last executing test programs:

3.51335085s ago: executing program 0 (id=493):
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
clock_nanosleep(0x8, 0x0, &(0x7f0000000280), 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r3, 0x5412, &(0x7f0000000640)=0x13)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000280)={0xfeff, 0x8, 0x8, 0xfffe, 0x11, "0100000000000080"})
ioctl$TIOCL_GETMOUSEREPORTING(r3, 0x5412, &(0x7f00000006c0)=0xa)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={0x0}, 0x1, 0x0, 0x0, 0x400c041}, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, 0xffffffffffffffff, 0x100000)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x12}, &(0x7f00009b1ffc))
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4002, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

3.486648261s ago: executing program 2 (id=495):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x9, 0x3, 0x8, 0x4, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffffc}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0xfff5, &(0x7f0000000000)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x2000000, {0x1}}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x64}}, 0x0)

3.367919212s ago: executing program 2 (id=496):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$setownex(r0, 0xf, &(0x7f0000000140)={0x1}) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x8}, 0x18) (async)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2010030, &(0x7f0000000080), 0x81, 0x7ca, &(0x7f0000001400)="$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") (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000060000000400000000000007000008"], 0x0, 0x46, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) (async)
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x474, &(0x7f00000004c0)="$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") (async)
syz_usb_connect(0x1, 0x24, &(0x7f0000000600)={{0x12, 0x1, 0x300, 0x4f, 0x6e, 0x3, 0x8, 0x2001, 0x3c23, 0x14ed, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x1, 0x9, 0xe0, 0x2, [{{0x9, 0x4, 0xde, 0xf3, 0x0, 0xec, 0x24, 0x56, 0x4}}]}}]}}, 0x0) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r2, &(0x7f0000000140)='3', 0x1, 0xfeca) (async)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) (async)
io_setup(0x4, &(0x7f0000000340)=<r3=>0x0) (async)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r4, 0x10d, 0x1, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x6, r6}, 0x38) (async)
lsetxattr$security_selinux(&(0x7f00000001c0)='.\x00', &(0x7f0000000240), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x1001, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRESOCT=r5, @ANYRES32=r3], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r7}, 0x10) (async)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0900000004000000080000000c"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xd, &(0x7f0000000280)=ANY=[@ANYRES32=r9, @ANYRESHEX=r8], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r10 = socket(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000013c0)=ANY=[@ANYBLOB="140000005304010000000000000000000500000a1400000011000a"], 0x28}, 0x1, 0x0, 0x0, 0x64841}, 0x0) (async)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r10, 0x84, 0x1f, &(0x7f0000000780)={0x0, @in={{0x2, 0x4e23, @multicast2}}, 0x4, 0xc37}, &(0x7f0000000300)=0x90) (async)
r11 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="3c0000001000370401000000f8dbdf2500000000", @ANYRES32=0x0, @ANYBLOB="890c040002000000000000000900010069706970000000000c00028006000f000500000082b5f95245"], 0x3c}, 0x1, 0x0, 0x0, 0x44801}, 0x0)

3.367618212s ago: executing program 2 (id=497):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
setreuid(0xee01, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x80, &(0x7f0000000080), 0x3, 0x4db, &(0x7f00000002c0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000fc0)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000ec0)={0xf8, 0x0, 0x8, 0x70bd26, 0x25dfdbfd, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}]}, @HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x40}, 0x48000)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000e00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r2], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x18)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x1200)
rseq(&(0x7f0000000280), 0x20, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004f40)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000400)="f2", 0x1}], 0x1}}], 0x1, 0x48100)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000540))
ptrace$cont(0x20, r4, 0x0, 0x0)
wait4(0x0, 0x0, 0x80000000, 0xfffffffffffffffc)

2.691504912s ago: executing program 1 (id=502):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4fb, &(0x7f0000000500)="$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")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x181242, 0x0)
r2 = creat(&(0x7f0000000200)='./file2\x00', 0x20)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r2, 0x89f5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r0, 0x0, 0x1, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0xc, r0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

2.573450324s ago: executing program 2 (id=503):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_J1939_SEND_PRIO(r0, 0x6b, 0x3, &(0x7f0000000340)=0x3, 0x4)
socket$netlink(0x10, 0x3, 0x9)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0), 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008800000b704000000000000850000005900000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bind$inet6(r0, &(0x7f0000000f80)={0xa, 0x4, 0x0, @loopback={0x9d}, 0xa7a}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x1, 0x571, &(0x7f0000000780)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="020000000100040000000000040005000000000010000000009dfd002000010000000000"], 0x24, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)

2.09322989s ago: executing program 1 (id=506):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f00001d8000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x7)
perf_event_open(&(0x7f00000001c0)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

1.959633172s ago: executing program 4 (id=507):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4fb, &(0x7f0000000500)="$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")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x181242, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file2\x00', &(0x7f00000000c0), &(0x7f0000000000)=ANY=[], 0xfe37, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r0, 0x0, 0x1, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0xc, r0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

1.854700154s ago: executing program 1 (id=508):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r1)
sendmsg$NFC_CMD_DEACTIVATE_TARGET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="010027bd7000fbdbdf251e0000000800040001000000080001"], 0x2c}, 0x1, 0x0, 0x0, 0xda14d2f5d07001c7}, 0x84)

1.828563234s ago: executing program 2 (id=509):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000008085000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r0, 0x0, 0x40000}, 0x18)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x1, 0x800001, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0xfffffffe}, 0x0, 0x0)
r1 = getpid()
process_vm_readv(r1, 0x0, 0x0, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)

1.811722484s ago: executing program 1 (id=510):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000001}, 0x1100, 0x5dd8, 0x0, 0x8, 0x0, 0x8, 0xfff9, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
socket$inet6_dccp(0xa, 0x6, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0x40ffffffff}, 0x1100, 0x5, 0x3a65, 0x5, 0x0, 0x5, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
socket$nl_route(0x10, 0x3, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioprio_set$pid(0x3, 0x0, 0x0)
request_key(0x0, &(0x7f0000001ffb)={'syz', 0x2, 0x11}, &(0x7f0000001fee)='R\brust\xe3c*sgrVex:D0', 0x0)
openat(0xffffffffffffff9c, 0x0, 0x14bd42, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2000)
r4 = fcntl$dupfd(r3, 0x0, r3)
pwritev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000180)}], 0x1, 0x800000, 0x0)
fsopen(&(0x7f0000000200)='fuse\x00', 0x1)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
open_by_handle_at(0xffffffffffffff9c, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
read$char_usb(r4, 0x0, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x13, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xffffffffffffffb0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f00000001c0))

1.762631075s ago: executing program 0 (id=511):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001640)=ANY=[@ANYBLOB='D\n\x00\x00', @ANYRES16=r1, @ANYBLOB="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", @ANYRES32, @ANYBLOB="240003"], 0xa44}, 0x1, 0x0, 0x0, 0x4000}, 0x40)

1.756406345s ago: executing program 3 (id=512):
symlink(&(0x7f0000000280)='./file0/file0\x00', &(0x7f00000017c0)='./file0\x00')
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000380)=ANY=[])

1.725548736s ago: executing program 4 (id=513):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000ecffffffffff2000000005002000000000000c001f0070687930"], 0x28}}, 0x0)

1.724708925s ago: executing program 0 (id=514):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x80, 0x0, 0x21e}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSW(r3, 0x5403, &(0x7f0000000040)={0x1, 0x2, 0x5, 0x8002, 0xfe, "90730aef00fffffffffffffbff95647fffffeb"})
r4 = dup(r3)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000100)=0xff)
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r5=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f00000005c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x2, [@datasec={0x7, 0x1, 0x0, 0xf, 0x1, [{0x5, 0x5, 0x2}], "82"}, @datasec={0x4, 0x0, 0x0, 0xf, 0x3, [], "9a0459"}]}}, &(0x7f0000000280)=""/6, 0x42, 0x6, 0x1, 0x3, 0x0, @void, @value}, 0x28)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r5, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0, 0x20042, 0x1})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x10c)
fcntl$notify(r6, 0x402, 0x4)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r9, 0x0, 0x2}, 0x18)
fcntl$notify(r7, 0x402, 0x5)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r10}, 0x10)
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000180)={0x0, 0x18, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r12 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r12}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r13 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r13, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0x140f, 0x10, 0x70bd2b, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @RDMA_NLDEV_ATTR_CHARDEV_TYPE={0x8, 0x45, 'cma\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x0)

1.674688296s ago: executing program 4 (id=515):
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
clock_nanosleep(0x8, 0x0, &(0x7f0000000280), 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r3, 0x5412, &(0x7f0000000640)=0x13)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000280)={0xfeff, 0x8, 0x8, 0xfffe, 0x11, "0100000000000080"})
ioctl$TIOCL_GETMOUSEREPORTING(r3, 0x5412, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={0x0}, 0x1, 0x0, 0x0, 0x400c041}, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, 0xffffffffffffffff, 0x100000)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x12}, &(0x7f00009b1ffc))
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4002, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

1.627570207s ago: executing program 3 (id=516):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x11, &(0x7f0000000100)={[{@bh}, {@resgid}, {@norecovery}, {@abort}, {@nombcache}]}, 0x4, 0x5fb, &(0x7f00000004c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f00000000c0)={'wg1\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x70, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x18)

1.379314031s ago: executing program 0 (id=517):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000ecffffffffff2000000005002000000000000c001f0070687930"], 0x28}}, 0x0)

1.315196021s ago: executing program 0 (id=518):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES32, @ANYBLOB='\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00"/14], 0x48)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000400)={r0, &(0x7f0000000180), 0x0}, 0x20)
perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x66)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0c000000040000000400000009"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0xffffffff, r2}, 0x38)

335.592685ms ago: executing program 3 (id=519):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYBLOB])

335.206685ms ago: executing program 4 (id=520):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r1)
sendmsg$NFC_CMD_DEACTIVATE_TARGET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB=',\x00', @ANYRES16=r2, @ANYBLOB="010027bd7000fbdbdf251e0000000800040001000000080001"], 0x2c}, 0x1, 0x0, 0x0, 0xda14d2f5d07001c7}, 0x84)

334.764165ms ago: executing program 4 (id=521):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4fb, &(0x7f0000000500)="$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")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x181242, 0x0)
creat(&(0x7f0000000200)='./file2\x00', 0x20)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r0, 0x0, 0x1, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0xc, r0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

282.159836ms ago: executing program 3 (id=522):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES32, @ANYBLOB='\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00"/14], 0x48)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000400)={r0, &(0x7f0000000180), 0x0}, 0x20)
perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x66)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0c000000040000000400000009"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0xffffffff, r2}, 0x38)

249.444237ms ago: executing program 1 (id=523):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000003c0), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002b027000ffdbdf25210000000a0001007770616e31000000050020000000000009001f0070687931000000000a0001007770616e33000000050020"], 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4f, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r4, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})

249.158946ms ago: executing program 0 (id=524):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4fb, &(0x7f0000000500)="$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")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r1 = creat(&(0x7f0000000200)='./file2\x00', 0x20)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r1, 0x89f5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file2\x00', &(0x7f00000000c0), &(0x7f0000000000)=ANY=[], 0xfe37, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r0, 0x0, 0x1, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0xc, r0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

186.788338ms ago: executing program 1 (id=525):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0900000004000000080000000c"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xd, &(0x7f0000000280)=ANY=[@ANYRESHEX=r0, @ANYRES16=r0, @ANYBLOB="0000000000000000b70800000000007b8af8ff00000000bfa200000000001d00030000009500"/49], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.net/syz0\x00', 0x200002, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x25dfdbfd, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x2, 0x1}}}}]}]}, 0x48}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="a80100002100010027bd7000fedbdf2502"], 0x1a8}, 0x1, 0x0, 0x0, 0x40000}, 0x4000050)
r4 = dup2(r0, r0)
r5 = openat$cgroup_subtree(r4, &(0x7f0000000380), 0x2, 0x0)
write$cgroup_subtree(r5, 0x0, 0xfe1b)
r6 = socket$kcm(0x10, 0x3, 0x0)
write$cgroup_subtree(r6, 0x0, 0xfe33)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x503, &(0x7f0000000fc0)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x174)
ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f0000000140))
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48041, 0x0)
pwrite64(r8, &(0x7f0000000140)="f6", 0xffffff07, 0x8000c61)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x36e084fcb6392193, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, 0x0, 0x0}, 0x20)

131.451868ms ago: executing program 3 (id=526):
wait4(0x0, 0x0, 0x80000000, 0xfffffffffffffffc)

55.753359ms ago: executing program 3 (id=527):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0900000004000000080000000c"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xd, &(0x7f0000000280)=ANY=[@ANYRESHEX=r0, @ANYRES16=r0, @ANYBLOB="0000000000000000b70800000000007b8af8ff00000000bfa200000000001d00030000009500"/49], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.net/syz0\x00', 0x200002, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x25dfdbfd, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x2, 0x1}}}}]}]}, 0x48}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="a80100002100010027bd7000fedbdf2502"], 0x1a8}, 0x1, 0x0, 0x0, 0x40000}, 0x4000050)
r4 = dup2(r0, r0)
r5 = openat$cgroup_subtree(r4, &(0x7f0000000380), 0x2, 0x0)
write$cgroup_subtree(r5, 0x0, 0xfe1b)
r6 = socket$kcm(0x10, 0x3, 0x0)
write$cgroup_subtree(r6, 0x0, 0xfe33)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x503, &(0x7f0000000fc0)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x174)
ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f0000000140))
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48041, 0x0)
pwrite64(r8, &(0x7f0000000140)="f6", 0xffffff07, 0x8000c61)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x36e084fcb6392193, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, 0x0, 0x0}, 0x20)

54.336ms ago: executing program 4 (id=528):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000dc0), &(0x7f0000002380)='./file1\x00', 0x3a0cc0a, &(0x7f0000000480)=ANY=[@ANYBLOB='hide,dmode=0x0000000000000005,map=normal,map=normal,session=0x000000000000000e,overriderockperm,showassoc,nocompress,utf8,map=normal,session=0x0000000000000006,map=acorn,mode=0x0000000000000086,uid=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00'], 0x41, 0x9ea, &(0x7f0000004100)="$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")
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r1, 0x10001, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a500000095deffffff000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r4)
sendmsg$IEEE802154_ADD_IFACE(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01000000ecffffffffff2000000005002000000000000c001f0070687930"], 0x28}}, 0x0)

0s ago: executing program 2 (id=529):
socket$can_j1939(0x1d, 0x2, 0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$rfkill(r0, &(0x7f0000000040), 0x8)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.175' (ED25519) to the list of known hosts.
[   31.553724][ T3304] cgroup: Unknown subsys name 'net'
[   31.559263][   T29] audit: type=1400 audit(1747615307.848:65): avc:  denied  { mounton } for  pid=3304 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   31.582969][   T29] audit: type=1400 audit(1747615307.848:66): avc:  denied  { mount } for  pid=3304 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   31.605510][   T29] audit: type=1400 audit(1747615307.848:67): avc:  denied  { unmount } for  pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   31.740910][ T3304] cgroup: Unknown subsys name 'cpuset'
[   31.747655][ T3304] cgroup: Unknown subsys name 'rlimit'
[   31.897819][   T29] audit: type=1400 audit(1747615308.188:68): avc:  denied  { setattr } for  pid=3304 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   31.921998][   T29] audit: type=1400 audit(1747615308.188:69): avc:  denied  { create } for  pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   31.942746][   T29] audit: type=1400 audit(1747615308.188:70): avc:  denied  { write } for  pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   31.964793][   T29] audit: type=1400 audit(1747615308.188:71): avc:  denied  { read } for  pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   31.972012][ T3306] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   31.985907][   T29] audit: type=1400 audit(1747615308.188:72): avc:  denied  { mounton } for  pid=3304 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   32.019716][   T29] audit: type=1400 audit(1747615308.188:73): avc:  denied  { mount } for  pid=3304 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   32.043266][   T29] audit: type=1400 audit(1747615308.288:74): avc:  denied  { relabelto } for  pid=3306 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   32.083896][ T3304] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   33.897421][ T3314] chnl_net:caif_netlink_parms(): no params data found
[   33.995159][ T3314] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.002456][ T3314] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.009581][ T3314] bridge_slave_0: entered allmulticast mode
[   34.016499][ T3314] bridge_slave_0: entered promiscuous mode
[   34.025649][ T3314] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.032890][ T3314] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.040269][ T3314] bridge_slave_1: entered allmulticast mode
[   34.047424][ T3314] bridge_slave_1: entered promiscuous mode
[   34.059687][ T3320] chnl_net:caif_netlink_parms(): no params data found
[   34.084710][ T3314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   34.096566][ T3313] chnl_net:caif_netlink_parms(): no params data found
[   34.109220][ T3314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.146475][ T3319] chnl_net:caif_netlink_parms(): no params data found
[   34.168148][ T3314] team0: Port device team_slave_0 added
[   34.190277][ T3321] chnl_net:caif_netlink_parms(): no params data found
[   34.204527][ T3314] team0: Port device team_slave_1 added
[   34.252423][ T3314] batman_adv: batadv0: Adding interface: batadv_slave_0
[   34.259585][ T3314] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.286053][ T3314] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   34.306086][ T3320] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.313269][ T3320] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.320700][ T3320] bridge_slave_0: entered allmulticast mode
[   34.327348][ T3320] bridge_slave_0: entered promiscuous mode
[   34.346193][ T3314] batman_adv: batadv0: Adding interface: batadv_slave_1
[   34.353331][ T3314] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.380658][ T3314] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   34.391551][ T3313] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.398617][ T3313] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.405922][ T3313] bridge_slave_0: entered allmulticast mode
[   34.412304][ T3313] bridge_slave_0: entered promiscuous mode
[   34.423226][ T3320] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.430773][ T3320] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.438160][ T3320] bridge_slave_1: entered allmulticast mode
[   34.444650][ T3320] bridge_slave_1: entered promiscuous mode
[   34.459123][ T3313] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.466526][ T3313] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.474699][ T3313] bridge_slave_1: entered allmulticast mode
[   34.481344][ T3313] bridge_slave_1: entered promiscuous mode
[   34.487503][ T3319] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.495172][ T3319] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.502648][ T3319] bridge_slave_0: entered allmulticast mode
[   34.509104][ T3319] bridge_slave_0: entered promiscuous mode
[   34.526713][ T3320] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   34.550805][ T3319] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.558243][ T3319] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.565747][ T3319] bridge_slave_1: entered allmulticast mode
[   34.572923][ T3319] bridge_slave_1: entered promiscuous mode
[   34.580357][ T3320] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.590354][ T3321] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.597599][ T3321] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.605048][ T3321] bridge_slave_0: entered allmulticast mode
[   34.611482][ T3321] bridge_slave_0: entered promiscuous mode
[   34.619106][ T3313] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   34.645663][ T3321] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.652951][ T3321] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.660473][ T3321] bridge_slave_1: entered allmulticast mode
[   34.666946][ T3321] bridge_slave_1: entered promiscuous mode
[   34.674349][ T3313] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.695093][ T3314] hsr_slave_0: entered promiscuous mode
[   34.701308][ T3314] hsr_slave_1: entered promiscuous mode
[   34.718212][ T3319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   34.728882][ T3319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.738941][ T3320] team0: Port device team_slave_0 added
[   34.745703][ T3320] team0: Port device team_slave_1 added
[   34.762144][ T3321] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   34.785882][ T3320] batman_adv: batadv0: Adding interface: batadv_slave_0
[   34.792946][ T3320] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.819165][ T3320] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   34.831097][ T3313] team0: Port device team_slave_0 added
[   34.837736][ T3320] batman_adv: batadv0: Adding interface: batadv_slave_1
[   34.844818][ T3320] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.871332][ T3320] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   34.883347][ T3321] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.902191][ T3313] team0: Port device team_slave_1 added
[   34.919330][ T3319] team0: Port device team_slave_0 added
[   34.939256][ T3321] team0: Port device team_slave_0 added
[   34.946761][ T3319] team0: Port device team_slave_1 added
[   34.957805][ T3313] batman_adv: batadv0: Adding interface: batadv_slave_0
[   34.965018][ T3313] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.991388][ T3313] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.002960][ T3321] team0: Port device team_slave_1 added
[   35.009012][ T3313] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.016280][ T3313] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.042797][ T3313] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.085600][ T3319] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.092965][ T3319] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.119885][ T3319] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.137042][ T3320] hsr_slave_0: entered promiscuous mode
[   35.143449][ T3320] hsr_slave_1: entered promiscuous mode
[   35.149492][ T3320] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   35.157350][ T3320] Cannot create hsr debugfs directory
[   35.165085][ T3321] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.172265][ T3321] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.198925][ T3321] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.212988][ T3319] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.220157][ T3319] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.247899][ T3319] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.266298][ T3321] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.273663][ T3321] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.300689][ T3321] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.352787][ T3313] hsr_slave_0: entered promiscuous mode
[   35.359427][ T3313] hsr_slave_1: entered promiscuous mode
[   35.365864][ T3313] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   35.373797][ T3313] Cannot create hsr debugfs directory
[   35.435035][ T3321] hsr_slave_0: entered promiscuous mode
[   35.441355][ T3321] hsr_slave_1: entered promiscuous mode
[   35.447390][ T3321] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   35.455403][ T3321] Cannot create hsr debugfs directory
[   35.463237][ T3319] hsr_slave_0: entered promiscuous mode
[   35.469644][ T3319] hsr_slave_1: entered promiscuous mode
[   35.476469][ T3319] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   35.488913][ T3319] Cannot create hsr debugfs directory
[   35.563504][ T3314] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   35.582909][ T3314] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   35.602871][ T3314] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   35.614405][ T3314] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   35.688598][ T3320] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   35.697119][ T3320] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   35.707003][ T3320] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   35.716107][ T3320] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   35.755535][ T3313] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   35.765365][ T3313] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   35.774691][ T3313] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   35.792028][ T3313] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   35.819928][ T3314] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.835807][ T3321] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   35.855075][ T3321] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   35.868520][ T3321] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   35.877428][ T3321] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   35.890948][ T3314] 8021q: adding VLAN 0 to HW filter on device team0
[   35.900235][ T3320] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.924418][ T3320] 8021q: adding VLAN 0 to HW filter on device team0
[   35.941387][ T3327] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.948570][ T3327] bridge0: port 1(bridge_slave_0) entered forwarding state
[   35.957462][ T3327] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.964701][ T3327] bridge0: port 1(bridge_slave_0) entered forwarding state
[   35.975368][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.982725][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   35.994106][ T3313] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.001697][ T3319] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   36.023207][ T3319] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   36.033625][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.040729][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.059396][ T3319] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   36.068784][ T3319] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   36.101411][ T3313] 8021q: adding VLAN 0 to HW filter on device team0
[   36.129637][ T3321] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.148761][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.156718][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.171931][ T3327] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.179254][ T3327] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.197507][ T3321] 8021q: adding VLAN 0 to HW filter on device team0
[   36.209279][ T3320] 8021q: adding VLAN 0 to HW filter on device batadv0
[   36.219028][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.226394][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.241731][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.249241][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.263736][ T3319] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.279694][ T3314] 8021q: adding VLAN 0 to HW filter on device batadv0
[   36.311700][ T3319] 8021q: adding VLAN 0 to HW filter on device team0
[   36.346537][ T3327] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.353788][ T3327] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.371409][ T3327] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.378644][ T3327] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.396420][ T3319] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   36.407071][ T3319] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   36.489800][ T3319] 8021q: adding VLAN 0 to HW filter on device batadv0
[   36.505704][ T3313] 8021q: adding VLAN 0 to HW filter on device batadv0
[   36.534501][ T3320] veth0_vlan: entered promiscuous mode
[   36.544715][ T3321] 8021q: adding VLAN 0 to HW filter on device batadv0
[   36.564944][ T3320] veth1_vlan: entered promiscuous mode
[   36.579523][ T3314] veth0_vlan: entered promiscuous mode
[   36.598123][ T3320] veth0_macvtap: entered promiscuous mode
[   36.606893][ T3314] veth1_vlan: entered promiscuous mode
[   36.622297][ T3320] veth1_macvtap: entered promiscuous mode
[   36.662244][ T3320] batman_adv: batadv0: Interface activated: batadv_slave_0
[   36.681142][ T3314] veth0_macvtap: entered promiscuous mode
[   36.691679][ T3314] veth1_macvtap: entered promiscuous mode
[   36.706538][ T3320] batman_adv: batadv0: Interface activated: batadv_slave_1
[   36.716078][ T3320] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   36.725140][ T3320] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   36.734368][ T3320] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   36.743417][ T3320] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   36.769468][ T3321] veth0_vlan: entered promiscuous mode
[   36.785476][ T3319] veth0_vlan: entered promiscuous mode
[   36.792345][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_0
[   36.807498][ T3321] veth1_vlan: entered promiscuous mode
[   36.815135][ T3313] veth0_vlan: entered promiscuous mode
[   36.822953][   T29] kauditd_printk_skb: 9 callbacks suppressed
[   36.822970][   T29] audit: type=1400 audit(1747615313.118:84): avc:  denied  { mounton } for  pid=3320 comm="syz-executor" path="/root/syzkaller.2X2qXN/syz-tmp" dev="sda1" ino=2041 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   36.837540][ T3321] veth0_macvtap: entered promiscuous mode
[   36.864327][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_1
[   36.873482][ T3319] veth1_vlan: entered promiscuous mode
[   36.879419][   T29] audit: type=1400 audit(1747615313.118:85): avc:  denied  { mount } for  pid=3320 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   36.901911][   T29] audit: type=1400 audit(1747615313.118:86): avc:  denied  { mounton } for  pid=3320 comm="syz-executor" path="/root/syzkaller.2X2qXN/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   36.903742][ T3319] veth0_macvtap: entered promiscuous mode
[   36.928027][   T29] audit: type=1400 audit(1747615313.118:87): avc:  denied  { mount } for  pid=3320 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   36.941670][ T3313] veth1_vlan: entered promiscuous mode
[   36.955997][   T29] audit: type=1400 audit(1747615313.118:88): avc:  denied  { mounton } for  pid=3320 comm="syz-executor" path="/root/syzkaller.2X2qXN/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   36.965125][ T3314] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   36.989064][   T29] audit: type=1400 audit(1747615313.118:89): avc:  denied  { mounton } for  pid=3320 comm="syz-executor" path="/root/syzkaller.2X2qXN/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3475 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   36.998145][ T3314] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.026127][   T29] audit: type=1400 audit(1747615313.118:90): avc:  denied  { unmount } for  pid=3320 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   37.026212][   T29] audit: type=1400 audit(1747615313.158:91): avc:  denied  { mounton } for  pid=3320 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   37.035154][ T3314] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.054896][   T29] audit: type=1400 audit(1747615313.158:92): avc:  denied  { mount } for  pid=3320 comm="syz-executor" name="/" dev="gadgetfs" ino=3494 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   37.078093][ T3314] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.122356][ T3321] veth1_macvtap: entered promiscuous mode
[   37.122632][ T3320] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   37.133063][ T3321] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.173834][   T29] audit: type=1400 audit(1747615313.458:93): avc:  denied  { read write } for  pid=3320 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   37.219890][ T3321] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.227977][ T3319] veth1_macvtap: entered promiscuous mode
[   37.242938][ T3321] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.251970][ T3321] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.260895][ T3321] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.269709][ T3321] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.287178][ T3313] veth0_macvtap: entered promiscuous mode
[   37.298065][ T3319] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.319846][ T3313] veth1_macvtap: entered promiscuous mode
[   37.330000][ T3319] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.350628][ T3319] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.359419][ T3319] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.368663][ T3319] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.377678][ T3319] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.428854][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.473605][ T3471] 9pnet_fd: Insufficient options for proto=fd
[   37.523643][ T3475] loop3: detected capacity change from 0 to 256
[   37.532934][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.556859][ T3313] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.566243][ T3313] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.575225][ T3313] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.584347][ T3313] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.598049][ T3477] netlink: 'syz.4.9': attribute type 13 has an invalid length.
[   37.650155][    C1] hrtimer: interrupt took 39444 ns
[   37.653080][ T3477] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.662891][ T3477] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.739542][ T3477] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   37.769064][ T3477] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   37.859114][ T3477] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.868357][ T3477] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.877492][ T3477] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.887203][ T3477] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   37.972123][ T3485] loop1: detected capacity change from 0 to 128
[   37.999989][ T3477] syz.4.9 (3477) used greatest stack depth: 10840 bytes left
[   38.042702][ T3488] loop4: detected capacity change from 0 to 128
[   38.144611][ T3495] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   38.656692][ T3502] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   39.158280][ T3518] netlink: 'syz.0.21': attribute type 13 has an invalid length.
[   39.225824][ T3523] loop2: detected capacity change from 0 to 1024
[   39.233385][ T3518] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.236473][ T3523] EXT4-fs: Ignoring removed bh option
[   39.240824][ T3518] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.266632][ T3523] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   39.280860][ T3523] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   39.299289][ T3523] EXT4-fs (loop2): invalid journal inode
[   39.305299][ T3523] EXT4-fs (loop2): can't get journal size
[   39.313191][ T3523] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   39.345733][ T3518] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   39.356528][ T3518] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   39.409332][ T3518] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   39.418517][ T3518] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   39.427605][ T3518] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   39.436679][ T3518] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   39.517925][ T3518] syz.0.21 (3518) used greatest stack depth: 10792 bytes left
[   39.664362][ T3533] can0: slcan on ttyS3.
[   39.743199][ T3534] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   39.777353][ T3532] can0 (unregistered): slcan off ttyS3.
[   40.163796][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.318576][ T3552] can0: slcan on ttyS3.
[   40.380379][ T3551] can0 (unregistered): slcan off ttyS3.
[   40.574212][ T3495] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.628340][ T3592] loop2: detected capacity change from 0 to 256
[   40.977864][ T3601] Illegal XDP return value 16128 on prog  (id 28) dev syzkaller1, expect packet loss!
[   41.185140][ T3612] syz.2.42 uses obsolete (PF_INET,SOCK_PACKET)
[   41.223340][ T3502] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.272878][ T3502] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.316613][ T3616] can0: slcan on ttyS3.
[   41.383112][ T3502] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.394478][ T3615] can0 (unregistered): slcan off ttyS3.
[   41.478935][ T3618] loop2: detected capacity change from 0 to 2048
[   41.502238][ T3502] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.516445][ T3618] EXT4-fs: Ignoring removed mblk_io_submit option
[   41.533121][ T3502] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.554729][ T3502] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.576475][ T3618] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.598276][ T3502] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.643515][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.719888][ T3625] loop0: detected capacity change from 0 to 1024
[   41.733631][ T3627] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.756061][ T3628] netlink: 'syz.3.46': attribute type 13 has an invalid length.
[   41.772884][ T3495] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.838388][   T29] kauditd_printk_skb: 169 callbacks suppressed
[   41.838407][   T29] audit: type=1400 audit(1747615318.128:263): avc:  denied  { mounton } for  pid=3631 comm="syz.0.48" path="/11/file0" dev="tmpfs" ino=78 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   41.895980][   T29] audit: type=1400 audit(1747615318.188:264): avc:  denied  { read } for  pid=3631 comm="syz.0.48" name="mISDNtimer" dev="devtmpfs" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   41.919085][   T29] audit: type=1400 audit(1747615318.188:265): avc:  denied  { open } for  pid=3631 comm="syz.0.48" path="/dev/mISDNtimer" dev="devtmpfs" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   41.942991][   T29] audit: type=1400 audit(1747615318.238:266): avc:  denied  { ioctl } for  pid=3631 comm="syz.0.48" path="/dev/mISDNtimer" dev="devtmpfs" ino=249 ioctlcmd=0x4940 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   41.996202][ T3628] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.996448][ T3628] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.054338][ T3628] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   42.071291][   T29] audit: type=1400 audit(1747615318.368:267): avc:  denied  { sys_module } for  pid=3634 comm="syz.0.49" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   42.083061][ T3628] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   42.132493][ T3628] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   42.141136][ T3628] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   42.149508][ T3628] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   42.158273][ T3628] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   42.172673][   T29] audit: type=1400 audit(1747615318.468:268): avc:  denied  { create } for  pid=3640 comm="syz.4.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   42.192480][   T29] audit: type=1400 audit(1747615318.468:269): avc:  denied  { setopt } for  pid=3640 comm="syz.4.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   42.213089][   T29] audit: type=1400 audit(1747615318.468:270): avc:  denied  { bind } for  pid=3640 comm="syz.4.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   42.213115][   T29] audit: type=1400 audit(1747615318.468:271): avc:  denied  { name_bind } for  pid=3640 comm="syz.4.50" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   42.213140][   T29] audit: type=1400 audit(1747615318.468:272): avc:  denied  { node_bind } for  pid=3640 comm="syz.4.50" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[   42.214171][ T3627] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.236582][ T3495] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.316432][ T3627] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.358124][ T3495] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   42.376711][ T3495] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   42.377421][ T3647] loop3: detected capacity change from 0 to 512
[   42.391903][ T3495] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   42.396519][ T3647] =======================================================
[   42.396519][ T3647] WARNING: The mand mount option has been deprecated and
[   42.396519][ T3647]          and is ignored by this kernel. Remove the mand
[   42.396519][ T3647]          option from the mount to silence this warning.
[   42.396519][ T3647] =======================================================
[   42.438171][ T3627] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.462929][ T3495] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   42.469841][ T3647] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.489526][ T3647] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.504602][ T3655] 9pnet_fd: Insufficient options for proto=fd
[   42.553571][ T3627] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   42.558563][ T3658] netlink: 35 bytes leftover after parsing attributes in process `syz.1.55'.
[   42.566434][ T3627] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   42.583432][ T3627] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   42.594925][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.597158][ T3627] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   42.629437][ T3627] syz.2.45 (3627) used greatest stack depth: 10680 bytes left
[   42.666482][ T3671] loop1: detected capacity change from 0 to 512
[   42.687328][ T3392] Process accounting resumed
[   42.699612][ T3665] loop0: detected capacity change from 0 to 2048
[   42.709087][ T3665] EXT4-fs: Ignoring removed mblk_io_submit option
[   42.733144][ T3671] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.748159][ T3671] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.788040][ T3665] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.802835][ T3671] syz.1.59 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   42.817295][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.852907][ T3688] can0: slcan on ttyS3.
[   42.861976][ T3319] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.920523][ T3687] can0 (unregistered): slcan off ttyS3.
[   42.948917][ T3694] netlink: 'syz.1.65': attribute type 13 has an invalid length.
[   42.957538][ T3696] loop0: detected capacity change from 0 to 256
[   43.013740][ T3694] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.020971][ T3694] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.095442][ T3694] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   43.110767][ T3694] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   43.178395][ T3694] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   43.187136][ T3694] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   43.195766][ T3694] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   43.204333][ T3694] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   43.224582][ T3694] syz.1.65 (3694) used greatest stack depth: 10432 bytes left
[   43.251399][ T3710] FAULT_INJECTION: forcing a failure.
[   43.251399][ T3710] name failslab, interval 1, probability 0, space 0, times 1
[   43.264493][ T3710] CPU: 0 UID: 0 PID: 3710 Comm: syz.1.70 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[   43.264529][ T3710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   43.264546][ T3710] Call Trace:
[   43.264615][ T3710]  <TASK>
[   43.264623][ T3710]  __dump_stack+0x1d/0x30
[   43.264654][ T3710]  dump_stack_lvl+0xe8/0x140
[   43.264676][ T3710]  dump_stack+0x15/0x1b
[   43.264694][ T3710]  should_fail_ex+0x265/0x280
[   43.264741][ T3710]  ? __se_sys_mount+0xef/0x2e0
[   43.264816][ T3710]  should_failslab+0x8c/0xb0
[   43.264863][ T3710]  __kmalloc_cache_noprof+0x4c/0x320
[   43.264967][ T3710]  ? memdup_user+0x99/0xd0
[   43.264996][ T3710]  __se_sys_mount+0xef/0x2e0
[   43.265040][ T3710]  ? fput+0x8f/0xc0
[   43.265061][ T3710]  ? ksys_write+0x16e/0x1a0
[   43.265158][ T3710]  __x64_sys_mount+0x67/0x80
[   43.265231][ T3710]  x64_sys_call+0xd36/0x2fb0
[   43.265259][ T3710]  do_syscall_64+0xd0/0x1a0
[   43.265289][ T3710]  ? clear_bhb_loop+0x40/0x90
[   43.265383][ T3710]  ? clear_bhb_loop+0x40/0x90
[   43.265409][ T3710]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.265432][ T3710] RIP: 0033:0x7ffbba48e969
[   43.265454][ T3710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.265478][ T3710] RSP: 002b:00007ffbb8af7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   43.265517][ T3710] RAX: ffffffffffffffda RBX: 00007ffbba6b5fa0 RCX: 00007ffbba48e969
[   43.265536][ T3710] RDX: 0000200000000040 RSI: 0000200000000080 RDI: 0000000000000000
[   43.265548][ T3710] RBP: 00007ffbb8af7090 R08: 0000200000000400 R09: 0000000000000000
[   43.265561][ T3710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.265572][ T3710] R13: 0000000000000000 R14: 00007ffbba6b5fa0 R15: 00007ffeeae35d38
[   43.265590][ T3710]  </TASK>
[   43.546099][ T3718] netlink: 48 bytes leftover after parsing attributes in process `syz.4.74'.
[   43.555182][ T3718] netlink: 12 bytes leftover after parsing attributes in process `syz.4.74'.
[   43.566319][ T3718] netlink: 48 bytes leftover after parsing attributes in process `syz.4.74'.
[   43.816831][ T3735] loop2: detected capacity change from 0 to 256
[   43.843528][ T3736] loop0: detected capacity change from 0 to 512
[   43.883947][ T3736] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.931819][ T3736] ext4 filesystem being mounted at /18/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   44.022279][ T3736] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #2: comm syz.0.79: corrupted inode contents
[   44.045698][ T3736] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #2: comm syz.0.79: mark_inode_dirty error
[   44.088661][ T3736] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #2: comm syz.0.79: corrupted inode contents
[   44.131955][ T3740] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #2: comm syz.0.79: corrupted inode contents
[   44.173432][ T3740] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #2: comm syz.0.79: mark_inode_dirty error
[   44.241920][ T3740] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #2: comm syz.0.79: corrupted inode contents
[   44.282149][ T3740] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.79: mark_inode_dirty error
[   44.317798][ T3740] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #2: comm syz.0.79: corrupted inode contents
[   44.355611][ T3740] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #2: comm syz.0.79: mark_inode_dirty error
[   44.386957][ T3743] loop2: detected capacity change from 0 to 1024
[   44.403681][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.479654][ T3745] can0: slcan on ttyS3.
[   44.560386][ T3744] can0 (unregistered): slcan off ttyS3.
[   44.631813][ T3758] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.684889][ T3764] mmap: syz.0.88 (3764) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   44.703423][ T3758] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.771971][ T3758] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.918138][ T3758] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.121067][ T3391] Process accounting resumed
[   45.293610][ T3820] can0: slcan on ttyS3.
[   45.340299][ T3819] can0 (unregistered): slcan off ttyS3.
[   45.714738][ T3857] 9pnet: Could not find request transport: fd0x0000000000000004
[   45.748789][ T3860] loop0: detected capacity change from 0 to 256
[   45.951892][ T3870] netlink: 'syz.1.111': attribute type 13 has an invalid length.
[   46.149023][ T3392] Process accounting resumed
[   46.214611][ T3882] loop4: detected capacity change from 0 to 512
[   46.269688][ T3886] 9pnet: Could not find request transport: fd0x0000000000000004
[   46.288253][ T3882] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.301365][ T3882] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.362551][ T3894] FAULT_INJECTION: forcing a failure.
[   46.362551][ T3894] name failslab, interval 1, probability 0, space 0, times 0
[   46.375380][ T3894] CPU: 1 UID: 0 PID: 3894 Comm: syz.1.120 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[   46.375440][ T3894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   46.375452][ T3894] Call Trace:
[   46.375459][ T3894]  <TASK>
[   46.375466][ T3894]  __dump_stack+0x1d/0x30
[   46.375491][ T3894]  dump_stack_lvl+0xe8/0x140
[   46.375512][ T3894]  dump_stack+0x15/0x1b
[   46.375550][ T3894]  should_fail_ex+0x265/0x280
[   46.375646][ T3894]  should_failslab+0x8c/0xb0
[   46.375678][ T3894]  __kmalloc_noprof+0xa5/0x3e0
[   46.375700][ T3894]  ? genl_family_rcv_msg_attrs_parse+0x75/0x190
[   46.375795][ T3894]  genl_family_rcv_msg_attrs_parse+0x75/0x190
[   46.375830][ T3894]  genl_family_rcv_msg_doit+0x48/0x1b0
[   46.375885][ T3894]  ? security_capable+0x83/0x90
[   46.375918][ T3894]  ? ns_capable+0x7d/0xb0
[   46.375939][ T3894]  genl_rcv_msg+0x422/0x460
[   46.376009][ T3894]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[   46.376035][ T3894]  netlink_rcv_skb+0x123/0x220
[   46.376124][ T3894]  ? __pfx_genl_rcv_msg+0x10/0x10
[   46.376155][ T3894]  genl_rcv+0x28/0x40
[   46.376183][ T3894]  netlink_unicast+0x5a1/0x670
[   46.376224][ T3894]  netlink_sendmsg+0x58b/0x6b0
[   46.376261][ T3894]  ? __pfx_netlink_sendmsg+0x10/0x10
[   46.376286][ T3894]  __sock_sendmsg+0x145/0x180
[   46.376317][ T3894]  ____sys_sendmsg+0x31e/0x4e0
[   46.376343][ T3894]  ___sys_sendmsg+0x17b/0x1d0
[   46.376390][ T3894]  __x64_sys_sendmsg+0xd4/0x160
[   46.376419][ T3894]  x64_sys_call+0x2999/0x2fb0
[   46.376442][ T3894]  do_syscall_64+0xd0/0x1a0
[   46.376501][ T3894]  ? clear_bhb_loop+0x40/0x90
[   46.376529][ T3894]  ? clear_bhb_loop+0x40/0x90
[   46.376555][ T3894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.376602][ T3894] RIP: 0033:0x7ffbba48e969
[   46.376622][ T3894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.376641][ T3894] RSP: 002b:00007ffbb8af7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   46.376745][ T3894] RAX: ffffffffffffffda RBX: 00007ffbba6b5fa0 RCX: 00007ffbba48e969
[   46.376759][ T3894] RDX: 0000000000000040 RSI: 00002000000001c0 RDI: 0000000000000003
[   46.376844][ T3894] RBP: 00007ffbb8af7090 R08: 0000000000000000 R09: 0000000000000000
[   46.376860][ T3894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.376874][ T3894] R13: 0000000000000000 R14: 00007ffbba6b5fa0 R15: 00007ffeeae35d38
[   46.376895][ T3894]  </TASK>
[   46.630294][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.663411][ T3896] loop1: detected capacity change from 0 to 512
[   46.692331][ T3899] loop4: detected capacity change from 0 to 512
[   46.712322][ T3896] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.725850][ T3896] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.748821][ T3899] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.762070][ T3899] ext4 filesystem being mounted at /21/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   46.789728][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.812387][ T3319] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.852318][   T29] kauditd_printk_skb: 208 callbacks suppressed
[   46.852344][   T29] audit: type=1400 audit(1747615323.148:481): avc:  denied  { create } for  pid=3905 comm="syz.1.124" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   46.907231][   T29] audit: type=1400 audit(1747615323.148:482): avc:  denied  { ioctl } for  pid=3905 comm="syz.1.124" path="socket:[6558]" dev="sockfs" ino=6558 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   46.931980][   T29] audit: type=1400 audit(1747615323.148:483): avc:  denied  { ioctl } for  pid=3905 comm="syz.1.124" path="/dev/mISDNtimer" dev="devtmpfs" ino=249 ioctlcmd=0x4940 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   47.039998][   T29] audit: type=1400 audit(1747615323.328:484): avc:  denied  { bind } for  pid=3905 comm="syz.1.124" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   47.074789][   T29] audit: type=1326 audit(1747615323.368:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3911 comm="syz.0.126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5dd0de969 code=0x7ffc0000
[   47.090081][ T1073] Process accounting resumed
[   47.600189][   T29] audit: type=1326 audit(1747615323.368:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3911 comm="syz.0.126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5dd0de969 code=0x7ffc0000
[   47.623834][   T29] audit: type=1326 audit(1747615323.368:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3911 comm="syz.0.126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc5dd0de969 code=0x7ffc0000
[   47.647880][   T29] audit: type=1326 audit(1747615323.368:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3911 comm="syz.0.126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5dd0de969 code=0x7ffc0000
[   47.672031][   T29] audit: type=1326 audit(1747615323.368:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3911 comm="syz.0.126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7fc5dd0de969 code=0x7ffc0000
[   47.695568][   T29] audit: type=1326 audit(1747615323.368:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3911 comm="syz.0.126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5dd0de969 code=0x7ffc0000
[   47.914191][ T3923] netlink: 'syz.4.131': attribute type 13 has an invalid length.
[   48.043937][ T3932] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   48.054001][ T3932] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   48.221545][ T3758] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.231416][ T3935] loop0: detected capacity change from 0 to 2048
[   48.244704][ T3758] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.254320][ T3935] EXT4-fs: Ignoring removed mblk_io_submit option
[   48.278832][ T3758] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.293145][ T3758] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.377853][ T3935] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.471369][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.493669][ T3942] loop0: detected capacity change from 0 to 256
[   48.828233][ T3951] loop1: detected capacity change from 0 to 256
[   49.199067][ T3960] loop0: detected capacity change from 0 to 1024
[   49.206419][ T3960] EXT4-fs: Ignoring removed bh option
[   49.215474][ T3960] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   49.225856][ T3960] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   49.239590][ T3960] EXT4-fs (loop0): invalid journal inode
[   49.245735][ T3960] EXT4-fs (loop0): can't get journal size
[   49.253067][ T3960] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   49.267258][ T3964] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.304872][ T3967] loop1: detected capacity change from 0 to 512
[   49.326545][ T3964] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.350497][ T3967] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.364658][ T3967] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.396569][ T3319] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.418706][ T3964] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.472539][ T3964] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.553373][ T3976] vhci_hcd: invalid port number 96
[   49.558686][ T3976] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[   49.677283][ T3986] netlink: 24 bytes leftover after parsing attributes in process `syz.3.152'.
[   49.716206][ T3986] netlink: 'syz.3.152': attribute type 1 has an invalid length.
[   49.724692][ T3986] netlink: 36 bytes leftover after parsing attributes in process `syz.3.152'.
[   49.901952][ T3995] loop3: detected capacity change from 0 to 1024
[   49.938163][ T3995] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.969080][ T3985] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   49.991246][ T3986] Invalid ELF header magic: != ELF
[   50.012893][ T4002] 9pnet_fd: Insufficient options for proto=fd
[   50.155042][ T4007] loop1: detected capacity change from 0 to 512
[   50.174304][ T4007] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.187786][ T4007] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.221868][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.234530][ T3319] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.302486][ T3412] EXT4-fs (loop3): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 5 with error 28
[   50.314986][ T3412] EXT4-fs (loop3): This should not happen!! Data will be lost
[   50.314986][ T3412] 
[   50.325232][ T3412] EXT4-fs (loop3): Total free blocks count 0
[   50.331820][ T3412] EXT4-fs (loop3): Free/Dirty block details
[   50.339301][ T3412] EXT4-fs (loop3): free_blocks=68451041280
[   50.345412][ T3412] EXT4-fs (loop3): dirty_blocks=16
[   50.350815][ T3412] EXT4-fs (loop3): Block reservation details
[   50.356810][ T3412] EXT4-fs (loop3): i_reserved_data_blocks=1
[   50.401688][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.452809][ T4018] loop1: detected capacity change from 0 to 1024
[   50.459774][ T4018] EXT4-fs: Ignoring removed bh option
[   50.468511][ T4018] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   50.478534][ T4018] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   50.489354][ T4018] EXT4-fs (loop1): invalid journal inode
[   50.495200][ T4018] EXT4-fs (loop1): can't get journal size
[   50.517149][ T4018] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   50.542217][ T4022] loop4: detected capacity change from 0 to 764
[   50.558724][ T4022] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   51.175281][ T4048] can0: slcan on ttyS3.
[   51.354858][ T3319] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.530752][ T4080] 9pnet_fd: Insufficient options for proto=fd
[   51.611960][ T4088] netlink: 35 bytes leftover after parsing attributes in process `syz.1.180'.
[   51.657768][ T4090] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   51.678159][ T4090] 9pnet_fd: Insufficient options for proto=fd
[   51.859605][ T4097] loop0: detected capacity change from 0 to 2048
[   51.867549][ T4097] EXT4-fs: Ignoring removed mblk_io_submit option
[   51.901706][ T4097] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.926978][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.963402][   T29] kauditd_printk_skb: 118 callbacks suppressed
[   51.963420][   T29] audit: type=1400 audit(1747615328.258:609): avc:  denied  { getopt } for  pid=4104 comm="syz.0.185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   51.991732][   T29] audit: type=1400 audit(1747615328.258:610): avc:  denied  { connect } for  pid=4104 comm="syz.0.185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   52.011364][   T29] audit: type=1400 audit(1747615328.258:611): avc:  denied  { name_connect } for  pid=4104 comm="syz.0.185" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   52.470454][ T4084] can0 (unregistered): slcan off ttyS3.
[   52.532445][ T4122] 9pnet_fd: Insufficient options for proto=fd
[   52.622657][   T29] audit: type=1326 audit(1747615328.918:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4125 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   52.665275][   T29] audit: type=1326 audit(1747615328.938:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4125 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   52.689132][   T29] audit: type=1326 audit(1747615328.938:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4125 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   52.695539][ T4126] netlink: 40 bytes leftover after parsing attributes in process `syz.1.188'.
[   52.713678][   T29] audit: type=1326 audit(1747615328.938:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4125 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   52.747112][   T29] audit: type=1326 audit(1747615328.948:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4125 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   52.749601][ T4134] 9pnet_fd: Insufficient options for proto=fd
[   52.770976][   T29] audit: type=1326 audit(1747615328.948:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4125 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   52.800347][   T29] audit: type=1326 audit(1747615328.948:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4125 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   52.966417][ T4149] loop4: detected capacity change from 0 to 1024
[   52.970449][ T4151] netlink: 35 bytes leftover after parsing attributes in process `syz.1.193'.
[   52.974032][ T4149] EXT4-fs: Ignoring removed bh option
[   53.013079][ T4154] loop0: detected capacity change from 0 to 1024
[   53.022281][ T4154] EXT4-fs: Ignoring removed bh option
[   53.029639][ T3964] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   53.038486][ T4154] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   53.048350][ T4149] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   53.059122][ T4154] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   53.065830][ T4149] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   53.069913][ T4154] EXT4-fs (loop0): invalid journal inode
[   53.086117][ T4154] EXT4-fs (loop0): can't get journal size
[   53.095477][ T4149] EXT4-fs (loop4): invalid journal inode
[   53.101589][ T3964] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   53.104821][ T4149] EXT4-fs (loop4): can't get journal size
[   53.111513][ T4154] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   53.120585][ T3964] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   53.135333][ T4149] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   53.149810][ T3964] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   53.302819][ T4163] can0: slcan on ttyS3.
[   53.410222][ T4160] can0 (unregistered): slcan off ttyS3.
[   53.762746][ T4172] loop2: detected capacity change from 0 to 2048
[   53.804029][ T4172] EXT4-fs: Ignoring removed mblk_io_submit option
[   53.926472][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.936658][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.959789][ T4172] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.980508][ T4178] netlink: 24 bytes leftover after parsing attributes in process `syz.4.203'.
[   53.999374][ T4178] netlink: 'syz.4.203': attribute type 1 has an invalid length.
[   54.007220][ T4178] netlink: 36 bytes leftover after parsing attributes in process `syz.4.203'.
[   54.016623][ T4182] netlink: 24 bytes leftover after parsing attributes in process `syz.0.202'.
[   54.034749][ T4182] netlink: 'syz.0.202': attribute type 1 has an invalid length.
[   54.039273][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.042593][ T4182] netlink: 36 bytes leftover after parsing attributes in process `syz.0.202'.
[   54.069537][ T4182] loop0: detected capacity change from 0 to 1024
[   54.073546][ T4178] loop4: detected capacity change from 0 to 1024
[   54.106226][ T4182] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.140695][ T4178] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.187283][ T4190] netlink: 'syz.2.204': attribute type 13 has an invalid length.
[   54.221030][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.308246][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.318674][ T4193] 9pnet_fd: Insufficient options for proto=fd
[   54.349731][ T4197] 9pnet_fd: Insufficient options for proto=fd
[   54.366987][ T4195] loop0: detected capacity change from 0 to 512
[   54.402064][ T4195] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.411027][ T4190] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.416166][ T4195] ext4 filesystem being mounted at /52/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   54.422248][ T4190] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.469005][ T4195] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #2: comm syz.0.205: corrupted inode contents
[   54.482816][ T4195] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #2: comm syz.0.205: mark_inode_dirty error
[   54.496006][ T4195] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #2: comm syz.0.205: corrupted inode contents
[   54.528837][ T4190] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   54.539363][ T4190] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   54.552395][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.575307][ T4190] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   54.584139][ T4190] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   54.592993][ T4190] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   54.601924][ T4190] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   54.749508][ T4218] netlink: 35 bytes leftover after parsing attributes in process `syz.0.212'.
[   54.782786][ T4221] netlink: 28 bytes leftover after parsing attributes in process `syz.3.215'.
[   54.883068][ T4230] loop0: detected capacity change from 0 to 2048
[   54.896297][ T4230] EXT4-fs: Ignoring removed mblk_io_submit option
[   54.933823][ T4230] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.970669][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.997761][ T4240] 9pnet_fd: Insufficient options for proto=fd
[   55.284975][ T4250] loop1: detected capacity change from 0 to 256
[   55.410582][ T4248] 9pnet_virtio: no channels available for device syz
[   55.772540][ T4258] loop0: detected capacity change from 0 to 256
[   55.851803][ T4261] netlink: 'syz.4.230': attribute type 1 has an invalid length.
[   55.859717][ T4261] netlink: 352 bytes leftover after parsing attributes in process `syz.4.230'.
[   55.905025][ T4263] loop4: detected capacity change from 0 to 512
[   55.979990][ T4263] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.993854][ T4263] ext4 filesystem being mounted at /51/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   56.190742][ T4270] loop3: detected capacity change from 0 to 2048
[   56.197791][ T4270] EXT4-fs: Ignoring removed mblk_io_submit option
[   56.243755][ T4270] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.261239][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.298142][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.368247][ T4278] loop0: detected capacity change from 0 to 512
[   56.435438][ T4278] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.464399][ T4285] loop4: detected capacity change from 0 to 1024
[   56.478536][ T4287] can0: slcan on ttyS3.
[   56.483186][ T4278] ext4 filesystem being mounted at /59/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.494120][ T4285] EXT4-fs: Invalid want_extra_isize 43834
[   56.550360][ T4286] can0 (unregistered): slcan off ttyS3.
[   56.574203][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.591444][ T4294] Zero length message leads to an empty skb
[   56.654915][ T4301] loop0: detected capacity change from 0 to 512
[   56.693809][ T4301] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.725205][ T4301] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.780471][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.924569][ T4339] loop1: detected capacity change from 0 to 512
[   56.972927][ T4339] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.986448][ T4339] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.004162][   T29] kauditd_printk_skb: 175 callbacks suppressed
[   57.004182][   T29] audit: type=1400 audit(1747615333.298:794): avc:  denied  { setattr } for  pid=4337 comm="syz.1.248" name="file2" dev="loop1" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   57.056999][ T3319] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.334531][   T29] audit: type=1400 audit(1747615333.628:795): avc:  denied  { read } for  pid=3043 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[   57.335828][ T4350] can0: slcan on ttyS3.
[   57.434789][   T29] audit: type=1400 audit(1747615333.728:796): avc:  denied  { create } for  pid=4354 comm="syz.3.252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   57.471483][   T29] audit: type=1400 audit(1747615333.768:797): avc:  denied  { write } for  pid=4354 comm="syz.3.252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   57.492150][ T4349] can0 (unregistered): slcan off ttyS3.
[   57.515993][   T29] audit: type=1400 audit(1747615333.768:798): avc:  denied  { open } for  pid=4354 comm="syz.3.252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   57.535374][   T29] audit: type=1400 audit(1747615333.768:799): avc:  denied  { kernel } for  pid=4354 comm="syz.3.252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   57.564592][ T4363] loop4: detected capacity change from 0 to 512
[   57.575111][   T29] audit: type=1400 audit(1747615333.848:800): avc:  denied  { create } for  pid=4361 comm="syz.4.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   57.594924][   T29] audit: type=1400 audit(1747615333.848:801): avc:  denied  { setopt } for  pid=4361 comm="syz.4.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   57.614779][   T29] audit: type=1400 audit(1747615333.858:802): avc:  denied  { bind } for  pid=4361 comm="syz.4.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   57.660826][ T4363] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.713674][ T4363] ext4 filesystem being mounted at /56/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   57.717655][   T29] audit: type=1400 audit(1747615333.978:803): avc:  denied  { create } for  pid=4371 comm="syz.0.254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   57.747117][ T4363] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.253: corrupted inode contents
[   57.795681][ T4363] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #2: comm syz.4.253: mark_inode_dirty error
[   57.820344][ T4382] loop3: detected capacity change from 0 to 512
[   57.847920][ T4382] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.870692][ T4382] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.882762][ T4363] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.253: corrupted inode contents
[   57.895744][ T4390] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.253: corrupted inode contents
[   57.920647][ T4390] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #2: comm syz.4.253: mark_inode_dirty error
[   57.938170][ T4390] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.253: corrupted inode contents
[   57.989720][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.004674][ T4390] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.253: mark_inode_dirty error
[   58.017617][ T4390] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.253: corrupted inode contents
[   58.031519][ T4390] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #2: comm syz.4.253: mark_inode_dirty error
[   58.091450][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.106028][   T36] Process accounting resumed
[   58.168175][ T4409] loop1: detected capacity change from 0 to 256
[   58.212048][ T4414] can0: slcan on ttyS3.
[   58.319377][ T4412] can0 (unregistered): slcan off ttyS3.
[   58.436334][ T4428] loop4: detected capacity change from 0 to 512
[   58.506756][ T4428] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.554951][ T4428] ext4 filesystem being mounted at /59/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   58.607220][ T4428] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.269: corrupted inode contents
[   58.673817][ T4428] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #2: comm syz.4.269: mark_inode_dirty error
[   58.725144][ T4428] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.269: corrupted inode contents
[   58.773502][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.838901][ T4458] netlink: 35 bytes leftover after parsing attributes in process `syz.1.274'.
[   58.872996][ T4466] loop1: detected capacity change from 0 to 512
[   58.892603][ T4466] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.905845][ T4466] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.926734][ T3319] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.982197][   T36] Process accounting resumed
[   59.008066][ T4475] loop1: detected capacity change from 0 to 1024
[   59.026161][ T4475] EXT4-fs: Ignoring removed i_version option
[   59.032339][ T4475] EXT4-fs: Ignoring removed nomblk_io_submit option
[   59.053547][ T4475] EXT4-fs (loop1): can't mount with commit=, fs mounted w/o journal
[   59.190356][ T4496] netlink: 'syz.0.282': attribute type 13 has an invalid length.
[   59.301398][ T4500] netlink: 'syz.3.284': attribute type 13 has an invalid length.
[   59.406017][ T4502] loop4: detected capacity change from 0 to 512
[   59.439537][ T4502] ext4 filesystem being mounted at /63/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   59.460552][ T4502] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.285: corrupted inode contents
[   59.467003][ T4508] loop1: detected capacity change from 0 to 256
[   59.482832][ T4508] msdos: Unknown parameter 'ÿÿÿÿÿÿÿÿ@'
[   59.494008][ T4502] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #2: comm syz.4.285: mark_inode_dirty error
[   59.524580][ T4502] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.285: corrupted inode contents
[   59.539092][ T4502] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.285: mark_inode_dirty error
[   59.636036][ T4519] netlink: 24 bytes leftover after parsing attributes in process `syz.3.291'.
[   59.647408][ T4519] netlink: 'syz.3.291': attribute type 1 has an invalid length.
[   59.655285][ T4519] netlink: 36 bytes leftover after parsing attributes in process `syz.3.291'.
[   59.667388][ T4523] FAULT_INJECTION: forcing a failure.
[   59.667388][ T4523] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   59.681056][ T4523] CPU: 0 UID: 0 PID: 4523 Comm: syz.4.293 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[   59.681149][ T4523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   59.681222][ T4523] Call Trace:
[   59.681228][ T4523]  <TASK>
[   59.681237][ T4523]  __dump_stack+0x1d/0x30
[   59.681263][ T4523]  dump_stack_lvl+0xe8/0x140
[   59.681282][ T4523]  dump_stack+0x15/0x1b
[   59.681298][ T4523]  should_fail_ex+0x265/0x280
[   59.681404][ T4523]  should_fail_alloc_page+0xf2/0x100
[   59.681516][ T4523]  __alloc_frozen_pages_noprof+0xff/0x360
[   59.681549][ T4523]  alloc_pages_mpol+0xb3/0x250
[   59.681625][ T4523]  vma_alloc_folio_noprof+0x1aa/0x300
[   59.681677][ T4523]  handle_mm_fault+0x1056/0x2ae0
[   59.681711][ T4523]  ? __rcu_read_unlock+0x4f/0x70
[   59.681744][ T4523]  do_user_addr_fault+0x3fe/0x1090
[   59.681861][ T4523]  exc_page_fault+0x54/0xc0
[   59.681885][ T4523]  asm_exc_page_fault+0x26/0x30
[   59.681926][ T4523] RIP: 0010:rep_movs_alternative+0x4a/0x90
[   59.681957][ T4523] Code: eb 01 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[   59.681976][ T4523] RSP: 0018:ffffc90012123d60 EFLAGS: 00050206
[   59.681995][ T4523] RAX: ffff888109e32b98 RBX: 0000000000001000 RCX: 0000000000000200
[   59.682010][ T4523] RDX: 0000000000000000 RSI: ffff888119949e00 RDI: 0000200000002000
[   59.682026][ T4523] RBP: ffff888119949000 R08: 00000000000004fc R09: 0000000000000000
[   59.682108][ T4519] loop3: detected capacity change from 0 to 1024
[   59.682116][ T4523] R10: 0001888119949000 R11: 0001888119949fff R12: 0000200000002200
[   59.682132][ T4523] R13: 00007ffffffff000 R14: 0000200000001200 R15: ffff888119949000
[   59.682152][ T4523]  _copy_to_user+0x7c/0xa0
[   59.682175][ T4523]  pagemap_read+0x379/0x5e0
[   59.682203][ T4523]  ? __pfx_pagemap_read+0x10/0x10
[   59.682277][ T4523]  vfs_read+0x1a0/0x6f0
[   59.682303][ T4523]  ? __rcu_read_unlock+0x4f/0x70
[   59.682326][ T4523]  ? __fget_files+0x184/0x1c0
[   59.682396][ T4523]  __x64_sys_pread64+0xfd/0x150
[   59.682425][ T4523]  x64_sys_call+0x296d/0x2fb0
[   59.682461][ T4523]  do_syscall_64+0xd0/0x1a0
[   59.682486][ T4523]  ? clear_bhb_loop+0x40/0x90
[   59.682509][ T4523]  ? clear_bhb_loop+0x40/0x90
[   59.682576][ T4523]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.682599][ T4523] RIP: 0033:0x7f1dcad8e969
[   59.682616][ T4523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.682634][ T4523] RSP: 002b:00007f1dc93f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[   59.682675][ T4523] RAX: ffffffffffffffda RBX: 00007f1dcafb5fa0 RCX: 00007f1dcad8e969
[   59.682688][ T4523] RDX: 0000000000019000 RSI: 0000200000000200 RDI: 0000000000000003
[   59.682702][ T4523] RBP: 00007f1dc93f7090 R08: 0000000000000000 R09: 0000000000000000
[   59.682714][ T4523] R10: 0000001000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.682728][ T4523] R13: 0000000000000000 R14: 00007f1dcafb5fa0 R15: 00007ffc13a66758
[   59.682746][ T4523]  </TASK>
[   59.767783][ T4529] can0: slcan on ttyS3.
[   59.786975][ T4531] 9pnet_fd: Insufficient options for proto=fd
[   60.040538][ T4528] can0 (unregistered): slcan off ttyS3.
[   60.459918][ T4585] netlink: 'syz.2.307': attribute type 1 has an invalid length.
[   60.468067][ T4585] netlink: 352 bytes leftover after parsing attributes in process `syz.2.307'.
[   60.504515][ T4585] loop2: detected capacity change from 0 to 512
[   60.555172][ T4585] ext4 filesystem being mounted at /36/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   60.593584][ T4592] IPv6: Can't replace route, no match found
[   60.600281][   T36] IPVS: starting estimator thread 0...
[   60.665210][ T4597] ip6t_rpfilter: unknown options
[   60.690175][ T4593] IPVS: using max 2592 ests per chain, 129600 per kthread
[   60.694904][ T3392] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   60.733876][ T3392] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   60.746600][ T4597] loop1: detected capacity change from 0 to 1024
[   60.831993][ T4602] fido_id[4602]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   60.898463][ T4606] netlink: 24 bytes leftover after parsing attributes in process `syz.1.311'.
[   60.938303][ T4609] netlink: 24 bytes leftover after parsing attributes in process `syz.2.312'.
[   60.958112][ T4609] netlink: 'syz.2.312': attribute type 1 has an invalid length.
[   60.966195][ T4609] netlink: 36 bytes leftover after parsing attributes in process `syz.2.312'.
[   60.987225][ T4610] netlink: 'syz.0.313': attribute type 1 has an invalid length.
[   60.995082][ T4610] netlink: 352 bytes leftover after parsing attributes in process `syz.0.313'.
[   61.020012][ T4612] loop1: detected capacity change from 0 to 512
[   61.029528][ T4613] loop2: detected capacity change from 0 to 1024
[   61.075206][ T4612] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.208033][ T4622] can0: slcan on ttyS3.
[   61.260167][ T4621] can0 (unregistered): slcan off ttyS3.
[   61.318815][ T4626] 9pnet_fd: Insufficient options for proto=fd
[   61.530435][ T4632] loop4: detected capacity change from 0 to 2048
[   61.590726][ T3473]  loop4: p1 < > p4
[   61.606875][ T3473] loop4: p4 size 8388608 extends beyond EOD, truncated
[   61.623170][ T4632]  loop4: p1 < > p4
[   61.629387][ T4632] loop4: p4 size 8388608 extends beyond EOD, truncated
[   61.677416][ T4632] FAULT_INJECTION: forcing a failure.
[   61.677416][ T4632] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   61.691486][ T4632] CPU: 1 UID: 0 PID: 4632 Comm: syz.4.321 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[   61.691513][ T4632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   61.691527][ T4632] Call Trace:
[   61.691535][ T4632]  <TASK>
[   61.691545][ T4632]  __dump_stack+0x1d/0x30
[   61.691572][ T4632]  dump_stack_lvl+0xe8/0x140
[   61.691660][ T4632]  dump_stack+0x15/0x1b
[   61.691680][ T4632]  should_fail_ex+0x265/0x280
[   61.691729][ T4632]  should_fail_alloc_page+0xf2/0x100
[   61.691760][ T4632]  __alloc_frozen_pages_noprof+0xff/0x360
[   61.691868][ T4632]  alloc_pages_mpol+0xb3/0x250
[   61.691893][ T4632]  vma_alloc_folio_noprof+0x1aa/0x300
[   61.691925][ T4632]  handle_mm_fault+0x1056/0x2ae0
[   61.692019][ T4632]  ? mas_walk+0xf2/0x120
[   61.692093][ T4632]  do_user_addr_fault+0x636/0x1090
[   61.692131][ T4632]  exc_page_fault+0x54/0xc0
[   61.692196][ T4632]  asm_exc_page_fault+0x26/0x30
[   61.692217][ T4632] RIP: 0033:0x7f1dcad3bf6b
[   61.692234][ T4632] Code: c0 8b 87 c0 00 00 00 66 0f 6c c0 85 c0 0f 85 44 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 21 00 00 48 8d 7c 24 20 <0f> 29 44 24 40 49 89 e4 48 89 44 24 50 8b 43 74 48 89 9c 24 00 01
[   61.692255][ T4632] RSP: 002b:00007f1dc93f4e10 EFLAGS: 00010246
[   61.692272][ T4632] RAX: 00007f1dc93f6f30 RBX: 00007f1dcaf83620 RCX: 0000000000000000
[   61.692285][ T4632] RDX: 00007f1dc93f6f78 RSI: 00007f1dcadedbf8 RDI: 00007f1dc93f4e30
[   61.692298][ T4632] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[   61.692360][ T4632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.692412][ T4632] R13: 0000000000000000 R14: 00007f1dcafb5fa0 R15: 00007ffc13a66758
[   61.692469][ T4632]  </TASK>
[   61.692479][ T4632] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   62.025044][   T29] kauditd_printk_skb: 116 callbacks suppressed
[   62.025063][   T29] audit: type=1400 audit(1747615338.318:920): avc:  denied  { read write } for  pid=3321 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   62.057008][   T29] audit: type=1400 audit(1747615338.318:921): avc:  denied  { open } for  pid=3321 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   62.081179][   T29] audit: type=1400 audit(1747615338.318:922): avc:  denied  { ioctl } for  pid=3321 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   62.137019][   T29] audit: type=1400 audit(1747615338.408:923): avc:  denied  { create } for  pid=4654 comm="syz.4.329" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   62.160182][   T29] audit: type=1400 audit(1747615338.408:924): avc:  denied  { write } for  pid=4654 comm="syz.4.329" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   62.181506][   T29] audit: type=1400 audit(1747615338.408:925): avc:  denied  { create } for  pid=4660 comm="syz.2.331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   62.202836][   T29] audit: type=1400 audit(1747615338.408:926): avc:  denied  { write } for  pid=4660 comm="syz.2.331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   62.223941][   T29] audit: type=1400 audit(1747615338.408:927): avc:  denied  { read } for  pid=4660 comm="syz.2.331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   62.244563][   T29] audit: type=1400 audit(1747615338.418:928): avc:  denied  { map_create } for  pid=4660 comm="syz.2.331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   62.264065][   T29] audit: type=1400 audit(1747615338.418:929): avc:  denied  { perfmon } for  pid=4660 comm="syz.2.331" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   62.288726][ T4658] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   62.411501][ T4668] loop3: detected capacity change from 0 to 256
[   62.688831][ T4672] netlink: 'syz.0.334': attribute type 1 has an invalid length.
[   62.696858][ T4672] netlink: 352 bytes leftover after parsing attributes in process `syz.0.334'.
[   62.787075][ T4676] loop2: detected capacity change from 0 to 256
[   62.802208][ T4675] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001)
[   62.810370][ T4675] FAT-fs (loop2): Filesystem has been set read-only
[   62.854663][ T4677] netlink: 24 bytes leftover after parsing attributes in process `syz.4.336'.
[   62.905716][ T4680] loop4: detected capacity change from 0 to 1024
[   62.909593][ T4677] netlink: 'syz.4.336': attribute type 1 has an invalid length.
[   62.920642][ T4677] netlink: 36 bytes leftover after parsing attributes in process `syz.4.336'.
[   62.960728][ T4686] netlink: 16 bytes leftover after parsing attributes in process `syz.1.339'.
[   63.014490][ T4691] loop3: detected capacity change from 0 to 512
[   63.075207][ T4691] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.093077][ T4697] netlink: 24 bytes leftover after parsing attributes in process `syz.0.341'.
[   63.160226][ T4702] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   63.179463][ T4697] netlink: 'syz.0.341': attribute type 1 has an invalid length.
[   63.218987][ T4710] netlink: 'syz.3.347': attribute type 1 has an invalid length.
[   63.244061][ T4710] loop3: detected capacity change from 0 to 512
[   63.291634][ T4710] ext4 filesystem being mounted at /59/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.315014][ T4720] netlink: 'syz.4.351': attribute type 1 has an invalid length.
[   63.327324][ T4718] netlink: 'syz.0.349': attribute type 13 has an invalid length.
[   63.364160][ T4720] loop4: detected capacity change from 0 to 512
[   63.375901][ T4721] netlink: 'syz.1.350': attribute type 13 has an invalid length.
[   63.471933][ T4720] ext4 filesystem being mounted at /75/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.592914][   T23] Process accounting resumed
[   64.059296][ T4775] can0: slcan on ttyS3.
[   64.086774][ T4777] loop3: detected capacity change from 0 to 512
[   64.108775][ T4777] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.372: casefold flag without casefold feature
[   64.128933][ T4783] netlink: 'syz.1.374': attribute type 3 has an invalid length.
[   64.137283][ T4777] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.372: couldn't read orphan inode 15 (err -117)
[   64.168347][ T4786] loop2: detected capacity change from 0 to 256
[   64.185389][ T4788] loop1: detected capacity change from 0 to 512
[   64.240658][ T4788] ext4 filesystem being mounted at /80/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   64.259411][ T4794] loop3: detected capacity change from 0 to 1024
[   64.279681][ T4788] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.376: corrupted inode contents
[   64.312703][ T4788] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #2: comm syz.1.376: mark_inode_dirty error
[   64.325758][ T4788] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.376: corrupted inode contents
[   64.459088][ T4810] loop1: detected capacity change from 0 to 512
[   64.478516][ T4810] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.383: casefold flag without casefold feature
[   64.492585][ T4810] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.383: couldn't read orphan inode 15 (err -117)
[   64.508968][ T4810] FAULT_INJECTION: forcing a failure.
[   64.508968][ T4810] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   64.522867][ T4810] CPU: 0 UID: 0 PID: 4810 Comm: syz.1.383 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[   64.522908][ T4810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   64.522923][ T4810] Call Trace:
[   64.522931][ T4810]  <TASK>
[   64.522940][ T4810]  __dump_stack+0x1d/0x30
[   64.522965][ T4810]  dump_stack_lvl+0xe8/0x140
[   64.522987][ T4810]  dump_stack+0x15/0x1b
[   64.523019][ T4810]  should_fail_ex+0x265/0x280
[   64.523193][ T4810]  should_fail+0xb/0x20
[   64.523226][ T4810]  should_fail_usercopy+0x1a/0x20
[   64.523249][ T4810]  strncpy_from_user+0x25/0x230
[   64.523324][ T4810]  ? kmem_cache_alloc_noprof+0x186/0x310
[   64.523347][ T4810]  ? getname_flags+0x80/0x3b0
[   64.523380][ T4810]  getname_flags+0xae/0x3b0
[   64.523451][ T4810]  __x64_sys_rmdir+0x21/0x40
[   64.523478][ T4810]  x64_sys_call+0x2ae3/0x2fb0
[   64.523502][ T4810]  do_syscall_64+0xd0/0x1a0
[   64.523529][ T4810]  ? clear_bhb_loop+0x40/0x90
[   64.523580][ T4810]  ? clear_bhb_loop+0x40/0x90
[   64.523604][ T4810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.523643][ T4810] RIP: 0033:0x7ffbba48e969
[   64.523660][ T4810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.523681][ T4810] RSP: 002b:00007ffbb8af7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[   64.523756][ T4810] RAX: ffffffffffffffda RBX: 00007ffbba6b5fa0 RCX: 00007ffbba48e969
[   64.523770][ T4810] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[   64.523784][ T4810] RBP: 00007ffbb8af7090 R08: 0000000000000000 R09: 0000000000000000
[   64.523797][ T4810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.523810][ T4810] R13: 0000000000000000 R14: 00007ffbba6b5fa0 R15: 00007ffeeae35d38
[   64.523890][ T4810]  </TASK>
[   64.801337][ T4826] loop1: detected capacity change from 0 to 1024
[   64.838685][ T4834] loop3: detected capacity change from 0 to 512
[   64.853126][ T4834] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.881029][ T4768] can0 (unregistered): slcan off ttyS3.
[   64.904220][ T4838] loop2: detected capacity change from 0 to 512
[   64.925799][ T4840] loop3: detected capacity change from 0 to 1024
[   64.926384][ T4844] loop1: detected capacity change from 0 to 256
[   64.932947][ T4840] EXT4-fs: Ignoring removed bh option
[   64.946280][ T4840] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   64.947492][ T4838] ext4 filesystem being mounted at /56/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   64.956452][ T4840] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   64.978241][ T4840] EXT4-fs (loop3): invalid journal inode
[   64.984255][ T4840] EXT4-fs (loop3): can't get journal size
[   64.989042][ T4838] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.392: corrupted inode contents
[   65.003237][ T4838] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #2: comm syz.2.392: mark_inode_dirty error
[   65.090837][ T4838] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.392: corrupted inode contents
[   65.156174][ T4850] loop4: detected capacity change from 0 to 512
[   65.536726][ T4850] ext4 filesystem being mounted at /82/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.623804][ T4859] __nla_validate_parse: 12 callbacks suppressed
[   65.623825][ T4859] netlink: 352 bytes leftover after parsing attributes in process `syz.1.398'.
[   65.645391][ T4859] loop1: detected capacity change from 0 to 512
[   65.648896][ T4862] can0: slcan on ttyS3.
[   65.684404][ T4859] ext4 filesystem being mounted at /86/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   65.702155][ T4861] can0 (unregistered): slcan off ttyS3.
[   65.712366][ T4869] loop4: detected capacity change from 0 to 512
[   65.722117][ T4869] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.400: corrupted in-inode xattr: e_name out of bounds
[   65.743910][ T4869] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.400: couldn't read orphan inode 15 (err -117)
[   65.874933][ T4880] netlink: 76 bytes leftover after parsing attributes in process `syz.4.400'.
[   65.973129][ T3314] EXT4-fs error (device loop4): htree_dirblock_to_tree:1082: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=76, inode=4294967056, rec_len=127, size=1024 fake=0
[   66.021741][ T4889] loop4: detected capacity change from 0 to 256
[   66.030734][ T4888] loop3: detected capacity change from 0 to 512
[   66.059651][ T4893] 9pnet_virtio: no channels available for device syz
[   66.513540][ T4888] ext4 filesystem being mounted at /73/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.580791][ T4888] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #2: comm syz.3.407: corrupted inode contents
[   66.581814][ T4888] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #2: comm syz.3.407: mark_inode_dirty error
[   66.582159][ T4888] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #2: comm syz.3.407: corrupted inode contents
[   66.683171][ T4898] validate_nla: 5 callbacks suppressed
[   66.683191][ T4898] netlink: 'syz.3.408': attribute type 1 has an invalid length.
[   66.683270][ T4898] netlink: 352 bytes leftover after parsing attributes in process `syz.3.408'.
[   66.686483][ T4898] loop3: detected capacity change from 0 to 512
[   66.733671][ T4898] ext4 filesystem being mounted at /74/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.902905][ T4907] netlink: 'syz.4.412': attribute type 1 has an invalid length.
[   66.910701][ T4907] netlink: 352 bytes leftover after parsing attributes in process `syz.4.412'.
[   66.933894][ T4907] loop4: detected capacity change from 0 to 512
[   66.986256][ T4907] ext4 filesystem being mounted at /85/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   67.030827][   T29] kauditd_printk_skb: 384 callbacks suppressed
[   67.030842][   T29] audit: type=1400 audit(1747615343.318:1314): avc:  denied  { create } for  pid=4917 comm="syz.1.415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   67.062741][ T4922] netlink: 24 bytes leftover after parsing attributes in process `syz.3.417'.
[   67.067179][   T29] audit: type=1400 audit(1747615343.348:1315): avc:  denied  { connect } for  pid=4917 comm="syz.1.415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   67.092670][ T4922] netlink: 'syz.3.417': attribute type 1 has an invalid length.
[   67.100600][ T4922] netlink: 36 bytes leftover after parsing attributes in process `syz.3.417'.
[   67.120935][ T4922] loop3: detected capacity change from 0 to 1024
[   67.209280][ T4930] loop1: detected capacity change from 0 to 512
[   67.265894][ T4936] netlink: 'syz.4.422': attribute type 1 has an invalid length.
[   67.273792][ T4936] netlink: 352 bytes leftover after parsing attributes in process `syz.4.422'.
[   67.323632][ T4936] loop4: detected capacity change from 0 to 512
[   67.332225][ T4930] ext4 filesystem being mounted at /89/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.350427][ T4946] loop2: detected capacity change from 0 to 256
[   67.364205][ T4947] loop3: detected capacity change from 0 to 512
[   67.376511][ T4936] ext4 filesystem being mounted at /86/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   67.404002][ T4947] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.423919][   T29] audit: type=1326 audit(1747615343.718:1316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4956 comm="syz.1.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   67.469340][   T29] audit: type=1326 audit(1747615343.748:1317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4956 comm="syz.1.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   67.493347][   T29] audit: type=1326 audit(1747615343.748:1318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4956 comm="syz.1.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   67.519108][   T29] audit: type=1326 audit(1747615343.748:1319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4956 comm="syz.1.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   67.543019][   T29] audit: type=1326 audit(1747615343.748:1320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4956 comm="syz.1.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   67.567530][   T29] audit: type=1326 audit(1747615343.748:1321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4956 comm="syz.1.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   67.591256][   T29] audit: type=1326 audit(1747615343.748:1322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4956 comm="syz.1.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   67.614900][   T29] audit: type=1326 audit(1747615343.748:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4956 comm="syz.1.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbba48e969 code=0x7ffc0000
[   67.831383][ T4971] loop4: detected capacity change from 0 to 512
[   67.859534][ T4972] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   67.887284][ T4971] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.215117][ T4994] loop2: detected capacity change from 0 to 1024
[   68.223133][ T4994] EXT4-fs: Ignoring removed bh option
[   68.245668][ T4994] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   68.262692][ T4994] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   68.321995][ T4994] EXT4-fs (loop2): invalid journal inode
[   68.327762][ T4994] EXT4-fs (loop2): can't get journal size
[   68.504312][ T5005] 9pnet_virtio: no channels available for device syz
[   69.324605][ T5011] 9pnet_fd: Insufficient options for proto=fd
[   69.361750][ T3321] EXT4-fs unmount: 57 callbacks suppressed
[   69.361771][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.463711][ T5025] loop2: detected capacity change from 0 to 256
[   69.528133][ T5028] netlink: 'syz.0.454': attribute type 13 has an invalid length.
[   69.555777][ T5030] loop4: detected capacity change from 0 to 512
[   69.600665][ T5030] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.633252][ T5036] loop3: detected capacity change from 0 to 256
[   69.681346][ T5030] ext4 filesystem being mounted at /93/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   69.749479][ T5030] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.455: corrupted inode contents
[   69.799560][ T5030] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #2: comm syz.4.455: mark_inode_dirty error
[   69.831694][ T5030] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.455: corrupted inode contents
[   69.941035][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.992022][ T5042] FAULT_INJECTION: forcing a failure.
[   69.992022][ T5042] name failslab, interval 1, probability 0, space 0, times 0
[   70.005013][ T5042] CPU: 1 UID: 0 PID: 5042 Comm: syz.2.458 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[   70.005137][ T5042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   70.005150][ T5042] Call Trace:
[   70.005156][ T5042]  <TASK>
[   70.005165][ T5042]  __dump_stack+0x1d/0x30
[   70.005190][ T5042]  dump_stack_lvl+0xe8/0x140
[   70.005213][ T5042]  dump_stack+0x15/0x1b
[   70.005308][ T5042]  should_fail_ex+0x265/0x280
[   70.005365][ T5042]  should_failslab+0x8c/0xb0
[   70.005461][ T5042]  __kmalloc_noprof+0xa5/0x3e0
[   70.005482][ T5042]  ? inotify_handle_inode_event+0x125/0x3d0
[   70.005509][ T5042]  inotify_handle_inode_event+0x125/0x3d0
[   70.005542][ T5042]  inotify_ignored_and_remove_idr+0x29/0x60
[   70.005638][ T5042]  inotify_freeing_mark+0x1d/0x30
[   70.005734][ T5042]  ? __pfx_inotify_freeing_mark+0x10/0x10
[   70.005823][ T5042]  fsnotify_clear_marks_by_group+0x3b3/0x4b0
[   70.005850][ T5042]  ? __pfx_inotify_release+0x10/0x10
[   70.005876][ T5042]  fsnotify_destroy_group+0x53/0x180
[   70.005900][ T5042]  inotify_release+0x1f/0x30
[   70.005982][ T5042]  __fput+0x298/0x650
[   70.006003][ T5042]  fput_close_sync+0x6e/0x120
[   70.006025][ T5042]  __x64_sys_close+0x56/0xf0
[   70.006059][ T5042]  x64_sys_call+0x2747/0x2fb0
[   70.006085][ T5042]  do_syscall_64+0xd0/0x1a0
[   70.006164][ T5042]  ? clear_bhb_loop+0x40/0x90
[   70.006190][ T5042]  ? clear_bhb_loop+0x40/0x90
[   70.006226][ T5042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.006247][ T5042] RIP: 0033:0x7f3af41ce969
[   70.006262][ T5042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.006281][ T5042] RSP: 002b:00007f3af2837038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[   70.006353][ T5042] RAX: ffffffffffffffda RBX: 00007f3af43f5fa0 RCX: 00007f3af41ce969
[   70.006368][ T5042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[   70.006383][ T5042] RBP: 00007f3af2837090 R08: 0000000000000000 R09: 0000000000000000
[   70.006398][ T5042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.006412][ T5042] R13: 0000000000000000 R14: 00007f3af43f5fa0 R15: 00007ffd0d260c18
[   70.006468][ T5042]  </TASK>
[   70.394879][ T5045] 9pnet_fd: Insufficient options for proto=fd
[   70.463278][ T5053] xt_policy: output policy not valid in PREROUTING and INPUT
[   70.503902][ T5051] 9pnet: Could not find request transport: fd0x0000000000000004
[   70.554572][ T5064] loop2: detected capacity change from 0 to 256
[   70.555211][ T5063] loop1: detected capacity change from 0 to 512
[   70.584331][ T5063] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.598882][ T5066] loop3: detected capacity change from 0 to 1764
[   70.606358][ T5063] ext4 filesystem being mounted at /99/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.708306][ T3319] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.853485][ T5082] loop3: detected capacity change from 0 to 512
[   70.872508][ T5085] netlink: 4 bytes leftover after parsing attributes in process `syz.4.472'.
[   70.882611][ T5085] batman_adv: batadv0: Removing interface: batadv_slave_0
[   70.897099][ T5082] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.925932][ T5085] batman_adv: batadv0: Removing interface: batadv_slave_1
[   70.956884][ T5090] 9pnet: Could not find request transport: fd0x0000000000000004
[   70.995221][ T5082] ext4 filesystem being mounted at /88/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.044684][ T5082] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #2: comm syz.3.474: corrupted inode contents
[   71.074941][ T5082] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #2: comm syz.3.474: mark_inode_dirty error
[   71.093394][ T5082] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #2: comm syz.3.474: corrupted inode contents
[   71.137415][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.179765][ T5102] loop2: detected capacity change from 0 to 1024
[   71.194672][ T5102] EXT4-fs: Ignoring removed bh option
[   71.201261][ T5102] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   71.208205][ T5106] loop1: detected capacity change from 0 to 512
[   71.220334][ T5102] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   71.234603][ T5102] EXT4-fs (loop2): invalid journal inode
[   71.240730][ T5102] EXT4-fs (loop2): can't get journal size
[   71.249818][ T5102] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   71.259143][ T5110] pim6reg: entered allmulticast mode
[   71.270565][ T5106] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.287033][ T5106] ext4 filesystem being mounted at /103/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.303201][ T5110] SELinux:  Context  is not valid (left unmapped).
[   71.363783][ T5106] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.482: corrupted inode contents
[   71.376740][ T5106] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #2: comm syz.1.482: mark_inode_dirty error
[   71.409860][ T5115] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.483'.
[   71.421709][ T5110] netlink: 16402 bytes leftover after parsing attributes in process `+}[@'.
[   71.436144][ T5106] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.482: corrupted inode contents
[   71.623139][ T5118] netlink: 'syz.3.484': attribute type 13 has an invalid length.
[   71.639430][ T5109] pim6reg: left allmulticast mode
[   71.742851][ T5117] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.482: corrupted inode contents
[   71.881544][ T5117] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #2: comm syz.1.482: mark_inode_dirty error
[   71.883191][ T5125] netlink: 'syz.0.486': attribute type 1 has an invalid length.
[   71.901342][ T5125] netlink: 352 bytes leftover after parsing attributes in process `syz.0.486'.
[   71.912480][ T5117] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.482: corrupted inode contents
[   71.931446][ T5117] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.482: mark_inode_dirty error
[   71.943694][ T5117] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.482: corrupted inode contents
[   71.956776][ T5117] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #2: comm syz.1.482: mark_inode_dirty error
[   71.992406][ T3319] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.045374][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.118290][ T5136] loop1: detected capacity change from 0 to 256
[   72.212151][ T5144] netlink: 4 bytes leftover after parsing attributes in process `syz.2.495'.
[   72.230292][   T29] kauditd_printk_skb: 107 callbacks suppressed
[   72.230325][   T29] audit: type=1326 audit(1747615348.528:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5140 comm="syz.3.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1521ee969 code=0x7ffc0000
[   72.314870][   T29] audit: type=1326 audit(1747615348.558:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5140 comm="syz.3.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7ff1521ee969 code=0x7ffc0000
[   72.338599][   T29] audit: type=1326 audit(1747615348.558:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5140 comm="syz.3.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1521ee969 code=0x7ffc0000
[   72.362411][   T29] audit: type=1326 audit(1747615348.558:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5140 comm="syz.3.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1521ee969 code=0x7ffc0000
[   72.386627][   T29] audit: type=1326 audit(1747615348.558:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5140 comm="syz.3.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1521ee969 code=0x7ffc0000
[   72.410350][   T29] audit: type=1326 audit(1747615348.558:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5140 comm="syz.3.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1521ee969 code=0x7ffc0000
[   72.424830][ T5154] loop2: detected capacity change from 0 to 512
[   72.434270][   T29] audit: type=1326 audit(1747615348.558:1437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5140 comm="syz.3.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1521ee969 code=0x7ffc0000
[   72.453287][ T5154] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.497: corrupted in-inode xattr: e_name out of bounds
[   72.464872][   T29] audit: type=1326 audit(1747615348.568:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5140 comm="syz.3.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1521ee969 code=0x7ffc0000
[   72.511485][ T5159] loop3: detected capacity change from 0 to 256
[   72.548853][ T5154] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.497: couldn't read orphan inode 15 (err -117)
[   72.586483][ T5154] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.599869][   T29] audit: type=1326 audit(1747615348.718:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5153 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3af41ce969 code=0x7ffc0000
[   72.623354][   T29] audit: type=1326 audit(1747615348.718:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5153 comm="syz.2.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7f3af41ce969 code=0x7ffc0000
[   72.655718][ T5162] loop4: detected capacity change from 0 to 1024
[   72.663520][ T5162] EXT4-fs: Ignoring removed bh option
[   72.669458][ T5162] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   72.679450][ T5162] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   72.691543][ T5162] EXT4-fs (loop4): invalid journal inode
[   72.697384][ T5162] EXT4-fs (loop4): can't get journal size
[   72.762067][ T5162] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   73.108701][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.138136][ T5174] loop1: detected capacity change from 0 to 512
[   73.186006][ T5174] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.258027][ T5178] loop2: detected capacity change from 0 to 512
[   73.272662][ T5174] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.312190][ T5178] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.389151][ T5178] ext4 filesystem being mounted at /78/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   73.461108][ T5182] loop3: detected capacity change from 0 to 512
[   73.468405][ T5178] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.503: corrupted inode contents
[   73.545592][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.556213][ T5178] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #2: comm syz.2.503: mark_inode_dirty error
[   73.591041][ T5178] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.503: corrupted inode contents
[   73.591659][ T5182] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.627695][ T3319] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.649563][ T5184] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.503: corrupted inode contents
[   73.689900][ T5182] ext4 filesystem being mounted at /96/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   73.712852][ T5184] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #2: comm syz.2.503: mark_inode_dirty error
[   73.727986][ T5184] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.503: corrupted inode contents
[   73.743134][ T5184] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.503: mark_inode_dirty error
[   73.754679][ T5182] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #2: comm syz.3.504: corrupted inode contents
[   73.766939][ T5184] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.503: corrupted inode contents
[   73.785445][ T5182] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #2: comm syz.3.504: mark_inode_dirty error
[   73.797556][ T5184] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #2: comm syz.2.503: mark_inode_dirty error
[   73.819333][ T5190] loop4: detected capacity change from 0 to 512
[   73.828617][ T5182] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #2: comm syz.3.504: corrupted inode contents
[   73.853255][ T5190] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.869072][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.870720][ T5190] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.924771][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.961075][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.022592][ T5214] loop3: detected capacity change from 0 to 1024
[   74.032485][ T5215] netlink: 'syz.0.514': attribute type 13 has an invalid length.
[   74.044123][ T5214] EXT4-fs: Ignoring removed bh option
[   74.108281][ T5214] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   74.118178][ T5214] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   74.139409][ T5214] EXT4-fs (loop3): invalid journal inode
[   74.152012][ T5214] EXT4-fs (loop3): can't get journal size
[   74.333268][ T5214] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.302961][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.356325][ T5231] loop4: detected capacity change from 0 to 512
[   75.358666][ T5233] 9pnet_fd: Insufficient options for proto=fd
[   75.401713][ T5231] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.442297][ T5231] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.520399][ T5243] netlink: 'syz.1.525': attribute type 1 has an invalid length.
[   75.528195][ T5243] netlink: 352 bytes leftover after parsing attributes in process `syz.1.525'.
[   75.596579][ T5243] loop1: detected capacity change from 0 to 512
[   75.627829][ T5249] netlink: 'syz.3.527': attribute type 1 has an invalid length.
[   75.635581][ T5249] netlink: 352 bytes leftover after parsing attributes in process `syz.3.527'.
[   75.647190][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.657723][ T5243] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.671514][ T5243] ext4 filesystem being mounted at /113/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   75.689270][ T5249] loop3: detected capacity change from 0 to 512
[   75.705009][ T3314] ==================================================================
[   75.713339][ T3314] BUG: KCSAN: data-race in find_get_block_common / has_bh_in_lru
[   75.721125][ T3314] 
[   75.723468][ T3314] read-write to 0xffff888237c26b70 of 8 bytes by task 5243 on cpu 0:
[   75.731755][ T3314]  find_get_block_common+0x4f0/0x960
[   75.737100][ T3314]  bdev_getblk+0x7f/0x3d0
[   75.741477][ T3314]  ext4_read_block_bitmap_nowait+0x168/0x680
[   75.748133][ T3314]  ext4_read_block_bitmap+0x1e/0x70
[   75.753387][ T3314]  ext4_mb_mark_context+0x9b/0x920
[   75.758534][ T3314]  ext4_free_blocks+0x7f4/0x1400
[   75.763498][ T3314]  ext4_clear_blocks+0x2a2/0x2c0
[   75.768447][ T3314]  ext4_free_data+0x1a1/0x2a0
[   75.773339][ T3314]  ext4_free_branches+0x62/0x410
[   75.778293][ T3314]  ext4_ind_truncate+0x503/0x830
[   75.783243][ T3314]  ext4_truncate+0x6cc/0xac0
[   75.787850][ T3314]  ext4_write_end+0x44b/0x730
[   75.792539][ T3314]  ext4_da_write_end+0x71/0x7b0
[   75.797423][ T3314]  generic_perform_write+0x312/0x490
[   75.802749][ T3314]  ext4_buffered_write_iter+0x1ee/0x3c0
[   75.808314][ T3314]  ext4_file_write_iter+0x383/0xf00
[   75.813724][ T3314]  vfs_write+0x4a0/0x8d0
[   75.818162][ T3314]  __x64_sys_pwrite64+0xfd/0x150
[   75.823210][ T3314]  x64_sys_call+0xe45/0x2fb0
[   75.827816][ T3314]  do_syscall_64+0xd0/0x1a0
[   75.832335][ T3314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.838238][ T3314] 
[   75.840581][ T3314] read to 0xffff888237c26b70 of 8 bytes by task 3314 on cpu 1:
[   75.848152][ T3314]  has_bh_in_lru+0x35/0x1f0
[   75.852690][ T3314]  __lru_add_drain_all+0x234/0x3f0
[   75.857821][ T3314]  lru_add_drain_all+0x10/0x20
[   75.862617][ T3314]  invalidate_bdev+0x47/0x70
[   75.867237][ T3314]  ext4_put_super+0x624/0x7d0
[   75.872027][ T3314]  generic_shutdown_super+0xe3/0x210
[   75.877414][ T3314]  kill_block_super+0x2a/0x70
[   75.882202][ T3314]  ext4_kill_sb+0x42/0x80
[   75.886643][ T3314]  deactivate_locked_super+0x72/0x1c0
[   75.892025][ T3314]  deactivate_super+0x97/0xa0
[   75.896710][ T3314]  cleanup_mnt+0x269/0x2e0
[   75.901232][ T3314]  __cleanup_mnt+0x19/0x20
[   75.905693][ T3314]  task_work_run+0x12e/0x1a0
[   75.910312][ T3314]  resume_user_mode_work+0x6a/0x70
[   75.915543][ T3314]  syscall_exit_to_user_mode+0x77/0xb0
[   75.921106][ T3314]  do_syscall_64+0xdd/0x1a0
[   75.925708][ T3314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.931626][ T3314] 
[   75.933967][ T3314] value changed: 0x0000000000000000 -> 0xffff888106ea41a0
[   75.941095][ T3314] 
[   75.943430][ T3314] Reported by Kernel Concurrency Sanitizer on:
[   75.949866][ T3314] CPU: 1 UID: 0 PID: 3314 Comm: syz-executor Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[   75.960910][ T3314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   75.971213][ T3314] ==================================================================
[   76.041263][ T3319] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.061327][ T5258] loop4: detected capacity change from 0 to 1764
[   76.068281][ T5249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.081065][ T5249] ext4 filesystem being mounted at /102/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   76.218511][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.