last executing test programs:

5m15.774143304s ago: executing program 0 (id=641):
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x112200, 0x10004, 0x20da, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c00)=ANY=[@ANYBLOB="14000000100001000000ddffffff00000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440000000d50900010073797a3000000000080003400000000114000000110001"], 0x64}}, 0x4004000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000020000103"], 0x50}}, 0x4000850)
sendmsg$NFT_MSG_GETOBJ(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c000000150a"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

5m15.677719123s ago: executing program 0 (id=643):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000100)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000000c0)={r1, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r1, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r2}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000340), &(0x7f0000000380)=r3}, 0x20)

5m15.649619625s ago: executing program 0 (id=645):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0xc0042, 0x1)
close(r0)
r1 = getpid()
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = syz_pidfd_open(r1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480), 0x84, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

5m15.615761078s ago: executing program 0 (id=646):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000300)='devpts\x00', 0x101c040, 0x0)
umount2(&(0x7f0000000340)='./file0/../file0\x00', 0x1)

5m15.588771131s ago: executing program 0 (id=647):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000400), 0xff, 0x23f, &(0x7f0000000540)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000980)=ANY=[@ANYBLOB="020000000100000000000000040000000000000010000000000000002000000000000000882c89ea277d90339226e0f829d41b1fd0"], 0x24, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x82400, 0x0)
r0 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
fallocate(r0, 0x0, 0x0, 0x8800000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000840)='./bus\x00', 0x110)

5m15.36923198s ago: executing program 0 (id=649):
r0 = open(&(0x7f0000001200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x400101042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x7800006, 0x12, r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r1, &(0x7f0000000000)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1, 0x300, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x85)

5m15.36913126s ago: executing program 32 (id=649):
r0 = open(&(0x7f0000001200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x400101042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x7800006, 0x12, r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r1, &(0x7f0000000000)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1, 0x300, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x85)

5m11.641400506s ago: executing program 5 (id=716):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x8}, 0x4, 0x0, 0x10000, 0x0, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x3fffffffc, 0x4}, 0x0, 0x0, 0x0, 0x2, 0xfff, 0xa001, 0x5, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

5m11.408939446s ago: executing program 5 (id=713):
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000000180), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
syz_emit_ethernet(0x7e, &(0x7f0000000040)=ANY=[], 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0xfd44)

5m11.288307516s ago: executing program 5 (id=718):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x100000001, 0xdd5}, 0x0, 0x0, 0x10000, 0x2, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = epoll_create1(0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0xa0002000})
preadv(r1, &(0x7f00000007c0)=[{&(0x7f0000000040)=""/73, 0x49}], 0x1, 0x100, 0x400005)
epoll_pwait(r0, &(0x7f0000000200)=[{}], 0x1, 0x0, 0x0, 0x0)

5m11.146203809s ago: executing program 5 (id=723):
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file1\x00', 0x4000, &(0x7f0000000480), 0x1, 0x3d0, &(0x7f00000004c0)="$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")
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xb9, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={&(0x7f00000002c0), 0x2}, 0x1160bb, 0x10000, 0x0, 0x8, 0x8, 0x6, 0xb, 0x0, 0x0, 0x0, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
setsockopt$MRT6_DEL_MIF(0xffffffffffffffff, 0x29, 0xcb, 0x0, 0x0)
syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
truncate(&(0x7f00000001c0)='./file1\x00', 0x800)

5m11.069297006s ago: executing program 5 (id=725):
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff8000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x4004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x970, 0x1f480, 0x0, 0x399})
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e21, 0x7, @local}, 0x1c)
io_uring_enter(r0, 0x8ae, 0x6933, 0x17, 0x0, 0xeffd)

5m9.158817192s ago: executing program 5 (id=763):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000380)={0x6, {{0x2, 0x0, @multicast1}}}, 0x88)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000140)={0x4, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @dev}}}, 0x108)
getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000000)=""/145, &(0x7f0000695ffc)=0x24b)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)

5m9.158744302s ago: executing program 33 (id=763):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000380)={0x6, {{0x2, 0x0, @multicast1}}}, 0x88)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000140)={0x4, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @dev}}}, 0x108)
getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000000)=""/145, &(0x7f0000695ffc)=0x24b)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)

5m5.683156566s ago: executing program 1 (id=819):
perf_event_open(&(0x7f0000000140)={0x2, 0x96, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x42710, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xd07, 0x40}, 0x100b28, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000340)={0x1d, r1, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x4048081)

5m2.636900523s ago: executing program 1 (id=900):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @local}}, {0x14, 0x2, @in={0x2, 0x0, @multicast1}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={0x68, r2, 0x1, 0xfffffffe, 0x10000, {}, [@TIPC_NLA_NODE={0x50, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x4c, 0x4, {'gcm(aes)\x00', 0x24, "e38e7e1a5ea29bfc1b77b94955c07855eb12198979fea4538f5c09ab625bff936d53d3b7"}}]}, @TIPC_NLA_BEARER={0x4}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000024}, 0x0)
sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f0000000f00)={0x18, r2, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x11}, 0x4000)

5m2.471460057s ago: executing program 1 (id=901):
unshare(0x40200)
r0 = semget(0x1, 0x3, 0x39c)
semop(r0, &(0x7f0000000080)=[{0x1, 0x8001, 0x1000}], 0x1)
semop(r0, &(0x7f0000000000)=[{0x2, 0xbbdd, 0x1000}], 0x1)
semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000140)=[0x6, 0x7fff])
unshare(0x40400)

5m1.609158542s ago: executing program 1 (id=925):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x140, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba9432})
readv(r0, &(0x7f00000001c0)=[{&(0x7f0000001400)=""/227, 0x10}], 0x4)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x5, 0x3032, 0xffffffffffffffff, 0x0)

5m1.41502523s ago: executing program 1 (id=927):
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000001c0)=0x10)
syz_read_part_table(0x59d, &(0x7f0000000000)="$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")

5m1.161071361s ago: executing program 1 (id=930):
r0 = io_uring_setup(0x4822, &(0x7f0000000100)={0x0, 0x0, 0x80})
r1 = socket$nl_audit(0x10, 0x3, 0x9)
bind$netlink(r1, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfd, 0x9ea8bb2a1f4897b}, 0xc)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
bind$netlink(r2, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfd, 0x9ea8bb2a1f48d7b}, 0xc)
close_range(r0, 0xffffffffffffffff, 0x0)

4m45.982988428s ago: executing program 34 (id=930):
r0 = io_uring_setup(0x4822, &(0x7f0000000100)={0x0, 0x0, 0x80})
r1 = socket$nl_audit(0x10, 0x3, 0x9)
bind$netlink(r1, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfd, 0x9ea8bb2a1f4897b}, 0xc)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
bind$netlink(r2, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfd, 0x9ea8bb2a1f48d7b}, 0xc)
close_range(r0, 0xffffffffffffffff, 0x0)

3m34.464800838s ago: executing program 6 (id=2462):
lsetxattr$system_posix_acl(0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000010000000000f400040000000000000020"], 0x1c, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x4004)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}, {0x0, 0x0, 0x200000000000000}}}, 0xb8}}, 0x2c000010)
sendmsg$nl_xfrm(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x14, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x1000, 0x0, 0xa, 0x20}, {}, {0x1, 0x6, 0x0, 0xfffffffffffffffe}}}, 0xb8}, 0x1, 0x0, 0x0, 0x404c830}, 0x0)

3m34.268229795s ago: executing program 6 (id=2466):
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000024d00)={0x0, 0x0, &(0x7f0000024cc0)={&(0x7f0000000240)=@delchain={0xd04, 0x65, 0x2, 0x70bd28, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xfff3, 0x3}, {0x4, 0xfff1}, {0xa, 0xffff}}, [@f_tcindex={{0xc}, {0x4}}, @f_rsvp6={{0xa}, {0x24, 0x2, [@TCA_RSVP_PINFO={0x20, 0x4, {{0x4, 0xffffffff, 0x7}, {0x8000, 0x1, 0x80000000}, 0x16, 0x17, 0x2}}]}}, @f_rsvp6={{0xa}, {0xc94, 0x2, [@TCA_RSVP_CLASSID={0x8, 0x1, {0x1ffe6, 0x8}}, @TCA_RSVP_POLICE={0x824, 0x5, [@TCA_POLICE_RESULT={0x8, 0x5, 0xb}, @TCA_POLICE_AVRATE={0x8, 0x4, 0xa1f}, @TCA_POLICE_RESULT={0x8, 0x5, 0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x9, 0x4, 0x2, 0x3ff, 0x3d, 0x2, 0xf7, 0x7, 0xffff7fff, 0xfffffff9, 0x80, 0x10, 0x8, 0xf90, 0xb4e, 0x9, 0x8, 0x9, 0x6, 0xffffffc0, 0x4, 0x101, 0x14c1, 0x1, 0x0, 0x80000001, 0x4, 0x1ff, 0x7, 0x0, 0xffff, 0x2, 0xff, 0x2, 0x3, 0xbb, 0x0, 0x4, 0x100, 0x7, 0x7, 0x61, 0x9, 0x7, 0x3ff, 0x2, 0x8, 0x4, 0xffff, 0x7fb4, 0x3, 0x0, 0x9, 0xd819, 0x0, 0x9, 0x80000001, 0x7, 0x4dbc263c, 0x336d, 0xfffffffb, 0x1, 0x2, 0x1, 0x1, 0x685c, 0x100, 0x3, 0x200, 0xb9, 0x1, 0x8000, 0xffffffff, 0x924, 0x1, 0x4, 0x4, 0x4, 0xfffffffb, 0xff, 0x2, 0x3, 0x405, 0x0, 0x1000, 0xffff, 0xb, 0xffffffff, 0x5, 0x6, 0x4, 0x3, 0x3, 0xb66, 0x7fff, 0x5, 0x4, 0xe2b, 0x3, 0x8, 0x400, 0x20c3, 0x9, 0x469, 0x4, 0x8, 0x2, 0xfffffffb, 0x5, 0x0, 0x7, 0xfc, 0x4, 0x4, 0x4410, 0x788, 0x4, 0x0, 0xfffffffa, 0x0, 0x40, 0x5, 0x0, 0x9, 0x8, 0x1, 0x7f, 0x8, 0x5e83, 0x9, 0x8001, 0x3, 0x2, 0x0, 0x9, 0x2, 0x8, 0x5, 0x8001, 0x7, 0xa61f, 0x800, 0x1ff, 0x3, 0x9, 0xfffffc01, 0x100, 0xc9e6, 0x2, 0x5, 0x200, 0x0, 0x0, 0x5, 0x6, 0x2, 0x200, 0x0, 0x0, 0x4, 0x1, 0x9, 0x2, 0xffff, 0x3, 0x12, 0x6, 0x0, 0x8, 0x7, 0x2, 0x1, 0x80000001, 0x100, 0x3, 0x101, 0x7fff, 0x6, 0x7, 0x2, 0x3, 0x2, 0x9, 0x4, 0x2, 0x3f26406, 0xa, 0x10001, 0x5, 0x9, 0x4, 0x10, 0x4, 0x2, 0x3, 0x1, 0x5, 0x6, 0x6, 0x4, 0xae26, 0x3697, 0x3, 0x1, 0x8001, 0x7, 0x8, 0x0, 0x8, 0x80000000, 0x7, 0x4, 0x7, 0xd1, 0x8, 0x5, 0x7, 0x2, 0x7fffffff, 0xfffffffe, 0xb, 0x7, 0xd, 0x8, 0x6, 0x1, 0xd, 0x3, 0x8, 0x2, 0x532, 0xffffff3e, 0x6, 0xff, 0x5b96000, 0x4, 0x1, 0x5, 0x5, 0x4, 0x4, 0x3, 0x70ea, 0x10, 0xffffffff, 0x100, 0x4, 0xd, 0x1, 0xfff, 0x0, 0x7fff, 0xae, 0x416efdef, 0x6, 0x8]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0xc9e5, 0x80000001, 0x101, 0x0, 0xa9, 0x7, 0x4, 0x94, 0x49b, 0x7ff, 0x1, 0x81, 0xb8, 0x8001, 0x10, 0x3, 0x4, 0x991, 0xfffffffd, 0x7ff, 0x6, 0x5, 0x4, 0x8001, 0x3, 0x7, 0x5, 0xced, 0xfffffc00, 0x6, 0x101, 0x7fff, 0x8, 0x7, 0x1, 0x3, 0xb, 0x0, 0xb, 0x8, 0x7, 0x8d2, 0x80, 0x47e, 0x4918, 0xc43, 0x80000001, 0x4, 0x8, 0xfffffff9, 0x3, 0x6dbb, 0x6, 0xfffffff8, 0xe2, 0x3, 0x7, 0x9, 0x4, 0x1, 0x3, 0x0, 0xf3523b20, 0x6, 0x0, 0x2, 0x2, 0x80000000, 0x21dce07, 0x3ff, 0x4, 0x0, 0x6, 0x9, 0x10, 0x10000, 0x5, 0x2, 0x3, 0xe51, 0x8, 0x7fff, 0x5, 0x6, 0x80, 0x50, 0x9, 0x40, 0x0, 0x575e, 0x400, 0x9, 0x5, 0x9, 0x0, 0x6, 0x5c, 0x2, 0x40, 0x6, 0x6, 0x401, 0x0, 0x0, 0x401, 0x0, 0xfffffff3, 0x2, 0x4f478, 0x2, 0x5, 0x401, 0x6, 0x2, 0x6, 0x400, 0xffffffff, 0x1000, 0x8, 0x2, 0x96f3, 0x1ff, 0x6, 0x6, 0xffffffff, 0x2, 0x1, 0x1000, 0x3, 0x6, 0x40008001, 0x1ff, 0x3, 0x4a, 0xa, 0x8, 0x400, 0xffffffff, 0x0, 0xa, 0x7, 0x50000, 0xb, 0x2, 0x834, 0x1, 0x9, 0x2, 0x1, 0x2, 0x3, 0xffffffff, 0x8, 0x7, 0x8, 0x38f04e17, 0x9, 0x5, 0x81, 0x0, 0xaa02, 0x0, 0xa2, 0x9, 0x7fff, 0x3, 0xc, 0xfffffffe, 0x6, 0xa6, 0xd, 0x3, 0x7, 0x2f, 0x7, 0xce, 0x4db4acbc, 0x9, 0x0, 0xb01, 0x40, 0x4, 0x599, 0x5, 0x8, 0x8, 0x5, 0x8, 0xff, 0x2, 0x101, 0x0, 0xd104, 0x7fff, 0x9, 0x9, 0x30, 0x5, 0x380, 0x9, 0x7, 0x5, 0xa, 0xff, 0xfffffffc, 0x5, 0x1, 0x1, 0xe, 0x4, 0xfff, 0x1, 0x0, 0x401, 0x8, 0x4, 0x81, 0xb9c, 0x0, 0x6, 0x8, 0xa0, 0x8, 0x4, 0x8, 0x8, 0x9, 0x1, 0x8000, 0x0, 0x2, 0x6, 0x40, 0x0, 0x1, 0xcd0, 0x1, 0x10000, 0x0, 0x2, 0x5, 0xfffffffd, 0x50, 0x4, 0x54, 0x200, 0x200, 0x9, 0xffff8000, 0xb, 0x8000, 0x80, 0x2, 0x4, 0x1, 0x5]}]}, @TCA_RSVP_PINFO={0x20, 0x4, {{0x5, 0x4a24, 0xa661}, {0x400000, 0x3, 0x101}, 0x37, 0xff}}, @TCA_RSVP_POLICE={0x444, 0x5, [@TCA_POLICE_TBF={0x3c, 0x1, {0x6, 0x7, 0x4, 0x32f, 0x681, {0x7, 0x0, 0xfffe, 0x11, 0x1, 0x5}, {0x0, 0x1, 0x1, 0x1ff, 0xfff7, 0xf}, 0xbe, 0x6, 0x7}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x6, 0x2, 0x5, 0x6, 0x1, 0xf6dc, 0x10001, 0x10000, 0xbfe4, 0x9, 0x8, 0x8, 0x1, 0x5, 0xffffffff, 0x4ab3689d, 0xfffffff8, 0x1000, 0x6, 0x2, 0x5acd, 0x9, 0x1, 0x5, 0x0, 0x99aa, 0x814, 0x4, 0x4, 0x2, 0x9, 0x3a, 0x5, 0xfffff000, 0x9, 0x7ff, 0x4, 0x6, 0x8, 0x9, 0xffffffff, 0x6, 0xffff8001, 0x0, 0x7, 0x0, 0x800, 0x0, 0x1, 0x0, 0x61, 0x10, 0x101, 0x4, 0xb4c1, 0xa, 0x81, 0x7fff, 0x15, 0x2, 0x0, 0x0, 0x8, 0x200, 0x1, 0x10001, 0x5, 0x4, 0x929, 0x1, 0x9, 0x7, 0x81, 0x8, 0x1000000, 0xfffffff8, 0x2be, 0xffffff00, 0x800, 0x6, 0x7fffffff, 0x0, 0x5, 0x5, 0x80, 0x3, 0x0, 0x4, 0x401, 0x9, 0xb, 0x81, 0x1, 0x7fffffff, 0x2, 0x2038, 0x3, 0xa4, 0x5, 0x101, 0x0, 0x6, 0x40, 0x3d95cac0, 0x2, 0x104d, 0x1000, 0x4cb, 0x239, 0x1, 0x7, 0x23, 0x3, 0x3941d18c, 0x3207, 0x5, 0x1, 0x0, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x4, 0x0, 0x9, 0x2, 0x0, 0x8, 0x5, 0x40, 0x1, 0x1, 0x5, 0xfffffff7, 0xc42, 0x0, 0x5, 0x1, 0x7, 0x3, 0xe, 0x6, 0xfffffffb, 0xda, 0x3, 0xefffff92, 0xfffffc00, 0x4, 0x1, 0x401, 0x5, 0x8000, 0x9, 0x6, 0x708, 0x7fffffff, 0x1, 0x5b9449b5, 0x5, 0x8, 0xffffffff, 0x5, 0x5, 0xfffffff8, 0xa, 0x6, 0x7, 0x416, 0x8, 0x2, 0xf40000, 0x6, 0x8a87, 0x9, 0x6e, 0xfffff800, 0x7, 0x64ad, 0x0, 0xd, 0x6, 0x1, 0x3, 0xd, 0x5, 0x3, 0x6, 0x6, 0x3, 0x401, 0x6, 0x80000001, 0x9, 0x0, 0xfffffe00, 0x7, 0xfffffff7, 0xbfb6, 0x8000, 0x9, 0x7, 0xffffff54, 0x2, 0xd7ed, 0x5, 0x7, 0x0, 0x10000, 0x10001, 0x9, 0xc, 0x80000001, 0x5699, 0x698b, 0x4, 0xe6, 0x4, 0x7fffffff, 0xfe4a, 0x1, 0x800, 0xf, 0x8, 0x3, 0xfffffff7, 0x7, 0x400, 0x7fffffff, 0x0, 0x1, 0xffffffff, 0x8, 0x1, 0x65, 0x8, 0x8, 0x800, 0x4, 0x200, 0x2, 0x8000, 0x5, 0x9, 0x8, 0x9, 0x595, 0x4, 0x5, 0x1, 0x4, 0x3, 0x8, 0x4, 0x2]}]}]}}]}, 0xd04}, 0x1, 0x0, 0x0, 0x810}, 0x1)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x400a00, 0x25dfdbf9}, 0x14}, 0x1, 0x0, 0x0, 0x400c080}, 0x4004000)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

3m34.050731074s ago: executing program 6 (id=2471):
r0 = socket$packet(0x11, 0x3, 0x300)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8006, 0x6}, 0x0, 0x10001, 0xda, 0x5, 0xa, 0x20005, 0xa, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x3ff, 0x80)
close_range(r1, r1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f0000000080)="18", 0x10, 0x0, &(0x7f00000000c0)={0x11, 0xe, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)

3m33.908035256s ago: executing program 6 (id=2475):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount(0x0, &(0x7f0000000240)='./file0/file0\x00', &(0x7f0000000300)='devpts\x00', 0x101c040, 0x0)

3m33.829004763s ago: executing program 6 (id=2477):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0, 0x9}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r0, &(0x7f0000000540)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x7}}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x42, 0x2, 0x2}, 0x10)

3m33.63725274s ago: executing program 6 (id=2481):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x68180, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6f, 0x1, @perf_config_ext={0x3fffffffb}, 0xc0c8, 0x0, 0x0, 0x3, 0x9, 0x8001, 0x7fff}, 0x0, 0xff6fffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0xcf, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_config_ext={0x7, 0x6}, 0x1004, 0x0, 0x10000, 0x3, 0x2, 0x80004001, 0x0, 0x0, 0x0, 0x0, 0xbf}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000540)={0x2, 0x80, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x7, 0x0, 0x3, 0x0, 0x5}, 0x0, 0x1, 0xffffffffffffffff, 0xb)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x8, 0xffe, 0x1ff, 0x42000}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000005200010004000000000000001c0000001400", @ANYRES16=r0], 0x28}}, 0x0)

3m33.589175724s ago: executing program 35 (id=2481):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x68180, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6f, 0x1, @perf_config_ext={0x3fffffffb}, 0xc0c8, 0x0, 0x0, 0x3, 0x9, 0x8001, 0x7fff}, 0x0, 0xff6fffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0xcf, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_config_ext={0x7, 0x6}, 0x1004, 0x0, 0x10000, 0x3, 0x2, 0x80004001, 0x0, 0x0, 0x0, 0x0, 0xbf}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000540)={0x2, 0x80, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x7, 0x0, 0x3, 0x0, 0x5}, 0x0, 0x1, 0xffffffffffffffff, 0xb)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x8, 0xffe, 0x1ff, 0x42000}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000005200010004000000000000001c0000001400", @ANYRES16=r0], 0x28}}, 0x0)

3m30.65759897s ago: executing program 4 (id=2505):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000540)='nv', 0x2)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000bc0)={0x4c, 0x12, 0x301, 0x0, 0x0, {0x0, 0x6, 0x0, 0x1a, {0x4e23, 0x0, [0x0, 0x2, 0x81, 0xfffffffe], [0x10, 0xfffffffd, 0x10000], 0x0, [0x0, 0x7fff]}, 0x7}}, 0x4c}, 0x1, 0x0, 0x0, 0x20044190}, 0x40000)

3m30.571332428s ago: executing program 4 (id=2506):
capset(&(0x7f0000000080)={0x20071026}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x12, 0x4, 0x4, 0x3}, 0x50)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
listen(r1, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000580)={r0, &(0x7f0000000480), &(0x7f0000000540)=@tcp=r1}, 0x20)
bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000400)={r0, &(0x7f0000000080), 0x20000000}, 0x20)

3m30.524486842s ago: executing program 4 (id=2508):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0)

3m30.428955811s ago: executing program 4 (id=2510):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount(0x0, &(0x7f0000000240)='./file0/file0\x00', &(0x7f0000000300)='devpts\x00', 0x101c040, 0x0)

3m29.903539386s ago: executing program 4 (id=2514):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @dev}, 0x1c)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x461e, 0x8, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000280)=[{&(0x7f0000000080)="580000001400add4050000000000000002117fffffff81004e230e227f000001925aa80020007b00090080007f000001e809000000ffff0100f5c71002000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

3m29.733225241s ago: executing program 4 (id=2519):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f00000014c0)='tasks\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x4db, 0x20081, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_bp={0x0, 0x8}, 0x2, 0x0, 0x10ffe, 0x0, 0x2, 0x80000011, 0x1, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x9)
r2 = syz_clone(0x4000, &(0x7f0000001000), 0x0, 0x0, 0x0, 0x0)
write$cgroup_pid(r1, &(0x7f0000000400)=r2, 0x12)

3m29.730957861s ago: executing program 36 (id=2519):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f00000014c0)='tasks\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x4db, 0x20081, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_bp={0x0, 0x8}, 0x2, 0x0, 0x10ffe, 0x0, 0x2, 0x80000011, 0x1, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x9)
r2 = syz_clone(0x4000, &(0x7f0000001000), 0x0, 0x0, 0x0, 0x0)
write$cgroup_pid(r1, &(0x7f0000000400)=r2, 0x12)

1.737121198s ago: executing program 9 (id=7034):
r0 = syz_io_uring_setup(0xb7f, &(0x7f0000000180)={0x0, 0x38ab, 0x80, 0x0, 0x1e6}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000600)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f00000000c0)={&(0x7f0000001000)={[{0x0, 0x0, 0x4, 0xf4}, {&(0x7f0000000100)="6e6f82e5e8bf21ed4e1a02367f8b3cf61b4a16a146dfb1851626bda845094856f52489d817e92e5a8ecce42c451dca7457a66c467e", 0x35}]}, 0x2, 0x1}, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_DEL(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x20, 0x3, 0x7, 0x301, 0x0, 0x0, {0x5, 0x0, 0xd}, [@NFACCT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x10, r3, 0x0, 0x0, 0x0, 0x322, 0x1, {0x1}})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)

1.664344184s ago: executing program 9 (id=7037):
ioctl$sock_TIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x10, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x1}, 0x2002, 0x32, 0x43a1bd56, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300), 0x111, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000180), 0x2}}, 0x20)
close_range(r0, r0, 0x0)

1.520501847s ago: executing program 9 (id=7044):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000006, 0x0, @perf_bp={0x0, 0x9}, 0x6000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
r2 = gettid()
process_vm_writev(r2, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)

1.227453232s ago: executing program 7 (id=7050):
bpf$PROG_LOAD(0x5, &(0x7f0000001740)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
write$P9_RLERRORu(r0, &(0x7f0000000300)=ANY=[@ANYRESHEX], 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x2], 0x0, 0x0, 0x1}}, 0x40)
write$P9_RSTATu(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="b8"], 0xb8)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r0, 0x0)

1.201427175s ago: executing program 9 (id=7051):
r0 = socket$kcm(0x2b, 0x1, 0x0)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xa43d, 0x80, 0x2, 0x3b9}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
mount$cgroup(0x0, &(0x7f0000000600)='.\x00', 0x0, 0x2208000, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000000c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x47f6, 0x0, 0x2, 0x0, 0x0)
sendmsg$inet(r0, &(0x7f0000001580)={&(0x7f00000002c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x2000c08d)

1.153131789s ago: executing program 8 (id=7053):
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x9}, 0x106200, 0x1000, 0x20da, 0x0, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
sendmsg$inet(0xffffffffffffffff, 0x0, 0xfffe)
socket$packet(0x11, 0xa, 0x300)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0xfffe, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x41000}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.107608833s ago: executing program 7 (id=7064):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
r2 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x9902)

882.715102ms ago: executing program 8 (id=7054):
ioctl$sock_TIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x10, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x1}, 0x2002, 0x32, 0x43a1bd56, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300), 0x111, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000180), 0x2}}, 0x20)
close_range(r0, r0, 0x0)

882.650193ms ago: executing program 7 (id=7055):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000040)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000932000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f00000005c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
dup3(r0, r1, 0x0)

879.792342ms ago: executing program 2 (id=7066):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
r2 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x9902)

835.152117ms ago: executing program 3 (id=7057):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r2, 0x4)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=@getspdinfo={0x14, 0x25, 0x1, 0x70bd2b, 0x25dfdbfc, 0x4, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000004}, 0x4c050)

817.420758ms ago: executing program 8 (id=7058):
r0 = open(&(0x7f0000000280)='.\x00', 0x80, 0x122)
fcntl$notify(r0, 0x402, 0x8000003d)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x9, 0x1020, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, @perf_bp={0x0, 0x5}, 0x102260, 0x10000, 0x0, 0x0, 0x2b5, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x21)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
file_setattr(0xffffffffffffff9c, 0x0, &(0x7f00000000c0)={0x1ba8, 0xd9, 0x3, 0x1000c, 0x3f91}, 0x18, 0x1000)

816.633368ms ago: executing program 2 (id=7071):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x6, 0x10, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0x800000e2, 0x0, 0x0, 0x0, 0x2000000}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8006}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5c298795369ca04f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000800)={r1, r3, 0x25, 0x0, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x40)
syz_emit_ethernet(0xfdef, &(0x7f0000000100)=ANY=[], 0x0)

788.996661ms ago: executing program 7 (id=7060):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)="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", 0x3f1}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a8532b82037b02c9e6045c361eb", 0x36}], 0x3}, 0x0)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000000), 0x4)

774.060262ms ago: executing program 8 (id=7061):
r0 = syz_io_uring_setup(0x3380, &(0x7f0000000180)={0x0, 0xfffffffd, 0x10100}, &(0x7f0000000380)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000040)=ANY=[@ANYBLOB='5'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

731.535706ms ago: executing program 2 (id=7062):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000006, 0x0, @perf_bp={0x0, 0x9}, 0x6000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
r2 = gettid()
process_vm_writev(r2, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)

731.419806ms ago: executing program 3 (id=7063):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r0, 0x0, 0x0, 0xa00}])

721.729547ms ago: executing program 8 (id=7065):
bpf$PROG_LOAD(0x5, &(0x7f0000001740)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
write$P9_RLERRORu(r0, &(0x7f0000000300)=ANY=[@ANYRESHEX], 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x2], 0x0, 0x0, 0x1}}, 0x40)
write$P9_RSTATu(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="b8"], 0xb8)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r0, 0x0)

721.608636ms ago: executing program 7 (id=7067):
r0 = fsopen(&(0x7f0000001140)='hugetlbfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r2, &(0x7f00000000c0)=""/31, 0x1f)
getdents(r2, 0x0, 0x58)

602.951297ms ago: executing program 7 (id=7068):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000180)={{{@in=@multicast2, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e22, 0x5, 0x4e20, 0x24, 0xa, 0xa0, 0x0, 0x2e}, {0x5, 0xe1b, 0x5, 0xf60, 0xa5c, 0x1, 0x9, 0xa7}, {0x6, 0xa, 0x76a20000, 0xffffffffffffff49}, 0x8001, 0x6e6bb1, 0x2, 0xc9098780e1c068ce, 0x2}, {{@in=@broadcast, 0x4d4, 0x2b}, 0xa, @in6=@rand_addr=' \x01\x00', 0x3504, 0x1, 0x0, 0x8, 0x3, 0x4000000, 0x1}}, 0xe8)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

466.428979ms ago: executing program 3 (id=7069):
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x9}, 0x106200, 0x1000, 0x20da, 0x0, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
sendmsg$inet(0xffffffffffffffff, 0x0, 0xfffe)
socket$packet(0x11, 0xa, 0x300)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0xfffe, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x41000}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

465.843309ms ago: executing program 8 (id=7080):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x8}, 0x4, 0x0, 0x11000, 0x0, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0xb)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f00000001c0)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0x7}}]}, 0x1, 0x5fd, &(0x7f00000006c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

358.610448ms ago: executing program 2 (id=7070):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r3, r1, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0x1e, &(0x7f0000001bc0)={@broadcast, @remote, @val, {@llc={0x8100, {@snap={0xab, 0xab, "8e", "7e70d3", 0x883e}}}}}, 0x0)

337.42334ms ago: executing program 9 (id=7072):
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1f0519, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xa, 0x8}, 0x6025, 0x4005, 0xb, 0x3, 0x2, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mmap$perf(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x4000011, r0, 0x0)
r1 = syz_io_uring_setup(0x6a00, &(0x7f0000000140)={0x0, 0xaee1, 0x0, 0x1, 0xbfdffffc}, &(0x7f0000000100)=<r2=>0x0, &(0x7f00000003c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8587}})
io_uring_enter(r1, 0x47f6, 0x4000, 0x88, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)

256.075997ms ago: executing program 2 (id=7073):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x9, 0xf4039, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x6}, 0x204, 0x1, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x4000000000, 0xffffffffffffffff, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto]}}, 0x0, 0x26}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x3, &(0x7f00000005c0)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, r2, 0xc, &(0x7f00000000c0)={0x0, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb7}, 0x94)

85.493842ms ago: executing program 3 (id=7074):
r0 = open(&(0x7f0000000280)='.\x00', 0x80, 0x122)
fcntl$notify(r0, 0x402, 0x8000003d)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x9, 0x1020, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, @perf_bp={0x0, 0x5}, 0x102260, 0x10000, 0x0, 0x0, 0x2b5, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x21)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
file_setattr(0xffffffffffffff9c, 0x0, &(0x7f00000000c0)={0x1ba8, 0xd9, 0x3, 0x1000c, 0x3f91}, 0x18, 0x1000)

19.017348ms ago: executing program 3 (id=7075):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)="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", 0x3f1}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a8532b82037b02c9e6045c361eb", 0x36}], 0x3}, 0x0)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000000), 0x4)

2.251529ms ago: executing program 3 (id=7076):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x6, 0x10, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0x800000e2, 0x0, 0x0, 0x0, 0x2000000}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8006}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5c298795369ca04f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000800)={r1, r3, 0x25, 0x0, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x40)
syz_emit_ethernet(0xfdef, &(0x7f0000000100)=ANY=[], 0x0)

2.154309ms ago: executing program 9 (id=7077):
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x0)
ioctl$PPPIOCSPASS(0xffffffffffffffff, 0x4004743c, &(0x7f0000000400)={0x0, 0x0})
bind$l2tp6(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x9a974000)
keyctl$KEYCTL_CAPABILITIES(0x1f, 0x0, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x10000000000001, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x66)

0s ago: executing program 2 (id=7087):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r0, 0x0, 0x0, 0xa00}])

kernel console output (not intermixed with test programs):

267c629 code=0x7ffc0000
[  271.625828][T17319] loop8: detected capacity change from 0 to 1024
[  271.642216][T17319] EXT4-fs: inline encryption not supported
[  271.649067][T17319] EXT4-fs: Ignoring removed bh option
[  271.654858][ T5378] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  271.660668][ T4428] Bluetooth: hci0: command 0x1003 tx timeout
[  271.661441][   T28] audit: type=1326 audit(1771722110.699:4381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17316 comm="syz.2.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  271.691987][   T28] audit: type=1326 audit(1771722110.699:4382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17316 comm="syz.2.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  271.715762][   T28] audit: type=1326 audit(1771722110.699:4383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17316 comm="syz.2.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  271.739629][   T28] audit: type=1326 audit(1771722110.699:4384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17316 comm="syz.2.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  271.772330][T17323] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  271.784303][T17319] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  271.804393][T17321] loop2: detected capacity change from 0 to 2048
[  271.837381][T16758] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  271.845386][T16758] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  271.847782][T17321] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  271.883306][T17319] EXT4-fs error (device loop8): mb_free_blocks:2047: group 0, inode 18: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  271.904308][T17319] EXT4-fs (loop8): Remounting filesystem read-only
[  271.924030][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.951279][T10383] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.961194][T17335] atomic_op ffff88811e836928 conn xmit_atomic 0000000000000000
[  272.276408][ T4284] Bluetooth: hci0: Frame reassembly failed (-84)
[  272.409607][T17386] bridge0: port 1(syz_tun) entered blocking state
[  272.453911][T17386] bridge0: port 1(syz_tun) entered disabled state
[  272.467551][T17386] syz_tun: entered allmulticast mode
[  272.485454][T17386] syz_tun: entered promiscuous mode
[  272.650712][T17403] loop8: detected capacity change from 0 to 1024
[  272.672796][T17403] EXT4-fs: Ignoring removed nobh option
[  272.688411][T17403] EXT4-fs: Ignoring removed nomblk_io_submit option
[  272.782669][T17403] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  273.142142][T10383] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.269292][T17429] bridge0: port 3(syz_tun) entered blocking state
[  273.307838][T17429] bridge0: port 3(syz_tun) entered disabled state
[  273.327852][T17429] syz_tun: entered allmulticast mode
[  273.374723][T17429] syz_tun: entered promiscuous mode
[  273.448870][T17436] netlink: 'syz.2.4583': attribute type 2 has an invalid length.
[  273.465625][T17437] netlink: 'syz.8.4584': attribute type 1 has an invalid length.
[  273.525374][T17437] 8021q: adding VLAN 0 to HW filter on device bond1
[  273.598212][T17444] bond1: (slave geneve3): making interface the new active one
[  273.641671][T17444] bond1: (slave geneve3): Enslaving as an active interface with an up link
[  274.134044][T17458] ip6gre1: entered allmulticast mode
[  274.290366][ T5378] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  274.373270][T17474] bridge0: port 3(syz_tun) entered blocking state
[  274.399611][T17479] loop7: detected capacity change from 0 to 128
[  274.403890][T17474] bridge0: port 3(syz_tun) entered disabled state
[  274.443063][T17474] syz_tun: entered allmulticast mode
[  274.491602][T17474] syz_tun: entered promiscuous mode
[  274.634969][   T28] kauditd_printk_skb: 1 callbacks suppressed
[  274.634985][   T28] audit: type=1400 audit(1771722113.759:4386): avc:  denied  { read } for  pid=3041 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[  274.782310][   T28] audit: type=1400 audit(1771722113.909:4387): avc:  denied  { read } for  pid=17503 comm="syz.7.4611" name="event1" dev="devtmpfs" ino=243 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  274.829561][T17509] loop2: detected capacity change from 0 to 128
[  274.848913][   T28] audit: type=1400 audit(1771722113.969:4388): avc:  denied  { write } for  pid=17512 comm="syz.7.4615" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  274.872196][T17509] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  274.896122][T17509] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  274.941523][ T4284] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  275.015665][T17528] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4621'.
[  275.030951][   T28] audit: type=1400 audit(1771722114.159:4389): avc:  denied  { bind } for  pid=17522 comm="syz.7.4619" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  275.111415][   T28] audit: type=1400 audit(1771722114.239:4390): avc:  denied  { mount } for  pid=17533 comm="syz.2.4624" name="/" dev="autofs" ino=43818 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  275.371803][T17550] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4631'.
[  275.381196][T17550] chnl_net:caif_netlink_parms(): no params data found
[  275.985742][T17587] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4643'.
[  276.108938][   T28] audit: type=1400 audit(1771722115.229:4391): avc:  denied  { kexec_image_load } for  pid=17597 comm="syz.3.4654" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  276.196119][T17569] loop2: detected capacity change from 0 to 1024
[  276.274401][T17569] EXT4-fs: inline encryption not supported
[  276.285414][T17569] ext4: Bad value for 'mb_optimize_scan'
[  276.340412][T17611] netlink: 27 bytes leftover after parsing attributes in process `syz.9.4659'.
[  276.396090][T17614] netlink: 9286 bytes leftover after parsing attributes in process `syz.9.4661'.
[  276.515406][   T28] audit: type=1326 audit(1771722115.639:4392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17628 comm="syz.2.4668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  276.543510][   T28] audit: type=1326 audit(1771722115.659:4393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17628 comm="syz.2.4668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  276.571972][   T28] audit: type=1326 audit(1771722115.659:4394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17628 comm="syz.2.4668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  276.600657][   T28] audit: type=1326 audit(1771722115.659:4395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17628 comm="syz.2.4668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  276.712853][T17651] bond3: entered allmulticast mode
[  276.718256][T17651] 8021q: adding VLAN 0 to HW filter on device bond3
[  276.728447][T17651] xt_TCPMSS: Only works on TCP SYN packets
[  276.751186][T17654] sctp: [Deprecated]: syz.7.4679 (pid 17654) Use of struct sctp_assoc_value in delayed_ack socket option.
[  276.751186][T17654] Use struct sctp_sack_info instead
[  276.796473][T17661] netlink: 182 bytes leftover after parsing attributes in process `syz.7.4682'.
[  276.984374][T17682] loop9: detected capacity change from 0 to 128
[  277.012032][T17682] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  277.025660][T17682] ext4 filesystem being mounted at /435/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  277.063244][T17682] EXT4-fs error (device loop9): dx_make_map:1296: inode #2: block 20: comm syz.9.4691: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=0
[  277.081776][T17682] EXT4-fs error (device loop9) in do_split:2027: Corrupt filesystem
[  277.108264][T10574] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  277.510447][T17720] 9pnet: p9_errstr2errno: server reported unknown error ÿ
[  277.581045][T17732] loop9: detected capacity change from 0 to 512
[  277.593941][T17732] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  277.734100][T10574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.779573][T17738] netlink: 'syz.9.4714': attribute type 1 has an invalid length.
[  277.797869][T17729] loop8: detected capacity change from 0 to 32768
[  277.823629][T17738] 8021q: adding VLAN 0 to HW filter on device bond4
[  277.902010][T17738] bond4: (slave bridge1): making interface the new active one
[  277.921116][T17738] bond4: (slave bridge1): Enslaving as an active interface with an up link
[  278.138465][T17765] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4726'.
[  278.296313][T17778] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  278.319565][T17780] gretap1: entered promiscuous mode
[  278.330393][T17778] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  278.414884][T17791] loop2: detected capacity change from 0 to 2048
[  278.425500][T17791] EXT4-fs: inline encryption not supported
[  278.453234][T17791] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  278.503017][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.569283][T17802] SELinux: failed to load policy
[  278.741671][T17812] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6erspan0
[  278.751637][T17812] ip6erspan0: entered promiscuous mode
[  278.899603][T17817] netlink: 24 bytes leftover after parsing attributes in process `syz.9.4747'.
[  279.095711][T17827] netlink: 76 bytes leftover after parsing attributes in process `syz.9.4751'.
[  279.159169][T17830] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4752'.
[  279.191917][T17830] macvtap1: entered promiscuous mode
[  279.206088][T17830] erspan0: entered promiscuous mode
[  279.211827][T17830] macvtap1: entered allmulticast mode
[  279.217349][T17830] erspan0: entered allmulticast mode
[  279.224620][T17831] erspan0: left allmulticast mode
[  279.236429][T17831] erspan0: left promiscuous mode
[  279.438039][T17855] netlink: 'syz.7.4764': attribute type 4 has an invalid length.
[  279.461349][T17855] netlink: 'syz.7.4764': attribute type 4 has an invalid length.
[  280.273256][T17897] loop7: detected capacity change from 0 to 128
[  280.302921][T17897] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  280.340265][T17897] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  280.396961][ T4284] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  280.476503][T17918] PKCS7: Unknown OID: [4] (bad)
[  280.481541][T17918] PKCS7: Only support pkcs7_signedData type
[  280.559814][T17931] __nla_validate_parse: 5 callbacks suppressed
[  280.559834][T17931] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4793'.
[  280.590318][   T28] kauditd_printk_skb: 16 callbacks suppressed
[  280.590332][   T28] audit: type=1400 audit(1771722119.709:4412): avc:  denied  { ioctl } for  pid=17923 comm="syz.2.4793" path="/dev/cpu/1/msr" dev="devtmpfs" ino=87 ioctlcmd=0x63a0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  280.782096][T17952] loop7: detected capacity change from 0 to 512
[  280.804823][T17952] EXT4-fs: Ignoring removed bh option
[  280.817646][T17952] EXT4-fs: inline encryption not supported
[  280.834812][T17952] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  280.857802][T17952] EXT4-fs warning (device loop7): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  280.872471][T17952] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.4804: bg 0: block 248: padding at end of block bitmap is not set
[  280.886921][T17952] loop7: lost filesystem error report for type 5 error -117
[  280.887207][T17952] Quota error (device loop7): write_blk: dquota write failed
[  280.894566][    C0] EXT4-fs (loop7): error count since last fsck: 1
[  280.894591][    C0] EXT4-fs (loop7): last error at time 1771722120: ext4_validate_block_bitmap:441
[  280.944093][T17966] loop8: detected capacity change from 0 to 1024
[  280.970157][T17966] EXT4-fs (loop8): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  280.982338][T17952] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  280.992486][T17952] EXT4-fs error (device loop7): ext4_acquire_dquot:7001: comm syz.7.4804: Failed to acquire dquot type 1
[  281.004101][T17966] ext4 filesystem being mounted at /404/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.010402][T17952] loop7: lost filesystem error report for type 5 error -117
[  281.018156][T17952] EXT4-fs (loop7): 1 truncate cleaned up
[  281.033328][T17966] EXT4-fs error (device loop8): ext4_map_blocks:818: inode #15: block 3: comm syz.8.4810: lblock 3 mapped to illegal pblock 3 (length 3)
[  281.048045][T17952] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  281.061006][T17966] EXT4-fs (loop8): Remounting filesystem read-only
[  281.098470][T10383] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  281.139504][T17952] netlink: 199836 bytes leftover after parsing attributes in process `syz.7.4804'.
[  281.320666][T17980] vlan2: entered allmulticast mode
[  281.325956][T17980] macsec0: entered allmulticast mode
[  281.364886][T17982] loop2: detected capacity change from 0 to 512
[  281.372061][T17982] EXT4-fs: Ignoring removed i_version option
[  281.388568][T17982] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  281.401720][T17982] EXT4-fs (loop2): 1 truncate cleaned up
[  281.411295][T17982] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  281.444415][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.605944][   T28] audit: type=1400 audit(1771722120.729:4413): avc:  denied  { read } for  pid=17993 comm="syz.3.4822" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  281.632181][ T6477] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  281.740010][T18003] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18003 comm=syz.8.4825
[  282.729581][   T28] audit: type=1400 audit(1771722121.849:4414): avc:  denied  { append } for  pid=18017 comm="syz.9.4831" name="file0" dev="tmpfs" ino=2384 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  283.040781][T18035] loop9: detected capacity change from 0 to 4096
[  283.077827][T18035] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  283.328336][T18050] netlink: 'syz.7.4842': attribute type 4 has an invalid length.
[  283.364879][T10574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.387335][T11490] syz_tun (unregistering): left allmulticast mode
[  283.440279][T11490] syz_tun (unregistering): left promiscuous mode
[  283.460296][T11490] bridge0: port 3(syz_tun) entered disabled state
[  283.601248][T18061] all: renamed from veth1_to_bond
[  283.625789][   T28] audit: type=1400 audit(1771722122.739:4415): avc:  denied  { mounton } for  pid=18064 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  283.749077][T18081] loop9: detected capacity change from 0 to 512
[  283.831129][T18081] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  283.872640][T18081] ext4 filesystem being mounted at /462/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  283.918164][T18081] EXT4-fs (loop9): shut down requested (1)
[  283.930518][T18064] chnl_net:caif_netlink_parms(): no params data found
[  283.962505][T10574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  284.047163][T18064] bridge0: port 1(bridge_slave_0) entered blocking state
[  284.076432][T18064] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.105217][T18064] bridge_slave_0: entered allmulticast mode
[  284.136312][T18064] bridge_slave_0: entered promiscuous mode
[  284.152576][T18108] vlan0: entered allmulticast mode
[  284.158862][T18108] macsec0: entered allmulticast mode
[  284.199308][T18064] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.229516][T18064] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.236954][T18064] bridge_slave_1: entered allmulticast mode
[  284.258807][T18064] bridge_slave_1: entered promiscuous mode
[  284.312108][T18064] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  284.334764][T18064] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  284.379306][T18064] team0: Port device team_slave_0 added
[  284.422932][T18064] team0: Port device team_slave_1 added
[  284.440175][T18133] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4874'.
[  284.472784][T18064] batman_adv: batadv0: Adding interface: batadv_slave_0
[  284.487906][T18064] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  284.542523][T18064] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  284.578329][T18124] xt_CT: You must specify a L4 protocol and not use inversions on it
[  284.587633][T18064] batman_adv: batadv0: Adding interface: batadv_slave_1
[  284.594688][T18064] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  284.623148][T18064] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  284.658282][T18135] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18135 comm=syz.3.4875
[  284.675348][T18135] netlink: 'syz.3.4875': attribute type 1 has an invalid length.
[  284.765273][T18135] bond8: (slave bridge4): making interface the new active one
[  284.773404][T18135] bond8: (slave bridge4): Enslaving as an active interface with an up link
[  284.841417][T18064] hsr_slave_0: entered promiscuous mode
[  284.849242][T18064] hsr_slave_1: entered promiscuous mode
[  284.858973][T18064] debugfs: 'hsr0' already exists in 'hsr'
[  284.865948][T18064] Cannot create hsr debugfs directory
[  284.935266][T18151] netlink: 64 bytes leftover after parsing attributes in process `syz.2.4881'.
[  284.973706][   T28] audit: type=1400 audit(1771722124.099:4416): avc:  denied  { remount } for  pid=18153 comm="syz.7.4882" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  285.074096][T18171] netlink: 'syz.2.4886': attribute type 1 has an invalid length.
[  285.090168][T18064] 8021q: adding VLAN 0 to HW filter on device bond0
[  285.134247][T18064] 8021q: adding VLAN 0 to HW filter on device team0
[  285.149568][T18171] gretap1: entered allmulticast mode
[  285.166163][T18171] bond3: (slave gretap1): making interface the new active one
[  285.179660][T18171] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  285.198978][ T4289] bridge0: port 1(bridge_slave_0) entered blocking state
[  285.206097][ T4289] bridge0: port 1(bridge_slave_0) entered forwarding state
[  285.227239][ T4289] bridge0: port 2(bridge_slave_1) entered blocking state
[  285.234423][ T4289] bridge0: port 2(bridge_slave_1) entered forwarding state
[  285.249375][T18187] vlan3: entered allmulticast mode
[  285.262000][T18187] macsec0: entered allmulticast mode
[  285.304992][T18064] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  285.406637][T18064] 8021q: adding VLAN 0 to HW filter on device batadv0
[  285.449858][T18206] netlink: 'syz.3.4896': attribute type 13 has an invalid length.
[  285.555218][T18064] veth0_vlan: entered promiscuous mode
[  285.565849][T18064] veth1_vlan: entered promiscuous mode
[  285.583283][T18064] veth0_macvtap: entered promiscuous mode
[  285.591163][T18064] veth1_macvtap: entered promiscuous mode
[  285.603544][T18064] batman_adv: batadv0: Interface activated: batadv_slave_0
[  285.615549][T18064] batman_adv: batadv0: Interface activated: batadv_slave_1
[  285.642643][   T28] audit: type=1400 audit(1771722124.769:4417): avc:  denied  { mounton } for  pid=18064 comm="syz-executor" path="/root/syzkaller.5DLp0n/syz-tmp" dev="sda1" ino=2059 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  285.668583][   T28] audit: type=1400 audit(1771722124.769:4418): avc:  denied  { mounton } for  pid=18064 comm="syz-executor" path="/root/syzkaller.5DLp0n/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  285.698172][   T28] audit: type=1400 audit(1771722124.769:4419): avc:  denied  { mounton } for  pid=18064 comm="syz-executor" path="/root/syzkaller.5DLp0n/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=47983 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  285.726848][   T28] audit: type=1400 audit(1771722124.799:4420): avc:  denied  { mounton } for  pid=18064 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=538 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  285.750525][   T28] audit: type=1400 audit(1771722124.799:4421): avc:  denied  { mount } for  pid=18064 comm="syz-executor" name="/" dev="gadgetfs" ino=3895 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  285.908021][T18233] loop8: detected capacity change from 0 to 1024
[  285.920535][T18233] EXT4-fs: Ignoring removed nomblk_io_submit option
[  285.939288][T18233] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  285.951291][T18233] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e054c018, mo2=0002]
[  285.968389][T18233] System zones: 0-1, 3-36
[  285.974026][   T28] audit: type=1400 audit(1771722125.089:4422): avc:  denied  { map } for  pid=18235 comm="syz.7.4904" path="socket:[48010]" dev="sockfs" ino=48010 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  285.999358][T18233] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  286.035645][T18233] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  286.051396][   T28] audit: type=1400 audit(1771722125.159:4423): avc:  denied  { ioctl } for  pid=18238 comm="syz.9.4905" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  286.150745][T18064] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.304166][T18248] loop8: detected capacity change from 0 to 128
[  286.305000][T18247] vlan3: entered allmulticast mode
[  286.315669][T18247] macsec0: entered allmulticast mode
[  286.344136][T18248] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  286.420820][T18248] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  286.539024][T18064] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  287.133809][   T28] audit: type=1400 audit(1771722126.259:4424): avc:  denied  { setopt } for  pid=18280 comm="syz.3.4922" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  287.945144][T18310] loop8: detected capacity change from 0 to 128
[  287.952416][T18310] msdos: Unknown parameter 'dos1xfl%›4?Ö…y'
[  288.319628][T18317] loop2: detected capacity change from 0 to 1024
[  288.352588][T18317] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  288.381003][T18317] ext4 filesystem being mounted at /747/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  288.413185][T18317] EXT4-fs error (device loop2): ext4_map_blocks:818: inode #15: block 3: comm syz.2.4936: lblock 3 mapped to illegal pblock 3 (length 3)
[  288.431297][T18317] EXT4-fs (loop2): Remounting filesystem read-only
[  288.489159][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  289.752658][T18427] Set syz1 is full, maxelem 6117 reached
[  289.909658][T18444] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4959'.
[  289.928270][T18444] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4959'.
[  289.966884][T18444] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4959'.
[  289.980262][T18444] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4959'.
[  290.637583][T18488] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4976'.
[  290.665690][T18488] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4976'.
[  290.818842][T18499] ip6gre2: entered allmulticast mode
[  291.035809][T18517] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4986'.
[  291.050424][T18517] chnl_net:caif_netlink_parms(): no params data found
[  291.181119][T18520] gretap2: entered promiscuous mode
[  291.292846][T18528] netlink: 36 bytes leftover after parsing attributes in process `syz.3.4991'.
[  291.826825][T18540] loop8: detected capacity change from 0 to 1024
[  291.978648][T18540] EXT4-fs (loop8): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  291.994385][T18540] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  292.073831][T18540] EXT4-fs error (device loop8): ext4_map_blocks:818: inode #15: block 3: comm syz.8.5004: lblock 3 mapped to illegal pblock 3 (length 3)
[  292.091656][T18540] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  292.104980][T18540] EXT4-fs (loop8): This should not happen!! Data will be lost
[  292.104980][T18540] 
[  292.133213][  T252] EXT4-fs error (device loop8): ext4_map_blocks:818: inode #15: block 8: comm kworker/u8:5: lblock 8 mapped to illegal pblock 8 (length 8)
[  292.167173][  T252] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  292.179946][  T252] EXT4-fs (loop8): This should not happen!! Data will be lost
[  292.179946][  T252] 
[  292.192434][T18064] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  292.245420][T18570] netlink: 40 bytes leftover after parsing attributes in process `syz.9.5008'.
[  292.343528][T18582] loop9: detected capacity change from 0 to 1024
[  292.352947][T18582] EXT4-fs: Ignoring removed nobh option
[  292.358649][T18582] EXT4-fs: Ignoring removed nomblk_io_submit option
[  292.373956][T18582] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.810924][T18610] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5022'.
[  292.837066][T10574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.481800][   T28] audit: type=1400 audit(1771722132.609:4425): avc:  denied  { read } for  pid=18637 comm="syz.3.5034" path="socket:[49231]" dev="sockfs" ino=49231 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  295.880263][ T4284] Bluetooth: hci0: Frame reassembly failed (-84)
[  295.881530][T18700] __nla_validate_parse: 2 callbacks suppressed
[  295.881776][T18700] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5059'.
[  296.035713][T18702] netlink: 27 bytes leftover after parsing attributes in process `syz.2.5061'.
[  296.270125][T18711] loop2: detected capacity change from 0 to 764
[  296.279049][T18711] rock: directory entry would overflow storage
[  296.298335][T18711] rock: sig=0x4f50, size=4, remaining=3
[  296.304280][T18711] iso9660: Corrupted directory entry in block 6 of inode 1792
[  296.408260][   T28] audit: type=1326 audit(1771722135.529:4426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18722 comm="syz.2.5070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  296.437243][   T28] audit: type=1326 audit(1771722135.529:4427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18722 comm="syz.2.5070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  296.461680][   T28] audit: type=1326 audit(1771722135.529:4428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18722 comm="syz.2.5070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  296.491721][   T28] audit: type=1326 audit(1771722135.529:4429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18722 comm="syz.2.5070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  297.715988][  T252] Bluetooth: hci1: Frame reassembly failed (-84)
[  297.735867][T18730] bond6: entered allmulticast mode
[  297.750455][T18730] 8021q: adding VLAN 0 to HW filter on device bond6
[  297.763860][T18730] xt_TCPMSS: Only works on TCP SYN packets
[  297.890247][ T5378] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  297.894429][ T3589] Bluetooth: hci0: command 0x1003 tx timeout
[  297.967801][T18741] netlink: 27 bytes leftover after parsing attributes in process `syz.7.5087'.
[  298.670379][   T28] audit: type=1326 audit(1771722137.789:4430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18747 comm="syz.8.5079" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fec0663c629 code=0x0
[  299.050920][T18758] sctp: [Deprecated]: syz.3.5084 (pid 18758) Use of struct sctp_assoc_value in delayed_ack socket option.
[  299.050920][T18758] Use struct sctp_sack_info instead
[  299.183331][T18771] netlink: 27 bytes leftover after parsing attributes in process `syz.3.5090'.
[  299.730290][ T4428] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  299.786882][T18780] loop2: detected capacity change from 0 to 512
[  299.825488][T18780] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  299.935023][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.079938][T18791] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5098'.
[  300.733914][   T28] audit: type=1326 audit(1771722139.859:4431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18813 comm="syz.3.5107" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f33364cc629 code=0x0
[  302.123278][T18833] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5110'.
[  302.156490][T18835] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5114'.
[  302.194458][   T28] audit: type=1400 audit(1771722141.319:4432): avc:  denied  { create } for  pid=18838 comm="syz.8.5116" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  302.258384][   T28] audit: type=1400 audit(1771722141.319:4433): avc:  denied  { ioctl } for  pid=18838 comm="syz.8.5116" path="socket:[49467]" dev="sockfs" ino=49467 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  303.558391][T18878] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5131'.
[  303.640522][   T28] audit: type=1400 audit(1771722142.769:4434): avc:  denied  { write } for  pid=18879 comm="syz.3.5132" path="socket:[48892]" dev="sockfs" ino=48892 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  303.964225][T18890] netlink: 'syz.3.5137': attribute type 10 has an invalid length.
[  303.973728][T18890] batman_adv: batadv0: Removing interface: dummy0
[  304.007443][T18890] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  304.092895][T18862] loop8: detected capacity change from 0 to 1024
[  304.172341][T18862] EXT4-fs: inline encryption not supported
[  304.195027][T18862] ext4: Bad value for 'mb_optimize_scan'
[  304.201924][T18890] team0: Failed to send options change via netlink (err -105)
[  304.210282][T18890] team0: Port device dummy0 added
[  304.386941][   T28] audit: type=1400 audit(1771722143.509:4435): avc:  denied  { unmount } for  pid=18897 comm="syz.3.5142" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  304.441675][T18902] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  304.451533][T18902] SELinux: failed to load policy
[  304.737019][T18924] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5152'.
[  304.911260][   T28] audit: type=1400 audit(1771722144.039:4436): avc:  denied  { accept } for  pid=18919 comm="syz.3.5153" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  304.993856][T18932] loop2: detected capacity change from 0 to 4096
[  305.022657][T18932] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  305.057370][T18938] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5167'.
[  305.224959][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.640362][T18917] syz.9.5150 (18917) used greatest stack depth: 5880 bytes left
[  305.737653][T18952] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5172'.
[  306.017532][T18959] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5176'.
[  306.034379][T18960] loop2: detected capacity change from 0 to 512
[  306.072310][T18960] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  306.107555][T18960] EXT4-fs error (device loop2): xattr_find_entry:337: inode #15: comm syz.2.5163: corrupted xattr entries
[  306.140324][T18960] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  306.142555][T18960] EXT4-fs (loop2): 1 orphan inode deleted
[  306.151731][    C1] EXT4-fs (loop2): error count since last fsck: 1
[  306.151746][    C1] EXT4-fs (loop2): initial error at time 1771722145: xattr_find_entry:337: inode 15
[  306.151778][    C1] EXT4-fs (loop2): last error at time 1771722145: xattr_find_entry:337: inode 15
[  306.202617][T18960] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  306.235402][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.364098][T18982] netlink: 64 bytes leftover after parsing attributes in process `syz.9.5177'.
[  306.460592][   T28] audit: type=1326 audit(1771722145.579:4437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.9.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fecf4306417 code=0x7ffc0000
[  306.660430][   T28] audit: type=1326 audit(1771722145.579:4438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.9.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fecf42ada19 code=0x7ffc0000
[  306.700642][   T28] audit: type=1326 audit(1771722145.579:4439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.9.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fecf4306417 code=0x7ffc0000
[  306.740290][   T28] audit: type=1326 audit(1771722145.579:4440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.9.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fecf42ada19 code=0x7ffc0000
[  306.780084][T19011] netlink: 'syz.8.5195': attribute type 11 has an invalid length.
[  306.788984][   T28] audit: type=1326 audit(1771722145.579:4441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.9.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fecf4306417 code=0x7ffc0000
[  306.795239][T19011] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5195'.
[  306.835224][   T28] audit: type=1326 audit(1771722145.579:4442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.9.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fecf42ada19 code=0x7ffc0000
[  306.868150][   T28] audit: type=1326 audit(1771722145.579:4443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.9.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fecf4306417 code=0x7ffc0000
[  306.887704][T19011] netlink: 'syz.8.5195': attribute type 11 has an invalid length.
[  306.903763][   T28] audit: type=1326 audit(1771722145.589:4444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.9.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fecf42ada19 code=0x7ffc0000
[  306.927380][T19011] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5195'.
[  306.937451][T19010] hugetlbfs: syz.7.5196 (19010): Using mlock ulimits for SHM_HUGETLB is obsolete
[  307.358141][T19040] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5199'.
[  307.371349][T19040] geneve2: entered promiscuous mode
[  307.399470][T19045] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5201'.
[  307.749320][T19079] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.756679][T19079] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.822173][T19079] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  307.842539][T19079] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  308.004569][T19093] netlink: 'syz.3.5221': attribute type 1 has an invalid length.
[  308.022409][T19095] netlink: 40 bytes leftover after parsing attributes in process `syz.8.5222'.
[  308.043719][T19093] bond9: (slave geneve4): making interface the new active one
[  308.051880][T19093] bond9: (slave geneve4): Enslaving as an active interface with an up link
[  308.064242][   T58] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  308.089570][   T58] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  308.105381][   T58] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  308.131913][   T58] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  308.463920][T19115] netlink: 28 bytes leftover after parsing attributes in process `syz.8.5229'.
[  309.565952][T19188] 9p: Bad value for 'rfdno'
[  309.610344][T19194] atomic_op ffff88810007b928 conn xmit_atomic 0000000000000000
[  309.904765][   T28] kauditd_printk_skb: 633 callbacks suppressed
[  309.904781][   T28] audit: type=1400 audit(1771722149.029:5078): avc:  denied  { listen } for  pid=19216 comm="syz.7.5272" lport=57198 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  310.447047][T19249] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5285'.
[  310.613116][T19262] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5289'.
[  310.907313][T19276] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5296'.
[  311.024298][T19286] loop2: detected capacity change from 0 to 512
[  311.035670][T19286] EXT4-fs: Ignoring removed bh option
[  311.051542][T19286] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  311.076571][T19286] EXT4-fs (loop2): 1 truncate cleaned up
[  311.083111][T19286] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  311.110432][   T28] audit: type=1400 audit(1771722150.229:5079): avc:  denied  { rename } for  pid=19285 comm="syz.2.5301" name="file0" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  311.161718][   T28] audit: type=1400 audit(1771722150.229:5080): avc:  denied  { reparent } for  pid=19285 comm="syz.2.5301" name="file0" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  311.205315][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.506845][T19331] loop2: detected capacity change from 0 to 128
[  311.514772][T19331] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  311.524635][T19331] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  311.540095][T19331] ext2 filesystem being mounted at /798/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  311.555535][   T28] audit: type=1400 audit(1771722150.679:5081): avc:  denied  { rename } for  pid=19330 comm="syz.2.5317" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop2" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  311.609622][ T6353] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  311.638197][T19336] loop2: detected capacity change from 0 to 512
[  311.645556][T19336] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  311.671070][T19336] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  311.701758][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.743536][T19343] netlink: 'syz.2.5320': attribute type 2 has an invalid length.
[  311.751879][T19343] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5320'.
[  311.761406][T19343] netlink: 'syz.2.5320': attribute type 2 has an invalid length.
[  311.769278][T19343] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5320'.
[  311.884289][T19353] loop2: detected capacity change from 0 to 512
[  311.984142][T19355] loop2: detected capacity change from 0 to 512
[  312.022350][T19355] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  312.035941][T19355] ext4 filesystem being mounted at /805/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  312.056928][T19355] EXT4-fs error (device loop2): ext4_do_update_inode:5569: inode #2: comm syz.2.5326: corrupted inode contents
[  312.070162][T19355] EXT4-fs error (device loop2): ext4_dirty_inode:6450: inode #2: comm syz.2.5326: mark_inode_dirty error
[  312.083399][T19355] EXT4-fs error (device loop2): ext4_do_update_inode:5569: inode #2: comm syz.2.5326: corrupted inode contents
[  312.097003][T19355] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.5326: mark_inode_dirty error
[  312.112811][T19358] EXT4-fs warning (device loop2): ext4_es_cache_extent:1082: inode #2: comm syz.2.5326: ES cache extent failed: add [0,1,22,0x1] conflict with existing [0,8,576460752303423487,0x18]
[  312.112811][T19358] 
[  312.150550][   T28] audit: type=1400 audit(1771722151.269:5082): avc:  denied  { link } for  pid=19354 comm="syz.2.5326" name="file1" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  312.196247][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.281950][T19362] loop2: detected capacity change from 0 to 128
[  312.348589][T19365] netlink: 80 bytes leftover after parsing attributes in process `syz.8.5330'.
[  312.366113][T19365] netlink: 80 bytes leftover after parsing attributes in process `syz.8.5330'.
[  312.434905][T19371] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  312.443480][T19371] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  312.491579][T19380] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5336'.
[  312.501830][T19380] hsr_slave_0: left promiscuous mode
[  312.982166][  T252] bio_check_eod: 13095 callbacks suppressed
[  312.982186][  T252] kworker/u8:5: attempt to access beyond end of device
[  312.982186][  T252] loop2: rw=1, sector=145, nr_sectors = 16 limit=128
[  313.002118][  T252] kworker/u8:5: attempt to access beyond end of device
[  313.002118][  T252] loop2: rw=1, sector=169, nr_sectors = 8 limit=128
[  313.016209][  T252] kworker/u8:5: attempt to access beyond end of device
[  313.016209][  T252] loop2: rw=1, sector=185, nr_sectors = 8 limit=128
[  313.029957][  T252] kworker/u8:5: attempt to access beyond end of device
[  313.029957][  T252] loop2: rw=1, sector=201, nr_sectors = 8 limit=128
[  313.044195][  T252] kworker/u8:5: attempt to access beyond end of device
[  313.044195][  T252] loop2: rw=1, sector=217, nr_sectors = 8 limit=128
[  313.057780][  T252] kworker/u8:5: attempt to access beyond end of device
[  313.057780][  T252] loop2: rw=1, sector=233, nr_sectors = 8 limit=128
[  313.086674][  T252] kworker/u8:5: attempt to access beyond end of device
[  313.086674][  T252] loop2: rw=1, sector=249, nr_sectors = 8 limit=128
[  313.100354][  T252] kworker/u8:5: attempt to access beyond end of device
[  313.100354][  T252] loop2: rw=1, sector=265, nr_sectors = 8 limit=128
[  313.114243][  T252] kworker/u8:5: attempt to access beyond end of device
[  313.114243][  T252] loop2: rw=1, sector=281, nr_sectors = 8 limit=128
[  313.127905][  T252] kworker/u8:5: attempt to access beyond end of device
[  313.127905][  T252] loop2: rw=1, sector=297, nr_sectors = 8 limit=128
[  313.726747][T19467] netlink: 20 bytes leftover after parsing attributes in process `syz.9.5371'.
[  314.809864][T19536] xt_hashlimit: size too large, truncated to 1048576
[  315.060434][   T28] audit: type=1326 audit(1771722154.189:5083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19554 comm="syz.2.5404" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3cc267c629 code=0x0
[  315.102193][   T28] audit: type=1400 audit(1771722154.229:5084): avc:  denied  { setopt } for  pid=19561 comm="syz.7.5406" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  315.272553][T19577] 9pnet: p9_errstr2errno: server reported unknown error 0x000000
[  316.020252][   T28] audit: type=1107 audit(1771722155.139:5085): pid=19618 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  316.251587][T19628] netlink: 20 bytes leftover after parsing attributes in process `syz.9.5434'.
[  316.428291][T19651] netlink: 'syz.8.5443': attribute type 5 has an invalid length.
[  316.683697][   T28] audit: type=1400 audit(1771722155.809:5086): avc:  denied  { mounton } for  pid=19670 comm="syz.9.5450" path="/578/file0" dev="tmpfs" ino=3024 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  316.848268][T19675] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5452'.
[  316.858088][T19675] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5452'.
[  316.878467][T19675] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5452'.
[  316.887498][T19675] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5452'.
[  316.992673][T19686] netlink: 64 bytes leftover after parsing attributes in process `syz.3.5457'.
[  317.236454][T19695] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5461'.
[  317.308954][T19701] loop2: detected capacity change from 0 to 512
[  317.316265][T19701] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  317.331244][T19701] EXT4-fs (loop2): orphan cleanup on readonly fs
[  317.338466][T19701] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4223: comm syz.2.5464: Allocating blocks 41-42 which overlap fs metadata
[  317.352278][T19701] loop2: lost filesystem error report for type 5 error -117
[  317.353111][T19701] Quota error (device loop2): write_blk: dquota write failed
[  317.360436][    C1] EXT4-fs (loop2): error count since last fsck: 1
[  317.360461][    C1] EXT4-fs (loop2): initial error at time 1771722156: ext4_mb_mark_diskspace_used:4223
[  317.360500][    C1] EXT4-fs (loop2): last error at time 1771722156: ext4_mb_mark_diskspace_used:4223
[  317.393547][T19701] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  317.403513][T19701] EXT4-fs error (device loop2): ext4_acquire_dquot:7001: comm syz.2.5464: Failed to acquire dquot type 0
[  317.414931][T19701] loop2: lost filesystem error report for type 5 error -117
[  317.415097][T19701] EXT4-fs error (device loop2): mb_free_blocks:2047: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  317.436996][T19701] EXT4-fs error (device loop2): ext4_do_update_inode:5569: inode #12: comm syz.2.5464: corrupted inode contents
[  317.448885][T19701] loop2: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  317.449485][T19701] EXT4-fs error (device loop2): ext4_dirty_inode:6450: inode #12: comm syz.2.5464: mark_inode_dirty error
[  317.470064][T19701] loop2: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  317.470563][T19701] EXT4-fs error (device loop2): ext4_do_update_inode:5569: inode #12: comm syz.2.5464: corrupted inode contents
[  317.491759][T19701] loop2: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  317.492005][T19701] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #12: comm syz.2.5464: mark_inode_dirty error
[  317.512428][T19701] loop2: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  317.516733][T19701] EXT4-fs error (device loop2): ext4_do_update_inode:5569: inode #12: comm syz.2.5464: corrupted inode contents
[  317.537903][T19701] loop2: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  317.538075][T19701] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  317.555907][T19701] loop2: lost filesystem error report for type 5 error -117
[  317.556056][T19701] EXT4-fs error (device loop2): ext4_do_update_inode:5569: inode #12: comm syz.2.5464: corrupted inode contents
[  317.575284][T19701] loop2: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  317.576083][T19701] EXT4-fs error (device loop2): ext4_truncate:4587: inode #12: comm syz.2.5464: mark_inode_dirty error
[  317.596383][T19701] loop2: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  317.599018][T19701] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  317.617276][T19701] loop2: lost filesystem error report for type 5 error -117
[  317.621291][T19701] EXT4-fs (loop2): 1 truncate cleaned up
[  317.634494][T19701] EXT4-fs (loop2): pa ffff888108255380: logic 1, phys. 41, len 23
[  317.642387][T19701] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5466: group 0, free 22, pa_free 23
[  317.652973][T19701] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  317.692626][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.828779][   T28] audit: type=1400 audit(1771722156.949:5087): avc:  denied  { setopt } for  pid=19728 comm="syz.2.5474" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  317.853116][   T28] audit: type=1400 audit(1771722156.949:5088): avc:  denied  { read } for  pid=19728 comm="syz.2.5474" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  317.874135][   T28] audit: type=1400 audit(1771722156.949:5089): avc:  denied  { write } for  pid=19728 comm="syz.2.5474" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  317.904791][T19735] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5476'.
[  317.914468][T19735] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5476'.
[  318.885184][   T28] audit: type=1400 audit(1771722158.009:5090): avc:  denied  { ioctl } for  pid=19787 comm="syz.7.5497" path="socket:[52319]" dev="sockfs" ino=52319 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  319.254133][T19808] veth1_to_bond: entered allmulticast mode
[  319.269179][T19808] veth1_to_bond: left allmulticast mode
[  320.615819][T19908] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5547'.
[  320.629461][T19908] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5547'.
[  320.673677][T19916] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5551'.
[  320.682790][T19916] netlink: 'syz.7.5551': attribute type 5 has an invalid length.
[  320.690908][T19916] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5551'.
[  320.702391][T19916] geneve2: entered promiscuous mode
[  320.707743][T19916] geneve2: entered allmulticast mode
[  320.914379][T19938] loop2: detected capacity change from 0 to 128
[  320.995544][   T28] kauditd_printk_skb: 2 callbacks suppressed
[  320.995577][   T28] audit: type=1400 audit(1771722160.119:5093): avc:  denied  { connect } for  pid=19944 comm="syz.7.5563" lport=36485 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  321.031946][   T28] audit: type=1400 audit(1771722160.119:5094): avc:  denied  { name_connect } for  pid=19944 comm="syz.7.5563" dest=20001 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  321.064811][T19951] netlink: 'syz.7.5566': attribute type 29 has an invalid length.
[  321.073583][T19951] netlink: 'syz.7.5566': attribute type 29 has an invalid length.
[  321.092223][   T28] audit: type=1400 audit(1771722160.219:5095): avc:  denied  { mount } for  pid=19952 comm="syz.9.5567" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  321.098546][T19955] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5568'.
[  321.136806][   T28] audit: type=1400 audit(1771722160.249:5096): avc:  denied  { search } for  pid=19952 comm="syz.9.5567" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  321.161822][   T28] audit: type=1400 audit(1771722160.249:5097): avc:  denied  { search } for  pid=19952 comm="syz.9.5567" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  321.188187][   T28] audit: type=1400 audit(1771722160.249:5098): avc:  denied  { read open } for  pid=19952 comm="syz.9.5567" path="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  321.251253][T19964] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5572'.
[  321.285900][T19964] 8021q: adding VLAN 0 to HW filter on device bond5
[  321.311334][T19964] bond5: option primary: mode dependency failed, not supported in mode balance-rr(0)
[  321.510309][   T28] audit: type=1400 audit(1771722160.629:5099): avc:  denied  { mac_admin } for  pid=19969 comm="syz.3.5574" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  321.571825][   T28] audit: type=1326 audit(1771722160.699:5100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19982 comm="syz.9.5578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecf430c629 code=0x7ffc0000
[  321.601792][   T28] audit: type=1326 audit(1771722160.699:5101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19982 comm="syz.9.5578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecf430c629 code=0x7ffc0000
[  321.638398][   T28] audit: type=1326 audit(1771722160.699:5102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19982 comm="syz.9.5578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fecf430c629 code=0x7ffc0000
[  321.782461][T19999] netlink: 'syz.7.5585': attribute type 1 has an invalid length.
[  321.796640][T19999] 8021q: adding VLAN 0 to HW filter on device bond7
[  321.806390][T19999] bond7: option tlb_dynamic_lb: unable to set because the bond device is up
[  322.006643][T20011] bond3: (slave lo): Releasing backup interface
[  322.013722][T20011] bond3: (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed
[  322.046068][T20011] bridge_slave_0: left allmulticast mode
[  322.051877][T20011] bridge_slave_0: left promiscuous mode
[  322.057719][T20011] bridge0: port 1(bridge_slave_0) entered disabled state
[  322.065690][T20011] bridge_slave_1: left allmulticast mode
[  322.071490][T20011] bridge_slave_1: left promiscuous mode
[  322.077187][T20011] bridge0: port 2(bridge_slave_1) entered disabled state
[  322.086106][T20011] bond0: (slave bond_slave_0): Releasing backup interface
[  322.093534][T20011] bond_slave_0: left allmulticast mode
[  322.099963][T20011] bond0: (slave bond_slave_1): Releasing backup interface
[  322.107622][T20011] bond_slave_1: left allmulticast mode
[  322.113611][T20011] team_slave_0: left allmulticast mode
[  322.128594][T20011] team0: Port device team_slave_0 removed
[  322.138477][T20011] team_slave_1: left allmulticast mode
[  322.144879][T20011] team0: Port device team_slave_1 removed
[  322.153946][T20011] batman_adv: batadv0: Removing interface: batadv_slave_1
[  322.161609][T20011] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  322.238007][T20020] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5594'.
[  322.248268][T20020] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5594'.
[  322.329940][T20025] loop2: detected capacity change from 0 to 8192
[  322.366427][T20025] FAT-fs (loop2): error, clusters badly computed (2 != 1)
[  322.373750][T20025] FAT-fs (loop2): Filesystem has been set read-only
[  322.457873][T20039] netlink: 'syz.2.5602': attribute type 10 has an invalid length.
[  323.390396][T20146] __nla_validate_parse: 2 callbacks suppressed
[  323.390416][T20146] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5642'.
[  323.662038][T20182] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5654'.
[  323.676471][T20182] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5654'.
[  323.751930][T20188] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5658'.
[  324.015426][T20217] xt_hashlimit: size too large, truncated to 1048576
[  324.293531][T20234] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5676'.
[  324.310102][T20234] bond10: entered promiscuous mode
[  324.315876][T20234] 8021q: adding VLAN 0 to HW filter on device bond10
[  324.325556][T20234] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5676'.
[  324.334758][T20234] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5676'.
[  324.486286][T20253] netlink: 136 bytes leftover after parsing attributes in process `syz.3.5685'.
[  324.495575][T20253] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  326.248429][T20370] loop2: detected capacity change from 0 to 512
[  326.286946][T20370] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.314749][T20370] ext4 filesystem being mounted at /853/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  326.412774][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.570722][T20397] netlink: 'syz.3.5744': attribute type 1 has an invalid length.
[  326.638288][T20397] bond11: (slave ip6gretap1): making interface the new active one
[  326.660406][T20404] loop2: detected capacity change from 0 to 128
[  326.688106][T20404] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  326.716173][T20397] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  326.744299][T20404] ext4 filesystem being mounted at /857/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  326.759180][T20397] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  326.767203][T20397] bond11: (slave ip6gretap1): Enslaving as an active interface with an up link
[  326.781386][T20404] EXT4-fs (loop2): shut down requested (2)
[  326.825752][ T6353] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  326.966970][   T28] kauditd_printk_skb: 19 callbacks suppressed
[  326.966984][   T28] audit: type=1326 audit(1771722166.089:5122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20427 comm="syz.7.5758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  327.005634][   T28] audit: type=1326 audit(1771722166.129:5123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20427 comm="syz.7.5758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  327.048019][   T28] audit: type=1326 audit(1771722166.129:5124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20427 comm="syz.7.5758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  327.073170][   T28] audit: type=1326 audit(1771722166.129:5125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20427 comm="syz.7.5758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  327.108613][   T28] audit: type=1326 audit(1771722166.129:5126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20427 comm="syz.7.5758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  327.132516][   T28] audit: type=1326 audit(1771722166.129:5127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20427 comm="syz.7.5758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  327.158539][   T28] audit: type=1326 audit(1771722166.129:5128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20427 comm="syz.7.5758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  327.198011][   T28] audit: type=1326 audit(1771722166.129:5129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20427 comm="syz.7.5758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  327.225447][   T28] audit: type=1326 audit(1771722166.129:5130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20427 comm="syz.7.5758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  327.249213][   T28] audit: type=1326 audit(1771722166.129:5131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20427 comm="syz.7.5758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  327.303943][T20448] loop2: detected capacity change from 0 to 256
[  327.339615][T20448] FAT-fs (loop2): Directory bread(block 64) failed
[  327.395976][T20448] FAT-fs (loop2): Directory bread(block 65) failed
[  327.413637][T20448] FAT-fs (loop2): Directory bread(block 66) failed
[  327.422873][T20448] FAT-fs (loop2): Directory bread(block 67) failed
[  327.439624][T20448] FAT-fs (loop2): Directory bread(block 68) failed
[  327.446521][T20448] FAT-fs (loop2): Directory bread(block 69) failed
[  327.467511][T20448] FAT-fs (loop2): Directory bread(block 70) failed
[  327.476660][T20448] FAT-fs (loop2): Directory bread(block 71) failed
[  327.489691][T20448] FAT-fs (loop2): Directory bread(block 72) failed
[  327.502651][T20464] netlink: 'syz.3.5770': attribute type 3 has an invalid length.
[  327.507184][T20448] FAT-fs (loop2): Directory bread(block 73) failed
[  327.521330][T20464] netlink: 'syz.3.5770': attribute type 1 has an invalid length.
[  327.538126][T20464] netlink: 198116 bytes leftover after parsing attributes in process `syz.3.5770'.
[  327.679611][T20478] sock: sock_timestamping_bind_phc: sock not bind to device
[  328.585439][T20553] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5808'.
[  328.601064][T20553] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5808'.
[  328.677746][T20563] loop2: detected capacity change from 0 to 1024
[  328.693403][T20563] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  328.708612][T20563] System zones: 0-1, 3-36
[  328.726049][T20563] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.5812: bad orphan inode 134217728
[  328.758356][T20563] loop2: lost filesystem error report for type 5 error -117
[  328.758983][T20563] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  328.992238][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.556938][T20629] loop2: detected capacity change from 0 to 2048
[  329.611226][T20629]  loop2: p3 < > p4 < >
[  329.615610][T20629] loop2: partition table partially beyond EOD, truncated
[  329.634637][T20629] loop2: p3 start 4284289 is beyond EOD, truncated
[  329.654704][ T3001]  loop2: p3 < > p4 < >
[  329.658971][ T3001] loop2: partition table partially beyond EOD, truncated
[  329.666325][ T3001] loop2: p3 start 4284289 is beyond EOD, truncated
[  329.706296][T10620] udevd[10620]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  329.862673][T20645] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  329.996899][T20656] loop2: detected capacity change from 0 to 1024
[  330.015929][T20656] EXT4-fs: Ignoring removed orlov option
[  330.026348][T20656] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  330.051716][T20656] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.140044][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.263599][  T292] Bluetooth: hci0: Frame reassembly failed (-84)
[  330.495864][T20703] netlink: 'syz.7.5868': attribute type 1 has an invalid length.
[  330.505690][T20703] netlink: 'syz.7.5868': attribute type 4 has an invalid length.
[  330.522779][T20703] netlink: 9462 bytes leftover after parsing attributes in process `syz.7.5868'.
[  332.290275][ T5378] Bluetooth: hci0: command 0x1003 tx timeout
[  332.296493][ T4428] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  332.409562][T20912] vlan0: entered allmulticast mode
[  332.420497][T20912] bridge_slave_0: entered allmulticast mode
[  332.426653][T20912] bridge0: port 1(vlan0) entered blocking state
[  332.434455][T20912] bridge0: port 1(vlan0) entered disabled state
[  332.451511][T20912] vlan0: entered promiscuous mode
[  332.464428][T20912] bridge_slave_0: entered promiscuous mode
[  332.575261][T20922] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  332.656732][T20937] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5937'.
[  332.740638][T20922] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  332.757350][T20947] loop2: detected capacity change from 0 to 512
[  332.779166][T20935] Process accounting resumed
[  332.785833][T20922] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  332.802946][T20947] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.849101][T20947] EXT4-fs (loop2): shut down requested (1)
[  332.861845][T20922] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  332.872888][T20947] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  332.891128][T20947] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  332.902210][T20947] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=13
[  332.916277][T20947] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  332.938985][T20947] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  332.954289][T20947] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=13
[  332.969474][ T4279] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  332.987026][ T4279] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  332.996365][   T28] kauditd_printk_skb: 16 callbacks suppressed
[  332.996381][   T28] audit: type=1400 audit(1771722172.119:5148): avc:  denied  { remove_name } for  pid=20946 comm="syz.2.5940" name="file0" dev="loop2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  333.038332][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.048624][ T4264] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  333.057163][   T28] audit: type=1400 audit(1771722172.119:5149): avc:  denied  { unlink } for  pid=20946 comm="syz.2.5940" name="file0" dev="loop2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  333.087508][ T4264] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  333.202209][T20968] ipip0: entered promiscuous mode
[  333.427150][T20993] loop2: detected capacity change from 0 to 512
[  333.442256][T20993] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.480361][T20993] ext4 filesystem being mounted at /906/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  333.592406][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.781939][   T28] audit: type=1326 audit(1771722172.909:5150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21007 comm="syz.2.5963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  333.805694][   T28] audit: type=1326 audit(1771722172.909:5151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21007 comm="syz.2.5963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  333.829368][   T28] audit: type=1326 audit(1771722172.929:5152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21007 comm="syz.2.5963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  333.853070][   T28] audit: type=1326 audit(1771722172.929:5153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21007 comm="syz.2.5963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  333.897737][   T28] audit: type=1326 audit(1771722172.929:5154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21007 comm="syz.2.5963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  333.921809][   T28] audit: type=1326 audit(1771722172.929:5155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21007 comm="syz.2.5963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  333.947659][   T28] audit: type=1326 audit(1771722172.929:5156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21007 comm="syz.2.5963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  333.971454][   T28] audit: type=1326 audit(1771722172.929:5157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21007 comm="syz.2.5963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  334.065628][T21023] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5969'.
[  334.100313][T21023] netlink: 'syz.3.5969': attribute type 5 has an invalid length.
[  334.108263][T21023] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5969'.
[  334.135480][T21023] geneve5: entered promiscuous mode
[  334.150352][T21023] geneve5: entered allmulticast mode
[  334.156553][  T292] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 48908 - 0
[  334.173194][  T292] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 48908 - 0
[  334.205254][  T292] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 48908 - 0
[  334.220163][  T292] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 48908 - 0
[  334.333822][ T8765] kernel write not supported for file bpf-prog (pid: 8765 comm: kworker/1:7)
[  334.518413][T21077] netlink: 'syz.2.5988': attribute type 6 has an invalid length.
[  334.526975][T21077] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5988'.
[  334.598270][T21091] netlink: 16150 bytes leftover after parsing attributes in process `syz.8.5991'.
[  334.644573][T21094] ipvlan2: entered allmulticast mode
[  334.651707][T21094] vlan0: entered allmulticast mode
[  334.658185][T21094] veth0_vlan: entered allmulticast mode
[  334.992861][T21135] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6012'.
[  335.167837][T21144] geneve3: entered promiscuous mode
[  335.177513][T21144] geneve3: entered allmulticast mode
[  335.403848][T21165] 9p: Bad value for 'rfdno'
[  335.418923][T21165] 9p: Bad value for 'rfdno'
[  335.494117][T21170] bridge0: port 3(gretap0) entered blocking state
[  335.505101][T21170] bridge0: port 3(gretap0) entered disabled state
[  335.519914][T21170] gretap0: entered allmulticast mode
[  335.552451][T21170] gretap0: entered promiscuous mode
[  335.704482][T21188] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6035'.
[  336.122160][T21230] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6053'.
[  336.301571][T21248] netlink: 'syz.2.6059': attribute type 2 has an invalid length.
[  336.315187][T21248] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6059'.
[  336.381465][  T292] bridge_slave_1: left allmulticast mode
[  336.387283][  T292] bridge_slave_1: left promiscuous mode
[  336.393412][  T292] bridge0: port 2(bridge_slave_1) entered disabled state
[  336.408561][  T292] bridge_slave_0: left allmulticast mode
[  336.420257][  T292] bridge_slave_0: left promiscuous mode
[  336.426209][  T292] bridge0: port 1(bridge_slave_0) entered disabled state
[  336.507126][  T292] bond1 (unregistering): (slave geneve3): Releasing active interface
[  336.564882][  T292] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  336.579385][  T292] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  336.598695][  T292] bond0 (unregistering): Released all slaves
[  336.613301][  T292] bond1 (unregistering): Released all slaves
[  336.663986][  T292] tipc: Disabling bearer <udp:syz2>
[  336.680029][  T292] tipc: Left network mode
[  336.724805][  T292] hsr_slave_0: left promiscuous mode
[  336.737655][  T292] hsr_slave_1: left promiscuous mode
[  336.816581][  T292] team0 (unregistering): Port device team_slave_1 removed
[  336.842135][  T292] team0 (unregistering): Port device team_slave_0 removed
[  337.230988][  T292] IPVS: stop unused estimator thread 0...
[  337.495606][T21354] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6103'.
[  337.517817][T21354] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6103'.
[  337.844417][T21391] batadv_slave_1: entered promiscuous mode
[  337.873334][T21391] batadv_slave_0: entered promiscuous mode
[  337.890809][T21388] batadv_slave_0: left promiscuous mode
[  337.909738][T21388] batadv_slave_1: left promiscuous mode
[  337.945961][T21402] netlink: 'syz.3.6127': attribute type 1 has an invalid length.
[  337.966731][T21402] 8021q: adding VLAN 0 to HW filter on device bond12
[  337.991190][T21402] syz_tun: left allmulticast mode
[  337.999707][T21402] syz_tun: left promiscuous mode
[  338.009926][T21402] bridge0: port 1(syz_tun) entered disabled state
[  338.020409][T21402] bond12: (slave syz_tun): making interface the new active one
[  338.029255][T21402] bond12: (slave syz_tun): Enslaving as an active interface with an up link
[  338.273349][T21425] netlink: 'syz.8.6135': attribute type 10 has an invalid length.
[  338.301691][T21425] team0: Failed to send options change via netlink (err -105)
[  338.309177][T21425] team0: Port device dummy0 added
[  338.694651][T21427] sch_fq: defrate 7 ignored.
[  339.035099][T21455] loop2: detected capacity change from 0 to 8192
[  339.070303][   T28] kauditd_printk_skb: 47 callbacks suppressed
[  339.070320][   T28] audit: type=1400 audit(1771722178.189:5205): avc:  denied  { mounton } for  pid=21453 comm="syz.2.6147" path="/949/file2/bus" dev="loop2" ino=215 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=file permissive=1
[  339.135276][ T6353] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000e1b1)
[  339.150870][ T6353] FAT-fs (loop2): Filesystem has been set read-only
[  339.167127][T21464] __nla_validate_parse: 1 callbacks suppressed
[  339.167138][T21464] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6152'.
[  339.258587][T21470] loop2: detected capacity change from 0 to 4096
[  339.300754][T21470] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  339.360010][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  339.422963][T21485] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  339.443602][T21488] netlink: 12 bytes leftover after parsing attributes in process `syz.7.6169'.
[  339.443737][T21485] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  339.472827][T21488] netlink: 12 bytes leftover after parsing attributes in process `syz.7.6169'.
[  339.954460][T21521] netlink: 36 bytes leftover after parsing attributes in process `syz.7.6175'.
[  340.527404][T21558] netlink: 'syz.3.6189': attribute type 11 has an invalid length.
[  340.552500][T21558] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6189'.
[  340.579061][T21558] netlink: 'syz.3.6189': attribute type 11 has an invalid length.
[  340.604433][T21558] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6189'.
[  340.831657][   T28] audit: type=1326 audit(1771722179.959:5206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21573 comm="syz.7.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f897a606417 code=0x7ffc0000
[  340.856263][   T28] audit: type=1326 audit(1771722179.959:5207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21573 comm="syz.7.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f897a5ada19 code=0x7ffc0000
[  340.900399][   T28] audit: type=1326 audit(1771722179.959:5208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21573 comm="syz.7.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f897a606417 code=0x7ffc0000
[  340.924218][   T28] audit: type=1326 audit(1771722179.959:5209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21573 comm="syz.7.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f897a5ada19 code=0x7ffc0000
[  340.947892][   T28] audit: type=1326 audit(1771722179.959:5210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21573 comm="syz.7.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f897a606417 code=0x7ffc0000
[  340.971746][   T28] audit: type=1326 audit(1771722179.959:5211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21573 comm="syz.7.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f897a5ada19 code=0x7ffc0000
[  340.995672][T21579] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6199'.
[  341.009279][T21579] geneve6: entered promiscuous mode
[  341.018068][   T28] audit: type=1326 audit(1771722179.959:5212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21573 comm="syz.7.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f897a606417 code=0x7ffc0000
[  341.018047][ T4264] netdevsim netdevsim3 eth0: set [1, 2] type 2 family 0 port 6081 - 0
[  341.018122][ T4264] netdevsim netdevsim3 eth1: set [1, 2] type 2 family 0 port 6081 - 0
[  341.018149][ T4264] netdevsim netdevsim3 eth2: set [1, 2] type 2 family 0 port 6081 - 0
[  341.042711][   T28] audit: type=1326 audit(1771722179.959:5213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21573 comm="syz.7.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f897a5ada19 code=0x7ffc0000
[  341.073722][ T4264] netdevsim netdevsim3 eth3: set [1, 2] type 2 family 0 port 6081 - 0
[  341.091702][   T28] audit: type=1326 audit(1771722179.959:5214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21573 comm="syz.7.6197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f897a606417 code=0x7ffc0000
[  341.109716][T21582] netlink: 24 bytes leftover after parsing attributes in process `syz.9.6200'.
[  341.200546][T21587] netlink: 60 bytes leftover after parsing attributes in process `syz.3.6201'.
[  341.209663][T21587] netlink: 60 bytes leftover after parsing attributes in process `syz.3.6201'.
[  341.436622][T21590] netlink: 'syz.8.6214': attribute type 1 has an invalid length.
[  341.468017][T21590] bond1: (slave geneve3): making interface the new active one
[  341.499757][T21590] bond1: (slave geneve3): Enslaving as an active interface with an up link
[  342.210237][ T4428] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  342.216630][ T5378] Bluetooth: hci0: command 0x1003 tx timeout
[  342.224923][T21536] can0: slcan on ptm0.
[  342.280335][T21536] can0 (unregistered): slcan off ptm0.
[  343.233815][T21675] atomic_op ffff888124960128 conn xmit_atomic 0000000000000000
[  343.379276][T21698] loop2: detected capacity change from 0 to 2048
[  343.412785][T10620] Alternate GPT is invalid, using primary GPT.
[  343.419334][T10620]  loop2: p2 p3 p7
[  343.432350][T21698] Alternate GPT is invalid, using primary GPT.
[  343.438729][T21698]  loop2: p2 p3 p7
[  343.574405][ T9052] udevd[9052]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[  343.585549][T10620] udevd[10620]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  343.596864][ T8987] udevd[8987]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  344.401147][T21771] bond12: (slave syz_tun): Releasing active interface
[  344.435889][T21775] netlink: 'syz.9.6277': attribute type 2 has an invalid length.
[  344.454190][T21775] __nla_validate_parse: 3 callbacks suppressed
[  344.454208][T21775] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6277'.
[  344.482508][T21775] netlink: 'syz.9.6277': attribute type 2 has an invalid length.
[  344.491008][T21775] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6277'.
[  346.268132][T21847] netlink: 20 bytes leftover after parsing attributes in process `syz.8.6307'.
[  347.552973][T21898] 9pnet: p9_errstr2errno: server reported unknown error 0x000000
[  347.736146][   T28] kauditd_printk_skb: 1162 callbacks suppressed
[  347.736168][   T28] audit: type=1326 audit(1771722186.859:6377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21911 comm="syz.8.6334" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fec0663c629 code=0x0
[  347.797541][   T28] audit: type=1107 audit(1771722186.919:6378): pid=21916 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  347.879088][T21919] loop2: detected capacity change from 0 to 1024
[  347.896133][T21919] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  348.435274][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.553598][T21933] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6340'.
[  348.703342][T21947] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6349'.
[  348.718127][T21947] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6349'.
[  348.730513][T21947] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6349'.
[  348.739593][T21947] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6349'.
[  348.779447][T21956] netlink: 64 bytes leftover after parsing attributes in process `syz.2.6352'.
[  348.967132][T21975] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6357'.
[  349.882020][T22020] veth1_to_bond: entered allmulticast mode
[  349.888491][T22020] veth1_to_bond: left allmulticast mode
[  350.123874][T22045] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=22045 comm=syz.8.6398
[  350.151495][T22045] netlink: 'syz.8.6398': attribute type 1 has an invalid length.
[  350.159251][T22048] __nla_validate_parse: 2 callbacks suppressed
[  350.159333][T22048] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6387'.
[  350.186591][T22048] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6387'.
[  350.199344][T22045] bond2: (slave bridge1): making interface the new active one
[  350.207192][T22045] bond2: (slave bridge1): Enslaving as an active interface with an up link
[  350.231880][T22054] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6390'.
[  350.241773][T22054] netlink: 'syz.3.6390': attribute type 5 has an invalid length.
[  350.249527][T22054] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6390'.
[  350.451513][T22082] loop2: detected capacity change from 0 to 128
[  350.458164][T22082] msdos: Unknown parameter 'dos1xfl%›4?Ö…y'
[  350.624892][T22090] Set syz1 is full, maxelem 6117 reached
[  350.957583][T22117] netlink: 'syz.9.6418': attribute type 10 has an invalid length.
[  350.967162][T22117] team0: Failed to send options change via netlink (err -105)
[  350.974858][T22117] team0: Port device dummy0 added
[  351.261836][T22135] loop2: detected capacity change from 0 to 256
[  351.613330][T22154] netlink: 'syz.2.6431': attribute type 10 has an invalid length.
[  351.622004][T22154] dummy0: left allmulticast mode
[  351.631172][T22154] dummy0: entered allmulticast mode
[  351.640699][T22154] team0: Failed to send options change via netlink (err -105)
[  351.664500][T22154] team0: Port device dummy0 added
[  352.107390][T22170] Set syz1 is full, maxelem 6117 reached
[  352.178833][T22190] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6447'.
[  352.194543][T22190] bond4: entered promiscuous mode
[  352.201264][T22190] 8021q: adding VLAN 0 to HW filter on device bond4
[  352.215388][T22190] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6447'.
[  352.225488][T22190] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6447'.
[  352.256590][T22197] netlink: 'syz.7.6450': attribute type 10 has an invalid length.
[  352.264648][T22197] dummy0: left allmulticast mode
[  352.271704][T22197] dummy0: entered allmulticast mode
[  352.277449][T22197] team0: Failed to send options change via netlink (err -105)
[  352.286052][T22197] team0: Port device dummy0 added
[  352.511783][T22219] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6457'.
[  353.774886][T22210] syz.2.6455 (22210) used greatest stack depth: 5776 bytes left
[  353.839259][T22236] netlink: 'syz.3.6465': attribute type 10 has an invalid length.
[  353.910470][   T28] audit: type=1326 audit(1771722193.039:6379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22247 comm="syz.9.6470" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fecf430c629 code=0x0
[  354.300899][T22274] netlink: 'syz.7.6480': attribute type 1 has an invalid length.
[  354.324415][T22274] bond8: (slave ip6gretap1): making interface the new active one
[  354.332673][T22274] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  354.340552][T22274] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  354.348494][T22274] bond8: (slave ip6gretap1): Enslaving as an active interface with an up link
[  354.523110][   T28] audit: type=1326 audit(1771722193.649:6380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22286 comm="syz.2.6485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  354.560288][   T28] audit: type=1326 audit(1771722193.649:6381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22286 comm="syz.2.6485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  354.590302][   T28] audit: type=1326 audit(1771722193.719:6382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22286 comm="syz.2.6485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  354.616098][T22287] loop2: detected capacity change from 0 to 512
[  354.649275][   T28] audit: type=1326 audit(1771722193.719:6383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22286 comm="syz.2.6485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  354.711958][   T28] audit: type=1326 audit(1771722193.719:6384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22286 comm="syz.2.6485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  354.760123][   T28] audit: type=1326 audit(1771722193.719:6385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22286 comm="syz.2.6485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  354.783906][   T28] audit: type=1326 audit(1771722193.719:6386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22286 comm="syz.2.6485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  354.807589][   T28] audit: type=1326 audit(1771722193.719:6387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22286 comm="syz.2.6485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  354.899280][   T28] audit: type=1326 audit(1771722193.719:6388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22286 comm="syz.2.6485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3cc267c629 code=0x7ffc0000
[  355.033489][T22316] netlink: 'syz.8.6498': attribute type 10 has an invalid length.
[  357.480621][T22406] loop2: detected capacity change from 0 to 1024
[  357.570121][T22406] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  357.587960][T22406] ext4 filesystem being mounted at /1030/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  357.656606][T22406] EXT4-fs error (device loop2): ext4_map_blocks:818: inode #15: block 3: comm syz.2.6544: lblock 3 mapped to illegal pblock 3 (length 3)
[  357.762952][T22406] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  357.792526][T22406] EXT4-fs (loop2): This should not happen!! Data will be lost
[  357.792526][T22406] 
[  357.860659][ T4264] EXT4-fs error (device loop2): ext4_map_blocks:818: inode #15: block 8: comm kworker/u8:8: lblock 8 mapped to illegal pblock 8 (length 8)
[  357.886892][ T4264] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  357.909422][ T4264] EXT4-fs (loop2): This should not happen!! Data will be lost
[  357.909422][ T4264] 
[  357.921086][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  358.011622][T22386] syz.8.6524 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  358.068870][T22386] CPU: 1 UID: 0 PID: 22386 Comm: syz.8.6524 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  358.068916][T22386] Tainted: [W]=WARN
[  358.068925][T22386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  358.068943][T22386] Call Trace:
[  358.068951][T22386]  <TASK>
[  358.068959][T22386]  __dump_stack+0x1d/0x30
[  358.068992][T22386]  dump_stack_lvl+0x95/0xd0
[  358.069087][T22386]  dump_stack+0x15/0x1b
[  358.069109][T22386]  dump_header+0x80/0x240
[  358.069132][T22386]  oom_kill_process+0x295/0x350
[  358.069155][T22386]  out_of_memory+0x97d/0xb80
[  358.069255][T22386]  try_charge_memcg+0x62e/0xa10
[  358.069295][T22386]  __mem_cgroup_charge+0x65/0x150
[  358.069399][T22386]  shmem_get_folio_gfp+0x47b/0xd60
[  358.069432][T22386]  shmem_fallocate+0x628/0x920
[  358.069522][T22386]  ? __fget_files+0x3c/0x1c0
[  358.069568][T22386]  vfs_fallocate+0x3b6/0x450
[  358.069590][T22386]  __x64_sys_fallocate+0x7a/0xd0
[  358.069613][T22386]  x64_sys_call+0x298e/0x3020
[  358.069696][T22386]  do_syscall_64+0x12c/0x370
[  358.069804][T22386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.069833][T22386] RIP: 0033:0x7fec0663c629
[  358.069869][T22386] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  358.069976][T22386] RSP: 002b:00007fec05076028 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  358.070013][T22386] RAX: ffffffffffffffda RBX: 00007fec068b6090 RCX: 00007fec0663c629
[  358.070028][T22386] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  358.070042][T22386] RBP: 00007fec066d2b39 R08: 0000000000000000 R09: 0000000000000000
[  358.070056][T22386] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000000
[  358.070189][T22386] R13: 00007fec068b6128 R14: 00007fec068b6090 R15: 00007ffdbbc265a8
[  358.070212][T22386]  </TASK>
[  358.370123][T22386] memory: usage 82040kB, limit 307200kB, failcnt 1307
[  358.377156][T22386] memory+swap: usage 99960kB, limit 9007199254740988kB, failcnt 0
[  358.387339][T22386] kmem: usage 1216kB, limit 9007199254740988kB, failcnt 0
[  358.394612][T22386] Memory cgroup stats for /syz8:
[  358.394861][T22386] cache 82100224
[  358.420229][T22386] rss 466944
[  358.423457][T22386] shmem 82100224
[  358.427031][T22386] mapped_file 0
[  358.441216][T22386] dirty 0
[  358.444231][T22386] writeback 0
[  358.447643][T22386] workingset_refault_anon 2566
[  358.455340][T22386] workingset_refault_file 0
[  358.461194][T22386] swap 18350080
[  358.485754][T22386] swapcached 33271808
[  358.489766][T22386] pgpgin 243646
[  358.497029][T22386] pgpgout 223483
[  358.500690][T22386] pgfault 187463
[  358.504336][T22386] pgmajfault 416
[  358.507972][T22386] inactive_anon 21954560
[  358.513691][T22386] active_anon 60633088
[  358.517867][T22386] inactive_file 0
[  358.521614][T22386] active_file 0
[  358.525106][T22386] unevictable 0
[  358.528576][T22386] hierarchical_memory_limit 314572800
[  358.534222][T22386] hierarchical_memsw_limit 9223372036854771712
[  358.564921][T22386] total_cache 82100224
[  358.575038][T22386] total_rss 466944
[  358.578780][T22386] total_shmem 82100224
[  358.590213][T22386] total_mapped_file 0
[  358.594847][T22386] total_dirty 0
[  358.598406][T22386] total_writeback 0
[  358.604610][T22386] total_workingset_refault_anon 2566
[  358.609983][T22386] total_workingset_refault_file 0
[  358.618102][T22386] total_swap 18350080
[  358.622375][T22386] total_swapcached 33271808
[  358.626999][T22386] total_pgpgin 243646
[  358.631036][T22386] total_pgpgout 223483
[  358.635156][T22386] total_pgfault 187463
[  358.639316][T22386] total_pgmajfault 416
[  358.643430][T22386] total_inactive_anon 21954560
[  358.648228][T22386] total_active_anon 60633088
[  358.652965][T22386] total_inactive_file 0
[  358.657140][T22386] total_active_file 0
[  358.661206][T22386] total_unevictable 0
[  358.665297][T22386] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz8,task_memcg=/syz8,task=syz.8.6524,pid=22384,uid=0
[  358.692941][T22386] Memory cgroup out of memory: Killed process 22386 (syz.8.6524) total-vm:96208kB, anon-rss:1404kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:0
[  358.916406][T22460] netlink: 'syz.3.6553': attribute type 1 has an invalid length.
[  358.924244][T22460] netlink: 'syz.3.6553': attribute type 4 has an invalid length.
[  358.932345][T22460] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.6553'.
[  359.202904][T22481] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6564'.
[  359.320367][T22473] syz.7.6569 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  359.361332][T22473] CPU: 1 UID: 0 PID: 22473 Comm: syz.7.6569 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  359.361436][T22473] Tainted: [W]=WARN
[  359.361445][T22473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  359.361459][T22473] Call Trace:
[  359.361467][T22473]  <TASK>
[  359.361475][T22473]  __dump_stack+0x1d/0x30
[  359.361520][T22473]  dump_stack_lvl+0x95/0xd0
[  359.361548][T22473]  dump_stack+0x15/0x1b
[  359.361584][T22473]  dump_header+0x80/0x240
[  359.361684][T22473]  oom_kill_process+0x295/0x350
[  359.361707][T22473]  out_of_memory+0x97d/0xb80
[  359.361728][T22473]  try_charge_memcg+0x62e/0xa10
[  359.361812][T22473]  __mem_cgroup_charge+0x65/0x150
[  359.361883][T22473]  shmem_get_folio_gfp+0x47b/0xd60
[  359.361916][T22473]  shmem_fallocate+0x628/0x920
[  359.361953][T22473]  vfs_fallocate+0x3b6/0x450
[  359.361974][T22473]  __x64_sys_fallocate+0x7a/0xd0
[  359.362039][T22473]  x64_sys_call+0x298e/0x3020
[  359.362136][T22473]  do_syscall_64+0x12c/0x370
[  359.362240][T22473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.362263][T22473] RIP: 0033:0x7f897a60c629
[  359.362296][T22473] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  359.362347][T22473] RSP: 002b:00007f897903e028 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  359.362412][T22473] RAX: ffffffffffffffda RBX: 00007f897a886090 RCX: 00007f897a60c629
[  359.362427][T22473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  359.362440][T22473] RBP: 00007f897a6a2b39 R08: 0000000000000000 R09: 0000000000000000
[  359.362453][T22473] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000000
[  359.362467][T22473] R13: 00007f897a886128 R14: 00007f897a886090 R15: 00007ffd6f444df8
[  359.362488][T22473]  </TASK>
[  359.362597][T22473] memory: usage 285880kB, limit 307200kB, failcnt 470
[  359.548508][T22473] memory+swap: usage 307708kB, limit 9007199254740988kB, failcnt 0
[  359.556574][T22473] kmem: usage 291336kB, limit 9007199254740988kB, failcnt 0
[  359.563947][T22473] Memory cgroup stats for /syz7:
[  359.564435][T22473] cache 16023552
[  359.573042][T22473] rss 196608
[  359.576260][T22473] shmem 16023552
[  359.579834][T22473] mapped_file 0
[  359.583357][T22473] dirty 0
[  359.586307][T22473] writeback 0
[  359.589654][T22473] workingset_refault_anon 77
[  359.594372][T22473] workingset_refault_file 0
[  359.598881][T22473] swap 856064
[  359.602234][T22473] swapcached 14807040
[  359.606217][T22473] pgpgin 387838
[  359.609768][T22473] pgpgout 383872
[  359.613440][T22473] pgfault 310015
[  359.617116][T22473] pgmajfault 81
[  359.620780][T22473] inactive_anon 335872
[  359.624986][T22473] active_anon 15900672
[  359.629071][T22473] inactive_file 0
[  359.632775][T22473] active_file 8192
[  359.636519][T22473] unevictable 0
[  359.639996][T22473] hierarchical_memory_limit 314572800
[  359.645483][T22473] hierarchical_memsw_limit 9223372036854771712
[  359.654375][T22473] total_cache 16023552
[  359.658498][T22473] total_rss 196608
[  359.662367][T22473] total_shmem 16023552
[  359.666524][T22473] total_mapped_file 0
[  359.670566][T22473] total_dirty 0
[  359.674102][T22473] total_writeback 0
[  359.677928][T22473] total_workingset_refault_anon 77
[  359.683082][T22473] total_workingset_refault_file 0
[  359.688198][T22473] total_swap 856064
[  359.692048][T22473] total_swapcached 14807040
[  359.696666][T22473] total_pgpgin 387838
[  359.700711][T22473] total_pgpgout 383872
[  359.704799][T22473] total_pgfault 310015
[  359.708873][T22473] total_pgmajfault 81
[  359.800675][T22473] total_inactive_anon 335872
[  359.849960][T22473] total_active_anon 15900672
[  359.864797][T22473] total_inactive_file 0
[  359.869032][T22473] total_active_file 8192
[  359.902003][T22503] loop2: detected capacity change from 0 to 128
[  359.908600][T22473] total_unevictable 0
[  359.945222][T22473] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz7,task_memcg=/syz7,task=syz.7.3411,pid=14214,uid=0
[  359.980841][T22503] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  360.040675][T22503] ext4 filesystem being mounted at /1038/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  360.076956][T22473] Memory cgroup out of memory: Killed process 14214 (syz.7.3411) total-vm:96076kB, anon-rss:1220kB, file-rss:20800kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[  360.137760][   T28] kauditd_printk_skb: 23 callbacks suppressed
[  360.137776][   T28] audit: type=1326 audit(1771722199.259:6412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22518 comm="syz.3.6578" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f33364cc629 code=0x0
[  360.319805][ T6353] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  360.639472][T22540] loop2: detected capacity change from 0 to 1024
[  360.728763][T22540] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  360.750585][T22540] ext4 filesystem being mounted at /1039/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  360.842589][T22591] netlink: 24 bytes leftover after parsing attributes in process `syz.7.6587'.
[  360.867176][T22540] EXT4-fs error (device loop2): ext4_map_blocks:818: inode #15: block 3: comm syz.2.6582: lblock 3 mapped to illegal pblock 3 (length 3)
[  360.896139][T22540] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  360.923730][T22540] EXT4-fs (loop2): This should not happen!! Data will be lost
[  360.923730][T22540] 
[  360.957612][ T5934] EXT4-fs error (device loop2): ext4_map_blocks:818: inode #15: block 8: comm kworker/u8:20: lblock 8 mapped to illegal pblock 8 (length 8)
[  360.992756][ T5934] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  361.006730][ T5934] EXT4-fs (loop2): This should not happen!! Data will be lost
[  361.006730][ T5934] 
[  361.021371][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  361.148611][T22630] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6591'.
[  361.234807][T22630] geneve2: entered promiscuous mode
[  361.333561][   T28] audit: type=1326 audit(1771722200.459:6413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22649 comm="syz.7.6608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  361.390204][   T28] audit: type=1326 audit(1771722200.459:6414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22649 comm="syz.7.6608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  361.432222][   T28] audit: type=1326 audit(1771722200.459:6415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22649 comm="syz.7.6608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  361.456038][   T28] audit: type=1326 audit(1771722200.459:6416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22649 comm="syz.7.6608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  361.500443][   T28] audit: type=1326 audit(1771722200.459:6417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22649 comm="syz.7.6608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  361.524701][   T28] audit: type=1326 audit(1771722200.499:6418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22649 comm="syz.7.6608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  361.579175][   T28] audit: type=1326 audit(1771722200.499:6419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22649 comm="syz.7.6608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  361.635587][   T28] audit: type=1326 audit(1771722200.499:6420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22649 comm="syz.7.6608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  361.690260][   T28] audit: type=1326 audit(1771722200.499:6421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22649 comm="syz.7.6608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f897a60c629 code=0x7ffc0000
[  361.782216][T22663] syz.8.6602 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  361.839283][T22663] CPU: 1 UID: 0 PID: 22663 Comm: syz.8.6602 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  361.839314][T22663] Tainted: [W]=WARN
[  361.839341][T22663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  361.839354][T22663] Call Trace:
[  361.839437][T22663]  <TASK>
[  361.839446][T22663]  __dump_stack+0x1d/0x30
[  361.839498][T22663]  dump_stack_lvl+0x95/0xd0
[  361.839529][T22663]  dump_stack+0x15/0x1b
[  361.839552][T22663]  dump_header+0x80/0x240
[  361.839655][T22663]  oom_kill_process+0x295/0x350
[  361.839684][T22663]  out_of_memory+0x97d/0xb80
[  361.839778][T22663]  try_charge_memcg+0x62e/0xa10
[  361.839904][T22663]  __mem_cgroup_charge+0x65/0x150
[  361.839942][T22663]  shmem_get_folio_gfp+0x47b/0xd60
[  361.840042][T22663]  shmem_fallocate+0x628/0x920
[  361.840080][T22663]  vfs_fallocate+0x3b6/0x450
[  361.840163][T22663]  __x64_sys_fallocate+0x7a/0xd0
[  361.840193][T22663]  x64_sys_call+0x298e/0x3020
[  361.840223][T22663]  do_syscall_64+0x12c/0x370
[  361.840269][T22663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.840388][T22663] RIP: 0033:0x7fec0663c629
[  361.840408][T22663] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  361.840446][T22663] RSP: 002b:00007fec05076028 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  361.840477][T22663] RAX: ffffffffffffffda RBX: 00007fec068b6090 RCX: 00007fec0663c629
[  361.840501][T22663] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  361.840517][T22663] RBP: 00007fec066d2b39 R08: 0000000000000000 R09: 0000000000000000
[  361.840575][T22663] R10: 0000000008800000 R11: 0000000000000246 R12: 0000000000000000
[  361.840633][T22663] R13: 00007fec068b6128 R14: 00007fec068b6090 R15: 00007ffdbbc265a8
[  361.840657][T22663]  </TASK>
[  362.050276][T22663] memory: usage 237520kB, limit 307200kB, failcnt 1482
[  362.057274][T22663] memory+swap: usage 247380kB, limit 9007199254740988kB, failcnt 0
[  362.065443][T22663] kmem: usage 165228kB, limit 9007199254740988kB, failcnt 0
[  362.075545][T22663] Memory cgroup stats for /syz8:
[  362.075932][T22663] cache 57008128
[  362.090227][T22663] rss 466944
[  362.093510][T22663] shmem 57008128
[  362.110364][T22663] mapped_file 0
[  362.113899][T22663] dirty 0
[  362.116845][T22663] writeback 0
[  362.120139][T22663] workingset_refault_anon 2566
[  362.140214][T22663] workingset_refault_file 0
[  362.144755][T22663] swap 18350080
[  362.148196][T22663] swapcached 33271808
[  362.182089][T22663] pgpgin 250054
[  362.185583][T22663] pgpgout 236017
[  362.189184][T22663] pgfault 192524
[  362.192986][T22663] pgmajfault 416
[  362.196575][T22663] inactive_anon 2314240
[  362.201037][T22663] active_anon 55181312
[  362.205285][T22663] inactive_file 0
[  362.233897][T22663] active_file 0
[  362.237368][T22663] unevictable 0
[  362.241081][T22663] hierarchical_memory_limit 314572800
[  362.246545][T22663] hierarchical_memsw_limit 9223372036854771712
[  362.260488][T22663] total_cache 57008128
[  362.264590][T22663] total_rss 466944
[  362.268355][T22663] total_shmem 57008128
[  362.272744][T22663] total_mapped_file 0
[  362.276740][T22663] total_dirty 0
[  362.290193][T22663] total_writeback 0
[  362.294030][T22663] total_workingset_refault_anon 2566
[  362.299327][T22663] total_workingset_refault_file 0
[  362.304815][T22663] total_swap 18350080
[  362.308816][T22663] total_swapcached 33271808
[  362.313589][T22663] total_pgpgin 250054
[  362.317590][T22663] total_pgpgout 236017
[  362.321927][T22663] total_pgfault 192524
[  362.326077][T22663] total_pgmajfault 416
[  362.330392][T22663] total_inactive_anon 2314240
[  362.335164][T22663] total_active_anon 55181312
[  362.339785][T22663] total_inactive_file 0
[  362.344298][T22663] total_active_file 0
[  362.348362][T22663] total_unevictable 0
[  362.352494][T22663] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz8,task_memcg=/syz8,task=syz.8.6602,pid=22661,uid=0
[  362.367480][T22663] Memory cgroup out of memory: Killed process 22661 (syz.8.6602) total-vm:96208kB, anon-rss:1404kB, file-rss:22288kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:0
[  362.458372][ T9725] kernel write not supported for file bpf-prog (pid: 9725 comm: kworker/0:11)
[  362.586417][T22690] netlink: 16150 bytes leftover after parsing attributes in process `syz.7.6614'.
[  362.725484][T22705] bridge0: port 4(gretap0) entered blocking state
[  362.733744][T22705] bridge0: port 4(gretap0) entered disabled state
[  362.769843][T22705] gretap0: entered promiscuous mode
[  363.191136][T22739] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6636'.
[  363.746111][T22775] netlink: 'syz.7.6651': attribute type 11 has an invalid length.
[  363.765651][T22775] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6651'.
[  363.787663][T22775] netlink: 'syz.7.6651': attribute type 11 has an invalid length.
[  363.810274][T22775] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6651'.
[  363.989653][T22786] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6655'.
[  364.009807][T22786] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6655'.
[  364.937618][T22841] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6680'.
[  365.680182][   T28] kauditd_printk_skb: 2112 callbacks suppressed
[  365.680211][   T28] audit: type=1326 audit(1771722204.799:8534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22849 comm="syz.2.6682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3cc2676417 code=0x7ffc0000
[  365.712257][T22857] netlink: 60 bytes leftover after parsing attributes in process `syz.7.6681'.
[  365.727574][T22857] netlink: 60 bytes leftover after parsing attributes in process `syz.7.6681'.
[  365.741436][   T28] audit: type=1326 audit(1771722204.799:8535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22849 comm="syz.2.6682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3cc261da19 code=0x7ffc0000
[  365.782034][   T28] audit: type=1326 audit(1771722204.799:8536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22849 comm="syz.2.6682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3cc2676417 code=0x7ffc0000
[  365.831177][   T28] audit: type=1326 audit(1771722204.799:8537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22849 comm="syz.2.6682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3cc261da19 code=0x7ffc0000
[  365.872087][   T28] audit: type=1326 audit(1771722204.799:8538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22849 comm="syz.2.6682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3cc2676417 code=0x7ffc0000
[  365.921052][   T28] audit: type=1326 audit(1771722204.799:8539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22849 comm="syz.2.6682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3cc261da19 code=0x7ffc0000
[  365.955311][   T28] audit: type=1326 audit(1771722204.799:8540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22849 comm="syz.2.6682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3cc2676417 code=0x7ffc0000
[  365.979006][   T28] audit: type=1326 audit(1771722204.799:8541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22849 comm="syz.2.6682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3cc261da19 code=0x7ffc0000
[  366.008448][   T28] audit: type=1326 audit(1771722204.799:8542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22849 comm="syz.2.6682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3cc2676417 code=0x7ffc0000
[  366.032263][   T28] audit: type=1326 audit(1771722204.799:8543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22849 comm="syz.2.6682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3cc261da19 code=0x7ffc0000
[  366.195768][T22870] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6689'.
[  366.492373][T22887] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6708'.
[  366.582221][T22893] atomic_op ffff88811c5df928 conn xmit_atomic 0000000000000000
[  366.621211][T22897] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  366.745858][T22911] netlink: 48 bytes leftover after parsing attributes in process `syz.3.6709'.
[  367.090777][T22919] netlink: 60 bytes leftover after parsing attributes in process `syz.8.6710'.
[  367.099772][T22919] netlink: 60 bytes leftover after parsing attributes in process `syz.8.6710'.
[  368.185734][T22962] netlink: 'syz.7.6731': attribute type 2 has an invalid length.
[  368.196928][T22962] netlink: 'syz.7.6731': attribute type 2 has an invalid length.
[  369.606385][T23029] __nla_validate_parse: 2 callbacks suppressed
[  369.606400][T23029] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6757'.
[  369.693952][T23032] netlink: 48 bytes leftover after parsing attributes in process `syz.7.6769'.
[  369.792287][T23038] loop2: detected capacity change from 0 to 1024
[  369.799354][T23038] EXT4-fs: inline encryption not supported
[  369.822333][T23038] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  369.857121][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.805137][T23073] netlink: 48 bytes leftover after parsing attributes in process `syz.8.6773'.
[  371.538844][T23105] 9pnet: p9_errstr2errno: server reported unknown error 0x000000
[  371.868053][T23116] netlink: 48 bytes leftover after parsing attributes in process `syz.8.6792'.
[  372.076963][T23129] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6798'.
[  372.510943][T23141] netlink: 20 bytes leftover after parsing attributes in process `syz.7.6815'.
[  372.523179][T23144] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6817'.
[  372.555451][T23144] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6817'.
[  372.582687][T23144] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6817'.
[  372.593499][T23144] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6817'.
[  372.973720][T23164] netlink: 'syz.2.6824': attribute type 5 has an invalid length.
[  376.908372][T23319] loop2: detected capacity change from 0 to 512
[  376.916360][T23319] EXT4-fs: Ignoring removed mblk_io_submit option
[  376.939811][T23319] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13
[  376.987067][T23319] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.6873: attempt to clear invalid blocks 2 len 1
[  377.022339][T23319] loop2: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  377.022522][T23319] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1315: group 0, 
[  377.031763][    C0] EXT4-fs (loop2): error count since last fsck: 1
[  377.031781][    C0] EXT4-fs (loop2): initial error at time 1771722216: ext4_clear_blocks:876: inode 13
[  377.031802][    C0] EXT4-fs (loop2): last error at time 1771722216: ext4_clear_blocks:876: inode 13
[  377.065237][T23319] block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  377.075460][T23319] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.6873: invalid indirect mapped block 1819239214 (level 0)
[  377.089867][T23319] loop2: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  377.090096][T23319] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.6873: invalid indirect mapped block 1819239214 (level 1)
[  377.115449][T23319] loop2: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  377.116026][T23319] EXT4-fs (loop2): 1 truncate cleaned up
[  377.153682][T23319] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  377.176218][T23319] EXT4-fs (loop2): Quota file not on filesystem root. Journaled quota will not work
[  377.186134][   T28] kauditd_printk_skb: 569 callbacks suppressed
[  377.186145][   T28] audit: type=1400 audit(1771722216.309:9113): avc:  denied  { quotaon } for  pid=23318 comm="syz.2.6873" name="file0" dev="loop2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  377.243374][ T6353] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.281175][T23337] sg_write: process 2550 (syz.2.6878) changed security contexts after opening file descriptor, this is not allowed.
[  377.376254][T23345] __nla_validate_parse: 3 callbacks suppressed
[  377.376278][T23345] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6895'.
[  377.462186][T23345] 8021q: adding VLAN 0 to HW filter on device bond3
[  377.511205][T23345] bond3: option primary: mode dependency failed, not supported in mode balance-rr(0)
[  377.801993][T23385] netlink: 12 bytes leftover after parsing attributes in process `syz.7.6902'.
[  377.846069][T23385] 8021q: adding VLAN 0 to HW filter on device bond9
[  377.881343][T23389] bond9: option primary: mode dependency failed, not supported in mode balance-rr(0)
[  378.294153][T23417] netlink: 'syz.3.6914': attribute type 1 has an invalid length.
[  378.331501][T23417] 8021q: adding VLAN 0 to HW filter on device bond13
[  378.362118][T23420] bond13: option tlb_dynamic_lb: unable to set because the bond device is up
[  378.698803][T23440] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6932'.
[  378.711855][T23440] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6932'.
[  378.794795][T23440] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6932'.
[  378.818745][T23440] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6932'.
[  379.683668][T23517] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6962'.
[  379.697103][T23517] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6962'.
[  379.697103][ T4268] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  379.719408][ T4268] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  379.727940][ T4268] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  379.737848][ T4268] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  379.806031][T23535] erspan0: left allmulticast mode
[  379.812230][T23535] netlink: 136 bytes leftover after parsing attributes in process `syz.7.6971'.
[  379.822124][T23535] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  380.064284][T23559] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6969'.
[  380.201212][T23567] ip6_vti0: left allmulticast mode
[  380.217884][T23567] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check.
[  382.915953][T23675] netlink: 'syz.9.7018': attribute type 3 has an invalid length.
[  382.937768][T23675] netlink: 'syz.9.7018': attribute type 1 has an invalid length.
[  382.946088][T23675] __nla_validate_parse: 2 callbacks suppressed
[  382.946113][T23675] netlink: 198116 bytes leftover after parsing attributes in process `syz.9.7018'.
[  383.034110][T23687] sock: sock_timestamping_bind_phc: sock not bind to device
[  383.452260][   T28] audit: type=1326 audit(1771722222.579:9114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23707 comm="syz.3.7032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33364cc629 code=0x7ffc0000
[  383.494903][   T28] audit: type=1326 audit(1771722222.579:9115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23707 comm="syz.3.7032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33364cc629 code=0x7ffc0000
[  383.518833][   T28] audit: type=1326 audit(1771722222.609:9116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23707 comm="syz.3.7032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f33364cc629 code=0x7ffc0000
[  383.548539][   T28] audit: type=1326 audit(1771722222.609:9117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23707 comm="syz.3.7032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33364cc629 code=0x7ffc0000
[  383.572411][   T28] audit: type=1326 audit(1771722222.609:9118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23707 comm="syz.3.7032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33364cc629 code=0x7ffc0000
[  383.596399][   T28] audit: type=1326 audit(1771722222.609:9119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23707 comm="syz.3.7032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33364cc629 code=0x7ffc0000
[  383.620356][   T28] audit: type=1326 audit(1771722222.609:9120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23707 comm="syz.3.7032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33364cc629 code=0x7ffc0000
[  383.644206][   T28] audit: type=1326 audit(1771722222.609:9121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23707 comm="syz.3.7032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f33364cc629 code=0x7ffc0000
[  383.668264][   T28] audit: type=1326 audit(1771722222.609:9122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23707 comm="syz.3.7032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33364cc629 code=0x7ffc0000
[  383.692603][   T28] audit: type=1326 audit(1771722222.609:9123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23707 comm="syz.3.7032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f33364cc629 code=0x7ffc0000
[  383.737859][T23710] netlink: 'syz.8.7033': attribute type 3 has an invalid length.
[  383.745793][T23710] netlink: 'syz.8.7033': attribute type 1 has an invalid length.
[  383.753778][T23710] netlink: 198116 bytes leftover after parsing attributes in process `syz.8.7033'.
[  384.112839][T23740] netlink: 'syz.7.7047': attribute type 3 has an invalid length.
[  384.150567][T23740] netlink: 'syz.7.7047': attribute type 1 has an invalid length.
[  384.160866][T23740] netlink: 198116 bytes leftover after parsing attributes in process `syz.7.7047'.
[  385.850304][T23802] ==================================================================
[  385.858434][T23802] BUG: KCSAN: data-race in atime_needs_update / inode_update_time
[  385.866282][T23802] 
[  385.868627][T23802] write to 0xffff88813d859b1c of 4 bytes by task 23800 on cpu 0:
[  385.876366][T23802]  inode_update_time+0x2cc/0x360
[  385.881348][T23802]  file_update_time_flags+0x277/0x2e0
[  385.886757][T23802]  file_update_time+0x17/0x20
[  385.891454][T23802]  shmem_file_write_iter+0x9c/0xf0
[  385.896620][T23802]  iter_file_splice_write+0x6c4/0xa80
[  385.902022][T23802]  direct_splice_actor+0x156/0x2a0
[  385.907175][T23802]  splice_direct_to_actor+0x311/0x670
[  385.912563][T23802]  do_splice_direct+0x119/0x1a0
[  385.917435][T23802]  do_sendfile+0x382/0x650
[  385.921888][T23802]  __x64_sys_sendfile64+0x105/0x150
[  385.927129][T23802]  x64_sys_call+0x2dc4/0x3020
[  385.932000][T23802]  do_syscall_64+0x12c/0x370
[  385.936628][T23802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.942549][T23802] 
[  385.944881][T23802] read to 0xffff88813d859b1c of 4 bytes by task 23802 on cpu 1:
[  385.952519][T23802]  atime_needs_update+0x2a8/0x3e0
[  385.957571][T23802]  touch_atime+0x4a/0x330
[  385.961922][T23802]  shmem_file_read_iter+0x477/0x540
[  385.967140][T23802]  copy_splice_read+0x471/0x6c0
[  385.972011][T23802]  splice_direct_to_actor+0x28f/0x670
[  385.977394][T23802]  do_splice_direct+0x119/0x1a0
[  385.982257][T23802]  do_sendfile+0x382/0x650
[  385.986693][T23802]  __x64_sys_sendfile64+0x105/0x150
[  385.991936][T23802]  x64_sys_call+0x2dc4/0x3020
[  385.996628][T23802]  do_syscall_64+0x12c/0x370
[  386.001258][T23802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.007174][T23802] 
[  386.009535][T23802] value changed: 0x39c6d8a3 -> 0x3a5f6f23
[  386.015254][T23802] 
[  386.017583][T23802] Reported by Kernel Concurrency Sanitizer on:
[  386.023749][T23802] CPU: 1 UID: 0 PID: 23802 Comm: syz.8.7080 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  386.034705][T23802] Tainted: [W]=WARN
[  386.038531][T23802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  386.048606][T23802] ==================================================================