22, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xfffffffffffffffe, 0x2}, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setresuid(0xee00, 0xee00, 0x0)
r0 = syz_io_uring_setup(0x4e0, &(0x7f00000000c0)={0x0, 0x79af, 0x3180, 0x8000, 0x400252}, &(0x7f0000000640)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000500)=@IORING_OP_MKDIRAT={0x25, 0x17, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1f, 0x0, 0xf9b7a26b18f77d51})
io_uring_enter(r0, 0x627, 0x4c1, 0x43, 0x0, 0x0)

175.076664ms ago: executing program 5 (id=12878):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
munmap(&(0x7f000045e000/0x1000)=nil, 0x1000)
munmap(&(0x7f00007b2000/0x3000)=nil, 0x3000)
madvise(&(0x7f0000492000/0x2000)=nil, 0x2000, 0x12)
syz_clone(0x200000, 0x0, 0x0, 0x0, 0x0, 0x0)

174.624994ms ago: executing program 3 (id=12879):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'macsec0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8931, &(0x7f0000000080))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8932, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94)

67.088304ms ago: executing program 8 (id=12869):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f00000000c0)='.\x00', 0xa4000061)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)

66.911664ms ago: executing program 3 (id=12870):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000002280)={0x3, &(0x7f0000000280)=[{0x20, 0x2, 0x81, 0xfffff034}, {0x20, 0x0, 0x8, 0xfffff00c}, {0x6, 0xba, 0x2, 0xffff}]}, 0x10)
socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0x36, &(0x7f00000020c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @multicast, @val={@val={0x88a8, 0x4, 0x1, 0x4}, {0x8100, 0x6, 0x1, 0x1}}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x1, 0x3, 0x6, 0x0, @void}}}}}}}, 0x0)
r1 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r1, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, 0x0, 0x0)

33.217827ms ago: executing program 3 (id=12871):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r2 = syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0xeae7, 0x1000, 0x6, 0x39a}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000080)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x40, 0x0, r1, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0, 0x20000044})
io_uring_enter(r2, 0x2afd, 0x308b, 0xc, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000002c0)=[{{&(0x7f0000000400)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0xffffffff}, 0x1c, 0x0}}], 0x1, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYRES64=r0, @ANYBLOB="24a190a49d7eb7e11aa2b8b9892c05c14d3406af7284720cd253bb7bce0b9647d6f689752bb5eec1ece365ddf6679ec24971e17e2446f0cbf3be7e4018e3e43fe0d21cf3a82055696d3df5df9d7e48e3739e11ec1c08ddde32d1cecd264a0dd6efa181a3a6c409c4b088aafbdc00ff9ea9d914b4f80aec8751b4be8ab0844ff61efcbf9a974c4651294ef43eb037c4026e4d5bf523f112d2840e1e7ac46b45532a56182dbb3fe2f6076d2e8c7d61d255dabb01323a92a0dc8f7f710f05107f29b4f5770f8932e285d0dcac16ea56b22f1b05e5f98b223e83a54a37157b9542f261dddf38", @ANYRESOCT=r0], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

278.25µs ago: executing program 8 (id=12872):
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f00000001c0)=0x4104, 0x4)
r0 = syz_io_uring_setup(0x6167, &(0x7f0000000400)={0x0, 0xfffffffe, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='6'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2120, 0x1})
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000180)=[r0], 0x1)
io_uring_enter(r0, 0x2d3e, 0xea37, 0x0, 0x0, 0x0)

0s ago: executing program 9 (id=12873):
r0 = epoll_create1(0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = epoll_create1(0x0)
r3 = fcntl$dupfd(r0, 0x0, r0)
r4 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r2, &(0x7f0000000000)={0x20000002})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040)={0x20000001})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r1, &(0x7f00000002c0)={0xa0000013})

kernel console output (not intermixed with test programs):

38324][ T5536] total_inactive_anon 8192
[  653.853687][ T5536] total_active_anon 70127616
[  653.858343][ T5536] total_inactive_file 20480
[  653.881061][ T5536] total_active_file 4096
[  653.885403][ T5536] total_unevictable 0
[  653.889440][ T5536] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz9,task_memcg=/syz9,task=syz.9.11581,pid=5535,uid=0
[  653.898011][ T5572] netlink: 24 bytes leftover after parsing attributes in process `syz.5.11597'.
[  653.926303][ T5536] Memory cgroup out of memory: Killed process 5536 (syz.9.11581) total-vm:100576kB, anon-rss:1436kB, file-rss:26612kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[  654.037294][T32729] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  654.676629][ T5588] loop8: detected capacity change from 0 to 1024
[  654.702301][ T5588] EXT4-fs: Ignoring removed mblk_io_submit option
[  654.753409][ T5588] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  654.770725][ T5588] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  654.860480][ T5588] EXT4-fs error (device loop8): ext4_ext_check_inode:521: inode #11: comm syz.8.11606: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  654.881442][ T5588] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  654.881656][ T5588] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.11606: couldn't read orphan inode 11 (err -117)
[  654.890879][    C1] EXT4-fs (loop8): error count since last fsck: 1
[  654.890903][    C1] EXT4-fs (loop8): initial error at time 1771844268: ext4_ext_check_inode:521: inode 11
[  654.890960][    C1] EXT4-fs (loop8): last error at time 1771844268: ext4_ext_check_inode:521: inode 11
[  654.933167][ T3265] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  654.982099][ T5588] loop8: lost filesystem error report for type 5 error -117
[  654.992253][ T5588] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  655.023464][ T5588] EXT4-fs error (device loop8): ext4_read_block_bitmap_nowait:483: comm syz.8.11606: Invalid block bitmap block 0 in block_group 0
[  655.038266][ T5588] Quota error (device loop8): write_blk: dquota write failed
[  655.046527][ T5588] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[  655.057910][ T5588] EXT4-fs error (device loop8): ext4_acquire_dquot:7001: comm syz.8.11606: Failed to acquire dquot type 0
[  655.083003][ T4653] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  655.099291][T19326] Quota error (device loop8): do_check_range: Getting block 0 out of range 1-8
[  655.109004][T19326] EXT4-fs error (device loop8): ext4_release_dquot:7037: comm kworker/u8:22: Failed to release dquot type 0
[  655.143920][T19326] loop8: lost filesystem error report for type 5 error -117
[  655.223046][ T7649] Process accounting resumed
[  656.048377][ T5604] syz.5.11611 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  656.091207][ T5604] CPU: 1 UID: 0 PID: 5604 Comm: syz.5.11611 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  656.091241][ T5604] Tainted: [W]=WARN
[  656.091251][ T5604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  656.091345][ T5604] Call Trace:
[  656.091353][ T5604]  <TASK>
[  656.091364][ T5604]  __dump_stack+0x1d/0x30
[  656.091468][ T5604]  dump_stack_lvl+0x95/0xd0
[  656.091502][ T5604]  dump_stack+0x15/0x1b
[  656.091527][ T5604]  dump_header+0x80/0x240
[  656.091580][ T5604]  oom_kill_process+0x295/0x350
[  656.091610][ T5604]  out_of_memory+0x97d/0xb80
[  656.091638][ T5604]  try_charge_memcg+0x62e/0xa10
[  656.091760][ T5604]  obj_cgroup_charge_pages+0x23/0xc0
[  656.091793][ T5604]  __memcg_kmem_charge_page+0x9e/0x170
[  656.091831][ T5604]  __alloc_frozen_pages_noprof+0x18a/0x360
[  656.091874][ T5604]  alloc_pages_mpol+0xb3/0x260
[  656.091943][ T5604]  alloc_pages_noprof+0x8f/0x130
[  656.091983][ T5604]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  656.092111][ T5604]  __kvmalloc_node_noprof+0x3d4/0x650
[  656.092143][ T5604]  ? ip_set_alloc+0x24/0x30
[  656.092176][ T5604]  ? ip_set_alloc+0x24/0x30
[  656.092208][ T5604]  ? __kmalloc_cache_noprof+0x18a/0x410
[  656.092242][ T5604]  ip_set_alloc+0x24/0x30
[  656.092335][ T5604]  hash_netiface_create+0x282/0x740
[  656.092362][ T5604]  ? __pfx_hash_netiface_create+0x10/0x10
[  656.092410][ T5604]  ip_set_create+0x3cf/0x970
[  656.092523][ T5604]  ? __nla_parse+0x40/0x60
[  656.092555][ T5604]  nfnetlink_rcv_msg+0x509/0x5d0
[  656.092616][ T5604]  netlink_rcv_skb+0x123/0x220
[  656.092671][ T5604]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  656.092755][ T5604]  nfnetlink_rcv+0x167/0x1720
[  656.092797][ T5604]  ? __list_del_entry_valid_or_report+0x65/0x130
[  656.092843][ T5604]  ? __rmqueue_pcplist+0x9b0/0xb70
[  656.092892][ T5604]  ? _raw_spin_lock_bh+0x56/0xb0
[  656.093005][ T5604]  ? _raw_spin_unlock_bh+0x18/0x20
[  656.093102][ T5604]  ? selinux_nlmsg_lookup+0x99/0x890
[  656.093145][ T5604]  ? __rcu_read_unlock+0x33/0x70
[  656.093190][ T5604]  ? __netlink_lookup+0x276/0x2b0
[  656.093305][ T5604]  netlink_unicast+0x5c0/0x690
[  656.093342][ T5604]  netlink_sendmsg+0x5c8/0x6f0
[  656.093465][ T5604]  ? __pfx_netlink_sendmsg+0x10/0x10
[  656.093503][ T5604]  ____sys_sendmsg+0x5af/0x600
[  656.093538][ T5604]  ___sys_sendmsg+0x195/0x1e0
[  656.093585][ T5604]  __x64_sys_sendmsg+0xd4/0x160
[  656.093673][ T5604]  x64_sys_call+0x194c/0x3020
[  656.093704][ T5604]  do_syscall_64+0x12c/0x370
[  656.093770][ T5604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.093916][ T5604] RIP: 0033:0x7fdd1d96c629
[  656.093936][ T5604] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  656.093969][ T5604] RSP: 002b:00007fdd1c3c7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  656.093993][ T5604] RAX: ffffffffffffffda RBX: 00007fdd1dbe5fa0 RCX: 00007fdd1d96c629
[  656.094009][ T5604] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  656.094025][ T5604] RBP: 00007fdd1da02b39 R08: 0000000000000000 R09: 0000000000000000
[  656.094040][ T5604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  656.094055][ T5604] R13: 00007fdd1dbe6038 R14: 00007fdd1dbe5fa0 R15: 00007ffcc5283008
[  656.094079][ T5604]  </TASK>
[  656.094128][ T5604] memory: usage 307200kB, limit 307200kB, failcnt 1597
[  656.438698][ T5604] memory+swap: usage 363756kB, limit 9007199254740988kB, failcnt 0
[  656.447301][ T5604] kmem: usage 276724kB, limit 9007199254740988kB, failcnt 0
[  656.455984][ T5604] Memory cgroup stats for /syz5:
[  656.456218][ T5604] cache 28528640
[  656.466676][ T5604] rss 2215936
[  656.470046][ T5604] shmem 28524544
[  656.474052][ T5604] mapped_file 4096
[  656.477872][ T5604] dirty 4096
[  656.481446][ T5604] writeback 0
[  656.484791][ T5604] workingset_refault_anon 4007
[  656.489841][ T5604] workingset_refault_file 8767
[  656.496460][ T5604] swap 57913344
[  656.500000][ T5604] swapcached 83578880
[  656.504190][ T5604] pgpgin 895024
[  656.507741][ T5604] pgpgout 887405
[  656.511551][ T5604] pgfault 657990
[  656.515134][ T5604] pgmajfault 579
[  656.519061][ T5604] inactive_anon 21123072
[  656.525115][ T5604] active_anon 10059776
[  656.529245][ T5604] inactive_file 24576
[  656.533524][ T5604] active_file 0
[  656.537057][ T5604] unevictable 0
[  656.547352][ T5604] hierarchical_memory_limit 314572800
[  656.561768][ T5604] hierarchical_memsw_limit 9223372036854771712
[  656.578260][ T5604] total_cache 28528640
[  656.584006][ T5604] total_rss 2215936
[  656.587887][ T5604] total_shmem 28524544
[  656.600679][ T5604] total_mapped_file 4096
[  656.611982][ T5604] total_dirty 4096
[  656.620587][ T5604] total_writeback 0
[  656.624431][ T5604] total_workingset_refault_anon 4007
[  656.642177][ T5604] total_workingset_refault_file 8767
[  656.647527][ T5604] total_swap 57913344
[  656.652101][ T5604] total_swapcached 83578880
[  656.656713][ T5604] total_pgpgin 895044
[  656.660755][ T5604] total_pgpgout 887425
[  656.664852][ T5604] total_pgfault 658020
[  656.669134][ T5604] total_pgmajfault 579
[  656.675242][ T5604] total_inactive_anon 21123072
[  656.680189][ T5604] total_active_anon 10059776
[  656.684876][ T5604] total_inactive_file 24576
[  656.689432][ T5604] total_active_file 0
[  656.693670][ T5604] total_unevictable 0
[  656.697679][ T5604] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.438,pid=4702,uid=0
[  656.713878][ T5604] Memory cgroup out of memory: Killed process 4702 (syz.5.438) total-vm:96076kB, anon-rss:1224kB, file-rss:20800kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  656.923953][ T5634] uprobe: syz.8.11622:5634 failed to unregister, leaking uprobe
[  657.172045][   T28] audit: type=1400 audit(1771844270.689:10623): avc:  denied  { watch watch_reads } for  pid=5645 comm="syz.5.11629" path="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=dir permissive=1
[  657.785968][   T28] audit: type=1326 audit(1771844271.299:10624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5670 comm="syz.3.11639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9761ecc629 code=0x7ffc0000
[  657.841735][   T28] audit: type=1326 audit(1771844271.299:10625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5670 comm="syz.3.11639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9761ecc629 code=0x7ffc0000
[  657.877277][ T5620] Set syz1 is full, maxelem 65536 reached
[  657.904266][   T28] audit: type=1326 audit(1771844271.309:10626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5670 comm="syz.3.11639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f9761ecc629 code=0x7ffc0000
[  657.939339][   T28] audit: type=1326 audit(1771844271.309:10627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5670 comm="syz.3.11639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9761ecc629 code=0x7ffc0000
[  658.069061][   T28] audit: type=1326 audit(1771844271.309:10628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5670 comm="syz.3.11639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9761ecc629 code=0x7ffc0000
[  658.144542][   T28] audit: type=1326 audit(1771844271.329:10629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5670 comm="syz.3.11639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f9761ecc629 code=0x7ffc0000
[  658.178975][   T28] audit: type=1326 audit(1771844271.329:10630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5670 comm="syz.3.11639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9761ecc629 code=0x7ffc0000
[  658.231121][   T28] audit: type=1326 audit(1771844271.329:10631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5670 comm="syz.3.11639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9761ecc629 code=0x7ffc0000
[  658.336685][ T5699] netlink: 12 bytes leftover after parsing attributes in process `syz.8.11651'.
[  658.349062][ T5701] netlink: 'syz.7.11652': attribute type 4 has an invalid length.
[  658.510514][ T5706] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11655'.
[  658.797349][ T5729] netlink: 12 bytes leftover after parsing attributes in process `syz.9.11665'.
[  659.093356][ T5717] loop7: detected capacity change from 0 to 32768
[  659.191635][ T3337]  loop7: p1 p3 < >
[  659.236603][ T5717]  loop7: p1 p3 < >
[  659.565549][ T3338] udevd[3338]: inotify_add_watch(7, /dev/loop7p3, 10) failed: No such file or directory
[  659.587954][ T3337] udevd[3337]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[  659.637191][ T3338] udevd[3338]: inotify_add_watch(7, /dev/loop7p3, 10) failed: No such file or directory
[  659.647741][ T3337] udevd[3337]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[  659.704850][ T3338] udevd[3338]: inotify_add_watch(7, /dev/loop7p3, 10) failed: No such file or directory
[  659.719331][ T3337] udevd[3337]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[  660.096154][ T5751] netlink: 24 bytes leftover after parsing attributes in process `syz.5.11682'.
[  660.720193][ T5773] loop7: detected capacity change from 0 to 128
[  660.774037][ T5773] FAT-fs (loop7): Directory bread(block 32) failed
[  660.787617][ T5773] FAT-fs (loop7): Directory bread(block 33) failed
[  660.806566][ T5773] FAT-fs (loop7): Directory bread(block 34) failed
[  660.823258][ T5773] FAT-fs (loop7): Directory bread(block 35) failed
[  660.840170][ T5773] FAT-fs (loop7): Directory bread(block 36) failed
[  660.857941][ T5773] FAT-fs (loop7): Directory bread(block 37) failed
[  660.881242][ T5773] FAT-fs (loop7): Directory bread(block 38) failed
[  660.900198][ T5773] FAT-fs (loop7): Directory bread(block 39) failed
[  660.927152][ T5773] FAT-fs (loop7): Directory bread(block 40) failed
[  660.942645][ T5773] FAT-fs (loop7): Directory bread(block 41) failed
[  661.462774][ T5794] loop9: detected capacity change from 0 to 512
[  661.487600][ T5794] EXT4-fs: Ignoring removed nobh option
[  661.536185][ T5794] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  661.599852][ T5794] EXT4-fs (loop9): 1 truncate cleaned up
[  661.620009][ T5794] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  662.332596][T32729] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  662.430344][ T5842] netlink: 'syz.9.11710': attribute type 4 has an invalid length.
[  662.488927][ T5847] netlink: 'syz.9.11710': attribute type 4 has an invalid length.
[  662.563427][   T28] audit: type=1400 audit(1771844276.079:10632): avc:  denied  { connect } for  pid=5850 comm="syz.9.11715" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  662.679466][ T5865] loop9: detected capacity change from 0 to 512
[  662.692793][ T5865] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  662.735116][ T5865] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  662.758751][ T5865] ext4 filesystem being mounted at /331/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  662.884764][T32729] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.094124][ T5884] loop8: detected capacity change from 0 to 4096
[  663.133342][ T5884] EXT4-fs (loop8): inodes count not valid: 32 vs 27
[  663.171700][   T28] audit: type=1326 audit(1771844276.689:10633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.8.11726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  663.210947][ T5892] netlink: 8 bytes leftover after parsing attributes in process `syz.5.11729'.
[  663.239458][   T28] audit: type=1326 audit(1771844276.719:10634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.8.11726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  663.270072][   T28] audit: type=1326 audit(1771844276.729:10635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.8.11726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  663.303965][   T28] audit: type=1326 audit(1771844276.729:10636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.8.11726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  663.327801][   T28] audit: type=1326 audit(1771844276.729:10637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.8.11726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  663.383961][   T28] audit: type=1326 audit(1771844276.729:10638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.8.11726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  663.408166][   T28] audit: type=1326 audit(1771844276.729:10639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.8.11726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  663.487847][   T28] audit: type=1326 audit(1771844276.729:10640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.8.11726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  664.075666][ T5917] syzkaller0: entered allmulticast mode
[  664.093186][ T5917] syzkaller0: entered promiscuous mode
[  664.106994][ T5917] syzkaller0 (unregistering): left promiscuous mode
[  664.117574][ T5917] syzkaller0 (unregistering): left allmulticast mode
[  664.423835][ T5941] serio: Serial port pts0
[  665.074261][ T5964] netlink: 12 bytes leftover after parsing attributes in process `syz.9.11757'.
[  665.103172][   T28] audit: type=1326 audit(1771844278.619:10641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5965 comm="syz.5.11758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd1d96c629 code=0x7ffc0000
[  665.186818][ T5970] netlink: 80 bytes leftover after parsing attributes in process `syz.5.11760'.
[  665.211784][ T5970] netlink: 8 bytes leftover after parsing attributes in process `syz.5.11760'.
[  665.221782][ T5970] geneve0: entered allmulticast mode
[  665.433146][ T5943] syz.3.11748 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  665.462862][ T5943] CPU: 0 UID: 0 PID: 5943 Comm: syz.3.11748 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  665.462961][ T5943] Tainted: [W]=WARN
[  665.462971][ T5943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  665.462988][ T5943] Call Trace:
[  665.463027][ T5943]  <TASK>
[  665.463037][ T5943]  __dump_stack+0x1d/0x30
[  665.463075][ T5943]  dump_stack_lvl+0x95/0xd0
[  665.463168][ T5943]  dump_stack+0x15/0x1b
[  665.463258][ T5943]  dump_header+0x80/0x240
[  665.463290][ T5943]  oom_kill_process+0x295/0x350
[  665.463314][ T5943]  out_of_memory+0x97d/0xb80
[  665.463358][ T5943]  try_charge_memcg+0x62e/0xa10
[  665.463426][ T5943]  obj_cgroup_charge_pages+0x23/0xc0
[  665.463460][ T5943]  __memcg_kmem_charge_page+0x9e/0x170
[  665.463489][ T5943]  __alloc_frozen_pages_noprof+0x18a/0x360
[  665.463607][ T5943]  alloc_pages_mpol+0xb3/0x260
[  665.463668][ T5943]  alloc_pages_noprof+0x8f/0x130
[  665.463706][ T5943]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  665.463793][ T5943]  __kvmalloc_node_noprof+0x3d4/0x650
[  665.463824][ T5943]  ? ip_set_alloc+0x24/0x30
[  665.463854][ T5943]  ? ip_set_alloc+0x24/0x30
[  665.463889][ T5943]  ip_set_alloc+0x24/0x30
[  665.463937][ T5943]  hash_netiface_create+0x282/0x740
[  665.464017][ T5943]  ? __pfx_hash_netiface_create+0x10/0x10
[  665.464110][ T5943]  ip_set_create+0x3cf/0x970
[  665.464157][ T5943]  ? __nla_parse+0x40/0x60
[  665.464184][ T5943]  nfnetlink_rcv_msg+0x509/0x5d0
[  665.464242][ T5943]  netlink_rcv_skb+0x123/0x220
[  665.464270][ T5943]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  665.464310][ T5943]  nfnetlink_rcv+0x167/0x1720
[  665.464345][ T5943]  ? __kfree_skb+0x109/0x150
[  665.464415][ T5943]  ? nlmon_xmit+0x4f/0x60
[  665.464454][ T5943]  ? consume_skb+0x4b/0x160
[  665.464484][ T5943]  ? nlmon_xmit+0x4f/0x60
[  665.464545][ T5943]  ? dev_hard_start_xmit+0x3b9/0x3f0
[  665.464592][ T5943]  ? __dev_queue_xmit+0x1393/0x1f40
[  665.464679][ T5943]  ? __dev_queue_xmit+0x148/0x1f40
[  665.464716][ T5943]  ? ref_tracker_free+0x37d/0x3e0
[  665.464764][ T5943]  ? __netlink_deliver_tap+0x4dc/0x500
[  665.464796][ T5943]  netlink_unicast+0x5c0/0x690
[  665.464831][ T5943]  netlink_sendmsg+0x5c8/0x6f0
[  665.464873][ T5943]  ? __pfx_netlink_sendmsg+0x10/0x10
[  665.465111][ T5943]  ____sys_sendmsg+0x5af/0x600
[  665.465156][ T5943]  ___sys_sendmsg+0x195/0x1e0
[  665.465238][ T5943]  __x64_sys_sendmsg+0xd4/0x160
[  665.465280][ T5943]  x64_sys_call+0x194c/0x3020
[  665.465314][ T5943]  do_syscall_64+0x12c/0x370
[  665.465442][ T5943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  665.465477][ T5943] RIP: 0033:0x7f9761ecc629
[  665.465495][ T5943] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  665.465523][ T5943] RSP: 002b:00007f976091f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  665.465551][ T5943] RAX: ffffffffffffffda RBX: 00007f9762145fa0 RCX: 00007f9761ecc629
[  665.465640][ T5943] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  665.465659][ T5943] RBP: 00007f9761f62b39 R08: 0000000000000000 R09: 0000000000000000
[  665.465673][ T5943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  665.465685][ T5943] R13: 00007f9762146038 R14: 00007f9762145fa0 R15: 00007fff7136cac8
[  665.465706][ T5943]  </TASK>
[  665.788598][ T5943] memory: usage 307200kB, limit 307200kB, failcnt 2555
[  665.795853][ T5943] memory+swap: usage 375096kB, limit 9007199254740988kB, failcnt 0
[  665.804106][ T5943] kmem: usage 290256kB, limit 9007199254740988kB, failcnt 0
[  665.811481][ T5943] Memory cgroup stats for /syz3:
[  665.811653][ T5943] cache 16785408
[  665.820358][ T5943] rss 487424
[  665.823685][ T5943] shmem 16781312
[  665.827259][ T5943] mapped_file 4096
[  665.831136][ T5943] dirty 0
[  665.834287][ T5943] writeback 0
[  665.837659][ T5943] workingset_refault_anon 3814
[  665.842488][ T5943] workingset_refault_file 2690
[  665.847335][ T5943] swap 69525504
[  665.851122][ T5943] swapcached 80191488
[  665.855140][ T5943] pgpgin 367204
[  665.858626][ T5943] pgpgout 362968
[  665.862410][ T5943] pgfault 381784
[  665.865998][ T5943] pgmajfault 613
[  665.869586][ T5943] inactive_anon 2084864
[  665.873944][ T5943] active_anon 15245312
[  665.878110][ T5943] inactive_file 4096
[  665.882147][ T5943] active_file 16384
[  665.886083][ T5943] unevictable 0
[  665.889580][ T5943] hierarchical_memory_limit 314572800
[  665.895094][ T5943] hierarchical_memsw_limit 9223372036854771712
[  665.901298][ T5943] total_cache 16785408
[  665.905394][ T5943] total_rss 487424
[  665.909175][ T5943] total_shmem 16781312
[  665.913416][ T5943] total_mapped_file 4096
[  665.917688][ T5943] total_dirty 0
[  665.921259][ T5943] total_writeback 0
[  665.925140][ T5943] total_workingset_refault_anon 3814
[  665.930495][ T5943] total_workingset_refault_file 2690
[  665.935812][ T5943] total_swap 69525504
[  665.939821][ T5943] total_swapcached 80191488
[  665.944401][ T5943] total_pgpgin 367204
[  665.948658][ T5943] total_pgpgout 362968
[  665.952904][ T5943] total_pgfault 381784
[  665.957103][ T5943] total_pgmajfault 613
[  665.961279][ T5943] total_inactive_anon 2084864
[  665.965980][ T5943] total_active_anon 15245312
[  665.970619][ T5943] total_inactive_file 4096
[  665.975072][ T5943] total_active_file 16384
[  665.979500][ T5943] total_unevictable 0
[  665.983603][ T5943] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.9654,pid=31608,uid=0
[  665.998445][ T5943] Memory cgroup out of memory: Killed process 31608 (syz.3.9654) total-vm:96076kB, anon-rss:1228kB, file-rss:20800kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  666.045721][T30991] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  666.065082][T30991] CPU: 0 UID: 0 PID: 30991 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  666.065122][T30991] Tainted: [W]=WARN
[  666.065129][T30991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  666.065158][T30991] Call Trace:
[  666.065166][T30991]  <TASK>
[  666.065176][T30991]  __dump_stack+0x1d/0x30
[  666.065218][T30991]  dump_stack_lvl+0x95/0xd0
[  666.065269][T30991]  dump_stack+0x15/0x1b
[  666.065296][T30991]  dump_header+0x80/0x240
[  666.065328][T30991]  oom_kill_process+0x295/0x350
[  666.065396][T30991]  out_of_memory+0x97d/0xb80
[  666.065425][T30991]  try_charge_memcg+0x62e/0xa10
[  666.065493][T30991]  __mem_cgroup_charge+0x65/0x150
[  666.065535][T30991]  filemap_add_folio+0x110/0x350
[  666.065641][T30991]  __filemap_get_folio_mpol+0x326/0x680
[  666.065682][T30991]  filemap_fault+0x486/0xb90
[  666.065749][T30991]  __do_fault+0xbc/0x200
[  666.065791][T30991]  handle_mm_fault+0x11d7/0x3020
[  666.065833][T30991]  ? vma_start_read+0x1c7/0x2c0
[  666.065871][T30991]  do_user_addr_fault+0x62f/0x1050
[  666.065921][T30991]  ? trace_page_fault_user+0x1f/0xe0
[  666.065965][T30991]  exc_page_fault+0x62/0xa0
[  666.065997][T30991]  asm_exc_page_fault+0x26/0x30
[  666.066023][T30991] RIP: 0033:0x7f9761d9a6b4
[  666.066104][T30991] Code: 85 62 0a 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 00 b1 ed 00 48 69 8c 24 90 00 00 00 e8 03 00 00 <8b> 78 08 48 8b 44 24 18 48 c1 ea 12 4c 8b 0d f9 af ed 00 48 01 d1
[  666.066125][T30991] RSP: 002b:00007fff7136ce30 EFLAGS: 00010206
[  666.066146][T30991] RAX: 0000001b2d824000 RBX: 00000000000004a7 RCX: 00000000000a2990
[  666.066231][T30991] RDX: 000000000010a231 RSI: 00007fff7136cec0 RDI: 0000000000000001
[  666.066249][T30991] RBP: 00007fff7136ce6c R08: 00000000003f73b7 R09: 7fffffffffffffff
[  666.066263][T30991] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[  666.066281][T30991] R13: 00000000000927c0 R14: 00000000000a26e6 R15: 00007fff7136cec0
[  666.066379][T30991]  </TASK>
[  666.067945][T30991] memory: usage 307200kB, limit 307200kB, failcnt 2612
[  666.266812][T30991] memory+swap: usage 375028kB, limit 9007199254740988kB, failcnt 0
[  666.275048][T30991] kmem: usage 290332kB, limit 9007199254740988kB, failcnt 0
[  666.282395][T30991] Memory cgroup stats for /syz3:
[  666.282672][T30991] cache 16764928
[  666.291314][T30991] rss 327680
[  666.294563][T30991] shmem 16764928
[  666.298155][T30991] mapped_file 0
[  666.301702][T30991] dirty 0
[  666.304739][T30991] writeback 0
[  666.308067][T30991] workingset_refault_anon 3814
[  666.313218][T30991] workingset_refault_file 2690
[  666.318073][T30991] swap 69455872
[  666.321687][T30991] swapcached 80326656
[  666.325774][T30991] pgpgin 367204
[  666.329276][T30991] pgpgout 362987
[  666.332892][T30991] pgfault 381785
[  666.336554][T30991] pgmajfault 614
[  666.349644][T30991] inactive_anon 15413248
[  666.354025][T30991] active_anon 1843200
[  666.358073][T30991] inactive_file 0
[  666.361770][T30991] active_file 16384
[  666.365640][T30991] unevictable 0
[  666.369248][T30991] hierarchical_memory_limit 314572800
[  666.379187][T30991] hierarchical_memsw_limit 9223372036854771712
[  666.387174][T30991] total_cache 16764928
[  666.391440][T30991] total_rss 327680
[  666.395224][T30991] total_shmem 16764928
[  666.399379][T30991] total_mapped_file 0
[  666.450693][T30991] total_dirty 0
[  666.454267][T30991] total_writeback 0
[  666.458279][T30991] total_workingset_refault_anon 3814
[  666.470918][T30991] total_workingset_refault_file 2690
[  666.497870][T30991] total_swap 69455872
[  666.518140][T30991] total_swapcached 80326656
[  666.525659][T30991] total_pgpgin 367204
[  666.529720][T30991] total_pgpgout 362987
[  666.550505][T30991] total_pgfault 381785
[  666.554675][T30991] total_pgmajfault 614
[  666.568250][T30991] total_inactive_anon 15413248
[  666.580448][T30991] total_active_anon 1843200
[  666.585088][T30991] total_inactive_file 0
[  666.600426][T30991] total_active_file 16384
[  666.607267][T30991] total_unevictable 0
[  666.620534][T30991] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.10410,pid=1535,uid=0
[  666.645619][T30991] Memory cgroup out of memory: Killed process 1535 (syz.3.10410) total-vm:96076kB, anon-rss:1328kB, file-rss:20800kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[  666.880926][ T6013] netlink: 12 bytes leftover after parsing attributes in process `syz.8.11777'.
[  666.963133][ T6021] loop8: detected capacity change from 0 to 1024
[  667.010995][ T6021] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  667.044111][ T4653] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  667.513064][ T6054] netlink: 220 bytes leftover after parsing attributes in process `syz.8.11789'.
[  667.648041][ T6058] netlink: 44 bytes leftover after parsing attributes in process `syz.9.11791'.
[  667.691064][ T6058] bridge0: port 2(bridge_slave_1) entered disabled state
[  667.698408][ T6058] bridge0: port 1(bridge_slave_0) entered disabled state
[  667.711280][ T6061] netlink: 44 bytes leftover after parsing attributes in process `syz.9.11791'.
[  667.941609][ T6068] netlink: 24 bytes leftover after parsing attributes in process `syz.9.11795'.
[  668.078193][ T6036] syz.3.11783 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  668.098014][ T6036] CPU: 0 UID: 0 PID: 6036 Comm: syz.3.11783 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  668.098212][ T6036] Tainted: [W]=WARN
[  668.098222][ T6036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  668.098239][ T6036] Call Trace:
[  668.098248][ T6036]  <TASK>
[  668.098257][ T6036]  __dump_stack+0x1d/0x30
[  668.098294][ T6036]  dump_stack_lvl+0x95/0xd0
[  668.098324][ T6036]  dump_stack+0x15/0x1b
[  668.098572][ T6036]  dump_header+0x80/0x240
[  668.098599][ T6036]  oom_kill_process+0x295/0x350
[  668.098621][ T6036]  out_of_memory+0x97d/0xb80
[  668.098695][ T6036]  try_charge_memcg+0x62e/0xa10
[  668.098737][ T6036]  __mem_cgroup_charge+0x65/0x150
[  668.098769][ T6036]  shmem_get_folio_gfp+0x47b/0xd60
[  668.098813][ T6036]  shmem_write_begin+0xfc/0x1f0
[  668.098910][ T6036]  generic_perform_write+0x183/0x490
[  668.098936][ T6036]  ? current_time+0x188/0x240
[  668.098972][ T6036]  shmem_file_write_iter+0xc5/0xf0
[  668.099079][ T6036]  __kernel_write_iter+0x319/0x590
[  668.099116][ T6036]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  668.099192][ T6036]  dump_user_range+0xa7d/0xdb0
[  668.099226][ T6036]  elf_core_dump+0x21a2/0x2330
[  668.099269][ T6036]  ? 0xffffffffff600000
[  668.099309][ T6036]  coredump_write+0xacc/0xdd0
[  668.099381][ T6036]  vfs_coredump+0x26c7/0x3130
[  668.099429][ T6036]  ? __memcg_slab_free_hook+0xc4/0x250
[  668.099470][ T6036]  ? __sigqueue_free+0xf4/0x130
[  668.099503][ T6036]  ? proc_coredump_connector+0x160/0x2b0
[  668.099564][ T6036]  ? __sigqueue_free+0xf4/0x130
[  668.099596][ T6036]  ? kmem_cache_free+0xc8/0x380
[  668.099681][ T6036]  get_signal+0xd80/0xf60
[  668.099719][ T6036]  arch_do_signal_or_restart+0x96/0x450
[  668.099763][ T6036]  irqentry_exit+0xf7/0x520
[  668.099866][ T6036]  asm_exc_page_fault+0x26/0x30
[  668.099890][ T6036] RIP: 0033:0x7f9761d82777
[  668.099911][ T6036] Code: e8 8e fa ff ff 89 f2 48 8d 3d 0d 41 1b 00 48 8d 35 94 f9 1d 00 31 c0 e8 e7 f8 ff ff 0f 1f 80 00 00 00 00 53 89 fb 48 83 ec 10 <64> 8b 04 25 a4 ff ff ff 85 c0 74 2a 89 fe 31 c0 bf 3c 00 00 00 e8
[  668.099935][ T6036] RSP: 002b:00007f9760900120 EFLAGS: 00010202
[  668.099956][ T6036] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f9761ecc629
[  668.099971][ T6036] RDX: 00007f9760900140 RSI: 00007f9760900270 RDI: 000000000000000b
[  668.100006][ T6036] RBP: 00007f9761f62b39 R08: 0000000000000000 R09: 0000000000000000
[  668.100023][ T6036] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  668.100047][ T6036] R13: 00007f9762146038 R14: 00007f9762145fa0 R15: 00007fff7136cac8
[  668.100155][ T6036]  </TASK>
[  668.100233][ T6036] memory: usage 307200kB, limit 307200kB, failcnt 2835
[  668.354483][ T6036] memory+swap: usage 374984kB, limit 9007199254740988kB, failcnt 0
[  668.362441][ T6036] kmem: usage 258608kB, limit 9007199254740988kB, failcnt 0
[  668.369789][ T6036] Memory cgroup stats for /syz3:
[  668.370142][ T6036] cache 49041408
[  668.378955][ T6036] rss 512000
[  668.382213][ T6036] shmem 49041408
[  668.385900][ T6036] mapped_file 0
[  668.389382][ T6036] dirty 0
[  668.394051][ T6036] writeback 0
[  668.398870][ T6036] workingset_refault_anon 3821
[  668.404718][ T6036] workingset_refault_file 2884
[  668.409516][ T6036] swap 69410816
[  668.413017][ T6036] swapcached 80322560
[  668.417068][ T6036] pgpgin 379687
[  668.420615][ T6036] pgpgout 367539
[  668.424215][ T6036] pgfault 386997
[  668.427787][ T6036] pgmajfault 617
[  668.431449][ T6036] inactive_anon 40747008
[  668.435752][ T6036] active_anon 8994816
[  668.439803][ T6036] inactive_file 0
[  668.443660][ T6036] active_file 16384
[  668.447608][ T6036] unevictable 0
[  668.451214][ T6036] hierarchical_memory_limit 314572800
[  668.456685][ T6036] hierarchical_memsw_limit 9223372036854771712
[  668.463158][ T6036] total_cache 49041408
[  668.467410][ T6036] total_rss 512000
[  668.472074][ T6036] total_shmem 49041408
[  668.476233][ T6036] total_mapped_file 0
[  668.480298][ T6036] total_dirty 0
[  668.484073][ T6036] total_writeback 0
[  668.487974][ T6036] total_workingset_refault_anon 3821
[  668.493631][ T6036] total_workingset_refault_file 2884
[  668.499145][ T6036] total_swap 69410816
[  668.505080][ T6036] total_swapcached 80322560
[  668.509701][ T6036] total_pgpgin 379687
[  668.515041][ T6036] total_pgpgout 367539
[  668.519198][ T6036] total_pgfault 386997
[  668.523539][ T6036] total_pgmajfault 617
[  668.527725][ T6036] total_inactive_anon 40747008
[  668.532805][ T6036] total_active_anon 8994816
[  668.537449][ T6036] total_inactive_file 0
[  668.541912][ T6036] total_active_file 16384
[  668.546322][ T6036] total_unevictable 0
[  668.550827][ T6036] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.11783,pid=6036,uid=0
[  668.566272][ T6036] Memory cgroup out of memory: Killed process 6036 (syz.3.11783) total-vm:94028kB, anon-rss:1524kB, file-rss:52160kB, shmem-rss:0kB, UID:0 pgtables:168kB oom_score_adj:0
[  668.795626][ T6038] syz.3.11784 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  668.815968][ T6038] CPU: 0 UID: 0 PID: 6038 Comm: syz.3.11784 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  668.816047][ T6038] Tainted: [W]=WARN
[  668.816058][ T6038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  668.816076][ T6038] Call Trace:
[  668.816085][ T6038]  <TASK>
[  668.816095][ T6038]  __dump_stack+0x1d/0x30
[  668.816132][ T6038]  dump_stack_lvl+0x95/0xd0
[  668.816213][ T6038]  dump_stack+0x15/0x1b
[  668.816243][ T6038]  dump_header+0x80/0x240
[  668.816275][ T6038]  oom_kill_process+0x295/0x350
[  668.816336][ T6038]  out_of_memory+0x97d/0xb80
[  668.816396][ T6038]  try_charge_memcg+0x62e/0xa10
[  668.816449][ T6038]  obj_cgroup_charge_pages+0x23/0xc0
[  668.816510][ T6038]  __memcg_kmem_charge_page+0x9e/0x170
[  668.816574][ T6038]  __alloc_frozen_pages_noprof+0x18a/0x360
[  668.816617][ T6038]  alloc_pages_mpol+0xb3/0x260
[  668.816679][ T6038]  alloc_pages_noprof+0x8f/0x130
[  668.816722][ T6038]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  668.816890][ T6038]  __kvmalloc_node_noprof+0x3d4/0x650
[  668.816973][ T6038]  ? ip_set_alloc+0x24/0x30
[  668.817020][ T6038]  ? ip_set_alloc+0x24/0x30
[  668.817112][ T6038]  ? __kmalloc_cache_noprof+0x18a/0x410
[  668.817146][ T6038]  ip_set_alloc+0x24/0x30
[  668.817218][ T6038]  hash_netiface_create+0x282/0x740
[  668.817308][ T6038]  ? __pfx_hash_netiface_create+0x10/0x10
[  668.817340][ T6038]  ip_set_create+0x3cf/0x970
[  668.817459][ T6038]  ? __nla_parse+0x40/0x60
[  668.817578][ T6038]  nfnetlink_rcv_msg+0x509/0x5d0
[  668.817639][ T6038]  netlink_rcv_skb+0x123/0x220
[  668.817675][ T6038]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  668.817715][ T6038]  nfnetlink_rcv+0x167/0x1720
[  668.817827][ T6038]  ? __kfree_skb+0x109/0x150
[  668.817920][ T6038]  ? nlmon_xmit+0x4f/0x60
[  668.817956][ T6038]  ? consume_skb+0x4b/0x160
[  668.817987][ T6038]  ? nlmon_xmit+0x4f/0x60
[  668.818092][ T6038]  ? dev_hard_start_xmit+0x3b9/0x3f0
[  668.818204][ T6038]  ? __dev_queue_xmit+0x1393/0x1f40
[  668.818235][ T6038]  ? __dev_queue_xmit+0x148/0x1f40
[  668.818263][ T6038]  ? ref_tracker_free+0x37d/0x3e0
[  668.818290][ T6038]  ? __netlink_deliver_tap+0x4dc/0x500
[  668.818388][ T6038]  netlink_unicast+0x5c0/0x690
[  668.818419][ T6038]  netlink_sendmsg+0x5c8/0x6f0
[  668.818450][ T6038]  ? __pfx_netlink_sendmsg+0x10/0x10
[  668.818711][ T6038]  ____sys_sendmsg+0x5af/0x600
[  668.818754][ T6038]  ___sys_sendmsg+0x195/0x1e0
[  668.818833][ T6038]  __x64_sys_sendmsg+0xd4/0x160
[  668.818901][ T6038]  x64_sys_call+0x194c/0x3020
[  668.818937][ T6038]  do_syscall_64+0x12c/0x370
[  668.818999][ T6038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  668.819035][ T6038] RIP: 0033:0x7f9761ecc629
[  668.819055][ T6038] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  668.819103][ T6038] RSP: 002b:00007f976091f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  668.819126][ T6038] RAX: ffffffffffffffda RBX: 00007f9762145fa0 RCX: 00007f9761ecc629
[  668.819145][ T6038] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  668.819162][ T6038] RBP: 00007f9761f62b39 R08: 0000000000000000 R09: 0000000000000000
[  668.819179][ T6038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  668.819216][ T6038] R13: 00007f9762146038 R14: 00007f9762145fa0 R15: 00007fff7136cac8
[  668.819243][ T6038]  </TASK>
[  668.819278][ T6038] memory: usage 307200kB, limit 307200kB, failcnt 4376
[  668.978715][   T28] kauditd_printk_skb: 14 callbacks suppressed
[  668.978760][   T28] audit: type=1400 audit(1771844282.489:10656): avc:  denied  { read } for  pid=6078 comm="syz.8.11800" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  669.009010][ T6038] memory+swap: usage 374984kB, limit 9007199254740988kB, failcnt 0
[  669.038621][   T28] audit: type=1400 audit(1771844282.489:10657): avc:  denied  { open } for  pid=6078 comm="syz.8.11800" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  669.063036][ T6038] kmem: usage 290372kB, limit 9007199254740988kB, failcnt 0
[  669.160906][ T6085] netlink: 24 bytes leftover after parsing attributes in process `syz.5.11802'.
[  669.163153][ T6038] Memory cgroup stats for /syz3:
[  669.235690][ T6038] cache 16781312
[  669.244704][ T6038] rss 233472
[  669.248223][ T6038] shmem 16781312
[  669.252122][ T6038] mapped_file 0
[  669.255937][ T6038] dirty 0
[  669.258980][ T6038] writeback 0
[  669.262693][ T6038] workingset_refault_anon 3821
[  669.267685][ T6038] workingset_refault_file 3169
[  669.272624][ T6038] swap 69410816
[  669.276211][ T6038] swapcached 80322560
[  669.280548][ T6038] pgpgin 379972
[  669.284162][ T6038] pgpgout 375768
[  669.295055][ T6038] pgfault 387003
[  669.341480][ T6038] pgmajfault 622
[  669.345061][ T6038] inactive_anon 16412672
[  669.349414][ T6038] active_anon 790528
[  669.367689][ T6038] inactive_file 16384
[  669.372129][ T6038] active_file 0
[  669.375620][ T6038] unevictable 0
[  669.379153][ T6038] hierarchical_memory_limit 314572800
[  669.385067][ T6038] hierarchical_memsw_limit 9223372036854771712
[  669.393082][ T6038] total_cache 16781312
[  669.397360][ T6038] total_rss 233472
[  669.401606][ T6038] total_shmem 16781312
[  669.406305][ T6038] total_mapped_file 0
[  669.410374][ T6038] total_dirty 0
[  669.414459][ T6038] total_writeback 0
[  669.418394][ T6038] total_workingset_refault_anon 3821
[  669.441683][ T6038] total_workingset_refault_file 3169
[  669.457343][ T6038] total_swap 69410816
[  669.464448][ T6038] total_swapcached 80322560
[  669.479297][ T6038] total_pgpgin 379972
[  669.485286][ T6038] total_pgpgout 375768
[  669.494853][ T6038] total_pgfault 387003
[  669.498976][ T6038] total_pgmajfault 622
[  669.503818][ T6095] vxcan1: entered promiscuous mode
[  669.512239][ T6038] total_inactive_anon 16412672
[  669.517673][ T6038] total_active_anon 790528
[  669.522432][ T6038] total_inactive_file 16384
[  669.526965][ T6038] total_active_file 0
[  669.536626][ T6038] total_unevictable 0
[  669.560500][ T6038] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.11784,pid=6037,uid=0
[  669.582099][ T6099] netlink: 'syz.7.11807': attribute type 1 has an invalid length.
[  669.602372][ T6038] Memory cgroup out of memory: Killed process 6038 (syz.3.11784) total-vm:96340kB, anon-rss:1424kB, file-rss:22412kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:0
[  669.639644][ T6099] 8021q: adding VLAN 0 to HW filter on device bond2
[  669.685677][ T6099] netlink: 12 bytes leftover after parsing attributes in process `syz.7.11807'.
[  669.737489][ T6103] bond2: (slave veth9): Enslaving as an active interface with a down link
[  669.770067][   T28] audit: type=1400 audit(1771844283.279:10658): avc:  denied  { append } for  pid=6104 comm="syz.9.11810" name="rt_cache" dev="proc" ino=4026534641 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  669.819847][ T6099] 8021q: adding VLAN 0 to HW filter on device batadv1
[  669.854783][ T6099] bond2: (slave batadv1): making interface the new active one
[  669.883427][ T6099] batadv1: entered promiscuous mode
[  669.890662][ T6099] bond2: (slave batadv1): Enslaving as an active interface with an up link
[  670.187575][ T6140] loop7: detected capacity change from 0 to 512
[  670.207279][ T6140] EXT4-fs: Ignoring removed nobh option
[  670.245441][ T6140] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  670.272148][ T6144] __nla_validate_parse: 2 callbacks suppressed
[  670.272168][ T6144] netlink: 4 bytes leftover after parsing attributes in process `syz.5.11823'.
[  670.298556][ T6144] netlink: 12 bytes leftover after parsing attributes in process `syz.5.11823'.
[  670.310334][ T6140] EXT4-fs (loop7): 1 truncate cleaned up
[  670.336367][ T6140] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  670.703868][ T6163] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11830'.
[  670.797221][ T6166] netlink: 4 bytes leftover after parsing attributes in process `syz.9.11831'.
[  670.848467][ T6168] netlink: 4 bytes leftover after parsing attributes in process `syz.9.11831'.
[  670.969833][ T6133] syz.7.11820 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  671.031031][ T6133] CPU: 0 UID: 0 PID: 6133 Comm: syz.7.11820 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  671.031074][ T6133] Tainted: [W]=WARN
[  671.031123][ T6133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  671.031136][ T6133] Call Trace:
[  671.031142][ T6133]  <TASK>
[  671.031152][ T6133]  __dump_stack+0x1d/0x30
[  671.031187][ T6133]  dump_stack_lvl+0x95/0xd0
[  671.031338][ T6133]  dump_stack+0x15/0x1b
[  671.031364][ T6133]  dump_header+0x80/0x240
[  671.031395][ T6133]  oom_kill_process+0x295/0x350
[  671.031491][ T6133]  out_of_memory+0x97d/0xb80
[  671.031586][ T6133]  try_charge_memcg+0x62e/0xa10
[  671.031634][ T6133]  obj_cgroup_charge_pages+0x23/0xc0
[  671.031755][ T6133]  __memcg_kmem_charge_page+0x9e/0x170
[  671.031786][ T6133]  __alloc_frozen_pages_noprof+0x18a/0x360
[  671.031875][ T6133]  alloc_pages_mpol+0xb3/0x260
[  671.031914][ T6133]  alloc_pages_noprof+0x8f/0x130
[  671.031948][ T6133]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  671.032014][ T6133]  __kvmalloc_node_noprof+0x3d4/0x650
[  671.032101][ T6133]  ? ip_set_alloc+0x24/0x30
[  671.032199][ T6133]  ? ip_set_alloc+0x24/0x30
[  671.032224][ T6133]  ? hash_netiface_create+0x21b/0x740
[  671.032352][ T6133]  ? __kmalloc_cache_noprof+0x18a/0x410
[  671.032385][ T6133]  ip_set_alloc+0x24/0x30
[  671.032415][ T6133]  hash_netiface_create+0x282/0x740
[  671.032446][ T6133]  ? __pfx_hash_netiface_create+0x10/0x10
[  671.032485][ T6133]  ip_set_create+0x3cf/0x970
[  671.032527][ T6133]  ? __nla_parse+0x40/0x60
[  671.032558][ T6133]  nfnetlink_rcv_msg+0x509/0x5d0
[  671.032615][ T6133]  netlink_rcv_skb+0x123/0x220
[  671.032663][ T6133]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  671.032702][ T6133]  nfnetlink_rcv+0x167/0x1720
[  671.032785][ T6133]  ? __kfree_skb+0x109/0x150
[  671.032817][ T6133]  ? nlmon_xmit+0x4f/0x60
[  671.032859][ T6133]  ? consume_skb+0x4b/0x160
[  671.032886][ T6133]  ? nlmon_xmit+0x4f/0x60
[  671.032950][ T6133]  ? dev_hard_start_xmit+0x3b9/0x3f0
[  671.032986][ T6133]  ? __dev_queue_xmit+0x1393/0x1f40
[  671.033021][ T6133]  ? __dev_queue_xmit+0x148/0x1f40
[  671.033111][ T6133]  ? ref_tracker_free+0x37d/0x3e0
[  671.033141][ T6133]  ? __netlink_deliver_tap+0x4dc/0x500
[  671.033175][ T6133]  netlink_unicast+0x5c0/0x690
[  671.033208][ T6133]  netlink_sendmsg+0x5c8/0x6f0
[  671.033292][ T6133]  ? __pfx_netlink_sendmsg+0x10/0x10
[  671.033322][ T6133]  ____sys_sendmsg+0x5af/0x600
[  671.033355][ T6133]  ___sys_sendmsg+0x195/0x1e0
[  671.033450][ T6133]  __x64_sys_sendmsg+0xd4/0x160
[  671.033491][ T6133]  x64_sys_call+0x194c/0x3020
[  671.033525][ T6133]  do_syscall_64+0x12c/0x370
[  671.033599][ T6133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  671.033628][ T6133] RIP: 0033:0x7ff748e4c629
[  671.033650][ T6133] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  671.033670][ T6133] RSP: 002b:00007ff7478a7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  671.033691][ T6133] RAX: ffffffffffffffda RBX: 00007ff7490c5fa0 RCX: 00007ff748e4c629
[  671.033721][ T6133] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  671.033769][ T6133] RBP: 00007ff748ee2b39 R08: 0000000000000000 R09: 0000000000000000
[  671.033782][ T6133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  671.033794][ T6133] R13: 00007ff7490c6038 R14: 00007ff7490c5fa0 R15: 00007ffe5e647378
[  671.033843][ T6133]  </TASK>
[  671.035550][ T6133] memory: usage 307200kB, limit 307200kB, failcnt 1093
[  671.398111][ T6133] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  671.406306][ T6133] kmem: usage 238708kB, limit 9007199254740988kB, failcnt 0
[  671.440283][ T6133] Memory cgroup stats for /syz7:
[  671.440617][ T6133] cache 69730304
[  671.449433][ T6133] rss 389120
[  671.454345][ T6133] shmem 69701632
[  671.475904][ T6133] mapped_file 0
[  671.483793][ T6133] dirty 0
[  671.487017][ T6133] writeback 0
[  671.490829][ T6133] workingset_refault_anon 2102
[  671.495655][ T6133] workingset_refault_file 1416
[  671.526029][ T6133] swap 0
[  671.529036][ T6133] swapcached 4096
[  671.540472][ T6133] pgpgin 166930
[  671.543980][ T6133] pgpgout 149807
[  671.547548][ T6133] pgfault 129661
[  671.565362][ T6133] pgmajfault 293
[  671.575165][ T6203] netlink: 'syz.9.11839': attribute type 1 has an invalid length.
[  671.602358][ T6133] inactive_anon 40960
[  671.606429][ T6133] active_anon 70049792
[  671.610684][ T6203] netlink: 'syz.9.11839': attribute type 4 has an invalid length.
[  671.618588][ T6203] netlink: 9462 bytes leftover after parsing attributes in process `syz.9.11839'.
[  671.632425][ T6133] inactive_file 45056
[  671.636448][ T6133] active_file 0
[  671.640033][ T6133] unevictable 0
[  671.644251][ T6206] netlink: 'syz.9.11839': attribute type 1 has an invalid length.
[  671.652896][ T6206] netlink: 'syz.9.11839': attribute type 4 has an invalid length.
[  671.661293][ T6133] hierarchical_memory_limit 314572800
[  671.666746][ T6133] hierarchical_memsw_limit 9223372036854771712
[  671.675053][ T6206] netlink: 9462 bytes leftover after parsing attributes in process `syz.9.11839'.
[  671.684569][ T6133] total_cache 69730304
[  671.688719][ T6133] total_rss 389120
[  671.692889][ T6133] total_shmem 69701632
[  671.727705][ T6133] total_mapped_file 0
[  671.733507][ T6211] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  671.733867][ T6133] total_dirty 0
[  671.740807][ T6211] IPv6: NLM_F_CREATE should be set when creating new route
[  671.784016][ T6133] total_writeback 0
[  671.787916][ T6133] total_workingset_refault_anon 2102
[  671.810932][ T6133] total_workingset_refault_file 1416
[  671.822797][ T6133] total_swap 0
[  671.829426][ T6133] total_swapcached 4096
[  671.867063][ T6133] total_pgpgin 166930
[  671.886557][ T6133] total_pgpgout 149807
[  671.924575][ T6133] total_pgfault 129661
[  671.983942][ T6133] total_pgmajfault 293
[  672.005355][ T6133] total_inactive_anon 40960
[  672.017768][ T6133] total_active_anon 70049792
[  672.026999][ T6133] total_inactive_file 45056
[  672.031638][   T28] audit: type=1400 audit(1771844285.549:10659): avc:  denied  { unmount } for  pid=6256 comm="syz.5.11844" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  672.038176][ T6133] total_active_file 0
[  672.076289][ T6133] total_unevictable 0
[  672.093617][ T6133] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz7,task_memcg=/syz7,task=syz.7.11820,pid=6132,uid=0
[  672.114167][   T28] audit: type=1400 audit(1771844285.629:10660): avc:  denied  { watch watch_reads } for  pid=6258 comm="syz.5.11845" path="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  672.131200][ T6133] Memory cgroup out of memory: Killed process 6132 (syz.7.11820) total-vm:96340kB, anon-rss:1420kB, file-rss:22456kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  672.274080][ T3265] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  672.356130][ T6267] loop7: detected capacity change from 0 to 1024
[  672.370209][ T6267] EXT4-fs: Ignoring removed orlov option
[  672.406627][ T6267] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  672.506156][ T6267] Trying to write to read-only block-device loop7
[  672.514180][ T6280] ref_ctr_offset mismatch. inode: 0x252 offset: 0x0 ref_ctr_offset(old): 0x82 ref_ctr_offset(new): 0x0
[  672.529886][ T6281] EXT4-fs error (device loop7): mb_free_blocks:2047: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  672.565335][   T28] audit: type=1400 audit(1771844286.079:10661): avc:  denied  { rmdir } for  pid=3265 comm="syz-executor" name="lost+found" dev="loop7" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  672.632548][ T3265] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  672.657745][   T28] audit: type=1400 audit(1771844286.079:10662): avc:  denied  { unlink } for  pid=3265 comm="syz-executor" name="file1" dev="loop7" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  672.760125][   T28] audit: type=1400 audit(1771844286.099:10663): avc:  denied  { unlink } for  pid=3265 comm="syz-executor" name="bus" dev="loop7" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  672.903641][ T6291] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11857'.
[  673.094186][ T6291] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  673.148733][ T6291] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  673.293196][ T6291] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  673.320511][ T6291] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  673.385740][ T6289] pim6reg: entered allmulticast mode
[  673.396461][ T6292] pim6reg: left allmulticast mode
[  673.428213][ T6291] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  673.447398][ T6291] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  673.581960][ T6291] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  673.614818][ T6291] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  673.702889][ T4240] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  673.711443][ T4240] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 20004 - 0
[  673.762310][ T4240] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  673.780515][ T4240] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 20004 - 0
[  673.885864][ T4240] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  673.900529][ T4240] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 20004 - 0
[  673.939134][ T4240] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  673.966794][ T4240] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 20004 - 0
[  674.095282][ T6297] syz.5.11859 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  674.111241][ T6297] CPU: 1 UID: 0 PID: 6297 Comm: syz.5.11859 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  674.111281][ T6297] Tainted: [W]=WARN
[  674.111290][ T6297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  674.111305][ T6297] Call Trace:
[  674.111313][ T6297]  <TASK>
[  674.111322][ T6297]  __dump_stack+0x1d/0x30
[  674.111354][ T6297]  dump_stack_lvl+0x95/0xd0
[  674.111456][ T6297]  dump_stack+0x15/0x1b
[  674.111553][ T6297]  dump_header+0x80/0x240
[  674.111581][ T6297]  oom_kill_process+0x295/0x350
[  674.111638][ T6297]  out_of_memory+0x97d/0xb80
[  674.111663][ T6297]  try_charge_memcg+0x62e/0xa10
[  674.111711][ T6297]  obj_cgroup_charge_pages+0x23/0xc0
[  674.111742][ T6297]  __memcg_kmem_charge_page+0x9e/0x170
[  674.111833][ T6297]  __alloc_frozen_pages_noprof+0x18a/0x360
[  674.111899][ T6297]  alloc_pages_mpol+0xb3/0x260
[  674.111936][ T6297]  alloc_pages_noprof+0x8f/0x130
[  674.112012][ T6297]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  674.112056][ T6297]  __kvmalloc_node_noprof+0x3d4/0x650
[  674.112133][ T6297]  ? ip_set_alloc+0x24/0x30
[  674.112160][ T6297]  ? ip_set_alloc+0x24/0x30
[  674.112257][ T6297]  ? __kmalloc_cache_noprof+0x18a/0x410
[  674.112286][ T6297]  ip_set_alloc+0x24/0x30
[  674.112441][ T6297]  hash_netiface_create+0x282/0x740
[  674.112470][ T6297]  ? __pfx_hash_netiface_create+0x10/0x10
[  674.112506][ T6297]  ip_set_create+0x3cf/0x970
[  674.112548][ T6297]  ? __nla_parse+0x40/0x60
[  674.112656][ T6297]  nfnetlink_rcv_msg+0x509/0x5d0
[  674.112707][ T6297]  netlink_rcv_skb+0x123/0x220
[  674.112736][ T6297]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  674.112769][ T6297]  nfnetlink_rcv+0x167/0x1720
[  674.112857][ T6297]  ? __list_del_entry_valid_or_report+0x65/0x130
[  674.112894][ T6297]  ? __rmqueue_pcplist+0x9b0/0xb70
[  674.112928][ T6297]  ? _raw_spin_lock_bh+0x56/0xb0
[  674.112997][ T6297]  ? _raw_spin_unlock_bh+0x18/0x20
[  674.113024][ T6297]  ? selinux_nlmsg_lookup+0x99/0x890
[  674.113108][ T6297]  ? __rcu_read_unlock+0x33/0x70
[  674.113204][ T6297]  ? __netlink_lookup+0x276/0x2b0
[  674.113240][ T6297]  netlink_unicast+0x5c0/0x690
[  674.113271][ T6297]  netlink_sendmsg+0x5c8/0x6f0
[  674.113305][ T6297]  ? __pfx_netlink_sendmsg+0x10/0x10
[  674.113382][ T6297]  ____sys_sendmsg+0x5af/0x600
[  674.113418][ T6297]  ___sys_sendmsg+0x195/0x1e0
[  674.113474][ T6297]  __x64_sys_sendmsg+0xd4/0x160
[  674.113545][ T6297]  x64_sys_call+0x194c/0x3020
[  674.113576][ T6297]  do_syscall_64+0x12c/0x370
[  674.113675][ T6297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  674.113700][ T6297] RIP: 0033:0x7fdd1d96c629
[  674.113719][ T6297] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  674.113772][ T6297] RSP: 002b:00007fdd1c3c7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  674.113796][ T6297] RAX: ffffffffffffffda RBX: 00007fdd1dbe5fa0 RCX: 00007fdd1d96c629
[  674.113812][ T6297] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  674.113849][ T6297] RBP: 00007fdd1da02b39 R08: 0000000000000000 R09: 0000000000000000
[  674.113864][ T6297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  674.113954][ T6297] R13: 00007fdd1dbe6038 R14: 00007fdd1dbe5fa0 R15: 00007ffcc5283008
[  674.113978][ T6297]  </TASK>
[  674.117270][ T6297] memory: usage 307200kB, limit 307200kB, failcnt 1735
[  674.390898][ T6312] loop9: detected capacity change from 0 to 1024
[  674.477387][ T6312] EXT4-fs: Ignoring removed oldalloc option
[  674.492273][ T6312] EXT4-fs: Ignoring removed bh option
[  674.498736][ T6297] memory+swap: usage 363604kB, limit 9007199254740988kB, failcnt 0
[  674.507528][ T6297] kmem: usage 293092kB, limit 9007199254740988kB, failcnt 0
[  674.516607][ T6312] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  674.554034][ T6297] Memory cgroup stats for /syz5:
[  674.554418][ T6297] cache 11747328
[  674.608964][ T6297] rss 2211840
[  674.612629][ T6297] shmem 11743232
[  674.616236][ T6297] mapped_file 4096
[  674.620076][ T6297] dirty 4096
[  674.623962][ T6297] writeback 0
[  674.627355][ T6297] workingset_refault_anon 4010
[  674.632920][ T6297] workingset_refault_file 8895
[  674.638042][ T6297] swap 57757696
[  674.641878][ T6297] swapcached 83767296
[  674.645915][ T6297] pgpgin 927016
[  674.649561][ T6297] pgpgout 923497
[  674.659704][ T6297] pgfault 668661
[  674.685112][ T6297] pgmajfault 579
[  674.705260][   T28] audit: type=1400 audit(1771844288.219:10664): avc:  denied  { setopt } for  pid=6327 comm="syz.7.11869" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  674.708318][ T6297] inactive_anon 12091392
[  674.750293][ T6297] active_anon 2297856
[  674.754637][ T6297] inactive_file 24576
[  674.758781][ T6297] active_file 0
[  674.762530][ T6297] unevictable 0
[  674.766373][ T6297] hierarchical_memory_limit 314572800
[  674.771997][ T6297] hierarchical_memsw_limit 9223372036854771712
[  674.778422][ T6297] total_cache 11747328
[  674.782909][ T6297] total_rss 2211840
[  674.787003][ T6297] total_shmem 11743232
[  674.791830][ T6297] total_mapped_file 4096
[  674.796159][ T6297] total_dirty 4096
[  674.806269][ T6328] bond3: option lacp_rate: mode dependency failed, not supported in mode active-backup(1)
[  674.827372][ T6297] total_writeback 0
[  674.847608][ T6297] total_workingset_refault_anon 4010
[  674.874122][ T6328] bond3 (unregistering): Released all slaves
[  674.890242][ T6297] total_workingset_refault_file 8895
[  674.915230][ T6297] total_swap 57757696
[  674.919456][ T6297] total_swapcached 83767296
[  674.930609][ T6297] total_pgpgin 927036
[  674.934772][ T6297] total_pgpgout 923517
[  674.945652][ T6297] total_pgfault 668691
[  674.950822][ T6334] netlink: 2028 bytes leftover after parsing attributes in process `syz.8.11871'.
[  674.970576][ T6297] total_pgmajfault 579
[  674.974803][ T6297] total_inactive_anon 12091392
[  674.979711][ T6334] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11871'.
[  674.993829][ T6297] total_active_anon 2297856
[  675.003916][ T6297] total_inactive_file 24576
[  675.012998][ T6297] total_active_file 0
[  675.021435][ T6297] total_unevictable 0
[  675.029870][ T6297] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.5158,pid=18140,uid=0
[  675.063724][ T6297] Memory cgroup out of memory: Killed process 18140 (syz.5.5158) total-vm:94028kB, anon-rss:1328kB, file-rss:20800kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[  675.512533][T32729] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  675.658405][ T6336] pim6reg: entered allmulticast mode
[  675.667070][ T6336] pim6reg: left allmulticast mode
[  675.673011][   T28] audit: type=1400 audit(1771844289.189:10665): avc:  denied  { accept } for  pid=6353 comm="syz.5.11879" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  675.755399][ T6358] ref_ctr increment failed for inode: 0xaba offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff888119caca40
[  675.787472][ T6355] uprobe: syz.3.11880:6355 failed to unregister, leaking uprobe
[  676.031466][ T6375] loop7: detected capacity change from 0 to 1024
[  676.051354][ T6375] EXT4-fs: Ignoring removed oldalloc option
[  676.057412][ T6375] EXT4-fs: Ignoring removed bh option
[  676.155172][ T6371] pim6reg: entered allmulticast mode
[  676.193857][ T6371] pim6reg: left allmulticast mode
[  676.457700][   T28] audit: type=1400 audit(1771844289.969:10666): avc:  denied  { accept } for  pid=6380 comm="syz.5.11889" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  676.780370][   T28] audit: type=1400 audit(1771844290.289:10667): avc:  denied  { read } for  pid=6398 comm="syz.8.11900" path="socket:[133541]" dev="sockfs" ino=133541 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  678.845524][ T6447] loop9: detected capacity change from 0 to 1024
[  678.868785][ T6447] EXT4-fs: Ignoring removed oldalloc option
[  678.900631][ T6447] EXT4-fs: Ignoring removed bh option
[  678.919197][ T6447] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  679.294476][ T6408] geneve1: left promiscuous mode
[  679.301612][ T6408] ip6gre1: left promiscuous mode
[  679.311190][ T6408] bond1: left promiscuous mode
[  679.324301][ T6408] vti0: left promiscuous mode
[  679.434627][ T6437] pim6reg: entered allmulticast mode
[  679.450283][ T6424] pim6reg: left allmulticast mode
[  679.579016][ T6241] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  679.621018][ T6241] netdevsim netdevsim3 eth0: unset [1, 1] type 2 family 0 port 20004 - 0
[  679.758674][ T6241] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  679.786615][ T6241] netdevsim netdevsim3 eth1: unset [1, 1] type 2 family 0 port 20004 - 0
[  679.808396][ T6241] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  679.827003][ T6451] EXT4-fs error (device loop9): ext4_mb_mark_diskspace_used:4222: comm syz.9.11916: Allocating blocks 1-17 which overlap fs metadata
[  679.843212][ T6447] EXT4-fs error (device loop9): ext4_mb_mark_diskspace_used:4222: comm syz.9.11916: Allocating blocks 1-17 which overlap fs metadata
[  679.854610][ T6241] netdevsim netdevsim3 eth2: unset [1, 1] type 2 family 0 port 20004 - 0
[  679.902151][ T6241] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  679.915805][T32729] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  679.925929][ T6241] netdevsim netdevsim3 eth3: unset [1, 1] type 2 family 0 port 20004 - 0
[  680.063972][ T6474] netlink: 131740 bytes leftover after parsing attributes in process `syz.5.11924'.
[  680.181932][ T6474] netlink: zone id is out of range
[  680.187982][ T6474] netlink: zone id is out of range
[  680.261963][ T6474] netlink: zone id is out of range
[  680.268693][ T6474] netlink: del zone limit has 8 unknown bytes
[  680.905252][ T6502] vlan4: entered allmulticast mode
[  680.912526][ T6502] macsec0: entered allmulticast mode
[  680.924572][ T6502] veth1_macvtap: entered allmulticast mode
[  681.252342][  T108] batadv1: left promiscuous mode
[  681.297786][ T6518] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11942'.
[  681.316299][ T6518] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11942'.
[  681.973004][ T6573] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11964'.
[  682.166934][ T6582] loop9: detected capacity change from 0 to 512
[  682.235363][ T6584] netlink: 'syz.8.11967': attribute type 1 has an invalid length.
[  682.269239][ T6584] bond1: entered promiscuous mode
[  682.283059][ T6584] bond1: entered allmulticast mode
[  682.294135][ T6584] 8021q: adding VLAN 0 to HW filter on device bond1
[  682.320517][ T6586] macvlan2: entered promiscuous mode
[  682.329877][ T6586] macvlan2: entered allmulticast mode
[  682.343984][ T6586] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  682.598154][ T6605] tipc: Started in network mode
[  682.611508][ T6605] tipc: Node identity 4, cluster identity 4711
[  682.624485][ T6605] tipc: Node number set to 4
[  682.668633][ T6608] netlink: 24 bytes leftover after parsing attributes in process `syz.5.11975'.
[  683.318018][ T6620] netlink: 'syz.3.11978': attribute type 4 has an invalid length.
[  683.367453][ T6626] netlink: 'syz.3.11978': attribute type 4 has an invalid length.
[  683.578570][ T6624] tipc: Started in network mode
[  683.587690][ T6624] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  683.597030][ T6624] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  683.806077][ T6646] netlink: 1319 bytes leftover after parsing attributes in process `syz.9.11990'.
[  683.851928][ T6650] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  683.885832][ T6650] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  684.193654][ T6663] netlink: 64 bytes leftover after parsing attributes in process `syz.9.11995'.
[  684.245697][   T28] audit: type=1326 audit(1771844297.759:10668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6665 comm="syz.9.11996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c660ac629 code=0x7ffc0000
[  684.279757][   T28] audit: type=1326 audit(1771844297.789:10669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6665 comm="syz.9.11996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c660ac629 code=0x7ffc0000
[  684.312771][   T28] audit: type=1326 audit(1771844297.789:10670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6665 comm="syz.9.11996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f0c660ac629 code=0x7ffc0000
[  684.349390][   T28] audit: type=1326 audit(1771844297.789:10671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6665 comm="syz.9.11996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c660ac629 code=0x7ffc0000
[  684.390462][   T28] audit: type=1326 audit(1771844297.789:10672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6665 comm="syz.9.11996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c660ac629 code=0x7ffc0000
[  684.422003][ T6668] loop8: detected capacity change from 0 to 1024
[  684.432587][ T6668] EXT4-fs: Ignoring removed oldalloc option
[  684.438656][ T6668] EXT4-fs: Ignoring removed bh option
[  684.445565][   T28] audit: type=1326 audit(1771844297.789:10673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6665 comm="syz.9.11996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f0c660ac629 code=0x7ffc0000
[  684.471186][   T28] audit: type=1326 audit(1771844297.789:10674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6665 comm="syz.9.11996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c660ac629 code=0x7ffc0000
[  684.502775][   T28] audit: type=1326 audit(1771844297.789:10675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6665 comm="syz.9.11996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c660ac629 code=0x7ffc0000
[  684.528043][   T28] audit: type=1326 audit(1771844297.789:10676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6665 comm="syz.9.11996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0c660ac629 code=0x7ffc0000
[  684.553434][   T28] audit: type=1326 audit(1771844297.789:10677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6665 comm="syz.9.11996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c660ac629 code=0x7ffc0000
[  684.568365][ T6668] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  684.650964][ T6680] netlink: 'syz.5.12001': attribute type 1 has an invalid length.
[  684.690652][ T6680] 8021q: adding VLAN 0 to HW filter on device bond16
[  684.797352][ T6680] bond16: (slave veth11): Enslaving as an active interface with a down link
[  684.841957][ T6684] 8021q: adding VLAN 0 to HW filter on device batadv2
[  684.849459][ T6684] bond16: (slave batadv2): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open
[  685.061966][ T6696] netlink: 12 bytes leftover after parsing attributes in process `syz.5.12006'.
[  685.397991][ T4653] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  685.870272][ T6729] netlink: 4 bytes leftover after parsing attributes in process `syz.9.12019'.
[  685.908993][ T6731] loop9: detected capacity change from 0 to 1024
[  685.930949][ T6731] EXT4-fs: Ignoring removed oldalloc option
[  685.941070][ T6731] EXT4-fs: Ignoring removed bh option
[  685.964449][ T6731] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  686.207616][ T6723] loop8: detected capacity change from 0 to 65536
[  686.867768][T32729] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  687.282564][ T6780] netlink: 'syz.3.12039': attribute type 1 has an invalid length.
[  687.413290][ T6784] netlink: 24 bytes leftover after parsing attributes in process `syz.3.12041'.
[  687.884280][ T6800] netlink: 24 bytes leftover after parsing attributes in process `syz.7.12047'.
[  688.040153][ T6802] loop7: detected capacity change from 0 to 4096
[  688.555702][ T6814] netlink: 24 bytes leftover after parsing attributes in process `syz.8.12053'.
[  688.613844][ T6814] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12053'.
[  688.850961][ T6819] netlink: 12 bytes leftover after parsing attributes in process `syz.5.12055'.
[  689.091961][ T6831] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12061'.
[  689.115095][ T6831] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12061'.
[  689.145368][ T6831] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12061'.
[  689.253330][   T28] kauditd_printk_skb: 4 callbacks suppressed
[  689.253348][   T28] audit: type=1400 audit(1771844302.759:10682): avc:  denied  { listen } for  pid=6833 comm="syz.5.12063" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  689.564996][ T6848] loop7: detected capacity change from 0 to 1024
[  689.620191][ T6848] EXT4-fs: Ignoring removed oldalloc option
[  689.651186][ T6848] EXT4-fs: Ignoring removed bh option
[  690.351677][   T28] audit: type=1400 audit(1771844303.869:10683): avc:  denied  { mounton } for  pid=6922 comm="syz.3.12077" path="/" dev="nullfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  690.452082][ T6929] bond_slave_1: entered allmulticast mode
[  690.489923][ T6927] bond_slave_1: left allmulticast mode
[  691.048540][ T6974] netlink: 24 bytes leftover after parsing attributes in process `syz.5.12100'.
[  691.111180][ T6972] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12099'.
[  691.127359][ T6978] netlink: 24 bytes leftover after parsing attributes in process `syz.5.12102'.
[  691.253244][ T6992] team0: Device gtp1 is of different type
[  691.264447][ T6988] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=45 sclass=netlink_audit_socket pid=6988 comm=syz.8.12107
[  691.332351][ T6990] netlink: 8 bytes leftover after parsing attributes in process `syz.5.12116'.
[  691.356026][ T6996] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12110'.
[  691.600211][ T7022] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  691.779397][ T7039] netlink: 'syz.5.12132': attribute type 1 has an invalid length.
[  691.787440][ T7039] netlink: 'syz.5.12132': attribute type 4 has an invalid length.
[  691.795473][ T7039] netlink: 9462 bytes leftover after parsing attributes in process `syz.5.12132'.
[  691.823291][ T7041] netlink: 8 bytes leftover after parsing attributes in process `syz.7.12128'.
[  691.877216][ T7044] bond2: entered promiscuous mode
[  691.897266][ T7044] bond2: entered allmulticast mode
[  691.903164][ T7044] 8021q: adding VLAN 0 to HW filter on device bond2
[  691.936628][ T7048] netlink: 55631 bytes leftover after parsing attributes in process `syz.5.12135'.
[  692.106635][ T7072] netlink: 24 bytes leftover after parsing attributes in process `syz.8.12146'.
[  692.217554][ T7077] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12148'.
[  692.608406][ T7116] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  692.640226][ T7116] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  693.869365][ T7150] loop9: detected capacity change from 0 to 512
[  693.899689][ T7150] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  693.942687][ T7150] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  693.969897][ T7150] ext4 filesystem being mounted at /426/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  694.086339][T32729] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  694.852027][ T7210] team0: left promiscuous mode
[  694.858349][ T7210] team0: left allmulticast mode
[  694.865031][ T7210] bridge0: port 1(team0) entered disabled state
[  694.888235][ T7210] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  694.952252][ T7216] loop9: detected capacity change from 0 to 1024
[  694.975060][ T7216] EXT4-fs (loop9): couldn't mount as ext3 due to feature incompatibilities
[  695.082232][ T7225] netlink: 'syz.5.12210': attribute type 83 has an invalid length.
[  695.562299][ T7264] netlink: 'syz.9.12226': attribute type 27 has an invalid length.
[  695.863216][ T7274] loop8: detected capacity change from 0 to 512
[  695.872374][ T7274] EXT4-fs: Ignoring removed nobh option
[  695.885420][ T7274] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  695.897700][ T7274] EXT4-fs error (device loop8): ext4_orphan_get:1391: inode #15: comm syz.8.12229: iget: bad i_size value: 38620345925642
[  695.912820][ T7274] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  695.913094][ T7274] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.12229: couldn't read orphan inode 15 (err -117)
[  695.922402][    C1] EXT4-fs (loop8): error count since last fsck: 1
[  695.922446][    C1] EXT4-fs (loop8): initial error at time 1771844309: ext4_orphan_get:1391: inode 15
[  695.922484][    C1] EXT4-fs (loop8): last error at time 1771844309: ext4_orphan_get:1391: inode 15
[  695.962303][ T7274] loop8: lost filesystem error report for type 5 error -117
[  695.963057][ T7274] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  696.118091][ T7264] vxcan1: left promiscuous mode
[  696.466817][ T7299] __nla_validate_parse: 8 callbacks suppressed
[  696.466842][ T7299] netlink: 20 bytes leftover after parsing attributes in process `syz.3.12235'.
[  696.490643][ T7264] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  696.502283][ T7264] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  696.556145][ T7264] bond1: left promiscuous mode
[  696.561751][ T7264] bond1: left allmulticast mode
[  696.589013][ T7266] 8021q: adding VLAN 0 to HW filter on device bond0
[  696.598540][ T7266] 8021q: adding VLAN 0 to HW filter on device team0
[  696.608937][ T7266] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  696.627012][ T7270] netlink: 8 bytes leftover after parsing attributes in process `syz.7.12228'.
[  696.684416][ T7299] vxlan0: entered promiscuous mode
[  696.712125][ T7304] netlink: 4 bytes leftover after parsing attributes in process `syz.5.12247'.
[  696.726457][ T4266] netdevsim netdevsim9 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  696.735798][ T7274] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[  696.755167][ T4266] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  696.760625][ T7274] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[  696.765111][ T4266] netdevsim netdevsim9 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  696.784944][ T7306] netlink: 12 bytes leftover after parsing attributes in process `syz.5.12247'.
[  696.795017][ T4266] netdevsim netdevsim9 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  696.860142][ T4266] netdevsim netdevsim9 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  696.860217][ T4653] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  696.879797][ T4266] netdevsim netdevsim9 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  696.937973][ T7311] uprobe: syz.7.12239:7311 failed to unregister, leaking uprobe
[  696.940319][ T4266] netdevsim netdevsim9 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  696.975404][ T4266] netdevsim netdevsim9 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  696.996808][ T4266] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  697.028037][ T4266] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  697.066247][ T4266] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  697.075079][ T4266] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  697.455456][   T28] audit: type=1326 audit(1771844310.969:10684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.12249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd1d96c629 code=0x7ffc0000
[  697.481560][   T28] audit: type=1326 audit(1771844310.969:10685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.12249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fdd1d96c629 code=0x7ffc0000
[  697.507026][   T28] audit: type=1326 audit(1771844310.969:10686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.12249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd1d96c629 code=0x7ffc0000
[  697.561862][   T28] audit: type=1326 audit(1771844310.969:10687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.12249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd1d96c629 code=0x7ffc0000
[  697.588958][   T28] audit: type=1326 audit(1771844310.969:10688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.12249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7fdd1d96c629 code=0x7ffc0000
[  697.644559][   T28] audit: type=1326 audit(1771844310.969:10689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.12249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd1d96c629 code=0x7ffc0000
[  697.669713][   T28] audit: type=1326 audit(1771844310.969:10690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7338 comm="syz.5.12249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd1d96c629 code=0x7ffc0000
[  697.675668][ T7343] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12250'.
[  697.805390][ T7356] uprobe: syz.9.12254:7356 failed to unregister, leaking uprobe
[  697.951127][ T7367] netlink: 24 bytes leftover after parsing attributes in process `syz.7.12261'.
[  698.168876][ T7380] netlink: 'syz.3.12265': attribute type 4 has an invalid length.
[  698.192541][ T7379] netlink: 8 bytes leftover after parsing attributes in process `syz.7.12266'.
[  698.303333][ T7384] netlink: 8 bytes leftover after parsing attributes in process `syz.7.12278'.
[  698.470894][ T7396] uprobe: syz.5.12271:7396 failed to unregister, leaking uprobe
[  698.516613][ T7397] netlink: 8 bytes leftover after parsing attributes in process `syz.7.12283'.
[  698.933892][ T7392] syz.3.12270 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  698.948121][ T7392] CPU: 1 UID: 0 PID: 7392 Comm: syz.3.12270 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  698.948161][ T7392] Tainted: [W]=WARN
[  698.948177][ T7392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  698.948190][ T7392] Call Trace:
[  698.948197][ T7392]  <TASK>
[  698.948205][ T7392]  __dump_stack+0x1d/0x30
[  698.948238][ T7392]  dump_stack_lvl+0x95/0xd0
[  698.948263][ T7392]  dump_stack+0x15/0x1b
[  698.948288][ T7392]  dump_header+0x80/0x240
[  698.948313][ T7392]  oom_kill_process+0x295/0x350
[  698.948385][ T7392]  out_of_memory+0x97d/0xb80
[  698.948414][ T7392]  try_charge_memcg+0x62e/0xa10
[  698.948469][ T7392]  obj_cgroup_charge_pages+0x23/0xc0
[  698.948566][ T7392]  __memcg_kmem_charge_page+0x9e/0x170
[  698.948686][ T7392]  __alloc_frozen_pages_noprof+0x18a/0x360
[  698.948725][ T7392]  alloc_pages_mpol+0xb3/0x260
[  698.948763][ T7392]  alloc_pages_noprof+0x8f/0x130
[  698.948800][ T7392]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  698.948854][ T7392]  __kvmalloc_node_noprof+0x3d4/0x650
[  698.948930][ T7392]  ? futex_hash_allocate+0x190/0x9d0
[  698.948968][ T7392]  ? futex_hash_allocate+0x190/0x9d0
[  698.949015][ T7392]  futex_hash_allocate+0x190/0x9d0
[  698.949086][ T7392]  ? cap_task_prctl+0x13f/0x6e0
[  698.949115][ T7392]  futex_hash_prctl+0xd8/0xf0
[  698.949158][ T7392]  __se_sys_prctl+0xa3d/0x13f0
[  698.949198][ T7392]  __x64_sys_prctl+0x67/0x80
[  698.949300][ T7392]  x64_sys_call+0x2533/0x3020
[  698.949339][ T7392]  do_syscall_64+0x12c/0x370
[  698.949437][ T7392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  698.949466][ T7392] RIP: 0033:0x7f9761ecc629
[  698.949489][ T7392] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  698.949513][ T7392] RSP: 002b:00007f976091f028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[  698.949555][ T7392] RAX: ffffffffffffffda RBX: 00007f9762145fa0 RCX: 00007f9761ecc629
[  698.949574][ T7392] RDX: 0000000001000000 RSI: 0000000000000001 RDI: 000000000000004e
[  698.949592][ T7392] RBP: 00007f9761f62b39 R08: 0000000000000000 R09: 0000000000000000
[  698.949687][ T7392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  698.949701][ T7392] R13: 00007f9762146038 R14: 00007f9762145fa0 R15: 00007fff7136cac8
[  698.949723][ T7392]  </TASK>
[  698.949753][ T7392] memory: usage 307200kB, limit 307200kB, failcnt 4717
[  699.196747][ T7392] memory+swap: usage 374984kB, limit 9007199254740988kB, failcnt 0
[  699.206159][ T7392] kmem: usage 306540kB, limit 9007199254740988kB, failcnt 0
[  699.213598][ T7392] Memory cgroup stats for /syz3:
[  699.213927][ T7392] cache 73728
[  699.222220][ T7392] rss 397312
[  699.225488][ T7392] shmem 65536
[  699.228979][ T7392] mapped_file 8192
[  699.244233][ T7392] dirty 8192
[  699.247487][ T7392] writeback 0
[  699.250993][ T7392] workingset_refault_anon 3821
[  699.255859][ T7392] workingset_refault_file 3298
[  699.262159][ T7392] swap 69410816
[  699.265696][ T7392] swapcached 80322560
[  699.269703][ T7392] pgpgin 395063
[  699.282833][ T7392] pgpgout 394898
[  699.286579][ T7392] pgfault 407184
[  699.290349][ T7392] pgmajfault 623
[  699.296080][ T7392] inactive_anon 471040
[  699.310298][ T7392] active_anon 180224
[  699.314436][ T7392] inactive_file 24576
[  699.318509][ T7392] active_file 0
[  699.323801][ T7392] unevictable 0
[  699.327342][ T7392] hierarchical_memory_limit 314572800
[  699.333440][ T7392] hierarchical_memsw_limit 9223372036854771712
[  699.339705][ T7392] total_cache 73728
[  699.343843][ T7392] total_rss 397312
[  699.347614][ T7392] total_shmem 65536
[  699.353430][ T7392] total_mapped_file 8192
[  699.357975][ T7392] total_dirty 8192
[  699.362285][ T7392] total_writeback 0
[  699.366252][ T7392] total_workingset_refault_anon 3821
[  699.371867][ T7392] total_workingset_refault_file 3298
[  699.377248][ T7392] total_swap 69410816
[  699.382902][ T7392] total_swapcached 80322560
[  699.387739][ T7392] total_pgpgin 395063
[  699.392179][ T7392] total_pgpgout 394898
[  699.396406][ T7392] total_pgfault 407184
[  699.400815][ T7392] total_pgmajfault 623
[  699.405041][ T7392] total_inactive_anon 471040
[  699.409810][ T7392] total_active_anon 180224
[  699.415857][ T7392] total_inactive_file 24576
[  699.420462][ T7392] total_active_file 0
[  699.424473][ T7392] total_unevictable 0
[  699.428495][ T7392] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.12270,pid=7391,uid=0
[  699.445019][ T7392] Memory cgroup out of memory: Killed process 7392 (syz.3.12270) total-vm:96208kB, anon-rss:1420kB, file-rss:22528kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:0
[  699.512532][ T7647] IPVS: starting estimator thread 0...
[  699.610479][ T7440] IPVS: using max 2112 ests per chain, 105600 per kthread
[  700.763837][ T7485] loop9: detected capacity change from 0 to 128
[  700.778803][ T7474] syz.7.12298 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  700.813166][ T7485] FAT-fs (loop9): Directory bread(block 32) failed
[  700.819748][ T7485] FAT-fs (loop9): Directory bread(block 33) failed
[  700.832009][ T7474] CPU: 0 UID: 0 PID: 7474 Comm: syz.7.12298 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  700.832053][ T7474] Tainted: [W]=WARN
[  700.832063][ T7474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  700.832081][ T7474] Call Trace:
[  700.832090][ T7474]  <TASK>
[  700.832101][ T7474]  __dump_stack+0x1d/0x30
[  700.832202][ T7474]  dump_stack_lvl+0x95/0xd0
[  700.832288][ T7474]  dump_stack+0x15/0x1b
[  700.832319][ T7474]  dump_header+0x80/0x240
[  700.832346][ T7474]  oom_kill_process+0x295/0x350
[  700.832376][ T7474]  out_of_memory+0x97d/0xb80
[  700.832407][ T7474]  try_charge_memcg+0x62e/0xa10
[  700.832469][ T7474]  obj_cgroup_charge_pages+0x23/0xc0
[  700.832535][ T7474]  __memcg_kmem_charge_page+0x9e/0x170
[  700.832573][ T7474]  __alloc_frozen_pages_noprof+0x18a/0x360
[  700.832687][ T7474]  alloc_pages_mpol+0xb3/0x260
[  700.832726][ T7474]  alloc_pages_noprof+0x8f/0x130
[  700.832762][ T7474]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  700.832851][ T7474]  __kvmalloc_node_noprof+0x3d4/0x650
[  700.832886][ T7474]  ? futex_hash_allocate+0x190/0x9d0
[  700.832925][ T7474]  ? futex_hash_allocate+0x190/0x9d0
[  700.833019][ T7474]  futex_hash_allocate+0x190/0x9d0
[  700.833052][ T7474]  ? cap_task_prctl+0x13f/0x6e0
[  700.833101][ T7474]  futex_hash_prctl+0xd8/0xf0
[  700.833130][ T7474]  __se_sys_prctl+0xa3d/0x13f0
[  700.833166][ T7474]  __x64_sys_prctl+0x67/0x80
[  700.833212][ T7474]  x64_sys_call+0x2533/0x3020
[  700.833246][ T7474]  do_syscall_64+0x12c/0x370
[  700.833356][ T7474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.833382][ T7474] RIP: 0033:0x7ff748e4c629
[  700.833398][ T7474] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  700.833445][ T7474] RSP: 002b:00007ff7478a7028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[  700.833472][ T7474] RAX: ffffffffffffffda RBX: 00007ff7490c5fa0 RCX: 00007ff748e4c629
[  700.833503][ T7474] RDX: 0000000001000000 RSI: 0000000000000001 RDI: 000000000000004e
[  700.833516][ T7474] RBP: 00007ff748ee2b39 R08: 0000000000000000 R09: 0000000000000000
[  700.833628][ T7474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  700.833647][ T7474] R13: 00007ff7490c6038 R14: 00007ff7490c5fa0 R15: 00007ffe5e647378
[  700.833678][ T7474]  </TASK>
[  700.836676][ T7474] memory: usage 249480kB, limit 307200kB, failcnt 1156
[  700.849160][ T7485] FAT-fs (loop9): Directory bread(block 34) failed
[  700.880274][ T7474] memory+swap: usage 229200kB, limit 9007199254740988kB, failcnt 0
[  700.959632][ T7485] FAT-fs (loop9): Directory bread(block 35) failed
[  701.103671][ T7485] FAT-fs (loop9): Directory bread(block 36) failed
[  701.110215][ T7485] FAT-fs (loop9): Directory bread(block 37) failed
[  701.118579][ T7485] FAT-fs (loop9): Directory bread(block 38) failed
[  701.125533][ T7485] FAT-fs (loop9): Directory bread(block 39) failed
[  701.132205][ T7485] FAT-fs (loop9): Directory bread(block 40) failed
[  701.138884][ T7485] FAT-fs (loop9): Directory bread(block 41) failed
[  701.208019][ T7474] kmem: usage 41432kB, limit 9007199254740988kB, failcnt 0
[  701.230455][ T7474] Memory cgroup stats for /syz7:
[  701.230735][ T7474] cache 67362816
[  701.257142][ T7474] rss 397312
[  701.267083][ T7474] shmem 67354624
[  701.278330][ T7474] mapped_file 8192
[  701.289861][ T7474] dirty 0
[  701.413118][ T7474] writeback 0
[  701.449392][ T7474] workingset_refault_anon 2102
[  701.480449][ T7474] workingset_refault_file 3466
[  701.495156][ T7474] swap 0
[  701.500498][ T7474] swapcached 4096
[  701.504185][ T7474] pgpgin 243460
[  701.507777][ T7474] pgpgout 226912
[  701.529918][ T7474] pgfault 188208
[  701.540913][ T7474] pgmajfault 296
[  701.544682][ T7474] inactive_anon 159744
[  701.548798][ T7474] active_anon 67592192
[  701.561332][ T7474] inactive_file 8192
[  701.570748][ T7474] active_file 20480
[  701.574601][ T7474] unevictable 0
[  701.578802][ T7499] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12319'.
[  701.589641][ T7474] hierarchical_memory_limit 314572800
[  701.599476][ T7474] hierarchical_memsw_limit 9223372036854771712
[  701.613911][ T7474] total_cache 67362816
[  701.633130][ T7474] total_rss 397312
[  701.636933][ T7474] total_shmem 67354624
[  701.641366][ T7474] total_mapped_file 8192
[  701.645635][ T7474] total_dirty 0
[  701.649188][ T7474] total_writeback 0
[  701.670367][ T7474] total_workingset_refault_anon 2102
[  701.676248][ T7474] total_workingset_refault_file 3466
[  701.681895][ T7474] total_swap 0
[  701.685455][ T7474] total_swapcached 4096
[  701.689701][ T7474] total_pgpgin 243460
[  701.696170][ T7474] total_pgpgout 226912
[  701.700735][   T28] audit: type=1326 audit(1771844315.209:10691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7498 comm="syz.5.12308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd1d96c629 code=0x7ffc0000
[  701.724694][ T7474] total_pgfault 188208
[  701.728860][ T7474] total_pgmajfault 296
[  701.733650][ T7474] total_inactive_anon 159744
[  701.738407][ T7474] total_active_anon 67592192
[  701.743320][ T7474] total_inactive_file 8192
[  701.747755][ T7474] total_active_file 20480
[  701.752490][   T28] audit: type=1326 audit(1771844315.209:10692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7498 comm="syz.5.12308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd1d96c629 code=0x7ffc0000
[  701.778897][ T7474] total_unevictable 0
[  701.782986][ T7474] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz7,task_memcg=/syz7,task=syz.7.12298,pid=7473,uid=0
[  701.798440][   T28] audit: type=1326 audit(1771844315.219:10693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7498 comm="syz.5.12308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7fdd1d96c629 code=0x7ffc0000
[  701.822904][ T7474] Memory cgroup out of memory: Killed process 7474 (syz.7.12298) total-vm:96208kB, anon-rss:1428kB, file-rss:22536kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  702.237946][ T3400] IPVS: starting estimator thread 0...
[  702.356527][ T7523] IPVS: using max 1680 ests per chain, 84000 per kthread
[  702.370037][ T7527] loop7: detected capacity change from 0 to 512
[  702.486434][ T7531] loop7: detected capacity change from 0 to 4096
[  702.528015][   T28] kauditd_printk_skb: 5 callbacks suppressed
[  702.528033][   T28] audit: type=1326 audit(1771844316.039:10699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz.7.12322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  702.594369][   T28] audit: type=1326 audit(1771844316.079:10700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz.7.12322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  702.618473][   T28] audit: type=1326 audit(1771844316.089:10701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz.7.12322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  702.642802][   T28] audit: type=1326 audit(1771844316.089:10702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz.7.12322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  702.668625][   T28] audit: type=1326 audit(1771844316.089:10703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz.7.12322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  702.694179][   T28] audit: type=1326 audit(1771844316.089:10704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz.7.12322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  702.719259][   T28] audit: type=1326 audit(1771844316.089:10705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz.7.12322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  702.767846][   T28] audit: type=1326 audit(1771844316.089:10706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz.7.12322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  703.057743][ T7536] netem: incorrect ge model size
[  703.062964][ T7536] netem: change failed
[  703.114389][ T7540] netlink: 'syz.7.12326': attribute type 27 has an invalid length.
[  703.174503][ T7540] bridge0: port 2(bridge_slave_1) entered disabled state
[  703.181863][ T7540] bridge0: port 1(bridge_slave_0) entered disabled state
[  703.257337][ T7540] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  703.260674][ T7533] syz.8.12323 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  703.280265][ T7540] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  703.288144][ T7533] CPU: 1 UID: 0 PID: 7533 Comm: syz.8.12323 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  703.288202][ T7533] Tainted: [W]=WARN
[  703.288242][ T7533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  703.288256][ T7533] Call Trace:
[  703.288264][ T7533]  <TASK>
[  703.288273][ T7533]  __dump_stack+0x1d/0x30
[  703.288303][ T7533]  dump_stack_lvl+0x95/0xd0
[  703.288373][ T7533]  dump_stack+0x15/0x1b
[  703.288395][ T7533]  dump_header+0x80/0x240
[  703.288425][ T7533]  oom_kill_process+0x295/0x350
[  703.288506][ T7533]  out_of_memory+0x97d/0xb80
[  703.288529][ T7533]  try_charge_memcg+0x62e/0xa10
[  703.288613][ T7533]  obj_cgroup_charge_pages+0x23/0xc0
[  703.288650][ T7533]  __memcg_kmem_charge_page+0x9e/0x170
[  703.288754][ T7533]  __alloc_frozen_pages_noprof+0x18a/0x360
[  703.288974][ T7533]  alloc_pages_mpol+0xb3/0x260
[  703.289005][ T7533]  alloc_pages_noprof+0x8f/0x130
[  703.289111][ T7533]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  703.289151][ T7533]  __kvmalloc_node_noprof+0x3d4/0x650
[  703.289179][ T7533]  ? futex_hash_allocate+0x190/0x9d0
[  703.289218][ T7533]  ? futex_hash_allocate+0x190/0x9d0
[  703.289322][ T7533]  futex_hash_allocate+0x190/0x9d0
[  703.289364][ T7533]  ? cap_task_prctl+0x13f/0x6e0
[  703.289398][ T7533]  futex_hash_prctl+0xd8/0xf0
[  703.289433][ T7533]  __se_sys_prctl+0xa3d/0x13f0
[  703.289474][ T7533]  __x64_sys_prctl+0x67/0x80
[  703.289501][ T7533]  x64_sys_call+0x2533/0x3020
[  703.289629][ T7533]  do_syscall_64+0x12c/0x370
[  703.289746][ T7533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  703.289790][ T7533] RIP: 0033:0x7f636be8c629
[  703.289811][ T7533] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  703.289869][ T7533] RSP: 002b:00007f636a8e7028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[  703.289891][ T7533] RAX: ffffffffffffffda RBX: 00007f636c105fa0 RCX: 00007f636be8c629
[  703.289912][ T7533] RDX: 0000000001000000 RSI: 0000000000000001 RDI: 000000000000004e
[  703.289930][ T7533] RBP: 00007f636bf22b39 R08: 0000000000000000 R09: 0000000000000000
[  703.289948][ T7533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  703.289964][ T7533] R13: 00007f636c106038 R14: 00007f636c105fa0 R15: 00007ffc678e6568
[  703.290000][ T7533]  </TASK>
[  703.290039][ T7533] memory: usage 307200kB, limit 307200kB, failcnt 686
[  703.534468][ T7533] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  703.543916][ T7533] kmem: usage 239172kB, limit 9007199254740988kB, failcnt 0
[  703.551264][ T7533] Memory cgroup stats for /syz8:
[  703.551557][ T7533] cache 69439488
[  703.560112][ T7533] rss 204800
[  703.563367][ T7533] shmem 69439488
[  703.567055][ T7533] mapped_file 0
[  703.571937][ T7533] dirty 0
[  703.574912][ T7533] writeback 0
[  703.578222][ T7533] workingset_refault_anon 2675
[  703.578771][ T7540] veth1_macvtap: left allmulticast mode
[  703.583168][ T7533] workingset_refault_file 2725
[  703.583182][ T7533] swap 0
[  703.583191][ T7533] swapcached 43876352
[  703.583200][ T7533] pgpgin 463741
[  703.583209][ T7533] pgpgout 446734
[  703.583218][ T7533] pgfault 481278
[  703.583227][ T7533] pgmajfault 455
[  703.583247][ T7533] inactive_anon 0
[  703.583257][ T7533] active_anon 69644288
[  703.583267][ T7533] inactive_file 4096
[  703.583276][ T7533] active_file 12288
[  703.583283][ T7533] unevictable 0
[  703.583293][ T7533] hierarchical_memory_limit 314572800
[  703.583304][ T7533] hierarchical_memsw_limit 9223372036854771712
[  703.583315][ T7533] total_cache 69439488
[  703.583323][ T7533] total_rss 204800
[  703.583379][ T7533] total_shmem 69439488
[  703.583387][ T7533] total_mapped_file 0
[  703.665436][ T7533] total_dirty 0
[  703.668994][ T7533] total_writeback 0
[  703.672856][ T7533] total_workingset_refault_anon 2675
[  703.678189][ T7533] total_workingset_refault_file 2725
[  703.683920][ T7533] total_swap 0
[  703.685510][ T7540] geneve1: left promiscuous mode
[  703.687375][ T7533] total_swapcached 43876352
[  703.687389][ T7533] total_pgpgin 463741
[  703.702861][ T7533] total_pgpgout 446734
[  703.706971][ T7533] total_pgfault 481278
[  703.711135][ T7533] total_pgmajfault 455
[  703.715319][ T7533] total_inactive_anon 0
[  703.719542][ T7533] total_active_anon 69644288
[  703.725353][ T7533] total_inactive_file 4096
[  703.729820][ T7533] total_active_file 12288
[  703.734298][ T7533] total_unevictable 0
[  703.738439][ T7533] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz8,task_memcg=/syz8,task=syz.8.12323,pid=7532,uid=0
[  703.754968][ T7533] Memory cgroup out of memory: Killed process 7533 (syz.8.12323) total-vm:96208kB, anon-rss:1416kB, file-rss:22532kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[  703.760002][ T7540] bond1: left promiscuous mode
[  703.777160][ T7540] bond1: left allmulticast mode
[  703.785622][ T7540] vxlan0: left promiscuous mode
[  703.829851][ T7541] 8021q: adding VLAN 0 to HW filter on device bond0
[  703.839734][ T7541] 8021q: adding VLAN 0 to HW filter on device team0
[  703.851606][ T7541] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  703.869833][T19326] netdevsim netdevsim7 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  703.880654][T19326] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  703.893010][T19326] netdevsim netdevsim7 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  703.914277][T19326] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  703.926071][T19326] netdevsim netdevsim7 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  703.936828][T19326] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  703.958116][T19326] netdevsim netdevsim7 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  703.979675][T19326] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  703.999106][ T7547] uprobe: syz.3.12328:7547 failed to unregister, leaking uprobe
[  704.099564][ T7554] loop8: detected capacity change from 0 to 128
[  704.147077][ T7554] FAT-fs (loop8): Directory bread(block 32) failed
[  704.167596][ T7554] FAT-fs (loop8): Directory bread(block 33) failed
[  704.193223][ T7554] FAT-fs (loop8): Directory bread(block 34) failed
[  704.229781][ T7554] FAT-fs (loop8): Directory bread(block 35) failed
[  704.252257][ T7554] FAT-fs (loop8): Directory bread(block 36) failed
[  704.275477][ T7554] FAT-fs (loop8): Directory bread(block 37) failed
[  704.294227][ T7554] FAT-fs (loop8): Directory bread(block 38) failed
[  704.313050][ T7554] FAT-fs (loop8): Directory bread(block 39) failed
[  704.330808][ T7554] FAT-fs (loop8): Directory bread(block 40) failed
[  704.345157][ T7554] FAT-fs (loop8): Directory bread(block 41) failed
[  705.119122][ T7580] netlink: 80 bytes leftover after parsing attributes in process `syz.7.12354'.
[  705.155342][ T7580] netlink: 8 bytes leftover after parsing attributes in process `syz.7.12354'.
[  705.186570][ T7580] geneve0: entered allmulticast mode
[  705.482521][ T7602] netlink: 12 bytes leftover after parsing attributes in process `syz.8.12352'.
[  705.565427][   T28] audit: type=1326 audit(1771844319.079:10707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7603 comm="syz.8.12353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  705.637587][   T28] audit: type=1326 audit(1771844319.109:10708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7603 comm="syz.8.12353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  706.333733][ T7618] loop8: detected capacity change from 0 to 32768
[  706.430772][ T3337]  loop8: p1 p3 < >
[  706.438519][ T7618]  loop8: p1 p3 < >
[  706.454983][ T7606] syz.9.12357 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  706.509945][ T7606] CPU: 0 UID: 0 PID: 7606 Comm: syz.9.12357 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  706.509988][ T7606] Tainted: [W]=WARN
[  706.509996][ T7606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  706.510013][ T7606] Call Trace:
[  706.510024][ T7606]  <TASK>
[  706.510033][ T7606]  __dump_stack+0x1d/0x30
[  706.510137][ T7606]  dump_stack_lvl+0x95/0xd0
[  706.510170][ T7606]  dump_stack+0x15/0x1b
[  706.510217][ T7606]  dump_header+0x80/0x240
[  706.510297][ T7606]  oom_kill_process+0x295/0x350
[  706.510327][ T7606]  out_of_memory+0x97d/0xb80
[  706.510356][ T7606]  try_charge_memcg+0x62e/0xa10
[  706.510404][ T7606]  obj_cgroup_charge_pages+0x23/0xc0
[  706.510453][ T7606]  __memcg_kmem_charge_page+0x9e/0x170
[  706.510542][ T7606]  __alloc_frozen_pages_noprof+0x18a/0x360
[  706.510608][ T7606]  alloc_pages_mpol+0xb3/0x260
[  706.510646][ T7606]  alloc_pages_noprof+0x8f/0x130
[  706.510675][ T7606]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  706.510785][ T7606]  __kvmalloc_node_noprof+0x3d4/0x650
[  706.510838][ T7606]  ? futex_hash_allocate+0x190/0x9d0
[  706.510869][ T7606]  ? futex_hash_allocate+0x190/0x9d0
[  706.510970][ T7606]  futex_hash_allocate+0x190/0x9d0
[  706.511026][ T7606]  ? cap_task_prctl+0x13f/0x6e0
[  706.511055][ T7606]  futex_hash_prctl+0xd8/0xf0
[  706.511092][ T7606]  __se_sys_prctl+0xa3d/0x13f0
[  706.511211][ T7606]  __x64_sys_prctl+0x67/0x80
[  706.511249][ T7606]  x64_sys_call+0x2533/0x3020
[  706.511345][ T7606]  do_syscall_64+0x12c/0x370
[  706.511433][ T7606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  706.511463][ T7606] RIP: 0033:0x7f0c660ac629
[  706.511491][ T7606] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  706.511516][ T7606] RSP: 002b:00007f0c64aff028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[  706.511550][ T7606] RAX: ffffffffffffffda RBX: 00007f0c66325fa0 RCX: 00007f0c660ac629
[  706.511565][ T7606] RDX: 0000000001000000 RSI: 0000000000000001 RDI: 000000000000004e
[  706.511578][ T7606] RBP: 00007f0c66142b39 R08: 0000000000000000 R09: 0000000000000000
[  706.511591][ T7606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  706.511642][ T7606] R13: 00007f0c66326038 R14: 00007f0c66325fa0 R15: 00007ffd11e85ca8
[  706.511698][ T7606]  </TASK>
[  706.872987][ T3337] udevd[3337]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  706.901799][ T3338] udevd[3338]: inotify_add_watch(7, /dev/loop8p3, 10) failed: No such file or directory
[  706.925662][ T3337] udevd[3337]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  706.942133][ T3338] udevd[3338]: inotify_add_watch(7, /dev/loop8p3, 10) failed: No such file or directory
[  706.966813][ T7606] memory: usage 307200kB, limit 307200kB, failcnt 788
[  706.978370][ T7627] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12365'.
[  706.987101][ T7606] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  707.029102][ T3337] udevd[3337]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  707.033394][ T3338] udevd[3338]: inotify_add_watch(7, /dev/loop8p3, 10) failed: No such file or directory
[  707.062006][ T7606] kmem: usage 241104kB, limit 9007199254740988kB, failcnt 0
[  707.069368][ T7606] Memory cgroup stats for /syz9:
[  707.069865][ T7606] cache 67227648
[  707.109429][ T7606] rss 405504
[  707.119528][ T7606] shmem 67227648
[  707.124608][ T7606] mapped_file 0
[  707.128108][ T7606] dirty 0
[  707.160717][ T7606] writeback 0
[  707.170450][ T7606] workingset_refault_anon 2937
[  707.175581][ T7606] workingset_refault_file 2
[  707.180117][ T7606] swap 0
[  707.200477][ T7606] swapcached 6537216
[  707.204423][ T7606] pgpgin 425930
[  707.241154][ T7606] pgpgout 409416
[  707.244763][ T7606] pgfault 430697
[  707.248342][ T7606] pgmajfault 3778
[  707.271127][ T7606] inactive_anon 67448832
[  707.275459][ T7606] active_anon 184320
[  707.279656][ T7606] inactive_file 0
[  707.330525][ T7606] active_file 8192
[  707.334387][ T7606] unevictable 0
[  707.337878][ T7606] hierarchical_memory_limit 314572800
[  707.350672][ T7606] hierarchical_memsw_limit 9223372036854771712
[  707.356906][ T7606] total_cache 67227648
[  707.361050][ T7606] total_rss 405504
[  707.365023][ T7606] total_shmem 67227648
[  707.369122][ T7606] total_mapped_file 0
[  707.380442][ T7606] total_dirty 0
[  707.384008][ T7606] total_writeback 0
[  707.387913][ T7606] total_workingset_refault_anon 2937
[  707.421060][ T7606] total_workingset_refault_file 2
[  707.426162][ T7606] total_swap 0
[  707.429933][ T7606] total_swapcached 6537216
[  707.434859][ T7606] total_pgpgin 425930
[  707.438957][ T7606] total_pgpgout 409416
[  707.450449][ T7606] total_pgfault 430697
[  707.454661][ T7606] total_pgmajfault 3778
[  707.458844][ T7606] total_inactive_anon 67448832
[  707.619535][ T7606] total_active_anon 184320
[  707.629396][ T7606] total_inactive_file 0
[  707.638290][ T7606] total_active_file 8192
[  707.647921][ T7606] total_unevictable 0
[  707.658888][ T7606] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz9,task_memcg=/syz9,task=syz.9.12357,pid=7605,uid=0
[  707.690612][ T7606] Memory cgroup out of memory: Killed process 7606 (syz.9.12357) total-vm:96208kB, anon-rss:1424kB, file-rss:22528kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  707.761686][ T7648] syzkaller0: entered allmulticast mode
[  707.776999][ T7648] syzkaller0: entered promiscuous mode
[  707.829099][ T7648] syzkaller0 (unregistering): left promiscuous mode
[  707.860558][ T7648] syzkaller0 (unregistering): left allmulticast mode
[  708.944924][ T7691] syzkaller0: entered allmulticast mode
[  708.976979][ T7691] syzkaller0: entered promiscuous mode
[  709.003170][ T7691] syzkaller0 (unregistering): left promiscuous mode
[  709.023308][ T7691] syzkaller0 (unregistering): left allmulticast mode
[  709.559159][ T7711] netlink: 12 bytes leftover after parsing attributes in process `syz.7.12396'.
[  709.706595][   T28] kauditd_printk_skb: 17 callbacks suppressed
[  709.706615][   T28] audit: type=1326 audit(1771844323.219:10726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7716 comm="syz.7.12397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  709.787919][   T28] audit: type=1326 audit(1771844323.219:10727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7716 comm="syz.7.12397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  709.857080][   T28] audit: type=1326 audit(1771844323.259:10728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7716 comm="syz.7.12397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  709.912455][ T7726] vxcan1: entered promiscuous mode
[  709.914389][   T28] audit: type=1326 audit(1771844323.259:10729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7716 comm="syz.7.12397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  709.967886][   T28] audit: type=1326 audit(1771844323.259:10730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7716 comm="syz.7.12397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  709.997028][   T28] audit: type=1326 audit(1771844323.259:10731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7716 comm="syz.7.12397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  710.061965][   T28] audit: type=1326 audit(1771844323.259:10732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7716 comm="syz.7.12397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  710.135409][   T28] audit: type=1326 audit(1771844323.259:10733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7716 comm="syz.7.12397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  710.185602][   T28] audit: type=1326 audit(1771844323.259:10734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7716 comm="syz.7.12397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=196 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  710.235311][   T28] audit: type=1326 audit(1771844323.259:10735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7716 comm="syz.7.12397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff748e4c629 code=0x7ffc0000
[  710.811330][ T7751] netlink: 24 bytes leftover after parsing attributes in process `syz.7.12411'.
[  711.388828][ T7786] loop9: detected capacity change from 0 to 512
[  711.408543][ T7786] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  711.434048][ T7786] EXT4-fs (loop9): 1 truncate cleaned up
[  711.446804][ T7786] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  711.633483][T32729] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  712.037909][ T7814] netlink: 12 bytes leftover after parsing attributes in process `syz.7.12435'.
[  712.172960][ T7822] netlink: 4 bytes leftover after parsing attributes in process `syz.7.12439'.
[  712.214060][ T7822] netlink: 4 bytes leftover after parsing attributes in process `syz.7.12439'.
[  712.304957][ T7830] netlink: 'syz.5.12441': attribute type 1 has an invalid length.
[  712.336913][ T7830] 8021q: adding VLAN 0 to HW filter on device bond17
[  712.421961][ T7833] netlink: 12 bytes leftover after parsing attributes in process `syz.5.12441'.
[  712.480465][ T7830] bond17: (slave veth19): Enslaving as an active interface with a down link
[  712.537454][ T7833] 8021q: adding VLAN 0 to HW filter on device batadv2
[  712.573749][ T7833] bond17: (slave batadv2): making interface the new active one
[  712.594717][ T7837] loop7: detected capacity change from 0 to 512
[  712.613444][ T7833] batadv2: entered promiscuous mode
[  712.641950][ T7833] bond17: (slave batadv2): Enslaving as an active interface with an up link
[  717.267706][ T8010] netlink: 24 bytes leftover after parsing attributes in process `syz.8.12476'.
[  717.554457][ T8017] ref_ctr increment failed for inode: 0x608 offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff8881051f86c0
[  717.582876][ T8015] uprobe: syz.7.12491:8015 failed to unregister, leaking uprobe
[  717.655483][ T8029] netlink: 8 bytes leftover after parsing attributes in process `syz.5.12485'.
[  718.930639][ T8065] netlink: 2028 bytes leftover after parsing attributes in process `syz.9.12500'.
[  718.951838][ T8065] netlink: 24 bytes leftover after parsing attributes in process `syz.9.12500'.
[  719.490370][ T8072] netlink: zone id is out of range
[  719.531650][ T8072] netlink: get zone limit has 8 unknown bytes
[  719.803388][ T8090] netlink: 41 bytes leftover after parsing attributes in process `syz.7.12512'.
[  719.821849][ T8092] netlink: 'syz.9.12513': attribute type 4 has an invalid length.
[  719.831389][ T8090] netlink: 116 bytes leftover after parsing attributes in process `syz.7.12512'.
[  719.872914][ T8096] netlink: 'syz.9.12513': attribute type 4 has an invalid length.
[  719.880904][ T8090] netlink: 41 bytes leftover after parsing attributes in process `syz.7.12512'.
[  720.149901][ T8106] netlink: 'syz.5.12518': attribute type 2 has an invalid length.
[  720.755867][ T8142] netlink: 131740 bytes leftover after parsing attributes in process `syz.8.12531'.
[  720.786665][ T8142] netlink: zone id is out of range
[  720.806583][ T8142] netlink: zone id is out of range
[  720.843807][ T8151] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12534'.
[  720.854670][ T8151] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12534'.
[  720.892175][ T8142] netlink: zone id is out of range
[  720.903724][ T8142] netlink: del zone limit has 8 unknown bytes
[  721.265270][   T28] kauditd_printk_skb: 10 callbacks suppressed
[  721.265289][   T28] audit: type=1326 audit(1771844334.769:10746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8115 comm="syz.3.12522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9761ecc629 code=0x7fc00000
[  722.167648][ T8218] netlink: 'syz.7.12564': attribute type 1 has an invalid length.
[  722.188870][ T8218] bond3: entered promiscuous mode
[  722.194407][ T8218] bond3: entered allmulticast mode
[  722.199797][ T8218] 8021q: adding VLAN 0 to HW filter on device bond3
[  722.223397][ T8218] macvlan2: entered promiscuous mode
[  722.232297][ T8218] macvlan2: entered allmulticast mode
[  722.248191][ T8218] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  722.736121][ T8235] netlink: 'syz.7.12570': attribute type 4 has an invalid length.
[  722.756835][ T8235] netlink: 'syz.7.12570': attribute type 4 has an invalid length.
[  723.141475][ T8259] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  723.166702][ T8259] tipc: Enabled bearer <udp:syz0>, priority 10
[  723.176525][ T8262] loop7: detected capacity change from 0 to 512
[  723.235818][ T8261] __nla_validate_parse: 2 callbacks suppressed
[  723.235837][ T8261] netlink: 1327 bytes leftover after parsing attributes in process `syz.5.12578'.
[  723.425815][ T8267] netlink: 64 bytes leftover after parsing attributes in process `syz.8.12580'.
[  723.547639][ T8288] netlink: 'syz.9.12592': attribute type 1 has an invalid length.
[  723.591077][ T8288] 8021q: adding VLAN 0 to HW filter on device bond2
[  723.612368][ T8291] netlink: 'syz.8.12593': attribute type 2 has an invalid length.
[  723.659212][ T8295] bond2: (slave veth7): Enslaving as an active interface with a down link
[  723.703587][ T8288] 8021q: adding VLAN 0 to HW filter on device batadv1
[  723.717735][ T8288] bond2: (slave batadv1): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open
[  723.907437][ T8304] loop8: detected capacity change from 0 to 1024
[  723.915990][ T8304] EXT4-fs: Ignoring removed orlov option
[  723.948550][ T8304] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  723.977369][ T8304] Trying to write to read-only block-device loop8
[  723.994816][ T8304] EXT4-fs error (device loop8): mb_free_blocks:2047: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  724.031958][ T4653] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  724.257912][ T8319] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12600'.
[  724.492552][ T8329] loop9: detected capacity change from 0 to 8192
[  724.549784][ T8337] netlink: 'syz.7.12605': attribute type 2 has an invalid length.
[  725.004669][ T8360] netlink: 24 bytes leftover after parsing attributes in process `syz.5.12617'.
[  725.735361][ T8371] loop7: detected capacity change from 0 to 65536
[  726.209200][ T8401] netlink: 24 bytes leftover after parsing attributes in process `syz.3.12632'.
[  726.313873][ T8405] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12632'.
[  726.477566][ T8415] ref_ctr increment failed for inode: 0x588 offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff888104be72c0
[  726.492499][ T8414] uprobe: syz.8.12640:8414 failed to unregister, leaking uprobe
[  726.738586][ T8431] netlink: 24 bytes leftover after parsing attributes in process `syz.7.12656'.
[  727.372718][ T8467] loop9: detected capacity change from 0 to 1024
[  727.384010][ T8467] EXT4-fs (loop9): orphan cleanup on readonly fs
[  727.406337][ T8467] EXT4-fs (loop9): 1 truncate cleaned up
[  727.412793][ T8467] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  727.449938][ T8473] loop7: detected capacity change from 0 to 256
[  727.459208][ T8473] vfat: Unknown parameter '0x0000000000000000'
[  727.599109][T32729] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  727.674197][ T8478] netlink: 24 bytes leftover after parsing attributes in process `syz.9.12662'.
[  728.033523][ T8492] netlink: 24 bytes leftover after parsing attributes in process `syz.3.12671'.
[  728.475412][ T8509] netlink: 63503 bytes leftover after parsing attributes in process `syz.8.12678'.
[  728.556898][ T8515] netlink: 55631 bytes leftover after parsing attributes in process `syz.9.12681'.
[  728.694889][ T8526] loop9: detected capacity change from 0 to 256
[  728.903451][ T8540] netlink: 24 bytes leftover after parsing attributes in process `syz.8.12691'.
[  729.103489][ T8526] FAT-fs (loop9): Directory bread(block 64) failed
[  729.119810][ T8526] FAT-fs (loop9): Directory bread(block 65) failed
[  729.151099][ T8526] FAT-fs (loop9): Directory bread(block 66) failed
[  729.175237][ T8526] FAT-fs (loop9): Directory bread(block 67) failed
[  729.183282][ T8526] FAT-fs (loop9): Directory bread(block 68) failed
[  729.196441][ T8526] FAT-fs (loop9): Directory bread(block 69) failed
[  729.205933][ T8526] FAT-fs (loop9): Directory bread(block 70) failed
[  729.228584][ T8526] FAT-fs (loop9): Directory bread(block 71) failed
[  729.236760][ T8526] FAT-fs (loop9): Directory bread(block 72) failed
[  729.244964][ T8526] FAT-fs (loop9): Directory bread(block 73) failed
[  730.076991][ T8564] loop9: detected capacity change from 0 to 256
[  730.094224][ T8564] vfat: Unknown parameter '0x0000000000000000'
[  730.156311][   T28] audit: type=1400 audit(1771844343.659:10747): avc:  denied  { write } for  pid=8565 comm="syz.7.12714" path="socket:[139868]" dev="sockfs" ino=139868 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  730.725143][ T8582] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  730.750556][ T8582] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  731.137238][ T8594] netlink: 24 bytes leftover after parsing attributes in process `syz.5.12712'.
[  731.177360][ T8594] netlink: 4 bytes leftover after parsing attributes in process `syz.5.12712'.
[  731.194880][ T8596] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12715'.
[  731.216398][ T8596] netlink: 12 bytes leftover after parsing attributes in process `syz.8.12715'.
[  731.258992][ T8596] netlink: 12 bytes leftover after parsing attributes in process `syz.8.12715'.
[  731.393228][ T8611] loop8: detected capacity change from 0 to 256
[  731.410623][ T8611] vfat: Unknown parameter '0x0000000000000000'
[  732.838828][ T8639] netlink: 24 bytes leftover after parsing attributes in process `syz.9.12728'.
[  732.888206][ T8639] netlink: 4 bytes leftover after parsing attributes in process `syz.9.12728'.
[  733.103530][ T8663] loop7: detected capacity change from 0 to 1024
[  733.826596][ T8697] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  733.940112][ T8709] 8021q: adding VLAN 0 to HW filter on device bond0
[  733.966055][ T8709] 8021q: adding VLAN 0 to HW filter on device team0
[  733.987243][ T8709] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  734.147031][   T28] audit: type=1326 audit(1771844347.659:10748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8726 comm="syz.8.12771" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x0
[  734.229928][ T8730] netlink: 2028 bytes leftover after parsing attributes in process `syz.5.12772'.
[  734.239567][ T8730] netlink: 24 bytes leftover after parsing attributes in process `syz.5.12772'.
[  734.298558][ T8733] netlink: 4 bytes leftover after parsing attributes in process `syz.9.12773'.
[  734.715110][   T28] audit: type=1326 audit(1771844348.229:10749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8748 comm="syz.3.12778" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9761ecc629 code=0x0
[  735.595024][   T28] audit: type=1400 audit(1771844349.109:10750): avc:  denied  { setopt } for  pid=8787 comm="syz.9.12795" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  736.126080][   T28] audit: type=1400 audit(1771844349.639:10751): avc:  denied  { execute } for  pid=8811 comm="syz.8.12804" dev="hugetlbfs" ino=140610 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  736.200510][   T28] audit: type=1400 audit(1771844349.639:10752): avc:  denied  { execute_no_trans } for  pid=8811 comm="syz.8.12804" path=2F6D656D66643A202864656C6574656429 dev="hugetlbfs" ino=140610 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  736.237487][ T8815] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12805'.
[  736.543539][   T28] audit: type=1326 audit(1771844350.059:10753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8829 comm="syz.8.12812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  736.575290][   T28] audit: type=1326 audit(1771844350.059:10754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8829 comm="syz.8.12812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  736.599803][   T28] audit: type=1326 audit(1771844350.059:10755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8829 comm="syz.8.12812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  736.623689][   T28] audit: type=1326 audit(1771844350.059:10756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8829 comm="syz.8.12812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  736.647869][   T28] audit: type=1326 audit(1771844350.059:10757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8829 comm="syz.8.12812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  736.683764][   T28] audit: type=1326 audit(1771844350.079:10758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8829 comm="syz.8.12812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  736.743352][   T28] audit: type=1326 audit(1771844350.079:10759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8829 comm="syz.8.12812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f636be8c629 code=0x7ffc0000
[  737.502264][ T8865] netlink: 12 bytes leftover after parsing attributes in process `syz.7.12836'.
[  737.543589][ T8867] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12827'.
[  737.574007][ T8867] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12827'.
[  738.176866][ T8900] netlink: 12 bytes leftover after parsing attributes in process `syz.9.12840'.
[  739.573892][ T8929] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12852'.
[  739.928383][ T8957] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=8957 comm=syz.5.12865
[  740.473269][ T4791] ==================================================================
[  740.481430][ T4791] BUG: KCSAN: data-race in set_nlink / set_nlink
[  740.487807][ T4791] 
[  740.490158][ T4791] write to 0xffff8881304d4518 of 4 bytes by task 3001 on cpu 0:
[  740.497813][ T4791]  set_nlink+0x99/0xb0
[  740.502075][ T4791]  kernfs_iop_permission+0x1e2/0x220
[  740.507409][ T4791]  inode_permission+0x31f/0x3b0
[  740.512310][ T4791]  link_path_walk+0x779/0xe30
[  740.517047][ T4791]  path_openat+0x1c6/0x2050
[  740.521588][ T4791]  do_file_open+0x16c/0x290
[  740.526126][ T4791]  do_sys_openat2+0x94/0x130
[  740.530751][ T4791]  __x64_sys_openat+0xf2/0x120
[  740.535548][ T4791]  x64_sys_call+0x1e39/0x3020
[  740.540514][ T4791]  do_syscall_64+0x12c/0x370
[  740.545229][ T4791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  740.551145][ T4791] 
[  740.553494][ T4791] read to 0xffff8881304d4518 of 4 bytes by task 4791 on cpu 1:
[  740.561056][ T4791]  set_nlink+0x29/0xb0
[  740.565153][ T4791]  kernfs_iop_permission+0x1e2/0x220
[  740.570485][ T4791]  inode_permission+0x31f/0x3b0
[  740.575367][ T4791]  link_path_walk+0x779/0xe30
[  740.580072][ T4791]  path_openat+0x1c6/0x2050
[  740.584605][ T4791]  do_file_open+0x16c/0x290
[  740.589163][ T4791]  do_sys_openat2+0x94/0x130
[  740.593783][ T4791]  __x64_sys_openat+0xf2/0x120
[  740.598659][ T4791]  x64_sys_call+0x1e39/0x3020
[  740.603365][ T4791]  do_syscall_64+0x12c/0x370
[  740.607989][ T4791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  740.613927][ T4791] 
[  740.616300][ T4791] value changed: 0x00000005 -> 0x00000006
[  740.622031][ T4791] 
[  740.624372][ T4791] Reported by Kernel Concurrency Sanitizer on:
[  740.630630][ T4791] CPU: 1 UID: 0 PID: 4791 Comm: udevd Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  740.641082][ T4791] Tainted: [W]=WARN
[  740.644906][ T4791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  740.655092][ T4791] ==================================================================