last executing test programs:

2.644164469s ago: executing program 4 (id=408):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={0x0, r1, 0x0, 0x2}, 0x18)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCOUTQ(r2, 0x5411, &(0x7f0000000000))
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000cd03000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0xedf0e51957efc755, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, &(0x7f0000000240), &(0x7f0000000380)=r5}, 0x20)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000440)={r4, &(0x7f0000000680)="407cc3", &(0x7f0000000400)=@tcp6=r6, 0x2}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r5, 0x18000000000002a0, 0x5ee, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000007d00)=[{{&(0x7f00000006c0)={0x2, 0x4e23, @rand_addr=0x64010100}, 0x10, 0x0}}], 0x1, 0x40000840)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0xc248, &(0x7f0000000240)={[{@nodelalloc}, {@resgid={'resgid', 0x3d, 0xee00}}, {@init_itable}]}, 0x83, 0x5f9, &(0x7f0000001200)="$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")
setgroups(0x40000000000000dd, &(0x7f0000000400)=[0xee00])
quotactl$Q_GETQUOTA(0xffffffff80000701, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0xee00, 0x0)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
listen(r7, 0x7)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r7, 0xc400941d, 0x0)

2.528581591s ago: executing program 3 (id=410):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendto$inet6(r2, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0x2, 0x4e24, 0x0, @local, 0x4000000}, 0x1c)

2.474679312s ago: executing program 3 (id=411):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r2, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0x2, 0x4e24, 0x0, @local, 0x4000000}, 0x1c)

2.432979223s ago: executing program 4 (id=412):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x5, &(0x7f0000000480)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='kfree\x00', r0, 0x0, 0x400000000000000}, 0x18)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000380)={0x20, 0x0, 0x7, 0x201, 0x0, 0x0, {}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}}, 0x0)
sendmsg$NFNL_MSG_ACCT_DEL(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000003c0)={0x14, 0x3, 0x7, 0x187a67a68afe9213, 0x0, 0x0, {0x7, 0x0, 0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40048c0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc)=<r3=>0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000"], 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/pm_wakeup_irq', 0x0, 0xb)
r8 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x0)
ioctl$LOOP_CONFIGURE(r8, 0x4c0a, &(0x7f0000001600)={r7, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r9, 0x0, 0x6}, 0x18)
timer_delete(r3)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_PD_GET(0xffffffffffffffff, 0x0, 0x20000000)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r10}, 0x18)
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0xb}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close_range(r11, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x1000000000000002, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000600)=0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000010040b7080000000000007b8af8ff00000000b7080000000000107b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r1, @ANYBLOB="0000000002000000b705000008000000850000005e00000095"], &(0x7f00000001c0)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0xa}, 0x94)

2.429927723s ago: executing program 3 (id=413):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0xff2e)
r1 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000000)={0x0, 0x4, 0x1000000b, 0x9, 0x4, "00000000000000000000c2041a02003d00"})
r2 = syz_open_pts(r0, 0x62080)
dup3(r2, r0, 0x0)
ioctl$TIOCSBRK(r0, 0x5427)

2.190556637s ago: executing program 4 (id=415):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x26}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x8804, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0)

1.5736399s ago: executing program 3 (id=427):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000700)={0x0, 0x1e5, &(0x7f00000006c0)={&(0x7f0000000440)=@deltaction={0x28, 0x31, 0x101, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}]}, 0x28}}, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'geneve1\x00', <r4=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendto$packet(r3, 0x0, 0x0, 0x4c001, &(0x7f00000002c0)={0x11, 0x9, r4, 0x1, 0xd, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x14)

1.478317992s ago: executing program 3 (id=431):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001600)={{0x14}, [@NFT_MSG_NEWRULE={0x14, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x2000}}, @NFT_MSG_NEWRULE={0xa8, 0x6, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_USERDATA={0x4f, 0x7, 0x1, 0x0, "2bbcb8f3aee903a9b5e1e6b812f5e8627baf9cf0fc8a8857547509ca3d6e8c1e28d24f1e59b7e9eb98d55dd962d50104837e457f683d9a06ca98b1b0c3046e0a736325b3aad6dc476d22d8"}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELFLOWTABLE={0x34, 0x18, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x3}]}], {0x14}}, 0x118}, 0x1, 0x0, 0x0, 0x4883}, 0x0)
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x60ae0}], 0x318, 0x0, 0xdb0, 0xf5ffffff}, 0x0)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x18, &(0x7f00000000c0), 0x31}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRESHEX=r3], 0x48)
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='wg1\x00')
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r4}, 0x10)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x800448d5, 0x0)
bind$bt_hci(r5, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)

1.374963813s ago: executing program 4 (id=433):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x9, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
socket(0x1e, 0x4, 0x0)
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x2000000, &(0x7f0000000640)={[{@showassoc}, {@map_acorn}, {@showassoc}, {@utf8}, {@check_relaxed}, {}, {@gid}, {@overriderock}, {@nocompress}, {@check_strict}, {@uid}, {@uid={'uid', 0x3d, 0xee01}}, {@unhide}, {@mode}, {@session={'session', 0x3d, 0x49}}, {@sbsector={'sbsector', 0x3d, 0x80000001}}, {}, {@uid}], [{@obj_user={'obj_user', 0x3d, 'gid'}}, {@subj_type={'subj_type', 0x3d, 'ov[r\x02\x90derockPermW\x1b)\xf9\x17\x8fBK5\x89rr\x8b\xd1B\xec\xfa\xf5&B\x8dV\x8f\xf3+h]\nU\x83*aG\xbe\xf9\x93U\x12\xd7\xc5\x06\xf3\xe7\x0fL.\x93d\xed\x1f\xc9\xb1!\xa7\xa2 \xa3\xb4\xb3\x80\x94\xbb\xe0\x89\x8b\x80^\xdfu\xfc\xdb\xa51p\xf0M\t\x88n\x01\\\x0e\r\xdb1\xd5\x9a\xb9\xd4,.\x1c\a\x8dV)\xec\x8d\xf0|\x8d\x92\xb9W\x02\x89\xf6\xb1\x89\"%\xc5\xfe \xe9\xa62\xf6j\x89\xdbA\x82{fm\xb8\x00\x132N(\xfb|`\xfe\xfd\n\xd1\xa5\xa8\x9a\xb0\x86W\xcb\xba\xda\xae0QK%T\x8e\n\xae\xdc|\xc6\xd8\x18HJ=$\x81y7\x0f\xac\xfes\xd5\x1e\xc5\xcb\xba'}}, {@dont_hash}, {@smackfsroot={'smackfsroot', 0x3d, 'session'}}, {@fsuuid={'fsuuid', 0x3d, {[0x5b, 0x65, 0x30, 0x62, 0x36, 0x36, 0x34, 0x34], 0x2d, [0x0, 0x64, 0x62, 0x32], 0x2d, [0x30, 0x38, 0x38, 0x31], 0x2d, [0x66, 0x33, 0x30, 0x33], 0x2d, [0x6360469c2a17242b, 0x64, 0x63, 0x66, 0x0, 0x62, 0x34, 0x37]}}}]}, 0x1, 0x943, &(0x7f0000001500)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8e7}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffff8}, 0x18)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

1.245938216s ago: executing program 4 (id=435):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000970000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_enter\x00', r0}, 0x10)
r1 = syz_open_procfs(0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000a80)={0x0, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r2)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r3, 0x0, 0x58)
pread64(r1, 0x0, 0x0, 0x0)
syz_pidfd_open(0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200010, &(0x7f00000004c0)=ANY=[@ANYBLOB="64656275672c757466383d312c757466383d302c757466383d312c73686f72746e616d653d77696e39352c636865636b3d7374726963742c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c002bc08d8cca74e8ecafb48437094fe1a4a2383bd9d85bff651d1101fd722e01b9b5d22f08b5fc0ac7cbf33fb553a90ae4d01d71ddeeb089f517aeaaa271899287d5b8949b22b23c2807b7d81714b89e9682f6c3faa6107733a77a4cf985560ed64ec24e255dee3654aa2ba55be4bf3ae257adba34bed8e32e4122bb46aa57a75dab0288098e42f886f09bdf63537db28a454b02a4204a7e7dac3c30a6d4b5c814916b02", @ANYRES64, @ANYRESHEX], 0x1, 0x277, &(0x7f00000001c0)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x7, 0x4, 0x100, 0x5, 0x28}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000019300)={0x11, 0x13, &(0x7f00000193c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x81}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@btf_id={0x18, 0x3, 0x3, 0x0, 0x4}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xa, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='fib6_table_lookup\x00', r4, 0x0, 0x8000000000000000}, 0x18)
r5 = socket$inet6(0xa, 0x1, 0x8010800000000084)
r6 = gettid()
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r8}, 0x10)
lsetxattr$security_selinux(&(0x7f00000001c0)='.\x00', &(0x7f0000000300), &(0x7f0000000280)='system_u:object_r:hwdata_t:s0\x00', 0x1e, 0x1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmmsg$inet6(r5, &(0x7f0000000640)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @private0, 0x400}, 0x1c, &(0x7f0000000600)=[{&(0x7f00000000c0)='/', 0x1}], 0x1}}], 0x1, 0x4008040)

1.179360577s ago: executing program 1 (id=437):
r0 = open(&(0x7f0000000400)='./file0\x00', 0x64842, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1}, 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x45, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf84, 0x3}, 0x1c)
close(r4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x18)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r6}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r8 = dup(r7)
sendfile(r8, r0, 0x0, 0x8000fffffffc)

1.078488199s ago: executing program 0 (id=438):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00'}, 0x10)
syz_mount_image$vfat(&(0x7f0000000580), &(0x7f0000000180)='./file0\x00', 0x1000802, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x4, 0x24e, &(0x7f0000000a00)="$eJzs3cFLk38YAPBnOtGf8GMeAkmC3ug+1OiuhII0KJId6pSkUjgTEoQ6qJ06d+pS/0Jdgq5Bh+jaPxBBWNBFO3kIFvqq07nlrLZFfj6XPez7PPt+33cv+26HPe/NM/Nz0wuLsxsba9HTk+nKjsTLgc1M9EVHdEZqNQCAf8lmuRzr5VS71wIAtIb9HwBOnsr+nzm0/2dW974TXG39ygCAZvH7HwBOnsnrNy6PFgpj19aTnoj5R0vFpWL6mI6PzsadKMVMDEYuvkeU96Txk4nC2GCy5XNfFOdXdupXloqdB+uHIhd9h+vHJwpjQ0nqYH1X9O7Uf+iNmRiOXJyqXT9cq74rIs7vmz8fuXh/KxaiFNOxVVupXx5KkktXClXzd2/nAQAAAAAAAAAAAAAAAAAAAABAM+Q7tlvnlLuTpGb/nnw+2VU1ntbv7w/0X43+QON7/YGq+/tkYyDb3mMHAAAAAAAAAAAAAAAAAACAv8Xi/QdzU6XSzL2fBXffPX9zVE6DQWZn3po53RHx+1M0GPx/7tPT+jkPj3N+/mzw+myLJ9067cetert2+/SFxf6L9XIi27Q1d/zKm/I117RL68VuMPLtyOTHk626wjurn+l/NjL1avnjl0Zfp40fSgAAAAAAAAAAAAAAAAAAcEJV/vTb7pUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQPtU7v9fJ8hE3aEGg9V2HyMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPwIAAD//8pHpIo=")
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x4842, 0x1cb)
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x45, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000000)='kfree\x00', r3}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x20, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0xffffffff}, 0x50)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r1, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
sendmsg$inet6(r1, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e20, 0x80000, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c, 0x0, 0x0, &(0x7f0000001540)=ANY=[@ANYBLOB='(\x00\x00\x00\x00\x00\''], 0x28}, 0x4080)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
sync()
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b6080000000000007b8af8ff00000000b7080000041000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70400000800000085000000950000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xeb48195b69e85694, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r4, 0x0, 0x5}, 0x18)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)

986.480041ms ago: executing program 0 (id=439):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x100)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0xfe)

942.050032ms ago: executing program 0 (id=440):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000019200)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x9)
r2 = getpgrp(0x0)
r3 = syz_pidfd_open(r2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[], 0x2c}}, 0x20008000)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
pidfd_send_signal(r3, 0xc, &(0x7f0000001fc0)={0x19, 0x1, 0xc}, 0x0)

920.832662ms ago: executing program 0 (id=441):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0}, 0x18)
r0 = syz_clone(0x20000000, 0x0, 0xf, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r1 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_script(r1, &(0x7f0000000280)={'#! ', './file0', [{0x20, '^'}], 0xa, "beee8a9ac2ba8ed5dbd76d70334cc10af08e1aea874ef45dcebe0cdee9c3eafca0da2591f7e74a091aa9f6255890c7d1f877a0fbbec1fc8c48085d0ccf100a966ca501c5deb301d64f5606be9fad4c948c76c42c7c1a6d4f5632af3bb4937f450573add9341ab51834a17cf960be4365516a7c8181b4fd365c33079dde598b3fda983bdc88d57910ed451bf7ec103c7c4cf81670490c65c085a1384031464ebd3ba23ce1d856ab2af46ab5b5dd9e34113fab49702b8e84c4591d8d4b91050a769d5b95ed2ac53d84b5f7274a495467b6723504f753cd2496ca155a2f81"}, 0xea)
ptrace$getregset(0x4205, r0, 0x202, &(0x7f0000000240)={&(0x7f0000000180)=""/120, 0xffffffffffffff28})
syz_open_dev$tty1(0xc, 0x4, 0x1)

830.617614ms ago: executing program 0 (id=443):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x26}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x8804, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0)

722.754646ms ago: executing program 2 (id=446):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x6}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b7040000000000008500000001000000"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r1}, 0x10) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x32, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, {}, {}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @ldst={0x2, 0x1, 0x2, 0x7, 0x2, 0x100, 0x8}, @btf_id={0x18, 0x1, 0x3, 0x0, 0x4}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r3}, 0x18)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r4, 0x0, 0x0, 0x4008804) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_clone(0x6a000000, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000003280)=ANY=[], 0xb98}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
open(0x0, 0x66842, 0x21) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000002000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222}, 0x78) (async)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000500)="25108a32c7d4bdc542b8c9df6ceb70b094f1e124718e5504a6e20a2895b019f167c9c90e183174336e9df0dec10458f6dae623de224d1419522327262183f661e5c8531eac5b457ac2259030eb2539a1bb2b826d88", 0x55}], 0x1}, 0x0) (async)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a00000004000000060000008000000042000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/20], 0x48)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[], 0x20}, 0x41) (async)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000540), &(0x7f0000000080), 0x619, r7}, 0x38) (async)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'wg1\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r8}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0) (async)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000980)={0x0, 0xf24, 0x203})

621.631148ms ago: executing program 2 (id=447):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0}, 0x18)
r0 = syz_clone(0x20000000, 0x0, 0xf, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
ptrace$getregset(0x4205, r0, 0x202, &(0x7f0000000240)={&(0x7f0000000180)=""/120, 0xffffffffffffff28})

621.080928ms ago: executing program 3 (id=448):
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0xc044)
connect$netlink(0xffffffffffffffff, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdc00}, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='\xac\xed\x00\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x6e, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @remote, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x5dc, {0x0, 0x6, "8cb02b", 0x0, 0x2f, 0x0, @loopback={0x4000000}, @local, [@srh={0x2b, 0x0, 0x4, 0x0, 0x0, 0x10}]}}}}}}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$eJzs28tvG0UYAPBv105KX8RU5dEHECiIikfSpKX0wAEQSBxAQoJDOYYkrUrdBjVBolUFBaFyRJW4I45I/AWc4IKAExJX4IwqVSiXFk5Ga+82jmunSbDrEP9+0tYzu+POfJ4de3YnG8DAGs3+SSJ2RMRvETHSyC4vMNp4ubF4cfrvxYvTSdRqb/6V1MtdX7w4XRQt3re9yJQj0k+T2Nem3vnzF05PVauz5/L8+MKZ98bnz1945tSZqZOzJ2fPTh47duTwxHNHJ5/tSpxZXNf3fji3f8+rb195ffr4lXd++iYp4m+Jo0tG2+4tN14er9W6XF1/7WxKJ+U+NoQ1KeWn5FB9/I9EKZY6byRe+aSvjQN6qlar1e7rfPhSDdjEkuh3C4D+KH7os+vfYrtDU48N4dqLjQugLO4b+dY4Uo40LzPUcn3bTaMRcfzSP19mW7Teh9jao0oBgIH2XTb/ebrd/C+N5vtCd+drKJWIuCcidkXE0YjYHRH3RtTL3h8RD6yx/tZFklvnn+nVdQW2Stn87/l8bWv5/K+Y/UWllOd21uMfSk6cqs4eyj+TgzG0JctPrFDH9y//+nmnY83zv2zL6i/mgnk7rpa3LH/PzNTC1H+Judm1jyP2ltvFn9xcCUgiYk9EvLDOOk49+fX+Tsc6xD+8qv+4C+tMta8inmj0/6Voib+QrLw+OX5XVGcPjRdnxa1+/uXyG53qv33/91bW/9vanv9F/H9Ukub12vm113H59886XlOu9/wfTt5atu+DqYWFcxMRw8lr9Xylef9kS7nJpfJZ/AcPtB//u2Lpk9gXEdlJ/GBEPBQRD+dtfyQiHo2IAyvE/+NLj727/vh7K4t/ZsX+j5b+X0oMR+ue9onS6R++XVZpZS3xZ/1/pJ46mO9Zzfffatq1vrMZAAAA/n/SiNgRSTp2M52mY2ONv+HfHdvS6tz8wlMn5t4/O9N4RqASQ2lxp2uk6X7oRH5ZX+QnW/KH8/vGX5S21vNj03PVmX4HDwNue4fxn/mz1O/WAT3neS0YXMY/DC7jHwaX8Q+Dq8349+gZDIh2v/8f9aEdwJ3XMv5XXPYzMYDNxfU/DC7jHwaX8Q8DaX5r3P4h+c2RSCNiAzRjsyQi3RDNkOhRot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN3xbwAAAP//ynflmQ==")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x800, 0x4)
setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x770, 0x0, 0xbabd}, 0x1c)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x68, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}}}}}}, 0x0)
write(r3, &(0x7f00000008c0)="3bf58d7d45d32cfe1da7c797b82fee444b42785c24a868a4046cf670ba8f376c429a424fcc374c08887ba2bb530d843b61bf79a3879fa048ac44c63ed287a665f2c34b9e2278e78aaae0b120c255ab10ea38b054ba09f60ad3c2bf21e965b71d8eb98bc84eed4f0bd3328057355205890abf0e68f3ebc151dd697ab4a22a73f621c6ea0e69273df84fe8b7be01000000000000008d48", 0x96)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7fffeffd)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

613.906959ms ago: executing program 2 (id=449):
creat(&(0x7f00000000c0)='./file0\x00', 0x9c)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x4000, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_client}], [], 0x6b}})

469.465341ms ago: executing program 2 (id=450):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x100)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0xfe)

469.185651ms ago: executing program 2 (id=451):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000019200)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x9)
r2 = getpgrp(0x0)
r3 = syz_pidfd_open(r2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[], 0x2c}}, 0x20008000)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
pidfd_send_signal(r3, 0xc, &(0x7f0000001fc0)={0x19, 0x1, 0xc}, 0x0)

468.639651ms ago: executing program 2 (id=452):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$int_out(0xffffffffffffffff, 0x2, &(0x7f00000002c0))
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x44450)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x4048010)
ioctl$FIONREAD(r1, 0x541b, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000080)={0x49dd, 0xffff, 0x0, 0xc003, 0x0, "fa3d76170000001b"})
write$binfmt_aout(r3, &(0x7f0000000140)=ANY=[], 0xff2e)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000180)={0x0, 0x4, 0x1000000b, 0x9, 0x4, "00000000000000000000c2041a02003d00"})
r4 = syz_open_pts(r3, 0x0)
r5 = dup3(r4, r3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r6, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4)
r7 = getpid()
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x8, 0x0, 0xffffff88}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='kmem_cache_free\x00', r8, 0x0, 0x7}, 0x18)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r10, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r7}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x30)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x17)

375.359623ms ago: executing program 4 (id=453):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000970000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_enter\x00', r0}, 0x10)
syz_pidfd_open(0x0, 0x0)
socket$inet6(0xa, 0x1, 0x8010800000000084)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000000300)=""/102392, 0x18ff8)

262.473195ms ago: executing program 1 (id=454):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
mlockall(0x7)

189.315736ms ago: executing program 1 (id=455):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x7, 0x4, 0x80, 0xe, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x18)
prctl$PR_SET_NAME(0xf, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(r2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x404}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r4, 0x2000300, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00'}, 0x18)
getegid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x4008804)

116.364558ms ago: executing program 1 (id=456):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x599, &(0x7f0000001280)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='mpol=interleave,mpol'])
open$dir(&(0x7f0000000000)='./file0/file0\x00', 0x101042, 0x1)

78.494889ms ago: executing program 1 (id=457):
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve1\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendto$packet(r0, 0x0, 0x0, 0x4c001, &(0x7f00000002c0)={0x11, 0x9, r1, 0x1, 0xd, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x14)

15.04478ms ago: executing program 0 (id=458):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001600)={{0x14}, [@NFT_MSG_NEWRULE={0x14, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x2000}}, @NFT_MSG_NEWRULE={0xa8, 0x6, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_USERDATA={0x4f, 0x7, 0x1, 0x0, "2bbcb8f3aee903a9b5e1e6b812f5e8627baf9cf0fc8a8857547509ca3d6e8c1e28d24f1e59b7e9eb98d55dd962d50104837e457f683d9a06ca98b1b0c3046e0a736325b3aad6dc476d22d8"}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELFLOWTABLE={0x34, 0x18, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x3}]}], {0x14}}, 0x118}, 0x1, 0x0, 0x0, 0x4883}, 0x0)
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x60ae0}], 0x318, 0x0, 0xdb0, 0xf5ffffff}, 0x0)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x18, &(0x7f00000000c0), 0x31}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRESHEX=r3], 0x48)
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='wg1\x00')
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r4}, 0x10)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x800448d5, 0x0)
bind$bt_hci(r5, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)

0s ago: executing program 1 (id=459):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x200, 0x1000, 0xd6e}})
ioctl$TIOCL_SETSEL(r1, 0x541c, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r1}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$RDMA_NLDEV_CMD_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000801}, 0x40810)
openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)={0x474283, 0x0, 0x14}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)=""/6, 0x6}], 0x1}, 0x6}], 0x1, 0x100, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$sock(r4, &(0x7f00000044c0), 0x4000000000001c0, 0x0)
recvfrom(r5, &(0x7f0000000600)=""/55, 0x37, 0x2040, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r7}, &(0x7f0000000380), &(0x7f00000003c0)=r8}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a3100000000080005400000002b0900020073797a310000000008000a40fffffffc140000001100010000000000000000000100000a"], 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='pagemap\x00')
exit(0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
socket$netlink(0x10, 0x3, 0x0)

kernel console output (not intermixed with test programs):

ed from eth0
[   37.582170][ T3308] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   37.600124][ T3308] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   37.609152][ T3308] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   37.621461][ T3313] 8021q: adding VLAN 0 to HW filter on device team0
[   37.640102][ T3312] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   37.650540][ T1716] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.657669][ T1716] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.677574][ T3312] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   37.693800][ T3306] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.706298][ T3312] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   37.715644][ T3312] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   37.726570][ T1716] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.733822][ T1716] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.769588][ T3306] 8021q: adding VLAN 0 to HW filter on device team0
[   37.793962][  T580] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.801074][  T580] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.818245][ T3310] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.829127][ T3308] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.846954][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.854050][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.872428][ T3308] 8021q: adding VLAN 0 to HW filter on device team0
[   37.886149][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.893246][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.912031][ T3306] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   37.922461][ T3306] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   37.938676][ T3310] 8021q: adding VLAN 0 to HW filter on device team0
[   37.955514][ T1716] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.962600][ T1716] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.976572][ T3313] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.002528][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.009741][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.019217][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.026484][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.061874][ T3312] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.078820][ T3310] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   38.089255][ T3310] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   38.108108][ T3306] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.151425][ T3312] 8021q: adding VLAN 0 to HW filter on device team0
[   38.190912][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.198236][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.238846][ T1001] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.246022][ T1001] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.258228][ T3313] veth0_vlan: entered promiscuous mode
[   38.269484][ T3310] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.296320][ T3313] veth1_vlan: entered promiscuous mode
[   38.305456][ T3312] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   38.319697][ T3306] veth0_vlan: entered promiscuous mode
[   38.344245][ T3308] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.381725][ T3313] veth0_macvtap: entered promiscuous mode
[   38.394613][ T3306] veth1_vlan: entered promiscuous mode
[   38.406844][ T3313] veth1_macvtap: entered promiscuous mode
[   38.422205][ T3306] veth0_macvtap: entered promiscuous mode
[   38.430018][ T3306] veth1_macvtap: entered promiscuous mode
[   38.456107][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.471993][ T3310] veth0_vlan: entered promiscuous mode
[   38.486625][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.496020][ T3310] veth1_vlan: entered promiscuous mode
[   38.508844][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.518967][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.535801][   T37] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.554894][ T3312] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.565752][   T37] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.574819][ T3308] veth0_vlan: entered promiscuous mode
[   38.603202][ T3306] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   38.618746][   T37] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.637419][ T3308] veth1_vlan: entered promiscuous mode
[   38.647549][ T3310] veth0_macvtap: entered promiscuous mode
[   38.657835][ T3310] veth1_macvtap: entered promiscuous mode
[   38.664774][   T37] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.673576][   T37] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.693483][  T147] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.717144][  T147] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.729076][ T3308] veth0_macvtap: entered promiscuous mode
[   38.745343][  T147] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.761327][ T3308] veth1_macvtap: entered promiscuous mode
[   38.771650][ T3310] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.791186][ T3310] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.804211][ T3308] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.818542][  T147] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.829915][ T3308] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.847313][  T147] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.860709][   T29] kauditd_printk_skb: 28 callbacks suppressed
[   38.860722][   T29] audit: type=1400 audit(1756990189.348:100): avc:  denied  { create } for  pid=3471 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   38.886296][   T29] audit: type=1400 audit(1756990189.348:101): avc:  denied  { ioctl } for  pid=3471 comm="syz.1.2" path="socket:[4050]" dev="sockfs" ino=4050 ioctlcmd=0xf513 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   38.910658][   T29] audit: type=1400 audit(1756990189.348:102): avc:  denied  { allowed } for  pid=3471 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   38.930079][   T29] audit: type=1400 audit(1756990189.348:103): avc:  denied  { read write } for  pid=3471 comm="syz.1.2" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   38.953539][   T29] audit: type=1400 audit(1756990189.348:104): avc:  denied  { open } for  pid=3471 comm="syz.1.2" path="/dev/virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   38.983496][  T147] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.088551][ T3484] FAULT_INJECTION: forcing a failure.
[   39.088551][ T3484] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   39.101717][ T3484] CPU: 1 UID: 0 PID: 3484 Comm: syz.3.4 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   39.101742][ T3484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   39.101755][ T3484] Call Trace:
[   39.101843][ T3484]  <TASK>
[   39.101850][ T3484]  __dump_stack+0x1d/0x30
[   39.101874][ T3484]  dump_stack_lvl+0xe8/0x140
[   39.101894][ T3484]  dump_stack+0x15/0x1b
[   39.101948][ T3484]  should_fail_ex+0x265/0x280
[   39.102045][ T3484]  should_fail+0xb/0x20
[   39.102061][ T3484]  should_fail_usercopy+0x1a/0x20
[   39.102082][ T3484]  _copy_to_user+0x20/0xa0
[   39.102175][ T3484]  pagemap_read+0x379/0x5e0
[   39.102207][ T3484]  ? __pfx_pagemap_read+0x10/0x10
[   39.102231][ T3484]  vfs_read+0x1a5/0x770
[   39.102311][ T3484]  ? __fget_files+0x184/0x1c0
[   39.102335][ T3484]  ? __rcu_read_unlock+0x4f/0x70
[   39.102362][ T3484]  ? __fget_files+0x184/0x1c0
[   39.102395][ T3484]  __x64_sys_pread64+0xfd/0x150
[   39.102458][ T3484]  x64_sys_call+0x29e2/0x2ff0
[   39.102485][ T3484]  do_syscall_64+0xd2/0x200
[   39.102544][ T3484]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   39.102567][ T3484]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   39.102592][ T3484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   39.102630][ T3484] RIP: 0033:0x7f77669aebe9
[   39.102663][ T3484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   39.102685][ T3484] RSP: 002b:00007f77653cd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[   39.102707][ T3484] RAX: ffffffffffffffda RBX: 00007f7766be6180 RCX: 00007f77669aebe9
[   39.102795][ T3484] RDX: 0000000000019000 RSI: 0000200000001240 RDI: 000000000000000a
[   39.102808][ T3484] RBP: 00007f77653cd090 R08: 0000000000000000 R09: 0000000000000000
[   39.102819][ T3484] R10: 0000001000000000 R11: 0000000000000246 R12: 0000000000000001
[   39.102832][ T3484] R13: 00007f7766be6218 R14: 00007f7766be6180 R15: 00007fff51cfdb28
[   39.102855][ T3484]  </TASK>
[   39.345960][  T147] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.382098][  T147] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.411499][  T147] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.429269][  T147] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.457278][   T29] audit: type=1400 audit(1756990189.508:105): avc:  denied  { firmware_load } for  pid=3469 comm="syz.3.4" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[   39.481876][   T29] audit: type=1400 audit(1756990189.568:106): avc:  denied  { write } for  pid=3469 comm="syz.3.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   39.512041][   T31] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.530487][   T29] audit: type=1400 audit(1756990189.988:107): avc:  denied  { create } for  pid=3487 comm="syz.1.6" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   39.552549][   T29] audit: type=1400 audit(1756990190.038:108): avc:  denied  { setopt } for  pid=3487 comm="syz.1.6" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   39.572831][ T3484] syz.3.4 (3484) used greatest stack depth: 10176 bytes left
[   39.601682][   T29] audit: type=1400 audit(1756990190.068:109): avc:  denied  { write } for  pid=3487 comm="syz.1.6" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   39.780663][ T3493] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1'.
[   40.346933][ T3312] veth0_vlan: entered promiscuous mode
[   40.388943][ T3312] veth1_vlan: entered promiscuous mode
[   40.502781][ T3506] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.550920][ T3312] veth0_macvtap: entered promiscuous mode
[   40.561076][ T3312] veth1_macvtap: entered promiscuous mode
[   40.572014][ T3511] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   40.579683][ T3511] batman_adv: batadv0: Removing interface: batadv_slave_0
[   40.588661][ T3511] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   40.596171][ T3511] batman_adv: batadv0: Removing interface: batadv_slave_1
[   40.630135][ T3312] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.642085][ T3515] loop3: detected capacity change from 0 to 2364
[   40.648880][ T3312] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.666948][   T31] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.708171][   T31] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.749270][   T31] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.771421][   T31] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.817542][ T3522] loop3: detected capacity change from 0 to 512
[   40.818241][ T3529] loop2: detected capacity change from 0 to 1024
[   40.831720][ T3522] loop3: detected capacity change from 0 to 1024
[   40.842394][ T3529] =======================================================
[   40.842394][ T3529] WARNING: The mand mount option has been deprecated and
[   40.842394][ T3529]          and is ignored by this kernel. Remove the mand
[   40.842394][ T3529]          option from the mount to silence this warning.
[   40.842394][ T3529] =======================================================
[   40.889537][ T3522] EXT4-fs: Ignoring removed mblk_io_submit option
[   40.905588][ T3522] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   40.914847][ T3522] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   40.926524][ T3529] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   40.940718][ T3522] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #11: comm syz.3.15: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   40.960028][ T3529] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.961326][ T3522] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.15: couldn't read orphan inode 11 (err -117)
[   40.989253][ T3522] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.008644][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   41.011925][ T3522] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.15: Invalid block bitmap block 0 in block_group 0
[   41.032403][ T3522] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.15: Failed to acquire dquot type 0
[   41.067681][ T3522] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[   41.080748][ T3522] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.15: iget: bad extra_isize 65535 (inode size 256)
[   41.101108][ T3522] syz.3.15 (3522) used greatest stack depth: 10128 bytes left
[   41.119548][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.139944][ T3541] netlink: 12 bytes leftover after parsing attributes in process `syz.3.21'.
[   41.252567][ T3552] netlink: 24 bytes leftover after parsing attributes in process `syz.4.25'.
[   41.290744][ T3554] netlink: 12 bytes leftover after parsing attributes in process `syz.2.26'.
[   42.017603][ T3569] Zero length message leads to an empty skb
[   42.209342][ T3574] loop0: detected capacity change from 0 to 512
[   42.223135][ T3578] loop2: detected capacity change from 0 to 128
[   42.230153][ T3576] loop4: detected capacity change from 0 to 512
[   42.237103][ T3574] EXT4-fs: Ignoring removed mblk_io_submit option
[   42.239754][ T3576] EXT4-fs: Ignoring removed mblk_io_submit option
[   42.250962][ T3576] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   42.264079][ T3576] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   42.276144][ T3574] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   42.287659][ T3576] EXT4-fs (loop4): 1 truncate cleaned up
[   42.294038][ T3576] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.299256][ T3574] EXT4-fs (loop0): 1 truncate cleaned up
[   42.312871][ T3574] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.357292][ T3506] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.787389][ T3506] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.852228][ T3506] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.895970][   T31] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   42.910464][   T31] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   42.937395][  T580] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   42.974106][  T580] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   43.009772][ T3592] loop1: detected capacity change from 0 to 512
[   43.021974][ T3591] netlink: 332 bytes leftover after parsing attributes in process `syz.3.37'.
[   43.031107][ T3591] netlink: 160 bytes leftover after parsing attributes in process `syz.3.37'.
[   43.051176][ T3591] netlink: 'syz.3.37': attribute type 10 has an invalid length.
[   43.068224][ T3592] EXT4-fs: Ignoring removed oldalloc option
[   43.083064][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.084999][ T3591] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[   43.105662][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.117510][ T3592] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.36: Parent and EA inode have the same ino 15
[   43.156430][ T3592] EXT4-fs (loop1): 1 orphan inode deleted
[   43.169822][ T3592] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.197706][ T3592] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=17607 sclass=netlink_route_socket pid=3592 comm=syz.1.36
[   43.250683][ T3605] loop4: detected capacity change from 0 to 128
[   43.261490][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.403768][ T3615] loop1: detected capacity change from 0 to 512
[   43.467299][ T3615] loop1: detected capacity change from 0 to 1024
[   43.479606][ T3615] EXT4-fs: Ignoring removed mblk_io_submit option
[   43.506265][ T3621] netlink: 'syz.3.47': attribute type 10 has an invalid length.
[   43.518081][ T3621] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   43.600758][ T3615] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   43.652159][ T3615] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   43.763401][ T3615] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #11: comm syz.1.45: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   43.861995][ T3615] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.45: couldn't read orphan inode 11 (err -117)
[   43.903942][ T3615] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.921569][ T3615] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.45: Invalid block bitmap block 0 in block_group 0
[   43.936341][ T3615] __quota_error: 365 callbacks suppressed
[   43.936472][ T3615] Quota error (device loop1): write_blk: dquota write failed
[   43.950018][ T3615] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   43.961257][ T3615] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.45: Failed to acquire dquot type 0
[   43.977059][ T3624] loop0: detected capacity change from 0 to 128
[   43.984205][ T3617] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[   43.997917][ T3615] EXT4-fs error (device loop1): ext4_lookup:1787: inode #15: comm syz.1.45: iget: bad extra_isize 65535 (inode size 256)
[   44.030137][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.049070][ T3627] netlink: 20 bytes leftover after parsing attributes in process `syz.1.49'.
[   44.103347][   T29] audit: type=1400 audit(1756990194.578:473): avc:  denied  { ioctl } for  pid=3628 comm="syz.4.50" path="socket:[5427]" dev="sockfs" ino=5427 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   44.128674][   T29] audit: type=1400 audit(1756990194.578:474): avc:  denied  { read } for  pid=3628 comm="syz.4.50" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   44.152713][   T29] audit: type=1400 audit(1756990194.578:475): avc:  denied  { open } for  pid=3628 comm="syz.4.50" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   44.177269][   T29] audit: type=1400 audit(1756990194.578:476): avc:  denied  { ioctl } for  pid=3628 comm="syz.4.50" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   44.177557][ T3627] loop1: detected capacity change from 0 to 1024
[   44.205584][ T3632] netlink: 4 bytes leftover after parsing attributes in process `syz.4.50'.
[   44.240923][ T3627] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   44.252146][ T3627] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   44.271979][ T3627] JBD2: no valid journal superblock found
[   44.277938][ T3627] EXT4-fs (loop1): Could not load journal inode
[   44.288418][ T3632] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   44.296333][ T3632] batman_adv: batadv0: Removing interface: batadv_slave_0
[   44.315672][ T3632] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   44.323115][ T3632] batman_adv: batadv0: Removing interface: batadv_slave_1
[   44.339577][ T3635] netlink: 'syz.3.51': attribute type 21 has an invalid length.
[   44.347355][ T3635] netlink: 8 bytes leftover after parsing attributes in process `syz.3.51'.
[   44.361093][   T29] audit: type=1400 audit(1756990194.848:477): avc:  denied  { connect } for  pid=3634 comm="syz.3.51" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   44.385163][   T29] audit: type=1400 audit(1756990194.848:478): avc:  denied  { write } for  pid=3634 comm="syz.3.51" path="socket:[5439]" dev="sockfs" ino=5439 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   44.434226][ T3640] loop1: detected capacity change from 0 to 764
[   44.450293][ T3637] loop2: detected capacity change from 0 to 2048
[   44.464391][ T3637] EXT4-fs: quotafile must be on filesystem root
[   44.464479][   T29] audit: type=1400 audit(1756990194.888:479): avc:  denied  { setopt } for  pid=3639 comm="syz.1.53" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   44.490307][   T29] audit: type=1400 audit(1756990194.918:480): avc:  denied  { read } for  pid=3636 comm="syz.2.52" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   44.525160][ T3649] loop3: detected capacity change from 0 to 512
[   44.563466][ T3649] EXT4-fs: Ignoring removed oldalloc option
[   44.572908][ T3653] 9pnet_fd: Insufficient options for proto=fd
[   44.601528][ T3649] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.55: Parent and EA inode have the same ino 15
[   44.638717][ T3661] netlink: 24 bytes leftover after parsing attributes in process `syz.1.59'.
[   44.641422][ T3659] loop2: detected capacity change from 0 to 512
[   44.656052][ T3649] EXT4-fs (loop3): 1 orphan inode deleted
[   44.663477][ T3649] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.677809][ T3659] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.708266][ T3659] ext4 filesystem being mounted at /13/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.720053][ T3649] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=17607 sclass=netlink_route_socket pid=3649 comm=syz.3.55
[   44.744230][ T3665] FAULT_INJECTION: forcing a failure.
[   44.744230][ T3665] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   44.757623][ T3665] CPU: 0 UID: 0 PID: 3665 Comm: syz.1.61 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   44.757658][ T3665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   44.757726][ T3665] Call Trace:
[   44.757735][ T3665]  <TASK>
[   44.757752][ T3665]  __dump_stack+0x1d/0x30
[   44.757803][ T3665]  dump_stack_lvl+0xe8/0x140
[   44.757827][ T3665]  dump_stack+0x15/0x1b
[   44.757848][ T3665]  should_fail_ex+0x265/0x280
[   44.757875][ T3665]  should_fail+0xb/0x20
[   44.757947][ T3665]  should_fail_usercopy+0x1a/0x20
[   44.757976][ T3665]  _copy_from_user+0x1c/0xb0
[   44.758035][ T3665]  bpf_test_init+0xdf/0x160
[   44.758135][ T3665]  bpf_prog_test_run_skb+0x144/0xbd0
[   44.758165][ T3665]  ? __rcu_read_unlock+0x4f/0x70
[   44.758193][ T3665]  ? __fget_files+0x184/0x1c0
[   44.758219][ T3665]  ? __rcu_read_unlock+0x4f/0x70
[   44.758241][ T3665]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[   44.758269][ T3665]  bpf_prog_test_run+0x227/0x390
[   44.758308][ T3665]  __sys_bpf+0x4b9/0x7b0
[   44.758351][ T3665]  __x64_sys_bpf+0x41/0x50
[   44.758443][ T3665]  x64_sys_call+0x2aea/0x2ff0
[   44.758466][ T3665]  do_syscall_64+0xd2/0x200
[   44.758496][ T3665]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.758596][ T3665]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   44.758630][ T3665]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.758698][ T3665] RIP: 0033:0x7f4afb4debe9
[   44.758713][ T3665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.758786][ T3665] RSP: 002b:00007f4af9f3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   44.758810][ T3665] RAX: ffffffffffffffda RBX: 00007f4afb715fa0 RCX: 00007f4afb4debe9
[   44.758826][ T3665] RDX: 000000000000002c RSI: 0000200000000080 RDI: 000000000000000a
[   44.758838][ T3665] RBP: 00007f4af9f3f090 R08: 0000000000000000 R09: 0000000000000000
[   44.758849][ T3665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.758863][ T3665] R13: 00007f4afb716038 R14: 00007f4afb715fa0 R15: 00007ffecc18a048
[   44.758888][ T3665]  </TASK>
[   44.998603][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.007844][ T3669] loop1: detected capacity change from 0 to 2048
[   45.030109][ T3671] $H : renamed from bond0 (while UP)
[   45.034436][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.047236][ T3671] $H : entered promiscuous mode
[   45.052369][ T3671] bond_slave_0: entered promiscuous mode
[   45.058247][ T3671] bond_slave_1: entered promiscuous mode
[   45.076187][ T3669] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.096685][ T3671] netlink: 'syz.2.63': attribute type 21 has an invalid length.
[   45.227730][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.238313][ T3689] netlink: 'syz.2.70': attribute type 3 has an invalid length.
[   45.246415][ T3689] netlink: 'syz.2.70': attribute type 3 has an invalid length.
[   45.295585][ T3694] netlink: 24 bytes leftover after parsing attributes in process `syz.1.71'.
[   45.447019][ T3706] loop3: detected capacity change from 0 to 128
[   45.471826][ T3708] loop1: detected capacity change from 0 to 2364
[   45.510672][ T3710] netlink: 132 bytes leftover after parsing attributes in process `syz.4.78'.
[   45.630630][ T3718] loop4: detected capacity change from 0 to 512
[   45.638036][ T3718] EXT4-fs: Ignoring removed mblk_io_submit option
[   45.647120][ T3718] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   45.669039][ T3718] EXT4-fs (loop4): 1 truncate cleaned up
[   45.675406][ T3718] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.783251][ T3723] netlink: 'syz.1.82': attribute type 21 has an invalid length.
[   45.791192][ T3723] netlink: 132 bytes leftover after parsing attributes in process `syz.1.82'.
[   45.803972][ T3723] process 'syz.1.82' launched '/dev/fd/7' with NULL argv: empty string added
[   45.816185][ T3723] syz.1.82 uses obsolete (PF_INET,SOCK_PACKET)
[   46.026095][ T3731] netlink: 24 bytes leftover after parsing attributes in process `syz.0.84'.
[   46.528222][ T3742] loop2: detected capacity change from 0 to 512
[   46.550503][ T3742] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   46.608680][ T3742] EXT4-fs (loop2): 1 truncate cleaned up
[   46.620683][ T3742] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.426433][ T3771] netlink: 24 bytes leftover after parsing attributes in process `syz.0.95'.
[   48.214267][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.224510][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.265684][ T3784] loop3: detected capacity change from 0 to 128
[   48.492931][ T3794] FAULT_INJECTION: forcing a failure.
[   48.492931][ T3794] name failslab, interval 1, probability 0, space 0, times 1
[   48.505693][ T3794] CPU: 0 UID: 0 PID: 3794 Comm: syz.2.98 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   48.505728][ T3794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   48.505743][ T3794] Call Trace:
[   48.505751][ T3794]  <TASK>
[   48.505759][ T3794]  __dump_stack+0x1d/0x30
[   48.505848][ T3794]  dump_stack_lvl+0xe8/0x140
[   48.505870][ T3794]  dump_stack+0x15/0x1b
[   48.505959][ T3794]  should_fail_ex+0x265/0x280
[   48.505982][ T3794]  should_failslab+0x8c/0xb0
[   48.506025][ T3794]  kmem_cache_alloc_node_noprof+0x57/0x320
[   48.506061][ T3794]  ? __alloc_skb+0x101/0x320
[   48.506152][ T3794]  __alloc_skb+0x101/0x320
[   48.506178][ T3794]  netlink_alloc_large_skb+0xba/0xf0
[   48.506270][ T3794]  netlink_sendmsg+0x3cf/0x6b0
[   48.506299][ T3794]  ? __pfx_netlink_sendmsg+0x10/0x10
[   48.506325][ T3794]  __sock_sendmsg+0x142/0x180
[   48.506431][ T3794]  ____sys_sendmsg+0x31e/0x4e0
[   48.506471][ T3794]  ___sys_sendmsg+0x17b/0x1d0
[   48.506515][ T3794]  __x64_sys_sendmsg+0xd4/0x160
[   48.506617][ T3794]  x64_sys_call+0x191e/0x2ff0
[   48.506643][ T3794]  do_syscall_64+0xd2/0x200
[   48.506686][ T3794]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   48.506710][ T3794]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   48.506746][ T3794]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.506853][ T3794] RIP: 0033:0x7fef224eebe9
[   48.506872][ T3794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.506889][ T3794] RSP: 002b:00007fef20f15038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   48.506907][ T3794] RAX: ffffffffffffffda RBX: 00007fef22726180 RCX: 00007fef224eebe9
[   48.506919][ T3794] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[   48.506930][ T3794] RBP: 00007fef20f15090 R08: 0000000000000000 R09: 0000000000000000
[   48.506941][ T3794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.507019][ T3794] R13: 00007fef22726218 R14: 00007fef22726180 R15: 00007fff551559f8
[   48.507044][ T3794]  </TASK>
[   49.929925][ T3806] netlink: 24 bytes leftover after parsing attributes in process `syz.3.106'.
[   50.034091][ T3816] FAULT_INJECTION: forcing a failure.
[   50.034091][ T3816] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.047627][ T3816] CPU: 0 UID: 0 PID: 3816 Comm: syz.1.107 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   50.047729][ T3816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   50.047744][ T3816] Call Trace:
[   50.047751][ T3816]  <TASK>
[   50.047813][ T3816]  __dump_stack+0x1d/0x30
[   50.047839][ T3816]  dump_stack_lvl+0xe8/0x140
[   50.047858][ T3816]  dump_stack+0x15/0x1b
[   50.047907][ T3816]  should_fail_ex+0x265/0x280
[   50.047933][ T3816]  should_fail+0xb/0x20
[   50.047956][ T3816]  should_fail_usercopy+0x1a/0x20
[   50.047985][ T3816]  strncpy_from_user+0x25/0x230
[   50.048023][ T3816]  ? kmem_cache_alloc_noprof+0x186/0x310
[   50.048066][ T3816]  ? getname_flags+0x80/0x3b0
[   50.048094][ T3816]  getname_flags+0xae/0x3b0
[   50.048200][ T3816]  user_path_create+0x27/0x130
[   50.048221][ T3816]  bpf_obj_pin_user+0xe0/0x230
[   50.048259][ T3816]  bpf_obj_pin+0xac/0xd0
[   50.048296][ T3816]  __sys_bpf+0x6cb/0x7b0
[   50.048328][ T3816]  __x64_sys_bpf+0x41/0x50
[   50.048412][ T3816]  x64_sys_call+0x2aea/0x2ff0
[   50.048440][ T3816]  do_syscall_64+0xd2/0x200
[   50.048489][ T3816]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   50.048512][ T3816]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   50.048599][ T3816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.048671][ T3816] RIP: 0033:0x7f4afb4debe9
[   50.048686][ T3816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.048708][ T3816] RSP: 002b:00007f4af9f1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   50.048733][ T3816] RAX: ffffffffffffffda RBX: 00007f4afb716090 RCX: 00007f4afb4debe9
[   50.048783][ T3816] RDX: 0000000000000018 RSI: 00002000000000c0 RDI: 0000000000000006
[   50.048799][ T3816] RBP: 00007f4af9f1e090 R08: 0000000000000000 R09: 0000000000000000
[   50.048812][ T3816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.048827][ T3816] R13: 00007f4afb716128 R14: 00007f4afb716090 R15: 00007ffecc18a048
[   50.048852][ T3816]  </TASK>
[   50.298400][ T3817] loop2: detected capacity change from 0 to 512
[   50.343789][   T29] kauditd_printk_skb: 226 callbacks suppressed
[   50.343807][   T29] audit: type=1400 audit(1756990200.828:707): avc:  denied  { mount } for  pid=3809 comm="syz.1.107" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   50.388568][ T3817] loop2: detected capacity change from 0 to 1024
[   50.446333][ T3817] EXT4-fs: Ignoring removed mblk_io_submit option
[   50.518032][ T3817] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   50.536755][   T29] audit: type=1400 audit(1756990200.938:708): avc:  denied  { unmount } for  pid=3313 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   50.556865][   T29] audit: type=1400 audit(1756990201.018:709): avc:  denied  { accept } for  pid=3818 comm="syz.1.109" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   50.576095][   T29] audit: type=1400 audit(1756990201.018:710): avc:  denied  { map } for  pid=3818 comm="syz.1.109" path="socket:[5727]" dev="sockfs" ino=5727 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   50.599131][   T29] audit: type=1400 audit(1756990201.018:711): avc:  denied  { read } for  pid=3818 comm="syz.1.109" path="socket:[5727]" dev="sockfs" ino=5727 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   50.664020][ T3817] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   50.694756][ T3822] netlink: 'syz.1.109': attribute type 13 has an invalid length.
[   50.757139][ T3822] gretap0: refused to change device tx_queue_len
[   50.790229][ T3822] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   50.823512][ T3817] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #11: comm syz.2.108: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   50.844011][ T3829] loop3: detected capacity change from 0 to 128
[   50.912019][ T3817] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.108: couldn't read orphan inode 11 (err -117)
[   50.976241][ T3817] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.047186][   T29] audit: type=1400 audit(1756990201.118:712): avc:  denied  { create } for  pid=3818 comm="syz.1.109" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[   51.066724][   T29] audit: type=1326 audit(1756990201.488:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3831 comm="syz.1.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4afb4debe9 code=0x7ffc0000
[   51.090139][   T29] audit: type=1326 audit(1756990201.488:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3831 comm="syz.1.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4afb4debe9 code=0x7ffc0000
[   51.113572][   T29] audit: type=1326 audit(1756990201.488:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3831 comm="syz.1.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4afb4debe9 code=0x7ffc0000
[   51.137197][   T29] audit: type=1326 audit(1756990201.498:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3831 comm="syz.1.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4afb4debe9 code=0x7ffc0000
[   51.173189][ T3817] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.108: Invalid block bitmap block 0 in block_group 0
[   51.223750][ T3817] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.108: Failed to acquire dquot type 0
[   51.251552][ T3810] loop4: detected capacity change from 0 to 512
[   51.279025][ T3836] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[   51.290539][ T3840] loop1: detected capacity change from 0 to 128
[   51.293404][ T3810] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.97: bg 0: block 248: padding at end of block bitmap is not set
[   51.297424][ T3817] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.108: iget: bad extra_isize 65535 (inode size 256)
[   51.312956][ T3810] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.97: Failed to acquire dquot type 1
[   51.336029][ T3810] EXT4-fs (loop4): 1 truncate cleaned up
[   51.342010][ T3810] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.358436][ T3810] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.513999][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.593140][ T3850] netlink: 'syz.2.118': attribute type 10 has an invalid length.
[   51.606824][ T3850] syz_tun: entered promiscuous mode
[   51.627442][ T3850] $H : (slave syz_tun): Enslaving as an active interface with an up link
[   51.670431][ T3850] netlink: 'syz.2.118': attribute type 10 has an invalid length.
[   51.681650][ T3850] $H : left promiscuous mode
[   51.686562][ T3850] bond_slave_0: left promiscuous mode
[   51.692235][ T3850] bond_slave_1: left promiscuous mode
[   51.699426][ T3850] 8021q: adding VLAN 0 to HW filter on device $H 
[   51.707478][ T3850] team0: Port device $H  added
[   51.740994][ T3810] syz.4.97 (3810) used greatest stack depth: 9200 bytes left
[   51.760023][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.769530][   T37] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 1
[   51.791304][ T3854] netlink: 24 bytes leftover after parsing attributes in process `syz.4.120'.
[   51.831748][ T3856] syzkaller0: refused to change device tx_queue_len
[   52.179975][ T3865] loop1: detected capacity change from 0 to 512
[   52.187188][ T3865] EXT4-fs: Ignoring removed mblk_io_submit option
[   52.208298][ T3865] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   52.222539][ T3865] EXT4-fs (loop1): 1 truncate cleaned up
[   52.228833][ T3865] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.624679][ T3871] netlink: 'syz.2.126': attribute type 11 has an invalid length.
[   52.763957][ T3876] loop4: detected capacity change from 0 to 2364
[   52.774627][ T3870] loop2: detected capacity change from 0 to 1024
[   52.806161][ T3870] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.825104][ T3870] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt.
[   52.860240][ T3880] loop4: detected capacity change from 0 to 128
[   52.904793][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.065553][ T3886] netlink: 24 bytes leftover after parsing attributes in process `syz.0.131'.
[   53.092720][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.121194][ T3891] loop1: detected capacity change from 0 to 512
[   53.181428][ T3891] EXT4-fs: Ignoring removed mblk_io_submit option
[   53.200615][ T3891] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   53.213334][ T3891] EXT4-fs (loop1): 1 truncate cleaned up
[   53.220456][ T3891] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.821560][ T3904] loop4: detected capacity change from 0 to 1024
[   53.845430][ T3907] netlink: 76 bytes leftover after parsing attributes in process `syz.3.136'.
[   53.850958][ T3904] EXT4-fs: Ignoring removed orlov option
[   53.887035][ T3904] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.914326][ T3904] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.951484][ T3913] loop2: detected capacity change from 0 to 128
[   53.994858][ T3904] netlink: 32 bytes leftover after parsing attributes in process `syz.4.138'.
[   54.051900][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.082908][ T3918] netlink: 24 bytes leftover after parsing attributes in process `syz.0.143'.
[   54.092355][ T3920] loop1: detected capacity change from 0 to 128
[   54.112003][ T3920] msdos: Unknown parameter '                    '
[   54.154135][ T3920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.142'.
[   54.249215][ T3938] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   54.252389][ T3937] loop0: detected capacity change from 0 to 1024
[   54.256683][ T3938] batman_adv: batadv0: Removing interface: batadv_slave_0
[   54.278009][ T3938] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   54.285566][ T3938] batman_adv: batadv0: Removing interface: batadv_slave_1
[   54.299876][ T3936] loop1: detected capacity change from 0 to 2048
[   54.324158][ T3937] EXT4-fs: Ignoring removed mblk_io_submit option
[   54.347404][ T3937] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   54.364364][ T3937] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   54.377805][ T3936] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.390836][ T3937] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #11: comm syz.0.149: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   54.419940][ T3936] ext4 filesystem being mounted at /36/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.431243][ T3937] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.149: couldn't read orphan inode 11 (err -117)
[   54.444156][ T3937] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.462065][ T3936] FAULT_INJECTION: forcing a failure.
[   54.462065][ T3936] name failslab, interval 1, probability 0, space 0, times 0
[   54.474870][ T3936] CPU: 0 UID: 0 PID: 3936 Comm: +}[@ Not tainted syzkaller #0 PREEMPT(voluntary) 
[   54.474904][ T3936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   54.474921][ T3936] Call Trace:
[   54.474930][ T3936]  <TASK>
[   54.474940][ T3936]  __dump_stack+0x1d/0x30
[   54.475063][ T3936]  dump_stack_lvl+0xe8/0x140
[   54.475083][ T3936]  dump_stack+0x15/0x1b
[   54.475106][ T3936]  should_fail_ex+0x265/0x280
[   54.475133][ T3936]  should_failslab+0x8c/0xb0
[   54.475173][ T3936]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   54.475279][ T3936]  ? __d_alloc+0x3d/0x340
[   54.475317][ T3936]  __d_alloc+0x3d/0x340
[   54.475349][ T3936]  ? avc_has_perm_noaudit+0x1b1/0x200
[   54.475385][ T3936]  d_alloc_parallel+0x53/0xc60
[   54.475480][ T3936]  ? selinux_inode_permission+0x62d/0x740
[   54.475521][ T3936]  ? make_vfsuid+0x49/0xa0
[   54.475578][ T3936]  ? lockref_get_not_dead+0x120/0x1c0
[   54.475619][ T3936]  ? __rcu_read_unlock+0x4f/0x70
[   54.475684][ T3936]  __lookup_slow+0x8c/0x250
[   54.475728][ T3936]  lookup_slow+0x3c/0x60
[   54.475769][ T3936]  walk_component+0x1ec/0x220
[   54.475845][ T3936]  path_lookupat+0xfe/0x2a0
[   54.475886][ T3936]  filename_lookup+0x147/0x340
[   54.475972][ T3936]  filename_setxattr+0x56/0x400
[   54.476008][ T3936]  path_setxattrat+0x2c9/0x310
[   54.476064][ T3936]  __x64_sys_lsetxattr+0x71/0x90
[   54.476117][ T3936]  x64_sys_call+0x2877/0x2ff0
[   54.476146][ T3936]  do_syscall_64+0xd2/0x200
[   54.476193][ T3936]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.476254][ T3936]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   54.476355][ T3936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.476384][ T3936] RIP: 0033:0x7f4afb4debe9
[   54.476459][ T3936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.476483][ T3936] RSP: 002b:00007f4af9f3f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   54.476508][ T3936] RAX: ffffffffffffffda RBX: 00007f4afb715fa0 RCX: 00007f4afb4debe9
[   54.476524][ T3936] RDX: 0000200000000280 RSI: 0000200000000000 RDI: 0000200000000400
[   54.476535][ T3936] RBP: 00007f4af9f3f090 R08: 0000000000000000 R09: 0000000000000000
[   54.476546][ T3936] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000001
[   54.476624][ T3936] R13: 00007f4afb716038 R14: 00007f4afb715fa0 R15: 00007ffecc18a048
[   54.476648][ T3936]  </TASK>
[   54.733716][ T3944] loop3: detected capacity change from 0 to 128
[   54.742095][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.742264][ T3937] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.149: Invalid block bitmap block 0 in block_group 0
[   54.788867][ T3937] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.149: Failed to acquire dquot type 0
[   54.810686][ T3947] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[   54.839278][ T3937] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.149: iget: bad extra_isize 65535 (inode size 256)
[   54.874939][ T3952] loop2: detected capacity change from 0 to 512
[   54.905379][ T3952] EXT4-fs (loop2): blocks per group (255) and clusters per group (8192) inconsistent
[   54.927999][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.978239][ T3956] netlink: 24 bytes leftover after parsing attributes in process `syz.4.156'.
[   55.092616][ T3968] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   55.144642][ T3972] netlink: 48 bytes leftover after parsing attributes in process `syz.0.161'.
[   55.154767][ T3971] loop2: detected capacity change from 0 to 512
[   55.161461][ T3971] EXT4-fs: Ignoring removed oldalloc option
[   55.173320][ T3972] loop0: detected capacity change from 0 to 512
[   55.184148][ T3971] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.162: Parent and EA inode have the same ino 15
[   55.199420][ T3972] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.161: Invalid inode bitmap blk 4 in block_group 0
[   55.212575][ T3971] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   55.230741][ T3972] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.248238][ T3971] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.162: Parent and EA inode have the same ino 15
[   55.261002][ T3971] EXT4-fs (loop2): 1 orphan inode deleted
[   55.262420][ T3972] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[   55.267574][ T3971] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.310809][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.310957][ T3974] loop4: detected capacity change from 0 to 2048
[   55.362875][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.374903][   T29] kauditd_printk_skb: 253 callbacks suppressed
[   55.374918][   T29] audit: type=1326 audit(1756990205.858:963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   55.430546][ T3974] EXT4-fs (loop4): inodes count not valid: 32 vs 41
[   55.496515][   T29] audit: type=1326 audit(1756990205.858:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   55.520272][   T29] audit: type=1326 audit(1756990205.858:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   55.543688][   T29] audit: type=1326 audit(1756990205.858:966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   55.546575][ T3985] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[   55.567155][   T29] audit: type=1326 audit(1756990205.858:967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   55.574992][ T3985] audit: out of memory in audit_log_start
[   55.598306][   T29] audit: type=1326 audit(1756990205.858:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   55.655827][ T3987] netlink: 24 bytes leftover after parsing attributes in process `syz.3.168'.
[   55.669833][   T29] audit: type=1326 audit(1756990206.028:969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3984 comm="syz.2.167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   55.693261][   T29] audit: type=1326 audit(1756990206.028:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3984 comm="syz.2.167" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   55.739856][ T3991] pimreg: entered allmulticast mode
[   55.749167][ T3991] pimreg: left allmulticast mode
[   55.982375][ T4002] FAULT_INJECTION: forcing a failure.
[   55.982375][ T4002] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.995545][ T4002] CPU: 1 UID: 0 PID: 4002 Comm: syz.1.174 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   55.995577][ T4002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   55.995592][ T4002] Call Trace:
[   55.995610][ T4002]  <TASK>
[   55.995618][ T4002]  __dump_stack+0x1d/0x30
[   55.995638][ T4002]  dump_stack_lvl+0xe8/0x140
[   55.995656][ T4002]  dump_stack+0x15/0x1b
[   55.995671][ T4002]  should_fail_ex+0x265/0x280
[   55.995695][ T4002]  should_fail+0xb/0x20
[   55.995746][ T4002]  should_fail_usercopy+0x1a/0x20
[   55.995768][ T4002]  _copy_from_user+0x1c/0xb0
[   55.995817][ T4002]  __sys_sendto+0x19e/0x330
[   55.995854][ T4002]  __x64_sys_sendto+0x76/0x90
[   55.995881][ T4002]  x64_sys_call+0x2d05/0x2ff0
[   55.995966][ T4002]  do_syscall_64+0xd2/0x200
[   55.995993][ T4002]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   55.996025][ T4002]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   55.996094][ T4002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.996120][ T4002] RIP: 0033:0x7f4afb4debe9
[   55.996140][ T4002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.996234][ T4002] RSP: 002b:00007f4af9f3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   55.996272][ T4002] RAX: ffffffffffffffda RBX: 00007f4afb715fa0 RCX: 00007f4afb4debe9
[   55.996286][ T4002] RDX: 0000000000000004 RSI: 00002000000000c0 RDI: 0000000000000006
[   55.996301][ T4002] RBP: 00007f4af9f3f090 R08: 0000200000000080 R09: 0000000000000014
[   55.996316][ T4002] R10: 0000000000000b01 R11: 0000000000000246 R12: 0000000000000001
[   55.996400][ T4002] R13: 00007f4afb716038 R14: 00007f4afb715fa0 R15: 00007ffecc18a048
[   55.996423][ T4002]  </TASK>
[   56.217027][ T4013] loop1: detected capacity change from 0 to 128
[   56.249211][ T4015] loop3: detected capacity change from 0 to 2048
[   56.264878][ T4015] EXT4-fs (loop3): failed to initialize system zone (-117)
[   56.272640][ T4015] EXT4-fs (loop3): mount failed
[   56.363078][ T4024] netlink: 24 bytes leftover after parsing attributes in process `syz.0.181'.
[   56.434339][ T4030] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   56.464853][ T4031] mmap: syz.3.180 (4031) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   56.477848][ T4030] FAULT_INJECTION: forcing a failure.
[   56.477848][ T4030] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.490993][ T4030] CPU: 0 UID: 0 PID: 4030 Comm: syz.0.184 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   56.491086][ T4030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   56.491148][ T4030] Call Trace:
[   56.491156][ T4030]  <TASK>
[   56.491166][ T4030]  __dump_stack+0x1d/0x30
[   56.491192][ T4030]  dump_stack_lvl+0xe8/0x140
[   56.491260][ T4030]  dump_stack+0x15/0x1b
[   56.491275][ T4030]  should_fail_ex+0x265/0x280
[   56.491295][ T4030]  should_fail+0xb/0x20
[   56.491326][ T4030]  should_fail_usercopy+0x1a/0x20
[   56.491374][ T4030]  _copy_from_user+0x1c/0xb0
[   56.491411][ T4030]  ___sys_recvmsg+0xaa/0x370
[   56.491482][ T4030]  ? _parse_integer+0x27/0x40
[   56.491518][ T4030]  do_recvmmsg+0x1ef/0x540
[   56.491559][ T4030]  __x64_sys_recvmmsg+0xe5/0x170
[   56.491598][ T4030]  x64_sys_call+0x27a6/0x2ff0
[   56.491693][ T4030]  do_syscall_64+0xd2/0x200
[   56.491738][ T4030]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.491769][ T4030]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   56.491803][ T4030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.491825][ T4030] RIP: 0033:0x7f2a5068ebe9
[   56.491840][ T4030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.491856][ T4030] RSP: 002b:00007f2a4f0ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   56.491875][ T4030] RAX: ffffffffffffffda RBX: 00007f2a508c5fa0 RCX: 00007f2a5068ebe9
[   56.491891][ T4030] RDX: 0000000000000001 RSI: 0000200000000b40 RDI: 0000000000000003
[   56.491907][ T4030] RBP: 00007f2a4f0ef090 R08: 0000000000000000 R09: 0000000000000000
[   56.491922][ T4030] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   56.491986][ T4030] R13: 00007f2a508c6038 R14: 00007f2a508c5fa0 R15: 00007ffe1adf5578
[   56.492009][ T4030]  </TASK>
[   56.899181][ T4039] loop2: detected capacity change from 0 to 128
[   56.905995][ T4039] msdos: Unknown parameter '                    '
[   57.016366][ T4042] FAULT_INJECTION: forcing a failure.
[   57.016366][ T4042] name failslab, interval 1, probability 0, space 0, times 0
[   57.029118][ T4042] CPU: 0 UID: 0 PID: 4042 Comm: syz.2.187 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   57.029144][ T4042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   57.029160][ T4042] Call Trace:
[   57.029182][ T4042]  <TASK>
[   57.029191][ T4042]  __dump_stack+0x1d/0x30
[   57.029217][ T4042]  dump_stack_lvl+0xe8/0x140
[   57.029312][ T4042]  dump_stack+0x15/0x1b
[   57.029328][ T4042]  should_fail_ex+0x265/0x280
[   57.029428][ T4042]  should_failslab+0x8c/0xb0
[   57.029459][ T4042]  __kmalloc_noprof+0xa5/0x3e0
[   57.029489][ T4042]  ? fib6_info_alloc+0x2e/0x90
[   57.029584][ T4042]  fib6_info_alloc+0x2e/0x90
[   57.029621][ T4042]  ip6_route_info_create+0xe7/0x390
[   57.029644][ T4042]  ip6_route_add+0x49/0x170
[   57.029724][ T4042]  ipv6_route_ioctl+0x251/0x280
[   57.029755][ T4042]  inet6_ioctl+0x152/0x190
[   57.029791][ T4042]  sock_do_ioctl+0x73/0x220
[   57.029897][ T4042]  sock_ioctl+0x41b/0x610
[   57.029931][ T4042]  ? __pfx_sock_ioctl+0x10/0x10
[   57.029962][ T4042]  __se_sys_ioctl+0xce/0x140
[   57.029986][ T4042]  __x64_sys_ioctl+0x43/0x50
[   57.030037][ T4042]  x64_sys_call+0x1816/0x2ff0
[   57.030058][ T4042]  do_syscall_64+0xd2/0x200
[   57.030093][ T4042]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   57.030199][ T4042]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   57.030272][ T4042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.030298][ T4042] RIP: 0033:0x7fef224eebe9
[   57.030317][ T4042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.030397][ T4042] RSP: 002b:00007fef20f57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   57.030421][ T4042] RAX: ffffffffffffffda RBX: 00007fef22725fa0 RCX: 00007fef224eebe9
[   57.030461][ T4042] RDX: 00002000000005c0 RSI: 000000000000890b RDI: 0000000000000003
[   57.030475][ T4042] RBP: 00007fef20f57090 R08: 0000000000000000 R09: 0000000000000000
[   57.030487][ T4042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.030498][ T4042] R13: 00007fef22726038 R14: 00007fef22725fa0 R15: 00007fff551559f8
[   57.030516][ T4042]  </TASK>
[   57.665836][ T4064] loop1: detected capacity change from 0 to 2364
[   57.739540][ T4068] batman_adv: batadv0: Adding interface: dummy0
[   57.745998][ T4068] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.777268][ T4068] batman_adv: batadv0: Interface activated: dummy0
[   57.803839][ T4068] batadv0: mtu less than device minimum
[   57.809923][ T4068] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   57.820904][ T4068] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   57.831844][ T4068] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   57.842878][ T4068] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   57.853758][ T4068] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   57.864615][ T4068] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   57.875431][ T4068] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   57.886138][ T4068] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   57.897035][ T4068] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   57.991657][ T4068] veth1_macvtap: left promiscuous mode
[   58.032888][ T4078] capability: warning: `syz.4.201' uses deprecated v2 capabilities in a way that may be insecure
[   58.065736][ T4081] __nla_validate_parse: 1 callbacks suppressed
[   58.065764][ T4081] netlink: 352 bytes leftover after parsing attributes in process `syz.1.202'.
[   58.081625][ T4081] FAULT_INJECTION: forcing a failure.
[   58.081625][ T4081] name failslab, interval 1, probability 0, space 0, times 0
[   58.094543][ T4081] CPU: 1 UID: 0 PID: 4081 Comm: syz.1.202 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   58.094577][ T4081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   58.094599][ T4081] Call Trace:
[   58.094607][ T4081]  <TASK>
[   58.094615][ T4081]  __dump_stack+0x1d/0x30
[   58.094675][ T4081]  dump_stack_lvl+0xe8/0x140
[   58.094699][ T4081]  dump_stack+0x15/0x1b
[   58.094720][ T4081]  should_fail_ex+0x265/0x280
[   58.094746][ T4081]  should_failslab+0x8c/0xb0
[   58.094775][ T4081]  kmem_cache_alloc_noprof+0x50/0x310
[   58.094950][ T4081]  ? skb_clone+0x151/0x1f0
[   58.094980][ T4081]  skb_clone+0x151/0x1f0
[   58.095004][ T4081]  __netlink_deliver_tap+0x2c9/0x500
[   58.095060][ T4081]  ? netlink_attachskb+0x2d0/0x610
[   58.095086][ T4081]  netlink_sendskb+0x126/0x150
[   58.095120][ T4081]  netlink_unicast+0x2a2/0x690
[   58.095192][ T4081]  netlink_ack+0x4c8/0x500
[   58.095225][ T4081]  netlink_rcv_skb+0x192/0x220
[   58.095252][ T4081]  ? __pfx_genl_rcv_msg+0x10/0x10
[   58.095315][ T4081]  genl_rcv+0x28/0x40
[   58.095421][ T4081]  netlink_unicast+0x5c0/0x690
[   58.095450][ T4081]  netlink_sendmsg+0x58b/0x6b0
[   58.095531][ T4081]  ? __pfx_netlink_sendmsg+0x10/0x10
[   58.095565][ T4081]  __sock_sendmsg+0x142/0x180
[   58.095628][ T4081]  ____sys_sendmsg+0x31e/0x4e0
[   58.095665][ T4081]  ___sys_sendmsg+0x17b/0x1d0
[   58.095717][ T4081]  __x64_sys_sendmsg+0xd4/0x160
[   58.095750][ T4081]  x64_sys_call+0x191e/0x2ff0
[   58.095796][ T4081]  do_syscall_64+0xd2/0x200
[   58.095826][ T4081]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   58.095899][ T4081]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   58.095937][ T4081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.095966][ T4081] RIP: 0033:0x7f4afb4debe9
[   58.095988][ T4081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.096067][ T4081] RSP: 002b:00007f4af9f3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   58.096093][ T4081] RAX: ffffffffffffffda RBX: 00007f4afb715fa0 RCX: 00007f4afb4debe9
[   58.096110][ T4081] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000007
[   58.096127][ T4081] RBP: 00007f4af9f3f090 R08: 0000000000000000 R09: 0000000000000000
[   58.096144][ T4081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.096155][ T4081] R13: 00007f4afb716038 R14: 00007f4afb715fa0 R15: 00007ffecc18a048
[   58.096173][ T4081]  </TASK>
[   58.341952][ T4083] loop4: detected capacity change from 0 to 512
[   58.354537][ T4083] EXT4-fs: Ignoring removed mblk_io_submit option
[   58.373352][ T4087] netlink: 24 bytes leftover after parsing attributes in process `syz.2.205'.
[   58.383111][ T4083] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   58.401396][ T4083] EXT4-fs (loop4): 1 truncate cleaned up
[   58.409549][ T4083] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.464788][ T4092] loop3: detected capacity change from 0 to 2364
[   58.648843][ T4110] loop0: detected capacity change from 0 to 128
[   58.744655][ T4118] random: crng reseeded on system resumption
[   58.846108][ T4124] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[   58.852715][ T4124] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   58.854007][ T4122] syz.0.213: attempt to access beyond end of device
[   58.854007][ T4122] loop0: rw=2049, sector=153, nr_sectors = 8 limit=128
[   58.860436][ T4124] vhci_hcd vhci_hcd.0: Device attached
[   58.881906][ T4124] netlink: 14 bytes leftover after parsing attributes in process `syz.3.215'.
[   58.891025][ T4124] hsr_slave_0: left promiscuous mode
[   58.896994][ T4124] hsr_slave_1: left promiscuous mode
[   58.961091][ T4122] syz.0.213: attempt to access beyond end of device
[   58.961091][ T4122] loop0: rw=2049, sector=169, nr_sectors = 8 limit=128
[   58.974731][ T4122] syz.0.213: attempt to access beyond end of device
[   58.974731][ T4122] loop0: rw=2049, sector=185, nr_sectors = 8 limit=128
[   58.988986][ T4122] syz.0.213: attempt to access beyond end of device
[   58.988986][ T4122] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[   59.003226][ T4122] syz.0.213: attempt to access beyond end of device
[   59.003226][ T4122] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[   59.006922][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.017454][ T4122] syz.0.213: attempt to access beyond end of device
[   59.017454][ T4122] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[   59.040220][ T4122] syz.0.213: attempt to access beyond end of device
[   59.040220][ T4122] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[   59.056749][ T3485] vhci_hcd: vhci_device speed not set
[   59.062273][ T4122] syz.0.213: attempt to access beyond end of device
[   59.062273][ T4122] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[   59.084342][ T4125] vhci_hcd: connection closed
[   59.084539][  T147] vhci_hcd: stop threads
[   59.094016][  T147] vhci_hcd: release socket
[   59.096445][ T4122] syz.0.213: attempt to access beyond end of device
[   59.096445][ T4122] loop0: rw=2049, sector=281, nr_sectors = 8 limit=128
[   59.098466][  T147] vhci_hcd: disconnect device
[   59.114173][ T3485] usb 7-1: new full-speed USB device number 2 using vhci_hcd
[   59.133045][ T4122] syz.0.213: attempt to access beyond end of device
[   59.133045][ T4122] loop0: rw=2049, sector=297, nr_sectors = 8 limit=128
[   59.134703][ T3485] usb 7-1: enqueue for inactive port 0
[   59.152459][ T3485] usb 7-1: enqueue for inactive port 0
[   59.175093][ T3485] usb 7-1: enqueue for inactive port 0
[   59.211534][ T4130] netlink: 'syz.0.217': attribute type 3 has an invalid length.
[   59.219509][ T4130] netlink: 'syz.0.217': attribute type 3 has an invalid length.
[   59.243708][ T3485] vhci_hcd: vhci_device speed not set
[   59.258661][ T4132] loop0: detected capacity change from 0 to 128
[   59.267333][ T4132] msdos: Unknown parameter '                    '
[   59.275847][ T4132] netlink: 8 bytes leftover after parsing attributes in process `syz.0.218'.
[   59.370778][ T4138] FAULT_INJECTION: forcing a failure.
[   59.370778][ T4138] name failslab, interval 1, probability 0, space 0, times 0
[   59.384141][ T4138] CPU: 1 UID: 0 PID: 4138 Comm: syz.1.221 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   59.384189][ T4138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   59.384205][ T4138] Call Trace:
[   59.384213][ T4138]  <TASK>
[   59.384223][ T4138]  __dump_stack+0x1d/0x30
[   59.384250][ T4138]  dump_stack_lvl+0xe8/0x140
[   59.384319][ T4138]  dump_stack+0x15/0x1b
[   59.384339][ T4138]  should_fail_ex+0x265/0x280
[   59.384376][ T4138]  should_failslab+0x8c/0xb0
[   59.384456][ T4138]  __kmalloc_noprof+0xa5/0x3e0
[   59.384490][ T4138]  ? kobject_get_path+0x92/0x1c0
[   59.384541][ T4138]  kobject_get_path+0x92/0x1c0
[   59.384593][ T4138]  kobject_uevent_env+0x1da/0x570
[   59.384691][ T4138]  ? device_pm_check_callbacks+0x683/0x6a0
[   59.384827][ T4138]  kobject_uevent+0x1d/0x30
[   59.384929][ T4138]  device_del+0x710/0x790
[   59.384960][ T4138]  device_unregister+0x15/0x40
[   59.384989][ T4138]  bdi_unregister+0x307/0x3a0
[   59.385098][ T4138]  __del_gendisk+0x2c3/0x570
[   59.385132][ T4138]  del_gendisk+0xac/0xf0
[   59.385174][ T4138]  loop_remove+0x26/0x80
[   59.385208][ T4138]  loop_control_ioctl+0x3b3/0x3f0
[   59.385246][ T4138]  ? __pfx_loop_control_ioctl+0x10/0x10
[   59.385351][ T4138]  __se_sys_ioctl+0xce/0x140
[   59.385373][ T4138]  __x64_sys_ioctl+0x43/0x50
[   59.385395][ T4138]  x64_sys_call+0x1816/0x2ff0
[   59.385418][ T4138]  do_syscall_64+0xd2/0x200
[   59.385482][ T4138]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   59.385513][ T4138]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   59.385547][ T4138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.385570][ T4138] RIP: 0033:0x7f4afb4debe9
[   59.385591][ T4138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.385626][ T4138] RSP: 002b:00007f4af9f3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   59.385648][ T4138] RAX: ffffffffffffffda RBX: 00007f4afb715fa0 RCX: 00007f4afb4debe9
[   59.385664][ T4138] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000003
[   59.385679][ T4138] RBP: 00007f4af9f3f090 R08: 0000000000000000 R09: 0000000000000000
[   59.385693][ T4138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.385705][ T4138] R13: 00007f4afb716038 R14: 00007f4afb715fa0 R15: 00007ffecc18a048
[   59.385722][ T4138]  </TASK>
[   60.510549][ T4168] FAULT_INJECTION: forcing a failure.
[   60.510549][ T4168] name failslab, interval 1, probability 0, space 0, times 0
[   60.523251][ T4168] CPU: 1 UID: 0 PID: 4168 Comm: syz.4.230 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.523286][ T4168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   60.523310][ T4168] Call Trace:
[   60.523319][ T4168]  <TASK>
[   60.523326][ T4168]  __dump_stack+0x1d/0x30
[   60.523347][ T4168]  dump_stack_lvl+0xe8/0x140
[   60.523371][ T4168]  dump_stack+0x15/0x1b
[   60.523393][ T4168]  should_fail_ex+0x265/0x280
[   60.523485][ T4168]  should_failslab+0x8c/0xb0
[   60.523537][ T4168]  kmem_cache_alloc_noprof+0x50/0x310
[   60.523570][ T4168]  ? security_file_alloc+0x32/0x100
[   60.523612][ T4168]  security_file_alloc+0x32/0x100
[   60.523692][ T4168]  init_file+0x5c/0x1d0
[   60.523721][ T4168]  alloc_empty_file+0x8b/0x200
[   60.523752][ T4168]  path_openat+0x68/0x2170
[   60.523802][ T4168]  ? _parse_integer_limit+0x170/0x190
[   60.523829][ T4168]  ? _parse_integer+0x27/0x40
[   60.523849][ T4168]  ? kstrtoull+0x111/0x140
[   60.523875][ T4168]  ? kstrtouint+0x76/0xc0
[   60.523903][ T4168]  do_filp_open+0x109/0x230
[   60.524016][ T4168]  do_sys_openat2+0xa6/0x110
[   60.524088][ T4168]  __x64_sys_creat+0x65/0x90
[   60.524108][ T4168]  x64_sys_call+0x2d94/0x2ff0
[   60.524133][ T4168]  do_syscall_64+0xd2/0x200
[   60.524235][ T4168]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.524274][ T4168]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   60.524308][ T4168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.524328][ T4168] RIP: 0033:0x7f52b147ebe9
[   60.524361][ T4168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.524384][ T4168] RSP: 002b:00007f52afea5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   60.524450][ T4168] RAX: ffffffffffffffda RBX: 00007f52b16b6180 RCX: 00007f52b147ebe9
[   60.524465][ T4168] RDX: 0000000000000000 RSI: 0000000000000031 RDI: 0000200000000bc0
[   60.524476][ T4168] RBP: 00007f52afea5090 R08: 0000000000000000 R09: 0000000000000000
[   60.524487][ T4168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.524498][ T4168] R13: 00007f52b16b6218 R14: 00007f52b16b6180 R15: 00007fff25aea8f8
[   60.524517][ T4168]  </TASK>
[   60.846376][   T29] kauditd_printk_skb: 319 callbacks suppressed
[   60.846446][   T29] audit: type=1400 audit(2000000009.112:1290): avc:  denied  { unlink } for  pid=3313 comm="syz-executor" name="file0" dev="tmpfs" ino=312 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   60.880504][ T4164] netlink: 8 bytes leftover after parsing attributes in process `syz.2.227'.
[   60.912660][   T29] audit: type=1400 audit(2000000009.172:1291): avc:  denied  { open } for  pid=4173 comm="syz.3.233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   60.931970][   T29] audit: type=1400 audit(2000000009.172:1292): avc:  denied  { kernel } for  pid=4173 comm="syz.3.233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   60.951837][   T29] audit: type=1400 audit(2000000009.172:1293): avc:  denied  { mount } for  pid=4173 comm="syz.3.233" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   61.003791][   T29] audit: type=1400 audit(2000000009.252:1294): avc:  denied  { create } for  pid=4175 comm="syz.1.234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   61.005753][ T4180] netlink: 4 bytes leftover after parsing attributes in process `syz.0.235'.
[   61.023561][   T29] audit: type=1400 audit(2000000009.252:1295): avc:  denied  { module_request } for  pid=4175 comm="syz.1.234" kmod="net-pf-10-proto-7-type-10" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   61.055491][   T29] audit: type=1400 audit(2000000009.262:1296): avc:  denied  { create } for  pid=4176 comm="syz.0.235" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   61.131086][ T4183] netlink: 'syz.3.236': attribute type 21 has an invalid length.
[   61.138896][ T4183] netlink: 156 bytes leftover after parsing attributes in process `syz.3.236'.
[   61.157012][   T29] audit: type=1400 audit(2000000009.352:1297): avc:  denied  { write } for  pid=4151 comm="syz.2.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   61.177679][   T29] audit: type=1400 audit(2000000009.352:1298): avc:  denied  { read } for  pid=4151 comm="syz.2.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   61.184982][ T4187] netlink: 8 bytes leftover after parsing attributes in process `syz.4.237'.
[   61.197981][   T29] audit: type=1400 audit(2000000009.392:1299): avc:  denied  { setopt } for  pid=4176 comm="syz.0.235" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   61.284929][ T4187] netlink: 'syz.4.237': attribute type 1 has an invalid length.
[   61.300211][ T4187] 8021q: adding VLAN 0 to HW filter on device bond1
[   61.309904][ T4178] 9pnet_fd: Insufficient options for proto=fd
[   61.326113][ T4187] 8021q: adding VLAN 0 to HW filter on device bond1
[   61.334516][ T4187] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[   61.355754][ T4187] bond1: (slave vxcan3): Error -95 calling set_mac_address
[   61.381405][ T4199] gretap1: entered promiscuous mode
[   61.731488][ T4220] loop4: detected capacity change from 0 to 1024
[   61.866655][ T4220] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   61.941517][ T4220] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   61.958305][ T4220] netlink: 14 bytes leftover after parsing attributes in process `syz.4.250'.
[   61.973252][ T4225] FAULT_INJECTION: forcing a failure.
[   61.973252][ T4225] name failslab, interval 1, probability 0, space 0, times 0
[   61.985959][ T4225] CPU: 0 UID: 0 PID: 4225 Comm: syz.0.252 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   61.985992][ T4225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   61.986013][ T4225] Call Trace:
[   61.986020][ T4225]  <TASK>
[   61.986040][ T4225]  __dump_stack+0x1d/0x30
[   61.986064][ T4225]  dump_stack_lvl+0xe8/0x140
[   61.986089][ T4225]  dump_stack+0x15/0x1b
[   61.986108][ T4225]  should_fail_ex+0x265/0x280
[   61.986132][ T4225]  should_failslab+0x8c/0xb0
[   61.986193][ T4225]  kmem_cache_alloc_noprof+0x50/0x310
[   61.986230][ T4225]  ? audit_log_start+0x365/0x6c0
[   61.986277][ T4225]  audit_log_start+0x365/0x6c0
[   61.986398][ T4225]  audit_seccomp+0x48/0x100
[   61.986431][ T4225]  ? __seccomp_filter+0x68c/0x10d0
[   61.986480][ T4225]  __seccomp_filter+0x69d/0x10d0
[   61.986505][ T4225]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   61.986531][ T4225]  ? vfs_write+0x7e8/0x960
[   61.986609][ T4225]  ? __rcu_read_unlock+0x4f/0x70
[   61.986630][ T4225]  ? __fget_files+0x184/0x1c0
[   61.986663][ T4225]  __secure_computing+0x82/0x150
[   61.986690][ T4225]  syscall_trace_enter+0xcf/0x1e0
[   61.986770][ T4225]  do_syscall_64+0xac/0x200
[   61.986807][ T4225]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   61.986834][ T4225]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   61.986861][ T4225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.987020][ T4225] RIP: 0033:0x7f2a5068ebe9
[   61.987040][ T4225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.987063][ T4225] RSP: 002b:00007f2a4f0ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000009e
[   61.987087][ T4225] RAX: ffffffffffffffda RBX: 00007f2a508c5fa0 RCX: 00007f2a5068ebe9
[   61.987099][ T4225] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000001021
[   61.987169][ T4225] RBP: 00007f2a4f0ef090 R08: 0000000000000000 R09: 0000000000000000
[   61.987184][ T4225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.987200][ T4225] R13: 00007f2a508c6038 R14: 00007f2a508c5fa0 R15: 00007ffe1adf5578
[   61.987221][ T4225]  </TASK>
[   62.270947][ T4220] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   62.291182][ T4220] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   62.311859][ T4220] bond0 (unregistering): Released all slaves
[   62.337213][ T4237] netlink: 48 bytes leftover after parsing attributes in process `syz.3.257'.
[   62.356811][ T4239] loop2: detected capacity change from 0 to 512
[   62.375598][ T4239] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.389846][ T4241] FAULT_INJECTION: forcing a failure.
[   62.389846][ T4241] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.403075][ T4241] CPU: 0 UID: 0 PID: 4241 Comm: syz.1.259 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   62.403185][ T4241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   62.403201][ T4241] Call Trace:
[   62.403209][ T4241]  <TASK>
[   62.403219][ T4241]  __dump_stack+0x1d/0x30
[   62.403315][ T4241]  dump_stack_lvl+0xe8/0x140
[   62.403333][ T4241]  dump_stack+0x15/0x1b
[   62.403387][ T4241]  should_fail_ex+0x265/0x280
[   62.403480][ T4241]  should_fail+0xb/0x20
[   62.403499][ T4241]  should_fail_usercopy+0x1a/0x20
[   62.403520][ T4241]  _copy_from_user+0x1c/0xb0
[   62.403548][ T4241]  ___sys_sendmsg+0xc1/0x1d0
[   62.403593][ T4241]  __x64_sys_sendmsg+0xd4/0x160
[   62.403638][ T4241]  x64_sys_call+0x191e/0x2ff0
[   62.403665][ T4241]  do_syscall_64+0xd2/0x200
[   62.403713][ T4241]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   62.403744][ T4241]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   62.403775][ T4241]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.403801][ T4241] RIP: 0033:0x7f4afb4debe9
[   62.403819][ T4241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.403918][ T4241] RSP: 002b:00007f4af9f3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.403942][ T4241] RAX: ffffffffffffffda RBX: 00007f4afb715fa0 RCX: 00007f4afb4debe9
[   62.403957][ T4241] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000003
[   62.404048][ T4241] RBP: 00007f4af9f3f090 R08: 0000000000000000 R09: 0000000000000000
[   62.404064][ T4241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.404080][ T4241] R13: 00007f4afb716038 R14: 00007f4afb715fa0 R15: 00007ffecc18a048
[   62.404103][ T4241]  </TASK>
[   62.414786][ T4245] loop3: detected capacity change from 0 to 128
[   62.434003][ T4239] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.481472][ T4245] msdos: Unknown parameter '                    '
[   62.539984][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.635007][ T4254] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   62.635085][ T4251] IPVS: stopping master sync thread 4254 ...
[   62.664831][ T4251] loop3: detected capacity change from 0 to 2048
[   62.703892][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.714203][ T3300]  loop3: p1 < > p4
[   62.724669][ T3300] loop3: p4 size 8388608 extends beyond EOD, truncated
[   62.734691][ T4251]  loop3: p1 < > p4
[   62.739225][ T4251] loop3: p4 size 8388608 extends beyond EOD, truncated
[   62.792607][ T3539] udevd[3539]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   62.802795][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   62.827701][ T4261] FAULT_INJECTION: forcing a failure.
[   62.827701][ T4261] name failslab, interval 1, probability 0, space 0, times 0
[   62.840541][ T4261] CPU: 1 UID: 0 PID: 4261 Comm: syz.3.266 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   62.840569][ T4261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   62.840585][ T4261] Call Trace:
[   62.840593][ T4261]  <TASK>
[   62.840603][ T4261]  __dump_stack+0x1d/0x30
[   62.840629][ T4261]  dump_stack_lvl+0xe8/0x140
[   62.840675][ T4261]  dump_stack+0x15/0x1b
[   62.840690][ T4261]  should_fail_ex+0x265/0x280
[   62.840783][ T4261]  should_failslab+0x8c/0xb0
[   62.840809][ T4261]  kmem_cache_alloc_node_noprof+0x57/0x320
[   62.840847][ T4261]  ? __alloc_skb+0x101/0x320
[   62.840874][ T4261]  __alloc_skb+0x101/0x320
[   62.840892][ T4261]  ? audit_log_start+0x365/0x6c0
[   62.840931][ T4261]  audit_log_start+0x380/0x6c0
[   62.840973][ T4261]  audit_seccomp+0x48/0x100
[   62.841034][ T4261]  ? __seccomp_filter+0x68c/0x10d0
[   62.841055][ T4261]  __seccomp_filter+0x69d/0x10d0
[   62.841082][ T4261]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   62.841180][ T4261]  ? vfs_write+0x7e8/0x960
[   62.841215][ T4261]  __secure_computing+0x82/0x150
[   62.841235][ T4261]  syscall_trace_enter+0xcf/0x1e0
[   62.841267][ T4261]  do_syscall_64+0xac/0x200
[   62.841326][ T4261]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   62.841349][ T4261]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   62.841377][ T4261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.841404][ T4261] RIP: 0033:0x7f77669aebe9
[   62.841423][ T4261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.841478][ T4261] RSP: 002b:00007f776540f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.841502][ T4261] RAX: ffffffffffffffda RBX: 00007f7766be5fa0 RCX: 00007f77669aebe9
[   62.841518][ T4261] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000006
[   62.841533][ T4261] RBP: 00007f776540f090 R08: 0000000000000000 R09: 0000000000000000
[   62.841544][ T4261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.841555][ T4261] R13: 00007f7766be6038 R14: 00007f7766be5fa0 R15: 00007fff51cfdb28
[   62.841573][ T4261]  </TASK>
[   62.875416][ T4268] loop4: detected capacity change from 0 to 512
[   62.911104][ T3539] udevd[3539]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   62.915361][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   62.944772][ T4268] EXT4-fs: Ignoring removed mblk_io_submit option
[   62.976735][ T4268] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   63.088194][ T1047] IPVS: starting estimator thread 0...
[   63.142838][ T4268] EXT4-fs (loop4): 1 truncate cleaned up
[   63.143199][ T4268] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.235617][ T4273] IPVS: using max 2400 ests per chain, 120000 per kthread
[   63.491442][ T4286] __nla_validate_parse: 6 callbacks suppressed
[   63.491463][ T4286] netlink: 8 bytes leftover after parsing attributes in process `syz.1.273'.
[   63.743397][ T4301] netlink: 24 bytes leftover after parsing attributes in process `syz.2.277'.
[   63.757451][ T4303] FAULT_INJECTION: forcing a failure.
[   63.757451][ T4303] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.770680][ T4303] CPU: 0 UID: 0 PID: 4303 Comm: syz.3.278 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   63.770705][ T4303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   63.770745][ T4303] Call Trace:
[   63.770753][ T4303]  <TASK>
[   63.770763][ T4303]  __dump_stack+0x1d/0x30
[   63.770789][ T4303]  dump_stack_lvl+0xe8/0x140
[   63.770814][ T4303]  dump_stack+0x15/0x1b
[   63.770896][ T4303]  should_fail_ex+0x265/0x280
[   63.770919][ T4303]  should_fail+0xb/0x20
[   63.770938][ T4303]  should_fail_usercopy+0x1a/0x20
[   63.770967][ T4303]  _copy_from_iter+0xd2/0xe80
[   63.770994][ T4303]  ? __build_skb_around+0x1a0/0x200
[   63.771015][ T4303]  ? __alloc_skb+0x223/0x320
[   63.771037][ T4303]  netlink_sendmsg+0x471/0x6b0
[   63.771064][ T4303]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.771119][ T4303]  __sock_sendmsg+0x142/0x180
[   63.771162][ T4303]  ____sys_sendmsg+0x31e/0x4e0
[   63.771193][ T4303]  ___sys_sendmsg+0x17b/0x1d0
[   63.771236][ T4303]  __x64_sys_sendmsg+0xd4/0x160
[   63.771302][ T4303]  x64_sys_call+0x191e/0x2ff0
[   63.771382][ T4303]  do_syscall_64+0xd2/0x200
[   63.771415][ T4303]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   63.771443][ T4303]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   63.771475][ T4303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.771530][ T4303] RIP: 0033:0x7f77669aebe9
[   63.771549][ T4303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.771570][ T4303] RSP: 002b:00007f776540f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.771593][ T4303] RAX: ffffffffffffffda RBX: 00007f7766be5fa0 RCX: 00007f77669aebe9
[   63.771607][ T4303] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000008
[   63.771625][ T4303] RBP: 00007f776540f090 R08: 0000000000000000 R09: 0000000000000000
[   63.771639][ T4303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.771654][ T4303] R13: 00007f7766be6038 R14: 00007f7766be5fa0 R15: 00007fff51cfdb28
[   63.771701][ T4303]  </TASK>
[   64.009051][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.050732][ T4309] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   64.058224][ T4309] batman_adv: batadv0: Removing interface: batadv_slave_0
[   64.059653][ T4311] loop4: detected capacity change from 0 to 128
[   64.072294][ T4309] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.079890][ T4309] batman_adv: batadv0: Removing interface: batadv_slave_1
[   64.223176][ T4320] netlink: 12 bytes leftover after parsing attributes in process `syz.2.285'.
[   64.238010][ T4320] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.250890][ T4320] vlan2: entered allmulticast mode
[   64.256123][ T4320] bond0: entered allmulticast mode
[   64.336555][ T4323] loop2: detected capacity change from 0 to 1024
[   64.347928][ T4323] EXT4-fs: Ignoring removed nobh option
[   64.355017][ T4323] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   64.366509][ T4323] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #11: comm syz.2.286: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   64.385757][ T4323] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.286: couldn't read orphan inode 11 (err -117)
[   64.398553][ T4323] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   64.412183][ T4323] FAULT_INJECTION: forcing a failure.
[   64.412183][ T4323] name failslab, interval 1, probability 0, space 0, times 0
[   64.425034][ T4323] CPU: 0 UID: 0 PID: 4323 Comm: syz.2.286 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   64.425074][ T4323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   64.425091][ T4323] Call Trace:
[   64.425099][ T4323]  <TASK>
[   64.425108][ T4323]  __dump_stack+0x1d/0x30
[   64.425134][ T4323]  dump_stack_lvl+0xe8/0x140
[   64.425173][ T4323]  dump_stack+0x15/0x1b
[   64.425188][ T4323]  should_fail_ex+0x265/0x280
[   64.425244][ T4323]  should_failslab+0x8c/0xb0
[   64.425275][ T4323]  kmem_cache_alloc_noprof+0x50/0x310
[   64.425304][ T4323]  ? __es_insert_extent+0x508/0xee0
[   64.425334][ T4323]  ? _raw_spin_unlock_irq+0x26/0x50
[   64.425394][ T4323]  __es_insert_extent+0x508/0xee0
[   64.425430][ T4323]  ? blk_mq_request_issue_directly+0x30a/0x380
[   64.425469][ T4323]  ext4_es_cache_extent+0x276/0x370
[   64.425538][ T4323]  ext4_find_extent+0x336/0x7a0
[   64.425561][ T4323]  ext4_ext_map_blocks+0x11f/0x38a0
[   64.425607][ T4323]  ? kernelmode_fixup_or_oops+0x59/0xb0
[   64.425683][ T4323]  ? xas_load+0x413/0x430
[   64.425770][ T4323]  ? __rcu_read_unlock+0x4f/0x70
[   64.425796][ T4323]  ? xa_load+0xb1/0xe0
[   64.425826][ T4323]  ext4_map_query_blocks+0xa8/0x480
[   64.425930][ T4323]  ext4_map_blocks+0x330/0xd00
[   64.425968][ T4323]  ? __rcu_read_unlock+0x34/0x70
[   64.425999][ T4323]  ext4_getblk+0x114/0x510
[   64.426157][ T4323]  ext4_bread_batch+0x5c/0x320
[   64.426193][ T4323]  __ext4_find_entry+0x840/0xf40
[   64.426225][ T4323]  ? obj_cgroup_charge_account+0x122/0x1a0
[   64.426264][ T4323]  ? __rcu_read_unlock+0x4f/0x70
[   64.426295][ T4323]  ? kmem_cache_alloc_lru_noprof+0x229/0x310
[   64.426357][ T4323]  ? __d_alloc+0x3d/0x340
[   64.426384][ T4323]  ext4_lookup+0xbb/0x390
[   64.426486][ T4323]  lookup_one_qstr_excl+0xcb/0x250
[   64.426542][ T4323]  filename_create+0x149/0x230
[   64.426561][ T4323]  do_mkdirat+0x52/0x3f0
[   64.426580][ T4323]  __x64_sys_mkdirat+0x4c/0x60
[   64.426608][ T4323]  x64_sys_call+0x2b7/0x2ff0
[   64.426626][ T4323]  do_syscall_64+0xd2/0x200
[   64.426651][ T4323]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   64.426696][ T4323]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   64.426759][ T4323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.426782][ T4323] RIP: 0033:0x7fef224eebe9
[   64.426795][ T4323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.426810][ T4323] RSP: 002b:00007fef20f57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[   64.426895][ T4323] RAX: ffffffffffffffda RBX: 00007fef22725fa0 RCX: 00007fef224eebe9
[   64.426905][ T4323] RDX: 0000000000000000 RSI: 0000200000002040 RDI: ffffffffffffff9c
[   64.426916][ T4323] RBP: 00007fef20f57090 R08: 0000000000000000 R09: 0000000000000000
[   64.426926][ T4323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.426968][ T4323] R13: 00007fef22726038 R14: 00007fef22725fa0 R15: 00007fff551559f8
[   64.426991][ T4323]  </TASK>
[   64.428332][ T4323] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.286: Invalid block bitmap block 0 in block_group 0
[   64.481320][ T4326] netlink: 8 bytes leftover after parsing attributes in process `syz.0.287'.
[   64.483289][ T4323] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.286: Failed to acquire dquot type 0
[   64.761120][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.812957][ T4338] netlink: 24 bytes leftover after parsing attributes in process `syz.0.292'.
[   64.852129][ T4340] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   64.852129][ T4340]    program syz.2.293 not setting count and/or reply_len properly
[   64.871374][ T4343] netlink: 52 bytes leftover after parsing attributes in process `syz.0.294'.
[   64.936546][ T4351] netlink: 8 bytes leftover after parsing attributes in process `syz.0.298'.
[   64.963116][ T4355] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[   65.024778][ T4364] netlink: 24 bytes leftover after parsing attributes in process `syz.3.304'.
[   65.106545][ T4373] loop3: detected capacity change from 0 to 128
[   65.181850][ T4371] loop4: detected capacity change from 0 to 1024
[   65.189323][ T4371] EXT4-fs: Ignoring removed mblk_io_submit option
[   65.203451][ T4371] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   65.212700][ T4371] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   65.224960][ T4371] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #11: comm syz.4.307: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   65.246299][ T4371] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.307: couldn't read orphan inode 11 (err -117)
[   65.258924][ T4371] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.273444][ T4371] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.307: Invalid block bitmap block 0 in block_group 0
[   65.287401][ T4371] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.307: Failed to acquire dquot type 0
[   65.299305][ T4371] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   65.308808][ T4371] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.307: iget: bad extra_isize 65535 (inode size 256)
[   65.451457][ T4380] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   65.459052][ T4380] net_ratelimit: 10 callbacks suppressed
[   65.459069][ T4380] batadv0: mtu less than device minimum
[   65.470754][ T4380] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   65.481581][ T4380] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   65.492497][ T4380] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   65.503300][ T4380] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   65.514215][ T4380] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   65.525184][ T4380] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   65.535928][ T4380] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   65.546581][ T4380] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   65.557491][ T4380] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   65.572290][ T4380] batman_adv: batadv0: Removing interface: batadv_slave_0
[   65.580193][ T4380] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   65.595680][ T4380] batman_adv: batadv0: Removing interface: batadv_slave_1
[   65.603292][ T4380] batman_adv: batadv0: Interface deactivated: dummy0
[   65.610062][ T4380] batman_adv: batadv0: Removing interface: dummy0
[   65.721533][ T4382] FAULT_INJECTION: forcing a failure.
[   65.721533][ T4382] name failslab, interval 1, probability 0, space 0, times 0
[   65.734756][ T4382] CPU: 1 UID: 0 PID: 4382 Comm: syz.1.310 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   65.734789][ T4382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   65.734861][ T4382] Call Trace:
[   65.734867][ T4382]  <TASK>
[   65.734874][ T4382]  __dump_stack+0x1d/0x30
[   65.734893][ T4382]  dump_stack_lvl+0xe8/0x140
[   65.734909][ T4382]  dump_stack+0x15/0x1b
[   65.734923][ T4382]  should_fail_ex+0x265/0x280
[   65.734971][ T4382]  should_failslab+0x8c/0xb0
[   65.735041][ T4382]  kmem_cache_alloc_noprof+0x50/0x310
[   65.735065][ T4382]  ? getname_flags+0x80/0x3b0
[   65.735145][ T4382]  getname_flags+0x80/0x3b0
[   65.735170][ T4382]  user_path_at+0x28/0x130
[   65.735201][ T4382]  __x64_sys_umount+0x85/0xe0
[   65.735219][ T4382]  x64_sys_call+0xdd2/0x2ff0
[   65.735237][ T4382]  do_syscall_64+0xd2/0x200
[   65.735312][ T4382]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   65.735334][ T4382]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   65.735358][ T4382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.735376][ T4382] RIP: 0033:0x7f4afb4debe9
[   65.735389][ T4382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.735460][ T4382] RSP: 002b:00007f4af9f3f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   65.735594][ T4382] RAX: ffffffffffffffda RBX: 00007f4afb715fa0 RCX: 00007f4afb4debe9
[   65.735606][ T4382] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000002c0
[   65.735620][ T4382] RBP: 00007f4af9f3f090 R08: 0000000000000000 R09: 0000000000000000
[   65.735636][ T4382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.735651][ T4382] R13: 00007f4afb716038 R14: 00007f4afb715fa0 R15: 00007ffecc18a048
[   65.735677][ T4382]  </TASK>
[   65.954367][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.969695][ T4384] nfs: Unknown parameter '@]$'
[   65.974734][   T29] kauditd_printk_skb: 313 callbacks suppressed
[   65.974751][   T29] audit: type=1400 audit(2000000014.232:1603): avc:  denied  { mounton } for  pid=4383 comm="syz.1.311" path="/70/file0" dev="tmpfs" ino=401 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   66.006653][ T4387] netlink: 8 bytes leftover after parsing attributes in process `syz.0.312'.
[   66.021615][ T4394] syz.4.313 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   66.026594][   T29] audit: type=1400 audit(2000000014.272:1604): avc:  denied  { write } for  pid=4393 comm="syz.4.313" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   66.054925][    C0] hrtimer: interrupt took 28179 ns
[   66.077554][   T29] audit: type=1400 audit(2000000014.332:1605): avc:  denied  { write } for  pid=4395 comm="syz.0.316" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   66.101087][   T29] audit: type=1400 audit(2000000014.362:1606): avc:  denied  { read append } for  pid=4393 comm="syz.4.313" name="rtc0" dev="devtmpfs" ino=244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   66.141717][ T4401] netlink: 24 bytes leftover after parsing attributes in process `syz.2.317'.
[   66.161823][   T29] audit: type=1400 audit(2000000014.392:1607): avc:  denied  { ioctl } for  pid=4393 comm="syz.4.313" path="/dev/rtc0" dev="devtmpfs" ino=244 ioctlcmd=0x700f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   66.186847][   T29] audit: type=1400 audit(2000000014.422:1608): avc:  denied  { name_bind } for  pid=4402 comm="syz.3.319" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   66.208592][   T29] audit: type=1400 audit(2000000014.422:1609): avc:  denied  { read } for  pid=4404 comm="syz.0.320" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   66.231691][   T29] audit: type=1400 audit(2000000014.422:1610): avc:  denied  { open } for  pid=4404 comm="syz.0.320" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   66.255386][   T29] audit: type=1400 audit(2000000014.422:1611): avc:  denied  { ioctl } for  pid=4404 comm="syz.0.320" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   66.331837][ T4409] lo speed is unknown, defaulting to 1000
[   66.351898][ T4409] lo speed is unknown, defaulting to 1000
[   66.364459][ T4409] lo speed is unknown, defaulting to 1000
[   66.375286][ T4409] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   66.391368][   T29] audit: type=1400 audit(2000000014.552:1612): avc:  denied  { write } for  pid=4408 comm="syz.1.318" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   66.408671][ T4409] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   66.455591][ T4409] lo speed is unknown, defaulting to 1000
[   66.474239][ T4409] lo speed is unknown, defaulting to 1000
[   66.486015][ T4409] lo speed is unknown, defaulting to 1000
[   66.513036][ T4418] loop4: detected capacity change from 0 to 2364
[   66.524024][ T4409] lo speed is unknown, defaulting to 1000
[   66.531081][ T4409] lo speed is unknown, defaulting to 1000
[   66.540120][ T4409] lo speed is unknown, defaulting to 1000
[   66.722546][ T4420] loop4: detected capacity change from 0 to 1024
[   66.748476][ T4420] EXT4-fs: Ignoring removed mblk_io_submit option
[   66.768606][ T4420] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   66.782323][ T4420] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   66.797312][ T4423] loop3: detected capacity change from 0 to 128
[   66.804094][ T4420] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #11: comm syz.4.324: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   66.841086][ T4420] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.324: couldn't read orphan inode 11 (err -117)
[   66.853496][ T4420] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.870162][ T4420] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.324: Invalid block bitmap block 0 in block_group 0
[   66.884039][ T4420] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.324: Failed to acquire dquot type 0
[   66.896007][ T4420] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   66.904577][ T4420] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.324: iget: bad extra_isize 65535 (inode size 256)
[   67.280710][ T4444] netlink: 'syz.2.333': attribute type 3 has an invalid length.
[   67.288771][ T4444] netlink: 'syz.2.333': attribute type 3 has an invalid length.
[   67.364329][ T4453] FAULT_INJECTION: forcing a failure.
[   67.364329][ T4453] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   67.377830][ T4453] CPU: 0 UID: 0 PID: 4453 Comm: +}[@ Not tainted syzkaller #0 PREEMPT(voluntary) 
[   67.377857][ T4453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   67.377898][ T4453] Call Trace:
[   67.377904][ T4453]  <TASK>
[   67.377912][ T4453]  __dump_stack+0x1d/0x30
[   67.377980][ T4453]  dump_stack_lvl+0xe8/0x140
[   67.378003][ T4453]  dump_stack+0x15/0x1b
[   67.378057][ T4453]  should_fail_ex+0x265/0x280
[   67.378085][ T4453]  should_fail_alloc_page+0xf2/0x100
[   67.378122][ T4453]  __alloc_frozen_pages_noprof+0xff/0x360
[   67.378206][ T4453]  alloc_pages_mpol+0xb3/0x250
[   67.378246][ T4453]  alloc_frozen_pages_noprof+0x90/0x110
[   67.378285][ T4453]  ___kmalloc_large_node+0x52/0x100
[   67.378338][ T4453]  __kmalloc_large_node_noprof+0x16/0xa0
[   67.378373][ T4453]  __kmalloc_noprof+0x2ab/0x3e0
[   67.378405][ T4453]  ? iovec_from_user+0x84/0x210
[   67.378442][ T4453]  iovec_from_user+0x84/0x210
[   67.378478][ T4453]  __import_iovec+0xf3/0x540
[   67.378506][ T4453]  ? _parse_integer_limit+0x170/0x190
[   67.378532][ T4453]  import_iovec+0x61/0x80
[   67.378567][ T4453]  ___sys_sendmsg+0x146/0x1d0
[   67.378754][ T4453]  __x64_sys_sendmsg+0xd4/0x160
[   67.378831][ T4453]  x64_sys_call+0x191e/0x2ff0
[   67.378857][ T4453]  do_syscall_64+0xd2/0x200
[   67.378947][ T4453]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   67.378974][ T4453]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   67.379006][ T4453]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.379032][ T4453] RIP: 0033:0x7f4afb4debe9
[   67.379145][ T4453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.379165][ T4453] RSP: 002b:00007f4af9f3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.379183][ T4453] RAX: ffffffffffffffda RBX: 00007f4afb715fa0 RCX: 00007f4afb4debe9
[   67.379195][ T4453] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000005
[   67.379228][ T4453] RBP: 00007f4af9f3f090 R08: 0000000000000000 R09: 0000000000000000
[   67.379242][ T4453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.379256][ T4453] R13: 00007f4afb716038 R14: 00007f4afb715fa0 R15: 00007ffecc18a048
[   67.379277][ T4453]  </TASK>
[   67.612588][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.669085][ T4456] loop4: detected capacity change from 0 to 512
[   67.675927][ T4456] journal_path: Non-blockdev passed as './bus'
[   67.682127][ T4456] EXT4-fs: error: could not find journal device path
[   67.771872][ T4464] loop3: detected capacity change from 0 to 1024
[   67.780103][ T4464] EXT4-fs: Mount option(s) incompatible with ext2
[   67.815268][ T4464] loop3: detected capacity change from 0 to 1024
[   67.920980][ T4474] loop3: detected capacity change from 0 to 512
[   67.948150][ T4474] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.957451][ T4474] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   67.972843][ T4474] EXT4-fs (loop3): 1 truncate cleaned up
[   67.982319][ T4474] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.593311][ T4491] loop4: detected capacity change from 0 to 128
[   68.803489][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.834634][ T4495] C: renamed from team_slave_0 (while UP)
[   68.845716][ T4495] netlink: 'syz.3.350': attribute type 3 has an invalid length.
[   68.853402][ T4495] __nla_validate_parse: 6 callbacks suppressed
[   68.853476][ T4495] netlink: 140 bytes leftover after parsing attributes in process `syz.3.350'.
[   69.079999][ T4504] loop3: detected capacity change from 0 to 764
[   69.107826][ T4504] usb usb1: usbfs: process 4504 (syz.3.354) did not claim interface 4 before use
[   69.168918][ T4512] loop3: detected capacity change from 0 to 128
[   69.195525][ T4512] msdos: Unknown parameter '                    '
[   69.239525][ T4512] netlink: 8 bytes leftover after parsing attributes in process `syz.3.358'.
[   69.467721][ T4522] loop2: detected capacity change from 0 to 512
[   69.474884][ T4522] EXT4-fs: Ignoring removed mblk_io_submit option
[   69.486845][ T4522] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   69.499105][ T4522] EXT4-fs (loop2): 1 truncate cleaned up
[   69.519331][ T4522] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.540751][ T4523] lo speed is unknown, defaulting to 1000
[   69.596307][ T4528] loop4: detected capacity change from 0 to 512
[   69.626302][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.778624][ T4534] loop2: detected capacity change from 0 to 1024
[   69.798488][ T4534] EXT4-fs: Ignoring removed mblk_io_submit option
[   69.819297][ T4534] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   69.834888][ T4534] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   69.846698][ T4534] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #11: comm syz.2.365: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   69.865655][ T4534] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.365: couldn't read orphan inode 11 (err -117)
[   69.878207][ T4534] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.892342][ T4534] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.365: Invalid block bitmap block 0 in block_group 0
[   69.906887][ T4534] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.365: Failed to acquire dquot type 0
[   69.923744][ T4534] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[   69.932395][ T4534] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.365: iget: bad extra_isize 65535 (inode size 256)
[   69.977903][ T4545] loop4: detected capacity change from 0 to 164
[   70.175190][ T4549] netlink: 16 bytes leftover after parsing attributes in process `syz.4.371'.
[   70.208572][ T4557] netlink: 52 bytes leftover after parsing attributes in process `syz.1.375'.
[   70.247386][ T4557] netlink: 4 bytes leftover after parsing attributes in process `syz.1.375'.
[   70.253377][ T4558] netlink: 4 bytes leftover after parsing attributes in process `syz.1.375'.
[   70.462605][ T4565] loop3: detected capacity change from 0 to 128
[   70.518279][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.873219][ T4569] netlink: 24 bytes leftover after parsing attributes in process `syz.2.378'.
[   71.009739][   T29] kauditd_printk_skb: 207 callbacks suppressed
[   71.009756][   T29] audit: type=1326 audit(2000000019.272:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4577 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   71.054214][ T4578] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   71.054214][ T4578]    program syz.2.383 not setting count and/or reply_len properly
[   71.069090][   T29] audit: type=1326 audit(2000000019.302:1817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4577 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   71.094441][   T29] audit: type=1326 audit(2000000019.302:1818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4577 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   71.117796][   T29] audit: type=1326 audit(2000000019.302:1819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4577 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   71.141418][   T29] audit: type=1326 audit(2000000019.302:1820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4577 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   71.164798][   T29] audit: type=1326 audit(2000000019.302:1821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4577 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   71.188308][   T29] audit: type=1326 audit(2000000019.302:1822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4577 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   71.212094][   T29] audit: type=1326 audit(2000000019.302:1823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4577 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   71.235483][   T29] audit: type=1326 audit(2000000019.302:1824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4577 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   71.259235][   T29] audit: type=1326 audit(2000000019.302:1825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4577 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef224eebe9 code=0x7ffc0000
[   71.292821][ T4582] loop2: detected capacity change from 0 to 512
[   71.358600][ T4582] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   71.371565][ T4582] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.414745][ T4582] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #18: comm syz.2.384: corrupted inode contents
[   71.427520][ T4582] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #18: comm syz.2.384: mark_inode_dirty error
[   71.439545][ T4582] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #18: comm syz.2.384: corrupted inode contents
[   71.452382][ T4582] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #18: comm syz.2.384: mark_inode_dirty error
[   71.464924][ T4582] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #18: comm syz.2.384: mark inode dirty (error -117)
[   71.478581][ T4582] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   71.497636][ T4590] netlink: 'syz.3.386': attribute type 3 has an invalid length.
[   71.507208][ T4590] netlink: 'syz.3.386': attribute type 3 has an invalid length.
[   71.544044][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   71.554219][ T4592] macvtap0: refused to change device tx_queue_len
[   71.569241][ T4592] bridge0: port 3(batadv0) entered blocking state
[   71.576038][ T4592] bridge0: port 3(batadv0) entered disabled state
[   71.583245][ T4592] batadv0: entered allmulticast mode
[   71.589280][ T4592] batadv0: entered promiscuous mode
[   71.648724][ T4598] netlink: 24 bytes leftover after parsing attributes in process `syz.2.390'.
[   71.675906][ T4599] loop3: detected capacity change from 0 to 512
[   71.687627][ T4599] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   71.717133][ T4599] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.389: Failed to acquire dquot type 1
[   71.736532][ T4599] EXT4-fs (loop3): 1 truncate cleaned up
[   71.742562][ T4599] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.913553][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.931195][ T4614] loop4: detected capacity change from 0 to 512
[   71.974388][ T4614] loop4: detected capacity change from 0 to 1024
[   71.981068][ T4616] lo speed is unknown, defaulting to 1000
[   72.012026][ T4614] EXT4-fs: Ignoring removed mblk_io_submit option
[   72.028743][ T4614] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   72.055512][ T4621] loop3: detected capacity change from 0 to 2364
[   72.062105][ T4614] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   72.074876][   T52] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[   72.084324][   T52] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[   72.104263][ T4614] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #11: comm syz.4.395: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   72.196684][ T4614] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.395: couldn't read orphan inode 11 (err -117)
[   72.236238][ T4629] FAULT_INJECTION: forcing a failure.
[   72.236238][ T4629] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.249766][ T4629] CPU: 0 UID: 0 PID: 4629 Comm: syz.1.400 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   72.249811][ T4629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   72.249827][ T4629] Call Trace:
[   72.249836][ T4629]  <TASK>
[   72.249845][ T4629]  __dump_stack+0x1d/0x30
[   72.249867][ T4629]  dump_stack_lvl+0xe8/0x140
[   72.249980][ T4629]  dump_stack+0x15/0x1b
[   72.250000][ T4629]  should_fail_ex+0x265/0x280
[   72.250035][ T4629]  should_fail+0xb/0x20
[   72.250057][ T4629]  should_fail_usercopy+0x1a/0x20
[   72.250156][ T4629]  _copy_from_iter+0xd2/0xe80
[   72.250191][ T4629]  ? __build_skb_around+0x1a0/0x200
[   72.250215][ T4629]  ? __alloc_skb+0x223/0x320
[   72.250239][ T4629]  pfkey_sendmsg+0x126/0x900
[   72.250273][ T4629]  ? avc_has_perm+0xf7/0x180
[   72.250366][ T4629]  ? selinux_socket_sendmsg+0x175/0x1b0
[   72.250418][ T4629]  ? __pfx_pfkey_sendmsg+0x10/0x10
[   72.250484][ T4629]  __sock_sendmsg+0x142/0x180
[   72.250518][ T4629]  ____sys_sendmsg+0x31e/0x4e0
[   72.250588][ T4629]  ___sys_sendmsg+0x17b/0x1d0
[   72.250634][ T4629]  __x64_sys_sendmsg+0xd4/0x160
[   72.250734][ T4629]  x64_sys_call+0x191e/0x2ff0
[   72.250762][ T4629]  do_syscall_64+0xd2/0x200
[   72.250829][ T4629]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   72.250861][ T4629]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   72.250903][ T4629]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.250978][ T4629] RIP: 0033:0x7f4afb4debe9
[   72.250997][ T4629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.251020][ T4629] RSP: 002b:00007f4af9f3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   72.251044][ T4629] RAX: ffffffffffffffda RBX: 00007f4afb715fa0 RCX: 00007f4afb4debe9
[   72.251060][ T4629] RDX: 0000000000000010 RSI: 0000200000000040 RDI: 0000000000000005
[   72.251075][ T4629] RBP: 00007f4af9f3f090 R08: 0000000000000000 R09: 0000000000000000
[   72.251091][ T4629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.251111][ T4629] R13: 00007f4afb716038 R14: 00007f4afb715fa0 R15: 00007ffecc18a048
[   72.251165][ T4629]  </TASK>
[   72.463662][ T4614] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.478985][ T4614] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.395: Invalid block bitmap block 0 in block_group 0
[   72.493371][ T4614] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.395: Failed to acquire dquot type 0
[   72.512291][ T4614] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   72.521359][ T4614] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.395: iget: bad extra_isize 65535 (inode size 256)
[   72.617345][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.667578][ T4641] netlink: 24 bytes leftover after parsing attributes in process `syz.4.401'.
[   72.833005][ T4650] netlink: 'syz.4.404': attribute type 1 has an invalid length.
[   72.857798][ T4650] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.872353][ T4654] netlink: 'syz.3.406': attribute type 1 has an invalid length.
[   72.889105][ T4650] bond0: (slave gretap1): making interface the new active one
[   72.897557][ T4650] bond0: (slave gretap1): Enslaving as an active interface with an up link
[   72.915272][ T4654] 8021q: adding VLAN 0 to HW filter on device bond1
[   72.943506][ T4654] bond1: (slave gretap1): making interface the new active one
[   72.963239][ T4654] bond1: (slave gretap1): Enslaving as an active interface with an up link
[   72.981903][ T4660] loop4: detected capacity change from 0 to 1024
[   72.995370][ T4660] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   73.007063][ T4660] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   73.015599][ T4660] EXT4-fs (loop4): orphan cleanup on readonly fs
[   73.022368][ T4660] EXT4-fs warning (device loop4): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[   73.036909][ T4660] EXT4-fs (loop4): Cannot turn on quotas: error -5
[   73.037075][ T4663] loop3: detected capacity change from 0 to 2364
[   73.061434][ T4660] EXT4-fs (loop4): 1 truncate cleaned up
[   73.068308][ T4660] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   73.124899][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.176033][ T4672] loop9: detected capacity change from 0 to 7
[   73.183031][ T4672] Buffer I/O error on dev loop9, logical block 0, async page read
[   73.205116][ T4672] Buffer I/O error on dev loop9, logical block 0, async page read
[   73.213028][ T4672]  loop9: unable to read partition table
[   73.239297][ T4672] loop_reread_partitions: partition scan of loop9 (■швлx№Я╤°ащ┌мз╜dGд┤рЦГ▌бпаЭт╖√
[   73.239297][ T4672] 
) failed (rc=-5)
[   73.253965][ T3300] Buffer I/O error on dev loop9, logical block 0, async page read
[   73.262029][ T3300] Buffer I/O error on dev loop9, logical block 0, async page read
[   73.281986][ T3300] Buffer I/O error on dev loop9, logical block 0, async page read
[   73.290477][ T3300] Buffer I/O error on dev loop9, logical block 0, async page read
[   73.300429][ T3300] Buffer I/O error on dev loop9, logical block 0, async page read
[   73.316751][ T4678] netlink: 12 bytes leftover after parsing attributes in process `syz.2.414'.
[   73.346570][ T4678] lo speed is unknown, defaulting to 1000
[   73.793028][ T4701] program syz.0.422 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   73.804327][ T4696] loop2: detected capacity change from 0 to 2364
[   73.921477][ T4707] __nla_validate_parse: 4 callbacks suppressed
[   73.921495][ T4707] netlink: 196 bytes leftover after parsing attributes in process `syz.0.424'.
[   73.949904][ T4707] cgroup: Unknown subsys name 'uid'
[   74.039903][ T4716] netlink: 'syz.3.427': attribute type 3 has an invalid length.
[   74.058708][ T4716] netlink: 'syz.3.427': attribute type 3 has an invalid length.
[   74.137987][ T4720] loop2: detected capacity change from 0 to 512
[   74.150659][ T4720] loop2: detected capacity change from 0 to 1024
[   74.164328][ T4720] EXT4-fs: Ignoring removed mblk_io_submit option
[   74.290609][ T4730] loop4: detected capacity change from 0 to 2364
[   74.339951][ T4720] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   74.395207][ T4736] loop4: detected capacity change from 0 to 128
[   74.404845][ T4720] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   74.451149][ T4720] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #11: comm syz.2.429: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   74.477291][ T4720] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.429: couldn't read orphan inode 11 (err -117)
[   74.523151][ T4720] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.543388][ T4720] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.429: Invalid block bitmap block 0 in block_group 0
[   74.577013][ T4720] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.429: Failed to acquire dquot type 0
[   74.613804][ T4725] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[   74.636109][ T4720] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.429: iget: bad extra_isize 65535 (inode size 256)
[   74.717704][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.843573][ T4779] loop2: detected capacity change from 0 to 2364
[   74.899145][ T4781] lo speed is unknown, defaulting to 1000
[   74.989603][ T4790] loop3: detected capacity change from 0 to 512
[   74.996785][ T4790] EXT4-fs: Ignoring removed mblk_io_submit option
[   75.004916][ T4790] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   75.020640][ T4790] EXT4-fs (loop3): 1 truncate cleaned up
[   75.027545][ T4790] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.195679][ T4803] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.269384][ T4803] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.350025][ T4803] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.423660][ T4812] Illegal XDP return value 4294967274 on prog  (id 382) dev N/A, expect packet loss!
[   75.457242][ T4803] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.497855][ T4814] tmpfs: Bad value for 'mpol'
[   75.523751][   T12] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.544514][   T12] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.552999][   T12] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.561987][   T12] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.690146][ T4797] ==================================================================
[   75.698395][ T4797] BUG: KCSAN: data-race in page_cache_sync_ra / page_cache_sync_ra
[   75.706362][ T4797] 
[   75.708715][ T4797] write to 0xffff88811ccee750 of 8 bytes by task 4790 on cpu 0:
[   75.716402][ T4797]  page_cache_sync_ra+0x434/0x6c0
[   75.721463][ T4797]  filemap_get_pages+0x2d0/0x1150
[   75.726526][ T4797]  filemap_splice_read+0x3a9/0x740
[   75.731677][ T4797]  ext4_file_splice_read+0x8f/0xb0
[   75.736839][ T4797]  splice_direct_to_actor+0x26c/0x680
[   75.742347][ T4797]  do_splice_direct+0xda/0x150
[   75.747161][ T4797]  do_sendfile+0x380/0x650
[   75.751618][ T4797]  __x64_sys_sendfile64+0x105/0x150
[   75.756863][ T4797]  x64_sys_call+0x2bb0/0x2ff0
[   75.761615][ T4797]  do_syscall_64+0xd2/0x200
[   75.766162][ T4797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.772095][ T4797] 
[   75.774446][ T4797] write to 0xffff88811ccee750 of 8 bytes by task 4797 on cpu 1:
[   75.782146][ T4797]  page_cache_sync_ra+0x434/0x6c0
[   75.787476][ T4797]  filemap_get_pages+0x2d0/0x1150
[   75.792568][ T4797]  filemap_splice_read+0x3a9/0x740
[   75.797723][ T4797]  ext4_file_splice_read+0x8f/0xb0
[   75.802879][ T4797]  splice_direct_to_actor+0x26c/0x680
[   75.808288][ T4797]  do_splice_direct+0xda/0x150
[   75.813096][ T4797]  do_sendfile+0x380/0x650
[   75.817563][ T4797]  __x64_sys_sendfile64+0x105/0x150
[   75.822813][ T4797]  x64_sys_call+0x2bb0/0x2ff0
[   75.827526][ T4797]  do_syscall_64+0xd2/0x200
[   75.832086][ T4797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.838045][ T4797] 
[   75.840401][ T4797] value changed: 0x000000000000001c -> 0x000000000000001d
[   75.847524][ T4797] 
[   75.849875][ T4797] Reported by Kernel Concurrency Sanitizer on:
[   75.856037][ T4797] CPU: 1 UID: 0 PID: 4797 Comm: syz.3.448 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   75.865698][ T4797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   75.875780][ T4797] ==================================================================
[   75.898364][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.