last executing test programs:

5.047688427s ago: executing program 2 (id=960):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000180)={'wpan0\x00', <r1=>0x0})
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000001f80), r3) (async)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001f80), r3)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r3, &(0x7f00000020c0)={0x0, 0x0, &(0x7f0000002080)={&(0x7f0000000ac0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000002e0000000c0005000000000000000000060006000000000005002b0000000000080002000a135bf5337db504dce18122ceeeedfe6705c16b73fe"], 0x38}}, 0x0) (async)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r3, &(0x7f00000020c0)={0x0, 0x0, &(0x7f0000002080)={&(0x7f0000000ac0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000002e0000000c0005000000000000000000060006000000000005002b0000000000080002000a135bf5337db504dce18122ceeeedfe6705c16b73fe"], 0x38}}, 0x0)
sendmsg$IEEE802154_ASSOCIATE_RESP(r0, &(0x7f0000000300)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x20100004}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, r4, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa2}]}, 0x6f}, 0x1, 0x0, 0x0, 0x10}, 0x20040000)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x80682)
r5 = syz_io_uring_setup(0xc3b, &(0x7f00000000c0)={0x0, 0xc55a, 0x80, 0x8000004}, &(0x7f0000000040)=<r6=>0x0, &(0x7f00000005c0)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r5, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r2)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x40, r8, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5, 0x37, 0x2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r1}]}, 0x40}, 0x4, 0x700000000000000}, 0x8850)
syz_init_net_socket$x25(0x9, 0x5, 0x0) (async)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) (async)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r10, 0x0, 0x100}, 0x18)
r11 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$sock_SIOCETHTOOL(r11, 0x8946, &(0x7f00000001c0)={'batadv_slave_1\x00', &(0x7f0000000180)=@ethtool_sset_info={0x37, 0xf, 0xa}})
syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x14, 0x28b}, &(0x7f0000000140)=<r12=>0x0, &(0x7f0000000280)=<r13=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r12, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r12, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r12, r13, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
socket(0x1d, 0x2, 0x6) (async)
r14 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r14, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r15=>0x0})
bind$can_j1939(r14, &(0x7f00000000c0)={0x1d, r15, 0x2, {0x2, 0xf0, 0x3}, 0xff}, 0x18) (async)
bind$can_j1939(r14, &(0x7f00000000c0)={0x1d, r15, 0x2, {0x2, 0xf0, 0x3}, 0xff}, 0x18)
sendmmsg$sock(r14, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000340)="0cd2", 0x2}, {0x0}], 0x2}}], 0x1, 0x0)

4.965475908s ago: executing program 2 (id=962):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001780)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000080"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x198)
pipe2$9p(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

3.817704425s ago: executing program 2 (id=975):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

3.730320576s ago: executing program 2 (id=978):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
socket(0x10, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$netlink(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000006, 0x4132, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001900)=@newtaction={0xfb4, 0x30, 0x1, 0x0, 0x0, {}, [{0xfa0, 0x1, [@m_mpls={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x0, 0xfffffffe, 0x0, 0x80}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}, @m_pedit={0xe54, 0x2, 0x0, 0x0, {{0xa}, {0xe28, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x4}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x0, 0x0, 0x8}, 0x8}, [{}, {0x0, 0x4, 0x80000000, 0x0, 0x3}, {}, {0x1, 0x0, 0x0, 0x7fff, 0x0, 0xfffffffd}, {}, {0x0, 0xfffffffc}, {}, {0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x100}, {0x0, 0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0xeffffffd, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x9, 0x2, 0xa46}, {}, {}, {0x6}, {}, {0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x1c69, 0x100}, {0x0, 0x0, 0x10000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {0x20, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x7, 0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x6}, {}, {0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5a9}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x1}, {}, {0x0, 0xfe}, {0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x400}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1, 0x8000}, {0x0, 0x3}, {0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8001}, {0x0, 0x0, 0x0, 0xfffff800}, {}, {}, {0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x0, 0x2400000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffe00}, {}, {}, {}, {0x0, 0x0, 0x0, 0x675, 0x8}, {0x0, 0x0, 0x0, 0x3}, {0x9}, {}, {0x3}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, {}, {}, {0x400}, {0x0, 0xfffffffd}, {0x0, 0xffffffff}, {0x0, 0x0, 0xabd}, {}, {0x0, 0xdd86}, {0xfffffffd}, {}, {}, {}, {}, {0x0, 0x0, 0x1}, {0x40000, 0x0, 0x0, 0x0, 0x0, 0x451d}, {}, {0x0, 0x0, 0x0, 0x0, 0x3ff}, {0x4}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xfffffe00}, {0x0, 0x80000}, {}, {}, {0x80000000, 0x3}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x212, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x4000000}], [{}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x7}, {}, {0x0, 0x1}, {0x3}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {0x3}, {0x3}, {0x2, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {0x5, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0xe}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {}, {}, {0x7, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}, @m_simple={0xfc, 0x1a, 0x0, 0x0, {{0xb}, {0x80, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x7, 0x9, 0x3, 0x7f, 0x4}}, @TCA_DEF_DATA={0x8, 0x3, 'GPL\x00'}, @TCA_DEF_DATA={0x6, 0x3, '*\x00'}, @TCA_DEF_DATA={0xa, 0x3, 'pedit\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x1, 0x4a, 0x10000000, 0x400, 0x7}}, @TCA_DEF_PARMS={0x18, 0x2, {0x8, 0x7, 0x7, 0x6, 0x388}}, @TCA_DEF_PARMS={0x18, 0x2, {0x8, 0x1, 0x10000000, 0xa8000000, 0xffff7fff}}]}, {0x52, 0x6, "58f532bcbc510c48eac376db6e0a913409f74dfe54bc8dec16ca7a65f99df045fb179b8a7bc33c27f203dc0c734c4fc547a4074584c525c1e1f245c416df11bc3393cf877592af8be79e47774273"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}]}]}, 0xfb4}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
socket(0x2, 0x80805, 0x0)
syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff)
socket$inet_smc(0x2b, 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ioprio_get$pid(0x3, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
pipe2(&(0x7f0000000000)={<r4=>0xffffffffffffffff}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket$netlink(0x10, 0x3, 0xe)
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
tee(r4, r5, 0xfffffffffffffc01, 0x0)

2.860575099s ago: executing program 2 (id=987):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$xdp(0x2c, 0x3, 0x0)
sendmsg$nl_route_sched_retired(0xffffffffffffffff, 0x0, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000002380)={0x3, 0x3e, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0x10, 0x2, 0x6)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180400000000000000000000de00000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x18)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f00000003c0))
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x18)
r4 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
write$selinux_validatetrans(r4, &(0x7f00000002c0)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a756e636f6e66696e65645f657865636d656d5f657865635f743a73302073797374656d5f753a6f626a6563745fd244f2666661896c745f636f6e746578745f743a7330203030303030303030303030303030303031343935202f7573722f7362696e2f637570732d62726f7773656400"], 0x82)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c00000008001240000000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c0000000306010200000000000000ffff0000010500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)

1.990438351s ago: executing program 2 (id=1001):
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

1.525032228s ago: executing program 3 (id=1007):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$xdp(0x2c, 0x3, 0x0)
sendmsg$nl_route_sched_retired(0xffffffffffffffff, 0x0, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000002380)={0x3, 0x3e, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0x10, 0x2, 0x6)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180400000000000000000000de00000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x18)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f00000003c0))
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
write$selinux_validatetrans(r3, &(0x7f00000002c0)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a756e636f6e66696e65645f657865636d656d5f657865635f743a73302073797374656d5f753a6f626a6563745fd244f2666661896c745f636f6e746578745f743a7330203030303030303030303030303030303031343935202f7573722f7362696e2f637570732d62726f7773656400"], 0x82)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c00000008001240000000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c0000000306010200000000000000ffff0000010500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)

1.35771122s ago: executing program 0 (id=1010):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB, @ANYRESHEX], 0x5c}}, 0x0)

1.342548091s ago: executing program 0 (id=1011):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x8fff, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x4b8, 0x340, 0x25, 0x148, 0x0, 0x60, 0x458, 0x2a8, 0x2a8, 0x458, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0x98, 0xe0, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x8000, 'syz0\x00', {0x481c}}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x518)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

1.292808032s ago: executing program 0 (id=1012):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="b70000008100003bbfa30000000000000703000000feffff720af0fff8ffffff71a4f0ff0000000071105400000000001d400500000000004704000001ed00000f030000000000001d440000000000006b0a00fe000000007313000000000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff31a8fd3c0fd8b7ff831028e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646c0200000000000000020000e35208b0bb0d2cd829e654400e2438ec649dc76128610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda82fc9c4d7ecc7a803bf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714f62ba7a54f0c33d39000d0bfed3a6a59ff616236fd8f2477184bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06fa2e04cfe0649226c697d9e8eaade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00023ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a83469620c6e74e1f46132559c4f8700a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88f15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a920099c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40fc5d2f55ff07c53147de202ce517b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661061173f359e9052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f006694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff26b61aac8aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3ba18a1a2b65079cc1c7bc46dd12305a1ae9dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e26534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ad1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336dfaa6d5d164301190bc2d4c04087729033342045804a28082abc3b4762302a271722fb515f31e0dd115a292f1e68481a62c49d15ea5460a29c60b1058fb7aa9bf4ee3cbe11b03711a15d730646b72d074dab1e8c429339f3460d324c17a4a8bfc7d7eab45be"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1, 0x0, 0x100}, 0x18)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="d800000010008104687da3aa7143a0b8c81d080b25000000e8fe55a11800150006001400000000120800030043000040a8002b000a00014006046109d67f6f94007134cf6ee0a000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88a2ddddbbb219c6c09136dd481c4a918d1bcf0f938baa5d060a517898516277ce06bbace80177ccbec4c2ee5a7cef4260027836b0d17a58af5d6d93424841f468430dfe1d9d322fe7c0aaa16b8ddc64193071e9f8775730d16a4683f785025ccc89e00360db70100000040fad95667e006dcabced7ad654fac9609f4fb", 0xd8}], 0x1}, 0x4004)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000800)={'rose0\x00', 0x112})
ioctl$TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000100)=r0)
close(0xffffffffffffffff)

1.200307543s ago: executing program 1 (id=1013):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001780)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x198)
pipe2$9p(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

1.144373033s ago: executing program 0 (id=1015):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x142)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0xd, @void, @value}, 0x94)
r1 = socket$kcm(0x2, 0x2, 0x73)
bind$inet(r1, &(0x7f00000000c0)={0x2, 0xfffe, @multicast2}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
unshare(0x2040400)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r4, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r4, 0x18, &(0x7f0000000240)={0x5440, r2, 0x1a, {0xc04a, 0x2}, 0x9}, 0x1)
setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000280)=0x9, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
setrlimit(0xa, 0x0)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff}, './file0\x00'})
r7 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000200), 0x80801, 0x0)
syz_io_uring_setup(0x109, &(0x7f00000000c0)={0x0, 0x114df, 0x20, 0x201, 0x89, 0x0, r7}, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f00000002c0), 0xffffffffffffffff)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r9=>0x0})
sendto$packet(r8, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r9, 0x1, 0x0, 0x6, @link_local}, 0x14)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000500)={r4, 0x20, &(0x7f00000004c0)={&(0x7f0000000400)=""/62, 0x3e, 0x0, &(0x7f0000000440)=""/71, 0x47}}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)={0x2, 0x4, 0x8, 0x1, 0x80, r6, 0xab57, '\x00', 0x0, r6, 0x4, 0x5, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
getrandom(&(0x7f0000000040)=""/133, 0xfffffffffffffdde, 0x2)

1.027893895s ago: executing program 4 (id=1016):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x7, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x2, @perf_bp={0x0}, 0x2, 0xffffffff, 0x6, 0x6, 0x4, 0x5, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, 0x0, &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000080)=0x300, 0x4)

1.027731955s ago: executing program 4 (id=1017):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x80000000000}, 0x18)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r2, 0x0, 0x5, &(0x7f0000000240)={@local, @multicast2, 0xfffb, "66c5aff8a7eb3af1f6cec2e7420000008c84aea31700", 0x96bc, 0x1000000, 0x7e, 0x6b}, 0x3c)
setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000000080)=0x300, 0x4)

1.006492975s ago: executing program 4 (id=1018):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x300, 0x198, 0xffffffff, 0xffffffff, 0x198, 0xffffffff, 0x268, 0xffffff7a, 0xffffffff, 0x268, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'veth1\x00', 'veth0_to_team\x00', {}, {}, 0x0, 0x0, 0x41}, 0x6, 0x130, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "00000100cbd047da9ca965f96ad5801f0514d363ee84bb895919d9490f6785fba3c4a44f1e25ecefef2a2d6054f5260ece5ce1a56a5ef73be11d65bfe8c37674024c183ebacdf741cea92ded3a9ca54de15dd9ec8ef62f9e000000000000000000ffffff7f00", 0x7d}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x2, 0x0, 'snmp_trap\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x360)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x4}, 0x18)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f00000000c0)='./bus\x00', 0x819840, &(0x7f00000003c0), 0x1, 0x281, &(0x7f0000001300)="$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")

978.369186ms ago: executing program 4 (id=1019):
open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0x198)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

926.572787ms ago: executing program 4 (id=1020):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
ioperm(0x7, 0x449, 0x7ff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f00000002c0)={[{@journal_dev={'journal_dev', 0x3d, 0xffff}}, {@init_itable}, {@nojournal_checksum}, {@jqfmt_vfsv0}, {@nojournal_checksum}, {@noload}, {@inlinecrypt}]}, 0x2, 0x500, &(0x7f0000000500)="$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")
prctl$PR_SET_NAME(0xf, &(0x7f0000000380)='\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
r2 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0xc0)
pwritev2(r2, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1f, 0x7800, 0x0, 0x3)

379.849935ms ago: executing program 3 (id=1021):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000300)=ANY=[@ANYRES16=r0, @ANYRESOCT=r2, @ANYBLOB="4fbadededd54512d8798aaa5d8ebebd3f1f16f565b2da3e3d18cc9c1de2db3786a3daf2f6a6f175725759b2320fe615e293082ec137aa33423140df452893a3ace5848e8df256628caff39f9e1a29d03cf0b9b07beb5ab8510a2c142d95506c0c802e9b1b9cfabba9c20f1570e1861"], &(0x7f00000002c0)='syzkaller\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair(0x18, 0x0, 0x2, &(0x7f0000000000))
r4 = socket$inet6(0xa, 0x6, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r5, &(0x7f00000010c0)='J', 0x1, 0x800, &(0x7f0000000000)={0xa, 0x4e22, 0x7ff, @remote, 0x7}, 0x1c)

378.778635ms ago: executing program 3 (id=1031):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000009900"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

329.905815ms ago: executing program 1 (id=1022):
creat(&(0x7f00000000c0)='./file0\x00', 0x18e)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000002000000850000008500"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
mount$9p_rdma(&(0x7f0000000280), &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), 0x40, &(0x7f0000000980)={'trans=rdma,', {'port', 0x3d, 0x4e20}})

323.852916ms ago: executing program 4 (id=1023):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001780)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000080"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x198)
pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, 0x0)

315.590255ms ago: executing program 3 (id=1024):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair(0x18, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x14)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r3=>0x0})
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000001700000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r4, r3, 0x25, 0x0, @void}, 0x10)

311.547246ms ago: executing program 1 (id=1025):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1, 0x0, 0x100}, 0x18)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="d800000010008104687da3aa7143a0b8c81d080b25000000e8fe55a11800150006001400000000120800030043000040a8002b000a00014006046109d67f6f94007134cf6ee0a000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88a2ddddbbb219c6c09136dd481c4a918d1bcf0f938baa5d060a517898516277ce06bbace80177ccbec4c2ee5a7cef4260027836b0d17a58af5d6d93424841f468430dfe1d9d322fe7c0aaa16b8ddc64193071e9f8775730d16a4683f785025ccc89e00360db70100000040fad95667e006dcabced7ad654fac9609f4fb", 0xd8}], 0x1}, 0x4004)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000800)={'rose0\x00', 0x112})
ioctl$TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000100)=r0)
close(0xffffffffffffffff)

225.146047ms ago: executing program 3 (id=1026):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000380), r0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0), r0)
sendmsg$NLBL_CIPSOV4_C_LIST(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r2, 0x705, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0xc001}, 0x8044018)

179.144568ms ago: executing program 1 (id=1027):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x3, 0x1000002, 0x0, 0xff, "d4e9002b2c000000ff00"})
r3 = syz_open_pts(r2, 0x0)
r4 = dup(r3)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0x3)
dup3(r2, r4, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000840), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r5, 0x40047438, &(0x7f0000000180)=""/246)
pwritev(r5, &(0x7f0000000080)=[{&(0x7f0000000100)="39ac8469c75e19", 0x7}, {&(0x7f0000000340)="a4ce", 0x2}], 0x2, 0xffffffff, 0x4)

142.722938ms ago: executing program 3 (id=1028):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfe, 0x0, 0x7ffc0002}]})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, 0x0, 0x8, 0x1)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f0000000440)={[{@bsdgroups}, {@noblock_validity}, {@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@debug}, {@errors_remount}]}, 0x1, 0x5fc, &(0x7f0000000600)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="cc0000000001010200000000000000000700000628000d8024000380060001004e210000060001004e200000060002004e240000060002004e2100001c000f800800014000000000080001400000000408000340000000920800034b000024020c001880080001400000000806001240000000002c0010800800034000000004080001400000000808000140000000ee0800034000000007080002400000800108001a40000000ff24000f800800014000000002080003400000000008000140000000010800034000000009"], 0xcc}, 0x1, 0x0, 0x0, 0x20008010}, 0x4048810)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = msgget$private(0x0, 0x0)
futex(&(0x7f0000000300), 0x2, 0x1, &(0x7f0000000400)={0x77359400}, &(0x7f00000004c0)=0x2, 0x2)
msgctl$IPC_SET(r3, 0x1, &(0x7f0000258f88)={{0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x400000000000})
msgsnd(r3, &(0x7f0000000380)=ANY=[@ANYBLOB="030000"], 0x0, 0x0)
msgrcv(r3, 0x0, 0x0, 0x3, 0x0)
msgctl$IPC_SET(r3, 0x1, &(0x7f0000258f88)={{0x1}, 0x0, 0x0, 0x800000000000000, 0x7, 0x2, 0x0, 0x3, 0xe8, 0x0, 0x0, 0x0, 0xffffffffffffffff})
msgctl$IPC_INFO(r3, 0x3, &(0x7f00000002c0)=""/14)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
symlinkat(0x0, 0xffffffffffffffff, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0xf, &(0x7f0000002400))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2000000, &(0x7f00000003c0), 0xff, 0x52e, &(0x7f0000000f00)="$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")

82.232549ms ago: executing program 1 (id=1029):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x80000000000}, 0x18)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r2, 0x0, 0x5, &(0x7f0000000240)={@local, @multicast2, 0xfffb, "66c5aff8a7eb3af1f6cec2e7420000008c84aea31700", 0x96bc, 0x1000000, 0x7e, 0x6b}, 0x3c)
setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000000080)=0x300, 0x4)

46.63549ms ago: executing program 0 (id=1030):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

340.54µs ago: executing program 1 (id=1032):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfe, 0x0, 0x7ffc0002}]})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, 0x0, 0x8, 0x1)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f0000000440)={[{@bsdgroups}, {@noblock_validity}, {@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@debug}, {@errors_remount}]}, 0x1, 0x5fc, &(0x7f0000000600)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="cc0000000001010200000000000000000700000628000d8024000380060001004e210000060001004e200000060002004e240000060002004e2100001c000f800800014000000000080001400000000408000340000000920800034b000024020c001880080001400000000806001240000000002c0010800800034000000004080001400000000808000140000000ee0800034000000007080002400000800108001a40000000ff24000f800800014000000002080003400000000008000140000000010800034000000009"], 0xcc}, 0x1, 0x0, 0x0, 0x20008010}, 0x4048810)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = msgget$private(0x0, 0x0)
futex(&(0x7f0000000300), 0x2, 0x1, &(0x7f0000000400)={0x77359400}, &(0x7f00000004c0)=0x2, 0x2)
msgctl$IPC_SET(r3, 0x1, &(0x7f0000258f88)={{0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x400000000000})
msgsnd(r3, &(0x7f0000000380)=ANY=[@ANYBLOB="030000"], 0x0, 0x0)
msgrcv(r3, 0x0, 0x0, 0x3, 0x0)
msgctl$IPC_SET(r3, 0x1, &(0x7f0000258f88)={{0x1}, 0x0, 0x0, 0x800000000000000, 0x7, 0x2, 0x0, 0x3, 0xe8, 0x0, 0x0, 0x0, 0xffffffffffffffff})
msgctl$IPC_INFO(r3, 0x3, &(0x7f00000002c0)=""/14)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
symlinkat(0x0, 0xffffffffffffffff, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0xf, &(0x7f0000002400)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r5, &(0x7f0000000040)="5400ffff0000", 0x6, 0x0, 0x0, 0x2}])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000000c0)='kfree\x00'}, 0x10)

0s ago: executing program 0 (id=1033):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001780)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x198)
pipe2$9p(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

kernel console output (not intermixed with test programs):

e 2 family 0 port 6081 - 0
[   81.373230][ T5297] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.535: Failed to acquire dquot type 1
[   81.385979][ T5297] EXT4-fs (loop4): 1 truncate cleaned up
[   81.392176][ T5297] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.415367][ T5307] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.461917][ T5307] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.474368][ T5307] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.495303][ T5307] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.507790][ T5307] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.531757][ T5329] netlink: 'syz.4.538': attribute type 1 has an invalid length.
[   81.540557][ T5329] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   81.812034][ T5336] loop4: detected capacity change from 0 to 164
[   81.848851][ T5336] isofs_fill_super: bread failed, dev=loop4, iso_blknum=41, block=82
[   82.002269][ T5340] loop2: detected capacity change from 0 to 512
[   82.010394][ T5340] EXT4-fs: inline encryption not supported
[   82.050645][ T5340] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   82.146479][ T5340] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.244868][ T5347] syz.1.544: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[   82.259426][ T5347] CPU: 0 UID: 0 PID: 5347 Comm: syz.1.544 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(voluntary) 
[   82.259480][ T5347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   82.259529][ T5347] Call Trace:
[   82.259536][ T5347]  <TASK>
[   82.259543][ T5347]  __dump_stack+0x1d/0x30
[   82.259563][ T5347]  dump_stack_lvl+0xe8/0x140
[   82.259579][ T5347]  dump_stack+0x15/0x1b
[   82.259640][ T5347]  warn_alloc+0x12b/0x1a0
[   82.259660][ T5347]  ? kmem_cache_free+0xdd/0x2f0
[   82.259681][ T5347]  __vmalloc_node_range_noprof+0x9c/0xdf0
[   82.259705][ T5347]  ? slow_avc_audit+0x104/0x140
[   82.259766][ T5347]  ? should_fail_ex+0x30/0x280
[   82.259795][ T5347]  ? xskq_create+0x36/0xe0
[   82.259878][ T5347]  ? should_failslab+0x8c/0xb0
[   82.259916][ T5347]  vmalloc_user_noprof+0x59/0x70
[   82.259946][ T5347]  ? xskq_create+0x80/0xe0
[   82.259969][ T5347]  xskq_create+0x80/0xe0
[   82.260051][ T5347]  xsk_init_queue+0x95/0xf0
[   82.260077][ T5347]  xsk_setsockopt+0x35c/0x510
[   82.260108][ T5347]  ? __pfx_xsk_setsockopt+0x10/0x10
[   82.260130][ T5347]  __sys_setsockopt+0x181/0x200
[   82.260229][ T5347]  ? fpregs_restore_userregs+0xbb/0x190
[   82.260258][ T5347]  __x64_sys_setsockopt+0x64/0x80
[   82.260286][ T5347]  x64_sys_call+0x2bd5/0x2fb0
[   82.260307][ T5347]  do_syscall_64+0xd0/0x1a0
[   82.260326][ T5347]  ? clear_bhb_loop+0x25/0x80
[   82.260344][ T5347]  ? clear_bhb_loop+0x25/0x80
[   82.260363][ T5347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.260390][ T5347] RIP: 0033:0x7f0d2a73e969
[   82.260495][ T5347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.260512][ T5347] RSP: 002b:00007f0d28da7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   82.260528][ T5347] RAX: ffffffffffffffda RBX: 00007f0d2a965fa0 RCX: 00007f0d2a73e969
[   82.260539][ T5347] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000006
[   82.260549][ T5347] RBP: 00007f0d2a7c0ab1 R08: 0000000000000004 R09: 0000000000000000
[   82.260560][ T5347] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[   82.260584][ T5347] R13: 0000000000000000 R14: 00007f0d2a965fa0 R15: 00007ffe9df56338
[   82.260606][ T5347]  </TASK>
[   82.260616][ T5347] Mem-Info:
[   82.483591][ T5347] active_anon:8345 inactive_anon:0 isolated_anon:0
[   82.483591][ T5347]  active_file:6043 inactive_file:2222 isolated_file:0
[   82.483591][ T5347]  unevictable:0 dirty:327 writeback:0
[   82.483591][ T5347]  slab_reclaimable:2951 slab_unreclaimable:13494
[   82.483591][ T5347]  mapped:32145 shmem:3116 pagetables:928
[   82.483591][ T5347]  sec_pagetables:0 bounce:0
[   82.483591][ T5347]  kernel_misc_reclaimable:0
[   82.483591][ T5347]  free:1912024 free_pcp:1544 free_cma:0
[   82.528335][ T5347] Node 0 active_anon:33380kB inactive_anon:0kB active_file:24172kB inactive_file:8888kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:128580kB dirty:1308kB writeback:0kB shmem:12464kB writeback_tmp:0kB kernel_stack:2944kB pagetables:3712kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   82.557450][ T5347] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   82.584429][ T5347] lowmem_reserve[]: 0 2884 7863 7863
[   82.589861][ T5347] Node 0 DMA32 free:2950036kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953568kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[   82.618542][ T5347] lowmem_reserve[]: 0 0 4978 4978
[   82.623736][ T5347] Node 0 Normal free:4682628kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:33328kB inactive_anon:0kB active_file:24172kB inactive_file:8844kB unevictable:0kB writepending:1272kB present:5242880kB managed:5098244kB mlocked:0kB bounce:0kB free_pcp:2912kB local_pcp:1624kB free_cma:0kB
[   82.653962][ T5347] lowmem_reserve[]: 0 0 0 0
[   82.658588][ T5347] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   82.671472][ T5347] Node 0 DMA32: 5*4kB (M) 2*8kB (M) 3*16kB (M) 4*32kB (M) 3*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2950036kB
[   82.687668][ T5347] Node 0 Normal: 408*4kB (UME) 192*8kB (UME) 100*16kB (UME) 98*32kB (UME) 117*64kB (UME) 51*128kB (UM) 13*256kB (UM) 10*512kB (UME) 3*1024kB (ME) 4*2048kB (UME) 1133*4096kB (M) = 4682400kB
[   82.706706][ T5347] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[   82.716035][ T5347] 11353 total pagecache pages
[   82.720708][ T5347] 0 pages in swap cache
[   82.724894][ T5347] Free swap  = 124996kB
[   82.729142][ T5347] Total swap = 124996kB
[   82.733334][ T5347] 2097051 pages RAM
[   82.737187][ T5347] 0 pages HighMem/MovableOnly
[   82.741934][ T5347] 80258 pages reserved
[   82.993045][ T5351] __nla_validate_parse: 1 callbacks suppressed
[   82.993064][ T5351] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   82.996134][ T5354] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   83.068644][ T5375] netlink: 8 bytes leftover after parsing attributes in process `syz.0.554'.
[   83.088091][ T5377] loop3: detected capacity change from 0 to 512
[   83.103828][ T5377] EXT4-fs: inline encryption not supported
[   83.115492][ T5377] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   83.134196][ T5377] ext4 filesystem being mounted at /110/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.523866][ T5381] loop3: detected capacity change from 0 to 1024
[   83.531854][ T5381] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   83.540432][ T5381] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   83.552432][ T5381] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   83.561861][ T5381] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.556: lblock 2 mapped to illegal pblock 2 (length 1)
[   83.576194][ T5381] EXT4-fs (loop3): Remounting filesystem read-only
[   83.582888][ T5381] EXT4-fs (loop3): 1 orphan inode deleted
[   83.633431][ T5384] netlink: 16 bytes leftover after parsing attributes in process `syz.0.557'.
[   83.643948][ T5384] netlink: 92 bytes leftover after parsing attributes in process `syz.0.557'.
[   83.717355][   T29] kauditd_printk_skb: 304 callbacks suppressed
[   83.717375][   T29] audit: type=1326 audit(1746768450.648:5215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5362 comm="syz.2.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa8ddbe969 code=0x7fc00000
[   83.756490][   T29] audit: type=1326 audit(1746768450.688:5216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5386 comm="syz.2.558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   83.780040][   T29] audit: type=1326 audit(1746768450.688:5217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5386 comm="syz.2.558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   83.803449][   T29] audit: type=1326 audit(1746768450.688:5218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5386 comm="syz.2.558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   83.826955][   T29] audit: type=1326 audit(1746768450.688:5219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5386 comm="syz.2.558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   83.832631][ T5390] loop0: detected capacity change from 0 to 512
[   83.850601][   T29] audit: type=1326 audit(1746768450.688:5220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5386 comm="syz.2.558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   83.866779][ T5390] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   83.880075][   T29] audit: type=1326 audit(1746768450.688:5221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5386 comm="syz.2.558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   83.911970][   T29] audit: type=1326 audit(1746768450.688:5222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5386 comm="syz.2.558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   83.935607][   T29] audit: type=1326 audit(1746768450.688:5223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5386 comm="syz.2.558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   83.959081][   T29] audit: type=1326 audit(1746768450.688:5224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5386 comm="syz.2.558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   83.983800][ T5390] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.560: invalid indirect mapped block 4294967295 (level 1)
[   83.998580][ T5390] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.560: invalid indirect mapped block 4294967295 (level 1)
[   84.013922][ T5390] EXT4-fs (loop0): 2 truncates cleaned up
[   84.102298][ T5404] netlink: 'syz.4.563': attribute type 1 has an invalid length.
[   84.110106][ T5404] netlink: 152 bytes leftover after parsing attributes in process `syz.4.563'.
[   84.136358][ T5404] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   84.317871][ T5412] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   84.374954][ T5422] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   84.387176][ T5435] wireguard0: entered promiscuous mode
[   84.392758][ T5435] wireguard0: entered allmulticast mode
[   84.407904][ T5438] loop0: detected capacity change from 0 to 1024
[   84.418064][ T5438] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   84.444721][ T5438] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   84.469118][ T5438] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   84.481572][ T5438] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.567: lblock 2 mapped to illegal pblock 2 (length 1)
[   84.497214][ T5438] EXT4-fs (loop0): Remounting filesystem read-only
[   84.521270][ T5438] EXT4-fs (loop0): 1 orphan inode deleted
[   84.642859][ T5453] loop3: detected capacity change from 0 to 1024
[   84.678727][ T5453] FAULT_INJECTION: forcing a failure.
[   84.678727][ T5453] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   84.691885][ T5453] CPU: 1 UID: 0 PID: 5453 Comm: syz.3.571 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(voluntary) 
[   84.691992][ T5453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   84.692059][ T5453] Call Trace:
[   84.692069][ T5453]  <TASK>
[   84.692078][ T5453]  __dump_stack+0x1d/0x30
[   84.692101][ T5453]  dump_stack_lvl+0xe8/0x140
[   84.692124][ T5453]  dump_stack+0x15/0x1b
[   84.692145][ T5453]  should_fail_ex+0x265/0x280
[   84.692185][ T5453]  should_fail+0xb/0x20
[   84.692283][ T5453]  should_fail_usercopy+0x1a/0x20
[   84.692300][ T5453]  strncpy_from_user+0x25/0x230
[   84.692335][ T5453]  path_setxattrat+0xeb/0x310
[   84.692413][ T5453]  __x64_sys_setxattr+0x6e/0x90
[   84.692527][ T5453]  x64_sys_call+0x28a7/0x2fb0
[   84.692553][ T5453]  do_syscall_64+0xd0/0x1a0
[   84.692580][ T5453]  ? clear_bhb_loop+0x25/0x80
[   84.692686][ T5453]  ? clear_bhb_loop+0x25/0x80
[   84.692783][ T5453]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.692816][ T5453] RIP: 0033:0x7efdee04e969
[   84.692833][ T5453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.692934][ T5453] RSP: 002b:00007efdec6b7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[   84.692956][ T5453] RAX: ffffffffffffffda RBX: 00007efdee275fa0 RCX: 00007efdee04e969
[   84.692972][ T5453] RDX: 00002000000001c0 RSI: 0000200000000180 RDI: 0000200000000000
[   84.692988][ T5453] RBP: 00007efdec6b7090 R08: 0000000000000001 R09: 0000000000000000
[   84.693003][ T5453] R10: 000000000000036d R11: 0000000000000246 R12: 0000000000000001
[   84.693037][ T5453] R13: 0000000000000000 R14: 00007efdee275fa0 R15: 00007fff92333408
[   84.693054][ T5453]  </TASK>
[   84.697633][ T5457] loop1: detected capacity change from 0 to 512
[   84.745803][ T5459] loop2: detected capacity change from 0 to 512
[   84.749973][ T5457] EXT4-fs: inline encryption not supported
[   84.784263][ T5459] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   84.803505][ T5457] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   84.859081][ T5459] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.573: invalid indirect mapped block 4294967295 (level 1)
[   84.883711][ T5457] ext4 filesystem being mounted at /126/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.889250][ T5459] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.573: invalid indirect mapped block 4294967295 (level 1)
[   84.945943][ T5459] EXT4-fs (loop2): 2 truncates cleaned up
[   85.030877][ T5471] loop2: detected capacity change from 0 to 1024
[   85.050039][ T5471] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   85.069588][ T5471] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   85.081846][ T5471] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   85.090823][ T5471] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 2: comm syz.2.577: lblock 2 mapped to illegal pblock 2 (length 1)
[   85.106575][ T5471] EXT4-fs (loop2): Remounting filesystem read-only
[   85.113373][ T5471] EXT4-fs (loop2): 1 orphan inode deleted
[   85.359063][ T5489] serio: Serial port ptm0
[   85.647808][ T5497] C: renamed from team_slave_0 (while UP)
[   85.655300][ T5497] netlink: 'syz.1.586': attribute type 1 has an invalid length.
[   85.663071][ T5497] netlink: 152 bytes leftover after parsing attributes in process `syz.1.586'.
[   85.672837][ T5497] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   85.746793][ T5503] netlink: 188 bytes leftover after parsing attributes in process `syz.1.589'.
[   85.801685][ T5505] loop1: detected capacity change from 0 to 4096
[   85.824288][ T5505] EXT4-fs error (device loop1): ext4_get_first_dir_block:3547: inode #12: block 80: comm syz.1.590: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[   85.852292][ T5505] EXT4-fs error (device loop1): ext4_get_first_dir_block:3549: inode #12: comm syz.1.590: directory missing '..'
[   85.921701][ T5512] 0·: renamed from hsr_slave_1 (while UP)
[   85.934562][ T5512] 0·: entered allmulticast mode
[   85.941040][ T5512] A link change request failed with some changes committed already. Interface 
c0· may have been left with an inconsistent configuration, please check.
[   85.958619][ T5515] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   86.024707][ T5519] loop1: detected capacity change from 0 to 256
[   86.054723][ T5519] FAT-fs (loop1): Directory bread(block 64) failed
[   86.061335][ T5519] FAT-fs (loop1): Directory bread(block 65) failed
[   86.068119][ T5519] FAT-fs (loop1): Directory bread(block 66) failed
[   86.074973][ T5519] FAT-fs (loop1): Directory bread(block 67) failed
[   86.081912][ T5519] FAT-fs (loop1): Directory bread(block 68) failed
[   86.088686][ T5519] FAT-fs (loop1): Directory bread(block 69) failed
[   86.095389][ T5519] FAT-fs (loop1): Directory bread(block 70) failed
[   86.102423][ T5519] FAT-fs (loop1): Directory bread(block 71) failed
[   86.109109][ T5519] FAT-fs (loop1): Directory bread(block 72) failed
[   86.116895][ T5519] FAT-fs (loop1): Directory bread(block 73) failed
[   86.128939][ T5515] syz.1.594: attempt to access beyond end of device
[   86.128939][ T5515] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256
[   86.156921][ T5524] netlink: 'syz.0.598': attribute type 1 has an invalid length.
[   86.164698][ T5524] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   86.206367][ T5527] loop4: detected capacity change from 0 to 1024
[   86.227529][ T5529] loop2: detected capacity change from 0 to 1024
[   86.250713][ T5529] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   86.260575][ T5529] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   86.281937][ T5529] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   86.298774][ T5529] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: inode #5: comm syz.2.600: unexpected bad inode w/o EXT4_IGET_BAD
[   86.321732][ T5527] lo: entered promiscuous mode
[   86.326634][ T5527] lo: entered allmulticast mode
[   86.326843][ T5537] loop0: detected capacity change from 0 to 1024
[   86.340505][ T5529] EXT4-fs (loop2): no journal found
[   86.345845][ T5529] EXT4-fs (loop2): can't get journal size
[   86.354814][ T5537] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   86.364669][ T5537] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   86.382958][ T5537] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   86.395737][ T5527] infiniband syo1: set active
[   86.400488][ T5527] infiniband syo1: added veth0_to_bridge
[   86.406619][ T5539] FAULT_INJECTION: forcing a failure.
[   86.406619][ T5539] name failslab, interval 1, probability 0, space 0, times 1
[   86.413333][ T5537] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: inode #5: comm syz.0.603: unexpected bad inode w/o EXT4_IGET_BAD
[   86.419269][ T5539] CPU: 0 UID: 0 PID: 5539 Comm: syz.4.599 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(voluntary) 
[   86.419326][ T5539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   86.419341][ T5539] Call Trace:
[   86.419350][ T5539]  <TASK>
[   86.419360][ T5539]  __dump_stack+0x1d/0x30
[   86.419402][ T5539]  dump_stack_lvl+0xe8/0x140
[   86.419430][ T5539]  dump_stack+0x15/0x1b
[   86.419451][ T5539]  should_fail_ex+0x265/0x280
[   86.419494][ T5539]  should_failslab+0x8c/0xb0
[   86.419592][ T5539]  kmem_cache_alloc_noprof+0x50/0x310
[   86.419635][ T5539]  ? getname_flags+0x80/0x3b0
[   86.419698][ T5539]  ? vfs_write+0x75e/0x8d0
[   86.419729][ T5539]  getname_flags+0x80/0x3b0
[   86.419768][ T5539]  user_path_at+0x28/0x130
[   86.419793][ T5539]  vfs_open_tree+0xef/0x540
[   86.419851][ T5539]  __x64_sys_open_tree+0x45/0xc0
[   86.419881][ T5539]  x64_sys_call+0x28d3/0x2fb0
[   86.419909][ T5539]  do_syscall_64+0xd0/0x1a0
[   86.419976][ T5539]  ? clear_bhb_loop+0x25/0x80
[   86.420004][ T5539]  ? clear_bhb_loop+0x25/0x80
[   86.420031][ T5539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.420059][ T5539] RIP: 0033:0x7f1bceaae969
[   86.420079][ T5539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.420178][ T5539] RSP: 002b:00007f1bcd0f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ac
[   86.420202][ T5539] RAX: ffffffffffffffda RBX: 00007f1bcecd6080 RCX: 00007f1bceaae969
[   86.420218][ T5539] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000000
[   86.420234][ T5539] RBP: 00007f1bcd0f6090 R08: 0000000000000000 R09: 0000000000000000
[   86.420284][ T5539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.420300][ T5539] R13: 0000000000000001 R14: 00007f1bcecd6080 R15: 00007ffe6d179208
[   86.420325][ T5539]  </TASK>
[   86.463986][ T5527] RDS/IB: syo1: added
[   86.467653][ T5537] EXT4-fs (loop0): no journal found
[   86.471250][ T5529] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.474434][ T5537] EXT4-fs (loop0): can't get journal size
[   86.482365][ T5527] smc: adding ib device syo1 with port count 1
[   86.555380][ T5542] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   86.566145][ T5527] smc:    ib device syo1 port 1 has pnetid 
[   86.575172][ T5542] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   86.673036][ T5543] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   86.682799][ T5529] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.692041][ T5543] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   86.756516][ T5547] loop3: detected capacity change from 0 to 512
[   86.763736][ T5547] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   86.763981][ T5529] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.785961][ T5547] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.605: invalid indirect mapped block 4294967295 (level 1)
[   86.803247][ T5547] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.605: invalid indirect mapped block 4294967295 (level 1)
[   86.821279][ T5547] EXT4-fs (loop3): 2 truncates cleaned up
[   86.863134][ T5529] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.916461][ T5554] netlink: 'syz.1.607': attribute type 4 has an invalid length.
[   86.933707][ T5529] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.948280][ T5554] netlink: 'syz.1.607': attribute type 4 has an invalid length.
[   87.012896][ T5529] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.045454][ T5529] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.066497][ T5529] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.093668][ T5563] netlink: 'syz.1.611': attribute type 1 has an invalid length.
[   87.102781][ T5563] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   87.138180][ T5565] loop1: detected capacity change from 0 to 512
[   87.146143][ T5565] EXT4-fs: inline encryption not supported
[   87.153115][ T5565] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   87.173815][ T5565] ext4 filesystem being mounted at /144/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.492170][ T5574] loop1: detected capacity change from 0 to 1024
[   87.503469][ T5574] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   87.512390][ T5574] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   87.523903][ T5574] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   87.533147][ T5574] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.615: lblock 2 mapped to illegal pblock 2 (length 1)
[   87.547186][ T5574] EXT4-fs (loop1): Remounting filesystem read-only
[   87.553973][ T5574] EXT4-fs (loop1): 1 orphan inode deleted
[   87.624340][ T5577] syzkaller0: entered promiscuous mode
[   87.629868][ T5577] syzkaller0: entered allmulticast mode
[   87.986885][ T5599] ip6gretap1: entered allmulticast mode
[   88.091956][ T5603] netlink: 'syz.4.628': attribute type 1 has an invalid length.
[   88.099664][ T5603] __nla_validate_parse: 8 callbacks suppressed
[   88.099677][ T5603] netlink: 152 bytes leftover after parsing attributes in process `syz.4.628'.
[   88.115825][ T5603] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   88.297215][ T5614] netlink: 16 bytes leftover after parsing attributes in process `syz.4.633'.
[   88.445007][ T5628] netlink: 16 bytes leftover after parsing attributes in process `syz.1.639'.
[   88.455548][ T5628] netlink: 92 bytes leftover after parsing attributes in process `syz.1.639'.
[   88.506810][ T5630] netlink: 'syz.4.640': attribute type 1 has an invalid length.
[   88.514771][ T5630] netlink: 152 bytes leftover after parsing attributes in process `syz.4.640'.
[   88.524706][ T5630] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   88.690827][ T5641] loop4: detected capacity change from 0 to 1024
[   88.699835][ T5641] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   88.713562][ T5641] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   88.726351][ T5641] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   88.754308][   T29] kauditd_printk_skb: 306 callbacks suppressed
[   88.754328][   T29] audit: type=1400 audit(1746768455.678:5523): avc:  denied  { wake_alarm } for  pid=5646 comm="syz.3.648" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   88.764052][ T5641] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.645: lblock 2 mapped to illegal pblock 2 (length 1)
[   88.795991][ T5641] EXT4-fs (loop4): Remounting filesystem read-only
[   88.802731][ T5641] Quota error (device loop4): qtree_write_dquot: dquota write failed
[   88.814129][ T5647] ip6gretap1: entered allmulticast mode
[   88.830511][ T5641] Quota error (device loop4): v2_write_file_info: Can't write info structure
[   88.839468][ T5641] EXT4-fs (loop4): 1 orphan inode deleted
[   88.839693][ T5650] netlink: 16 bytes leftover after parsing attributes in process `syz.0.649'.
[   88.855589][   T29] audit: type=1326 audit(1746768455.788:5524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1bceaad2d0 code=0x7ffc0000
[   88.884105][   T29] audit: type=1326 audit(1746768455.788:5525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1bceaae56b code=0x7ffc0000
[   88.907790][   T29] audit: type=1326 audit(1746768455.788:5526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1bceaad5ca code=0x7ffc0000
[   88.931730][   T29] audit: type=1326 audit(1746768455.788:5527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   88.956527][   T29] audit: type=1326 audit(1746768455.798:5528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   88.982724][   T29] audit: type=1326 audit(1746768455.858:5529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   89.006194][   T29] audit: type=1326 audit(1746768455.858:5530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.4.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   89.053670][ T5641] loop4: detected capacity change from 0 to 512
[   89.079102][ T5641] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.645: Failed to acquire dquot type 1
[   89.097345][ T5659] syz.3.651 uses obsolete (PF_INET,SOCK_PACKET)
[   89.107041][ T5641] EXT4-fs (loop4): 1 truncate cleaned up
[   89.122378][ T5641] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.143975][ T5660] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5660 comm=syz.2.650
[   89.206583][ T5664] netlink: 'syz.0.653': attribute type 1 has an invalid length.
[   89.214362][ T5664] netlink: 152 bytes leftover after parsing attributes in process `syz.0.653'.
[   89.223448][ T5664] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   89.324523][ T5676] loop0: detected capacity change from 0 to 512
[   89.335244][ T5676] EXT4-fs: inline encryption not supported
[   89.347624][ T5676] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   89.366479][ T5676] ext4 filesystem being mounted at /126/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.468032][ T5682] loop1: detected capacity change from 0 to 512
[   89.477046][ T5682] EXT4-fs: inline encryption not supported
[   89.493834][ T5682] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   89.533141][ T5682] ext4 filesystem being mounted at /153/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.676474][ T5686] netlink: 188 bytes leftover after parsing attributes in process `syz.1.661'.
[   89.708038][ T5688] loop1: detected capacity change from 0 to 512
[   89.714906][ T5688] EXT4-fs: inline encryption not supported
[   89.721996][ T5688] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   89.746493][ T5688] ext4 filesystem being mounted at /155/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.904055][ T5696] netlink: 16 bytes leftover after parsing attributes in process `syz.2.664'.
[   89.946692][ T5700] netlink: 'syz.1.666': attribute type 1 has an invalid length.
[   89.954567][ T5700] netlink: 152 bytes leftover after parsing attributes in process `syz.1.666'.
[   89.964575][ T5700] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   90.086592][ T5710] loop0: detected capacity change from 0 to 512
[   90.093496][ T5710] EXT4-fs: inline encryption not supported
[   90.105579][ T5710] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   90.138865][ T5710] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.195396][ T5718] loop2: detected capacity change from 0 to 512
[   90.214737][ T5718] EXT4-fs: inline encryption not supported
[   90.265726][ T5718] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   90.295045][ T5718] ext4 filesystem being mounted at /120/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.308585][ T5726] loop4: detected capacity change from 0 to 512
[   90.316375][ T5726] ext4: Unknown parameter 'obj_type'
[   90.332415][ T5734] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5734 comm=syz.1.676
[   90.340446][ T5729] loop3: detected capacity change from 0 to 512
[   90.405520][ T5729] ext4: Unknown parameter 'obj_type'
[   90.613909][ T5747] loop0: detected capacity change from 0 to 256
[   90.819984][ T5751] loop0: detected capacity change from 0 to 1024
[   90.827515][ T5751] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   90.836438][ T5751] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   90.847419][ T5751] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   90.856499][ T5751] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.686: lblock 2 mapped to illegal pblock 2 (length 1)
[   90.870471][ T5751] EXT4-fs (loop0): Remounting filesystem read-only
[   90.877120][ T5751] EXT4-fs (loop0): 1 orphan inode deleted
[   91.001234][ T5751] loop0: detected capacity change from 0 to 512
[   91.022993][ T5751] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.686: Failed to acquire dquot type 1
[   91.038017][ T5751] EXT4-fs (loop0): 1 truncate cleaned up
[   91.044547][ T5751] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.147413][ T5768] loop4: detected capacity change from 0 to 1024
[   91.158069][ T5768] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   91.171614][ T5768] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   91.206036][ T5768] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   91.227277][ T5775] loop0: detected capacity change from 0 to 512
[   91.238882][ T5768] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.692: lblock 2 mapped to illegal pblock 2 (length 1)
[   91.275571][ T5775] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.287604][ T5768] EXT4-fs (loop4): Remounting filesystem read-only
[   91.296657][ T5768] EXT4-fs (loop4): 1 orphan inode deleted
[   91.316560][ T5771] syz.1.693 (5771) used greatest stack depth: 9736 bytes left
[   91.337985][ T5781] loop1: detected capacity change from 0 to 1024
[   91.352730][ T5781] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   91.362584][ T5781] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   91.383422][ T5785] loop0: detected capacity change from 0 to 1024
[   91.395792][ T5785] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   91.406500][ T5781] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   91.416624][ T5785] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   91.428203][ T5781] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: inode #5: comm syz.1.697: unexpected bad inode w/o EXT4_IGET_BAD
[   91.443867][ T5781] EXT4-fs (loop1): no journal found
[   91.449122][ T5781] EXT4-fs (loop1): can't get journal size
[   91.458899][ T5785] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   91.477564][ T5785] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.707: lblock 2 mapped to illegal pblock 2 (length 1)
[   91.491724][ T5785] EXT4-fs (loop0): Remounting filesystem read-only
[   91.498639][ T5785] EXT4-fs (loop0): 1 orphan inode deleted
[   91.524193][ T5781] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.573436][ T5781] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.574192][ T5797] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.585878][ T5798] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5798 comm=syz.3.699
[   91.593528][ T5797] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.653624][ T5781] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.703547][ T5781] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.761418][ T5813] loop0: detected capacity change from 0 to 1024
[   91.768830][ T5813] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   91.777829][ T5813] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   91.793053][ T5814] 9pnet_fd: Insufficient options for proto=fd
[   91.817853][ T5781] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.840077][ T5781] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.849091][ T5813] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   91.860313][ T5781] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.860563][ T5813] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.705: lblock 2 mapped to illegal pblock 2 (length 1)
[   91.872547][ T5781] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.892843][ T5813] EXT4-fs (loop0): Remounting filesystem read-only
[   91.904000][ T5813] EXT4-fs (loop0): 1 orphan inode deleted
[   91.953537][ T5817] FAULT_INJECTION: forcing a failure.
[   91.953537][ T5817] name failslab, interval 1, probability 0, space 0, times 0
[   91.966281][ T5817] CPU: 1 UID: 0 PID: 5817 Comm: syz.2.704 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(voluntary) 
[   91.966315][ T5817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   91.966331][ T5817] Call Trace:
[   91.966340][ T5817]  <TASK>
[   91.966424][ T5817]  __dump_stack+0x1d/0x30
[   91.966451][ T5817]  dump_stack_lvl+0xe8/0x140
[   91.966475][ T5817]  dump_stack+0x15/0x1b
[   91.966495][ T5817]  should_fail_ex+0x265/0x280
[   91.966534][ T5817]  ? copy_cgroup_ns+0x162/0x370
[   91.966620][ T5817]  should_failslab+0x8c/0xb0
[   91.966731][ T5817]  __kmalloc_cache_noprof+0x4c/0x320
[   91.966750][ T5817]  ? inc_ucount+0xcb/0x140
[   91.966789][ T5817]  copy_cgroup_ns+0x162/0x370
[   91.966826][ T5817]  create_new_namespaces+0x1c2/0x410
[   91.966864][ T5817]  unshare_nsproxy_namespaces+0xe8/0x120
[   91.966978][ T5817]  ksys_unshare+0x3d0/0x6d0
[   91.967009][ T5817]  __x64_sys_unshare+0x1f/0x30
[   91.967036][ T5817]  x64_sys_call+0x2d4b/0x2fb0
[   91.967056][ T5817]  do_syscall_64+0xd0/0x1a0
[   91.967136][ T5817]  ? clear_bhb_loop+0x25/0x80
[   91.967163][ T5817]  ? clear_bhb_loop+0x25/0x80
[   91.967190][ T5817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.967277][ T5817] RIP: 0033:0x7ffa8ddbe969
[   91.967296][ T5817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.967314][ T5817] RSP: 002b:00007ffa8c3e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[   91.967334][ T5817] RAX: ffffffffffffffda RBX: 00007ffa8dfe6160 RCX: 00007ffa8ddbe969
[   91.967419][ T5817] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000062040200
[   91.967434][ T5817] RBP: 00007ffa8c3e5090 R08: 0000000000000000 R09: 0000000000000000
[   91.967448][ T5817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.967463][ T5817] R13: 0000000000000000 R14: 00007ffa8dfe6160 R15: 00007ffe6c27e158
[   91.967487][ T5817]  </TASK>
[   92.416866][ T5819] loop3: detected capacity change from 0 to 512
[   92.457059][ T5819] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   92.554199][ T5819] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.706: invalid indirect mapped block 4294967295 (level 1)
[   92.591696][ T5819] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.706: invalid indirect mapped block 4294967295 (level 1)
[   92.652266][ T5819] EXT4-fs (loop3): 2 truncates cleaned up
[   92.699953][ T5824] loop2: detected capacity change from 0 to 512
[   92.735512][ T5824] ext4 filesystem being mounted at /126/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.786007][ T5835] loop3: detected capacity change from 0 to 1024
[   92.800261][ T5835] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   92.814414][ T5813] loop0: detected capacity change from 0 to 512
[   92.815784][ T5835] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   92.843425][ T5835] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   92.844225][ T5813] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.705: Failed to acquire dquot type 1
[   92.853496][ T5835] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.713: lblock 2 mapped to illegal pblock 2 (length 1)
[   92.863898][ T5813] EXT4-fs (loop0): 1 truncate cleaned up
[   92.878060][ T5835] EXT4-fs (loop3): Remounting filesystem read-only
[   92.883333][ T5813] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.900633][ T5835] EXT4-fs (loop3): 1 orphan inode deleted
[   93.033548][ T5847] loop0: detected capacity change from 0 to 1024
[   93.040703][ T5847] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   93.049464][ T5847] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   93.070543][ T5847] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   93.080422][ T5847] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.716: lblock 2 mapped to illegal pblock 2 (length 1)
[   93.094640][ T5847] EXT4-fs (loop0): Remounting filesystem read-only
[   93.101719][ T5847] EXT4-fs (loop0): 1 orphan inode deleted
[   93.232920][ T5853] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5853 comm=syz.1.717
[   93.675482][ T5866] loop2: detected capacity change from 0 to 512
[   93.683729][ T5866] EXT4-fs: inline encryption not supported
[   93.695120][ T5866] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   93.716676][ T5866] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.832706][ T5876] 9pnet_fd: Insufficient options for proto=fd
[   93.860881][   T29] kauditd_printk_skb: 583 callbacks suppressed
[   93.860919][   T29] audit: type=1326 audit(1746768460.788:6094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5877 comm="syz.4.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   93.915406][   T29] audit: type=1326 audit(1746768460.818:6095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5877 comm="syz.4.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   93.939005][   T29] audit: type=1326 audit(1746768460.818:6096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5877 comm="syz.4.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   93.962593][   T29] audit: type=1326 audit(1746768460.828:6097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5877 comm="syz.4.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   93.985982][   T29] audit: type=1326 audit(1746768460.828:6098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5877 comm="syz.4.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   94.009411][   T29] audit: type=1326 audit(1746768460.828:6099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5877 comm="syz.4.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   94.025621][ T5884] loop1: detected capacity change from 0 to 1024
[   94.032854][   T29] audit: type=1326 audit(1746768460.828:6100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5877 comm="syz.4.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   94.062603][   T29] audit: type=1326 audit(1746768460.828:6101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5877 comm="syz.4.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   94.083200][ T5884] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   94.086126][   T29] audit: type=1326 audit(1746768460.828:6102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5877 comm="syz.4.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[   94.115113][ T5884] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   94.129006][   T29] audit: type=1326 audit(1746768460.948:6103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5883 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d2a73e969 code=0x7ffc0000
[   94.166801][ T5884] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   94.183289][ T5884] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.728: lblock 2 mapped to illegal pblock 2 (length 1)
[   94.197480][ T5884] EXT4-fs (loop1): Remounting filesystem read-only
[   94.218836][ T5889] loop4: detected capacity change from 0 to 512
[   94.227307][ T5884] EXT4-fs (loop1): 1 orphan inode deleted
[   94.249140][ T5889] EXT4-fs: inline encryption not supported
[   94.275768][ T5889] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   94.304539][ T5889] ext4 filesystem being mounted at /144/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.583976][ T5907] loop3: detected capacity change from 0 to 512
[   94.592342][ T5907] EXT4-fs: inline encryption not supported
[   94.600109][ T5907] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   94.625364][ T5909] __nla_validate_parse: 9 callbacks suppressed
[   94.625383][ T5909] netlink: 16 bytes leftover after parsing attributes in process `syz.2.737'.
[   94.646582][ T5909] netlink: 92 bytes leftover after parsing attributes in process `syz.2.737'.
[   94.675333][ T5907] ext4 filesystem being mounted at /143/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.732691][ T5905] syz.1.735 (5905) used greatest stack depth: 9640 bytes left
[   94.755869][ T5913] netlink: 260 bytes leftover after parsing attributes in process `syz.1.738'.
[   94.842081][ T5917] loop1: detected capacity change from 0 to 1024
[   94.851717][ T5917] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   94.860798][ T5921] loop2: detected capacity change from 0 to 1024
[   94.861035][ T5917] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   94.868664][ T5921] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   94.888897][ T5921] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   94.899919][ T5917] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   94.909223][ T5917] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.740: lblock 2 mapped to illegal pblock 2 (length 1)
[   94.914336][ T5921] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   94.931555][ T5917] EXT4-fs (loop1): Remounting filesystem read-only
[   94.933611][ T5921] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 2: comm syz.2.742: lblock 2 mapped to illegal pblock 2 (length 1)
[   94.952099][ T5917] EXT4-fs (loop1): 1 orphan inode deleted
[   94.957320][ T5921] EXT4-fs (loop2): Remounting filesystem read-only
[   94.964589][ T5921] EXT4-fs (loop2): 1 orphan inode deleted
[   95.087584][ T5917] loop1: detected capacity change from 0 to 512
[   95.115250][ T5921] loop2: detected capacity change from 0 to 512
[   95.121852][ T5917] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.740: Failed to acquire dquot type 1
[   95.138625][ T5917] EXT4-fs (loop1): 1 truncate cleaned up
[   95.149468][ T5921] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.742: Failed to acquire dquot type 1
[   95.161622][ T5917] ext4 filesystem being mounted at /176/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.173101][ T5921] EXT4-fs (loop2): 1 truncate cleaned up
[   95.179728][ T5921] ext4 filesystem being mounted at /130/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.229607][ T5928] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   95.310947][ T5937] loop4: detected capacity change from 0 to 1024
[   95.343479][ T5937] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   95.354471][ T5943] loop2: detected capacity change from 0 to 512
[   95.361444][ T5937] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   95.368671][ T5943] EXT4-fs: inline encryption not supported
[   95.392232][ T5937] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   95.403649][ T5937] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.744: lblock 2 mapped to illegal pblock 2 (length 1)
[   95.417923][ T5943] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   95.427304][ T5937] EXT4-fs (loop4): Remounting filesystem read-only
[   95.434749][ T5937] EXT4-fs (loop4): 1 orphan inode deleted
[   95.450250][ T5945] loop1: detected capacity change from 0 to 1024
[   95.457974][ T5943] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.475281][ T5945] EXT4-fs: Mount option(s) incompatible with ext2
[   95.501240][ T5941] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   95.713567][ T5960] netlink: 260 bytes leftover after parsing attributes in process `syz.0.750'.
[   95.723620][ T5959] loop3: detected capacity change from 0 to 512
[   95.743532][ T5959] EXT4-fs: test_dummy_encryption option not supported
[   96.175669][ T5970] loop2: detected capacity change from 0 to 1024
[   96.184743][ T5970] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   96.200900][ T5970] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   96.226929][ T5970] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   96.242360][ T5970] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 2: comm syz.2.756: lblock 2 mapped to illegal pblock 2 (length 1)
[   96.256574][ T5970] EXT4-fs (loop2): Remounting filesystem read-only
[   96.263414][ T5970] EXT4-fs (loop2): 1 orphan inode deleted
[   96.397464][ T5986] loop1: detected capacity change from 0 to 512
[   96.405818][ T5986] EXT4-fs: inline encryption not supported
[   96.417870][ T5987] loop2: detected capacity change from 0 to 512
[   96.427697][ T5986] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   96.438859][ T5987] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.756: Failed to acquire dquot type 1
[   96.452838][ T5987] EXT4-fs (loop2): 1 truncate cleaned up
[   96.459335][ T5987] ext4 filesystem being mounted at /133/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.555088][ T5986] ext4 filesystem being mounted at /181/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.770172][ T6019] netlink: 16 bytes leftover after parsing attributes in process `syz.4.765'.
[   96.791821][ T6018] loop2: detected capacity change from 0 to 1024
[   96.804632][ T6019] netlink: 92 bytes leftover after parsing attributes in process `syz.4.765'.
[   96.829553][ T6018] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   96.859274][ T6018] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   96.863478][ T6026] loop1: detected capacity change from 0 to 512
[   96.884328][ T6026] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   96.893110][ T6018] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   96.903512][ T6018] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 2: comm syz.2.764: lblock 2 mapped to illegal pblock 2 (length 1)
[   96.918198][ T6018] EXT4-fs (loop2): Remounting filesystem read-only
[   96.925084][ T6018] EXT4-fs (loop2): 1 orphan inode deleted
[   96.933664][ T6026] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.766: invalid indirect mapped block 4294967295 (level 1)
[   96.952624][ T6026] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.766: invalid indirect mapped block 4294967295 (level 1)
[   96.967767][ T6026] EXT4-fs (loop1): 2 truncates cleaned up
[   97.033742][ T6030] loop4: detected capacity change from 0 to 512
[   97.054923][ T6030] EXT4-fs: inline encryption not supported
[   97.070535][ T6030] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   97.085435][ T6034] loop2: detected capacity change from 0 to 512
[   97.099936][ T6030] ext4 filesystem being mounted at /150/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.112352][ T6034] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.764: Failed to acquire dquot type 1
[   97.134522][ T6034] EXT4-fs (loop2): 1 truncate cleaned up
[   97.143307][ T6040] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6040 comm=syz.1.767
[   97.156123][ T6034] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.282424][ T6046] netlink: 260 bytes leftover after parsing attributes in process `syz.2.770'.
[   97.434877][ T6056] loop2: detected capacity change from 0 to 1024
[   97.447447][ T6056] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   97.457408][ T6056] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   97.471995][ T6056] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   97.490295][ T6056] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: inode #5: comm syz.2.775: unexpected bad inode w/o EXT4_IGET_BAD
[   97.533566][ T6056] EXT4-fs (loop2): no journal found
[   97.538852][ T6056] EXT4-fs (loop2): can't get journal size
[   97.580498][ T6056] EXT4-fs mount: 112 callbacks suppressed
[   97.580522][ T6056] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   97.622681][ T6061] netlink: 16 bytes leftover after parsing attributes in process `syz.0.777'.
[   97.709925][ T6056] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.760102][ T6068] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   97.770105][ T6056] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.782224][ T6067] loop3: detected capacity change from 0 to 1024
[   97.788926][ T6068] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   97.799312][ T6067] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   97.809588][ T6067] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   97.825022][ T6067] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   97.837868][ T6067] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.780: lblock 2 mapped to illegal pblock 2 (length 1)
[   97.857595][ T6067] EXT4-fs (loop3): Remounting filesystem read-only
[   97.875718][ T6067] EXT4-fs (loop3): 1 orphan inode deleted
[   97.882632][ T6056] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.887280][ T6067] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.945279][ T6056] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.957065][ T6067] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.969580][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   98.042201][ T6087] loop4: detected capacity change from 0 to 512
[   98.049250][ T6087] EXT4-fs: inline encryption not supported
[   98.052266][ T6056] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.064196][ T6087] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   98.077078][ T6056] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.086025][ T6088] loop3: detected capacity change from 0 to 512
[   98.090921][ T6056] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.104717][ T6087] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   98.113175][ T6056] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.118846][ T6088] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.780: Failed to acquire dquot type 1
[   98.133142][ T6087] ext4 filesystem being mounted at /152/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.148708][ T6088] EXT4-fs (loop3): 1 truncate cleaned up
[   98.154953][ T6088] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.167731][ T6088] ext4 filesystem being mounted at /151/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.180898][ T6088] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.439406][ T6105] loop3: detected capacity change from 0 to 1024
[   98.450938][ T6105] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   98.461947][ T6105] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   98.486576][ T6105] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   98.496355][ T6105] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.792: lblock 2 mapped to illegal pblock 2 (length 1)
[   98.510854][ T6105] EXT4-fs (loop3): Remounting filesystem read-only
[   98.518150][ T6105] EXT4-fs (loop3): 1 orphan inode deleted
[   98.525876][ T6105] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.539731][ T6105] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.676586][ T6111] loop0: detected capacity change from 0 to 1024
[   98.688233][ T6111] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   98.698009][ T6111] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   98.709461][ T6111] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   98.720142][ T6111] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.794: lblock 2 mapped to illegal pblock 2 (length 1)
[   98.735546][ T6111] EXT4-fs (loop0): Remounting filesystem read-only
[   98.742210][ T6111] EXT4-fs (loop0): 1 orphan inode deleted
[   98.748392][ T6111] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.785891][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.841917][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   98.861599][   T29] kauditd_printk_skb: 807 callbacks suppressed
[   98.861647][   T29] audit: type=1326 audit(1746768465.798:6883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6119 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   98.907233][   T29] audit: type=1326 audit(1746768465.838:6884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6119 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   98.912796][ T6124] loop3: detected capacity change from 0 to 1024
[   98.930616][   T29] audit: type=1326 audit(1746768465.838:6885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6119 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   98.930656][   T29] audit: type=1326 audit(1746768465.838:6886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6119 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   98.942217][ T6120] loop2: detected capacity change from 0 to 1024
[   98.960322][   T29] audit: type=1326 audit(1746768465.838:6887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6119 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   99.013496][   T29] audit: type=1326 audit(1746768465.838:6888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6119 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   99.037073][   T29] audit: type=1326 audit(1746768465.838:6889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6119 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ffa8ddbe969 code=0x7ffc0000
[   99.060541][   T29] audit: type=1326 audit(1746768465.838:6890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6119 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ffa8ddbe9a3 code=0x7ffc0000
[   99.083862][   T29] audit: type=1326 audit(1746768465.838:6891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6122 comm="syz.3.799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdee04e969 code=0x7ffc0000
[   99.100536][ T6120] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   99.107169][   T29] audit: type=1326 audit(1746768465.838:6892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6122 comm="syz.3.799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdee04e969 code=0x7ffc0000
[   99.117409][ T6120] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   99.152731][ T6124] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   99.163282][ T6124] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   99.182511][ T6124] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   99.196030][ T6120] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   99.201536][ T6124] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.799: lblock 2 mapped to illegal pblock 2 (length 1)
[   99.205835][ T6120] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 2: comm syz.2.798: lblock 2 mapped to illegal pblock 2 (length 1)
[   99.227441][ T6127] loop4: detected capacity change from 0 to 1024
[   99.233207][ T6120] EXT4-fs (loop2): Remounting filesystem read-only
[   99.244862][ T6120] EXT4-fs (loop2): 1 orphan inode deleted
[   99.251073][ T6120] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.264114][ T6127] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   99.264641][ T6120] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.282544][ T6124] EXT4-fs (loop3): Remounting filesystem read-only
[   99.296770][ T6127] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   99.310641][ T6124] EXT4-fs (loop3): 1 orphan inode deleted
[   99.321767][ T6124] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.339548][ T6127] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   99.350952][ T6124] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.361964][ T6127] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.797: lblock 2 mapped to illegal pblock 2 (length 1)
[   99.377140][ T6127] EXT4-fs (loop4): Remounting filesystem read-only
[   99.388659][ T6127] EXT4-fs (loop4): 1 orphan inode deleted
[   99.396252][ T6127] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.419698][ T6127] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.505245][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.520713][ T6139] loop2: detected capacity change from 0 to 512
[   99.533484][ T6124] loop3: detected capacity change from 0 to 512
[   99.543553][ T6139] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.798: Failed to acquire dquot type 1
[   99.561166][ T6139] EXT4-fs (loop2): 1 truncate cleaned up
[   99.576412][ T6127] loop4: detected capacity change from 0 to 512
[   99.584000][ T6139] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.601738][ T6139] ext4 filesystem being mounted at /143/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.626799][ T6139] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.647927][ T6124] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.799: Failed to acquire dquot type 1
[   99.661161][ T6153] syz.0.805 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   99.670849][ T6127] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.797: Failed to acquire dquot type 1
[   99.684350][ T6124] EXT4-fs (loop3): 1 truncate cleaned up
[   99.690363][ T6127] EXT4-fs (loop4): 1 truncate cleaned up
[   99.693557][ T6124] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.708951][ T6127] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.721611][ T6127] ext4 filesystem being mounted at /153/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.732495][ T6124] ext4 filesystem being mounted at /158/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.741188][ T6127] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.772222][ T6124] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.880713][ T6160] loop3: detected capacity change from 0 to 1024
[   99.890862][ T6160] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   99.909883][ T6160] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   99.924142][ T6160] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   99.932260][ T6163] loop4: detected capacity change from 0 to 512
[   99.933296][ T6163] EXT4-fs: inline encryption not supported
[   99.946241][ T6160] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.807: lblock 2 mapped to illegal pblock 2 (length 1)
[   99.949009][ T6163] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   99.961325][ T6160] EXT4-fs (loop3): Remounting filesystem read-only
[   99.975869][ T6160] EXT4-fs (loop3): 1 orphan inode deleted
[   99.982208][ T6160] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.983671][ T6163] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  100.007847][ T6160] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.008756][ T6163] ext4 filesystem being mounted at /154/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.051629][ T6167] loop2: detected capacity change from 0 to 512
[  100.069547][ T6167] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  100.097862][ T6167] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.809: invalid indirect mapped block 4294967295 (level 1)
[  100.115654][ T6167] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.809: invalid indirect mapped block 4294967295 (level 1)
[  100.130523][ T6167] EXT4-fs (loop2): 2 truncates cleaned up
[  100.138115][ T6167] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.174915][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.237930][ T6174] loop2: detected capacity change from 0 to 1024
[  100.262295][ T6174] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  100.271040][ T6174] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  100.354327][ T6174] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  100.387095][ T6174] EXT4-fs error (device loop2): ext4_map_blocks:675: inode #3: block 2: comm syz.2.811: lblock 2 mapped to illegal pblock 2 (length 1)
[  100.412821][ T6174] EXT4-fs (loop2): Remounting filesystem read-only
[  100.419489][ T6174] EXT4-fs (loop2): 1 orphan inode deleted
[  100.435003][ T6174] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.486355][ T6174] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.629062][ T6188] loop3: detected capacity change from 0 to 1024
[  100.672489][ T6174] loop2: detected capacity change from 0 to 512
[  100.672868][ T6188] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  100.730508][ T6174] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.811: Failed to acquire dquot type 1
[  100.734634][ T6188] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  100.765972][ T6174] EXT4-fs (loop2): 1 truncate cleaned up
[  100.777387][ T6174] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.790485][ T6188] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  100.798810][ T6174] ext4 filesystem being mounted at /146/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.826939][ T6200] loop0: detected capacity change from 0 to 512
[  100.834262][ T6188] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.817: lblock 2 mapped to illegal pblock 2 (length 1)
[  100.850303][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  100.859945][ T6174] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.869404][ T6200] EXT4-fs: inline encryption not supported
[  100.876910][ T6188] EXT4-fs (loop3): Remounting filesystem read-only
[  100.883938][ T6188] EXT4-fs (loop3): 1 orphan inode deleted
[  100.890927][ T6200] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  100.891731][ T6188] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.921996][ T6188] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.947035][ T6200] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  100.969173][ T6200] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.990312][ T6206] loop1: detected capacity change from 0 to 1024
[  101.012852][ T6206] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  101.025354][ T6206] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  101.038629][ T6208] __nla_validate_parse: 1 callbacks suppressed
[  101.038649][ T6208] netlink: 16 bytes leftover after parsing attributes in process `syz.4.823'.
[  101.057471][ T6206] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  101.072670][ T6206] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.822: lblock 2 mapped to illegal pblock 2 (length 1)
[  101.094349][ T6206] EXT4-fs (loop1): Remounting filesystem read-only
[  101.101710][ T6206] EXT4-fs (loop1): 1 orphan inode deleted
[  101.107952][ T6206] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.121912][ T6188] loop3: detected capacity change from 0 to 512
[  101.132743][ T6206] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.146140][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  101.158353][ T6217] netlink: 'syz.2.827': attribute type 1 has an invalid length.
[  101.193872][ T6188] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.817: Failed to acquire dquot type 1
[  101.238753][ T6227] FAULT_INJECTION: forcing a failure.
[  101.238753][ T6227] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.249159][ T6188] EXT4-fs (loop3): 1 truncate cleaned up
[  101.251969][ T6227] CPU: 0 UID: 0 PID: 6227 Comm: syz.0.830 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(voluntary) 
[  101.252040][ T6227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  101.252056][ T6227] Call Trace:
[  101.252063][ T6227]  <TASK>
[  101.252074][ T6227]  __dump_stack+0x1d/0x30
[  101.252101][ T6227]  dump_stack_lvl+0xe8/0x140
[  101.252136][ T6227]  dump_stack+0x15/0x1b
[  101.252158][ T6227]  should_fail_ex+0x265/0x280
[  101.252199][ T6227]  should_fail+0xb/0x20
[  101.252251][ T6227]  should_fail_usercopy+0x1a/0x20
[  101.252390][ T6227]  strncpy_from_user+0x25/0x230
[  101.252462][ T6227]  ? __kmalloc_cache_noprof+0x189/0x320
[  101.252491][ T6227]  __se_sys_memfd_create+0x1ff/0x590
[  101.252525][ T6227]  __x64_sys_memfd_create+0x31/0x40
[  101.252555][ T6227]  x64_sys_call+0x122f/0x2fb0
[  101.252598][ T6227]  do_syscall_64+0xd0/0x1a0
[  101.252626][ T6227]  ? clear_bhb_loop+0x25/0x80
[  101.252654][ T6227]  ? clear_bhb_loop+0x25/0x80
[  101.252682][ T6227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.252718][ T6227] RIP: 0033:0x7fe13f9be969
[  101.252738][ T6227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.252761][ T6227] RSP: 002b:00007fe13e026e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  101.252785][ T6227] RAX: ffffffffffffffda RBX: 00000000000005fc RCX: 00007fe13f9be969
[  101.252801][ T6227] RDX: 00007fe13e026ef0 RSI: 0000000000000000 RDI: 00007fe13fa41444
[  101.252849][ T6227] RBP: 0000200000000600 R08: 00007fe13e026bb7 R09: 00007fe13e026e40
[  101.252865][ T6227] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000040
[  101.252880][ T6227] R13: 00007fe13e026ef0 R14: 00007fe13e026eb0 R15: 00002000000001c0
[  101.252905][ T6227]  </TASK>
[  101.276760][ T6230] loop2: detected capacity change from 0 to 512
[  101.292690][ T6188] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.309967][ T6233] netlink: 'syz.0.832': attribute type 1 has an invalid length.
[  101.316186][ T6230] EXT4-fs: inline encryption not supported
[  101.318864][ T6233] netlink: 152 bytes leftover after parsing attributes in process `syz.0.832'.
[  101.332504][ T6230] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  101.335465][ T6233] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  101.348272][ T6188] ext4 filesystem being mounted at /163/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.353282][ T6230] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  101.392478][ T6188] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.394362][ T6230] ext4 filesystem being mounted at /151/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.679777][ T6247] loop3: detected capacity change from 0 to 512
[  101.695353][ T6249] netlink: 16 bytes leftover after parsing attributes in process `syz.1.838'.
[  101.697018][ T6247] EXT4-fs: inline encryption not supported
[  101.728428][ T6251] netlink: 20 bytes leftover after parsing attributes in process `syz.0.839'.
[  101.741529][ T6251] Zero length message leads to an empty skb
[  101.751236][ T6251] SELinux:  Context Ü is not valid (left unmapped).
[  101.777881][ T6247] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  101.832767][ T6247] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  101.870239][ T6247] ext4 filesystem being mounted at /164/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.970208][ T6260] xt_CT: You must specify a L4 protocol and not use inversions on it
[  101.979034][ T6262] netlink: 188 bytes leftover after parsing attributes in process `syz.0.842'.
[  102.045683][ T6260] wireguard0: entered promiscuous mode
[  102.051252][ T6260] wireguard0: entered allmulticast mode
[  102.076678][ T6265] loop4: detected capacity change from 0 to 1024
[  102.100274][ T6267] loop1: detected capacity change from 0 to 256
[  102.120731][ T6265] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  102.121494][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  102.129288][ T6265] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  102.159948][ T6265] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  102.174095][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  102.175466][ T6265] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.844: lblock 2 mapped to illegal pblock 2 (length 1)
[  102.200035][ T6265] EXT4-fs (loop4): Remounting filesystem read-only
[  102.230563][ T6265] EXT4-fs (loop4): 1 orphan inode deleted
[  102.249678][ T6265] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.251701][ T6272] loop0: detected capacity change from 0 to 1024
[  102.263793][ T6265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.282397][ T6276] loop3: detected capacity change from 0 to 1024
[  102.308999][ T6276] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  102.317809][ T6272] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  102.338901][ T6276] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  102.346514][ T6282] loop1: detected capacity change from 0 to 512
[  102.349304][ T6272] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  102.368060][ T6276] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  102.369242][ T6282] EXT4-fs: Ignoring removed mblk_io_submit option
[  102.378857][ T6276] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.847: lblock 2 mapped to illegal pblock 2 (length 1)
[  102.382899][ T6282] EXT4-fs: inline encryption not supported
[  102.398698][ T6276] EXT4-fs (loop3): Remounting filesystem read-only
[  102.409364][ T6276] EXT4-fs (loop3): 1 orphan inode deleted
[  102.409873][ T6272] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  102.416093][ T6276] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.423752][ T6287] 9pnet_fd: Insufficient options for proto=fd
[  102.436094][ T6282] EXT4-fs: test_dummy_encryption option not supported
[  102.444983][ T6276] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.458233][ T6282] FAULT_INJECTION: forcing a failure.
[  102.458233][ T6282] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  102.471405][ T6282] CPU: 1 UID: 0 PID: 6282 Comm: syz.1.851 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(voluntary) 
[  102.471440][ T6282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  102.471456][ T6282] Call Trace:
[  102.471464][ T6282]  <TASK>
[  102.471473][ T6282]  __dump_stack+0x1d/0x30
[  102.471499][ T6282]  dump_stack_lvl+0xe8/0x140
[  102.471521][ T6282]  dump_stack+0x15/0x1b
[  102.471541][ T6282]  should_fail_ex+0x265/0x280
[  102.471634][ T6282]  should_fail+0xb/0x20
[  102.471660][ T6282]  should_fail_usercopy+0x1a/0x20
[  102.471748][ T6282]  _copy_to_iter+0xcf/0xdd0
[  102.471769][ T6282]  ? chacha_block_generic+0x245/0x270
[  102.471846][ T6282]  get_random_bytes_user+0x12d/0x290
[  102.471888][ T6282]  ? import_ubuf+0xe8/0x120
[  102.471961][ T6282]  __x64_sys_getrandom+0xcf/0x1a0
[  102.471991][ T6282]  x64_sys_call+0x2bb4/0x2fb0
[  102.472012][ T6282]  do_syscall_64+0xd0/0x1a0
[  102.472039][ T6282]  ? clear_bhb_loop+0x25/0x80
[  102.472066][ T6282]  ? clear_bhb_loop+0x25/0x80
[  102.472159][ T6282]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.472186][ T6282] RIP: 0033:0x7f0d2a73e969
[  102.472214][ T6282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.472266][ T6282] RSP: 002b:00007f0d28da7038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[  102.472286][ T6282] RAX: ffffffffffffffda RBX: 00007f0d2a965fa0 RCX: 00007f0d2a73e969
[  102.472301][ T6282] RDX: 0000000000000000 RSI: 00000000ffffff9a RDI: 0000200000000240
[  102.472313][ T6282] RBP: 00007f0d28da7090 R08: 0000000000000000 R09: 0000000000000000
[  102.472335][ T6282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.472346][ T6282] R13: 0000000000000000 R14: 00007f0d2a965fa0 R15: 00007ffe9df56338
[  102.472367][ T6282]  </TASK>
[  102.473053][ T6272] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.848: lblock 2 mapped to illegal pblock 2 (length 1)
[  102.536750][ T6290] netlink: 'syz.1.852': attribute type 1 has an invalid length.
[  102.549125][ T6272] EXT4-fs (loop0): Remounting filesystem read-only
[  102.549371][ T6290] netlink: 152 bytes leftover after parsing attributes in process `syz.1.852'.
[  102.565514][ T6290] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  102.569923][ T6272] EXT4-fs (loop0): 1 orphan inode deleted
[  102.630153][ T6292] netlink: 16 bytes leftover after parsing attributes in process `syz.1.853'.
[  102.637750][ T6272] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.722164][ T6295] loop3: detected capacity change from 0 to 512
[  102.736660][ T6272] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.777370][ T6295] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.847: Failed to acquire dquot type 1
[  102.799526][ T6299] loop4: detected capacity change from 0 to 1024
[  102.806582][ T6299] EXT4-fs: Ignoring removed bh option
[  102.824662][ T6299] EXT4-fs: inline encryption not supported
[  102.830619][ T6299] EXT4-fs: Ignoring removed i_version option
[  102.834172][ T6295] EXT4-fs (loop3): 1 truncate cleaned up
[  102.842759][ T6295] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.843391][ T6299] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  102.869348][ T6295] ext4 filesystem being mounted at /165/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.882768][ T6295] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.883670][ T6299] EXT4-fs error (device loop4): ext4_map_blocks:709: inode #3: block 1: comm syz.4.854: lblock 1 mapped to illegal pblock 1 (length 1)
[  102.906034][ T6303] FAULT_INJECTION: forcing a failure.
[  102.906034][ T6303] name failslab, interval 1, probability 0, space 0, times 0
[  102.907776][ T6299] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.854: Failed to acquire dquot type 0
[  102.918778][ T6303] CPU: 1 UID: 0 PID: 6303 Comm: syz.1.855 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(voluntary) 
[  102.918884][ T6303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  102.918949][ T6303] Call Trace:
[  102.918958][ T6303]  <TASK>
[  102.918969][ T6303]  __dump_stack+0x1d/0x30
[  102.918997][ T6303]  dump_stack_lvl+0xe8/0x140
[  102.919023][ T6303]  dump_stack+0x15/0x1b
[  102.919049][ T6303]  should_fail_ex+0x265/0x280
[  102.919096][ T6303]  should_failslab+0x8c/0xb0
[  102.919134][ T6303]  kmem_cache_alloc_noprof+0x50/0x310
[  102.919200][ T6303]  ? alloc_empty_file+0x76/0x200
[  102.919243][ T6303]  alloc_empty_file+0x76/0x200
[  102.919311][ T6303]  path_openat+0x68/0x2170
[  102.919340][ T6303]  ? mntput+0x4b/0x80
[  102.919363][ T6303]  ? terminate_walk+0x27f/0x2a0
[  102.919407][ T6303]  ? path_openat+0x1bf8/0x2170
[  102.919434][ T6303]  ? _parse_integer_limit+0x170/0x190
[  102.919491][ T6303]  do_filp_open+0x109/0x230
[  102.919529][ T6303]  do_open_execat+0xd8/0x260
[  102.919568][ T6303]  alloc_bprm+0x28/0x660
[  102.919595][ T6303]  ? should_fail+0xb/0x20
[  102.919665][ T6303]  do_execveat_common+0x12e/0x750
[  102.919698][ T6303]  ? getname_flags+0x154/0x3b0
[  102.919742][ T6303]  __x64_sys_execveat+0x73/0x90
[  102.919786][ T6303]  x64_sys_call+0x2dae/0x2fb0
[  102.919865][ T6303]  do_syscall_64+0xd0/0x1a0
[  102.919894][ T6303]  ? clear_bhb_loop+0x25/0x80
[  102.919921][ T6303]  ? clear_bhb_loop+0x25/0x80
[  102.920027][ T6303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.920054][ T6303] RIP: 0033:0x7f0d2a73e969
[  102.920075][ T6303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.920159][ T6303] RSP: 002b:00007f0d28da7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  102.920184][ T6303] RAX: ffffffffffffffda RBX: 00007f0d2a965fa0 RCX: 00007f0d2a73e969
[  102.920200][ T6303] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  102.920268][ T6303] RBP: 00007f0d28da7090 R08: 0000000000001000 R09: 0000000000000000
[  102.920291][ T6303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.920308][ T6303] R13: 0000000000000000 R14: 00007f0d2a965fa0 R15: 00007ffe9df56338
[  102.920333][ T6303]  </TASK>
[  103.154261][ T6299] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.854: Freeing blocks not in datazone - block = 0, count = 4096
[  103.168415][ T6299] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.854: Invalid inode bitmap blk 0 in block_group 0
[  103.181220][ T6304] loop0: detected capacity change from 0 to 512
[  103.185328][   T31] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1)
[  103.188607][ T6299] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  103.206651][   T31] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 0
[  103.226058][ T6306] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  103.234580][ T6299] EXT4-fs (loop4): 1 orphan inode deleted
[  103.235066][ T6299] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.264191][ T6310] netlink: 188 bytes leftover after parsing attributes in process `syz.2.857'.
[  103.275022][ T6304] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.848: Failed to acquire dquot type 1
[  103.297725][ T6313] loop2: detected capacity change from 0 to 512
[  103.304795][ T6313] EXT4-fs: inline encryption not supported
[  103.314963][ T6313] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  103.340482][ T6304] EXT4-fs (loop0): 1 truncate cleaned up
[  103.346728][ T6304] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.359873][ T6304] ext4 filesystem being mounted at /171/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.366337][ T6299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.390139][ T6304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.403595][ T6316] loop3: detected capacity change from 0 to 1024
[  103.417735][ T6316] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  103.429094][ T6313] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  103.442924][ T6313] ext4 filesystem being mounted at /155/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.453709][ T6316] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  103.474052][ T6321] loop1: detected capacity change from 0 to 512
[  103.480791][ T6321] EXT4-fs: inline encryption not supported
[  103.487483][ T6316] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  103.505142][ T6316] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.859: lblock 2 mapped to illegal pblock 2 (length 1)
[  103.519526][ T6321] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  103.529122][ T6316] EXT4-fs (loop3): Remounting filesystem read-only
[  103.537539][ T6316] EXT4-fs (loop3): 1 orphan inode deleted
[  103.544279][ T6316] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.558094][ T6316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.580165][ T6316] loop3: detected capacity change from 0 to 512
[  103.588459][ T6321] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  103.604632][ T6321] ext4 filesystem being mounted at /205/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.623403][ T6328] 9pnet_fd: Insufficient options for proto=fd
[  103.631217][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  103.642603][ T6316] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.859: Failed to acquire dquot type 1
[  103.655472][ T6316] EXT4-fs (loop3): 1 truncate cleaned up
[  103.665184][ T6316] ext4 filesystem being mounted at /166/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.700376][ T6334] netlink: 'syz.0.863': attribute type 1 has an invalid length.
[  103.812755][ T6336] netlink: 16 bytes leftover after parsing attributes in process `syz.0.866'.
[  103.893140][ T6348] C: renamed from team_slave_0 (while UP)
[  103.905173][ T6348] netlink: 'syz.2.871': attribute type 1 has an invalid length.
[  103.913274][   T29] kauditd_printk_skb: 851 callbacks suppressed
[  103.913299][   T29] audit: type=1326 audit(1746768470.838:7703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.0.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe13f9be969 code=0x7ffc0000
[  103.943006][   T29] audit: type=1326 audit(1746768470.838:7704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.0.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe13f9be969 code=0x7ffc0000
[  103.966602][   T29] audit: type=1326 audit(1746768470.838:7705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.0.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fe13f9be969 code=0x7ffc0000
[  103.972529][ T6348] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  103.990119][   T29] audit: type=1326 audit(1746768470.838:7706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.0.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe13f9be969 code=0x7ffc0000
[  103.990155][   T29] audit: type=1326 audit(1746768470.838:7707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.0.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7fe13f9be969 code=0x7ffc0000
[  104.052524][   T29] audit: type=1326 audit(1746768470.838:7708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.0.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe13f9be969 code=0x7ffc0000
[  104.077802][   T29] audit: type=1326 audit(1746768470.848:7709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.0.872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe13f9be969 code=0x7ffc0000
[  104.134819][   T29] audit: type=1326 audit(1746768471.068:7710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6363 comm="syz.1.878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d2a73e969 code=0x7ffc0000
[  104.158427][   T29] audit: type=1326 audit(1746768471.068:7711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6363 comm="syz.1.878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d2a73e969 code=0x7ffc0000
[  104.158740][ T6366] FAULT_INJECTION: forcing a failure.
[  104.158740][ T6366] name failslab, interval 1, probability 0, space 0, times 0
[  104.181965][   T29] audit: type=1326 audit(1746768471.068:7712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6363 comm="syz.1.878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0d2a73e969 code=0x7ffc0000
[  104.194577][ T6366] CPU: 1 UID: 0 PID: 6366 Comm: syz.2.879 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(voluntary) 
[  104.194661][ T6366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  104.194677][ T6366] Call Trace:
[  104.194684][ T6366]  <TASK>
[  104.194693][ T6366]  __dump_stack+0x1d/0x30
[  104.194718][ T6366]  dump_stack_lvl+0xe8/0x140
[  104.194746][ T6366]  dump_stack+0x15/0x1b
[  104.194793][ T6366]  should_fail_ex+0x265/0x280
[  104.194832][ T6366]  should_failslab+0x8c/0xb0
[  104.194909][ T6366]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  104.194951][ T6366]  ? shmem_alloc_inode+0x34/0x50
[  104.194992][ T6366]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  104.195038][ T6366]  shmem_alloc_inode+0x34/0x50
[  104.195082][ T6366]  alloc_inode+0x3d/0x170
[  104.195127][ T6366]  new_inode+0x1d/0xe0
[  104.195205][ T6366]  shmem_get_inode+0x244/0x750
[  104.195245][ T6366]  shmem_mknod+0x46/0x180
[  104.195286][ T6366]  shmem_create+0x34/0x50
[  104.195324][ T6366]  ? __pfx_shmem_create+0x10/0x10
[  104.195426][ T6366]  path_openat+0x1102/0x2170
[  104.195469][ T6366]  do_filp_open+0x109/0x230
[  104.195509][ T6366]  do_sys_openat2+0xa6/0x110
[  104.195537][ T6366]  __x64_sys_creat+0x65/0x90
[  104.195617][ T6366]  x64_sys_call+0x114d/0x2fb0
[  104.195687][ T6366]  do_syscall_64+0xd0/0x1a0
[  104.195750][ T6366]  ? clear_bhb_loop+0x25/0x80
[  104.195776][ T6366]  ? clear_bhb_loop+0x25/0x80
[  104.195811][ T6366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.195884][ T6366] RIP: 0033:0x7ffa8ddbe969
[  104.195899][ T6366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.195920][ T6366] RSP: 002b:00007ffa8c427038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  104.196084][ T6366] RAX: ffffffffffffffda RBX: 00007ffa8dfe5fa0 RCX: 00007ffa8ddbe969
[  104.196181][ T6366] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000000c0
[  104.196202][ T6366] RBP: 00007ffa8c427090 R08: 0000000000000000 R09: 0000000000000000
[  104.196218][ T6366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.196233][ T6366] R13: 0000000000000000 R14: 00007ffa8dfe5fa0 R15: 00007ffe6c27e158
[  104.196258][ T6366]  </TASK>
[  104.234021][ T6364] loop1: detected capacity change from 0 to 1024
[  104.354062][ T6373] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  104.362169][ T6364] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  104.363941][ T6373] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  104.368605][ T6364] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  104.388074][ T6373] vhci_hcd vhci_hcd.0: Device attached
[  104.429791][ T6364] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  104.494912][ T6374] vhci_hcd: connection closed
[  104.495363][   T54] vhci_hcd: stop threads
[  104.504674][   T54] vhci_hcd: release socket
[  104.506060][ T6364] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.878: lblock 2 mapped to illegal pblock 2 (length 1)
[  104.509094][   T54] vhci_hcd: disconnect device
[  104.530460][ T6364] EXT4-fs (loop1): Remounting filesystem read-only
[  104.537351][ T6364] EXT4-fs (loop1): 1 orphan inode deleted
[  104.595164][ T6387] loop4: detected capacity change from 0 to 512
[  104.602917][ T6387] EXT4-fs: inline encryption not supported
[  104.609552][ T6387] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  104.623825][ T6387] ext4 filesystem being mounted at /164/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.705741][ T6394] netlink: 'syz.3.886': attribute type 1 has an invalid length.
[  104.713507][ T6394] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  104.775482][ T6364] loop1: detected capacity change from 0 to 512
[  104.786089][ T6398] loop3: detected capacity change from 0 to 512
[  104.803975][ T6364] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.878: Failed to acquire dquot type 1
[  104.819403][ T6398] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  104.829129][ T6364] EXT4-fs (loop1): 1 truncate cleaned up
[  104.836149][ T6364] ext4 filesystem being mounted at /207/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.838063][ T6398] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.888: invalid indirect mapped block 4294967295 (level 1)
[  104.862390][ T6398] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.888: invalid indirect mapped block 4294967295 (level 1)
[  104.876898][ T6398] EXT4-fs (loop3): 2 truncates cleaned up
[  104.986078][ T6411] loop1: detected capacity change from 0 to 512
[  105.014379][ T6411] EXT4-fs: inline encryption not supported
[  105.028436][ T6411] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  105.048130][ T6411] ext4 filesystem being mounted at /208/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.072142][ T6420] 9pnet_fd: Insufficient options for proto=fd
[  105.262777][ T6423] FAULT_INJECTION: forcing a failure.
[  105.262777][ T6423] name failslab, interval 1, probability 0, space 0, times 0
[  105.275621][ T6423] CPU: 0 UID: 0 PID: 6423 Comm: syz.1.896 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(voluntary) 
[  105.275656][ T6423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  105.275672][ T6423] Call Trace:
[  105.275680][ T6423]  <TASK>
[  105.275691][ T6423]  __dump_stack+0x1d/0x30
[  105.275712][ T6423]  dump_stack_lvl+0xe8/0x140
[  105.275730][ T6423]  dump_stack+0x15/0x1b
[  105.275794][ T6423]  should_fail_ex+0x265/0x280
[  105.275839][ T6423]  ? copy_cgroup_ns+0x162/0x370
[  105.275875][ T6423]  should_failslab+0x8c/0xb0
[  105.275905][ T6423]  __kmalloc_cache_noprof+0x4c/0x320
[  105.276007][ T6423]  ? inc_ucount+0xcb/0x140
[  105.276037][ T6423]  copy_cgroup_ns+0x162/0x370
[  105.276069][ T6423]  create_new_namespaces+0x1c2/0x410
[  105.276142][ T6423]  unshare_nsproxy_namespaces+0xe8/0x120
[  105.276174][ T6423]  ksys_unshare+0x3d0/0x6d0
[  105.276209][ T6423]  ? ksys_write+0x16e/0x1a0
[  105.276303][ T6423]  __x64_sys_unshare+0x1f/0x30
[  105.276340][ T6423]  x64_sys_call+0x2d4b/0x2fb0
[  105.276367][ T6423]  do_syscall_64+0xd0/0x1a0
[  105.276455][ T6423]  ? clear_bhb_loop+0x25/0x80
[  105.276543][ T6423]  ? clear_bhb_loop+0x25/0x80
[  105.276568][ T6423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.276595][ T6423] RIP: 0033:0x7f0d2a73e969
[  105.276613][ T6423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.276635][ T6423] RSP: 002b:00007f0d28d86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  105.276683][ T6423] RAX: ffffffffffffffda RBX: 00007f0d2a966080 RCX: 00007f0d2a73e969
[  105.276697][ T6423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000062040200
[  105.276714][ T6423] RBP: 00007f0d28d86090 R08: 0000000000000000 R09: 0000000000000000
[  105.276773][ T6423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.276784][ T6423] R13: 0000000000000000 R14: 00007f0d2a966080 R15: 00007ffe9df56338
[  105.276803][ T6423]  </TASK>
[  105.495923][ T6425] loop2: detected capacity change from 0 to 256
[  105.538383][ T6427] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.547948][ T6427] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  105.843206][ T6438] loop3: detected capacity change from 0 to 512
[  105.850025][ T6438] EXT4-fs: inline encryption not supported
[  105.857942][ T6438] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  105.874234][ T6438] ext4 filesystem being mounted at /174/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.987281][ T6451] openvswitch: netlink: Message has 6 unknown bytes.
[  106.067334][ T6457] loop1: detected capacity change from 0 to 256
[  106.204957][ T6464] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6464 comm=syz.1.911
[  106.774162][ T6473] loop4: detected capacity change from 0 to 1024
[  106.786154][ T6473] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  106.794956][ T6473] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  106.811106][ T6473] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  106.821200][ T6473] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.916: lblock 2 mapped to illegal pblock 2 (length 1)
[  106.836367][ T6473] EXT4-fs (loop4): Remounting filesystem read-only
[  106.843075][ T6473] EXT4-fs (loop4): 1 orphan inode deleted
[  106.934986][ T6480] loop0: detected capacity change from 0 to 512
[  106.941755][ T6480] EXT4-fs: inline encryption not supported
[  106.958350][ T6480] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  106.981098][ T6485] loop1: detected capacity change from 0 to 256
[  106.988023][ T6482] loop3: detected capacity change from 0 to 1024
[  107.006079][ T6488] loop4: detected capacity change from 0 to 512
[  107.019170][ T6480] ext4 filesystem being mounted at /189/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.035996][ T6482] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  107.058802][ T6488] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.916: Failed to acquire dquot type 1
[  107.074784][ T6482] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  107.088641][ T6494] loop1: detected capacity change from 0 to 1024
[  107.094336][ T6488] EXT4-fs (loop4): 1 truncate cleaned up
[  107.101439][ T6494] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  107.107577][ T6482] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  107.110721][ T6494] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  107.131650][ T6488] ext4 filesystem being mounted at /173/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.144034][ T6494] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  107.153402][ T6482] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.920: lblock 2 mapped to illegal pblock 2 (length 1)
[  107.171704][ T6482] EXT4-fs (loop3): Remounting filesystem read-only
[  107.186987][ T6482] EXT4-fs (loop3): 1 orphan inode deleted
[  107.199635][ T6494] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.923: lblock 2 mapped to illegal pblock 2 (length 1)
[  107.213818][ T6494] EXT4-fs (loop1): Remounting filesystem read-only
[  107.220456][ T6494] EXT4-fs (loop1): 1 orphan inode deleted
[  107.291115][ T6502] loop0: detected capacity change from 0 to 512
[  107.298309][ T6502] EXT4-fs: inline encryption not supported
[  107.308609][ T6502] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  107.343900][ T6502] ext4 filesystem being mounted at /190/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.406581][ T6482] loop3: detected capacity change from 0 to 512
[  107.424120][ T6482] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.920: Failed to acquire dquot type 1
[  107.431251][ T6516] loop0: detected capacity change from 0 to 1024
[  107.437483][ T6482] EXT4-fs (loop3): 1 truncate cleaned up
[  107.448177][ T6482] ext4 filesystem being mounted at /176/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.459778][ T6516] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  107.472851][ T6516] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  107.485731][ T6516] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  107.498691][ T6516] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.929: lblock 2 mapped to illegal pblock 2 (length 1)
[  107.513546][ T6516] EXT4-fs (loop0): Remounting filesystem read-only
[  107.520198][ T6516] EXT4-fs (loop0): 1 orphan inode deleted
[  107.545049][ T6523] loop1: detected capacity change from 0 to 1024
[  107.553893][ T6523] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  107.562824][ T6523] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  107.575343][ T6523] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  107.584777][ T6523] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.931: lblock 2 mapped to illegal pblock 2 (length 1)
[  107.599329][ T6523] EXT4-fs (loop1): Remounting filesystem read-only
[  107.606033][ T6523] EXT4-fs (loop1): 1 orphan inode deleted
[  107.677919][ T6516] loop0: detected capacity change from 0 to 512
[  107.713448][ T6516] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.929: Failed to acquire dquot type 1
[  107.725586][ T6516] EXT4-fs (loop0): 1 truncate cleaned up
[  107.731937][ T6516] ext4 filesystem being mounted at /192/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.753566][ T6523] loop1: detected capacity change from 0 to 512
[  107.783314][ T6523] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.931: Failed to acquire dquot type 1
[  107.796200][ T6523] EXT4-fs (loop1): 1 truncate cleaned up
[  107.802623][ T6523] ext4 filesystem being mounted at /215/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.993567][ T6551] loop1: detected capacity change from 0 to 512
[  108.000404][ T6551] EXT4-fs: inline encryption not supported
[  108.015216][ T6551] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  108.060301][ T6551] ext4 filesystem being mounted at /218/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.133615][ T6555] random: crng reseeded on system resumption
[  108.244732][ T6560] loop4: detected capacity change from 0 to 1024
[  108.259574][ T6560] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  108.270566][ T6560] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  108.302477][ T6560] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  108.315622][ T6560] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.942: lblock 2 mapped to illegal pblock 2 (length 1)
[  108.330085][ T6560] EXT4-fs (loop4): Remounting filesystem read-only
[  108.337801][ T6560] EXT4-fs (loop4): 1 orphan inode deleted
[  108.397714][ T6563] loop1: detected capacity change from 0 to 1024
[  108.407063][ T6563] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  108.416137][ T6563] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  108.438523][ T6563] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  108.449043][ T6563] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.943: lblock 2 mapped to illegal pblock 2 (length 1)
[  108.468692][ T6563] EXT4-fs (loop1): Remounting filesystem read-only
[  108.475434][ T6563] EXT4-fs (loop1): 1 orphan inode deleted
[  108.484719][ T6567] loop3: detected capacity change from 0 to 512
[  108.492223][ T6567] EXT4-fs: inline encryption not supported
[  108.504696][ T6567] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  108.527738][ T6567] ext4 filesystem being mounted at /178/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.677018][ T6575] loop3: detected capacity change from 0 to 1024
[  108.697615][ T6575] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  108.712413][ T6575] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  108.724200][ T6575] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  108.733445][ T6575] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.946: lblock 2 mapped to illegal pblock 2 (length 1)
[  108.747581][ T6575] EXT4-fs (loop3): Remounting filesystem read-only
[  108.754372][ T6575] EXT4-fs (loop3): 1 orphan inode deleted
[  108.896060][ T6575] loop3: detected capacity change from 0 to 512
[  108.927055][ T6575] __quota_error: 802 callbacks suppressed
[  108.927074][ T6575] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  108.942999][ T6575] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  108.952992][ T6575] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.946: Failed to acquire dquot type 1
[  108.972918][ T6575] EXT4-fs (loop3): 1 truncate cleaned up
[  108.979323][ T6575] ext4 filesystem being mounted at /179/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.992556][   T29] audit: type=1326 audit(1746768475.928:8487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6574 comm="syz.3.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7efdee04d2d0 code=0x7ffc0000
[  109.022606][   T29] audit: type=1326 audit(1746768475.948:8488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6574 comm="syz.3.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7efdee04e56b code=0x7ffc0000
[  109.045976][   T29] audit: type=1326 audit(1746768475.948:8489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6574 comm="syz.3.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7efdee04d5ca code=0x7ffc0000
[  109.069282][   T29] audit: type=1326 audit(1746768475.948:8490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6574 comm="syz.3.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdee04e969 code=0x7ffc0000
[  109.092651][   T29] audit: type=1326 audit(1746768475.948:8491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6574 comm="syz.3.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdee04e969 code=0x7ffc0000
[  109.660925][   T29] audit: type=1326 audit(1746768476.588:8492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6583 comm="syz.2.949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa8ddbe969 code=0x7fc00000
[  109.717031][   T29] audit: type=1326 audit(1746768476.638:8493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6596 comm="syz.4.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[  109.740749][   T29] audit: type=1326 audit(1746768476.638:8494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6596 comm="syz.4.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bceaae969 code=0x7ffc0000
[  109.774156][ T6600] __nla_validate_parse: 7 callbacks suppressed
[  109.774173][ T6600] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  109.828751][ T6608] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  109.921917][ T6617] netlink: 188 bytes leftover after parsing attributes in process `syz.0.961'.
[  110.411714][ T6639] loop1: detected capacity change from 0 to 1024
[  110.512196][ T6639] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  110.540457][ T6639] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  110.585112][ T6639] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  110.594684][ T6639] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.969: lblock 2 mapped to illegal pblock 2 (length 1)
[  110.608999][ T6639] EXT4-fs (loop1): Remounting filesystem read-only
[  110.615691][ T6639] EXT4-fs (loop1): 1 orphan inode deleted
[  110.634533][ T6652] loop3: detected capacity change from 0 to 512
[  110.642945][ T6652] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  110.727007][ T6656] FAULT_INJECTION: forcing a failure.
[  110.727007][ T6656] name failslab, interval 1, probability 0, space 0, times 0
[  110.739762][ T6656] CPU: 0 UID: 0 PID: 6656 Comm: syz.4.973 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(voluntary) 
[  110.739838][ T6656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  110.739855][ T6656] Call Trace:
[  110.739862][ T6656]  <TASK>
[  110.739870][ T6656]  __dump_stack+0x1d/0x30
[  110.739898][ T6656]  dump_stack_lvl+0xe8/0x140
[  110.739922][ T6656]  dump_stack+0x15/0x1b
[  110.739943][ T6656]  should_fail_ex+0x265/0x280
[  110.740045][ T6656]  should_failslab+0x8c/0xb0
[  110.740134][ T6656]  kmem_cache_alloc_node_noprof+0x57/0x320
[  110.740179][ T6656]  ? __alloc_skb+0x101/0x320
[  110.740216][ T6656]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  110.740330][ T6656]  __alloc_skb+0x101/0x320
[  110.740369][ T6656]  inet_netconf_notify_devconf+0x173/0x230
[  110.740404][ T6656]  inetdev_event+0x743/0xc10
[  110.740447][ T6656]  ? __pfx_ib_netdevice_event+0x10/0x10
[  110.740477][ T6656]  ? ib_netdevice_event+0x186/0x5f0
[  110.740508][ T6656]  ? __pfx_arp_netdev_event+0x10/0x10
[  110.740619][ T6656]  ? __pfx_inetdev_event+0x10/0x10
[  110.740687][ T6656]  raw_notifier_call_chain+0x6c/0x1b0
[  110.740709][ T6656]  ? call_netdevice_notifiers_info+0x9c/0x100
[  110.740744][ T6656]  call_netdevice_notifiers_info+0xae/0x100
[  110.740778][ T6656]  unregister_netdevice_many_notify+0xd9a/0x16a0
[  110.740864][ T6656]  unregister_netdevice_queue+0x1f5/0x220
[  110.740909][ T6656]  unregister_netdev+0xb3/0xe0
[  110.741004][ T6656]  slip_close+0xe4/0x100
[  110.741027][ T6656]  ? __pfx_slip_close+0x10/0x10
[  110.741051][ T6656]  tty_ldisc_close+0x71/0xa0
[  110.741143][ T6656]  tty_set_ldisc+0x1b9/0x380
[  110.741174][ T6656]  tiocsetd+0x51/0x60
[  110.741204][ T6656]  tty_ioctl+0xa7f/0xb80
[  110.741233][ T6656]  ? __pfx_tty_ioctl+0x10/0x10
[  110.741291][ T6656]  __se_sys_ioctl+0xcb/0x140
[  110.741312][ T6656]  __x64_sys_ioctl+0x43/0x50
[  110.741395][ T6656]  x64_sys_call+0x19a8/0x2fb0
[  110.741423][ T6656]  do_syscall_64+0xd0/0x1a0
[  110.741450][ T6656]  ? clear_bhb_loop+0x25/0x80
[  110.741477][ T6656]  ? clear_bhb_loop+0x25/0x80
[  110.741520][ T6656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.741542][ T6656] RIP: 0033:0x7f1bceaae969
[  110.741560][ T6656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.741580][ T6656] RSP: 002b:00007f1bcd0f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  110.741674][ T6656] RAX: ffffffffffffffda RBX: 00007f1bcecd6080 RCX: 00007f1bceaae969
[  110.741690][ T6656] RDX: 0000200000000100 RSI: 0000000000005423 RDI: 0000000000000004
[  110.741706][ T6656] RBP: 00007f1bcd0f6090 R08: 0000000000000000 R09: 0000000000000000
[  110.741721][ T6656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.741763][ T6656] R13: 0000000000000000 R14: 00007f1bcecd6080 R15: 00007ffe6d179208
[  110.741786][ T6656]  </TASK>
[  111.030402][ T6652] loop3: detected capacity change from 0 to 8192
[  111.100475][ T6652]  loop3: p1 < > p2 p3 < p5 p6 > p4
[  111.105856][ T6652] loop3: partition table partially beyond EOD, truncated
[  111.122453][ T6652] loop3: p1 start 408832 is beyond EOD, truncated
[  111.129030][ T6652] loop3: p2 size 8388352 extends beyond EOD, truncated
[  111.150242][ T6652] loop3: p5 size 8388352 extends beyond EOD, truncated
[  111.232106][ T6656] Falling back ldisc for ttyS3.
[  111.807432][ T6712] loop3: detected capacity change from 0 to 1024
[  111.835710][ T6712] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  111.854809][ T6712] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  111.882341][ T6712] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  111.903430][ T6712] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.985: lblock 2 mapped to illegal pblock 2 (length 1)
[  111.927635][ T6712] EXT4-fs (loop3): Remounting filesystem read-only
[  111.942637][ T6712] EXT4-fs (loop3): 1 orphan inode deleted
[  111.987918][ T6716] loop1: detected capacity change from 0 to 512
[  112.023018][ T6716] EXT4-fs: inline encryption not supported
[  112.049973][ T6716] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  112.089506][ T6716] ext4 filesystem being mounted at /226/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.102964][ T6723] netlink: 'syz.4.988': attribute type 1 has an invalid length.
[  112.110723][ T6723] netlink: 152 bytes leftover after parsing attributes in process `syz.4.988'.
[  112.126159][ T6712] loop3: detected capacity change from 0 to 512
[  112.160910][ T6712] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.985: Failed to acquire dquot type 1
[  112.207643][ T6712] EXT4-fs (loop3): 1 truncate cleaned up
[  112.222861][ T6712] ext4 filesystem being mounted at /195/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.242196][ T6723] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  112.289220][ T6731] loop1: detected capacity change from 0 to 1024
[  112.304476][ T6731] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  112.322392][ T6731] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  112.342859][ T6733] macvlan2: entered promiscuous mode
[  112.348221][ T6733] bridge0: entered promiscuous mode
[  112.362854][ T6733] bridge0: port 3(macvlan2) entered blocking state
[  112.362909][ T6731] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  112.363669][ T6731] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.990: lblock 2 mapped to illegal pblock 2 (length 1)
[  112.369546][ T6733] bridge0: port 3(macvlan2) entered disabled state
[  112.398723][ T6733] macvlan2: entered allmulticast mode
[  112.404192][ T6733] bridge0: entered allmulticast mode
[  112.410078][ T6731] EXT4-fs (loop1): Remounting filesystem read-only
[  112.416761][ T6731] EXT4-fs (loop1): 1 orphan inode deleted
[  112.418271][ T6733] macvlan2: left allmulticast mode
[  112.427685][ T6733] bridge0: left allmulticast mode
[  112.453354][ T6733] bridge0: left promiscuous mode
[  112.568345][ T6756] loop0: detected capacity change from 0 to 1024
[  112.579847][ T6756] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  112.588705][ T6731] loop1: detected capacity change from 0 to 512
[  112.595657][ T6756] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  112.619341][ T6756] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  112.628576][ T6756] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #3: block 2: comm syz.0.999: lblock 2 mapped to illegal pblock 2 (length 1)
[  112.643359][ T6756] EXT4-fs (loop0): Remounting filesystem read-only
[  112.650339][ T6756] EXT4-fs (loop0): 1 orphan inode deleted
[  112.663749][ T6731] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.990: Failed to acquire dquot type 1
[  112.681618][ T6731] EXT4-fs (loop1): 1 truncate cleaned up
[  112.687914][ T6731] ext4 filesystem being mounted at /228/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.788530][ T6756] loop0: detected capacity change from 0 to 512
[  112.833479][ T6756] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.999: Failed to acquire dquot type 1
[  112.846627][ T6756] EXT4-fs (loop0): 1 truncate cleaned up
[  112.853540][ T6756] ext4 filesystem being mounted at /203/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.998826][ T6772] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  113.278049][ T6774] can0: slcan on ttyS3.
[  113.363573][ T6775] can0 (unregistered): slcan off ttyS3.
[  113.460810][ T6794] loop0: detected capacity change from 0 to 512
[  113.540300][ T6806] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1010'.
[  113.644704][ T6814] netlink: 'syz.0.1012': attribute type 1 has an invalid length.
[  113.652544][ T6814] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1012'.
[  113.661673][ T6814] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  113.945985][   T29] kauditd_printk_skb: 671 callbacks suppressed
[  113.946002][   T29] audit: type=1400 audit(1746768480.878:9152): avc:  denied  { read write } for  pid=3320 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[  113.997131][   T29] audit: type=1400 audit(1746768480.918:9153): avc:  denied  { mounton } for  pid=6836 comm="syz.4.1019" path="/194/file0" dev="tmpfs" ino=1092 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=0
[  114.019995][   T29] audit: type=1400 audit(1746768480.928:9154): avc:  denied  { read write } for  pid=3320 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[  114.149521][   T29] audit: type=1400 audit(1746768481.078:9155): avc:  denied  { prog_load } for  pid=6838 comm="syz.4.1020" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[  114.195677][   T29] audit: type=1400 audit(1746768481.108:9156): avc:  denied  { prog_load } for  pid=6838 comm="syz.4.1020" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[  114.214822][   T29] audit: type=1400 audit(1746768481.108:9157): avc:  denied  { prog_load } for  pid=6838 comm="syz.4.1020" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[  114.234017][   T29] audit: type=1400 audit(1746768481.108:9158): avc:  denied  { read write } for  pid=6838 comm="syz.4.1020" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[  114.258054][   T29] audit: type=1400 audit(1746768481.118:9159): avc:  denied  { prog_load } for  pid=6838 comm="" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[  114.276259][   T29] audit: type=1400 audit(1746768481.118:9160): avc:  denied  { prog_load } for  pid=6838 comm="" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[  114.294470][   T29] audit: type=1400 audit(1746768481.118:9161): avc:  denied  { prog_load } for  pid=6838 comm="" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[  114.619849][ T6848] netlink: 'syz.1.1025': attribute type 1 has an invalid length.
[  114.627938][ T6848] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1025'.
[  114.662389][ T6848] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  114.945820][ T6860] ==================================================================
[  114.953957][ T6860] BUG: KCSAN: data-race in __filemap_remove_folio / folio_mapping
[  114.961813][ T6860] 
[  114.964183][ T6860] write to 0xffffea0004227918 of 8 bytes by task 6868 on cpu 0:
[  114.971841][ T6860]  __filemap_remove_folio+0x1a5/0x2a0
[  114.977266][ T6860]  filemap_remove_folio+0x6d/0x1d0
[  114.982406][ T6860]  truncate_inode_folio+0x42/0x50
[  114.987463][ T6860]  shmem_undo_range+0x244/0xa80
[  114.992352][ T6860]  shmem_evict_inode+0x134/0x520
[  114.997331][ T6860]  evict+0x2e0/0x550
[  115.001235][ T6860]  iput+0x447/0x5b0
[  115.005056][ T6860]  dentry_unlink_inode+0x24f/0x260
[  115.010182][ T6860]  __dentry_kill+0x18d/0x4b0
[  115.014792][ T6860]  dput+0x5e/0xd0
[  115.018444][ T6860]  __fput+0x444/0x650
[  115.022527][ T6860]  fput_close_sync+0x6e/0x120
[  115.027303][ T6860]  __x64_sys_close+0x56/0xf0
[  115.031990][ T6860]  x64_sys_call+0x2747/0x2fb0
[  115.036692][ T6860]  do_syscall_64+0xd0/0x1a0
[  115.041728][ T6860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.047638][ T6860] 
[  115.049972][ T6860] read to 0xffffea0004227918 of 8 bytes by task 6860 on cpu 1:
[  115.057520][ T6860]  folio_mapping+0xa1/0x120
[  115.062036][ T6860]  lru_add+0x80/0x430
[  115.066041][ T6860]  folio_batch_move_lru+0x174/0x230
[  115.071272][ T6860]  folio_add_lru+0x14a/0x1f0
[  115.075970][ T6860]  folio_add_lru_vma+0x49/0x70
[  115.080754][ T6860]  handle_mm_fault+0x26ab/0x2ae0
[  115.085712][ T6860]  do_user_addr_fault+0x636/0x1090
[  115.090885][ T6860]  exc_page_fault+0x54/0xc0
[  115.095422][ T6860]  asm_exc_page_fault+0x26/0x30
[  115.100321][ T6860] 
[  115.102669][ T6860] value changed: 0xffff888104692d88 -> 0x0000000000000000
[  115.109782][ T6860] 
[  115.112217][ T6860] Reported by Kernel Concurrency Sanitizer on:
[  115.118387][ T6860] CPU: 1 UID: 0 PID: 6860 Comm: syz.3.1028 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(voluntary) 
[  115.130819][ T6860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  115.140896][ T6860] ==================================================================
[  118.951470][   T29] kauditd_printk_skb: 40440 callbacks suppressed
[  118.951490][   T29] audit: type=1400 audit(1746768485.888:48198): avc:  denied  { read } for  pid=3045 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  118.959170][ T3045] audit: audit_backlog=65 > audit_backlog_limit=64
[  118.980371][   T29] audit: type=1400 audit(1746768485.888:48199): avc:  denied  { read } for  pid=3045 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  118.985510][ T3045] audit: audit_lost=471 audit_rate_limit=0 audit_backlog_limit=64
[  119.006624][   T29] audit: type=1400 audit(1746768485.888:48200): avc:  denied  { read } for  pid=3045 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  119.014434][ T3045] audit: backlog limit exceeded
[  119.015092][ T3045] audit: audit_backlog=65 > audit_backlog_limit=64
[  119.035722][   T29] audit: type=1400 audit(1746768485.888:48201): avc:  denied  { read } for  pid=3045 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  119.040556][ T3045] audit: audit_lost=472 audit_rate_limit=0 audit_backlog_limit=64
[  119.047080][   T29] audit: type=1400 audit(1746768485.888:48202): avc:  denied  { read } for  pid=3045 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  123.962374][   T29] kauditd_printk_skb: 49449 callbacks suppressed
[  123.962397][   T29] audit: type=1400 audit(1746768490.888:97450): avc:  denied  { read } for  pid=3045 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  123.972701][ T3045] audit: audit_backlog=65 > audit_backlog_limit=64
[  123.989907][   T29] audit: type=1400 audit(1746768490.898:97451): avc:  denied  { read } for  pid=3045 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  123.996416][ T3045] audit: audit_lost=540 audit_rate_limit=0 audit_backlog_limit=64
[  123.996433][ T3045] audit: backlog limit exceeded
[  123.998051][ T3045] audit: audit_backlog=65 > audit_backlog_limit=64
[  124.017611][   T29] audit: type=1400 audit(1746768490.898:97452): avc:  denied  { read } for  pid=3045 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  124.017644][   T29] audit: type=1400 audit(1746768490.898:97453): avc:  denied  { read } for  pid=3045 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  124.025488][ T3045] audit: audit_lost=541 audit_rate_limit=0 audit_backlog_limit=64
[  124.030330][   T29] audit: type=1400 audit(1746768490.898:97454): avc:  denied  { read } for  pid=3045 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0