last executing test programs:

55.176762324s ago: executing program 0 (id=42):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x18, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000002c0)={<r1=>0x0}, 0x0)
capget(&(0x7f0000000340)={0x20071026, r1}, &(0x7f0000000380)={0x7fffffff, 0x3, 0x3, 0x9, 0x3, 0x7})
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000000000005000000000000000018110000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r2 = socket$isdn_base(0x22, 0x3, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000100)='kfree\x00', r3}, 0x18)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r4, 0x0)
ftruncate(r4, 0xc17a)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000673000/0x1000)=nil, 0x1000, 0x3, &(0x7f00000009c0)=0x7, 0x3, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0xfea9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x6)
accept(r2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
symlinkat(0x0, 0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00')
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000003c0)='kmem_cache_free\x00', r6, 0x0, 0x4}, 0x18)

55.062452276s ago: executing program 0 (id=43):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
eventfd2(0x76, 0x1)
socket$inet(0x2, 0x1, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x100b28, 0x1, 0x0, 0x1, 0xa, 0x21005, 0x9, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$kcm(0x2b, 0x1, 0x0)
close(r1)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="01000077009561433e0000000000ac0000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000a40), 0x1, 0x55e, &(0x7f0000000a80)="$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")
r5 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201)
pwritev2(r5, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x6a000}], 0x1, 0x7000, 0x0, 0x3)
listen(r2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x3, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000100018010000696c6c2500000000002020207b1af8ff00000000bf"], 0x0, 0x4, 0x0, 0x0, 0x41000, 0x21, '\x00', 0x0, 0x0, r5, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6ff}, 0x94)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r6 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x7, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0xffff}}}, 0x24}}, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)='8', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x4000845)
io_uring_enter(r6, 0x2219, 0x7721, 0x16, 0x0, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)=ANY=[@ANYRES32=r8, @ANYRES32=r7, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r8, &(0x7f0000000240), &(0x7f0000000140)=@tcp6=r2}, 0x20)
sendmmsg$inet6(r2, &(0x7f0000008c00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1}}], 0x1, 0x20004810)
close(r1)

54.35994953s ago: executing program 0 (id=45):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ptrace(0x10, 0x0)
ptrace$ARCH_GET_GS(0x1e, 0x0, &(0x7f0000000200), 0x1004)
r3 = epoll_create(0xc4)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r1, &(0x7f0000000240)={r3, r0, 0x9})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r2, 0x0, 0xfffffffffffffffe}, 0x18)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x3, 0x0, 0x3, 0x10, 0x0, 0x70bd2c, 0x25dfdbfc, [@sadb_key={0x2, 0x9, 0x18, 0x0, "1cdc0d"}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x2}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x7}}]}, 0x80}, 0x1, 0x7}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x800, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x2008, 0x6}, 0x0, 0x10000, 0x0, 0x1, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x7fffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x0, 0x400)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r5, &(0x7f0000007fc0), 0x800001d, 0x0)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r6, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000280)={0x2, &(0x7f0000000180)=[{0x61}, {0x16, 0x0, 0xfc, 0x9}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r7, 0x0, 0x100000000}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdir(0x0, 0x49)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

53.114077703s ago: executing program 0 (id=56):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000a0db000000000000000000850000000e000000c50000002a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='netlink_extack\x00', r1}, 0x10)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$netlink(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="180000005a000d03000000000000000004100080040005"], 0x18}], 0x1}, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000000)='./bus\x00', 0x2000410, &(0x7f0000000380)=ANY=[], 0x1, 0x2b4, &(0x7f00000000c0)="$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")
r2 = syz_open_dev$loop(&(0x7f0000000000), 0x2, 0x80800)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x7, 0x3, &(0x7f0000001780))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
ptrace$poke(0x4, r4, &(0x7f0000000080), 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f00000002c0)={r3, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})
socket$nl_netfilter(0x10, 0x3, 0xc)

52.80786413s ago: executing program 0 (id=58):
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000340)=ANY=[], 0x0, 0x1200)

52.424495387s ago: executing program 0 (id=61):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r0, &(0x7f0000000d00)={@val={0x0, 0x86dd}, @val={0x2, 0x3, 0x5, 0x9, 0xa, 0x40}, @mpls={[], @ipv4=@igmp={{0x5, 0x4, 0x3, 0x10, 0x1c, 0x67, 0x0, 0x4, 0x2, 0x0, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x64, 0x5, 0x0, @private=0xa010101}}}}, 0x2a)

52.378544618s ago: executing program 32 (id=61):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r0, &(0x7f0000000d00)={@val={0x0, 0x86dd}, @val={0x2, 0x3, 0x5, 0x9, 0xa, 0x40}, @mpls={[], @ipv4=@igmp={{0x5, 0x4, 0x3, 0x10, 0x1c, 0x67, 0x0, 0x4, 0x2, 0x0, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x64, 0x5, 0x0, @private=0xa010101}}}}, 0x2a)

14.466492677s ago: executing program 2 (id=545):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="fde1479eebc315c0e04920a1b0f85ac31edd340ad215b3f4b3de8ef246f41f1af2960011a19ee2d06951fd51b5fbf1ef921db0b8e4958ff77fa9c2a552a38219acce", 0x42}, {&(0x7f00000000c0)="5b58a5c73f9ea2ab3874ed1b423a3e4336a65797e9deb219dae4cc9c4321c361c8b9e8db2c4721527813ee719ba411991627b1fa3d0476f9d8c1225d7a39ab6d5da489b7402430e3b27718743bc2c79ba39f633b90ccf2b8e3ce9fad064b9ac126f1106288567b0e7e0d271a398a066c1a1182d151de0dc9d71f63", 0x7b}, {&(0x7f0000000200)="0b94eb87744aff591aa80ace49c2fae27642a0d2822dd34004c94d42ec632c3c5fe9c5f0090559b30923b24f60e369a5937b07372268d873c5671484507802205e37bedaf714d4e001383100348884a32ae99543d71c11ffeab0792068136d407c68fae532930b589a310c3d7caebdce11fc6355aef21ca3a8d79632ab8a2e007f2eaf3db7877845ac6ae8c2054f1ece118cfc66fa76ba46ec65c65574f90067f1cb15467dcca5a1c7e6119220e21857ff6b1eb48e820133f49fa06e41a8", 0xbe}, {&(0x7f00000002c0)="72528d058b477789b44f62565ca47a58b30323338eef1b749920f1c1b8bec75229948af62edd2403d5b1813055f5b5ed29097c28606c9c445b49b0c25859f0b724cb7313a83a4bcc56f12065c26cd78301fb80c26c3b076d4913f94e8fa3d710456984ae842efbfa41e3ab72b808c103f2d53c6595fa9fb1701b0b96baae6ee9c9ed72080f485cd632dcc2d6dee811a2b4aacaa256829b0df3dc94e5ea17abb125b100bbc311865de3c115c1882997f92b81474a6ff04d407779746b2be88702a31ad3fd7fffeda1422262993f112353d5da5e092640dc3fc9762bbfe697bdb9d5a1bd4744975cf7e5bf8a73512e0a39067e", 0xf2}], 0x4, 0x0, 0x0, 0x4a0f0000}, 0x1000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000380), r1)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000fbdbdf25004e230025a7b8998fe4f5d7400008080800e000000205000200dc598968"], 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x20040000)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, &(0x7f0000000600)=[{}, {}, {}], &(0x7f0000000640)=0x18)
chdir(&(0x7f0000000480)='./cgroup\x00')
r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="08000000020001009a"], 0x0)
r5 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000900)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
unshare(0x6a040000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000580)='kfree\x00', r7}, 0x18)
unshare(0x64000600)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB, @ANYRES32=r8, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r9}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000146000/0x1000)=nil, 0x1000, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)
write$selinux_access(r5, &(0x7f0000000b00)=ANY=[@ANYBLOB="73797374656d5f753a6f62947577eefd258c75ea897556a06a6563745f723a6770675f6167656e745f657865635f743a73302075"], 0x46)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c40)={&(0x7f0000000640)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000005000000030000000000000f040000000000305f006b12b2aaa5e7dfee2478e395143d87acad6def2eafaa33c73844b31a9a1e58567cb5a58f001c085795b531c490ee6c5df7b94c03be59206d"], 0x0, 0x29, 0x0, 0x1}, 0x28)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYRESOCT=r6], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
mount(&(0x7f0000000000)=@filename='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='nfs4\x00', 0x14050, &(0x7f00000001c0)='$\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r10}, 0x10)
openat$cgroup_ro(r4, &(0x7f0000002180)='blkio.bfq.sectors\x00', 0x275a, 0x0)

14.027529086s ago: executing program 2 (id=553):
getpid()
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0x4, &(0x7f0000000180)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x41100, 0xbb, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x81}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, &(0x7f0000002e00), &(0x7f0000000000), 0x8, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={0xffffffffffffffff, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x8, 0x0, 0x0}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x1, 0x28}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
r6 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r6}, 0x38)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd29, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8081}, 0x20000010)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r4}, 0x10)
syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000010900010073797a300000000054000000060a010400000000000000000100000008000b40000000000900010073797a30000000002c0004802800018008000100666962001c00028008000140000000110800034000000005080002400000000114000000110001"], 0xdc}}, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
ftruncate(0xffffffffffffffff, 0xc17a)
syz_emit_ethernet(0x36, &(0x7f0000000680)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa1b4800452468000000069078ac1414bbac1414aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5404000290780000"], 0x0)

13.992901547s ago: executing program 2 (id=554):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xe}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYRES64], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_TIMERSLACK(0x1d, 0x8001)
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_WANTACK(r3, 0x0, 0x0, &(0x7f00000001c0)=0x1, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000900)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000090900010073797a300000080080000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000003f3c001280140001800c000100636f756e7465720004000280100001800c000100636f756e74657200140001801c000100636f756e746572000400028008000340000001"], 0xc8}, 0x1, 0x0, 0x0, 0x8000}, 0x20050800)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$gtp(&(0x7f00000000c0), 0xffffffffffffffff)
r8 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'veth0_to_bridge\x00', <r9=>0x0})
sendmsg$GTP_CMD_NEWPDP(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)={0x38, r7, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@GTPA_LINK={0x8, 0x1, r9}, @GTPA_TID={0xc, 0x3, 0x3}, @GTPA_VERSION={0x8}, @GTPA_FLOW={0x6, 0x6, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000)
getsockopt$sock_buf(r0, 0x1, 0x1f, 0x0, &(0x7f0000001040))

13.918500538s ago: executing program 2 (id=557):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x221)

13.788061981s ago: executing program 2 (id=560):
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000004c0)=""/4091, 0xffb}], 0x1}}], 0x1, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

13.679112893s ago: executing program 2 (id=563):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r0, 0x2000012, 0x0, 0x0, &(0x7f0000000c40), 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_LINK_CREATE(0x8, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
socket$inet6_sctp(0xa, 0x5, 0x84)
clock_gettime(0x4, 0x0)

13.510331636s ago: executing program 33 (id=563):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r0, 0x2000012, 0x0, 0x0, &(0x7f0000000c40), 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_LINK_CREATE(0x8, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
socket$inet6_sctp(0xa, 0x5, 0x84)
clock_gettime(0x4, 0x0)

7.952675784s ago: executing program 6 (id=599):
r0 = socket$igmp6(0xa, 0x3, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000007c80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000007cc0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_PMKSA(r1, &(0x7f0000007dc0)={0x0, 0x0, &(0x7f0000007d80)={&(0x7f0000000580)=ANY=[@ANYBLOB='U\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd7000fcdbdf253400000008000300", @ANYRES32=r3, @ANYBLOB="140055000fe4a3c6a6f185f3f48f262c02bc23100a0034"], 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x0)

7.740726058s ago: executing program 6 (id=604):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000002140)='dctcp\x00', 0x6)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @loopback}, 0x7}, 0x1c)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1d4e, 0x103)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0xd1, @ipv4={'\x00', '\xff\xff', @loopback}, 0x104}, 0x1c)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001940)={0x4c, 0x14, 0x905, 0x50bd25, 0x25dfdbfc, {0xa, 0x6, 0xff, 0x0, {0x4e26, 0x4e23, [0x224e, 0x7, 0x6, 0x5], [0xfffffffe, 0x1, 0x4], 0x0, [0x7fffffff, 0xfffffffc]}, 0x8, 0xfffffffd}}, 0x4c}}, 0x4814)

7.623863641s ago: executing program 6 (id=607):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001740)=@newtaction={0x18, 0x30, 0x800, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20048095}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
setresgid(0xffffffffffffffff, 0xee00, 0xffffffffffffffff)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)
write(0xffffffffffffffff, &(0x7f0000000000)="14000000140005b7ffccca38b900000001", 0x11)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="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", @ANYRES32], 0x50)
socket$inet(0x2, 0x2, 0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x4}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e21, @empty}], 0x10)
sendmsg$inet_sctp(r3, &(0x7f0000000140)={&(0x7f0000000340)=@in={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000002c0)=[{&(0x7f0000000000)='N', 0x1}], 0x1, 0x0, 0x0, 0xc04c000}, 0x0)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(0xffffffffffffffff, 0x80083314, 0x0)

7.111697771s ago: executing program 5 (id=612):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1daa000000000000711010000000000095"], &(0x7f0000000480)='syzkaller\x00'}, 0x94)

7.072567792s ago: executing program 5 (id=613):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xf, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000780)=@newtfilter={0x60, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {0xfff3, 0x7}, {}, {0xa, 0x1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x30, 0x2, [@TCA_CGROUP_EMATCHES={0x2c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8f6}}, @TCA_EMATCH_TREE_LIST={0x20, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{0x10e, 0x2, 0x8001}, {0x3, 0x0, 0x2}}}, @TCF_EM_CONTAINER={0xc, 0x2, 0x0, 0x0, {{0x48e7, 0x0, 0xe3e3}}}]}]}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x80}, 0x40010)

7.005115113s ago: executing program 5 (id=614):
mknod(0x0, 0x8001420, 0x0)
open$dir(0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x80042, 0x0)
request_key(0x0, 0x0, 0x0, 0x0)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1}, 0x6e)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r1, &(0x7f0000000000)=@file={0x1}, 0x6e)
setsockopt$sock_timeval(r1, 0x1, 0x43, &(0x7f0000000100)={0x0, 0xea60}, 0x10)
connect$unix(r1, &(0x7f0000000080)=@file={0x1}, 0x6e)
open$dir(0x0, 0x1, 0x19d)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ftruncate(r2, 0x2000009)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

6.871959416s ago: executing program 5 (id=615):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x221)

6.869582095s ago: executing program 5 (id=616):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in={0x2, 0x4e21, @loopback}], 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000000)="fd", 0x1}], 0x1, 0x0, 0x0, 0x804c044}, 0x881)
r1 = dup(r0)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x0, 0x20}, 0xc)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r1, &(0x7f0000000180)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x4}}, 0x29fdf)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1600000004"], 0x50)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r1, &(0x7f00000000c0)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x5}}, 0xfd87)

6.6207885s ago: executing program 5 (id=618):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x80008, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x8000000004)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
socket$netlink(0x10, 0x3, 0x8000000004)
writev(r5, &(0x7f0000000180)=[{&(0x7f0000000700)="580000001400add427323b472545b45602117fffffff81000e220e2280007f000001e801000500000000003ac7100003ffffffffd3daffffffffffe7ee000000deff000000ddbd57cff2ffe293a2afebd998c88d5d6b3710", 0x58}], 0x1)

6.562999062s ago: executing program 34 (id=618):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x80008, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x8000000004)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
socket$netlink(0x10, 0x3, 0x8000000004)
writev(r5, &(0x7f0000000180)=[{&(0x7f0000000700)="580000001400add427323b472545b45602117fffffff81000e220e2280007f000001e801000500000000003ac7100003ffffffffd3daffffffffffe7ee000000deff000000ddbd57cff2ffe293a2afebd998c88d5d6b3710", 0x58}], 0x1)

6.151896639s ago: executing program 1 (id=621):
socket$inet_udp(0x2, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000000c0)='./file2\x00', 0x88, &(0x7f00000001c0)={[], [{@fsuuid={'fsuuid', 0x3d, {[0x64, 0xb, 0x36, 0x66, 0x65, 0x66, 0x34b61ac358e0f40a, 0x63], 0x2d, [0x31, 0x35, 0x35, 0x62], 0x2d, [0x39, 0x55, 0x39, 0x61], 0x2d, [0x32, 0x63, 0xc, 0x69], 0x2d, [0x35, 0x30, 0x33, 0x33, 0x66, 0x35, 0x33, 0x38]}}}]}, 0x3, 0x448, &(0x7f0000000580)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6a)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)

5.161686409s ago: executing program 1 (id=624):
syz_mount_image$msdos(&(0x7f00000011c0), &(0x7f0000001200)='./file0\x00', 0x2808480, &(0x7f0000000380)={[{@dots}, {@fat=@dos1xfloppy}, {@fat=@check_strict}, {@fat=@quiet}], [{@fowner_gt}, {@obj_type={'obj_type', 0x3d, 'msdos\x00'}}, {@euid_eq}, {@appraise_type}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@pcr={'pcr', 0x3d, 0x11}}, {@hash}, {@smackfsroot={'smackfsroot', 0x3d, 'quiet'}}, {@uid_gt}, {@uid_gt}, {@appraise_type}, {@obj_role={'obj_role', 0x3d, '*\xb1\xed\xb0\xecs7/\x91\xdf\xac\xa5Ji\bY\xa1r)$\xdb\x1e\n\x8aj\xc4LC\x9c\xfb C\nZ(\xb8\xa6\x9e\xb74\xb1\xc8\x1aK\xd3}sw>8\xa7!e\xfd\xe8\xcc\xbbKn\xd3\xe92\xbc\x95\xdc\x1c?\x10\xcc\xea\fY\xe0\xcd\xb6~\xa0\r\xb0[\xccl\x8cB\x97\x99\xd4\xb5\x8a\xc4\xc26\xc4,M\xb6\xba\xad\xc0?\b\xbdzx\r\x86\x00jN\x8a\x16\xc2\x90\xc3J\x8br\x92\x05\xedBw\xbdq\xf8\x94\xa0\xfe\x9fL\x8eI[\"\b\x1d\xea\x9b\xf5>DD{\tP\x14\xbd\"\xe6#%`FvB\xfa\xa2\xd8\xb4.M\x80)\xca\xa6:\xbdj\x8f\xcex\xb6\x10N\xf5\xa7\x9e\xabz\x8d\xf6\x0f\x18B\x10\xbf9\x92\xbc99\x17\xb6\xe8[}+\xecG\xdb\x9c!'}}]}, 0x1, 0x11e9, &(0x7f0000002440)="$eJzs3E+LG2UcB/Df2tbdpu52/VdtLz7oRS+D7cGDeHCRLUgDStsVWkGYZWc1JCZLJodEPLRXL/pCPHoT1Dew78LbIoheFMSRZNKtrXWRPUxk+/lAmCfzTZjfPJk88IQ8c/DWV592d8tsdxgRS0uxErUUT8Q9d+K179/89Ysbt25f22i3N6+ndHXj5uU3UkprL3334edfv/zD6NwH36x9uxz76x8d/Hzlx/0L+xcP/rz5SadMnTL1B6OUp+3BYJRv94q00ym7WUrv94q8LFKnXxbDOp8eqlek3d5gb2+S8v7OamtvWJRlyvuT1C0maTRIo+Ek5R/nnX7KsiyttoLjujvfVtX0cSaejKqqqrPRinPxVKzGWpyP9Xg6noln47l4Pi7EC/FiXJy9asGlAwAAAAAAAAAAAAAAAAAAwAnzW/Xw+v/zs/X/9+4OcPT6/98XVzgAAAAAAAAAAAAAAAAAAACcIDdu3b620W5vXk9pJeKnO+Ot8Va9rfOr77Y3X/+jqh2+65fxeOvUYX451eKBfDla8/zKI/OVePWVOp9m77zXfii/FDsR8eWpBjoBAAAATrgsHVq/v/f+/D7L/i2vW7PfBx45vz8dl043dhocUzn5rJufmT/Je71iONvzuDZietX/M9qOiAUWtrTQblmeXx2L/3TmjbvNH/TBL83/oROaO+W3mxuNaNrfhr6jnW2oIAAAAAAAAAAAAP6TRv5UCwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB/sQMHAgAAAACC/K0n2KAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAARgEAAP//nrdqhw==")

4.780026566s ago: executing program 6 (id=626):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x221)

4.671706978s ago: executing program 1 (id=627):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000480)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r1, 0x0, {0x1, 0x1, 0x4}, 0x1}, 0x18)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)="1bc387f31bf6681b5b", 0x9}], 0x1}, 0x48005)
readv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/20, 0x14}], 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r2, 0x0)

4.640719439s ago: executing program 6 (id=628):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = syz_usbip_server_init(0x4)
syz_usb_connect(0x1, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="120100001ddf8208c00712152230000000010902"], 0x0)
write$usbip_server(r3, &(0x7f0000000040)=@ret_submit={{0x3, 0x1, 0x0, 0x1, 0x8}, 0xfff, 0x0, 0x34, 0x3, 0x1, 0x0, "", [{0x2, 0x5, 0x2, 0x5961}, {0x1, 0x7fffffff, 0x7, 0x8}, {0x6, 0x8, 0x1, 0x7fffffff}]}, 0x60)
syz_emit_ethernet(0xfdef, &(0x7f0000000000)={@broadcast, @dev, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @local, @empty, @empty, @local}}}}, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r7=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000100)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001e0000000c00018008000100", @ANYRES32=r7, @ANYBLOB="0500"], 0x28}}, 0x80)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
socket$netlink(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)

4.08185001s ago: executing program 4 (id=635):
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000001100), 0x1, 0x793, &(0x7f0000001600)="$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")
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x28)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0xc0185879, &(0x7f0000000680)={0x4, 0x6000000966a, 0x8001, 0x4, 0x1000, 0x2, 0x2401})

3.937854133s ago: executing program 4 (id=636):
r0 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
read(r0, &(0x7f0000000140)=""/135, 0x87)

3.733877957s ago: executing program 1 (id=637):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x221)

3.722293247s ago: executing program 1 (id=638):
ioperm(0x2, 0x7, 0x5)
ioperm(0xc, 0x6, 0x6)

3.622069149s ago: executing program 1 (id=639):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
uname(0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$inet_opts(r3, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000740)='bridge0\x00', 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000b00)=ANY=[@ANYBLOB='8\x00\x00\x00'], 0x38}}, 0x4)
r4 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
write$char_usb(r4, &(0x7f0000000040)="e2", 0x2250)
connect$inet(r3, &(0x7f0000000140)={0x2, 0xc000, @multicast1}, 0x10)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000000c0), 0x4)

3.547065641s ago: executing program 35 (id=639):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
uname(0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$inet_opts(r3, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000740)='bridge0\x00', 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000b00)=ANY=[@ANYBLOB='8\x00\x00\x00'], 0x38}}, 0x4)
r4 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
write$char_usb(r4, &(0x7f0000000040)="e2", 0x2250)
connect$inet(r3, &(0x7f0000000140)={0x2, 0xc000, @multicast1}, 0x10)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000000c0), 0x4)

2.884331103s ago: executing program 3 (id=647):
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x2)
capset(&(0x7f0000000ac0)={0x19980330}, &(0x7f0000000180)={0x0, 0x10000, 0xc898, 0x0, 0x0, 0x2})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)

2.783923666s ago: executing program 3 (id=648):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x2d}, 0x4e20, 0x3, 'wrr\x00', 0x1, 0x2, 0x6e}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r5, 0x0, 0x487, 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
sendmsg$rds(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x2, 0x0, @local}, 0x10, 0x0, 0x0, &(0x7f0000000400)=[@mask_cswp={0x58, 0x114, 0x9, {{0xe, 0x7}, &(0x7f0000000140)=0x6, 0x0, 0x6, 0x2, 0x7ff, 0x4, 0x22, 0xfffffffffffffffa}}], 0x58, 0x8004}, 0x0)

2.520345811s ago: executing program 4 (id=649):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
r3 = memfd_create(&(0x7f0000000280)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x3)
fcntl$addseals(r3, 0x409, 0x7)
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000140)}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f00000000c0)='./bus\x00')
chdir(0x0)
mkdir(0x0, 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x80, 0x141)
getdents64(r6, &(0x7f0000000f80)=""/4096, 0x1000)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, 0x0, 0x0)

1.872777893s ago: executing program 3 (id=650):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f00000004c0)='W', 0x1, 0x4, &(0x7f0000000100)={0xa, 0x0, 0xfff, @loopback, 0x8}, 0x1c)
setsockopt$inet6_int(r0, 0x84, 0x4, 0x0, 0x0)

1.698443306s ago: executing program 7 (id=653):
socket$inet6_udplite(0xa, 0x2, 0x88)
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0xffffff6a)
sendfile(r0, r1, 0x0, 0xffffffff000)
recvmmsg(r0, &(0x7f0000000640)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000b00)=""/225, 0xe1}], 0x1}, 0xffffffff}], 0x1, 0x40000033, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f00000001c0)=0x40000000000003)

1.549959299s ago: executing program 4 (id=654):
r0 = socket(0x200000000000011, 0x2, 0xd)
bind$packet(r0, 0x0, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r4=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x50, r2, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0xffffffff}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0x2000000}}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xfe}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x50}, 0x4, 0x700000000000000}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r5)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r8=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="4d7e2abd7000000000002a00000008002f000000000005003600000000000c0005000000000000000000050037000000000008000200", @ANYRES32=r8, @ANYBLOB="0600060002"], 0x50}, 0x4, 0x700000000000000}, 0x0)

1.333159624s ago: executing program 4 (id=655):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8000}, 0x8)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$bt_hci(r3, 0x84, 0x7f, &(0x7f0000000080)=""/4057, &(0x7f0000001180)=0xfd9)

1.184058007s ago: executing program 6 (id=656):
syz_emit_ethernet(0x3a, &(0x7f0000000080)=ANY=[], 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r1, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
io_uring_enter(0xffffffffffffffff, 0xa3d, 0x0, 0x0, 0x0, 0xff39)
shutdown(r1, 0x1)

1.183898997s ago: executing program 36 (id=656):
syz_emit_ethernet(0x3a, &(0x7f0000000080)=ANY=[], 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r1, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
io_uring_enter(0xffffffffffffffff, 0xa3d, 0x0, 0x0, 0x0, 0xff39)
shutdown(r1, 0x1)

936.196131ms ago: executing program 3 (id=657):
r0 = gettid()
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
readv(r1, &(0x7f0000001140)=[{&(0x7f0000000700)=""/206, 0xce}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000)

443.214631ms ago: executing program 4 (id=658):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000180)={0x0, 0x2, 0x8, 0x7100000})
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r1, 0x0)
setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000080)={0x4, 0xfc}, 0x2)

429.851161ms ago: executing program 7 (id=659):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
lseek(0xffffffffffffffff, 0x289e0cb5, 0x0)

395.047372ms ago: executing program 3 (id=660):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000006c0015000000d9fece23b82000000000", @ANYRES32=r1, @ANYBLOB="000080000000000018003480050035"], 0x38}, 0x1, 0x300}, 0x0)

220.017675ms ago: executing program 7 (id=661):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000004c0)='dctcp\x00', 0x6)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000280)="32780f6439832375", 0x8, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0xffff, @loopback, 0x3}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='bbr\x00', 0x4)
shutdown(r0, 0x1)

219.819315ms ago: executing program 7 (id=662):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @loopback}, 0x7}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[], 0x56c}, 0x1, 0x0, 0x0, 0x40000}, 0x8051)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), r1)
ppoll(&(0x7f0000000540)=[{r1}], 0x1, &(0x7f0000000580), 0x0, 0x0)

188.022906ms ago: executing program 7 (id=663):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r1, <r2=>0xffffffffffffffff}, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001340)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4c0000001800010d00000000000000850a000000000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32=r0, @ANYRES16=r2], 0x4c}}, 0x40000)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0xfc)

163.003906ms ago: executing program 7 (id=664):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@nobarrier}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f00000001c0)="f14a18", 0x3)
sendfile(r2, r0, 0x0, 0x40001)
sendfile(r2, r1, 0x0, 0x7ffff000)

0s ago: executing program 3 (id=666):
umount2(0x0, 0x4)
umount2(0x0, 0x4)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r0, 0x541c, 0x0)
ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000040)={0x7f1, 0x84, 0xefcc, 0xc, 0x5, "f06fca79266e6c5e443b04683cc267a000", 0x5, 0x2})
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000000))
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x200, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)

kernel console output (not intermixed with test programs):

 loop2): ext4_validate_block_bitmap:441: comm syz.2.96: bg 0: block 40: padding at end of block bitmap is not set
[   63.378735][ T3712] batman_adv: batadv0: Interface activated: batadv_slave_0
[   63.412595][ T3712] batman_adv: batadv0: Interface activated: batadv_slave_1
[   63.439087][ T3833] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   63.459364][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.459600][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.459804][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.459849][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.461535][ T3833] EXT4-fs (loop2): 1 truncate cleaned up
[   63.462004][ T3833] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   63.465020][ T3833] EXT4-fs (loop2): shut down requested (1)
[   63.465350][ T3833] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=16
[   63.465380][ T3833] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=16
[   63.516028][ T3844] netlink: 'syz.4.98': attribute type 30 has an invalid length.
[   63.611732][ T3852] loop5: detected capacity change from 0 to 256
[   63.617455][ T3849] loop3: detected capacity change from 0 to 1024
[   63.620251][ T3849] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   63.648474][ T3849] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #11: comm syz.3.101: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   63.648841][ T3849] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.101: couldn't read orphan inode 11 (err -117)
[   63.649852][ T3849] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.651224][ T3849] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.101: bg 0: block 10: padding at end of block bitmap is not set
[   63.741780][ T3852] lo speed is unknown, defaulting to 1000
[   63.810092][ T3852] lo speed is unknown, defaulting to 1000
[   63.810354][ T3852] lo speed is unknown, defaulting to 1000
[   63.814766][ T3852] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   63.859515][ T3852] lo speed is unknown, defaulting to 1000
[   63.878383][ T3852] lo speed is unknown, defaulting to 1000
[   63.881403][ T3852] lo speed is unknown, defaulting to 1000
[   63.904048][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.914172][ T3852] lo speed is unknown, defaulting to 1000
[   63.943840][ T3852] lo speed is unknown, defaulting to 1000
[   64.003968][ T3859] siw: device registration error -23
[   64.076782][ T3866] loop5: detected capacity change from 0 to 512
[   64.088159][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.114693][ T3865] loop4: detected capacity change from 0 to 1024
[   64.116834][ T3866] EXT4-fs (loop5): orphan cleanup on readonly fs
[   64.137040][ T3866] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.105: bg 0: block 248: padding at end of block bitmap is not set
[   64.164480][ T3866] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.105: Failed to acquire dquot type 1
[   64.165475][ T3865] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.216962][ T3866] EXT4-fs (loop5): 1 truncate cleaned up
[   64.228654][ T3871] loop3: detected capacity change from 0 to 128
[   64.238327][ T3866] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   64.260552][ T3871] bio_check_eod: 1 callbacks suppressed
[   64.260569][ T3871] syz.3.107: attempt to access beyond end of device
[   64.260569][ T3871] loop3: rw=2049, sector=154, nr_sectors = 96 limit=128
[   64.287757][ T3865] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.106: Allocating blocks 465-513 which overlap fs metadata
[   64.326338][ T3871] syz.3.107: attempt to access beyond end of device
[   64.326338][ T3871] loop3: rw=2049, sector=138, nr_sectors = 8 limit=128
[   64.342666][ T3865] EXT4-fs (loop4): pa ffff888106e25070: logic 256, phys. 369, len 9
[   64.352411][ T3865] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 3
[   64.364982][ T3865] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[   64.387254][ T3871] syz.3.107: attempt to access beyond end of device
[   64.387254][ T3871] loop3: rw=2049, sector=144, nr_sectors = 2 limit=128
[   64.403118][ T3871] Buffer I/O error on dev loop3, logical block 72, lost async page write
[   64.418468][ T3871] syz.3.107: attempt to access beyond end of device
[   64.418468][ T3871] loop3: rw=2049, sector=146, nr_sectors = 8 limit=128
[   64.505373][ T3866] syz.5.105 (3866) used greatest stack depth: 9208 bytes left
[   64.516098][ T3712] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.551872][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.622928][ T3895] netlink: 'syz.4.113': attribute type 13 has an invalid length.
[   64.632647][ T3891] loop9: detected capacity change from 0 to 7
[   64.648597][ T3891] Buffer I/O error on dev loop9, logical block 0, async page read
[   64.658772][ T3891] Buffer I/O error on dev loop9, logical block 0, async page read
[   64.668691][ T3891]  loop9: unable to read partition table
[   64.675007][ T3891] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[   64.675007][ T3891] 
) failed (rc=-5)
[   64.814904][ T3895] netlink: 148 bytes leftover after parsing attributes in process `syz.4.113'.
[   64.937229][ T3904] netlink: 360 bytes leftover after parsing attributes in process `syz.4.113'.
[   65.065783][ T3896] loop2: detected capacity change from 0 to 8192
[   65.172085][ T3911] program syz.4.119 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   65.281357][ T3911] loop4: detected capacity change from 0 to 512
[   65.315984][ T3911] journal_path: Non-blockdev passed as './bus'
[   65.323806][ T3911] EXT4-fs: error: could not find journal device path
[   65.777632][ T3916] loop2: detected capacity change from 0 to 1024
[   65.811280][ T3916] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   65.831541][ T3916] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   65.866251][ T3916] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.122717][ T3924] siw: device registration error -23
[   66.142121][ T3922] loop5: detected capacity change from 0 to 512
[   66.169943][ T3922] EXT4-fs (loop5): orphan cleanup on readonly fs
[   66.194161][ T3922] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.122: bg 0: block 248: padding at end of block bitmap is not set
[   66.224729][ T3922] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.122: Failed to acquire dquot type 1
[   66.278972][ T3922] EXT4-fs (loop5): 1 truncate cleaned up
[   66.292184][ T3922] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   66.314489][ T3936] netdevsim netdevsim3: Direct firmware load for ./file0/file1 failed with error -2
[   66.324108][ T3939] netlink: 'syz.2.130': attribute type 13 has an invalid length.
[   66.352685][ T3712] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.389295][ T3943] netlink: 148 bytes leftover after parsing attributes in process `syz.2.130'.
[   66.423866][ T3945] netlink: 'syz.4.134': attribute type 13 has an invalid length.
[   66.477201][ T3951] netlink: 148 bytes leftover after parsing attributes in process `syz.4.134'.
[   66.503513][ T3953] netlink: 360 bytes leftover after parsing attributes in process `syz.2.130'.
[   66.530216][ T3950] 9pnet: Could not find request transport: fd0x0000000000000003
[   66.552313][ T3952] loop1: detected capacity change from 0 to 1024
[   66.578284][ T3950] 9pnet: Could not find request transport: fd0x0000000000000003
[   66.581629][ T3939] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.596637][ T3939] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.606658][ T3957] netlink: 360 bytes leftover after parsing attributes in process `syz.4.134'.
[   66.608495][ T3952] EXT4-fs: Ignoring removed orlov option
[   66.638752][ T3952] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869)
[   66.651617][ T3952] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   66.696355][ T3952] EXT4-fs (loop1): invalid journal inode
[   66.718334][ T3952] EXT4-fs (loop1): can't get journal size
[   66.742871][ T3952] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   66.787144][ T3952] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.798025][ T3939] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   66.821101][ T3939] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   66.834574][ T3962] sg_write: data in/out 63012/14 bytes for SCSI command 0x0-- guessing data in;
[   66.834574][ T3962]    program +}[@ not setting count and/or reply_len properly
[   66.994392][   T57] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.049869][   T57] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.056853][ T3967] FAULT_INJECTION: forcing a failure.
[   67.056853][ T3967] name failslab, interval 1, probability 0, space 0, times 0
[   67.078449][   T57] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.084870][ T3967] CPU: 1 UID: 0 PID: 3967 Comm: syz.3.137 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   67.084979][ T3967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   67.084998][ T3967] Call Trace:
[   67.085006][ T3967]  <TASK>
[   67.085016][ T3967]  __dump_stack+0x1d/0x30
[   67.085046][ T3967]  dump_stack_lvl+0xe8/0x140
[   67.085073][ T3967]  dump_stack+0x15/0x1b
[   67.085097][ T3967]  should_fail_ex+0x265/0x280
[   67.085130][ T3967]  should_failslab+0x8c/0xb0
[   67.085209][ T3967]  kmem_cache_alloc_noprof+0x50/0x310
[   67.085250][ T3967]  ? getname_flags+0x80/0x3b0
[   67.085290][ T3967]  getname_flags+0x80/0x3b0
[   67.085394][ T3967]  user_path_at+0x28/0x130
[   67.085508][ T3967]  __se_sys_mount+0x25b/0x2e0
[   67.085559][ T3967]  ? fput+0x8f/0xc0
[   67.085670][ T3967]  __x64_sys_mount+0x67/0x80
[   67.085783][ T3967]  x64_sys_call+0x2b4d/0x2ff0
[   67.085813][ T3967]  do_syscall_64+0xd2/0x200
[   67.085878][ T3967]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   67.085913][ T3967]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   67.085957][ T3967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.085999][ T3967] RIP: 0033:0x7f02e8c8ebe9
[   67.086071][ T3967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.086135][ T3967] RSP: 002b:00007f02e76f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   67.086162][ T3967] RAX: ffffffffffffffda RBX: 00007f02e8ec5fa0 RCX: 00007f02e8c8ebe9
[   67.091378][ T3967] RDX: 0000200000000300 RSI: 00002000000002c0 RDI: 0000000000000000
[   67.091399][ T3967] RBP: 00007f02e76f7090 R08: 00002000000004c0 R09: 0000000000000000
[   67.091487][ T3967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.091501][ T3967] R13: 00007f02e8ec6038 R14: 00007f02e8ec5fa0 R15: 00007ffe66bd0328
[   67.091532][ T3967]  </TASK>
[   67.334746][ T3970] loop4: detected capacity change from 0 to 1024
[   67.347401][   T57] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.432489][ T3970] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.463081][ T3984] loop5: detected capacity change from 0 to 512
[   67.479067][   T29] kauditd_printk_skb: 512 callbacks suppressed
[   67.479088][   T29] audit: type=1326 audit(1757132500.389:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.4.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f9e5ed6ebe9 code=0x7ffc0000
[   67.517078][   T29] audit: type=1326 audit(1757132500.409:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.4.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5ed6ebe9 code=0x7ffc0000
[   67.560533][ T3969] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.138: Allocating blocks 465-513 which overlap fs metadata
[   67.568107][   T29] audit: type=1326 audit(1757132500.409:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.4.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5ed6ebe9 code=0x7ffc0000
[   67.583220][ T3984] EXT4-fs (loop5): orphan cleanup on readonly fs
[   67.609641][   T29] audit: type=1326 audit(1757132500.409:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.4.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f9e5ed6ebe9 code=0x7ffc0000
[   67.622550][ T3969] EXT4-fs (loop4): pa ffff888106e250e0: logic 256, phys. 369, len 9
[   67.654479][ T3984] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.144: bg 0: block 248: padding at end of block bitmap is not set
[   67.661974][ T3969] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 3
[   67.683059][ T3984] Quota error (device loop5): write_blk: dquota write failed
[   67.698439][ T3988] siw: device registration error -23
[   67.701616][ T3984] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[   67.720917][ T3984] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.144: Failed to acquire dquot type 1
[   67.734647][ T3969] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[   67.758772][   T29] audit: type=1326 audit(1757132500.689:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.4.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5ed6ebe9 code=0x7ffc0000
[   67.790194][   T29] audit: type=1326 audit(1757132500.689:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3968 comm="syz.4.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5ed6ebe9 code=0x7ffc0000
[   67.825208][ T3984] EXT4-fs (loop5): 1 truncate cleaned up
[   67.833433][ T3984] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   67.860426][   T29] audit: type=1326 audit(1757132500.789:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3994 comm="syz.3.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02e8c8ebe9 code=0x7ffc0000
[   67.892850][   T29] audit: type=1326 audit(1757132500.789:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3994 comm="syz.3.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02e8c8ebe9 code=0x7ffc0000
[   67.949691][ T3712] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.985540][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.005393][ T3997] process 'syz.1.150' launched '/dev/fd/6' with NULL argv: empty string added
[   68.020670][ T4000] netlink: 'syz.3.151': attribute type 13 has an invalid length.
[   68.038729][ T4000] netlink: 148 bytes leftover after parsing attributes in process `syz.3.151'.
[   68.098056][ T4000] netlink: 360 bytes leftover after parsing attributes in process `syz.3.151'.
[   68.837212][ T4019] loop2: detected capacity change from 0 to 512
[   69.063711][ T4019] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   69.088113][ T4019] EXT4-fs (loop2): orphan cleanup on readonly fs
[   69.103909][ T4019] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.157: Failed to acquire dquot type 1
[   69.155695][ T4019] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.157: bg 0: block 40: padding at end of block bitmap is not set
[   69.239541][ T4019] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   69.257989][ T4028] loop3: detected capacity change from 0 to 512
[   69.278314][ T4031] 9pnet: p9_errstr2errno: server reported unknown error 
[   69.288446][ T4019] EXT4-fs (loop2): 1 truncate cleaned up
[   69.295978][ T4029] loop5: detected capacity change from 0 to 8192
[   69.305637][ T4028] EXT4-fs (loop3): orphan cleanup on readonly fs
[   69.315325][ T4019] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   69.331843][ T4032] syz.1.160 (4032) used obsolete PPPIOCDETACH ioctl
[   69.341851][ T4028] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.159: bg 0: block 248: padding at end of block bitmap is not set
[   69.362303][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.365598][ T4028] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.159: Failed to acquire dquot type 1
[   69.400558][ T4028] EXT4-fs (loop3): 1 truncate cleaned up
[   69.417773][ T4028] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   69.440463][ T4039] netlink: 'syz.2.162': attribute type 13 has an invalid length.
[   69.458923][ T4042] PM: Enabling pm_trace changes system date and time during resume.
[   69.458923][ T4042] PM: Correct system time has to be restored manually after resume.
[   69.464020][ T4039] netlink: 148 bytes leftover after parsing attributes in process `syz.2.162'.
[   69.490182][ T4042] netlink: 16 bytes leftover after parsing attributes in process `GPL'.
[   69.522921][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.558106][ T4046] siw: device registration error -23
[   69.581671][ T4053] 9pnet_fd: Insufficient options for proto=fd
[   69.590905][ T4053] 9pnet_fd: Insufficient options for proto=fd
[   69.817859][ T4066] __nla_validate_parse: 1 callbacks suppressed
[   69.817879][ T4066] netlink: 24 bytes leftover after parsing attributes in process `syz.3.168'.
[   70.558341][ T4074] loop5: detected capacity change from 0 to 8192
[   70.570257][ T4082] loop2: detected capacity change from 0 to 512
[   70.631474][ T4082] EXT4-fs (loop2): orphan cleanup on readonly fs
[   70.639335][ T4082] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.176: bg 0: block 248: padding at end of block bitmap is not set
[   70.658385][ T4082] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.176: Failed to acquire dquot type 1
[   70.673040][ T4082] EXT4-fs (loop2): 1 truncate cleaned up
[   70.686202][ T4082] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.767055][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.779639][ T4088] siw: device registration error -23
[   70.827053][ T4094] 9pnet: p9_errstr2errno: server reported unknown error 
[   70.861996][ T4096] netlink: 12 bytes leftover after parsing attributes in process `syz.2.182'.
[   70.873721][ T4096] netlink: 12 bytes leftover after parsing attributes in process `syz.2.182'.
[   70.889355][ T4096] bridge0: port 3(vlan3) entered blocking state
[   70.897448][ T4096] bridge0: port 3(vlan3) entered disabled state
[   70.905090][ T4096] vlan3: entered allmulticast mode
[   70.911404][ T4096] bridge0: entered allmulticast mode
[   70.939067][ T4096] vlan3: left allmulticast mode
[   70.944450][ T4096] bridge0: left allmulticast mode
[   71.098977][ T4104] siw: device registration error -23
[   71.307052][ T4114] FAULT_INJECTION: forcing a failure.
[   71.307052][ T4114] name failslab, interval 1, probability 0, space 0, times 0
[   71.324039][ T4114] CPU: 0 UID: 0 PID: 4114 Comm: syz.4.189 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   71.324107][ T4114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   71.324124][ T4114] Call Trace:
[   71.324134][ T4114]  <TASK>
[   71.324144][ T4114]  __dump_stack+0x1d/0x30
[   71.324174][ T4114]  dump_stack_lvl+0xe8/0x140
[   71.324207][ T4114]  dump_stack+0x15/0x1b
[   71.324227][ T4114]  should_fail_ex+0x265/0x280
[   71.324255][ T4114]  ? legacy_init_fs_context+0x31/0x80
[   71.324287][ T4114]  should_failslab+0x8c/0xb0
[   71.324322][ T4114]  __kmalloc_cache_noprof+0x4c/0x320
[   71.324436][ T4114]  legacy_init_fs_context+0x31/0x80
[   71.324521][ T4114]  alloc_fs_context+0x3ec/0x4e0
[   71.324553][ T4114]  fs_context_for_mount+0x22/0x30
[   71.324582][ T4114]  do_new_mount+0xe9/0x5e0
[   71.324613][ T4114]  ? security_capable+0x83/0x90
[   71.324661][ T4114]  path_mount+0x4a4/0xb20
[   71.324707][ T4114]  ? user_path_at+0x109/0x130
[   71.324765][ T4114]  __se_sys_mount+0x28f/0x2e0
[   71.324795][ T4114]  ? fput+0x8f/0xc0
[   71.324872][ T4114]  __x64_sys_mount+0x67/0x80
[   71.324896][ T4114]  x64_sys_call+0x2b4d/0x2ff0
[   71.324918][ T4114]  do_syscall_64+0xd2/0x200
[   71.325017][ T4114]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.325052][ T4114]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   71.325126][ T4114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.325156][ T4114] RIP: 0033:0x7f9e5ed6ebe9
[   71.325176][ T4114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.325200][ T4114] RSP: 002b:00007f9e5d7cf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   71.325226][ T4114] RAX: ffffffffffffffda RBX: 00007f9e5efa5fa0 RCX: 00007f9e5ed6ebe9
[   71.325243][ T4114] RDX: 00002000000002c0 RSI: 0000200000000280 RDI: 0000200000000100
[   71.325285][ T4114] RBP: 00007f9e5d7cf090 R08: 0000200000000300 R09: 0000000000000000
[   71.325301][ T4114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   71.325316][ T4114] R13: 00007f9e5efa6038 R14: 00007f9e5efa5fa0 R15: 00007ffc94b627d8
[   71.325336][ T4114]  </TASK>
[   71.682543][ T4121] siw: device registration error -23
[   71.803848][ T4129] netlink: 12 bytes leftover after parsing attributes in process `syz.2.195'.
[   71.815585][ T4129] netlink: 12 bytes leftover after parsing attributes in process `syz.2.195'.
[   71.876177][ T4129] bridge0: port 3(vlan3) entered blocking state
[   71.883361][ T4129] bridge0: port 3(vlan3) entered disabled state
[   71.900673][ T4129] vlan3: entered allmulticast mode
[   71.906809][ T4129] bridge0: entered allmulticast mode
[   71.913365][ T4123] loop4: detected capacity change from 0 to 8192
[   71.933090][ T4129] vlan3: left allmulticast mode
[   71.939749][ T4129] bridge0: left allmulticast mode
[   72.036849][ T4131] siw: device registration error -23
[   72.226367][ T4145] loop4: detected capacity change from 0 to 512
[   72.275224][ T4145] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   72.296474][ T4145] EXT4-fs (loop4): orphan cleanup on readonly fs
[   72.319523][ T4145] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.202: Failed to acquire dquot type 1
[   72.341384][ T4135] loop5: detected capacity change from 0 to 8192
[   72.353149][ T4145] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.202: bg 0: block 40: padding at end of block bitmap is not set
[   72.385832][ T4145] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   72.406390][ T4145] EXT4-fs (loop4): 1 truncate cleaned up
[   72.414653][ T4145] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   72.434068][ T4154] loop1: detected capacity change from 0 to 1024
[   72.491088][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.496873][   T29] kauditd_printk_skb: 494 callbacks suppressed
[   72.496886][   T29] audit: type=1400 audit(1757132505.419:1494): avc:  denied  { ioctl } for  pid=4155 comm="syz.5.207" path="ipc:[4026532367]" dev="nsfs" ino=4026532367 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   72.554607][ T4154] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.571262][   T29] audit: type=1326 audit(1757132505.509:1495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb9e0a6d550 code=0x7ffc0000
[   72.598678][   T29] audit: type=1326 audit(1757132505.509:1496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fb9e0a6d937 code=0x7ffc0000
[   72.621707][ T4154] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.206: Allocating blocks 465-513 which overlap fs metadata
[   72.627205][   T29] audit: type=1326 audit(1757132505.509:1497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb9e0a6d550 code=0x7ffc0000
[   72.675153][   T29] audit: type=1326 audit(1757132505.509:1498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e0a6ebe9 code=0x7ffc0000
[   72.702781][   T29] audit: type=1326 audit(1757132505.509:1499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e0a6ebe9 code=0x7ffc0000
[   72.733260][   T29] audit: type=1326 audit(1757132505.539:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fb9e0a6ebe9 code=0x7ffc0000
[   72.736657][ T4154] EXT4-fs (loop1): pa ffff888106dfb230: logic 256, phys. 369, len 9
[   72.763611][   T29] audit: type=1400 audit(1757132505.539:1501): avc:  denied  { create } for  pid=4153 comm="syz.1.206" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   72.774571][ T4154] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 3
[   72.798709][   T29] audit: type=1400 audit(1757132505.539:1502): avc:  denied  { read write open } for  pid=4153 comm="syz.1.206" path="/31/file1/bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   72.837412][ T4161] siw: device registration error -23
[   72.845037][   T29] audit: type=1326 audit(1757132505.539:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e0a6ebe9 code=0x7ffc0000
[   72.885376][ T4154] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[   72.999739][ T4148] loop2: detected capacity change from 0 to 128
[   73.009578][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.023088][ T4148] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   73.039640][ T4148] ext4 filesystem being mounted at /53/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   73.085849][ T4148] EXT4-fs (loop2): shut down requested (2)
[   73.124795][ T4178] loop1: detected capacity change from 0 to 512
[   73.194250][ T4180] netlink: 24 bytes leftover after parsing attributes in process `syz.5.211'.
[   73.207654][ T3315] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   73.213228][ T4178] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   73.226420][ T4178] EXT4-fs (loop1): orphan cleanup on readonly fs
[   73.236051][ T4178] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.212: Failed to acquire dquot type 1
[   73.261741][ T4184] siw: device registration error -23
[   73.273585][ T4178] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.212: bg 0: block 40: padding at end of block bitmap is not set
[   73.297298][ T4178] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   73.309333][ T4186] FAULT_INJECTION: forcing a failure.
[   73.309333][ T4186] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   73.309338][ T4178] EXT4-fs (loop1): 1 truncate cleaned up
[   73.309928][ T4178] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   73.324993][ T4186] CPU: 1 UID: 0 PID: 4186 Comm: syz.5.216 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   73.325067][ T4186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   73.325087][ T4186] Call Trace:
[   73.325097][ T4186]  <TASK>
[   73.325108][ T4186]  __dump_stack+0x1d/0x30
[   73.325140][ T4186]  dump_stack_lvl+0xe8/0x140
[   73.325168][ T4186]  dump_stack+0x15/0x1b
[   73.325207][ T4186]  should_fail_ex+0x265/0x280
[   73.325252][ T4186]  should_fail+0xb/0x20
[   73.325326][ T4186]  should_fail_usercopy+0x1a/0x20
[   73.325361][ T4186]  strncpy_from_user+0x25/0x230
[   73.325437][ T4186]  ? __rcu_read_unlock+0x4f/0x70
[   73.325469][ T4186]  path_removexattrat+0x82/0x570
[   73.325554][ T4186]  __x64_sys_removexattr+0x38/0x50
[   73.325635][ T4186]  x64_sys_call+0x242f/0x2ff0
[   73.325739][ T4186]  do_syscall_64+0xd2/0x200
[   73.325855][ T4186]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.325893][ T4186]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   73.326000][ T4186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.326099][ T4186] RIP: 0033:0x7f0ae542ebe9
[   73.326121][ T4186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.326174][ T4186] RSP: 002b:00007f0ae3e97038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c5
[   73.326201][ T4186] RAX: ffffffffffffffda RBX: 00007f0ae5665fa0 RCX: 00007f0ae542ebe9
[   73.326220][ T4186] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000200000000200
[   73.329704][ T4186] RBP: 00007f0ae3e97090 R08: 0000000000000000 R09: 0000000000000000
[   73.329724][ T4186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.329740][ T4186] R13: 00007f0ae5666038 R14: 00007f0ae5665fa0 R15: 00007ffd259968c8
[   73.329773][ T4186]  </TASK>
[   73.599424][ T4191] PM: Enabling pm_trace changes system date and time during resume.
[   73.599424][ T4191] PM: Correct system time has to be restored manually after resume.
[   73.664140][ T4191] netlink: 'GPL': attribute type 4 has an invalid length.
[   73.691671][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.962743][ T4221] loop3: detected capacity change from 0 to 512
[   74.982637][ T4221] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   75.005770][ T4221] EXT4-fs (loop3): orphan cleanup on readonly fs
[   75.023443][ T4221] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.226: Failed to acquire dquot type 1
[   75.056788][ T4221] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.226: bg 0: block 40: padding at end of block bitmap is not set
[   75.098218][ T4221] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   75.108532][ T4221] EXT4-fs (loop3): 1 truncate cleaned up
[   75.109110][ T4221] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.190693][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.338901][ T4236] loop4: detected capacity change from 0 to 1024
[   75.423216][ T4240] loop3: detected capacity change from 0 to 8192
[   75.432467][ T4240] msdos: Unknown parameter 'do
'
[   75.458593][ T4236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.481285][ T4236] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.232: Allocating blocks 465-513 which overlap fs metadata
[   75.498367][ T4236] EXT4-fs (loop4): pa ffff888106dfb2a0: logic 256, phys. 369, len 9
[   75.508432][ T4236] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 3
[   75.521712][ T4236] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[   75.559445][ T4254] netlink: 100 bytes leftover after parsing attributes in process `syz.3.234'.
[   75.703907][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.865253][ T4276] loop3: detected capacity change from 0 to 512
[   75.894741][   T36] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   75.905371][   T36] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   75.917252][   T36] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[   75.928912][ T4276] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   75.941780][   T36] hid-generic 0003:0004:0000.0001: hidraw0: USB HID v0.00 Device [syz0] on syz1
[   75.949210][ T4276] EXT4-fs (loop3): orphan cleanup on readonly fs
[   75.971128][ T4276] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.245: Failed to acquire dquot type 1
[   76.024563][ T4276] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.245: bg 0: block 40: padding at end of block bitmap is not set
[   76.077551][ T4276] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   76.117234][ T4276] EXT4-fs (loop3): 1 truncate cleaned up
[   76.123862][ T4276] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   76.152394][ T4276] EXT4-fs (loop3): shut down requested (1)
[   76.161612][ T4276] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   76.179618][ T4276] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   76.309793][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.463719][ T4292] netlink: 148 bytes leftover after parsing attributes in process `syz.3.249'.
[   76.570654][ T4297] netlink: 360 bytes leftover after parsing attributes in process `syz.3.249'.
[   76.718071][ T4306] loop1: detected capacity change from 0 to 164
[   76.732837][ T4306] rock: directory entry would overflow storage
[   76.740568][ T4306] rock: sig=0x66, size=4, remaining=3
[   76.749225][ T4308] netlink: 4 bytes leftover after parsing attributes in process `syz.3.254'.
[   76.790810][ T4306] rock: directory entry would overflow storage
[   76.798507][ T4306] rock: sig=0x66, size=4, remaining=3
[   77.293571][ T4348] loop3: detected capacity change from 0 to 512
[   77.319989][ T4348] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   77.332228][ T4348] EXT4-fs (loop3): orphan cleanup on readonly fs
[   77.341445][ T4348] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.266: Failed to acquire dquot type 1
[   77.343459][ T4352] loop5: detected capacity change from 0 to 512
[   77.362885][ T4348] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.266: bg 0: block 40: padding at end of block bitmap is not set
[   77.380293][ T4348] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   77.382040][ T4352] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   77.396361][ T4348] EXT4-fs (loop3): 1 truncate cleaned up
[   77.401987][ T4352] EXT4-fs (loop5): orphan cleanup on readonly fs
[   77.410976][ T4348] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   77.417139][ T4352] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.267: Failed to acquire dquot type 1
[   77.446597][ T4352] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.267: bg 0: block 40: padding at end of block bitmap is not set
[   77.465186][ T4352] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   77.478252][ T4352] EXT4-fs (loop5): 1 truncate cleaned up
[   77.486049][ T4352] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   77.530192][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.535033][ T4352] EXT4-fs (loop5): shut down requested (1)
[   77.555733][ T4352] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop5 ino=16
[   77.566827][ T4352] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop5 ino=16
[   77.612535][ T4364] netlink: 'syz.3.272': attribute type 1 has an invalid length.
[   77.622121][ T4364] netlink: 224 bytes leftover after parsing attributes in process `syz.3.272'.
[   77.636925][ T3712] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.677700][   T29] kauditd_printk_skb: 416 callbacks suppressed
[   77.677719][   T29] audit: type=1400 audit(1757132510.609:1910): avc:  denied  { getopt } for  pid=4362 comm="syz.3.272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   77.698082][ T4372] netlink: 12 bytes leftover after parsing attributes in process `syz.5.273'.
[   77.721052][ T4372] netlink: 12 bytes leftover after parsing attributes in process `syz.5.273'.
[   77.742922][ T4371] loop3: detected capacity change from 0 to 1024
[   77.754113][ T4355] loop1: detected capacity change from 0 to 8192
[   77.765961][ T4372] bridge0: port 3(vlan2) entered blocking state
[   77.773082][ T4372] bridge0: port 3(vlan2) entered disabled state
[   77.781709][ T4372] vlan2: entered allmulticast mode
[   77.784415][ T4371] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.788435][ T4372] bridge0: entered allmulticast mode
[   77.805229][ T4371] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.822938][ T4372] vlan2: left allmulticast mode
[   77.828324][ T4372] bridge0: left allmulticast mode
[   77.832368][ T4364] SELinux:  policydb magic number 0x2a93a2b7 does not match expected magic number 0xf97cff8c
[   77.835139][   T29] audit: type=1400 audit(1757132510.759:1911): avc:  denied  { load_policy } for  pid=4362 comm="syz.3.272" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   77.849057][ T4364] SELinux: failed to load policy
[   77.948629][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.979908][ T4382] netlink: 148 bytes leftover after parsing attributes in process `syz.2.277'.
[   78.029376][   T29] audit: type=1326 audit(1757132510.959:1912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4384 comm="syz.5.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   78.058266][   T29] audit: type=1326 audit(1757132510.959:1913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4384 comm="syz.5.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   78.089608][ T4386] netlink: 360 bytes leftover after parsing attributes in process `syz.2.277'.
[   78.105269][   T29] audit: type=1326 audit(1757132511.029:1914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4384 comm="syz.5.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   78.138288][   T29] audit: type=1326 audit(1757132511.029:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4384 comm="syz.5.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   78.169579][   T29] audit: type=1326 audit(1757132511.029:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4384 comm="syz.5.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   78.208753][   T29] audit: type=1326 audit(1757132511.089:1917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4384 comm="syz.5.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   78.238808][   T29] audit: type=1326 audit(1757132511.089:1918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4384 comm="syz.5.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   78.267870][   T29] audit: type=1326 audit(1757132511.089:1919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4384 comm="syz.5.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   78.335356][ T4385] loop5: detected capacity change from 0 to 1024
[   78.371079][ T4385] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.406506][ T4402] loop3: detected capacity change from 0 to 512
[   78.418170][ T4402] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   78.428348][ T4402] EXT4-fs (loop3): orphan cleanup on readonly fs
[   78.437087][ T4385] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.278: Allocating blocks 465-513 which overlap fs metadata
[   78.455159][ T4402] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.281: Failed to acquire dquot type 1
[   78.469282][ T4385] EXT4-fs (loop5): pa ffff888106e25380: logic 256, phys. 369, len 9
[   78.478611][ T4385] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 3
[   78.499526][ T4385] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[   78.530823][ T4402] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.281: bg 0: block 40: padding at end of block bitmap is not set
[   78.556840][ T4402] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   78.574312][ T4402] EXT4-fs (loop3): 1 truncate cleaned up
[   78.602700][ T4402] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   78.644135][ T3712] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.665090][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.678444][ T4411] PM: Enabling pm_trace changes system date and time during resume.
[   78.678444][ T4411] PM: Correct system time has to be restored manually after resume.
[   78.707164][ T4411] netlink: 'GPL': attribute type 4 has an invalid length.
[   78.927832][ T4427] netlink: 176 bytes leftover after parsing attributes in process `+}[@'.
[   78.942955][ T4427] loop3: detected capacity change from 0 to 512
[   78.949726][ T4425] bridge0: port 3(vlan2) entered blocking state
[   78.957723][ T4425] bridge0: port 3(vlan2) entered disabled state
[   78.968206][ T4425] vlan2: entered allmulticast mode
[   78.974141][ T4425] bridge0: entered allmulticast mode
[   78.983699][ T4425] vlan2: left allmulticast mode
[   78.988913][ T4425] bridge0: left allmulticast mode
[   79.002612][ T4427] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.018034][ T4427] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.080534][   T36] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4
[   79.091106][   T36] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2
[   79.119886][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.132965][   T36] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   79.141531][   T36] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   79.151069][   T36] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   79.159756][   T36] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   79.169304][   T36] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   79.187369][   T36] hid-generic 0000:3000000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   79.277820][ T4436] infiniband syz!: set active
[   79.283136][ T4436] infiniband syz!: added team_slave_0
[   79.299502][ T4436] RDS/IB: syz!: added
[   79.304039][ T4436] smc: adding ib device syz! with port count 1
[   79.311934][ T4436] smc:    ib device syz! port 1 has pnetid 
[   79.372725][ T4448] FAULT_INJECTION: forcing a failure.
[   79.372725][ T4448] name failslab, interval 1, probability 0, space 0, times 0
[   79.388928][ T4448] CPU: 1 UID: 0 PID: 4448 Comm: syz.4.295 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   79.388965][ T4448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   79.389059][ T4448] Call Trace:
[   79.389069][ T4448]  <TASK>
[   79.389078][ T4448]  __dump_stack+0x1d/0x30
[   79.389107][ T4448]  dump_stack_lvl+0xe8/0x140
[   79.389168][ T4448]  dump_stack+0x15/0x1b
[   79.389190][ T4448]  should_fail_ex+0x265/0x280
[   79.389221][ T4448]  should_failslab+0x8c/0xb0
[   79.389247][ T4448]  kmem_cache_alloc_node_noprof+0x57/0x320
[   79.389289][ T4448]  ? __alloc_skb+0x101/0x320
[   79.389321][ T4448]  __alloc_skb+0x101/0x320
[   79.389347][ T4448]  ? audit_log_start+0x365/0x6c0
[   79.389386][ T4448]  audit_log_start+0x380/0x6c0
[   79.389426][ T4448]  audit_seccomp+0x48/0x100
[   79.389517][ T4448]  ? __seccomp_filter+0x68c/0x10d0
[   79.389548][ T4448]  __seccomp_filter+0x69d/0x10d0
[   79.389576][ T4448]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   79.389610][ T4448]  ? vfs_write+0x7e8/0x960
[   79.389710][ T4448]  __secure_computing+0x82/0x150
[   79.389759][ T4448]  syscall_trace_enter+0xcf/0x1e0
[   79.389785][ T4448]  do_syscall_64+0xac/0x200
[   79.389962][ T4448]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   79.390036][ T4448]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   79.390145][ T4448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.390186][ T4448] RIP: 0033:0x7f9e5ed6ebe9
[   79.390207][ T4448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.390227][ T4448] RSP: 002b:00007f9e5d7cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000098
[   79.390247][ T4448] RAX: ffffffffffffffda RBX: 00007f9e5efa5fa0 RCX: 00007f9e5ed6ebe9
[   79.390277][ T4448] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   79.390290][ T4448] RBP: 00007f9e5d7cf090 R08: 0000000000000000 R09: 0000000000000000
[   79.390341][ T4448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.390354][ T4448] R13: 00007f9e5efa6038 R14: 00007f9e5efa5fa0 R15: 00007ffc94b627d8
[   79.390374][ T4448]  </TASK>
[   79.704254][ T4454] loop5: detected capacity change from 0 to 512
[   79.717726][ T4454] EXT4-fs (loop5): orphan cleanup on readonly fs
[   79.740897][ T4454] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.298: bg 0: block 248: padding at end of block bitmap is not set
[   79.766652][ T4444] loop3: detected capacity change from 0 to 8192
[   79.772727][ T4454] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.298: Failed to acquire dquot type 1
[   79.791060][ T4454] EXT4-fs (loop5): 1 truncate cleaned up
[   79.803970][ T4454] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   79.828529][ T4460] loop2: detected capacity change from 0 to 1024
[   79.861503][ T3712] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.864193][ T4460] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.904342][ T4469] loop1: detected capacity change from 0 to 512
[   79.937321][ T4460] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.299: Allocating blocks 465-513 which overlap fs metadata
[   79.954779][ T4465] loop4: detected capacity change from 0 to 8192
[   79.957129][ T4469] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   79.977719][ T4460] EXT4-fs (loop2): pa ffff888106e25460: logic 256, phys. 369, len 9
[   79.987632][ T4460] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 3
[   79.997609][ T4469] EXT4-fs (loop1): orphan cleanup on readonly fs
[   80.000947][ T4460] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[   80.028765][ T4469] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.302: Failed to acquire dquot type 1
[   80.053417][ T4469] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.302: bg 0: block 40: padding at end of block bitmap is not set
[   80.072301][ T4476] siw: device registration error -23
[   80.085210][ T4469] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   80.112697][ T4469] EXT4-fs (loop1): 1 truncate cleaned up
[   80.122504][ T4480] siw: device registration error -23
[   80.132104][ T4469] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   80.149274][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.176012][ T4469] EXT4-fs (loop1): shut down requested (1)
[   80.250104][ T4490] bridge0: port 3(vlan3) entered blocking state
[   80.257395][ T4490] bridge0: port 3(vlan3) entered disabled state
[   80.265418][ T4490] vlan3: entered allmulticast mode
[   80.272036][ T4490] bridge0: entered allmulticast mode
[   80.279006][ T4490] vlan3: left allmulticast mode
[   80.284900][ T4490] bridge0: left allmulticast mode
[   80.296461][ T4469] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=16
[   80.307356][ T4469] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=16
[   80.347929][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.405021][ T4503] siw: device registration error -23
[   80.412972][ T4501] loop1: detected capacity change from 0 to 512
[   80.426415][ T4501] EXT4-fs (loop1): orphan cleanup on readonly fs
[   80.435669][ T4501] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.314: bg 0: block 248: padding at end of block bitmap is not set
[   80.455573][ T4501] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.314: Failed to acquire dquot type 1
[   80.470787][ T4501] EXT4-fs (loop1): 1 truncate cleaned up
[   80.558201][ T4513] syz.5.318 uses obsolete (PF_INET,SOCK_PACKET)
[   80.570396][ T4495] loop2: detected capacity change from 0 to 8192
[   80.598878][ T4517] FAULT_INJECTION: forcing a failure.
[   80.598878][ T4517] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.614428][ T4517] CPU: 1 UID: 0 PID: 4517 Comm: syz.4.319 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   80.614465][ T4517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   80.614482][ T4517] Call Trace:
[   80.614491][ T4517]  <TASK>
[   80.614502][ T4517]  __dump_stack+0x1d/0x30
[   80.614531][ T4517]  dump_stack_lvl+0xe8/0x140
[   80.614558][ T4517]  dump_stack+0x15/0x1b
[   80.614580][ T4517]  should_fail_ex+0x265/0x280
[   80.614684][ T4517]  should_fail+0xb/0x20
[   80.614705][ T4517]  should_fail_usercopy+0x1a/0x20
[   80.614795][ T4517]  _copy_to_user+0x20/0xa0
[   80.614839][ T4517]  simple_read_from_buffer+0xb5/0x130
[   80.614870][ T4517]  proc_fail_nth_read+0x10e/0x150
[   80.614905][ T4517]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   80.614968][ T4517]  vfs_read+0x1a8/0x770
[   80.614994][ T4517]  ? __rcu_read_unlock+0x4f/0x70
[   80.615075][ T4517]  ? __fget_files+0x184/0x1c0
[   80.615111][ T4517]  ksys_read+0xda/0x1a0
[   80.615193][ T4517]  __x64_sys_read+0x40/0x50
[   80.615216][ T4517]  x64_sys_call+0x27bc/0x2ff0
[   80.615257][ T4517]  do_syscall_64+0xd2/0x200
[   80.615301][ T4517]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.615335][ T4517]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   80.615428][ T4517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.615456][ T4517] RIP: 0033:0x7f9e5ed6d5fc
[   80.615473][ T4517] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   80.615559][ T4517] RSP: 002b:00007f9e5d7cf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   80.615585][ T4517] RAX: ffffffffffffffda RBX: 00007f9e5efa5fa0 RCX: 00007f9e5ed6d5fc
[   80.615602][ T4517] RDX: 000000000000000f RSI: 00007f9e5d7cf0a0 RDI: 0000000000000006
[   80.615625][ T4517] RBP: 00007f9e5d7cf090 R08: 0000000000000000 R09: 0000000000000000
[   80.615642][ T4517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.615658][ T4517] R13: 00007f9e5efa6038 R14: 00007f9e5efa5fa0 R15: 00007ffc94b627d8
[   80.615684][ T4517]  </TASK>
[   81.018752][ T4531] loop2: detected capacity change from 0 to 512
[   81.030020][ T4531] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   81.043557][ T4531] EXT4-fs (loop2): 1 truncate cleaned up
[   81.110394][ T4537] loop2: detected capacity change from 0 to 512
[   81.114853][ T4535] loop3: detected capacity change from 0 to 1024
[   81.139422][ T4537] ext4 filesystem being mounted at /74/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.159922][ T4537] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   81.163216][ T4535] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.327: Allocating blocks 465-513 which overlap fs metadata
[   81.169953][ T4537] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   81.236879][ T4535] EXT4-fs (loop3): pa ffff888106dfb5b0: logic 256, phys. 369, len 9
[   81.247305][ T4535] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 3
[   81.317381][ T4535] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[   81.538144][ T4553] loop5: detected capacity change from 0 to 8192
[   81.609988][ T4563] loop5: detected capacity change from 0 to 512
[   81.629681][ T4565] loop3: detected capacity change from 0 to 512
[   81.646713][ T4563] EXT4-fs (loop5): orphan cleanup on readonly fs
[   81.657355][ T4563] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.335: bg 0: block 248: padding at end of block bitmap is not set
[   81.687056][ T4565] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   81.707382][ T4565] EXT4-fs (loop3): orphan cleanup on readonly fs
[   81.714980][ T4563] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.335: Failed to acquire dquot type 1
[   81.756201][ T4565] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.336: Failed to acquire dquot type 1
[   81.779807][ T4565] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.336: bg 0: block 40: padding at end of block bitmap is not set
[   81.806418][ T4563] EXT4-fs (loop5): 1 truncate cleaned up
[   81.817552][ T4565] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   81.851272][ T4565] EXT4-fs (loop3): 1 truncate cleaned up
[   81.884541][ T4565] EXT4-fs (loop3): shut down requested (1)
[   81.925037][ T4565] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   82.083994][ T4565] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   82.235656][ T4579] loop3: detected capacity change from 0 to 512
[   82.248974][ T4577] netlink: 'syz.5.349': attribute type 13 has an invalid length.
[   82.274042][ T4577] __nla_validate_parse: 11 callbacks suppressed
[   82.274127][ T4577] netlink: 148 bytes leftover after parsing attributes in process `syz.5.349'.
[   82.305999][ T4579] EXT4-fs (loop3): orphan cleanup on readonly fs
[   82.319202][ T4579] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.338: bg 0: block 248: padding at end of block bitmap is not set
[   82.391184][ T4579] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.338: Failed to acquire dquot type 1
[   82.407847][ T4581] netlink: 360 bytes leftover after parsing attributes in process `syz.5.349'.
[   82.432492][ T4579] EXT4-fs (loop3): 1 truncate cleaned up
[   82.514084][ T4585] loop5: detected capacity change from 0 to 512
[   82.535636][ T4585] EXT4-fs (loop5): orphan cleanup on readonly fs
[   82.552151][ T4590] netlink: 14 bytes leftover after parsing attributes in process `syz.1.342'.
[   82.563462][ T4585] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.340: bg 0: block 248: padding at end of block bitmap is not set
[   82.609161][ T4585] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.340: Failed to acquire dquot type 1
[   82.666491][ T4598] siw: device registration error -23
[   82.679153][ T4585] EXT4-fs (loop5): 1 truncate cleaned up
[   82.746164][   T29] kauditd_printk_skb: 565 callbacks suppressed
[   82.746179][   T29] audit: type=1326 audit(1757132515.679:2465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   82.879800][ T4595] loop1: detected capacity change from 0 to 2048
[   82.890210][   T29] audit: type=1326 audit(1757132515.769:2466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   82.930281][   T29] audit: type=1326 audit(1757132515.769:2467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   82.960129][   T29] audit: type=1326 audit(1757132515.769:2468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   82.990434][   T29] audit: type=1326 audit(1757132515.769:2469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   83.019090][   T29] audit: type=1326 audit(1757132515.769:2470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   83.043405][ T4601] loop3: detected capacity change from 0 to 8192
[   83.047483][   T29] audit: type=1326 audit(1757132515.769:2471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   83.085576][   T29] audit: type=1326 audit(1757132515.769:2472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   83.109065][ T4609] loop2: detected capacity change from 0 to 512
[   83.132651][   T29] audit: type=1326 audit(1757132515.769:2473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   83.187870][   T29] audit: type=1326 audit(1757132515.769:2474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4584 comm="syz.5.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   83.244841][ T4609] EXT4-fs (loop2): orphan cleanup on readonly fs
[   83.257839][ T4595] EXT4-fs (loop1): failed to initialize system zone (-117)
[   83.269108][ T4595] EXT4-fs (loop1): mount failed
[   83.323443][ T4610] bridge1: entered promiscuous mode
[   83.331269][ T4609] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.350: bg 0: block 248: padding at end of block bitmap is not set
[   83.372808][ T4595] loop1: detected capacity change from 0 to 1024
[   83.394407][ T4618] loop3: detected capacity change from 0 to 512
[   83.415372][ T4609] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.350: Failed to acquire dquot type 1
[   83.455073][ T4618] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   83.479897][ T4609] EXT4-fs (loop2): 1 truncate cleaned up
[   83.499009][ T4595] ext4 filesystem being mounted at /54/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.512992][ T4618] EXT4-fs (loop3): orphan cleanup on readonly fs
[   83.525209][ T4618] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.352: Failed to acquire dquot type 1
[   83.570053][ T4618] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.352: bg 0: block 40: padding at end of block bitmap is not set
[   83.590497][ T4625] netlink: zone id is out of range
[   83.596649][ T4625] netlink: zone id is out of range
[   83.616130][ T4618] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   83.643689][ T4618] EXT4-fs (loop3): 1 truncate cleaned up
[   83.676493][ T4618] EXT4-fs (loop3): shut down requested (1)
[   83.698586][ T4618] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   83.722814][ T4618] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   83.969184][ T4636] FAULT_INJECTION: forcing a failure.
[   83.969184][ T4636] name failslab, interval 1, probability 0, space 0, times 0
[   83.984264][ T4636] CPU: 1 UID: 0 PID: 4636 Comm: syz.3.357 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   83.984297][ T4636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   83.984310][ T4636] Call Trace:
[   83.984317][ T4636]  <TASK>
[   83.984325][ T4636]  __dump_stack+0x1d/0x30
[   83.984348][ T4636]  dump_stack_lvl+0xe8/0x140
[   83.984410][ T4636]  dump_stack+0x15/0x1b
[   83.984432][ T4636]  should_fail_ex+0x265/0x280
[   83.984464][ T4636]  should_failslab+0x8c/0xb0
[   83.984494][ T4636]  __kmalloc_node_noprof+0xa9/0x410
[   83.984555][ T4636]  ? qdisc_alloc+0x65/0x440
[   83.984584][ T4636]  qdisc_alloc+0x65/0x440
[   83.984612][ T4636]  ? nla_strcmp+0xc3/0xe0
[   83.984648][ T4636]  qdisc_create+0xf5/0x9e0
[   83.984700][ T4636]  tc_modify_qdisc+0xf2e/0x1420
[   83.984753][ T4636]  ? __pfx_tc_modify_qdisc+0x10/0x10
[   83.984795][ T4636]  rtnetlink_rcv_msg+0x657/0x6d0
[   83.984909][ T4636]  ? avc_has_perm_noaudit+0x1b1/0x200
[   83.984943][ T4636]  netlink_rcv_skb+0x120/0x220
[   83.985057][ T4636]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   83.985149][ T4636]  rtnetlink_rcv+0x1c/0x30
[   83.985185][ T4636]  netlink_unicast+0x5c0/0x690
[   83.985210][ T4636]  netlink_sendmsg+0x58b/0x6b0
[   83.985311][ T4636]  ? __pfx_netlink_sendmsg+0x10/0x10
[   83.985342][ T4636]  __sock_sendmsg+0x145/0x180
[   83.985427][ T4636]  ____sys_sendmsg+0x31e/0x4e0
[   83.985466][ T4636]  ___sys_sendmsg+0x17b/0x1d0
[   83.985508][ T4636]  __x64_sys_sendmsg+0xd4/0x160
[   83.985544][ T4636]  x64_sys_call+0x191e/0x2ff0
[   83.985595][ T4636]  do_syscall_64+0xd2/0x200
[   83.985636][ T4636]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   83.985661][ T4636]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   83.985771][ T4636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.985801][ T4636] RIP: 0033:0x7f02e8c8ebe9
[   83.985820][ T4636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.985845][ T4636] RSP: 002b:00007f02e76f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   83.985876][ T4636] RAX: ffffffffffffffda RBX: 00007f02e8ec5fa0 RCX: 00007f02e8c8ebe9
[   83.985893][ T4636] RDX: 0000000000000000 RSI: 0000200000001200 RDI: 0000000000000006
[   83.985910][ T4636] RBP: 00007f02e76f7090 R08: 0000000000000000 R09: 0000000000000000
[   83.985926][ T4636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.985941][ T4636] R13: 00007f02e8ec6038 R14: 00007f02e8ec5fa0 R15: 00007ffe66bd0328
[   83.985964][ T4636]  </TASK>
[   84.419022][ T4639] siw: device registration error -23
[   84.434092][ T4643] loop2: detected capacity change from 0 to 1024
[   84.493474][ T4643] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.360: Allocating blocks 465-513 which overlap fs metadata
[   84.523820][ T4643] EXT4-fs (loop2): pa ffff888106e254d0: logic 256, phys. 369, len 9
[   84.545196][ T4643] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 3
[   84.566787][ T4643] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[   84.639182][ T4655] netlink: 'syz.2.362': attribute type 1 has an invalid length.
[   84.648122][ T4655] netlink: 224 bytes leftover after parsing attributes in process `syz.2.362'.
[   84.665500][ T4657] netlink: 'syz.4.363': attribute type 13 has an invalid length.
[   84.684067][ T4657] netlink: 'syz.4.363': attribute type 27 has an invalid length.
[   84.695957][ T4657] netlink: 148 bytes leftover after parsing attributes in process `syz.4.363'.
[   84.709350][ T4655] loop2: detected capacity change from 0 to 1024
[   84.739906][ T4655] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.757008][ T4657] netlink: 360 bytes leftover after parsing attributes in process `syz.4.363'.
[   84.856775][ T4665] 9pnet: p9_errstr2errno: server reported unknown error 
[   84.870152][ T4664] loop4: detected capacity change from 0 to 512
[   84.882854][ T4664] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   84.893833][ T4664] EXT4-fs (loop4): orphan cleanup on readonly fs
[   84.926121][ T4664] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.366: Failed to acquire dquot type 1
[   84.948648][ T4664] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.366: bg 0: block 40: padding at end of block bitmap is not set
[   84.986300][ T4664] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   85.013624][ T4664] EXT4-fs (loop4): 1 truncate cleaned up
[   85.113871][ T4672] random: crng reseeded on system resumption
[   85.388225][ T4682] netlink: 'syz.3.372': attribute type 1 has an invalid length.
[   85.398857][ T4682] netlink: 224 bytes leftover after parsing attributes in process `syz.3.372'.
[   85.409207][ T4680] loop2: detected capacity change from 0 to 128
[   85.447344][ T4680] ext4 filesystem being mounted at /83/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   85.492757][ T4682] loop3: detected capacity change from 0 to 1024
[   85.564326][ T4682] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.730781][ T4694] netlink: 'syz.2.375': attribute type 13 has an invalid length.
[   85.740073][ T4694] netlink: 'syz.2.375': attribute type 27 has an invalid length.
[   85.792579][ T4696] netlink: 148 bytes leftover after parsing attributes in process `syz.2.375'.
[   85.814000][ T4689] loop1: detected capacity change from 0 to 8192
[   85.891029][ T4696] netlink: 360 bytes leftover after parsing attributes in process `syz.2.375'.
[   86.059018][ T4700] loop3: detected capacity change from 0 to 8192
[   86.574698][ T4714] loop1: detected capacity change from 0 to 512
[   86.607004][ T4714] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   86.635644][ T4714] EXT4-fs (loop1): orphan cleanup on readonly fs
[   86.661659][ T4714] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.380: Failed to acquire dquot type 1
[   86.719050][ T4714] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.380: bg 0: block 40: padding at end of block bitmap is not set
[   86.812023][ T4714] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   86.919175][ T4714] EXT4-fs (loop1): 1 truncate cleaned up
[   86.968046][ T4714] EXT4-fs mount: 32 callbacks suppressed
[   86.968070][ T4714] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   87.477463][ T4714] EXT4-fs (loop1): shut down requested (1)
[   87.495948][ T4714] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=16
[   87.516388][ T4714] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=16
[   87.595448][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.773162][   T29] kauditd_printk_skb: 287 callbacks suppressed
[   87.773182][   T29] audit: type=1400 audit(1757132520.699:2754): avc:  denied  { ioctl } for  pid=4725 comm="syz.3.383" path="socket:[9055]" dev="sockfs" ino=9055 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   87.842041][ T4726] netlink: 28 bytes leftover after parsing attributes in process `syz.3.383'.
[   87.864814][   T29] audit: type=1400 audit(1757132520.749:2755): avc:  denied  { bind } for  pid=4725 comm="syz.3.383" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   87.888853][   T29] audit: type=1400 audit(1757132520.749:2756): avc:  denied  { connect } for  pid=4725 comm="syz.3.383" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   87.913140][   T29] audit: type=1400 audit(1757132520.759:2757): avc:  denied  { write } for  pid=4725 comm="syz.3.383" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   88.271204][ T4735] loop4: detected capacity change from 0 to 8192
[   88.584696][   T29] audit: type=1400 audit(1757132521.499:2758): avc:  denied  { append } for  pid=4742 comm="syz.4.388" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   88.707608][ T4743] netlink: 120 bytes leftover after parsing attributes in process `syz.4.388'.
[   88.718208][ T4743] netlink: 120 bytes leftover after parsing attributes in process `syz.4.388'.
[   88.879929][   T29] audit: type=1326 audit(1757132521.809:2759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.4.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5ed6ebe9 code=0x7ffc0000
[   88.966011][   T29] audit: type=1326 audit(1757132521.809:2760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.4.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5ed6ebe9 code=0x7ffc0000
[   88.992561][   T29] audit: type=1326 audit(1757132521.809:2761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.4.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e5ed6ebe9 code=0x7ffc0000
[   89.020855][   T29] audit: type=1326 audit(1757132521.809:2762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.4.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5ed6ebe9 code=0x7ffc0000
[   89.047802][   T29] audit: type=1326 audit(1757132521.809:2763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4748 comm="syz.4.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5ed6ebe9 code=0x7ffc0000
[   89.154622][ T4753] loop3: detected capacity change from 0 to 512
[   89.185559][ T4753] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   89.230145][ T4753] EXT4-fs (loop3): orphan cleanup on readonly fs
[   89.257120][ T4753] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.391: Failed to acquire dquot type 1
[   89.325020][ T4756] vlan2: entered promiscuous mode
[   89.331065][ T4756] vlan2: entered allmulticast mode
[   89.337020][ T4756] hsr_slave_1: entered allmulticast mode
[   89.348548][ T4753] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.391: bg 0: block 40: padding at end of block bitmap is not set
[   89.407594][ T4753] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   89.434578][ T4753] EXT4-fs (loop3): 1 truncate cleaned up
[   89.439962][ T4759] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4759 comm=syz.4.392
[   89.451316][ T4762] loop1: detected capacity change from 0 to 512
[   89.466654][ T4753] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   89.499684][ T4762] EXT4-fs (loop1): orphan cleanup on readonly fs
[   89.517590][ T4753] EXT4-fs (loop3): shut down requested (1)
[   89.525419][ T4762] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.395: bg 0: block 248: padding at end of block bitmap is not set
[   89.554434][ T4753] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   89.577615][ T4762] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.395: Failed to acquire dquot type 1
[   89.594144][ T4753] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   89.617760][ T4766] 9pnet: p9_errstr2errno: server reported unknown error 
[   89.628627][ T4762] EXT4-fs (loop1): 1 truncate cleaned up
[   89.656686][ T4762] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   89.693327][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.732471][ T4770] PM: Enabling pm_trace changes system date and time during resume.
[   89.732471][ T4770] PM: Correct system time has to be restored manually after resume.
[   89.765803][ T4772] random: crng reseeded on system resumption
[   89.774309][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.800594][ T4770] netlink: 'GPL': attribute type 4 has an invalid length.
[   89.821656][ T4770] netlink: 16 bytes leftover after parsing attributes in process `GPL'.
[   89.849368][ T4776] loop1: detected capacity change from 0 to 512
[   89.862188][ T4776] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   89.872280][ T4776] EXT4-fs (loop1): orphan cleanup on readonly fs
[   89.881129][ T4776] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.399: Failed to acquire dquot type 1
[   89.896042][ T4776] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.399: bg 0: block 40: padding at end of block bitmap is not set
[   89.944026][ T4776] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   89.989323][ T4776] EXT4-fs (loop1): 1 truncate cleaned up
[   90.006906][ T4776] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   90.054321][ T4776] EXT4-fs (loop1): shut down requested (1)
[   90.068935][ T4777] loop4: detected capacity change from 0 to 8192
[   90.077928][ T4776] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=16
[   90.092815][ T4776] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=16
[   90.155396][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.192057][ T4786] loop2: detected capacity change from 0 to 8192
[   90.293631][ T4796] loop4: detected capacity change from 0 to 512
[   90.321094][ T4796] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   90.336857][ T4796] EXT4-fs (loop4): orphan cleanup on readonly fs
[   90.345133][ T4796] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.405: Failed to acquire dquot type 1
[   90.363954][ T4796] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.405: bg 0: block 40: padding at end of block bitmap is not set
[   90.382859][ T4796] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   90.393650][ T4796] EXT4-fs (loop4): 1 truncate cleaned up
[   90.441587][ T4796] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   90.527533][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.548294][ T4801] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   90.649521][ T4818] netlink: 'syz.3.415': attribute type 1 has an invalid length.
[   90.675370][ T4818] netlink: 224 bytes leftover after parsing attributes in process `syz.3.415'.
[   90.698624][ T4818] loop3: detected capacity change from 0 to 1024
[   90.720141][ T4821] netlink: 'syz.1.416': attribute type 1 has an invalid length.
[   90.728445][ T4821] netlink: 224 bytes leftover after parsing attributes in process `syz.1.416'.
[   90.749903][ T4821] loop1: detected capacity change from 0 to 1024
[   90.756649][ T4818] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.771436][ T4821] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.787652][ T4818] ext4 filesystem being mounted at /91/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.807283][ T4821] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.813456][ T4818] SELinux:  policydb magic number 0x2a93a2b7 does not match expected magic number 0xf97cff8c
[   90.832650][ T4818] SELinux: failed to load policy
[   90.850812][ T4821] SELinux:  policydb magic number 0x2a93a2b7 does not match expected magic number 0xf97cff8c
[   90.870167][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.900774][ T4821] SELinux: failed to load policy
[   90.942197][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.955192][ T4829] loop2: detected capacity change from 0 to 8192
[   90.971156][ T4836] loop5: detected capacity change from 0 to 1024
[   90.979601][ T4826] loop4: detected capacity change from 0 to 8192
[   90.980656][ T4836] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   91.296747][ T4862] loop1: detected capacity change from 0 to 1024
[   91.314286][ T4862] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   91.327344][ T4862] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   91.408240][ T4862] JBD2: no valid journal superblock found
[   91.414692][ T4862] EXT4-fs (loop1): Could not load journal inode
[   91.750316][ T4908] loop2: detected capacity change from 0 to 512
[   91.775304][ T4908] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   91.786994][ T4908] EXT4-fs (loop2): orphan cleanup on readonly fs
[   91.806168][ T4908] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.446: Failed to acquire dquot type 1
[   91.831255][ T4908] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.446: bg 0: block 40: padding at end of block bitmap is not set
[   91.902478][ T4908] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   91.933565][ T4908] EXT4-fs (loop2): 1 truncate cleaned up
[   91.946839][ T4908] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   91.998768][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.086767][ T4925] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[   92.094926][ T4925] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   92.104685][ T4925] vhci_hcd vhci_hcd.0: Device attached
[   92.138020][ T4926] vhci_hcd: connection closed
[   92.138282][   T51] vhci_hcd: stop threads
[   92.152309][   T51] vhci_hcd: release socket
[   92.163071][   T51] vhci_hcd: disconnect device
[   92.198523][ T4933] 9pnet: Could not find request transport: 0xffffffffffffffff
[   92.517269][ T4948] loop5: detected capacity change from 0 to 512
[   92.529679][ T4948] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   92.539722][ T4948] EXT4-fs (loop5): orphan cleanup on readonly fs
[   92.548081][ T4948] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.461: Failed to acquire dquot type 1
[   92.563393][ T4948] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.461: bg 0: block 40: padding at end of block bitmap is not set
[   92.581552][ T4948] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   92.593348][ T4948] EXT4-fs (loop5): 1 truncate cleaned up
[   92.602305][ T4948] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   92.631423][ T3712] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.650959][ T4957] PM: Enabling pm_trace changes system date and time during resume.
[   92.650959][ T4957] PM: Correct system time has to be restored manually after resume.
[   92.672297][ T4957] netlink: 'GPL': attribute type 4 has an invalid length.
[   92.695149][ T4961] netlink: 'syz.3.467': attribute type 13 has an invalid length.
[   92.709594][ T4961] netlink: 148 bytes leftover after parsing attributes in process `syz.3.467'.
[   92.754331][ T4961] netlink: 360 bytes leftover after parsing attributes in process `syz.3.467'.
[   92.795482][   T29] kauditd_printk_skb: 464 callbacks suppressed
[   92.795502][   T29] audit: type=1326 audit(1757132525.719:3216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4970 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02e8c8ebe9 code=0x7ffc0000
[   92.832206][   T29] audit: type=1326 audit(1757132525.719:3217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4970 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02e8c8ebe9 code=0x7ffc0000
[   92.860134][   T29] audit: type=1326 audit(1757132525.719:3218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4970 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02e8c8ebe9 code=0x7ffc0000
[   92.888212][   T29] audit: type=1326 audit(1757132525.719:3219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4970 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02e8c8ebe9 code=0x7ffc0000
[   92.920390][   T29] audit: type=1326 audit(1757132525.719:3220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4970 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02e8c8ebe9 code=0x7ffc0000
[   92.950508][   T29] audit: type=1326 audit(1757132525.719:3221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4970 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f02e8c8ebe9 code=0x7ffc0000
[   92.978839][   T29] audit: type=1326 audit(1757132525.719:3222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4970 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02e8c8ebe9 code=0x7ffc0000
[   93.037272][ T4974] netlink: 'syz.4.471': attribute type 10 has an invalid length.
[   93.048038][ T4974] netlink: 40 bytes leftover after parsing attributes in process `syz.4.471'.
[   93.061805][ T4974] dummy0: entered promiscuous mode
[   93.093196][ T4974] bridge0: port 3(dummy0) entered blocking state
[   93.103118][ T4974] bridge0: port 3(dummy0) entered disabled state
[   93.115104][ T4983] loop4: detected capacity change from 0 to 512
[   93.127659][   T29] audit: type=1326 audit(1757132526.059:3223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4981 comm="syz.5.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   93.149012][ T4974] dummy0: entered allmulticast mode
[   93.160321][   T29] audit: type=1326 audit(1757132526.059:3224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4981 comm="syz.5.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   93.160364][   T29] audit: type=1326 audit(1757132526.059:3225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4981 comm="syz.5.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f0ae542ebe9 code=0x7ffc0000
[   93.201579][ T4983] EXT4-fs warning (device loop4): dx_probe:861: inode #2: comm syz.4.471: dx entry: limit 0 != root limit 125
[   93.239587][ T4983] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.471: Corrupt directory, running e2fsck is recommended
[   93.255693][ T4983] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[   93.266536][ T4992] loop2: detected capacity change from 0 to 512
[   93.274702][ T4983] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.471: corrupted in-inode xattr: invalid ea_ino
[   93.290656][ T4983] EXT4-fs (loop4): Remounting filesystem read-only
[   93.299730][ T4983] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.350359][ T4992] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   93.359870][ T4992] EXT4-fs (loop2): orphan cleanup on readonly fs
[   93.368319][ T4992] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.476: Failed to acquire dquot type 1
[   93.381470][ T4992] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.476: bg 0: block 40: padding at end of block bitmap is not set
[   93.402943][ T4974] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.414638][ T4974] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.423034][ T4992] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   93.434525][ T4992] EXT4-fs (loop2): 1 truncate cleaned up
[   93.447308][ T4992] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   93.466002][ T4999] FAULT_INJECTION: forcing a failure.
[   93.466002][ T4999] name failslab, interval 1, probability 0, space 0, times 0
[   93.481252][ T4999] CPU: 1 UID: 0 PID: 4999 Comm: syz.5.480 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   93.481289][ T4999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   93.481306][ T4999] Call Trace:
[   93.481313][ T4999]  <TASK>
[   93.481331][ T4999]  __dump_stack+0x1d/0x30
[   93.481360][ T4999]  dump_stack_lvl+0xe8/0x140
[   93.481385][ T4999]  dump_stack+0x15/0x1b
[   93.481407][ T4999]  should_fail_ex+0x265/0x280
[   93.481438][ T4999]  should_failslab+0x8c/0xb0
[   93.481470][ T4999]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   93.481541][ T4999]  ? sidtab_sid2str_get+0xa0/0x130
[   93.481623][ T4999]  kmemdup_noprof+0x2b/0x70
[   93.481658][ T4999]  sidtab_sid2str_get+0xa0/0x130
[   93.481773][ T4999]  security_sid_to_context_core+0x1eb/0x2e0
[   93.481847][ T4999]  security_sid_to_context+0x27/0x40
[   93.481871][ T4999]  selinux_lsmprop_to_secctx+0x67/0xf0
[   93.481898][ T4999]  security_lsmprop_to_secctx+0x43/0x80
[   93.481934][ T4999]  audit_log_task_context+0x77/0x190
[   93.481983][ T4999]  audit_log_task+0xf4/0x250
[   93.482017][ T4999]  audit_seccomp+0x61/0x100
[   93.482058][ T4999]  ? __seccomp_filter+0x68c/0x10d0
[   93.482086][ T4999]  __seccomp_filter+0x69d/0x10d0
[   93.482115][ T4999]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   93.482151][ T4999]  ? vfs_write+0x7e8/0x960
[   93.482177][ T4999]  ? __rcu_read_unlock+0x4f/0x70
[   93.482205][ T4999]  ? __fget_files+0x184/0x1c0
[   93.482238][ T4999]  __secure_computing+0x82/0x150
[   93.482304][ T4999]  syscall_trace_enter+0xcf/0x1e0
[   93.482332][ T4999]  do_syscall_64+0xac/0x200
[   93.482369][ T4999]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   93.482474][ T4999]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   93.482510][ T4999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.482536][ T4999] RIP: 0033:0x7f0ae542ebe9
[   93.482575][ T4999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.482590][ T4999] RSP: 002b:00007f0ae3e97038 EFLAGS: 00000246 ORIG_RAX: 00000000000001cb
[   93.482608][ T4999] RAX: ffffffffffffffda RBX: 00007f0ae5665fa0 RCX: 00007f0ae542ebe9
[   93.482620][ T4999] RDX: 0000200000000280 RSI: 0000200000000200 RDI: 0000000000000067
[   93.482704][ T4999] RBP: 00007f0ae3e97090 R08: 0000000000000000 R09: 0000000000000000
[   93.482763][ T4999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.482773][ T4999] R13: 00007f0ae5666038 R14: 00007f0ae5665fa0 R15: 00007ffd259968c8
[   93.482791][ T4999]  </TASK>
[   93.483746][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.814522][ T5007] netlink: 'syz.2.481': attribute type 1 has an invalid length.
[   93.827811][ T5007] netlink: 224 bytes leftover after parsing attributes in process `syz.2.481'.
[   93.848927][ T5007] loop2: detected capacity change from 0 to 1024
[   93.881227][ T5007] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.896271][ T5007] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.911235][ T5007] SELinux:  policydb magic number 0x2a93a2b7 does not match expected magic number 0xf97cff8c
[   93.929032][ T5007] SELinux: failed to load policy
[   93.950282][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.971415][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.994295][ T5019] loop2: detected capacity change from 0 to 1024
[   94.003638][ T5019] EXT4-fs: Ignoring removed bh option
[   94.011114][ T5019] EXT4-fs: inline encryption not supported
[   94.019390][ T5019] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   94.036793][ T5019] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   94.054580][ T5019] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.487: lblock 2 mapped to illegal pblock 2 (length 1)
[   94.074680][ T5019] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.487: lblock 0 mapped to illegal pblock 48 (length 1)
[   94.094551][ T5019] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.487: Failed to acquire dquot type 0
[   94.109150][ T5019] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   94.120245][ T5019] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.487: mark_inode_dirty error
[   94.132927][ T5019] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   94.145254][ T5019] EXT4-fs (loop2): 1 orphan inode deleted
[   94.152601][ T5019] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.167835][   T12] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[   94.198606][   T12] EXT4-fs error (device loop2): ext4_release_dquot:6973: comm kworker/u8:0: Failed to release dquot type 0
[   94.218085][ T5019] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.487: lblock 0 mapped to illegal pblock 48 (length 1)
[   94.273519][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.371214][ T5038] netlink: 'syz.5.498': attribute type 1 has an invalid length.
[   94.381124][ T5038] netlink: 224 bytes leftover after parsing attributes in process `syz.5.498'.
[   94.423145][ T5038] loop5: detected capacity change from 0 to 1024
[   94.435360][ T5041] siw: device registration error -23
[   94.471381][ T5038] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.490639][ T5038] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.553827][ T5038] SELinux:  policydb magic number 0x2a93a2b7 does not match expected magic number 0xf97cff8c
[   94.574563][ T5038] SELinux: failed to load policy
[   94.651873][ T3712] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.127443][ T5050] loop4: detected capacity change from 0 to 8192
[   95.243420][ T5065] netlink: 'syz.3.505': attribute type 13 has an invalid length.
[   95.257428][ T5065] netlink: 148 bytes leftover after parsing attributes in process `syz.3.505'.
[   95.337861][ T5071] netlink: 360 bytes leftover after parsing attributes in process `syz.3.505'.
[   95.417602][ T5081] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[   95.422450][ T5083] 9pnet_fd: Insufficient options for proto=fd
[   95.428176][ T5081] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   95.434753][ T5083] 9pnet_fd: Insufficient options for proto=fd
[   95.446599][ T5081] IPv6: NLM_F_CREATE should be set when creating new route
[   95.485230][ T5063] netlink: zone id is out of range
[   95.493040][ T5063] netlink: zone id is out of range
[   95.509882][ T5085] netlink: 12 bytes leftover after parsing attributes in process `syz.2.514'.
[   95.520205][ T5085] netlink: 12 bytes leftover after parsing attributes in process `syz.2.514'.
[   95.542916][ T5088] loop1: detected capacity change from 0 to 512
[   95.552684][ T5088] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   95.563097][ T5088] EXT4-fs (loop1): orphan cleanup on readonly fs
[   95.571620][ T5088] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.515: Failed to acquire dquot type 1
[   95.591349][ T5088] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.515: bg 0: block 40: padding at end of block bitmap is not set
[   95.610181][ T5088] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   95.622652][ T5088] EXT4-fs (loop1): 1 truncate cleaned up
[   95.629766][ T5088] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   95.657397][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.772457][ T5108] netlink: 'syz.4.523': attribute type 13 has an invalid length.
[   95.786517][ T5108] netlink: 148 bytes leftover after parsing attributes in process `syz.4.523'.
[   95.834475][ T5108] netlink: 360 bytes leftover after parsing attributes in process `syz.4.523'.
[   95.886542][ T5115] netlink: 12 bytes leftover after parsing attributes in process `syz.4.526'.
[   95.933703][ T5118] loop4: detected capacity change from 0 to 512
[   95.946269][ T5118] EXT4-fs (loop4): orphan cleanup on readonly fs
[   95.954718][ T5118] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.528: bg 0: block 248: padding at end of block bitmap is not set
[   95.974429][ T5118] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.528: Failed to acquire dquot type 1
[   95.993986][ T5118] EXT4-fs (loop4): 1 truncate cleaned up
[   96.001579][ T5118] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   96.038923][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.283988][ T5124] loop4: detected capacity change from 0 to 128
[   96.309001][ T5124] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   96.317933][ T5137] loop5: detected capacity change from 0 to 512
[   96.333538][ T5124] ext4 filesystem being mounted at /115/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   96.389961][ T5137] EXT4-fs (loop5): orphan cleanup on readonly fs
[   96.400290][ T5137] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.535: bg 0: block 248: padding at end of block bitmap is not set
[   96.430266][ T5137] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.535: Failed to acquire dquot type 1
[   96.467693][ T5147] 9pnet_fd: Insufficient options for proto=fd
[   96.477375][ T5147] 9pnet_fd: Insufficient options for proto=fd
[   96.497542][ T5137] EXT4-fs (loop5): 1 truncate cleaned up
[   96.506534][   T12] nci: nci_rf_intf_activated_ntf_packet: unsupported rf_interface 0xe
[   96.526811][ T5137] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   96.627781][ T3302] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   96.649714][ T3712] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.695637][ T5156] loop2: detected capacity change from 0 to 512
[   96.755766][ T5156] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   96.792570][ T5160] loop4: detected capacity change from 0 to 512
[   96.806672][ T5156] EXT4-fs (loop2): orphan cleanup on readonly fs
[   96.829276][ T5156] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.542: Failed to acquire dquot type 1
[   96.829320][ T5152] loop3: detected capacity change from 0 to 8192
[   96.856478][ T5160] EXT4-fs (loop4): orphan cleanup on readonly fs
[   96.864759][ T5160] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.540: bg 0: block 248: padding at end of block bitmap is not set
[   96.891559][ T5156] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.542: bg 0: block 40: padding at end of block bitmap is not set
[   96.912024][ T5160] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.540: Failed to acquire dquot type 1
[   96.936952][ T5156] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   97.020405][ T5160] EXT4-fs (loop4): 1 truncate cleaned up
[   97.031082][ T5156] EXT4-fs (loop2): 1 truncate cleaned up
[   97.070062][ T5156] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   97.176823][ T5160] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   97.200631][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.241729][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.263371][ T5172] loop3: detected capacity change from 0 to 2048
[   97.283194][ T5172] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   97.292659][ T5175] lo speed is unknown, defaulting to 1000
[   97.330620][ T5180] netlink: 'syz.4.546': attribute type 1 has an invalid length.
[   97.356670][ T5181] lo speed is unknown, defaulting to 1000
[   97.379506][ T5180] loop4: detected capacity change from 0 to 1024
[   97.431426][ T5180] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.489326][ T5180] ext4 filesystem being mounted at /117/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.507787][ T5180] SELinux:  policydb magic number 0x2a93a2b7 does not match expected magic number 0xf97cff8c
[   97.511039][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[   97.526928][ T5180] SELinux: failed to load policy
[   97.559041][ T5188] 9pnet_fd: Insufficient options for proto=fd
[   97.573786][ T5188] 9pnet_fd: Insufficient options for proto=fd
[   97.616033][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.646111][ T5192] siw: device registration error -23
[   97.679874][ T5196] siw: device registration error -23
[   97.811556][   T29] kauditd_printk_skb: 460 callbacks suppressed
[   97.811572][   T29] audit: type=1400 audit(1757132530.739:3669): avc:  denied  { ioctl } for  pid=5208 comm="syz.4.559" path="socket:[10916]" dev="sockfs" ino=10916 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   97.851779][ T5212] tipc: Failed to remove unknown binding: 66,1,1/0:174976463/174976465
[   97.861392][ T5212] tipc: Failed to remove unknown binding: 66,1,1/0:174976463/174976465
[   97.881487][   T29] audit: type=1400 audit(1757132530.779:3670): avc:  denied  { unmount } for  pid=3315 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   97.920415][ T5190] loop5: detected capacity change from 0 to 128
[   97.957334][ T5190] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   98.024003][ T5223] loop1: detected capacity change from 0 to 128
[   98.033383][ T5223] EXT4-fs: test_dummy_encryption option not supported
[   98.057203][   T29] audit: type=1400 audit(1757132530.949:3671): avc:  denied  { create } for  pid=5216 comm="syz.1.561" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   98.080635][   T29] audit: type=1400 audit(1757132530.949:3672): avc:  denied  { setopt } for  pid=5216 comm="syz.1.561" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   98.112601][ T5190] ext4 filesystem being mounted at /84/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   98.443043][ T3450] bridge_slave_1: left allmulticast mode
[   98.450048][ T3450] bridge_slave_1: left promiscuous mode
[   98.456856][ T3450] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.522412][ T3450] bridge_slave_0: left allmulticast mode
[   98.529642][ T3450] bridge_slave_0: left promiscuous mode
[   98.536525][ T3450] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.578577][ T3712] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   98.718725][   T29] audit: type=1400 audit(1757132531.639:3673): avc:  denied  { write } for  pid=5233 comm="syz.3.568" name="netlink" dev="proc" ino=4026532835 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   98.860203][ T3450] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   98.897988][ T3450] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   98.953603][ T3450] bond0 (unregistering): Released all slaves
[   99.145768][ T3450] hsr_slave_0: left promiscuous mode
[   99.165819][ T3450] hsr_slave_1: left promiscuous mode
[   99.214139][ T3450] batman_adv: batadv0: Removing interface: batadv_slave_0
[   99.282430][ T3450] batman_adv: batadv0: Removing interface: batadv_slave_1
[   99.326309][ T5249] hub 2-0:1.0: USB hub found
[   99.360716][ T5249] hub 2-0:1.0: 8 ports detected
[   99.432284][ T3450] team0 (unregistering): Port device team_slave_1 removed
[   99.451707][ T3450] team0 (unregistering): Port device team_slave_0 removed
[   99.629588][   T29] audit: type=1400 audit(1757132532.559:3674): avc:  denied  { accept } for  pid=5254 comm="syz.5.575" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[   99.927577][ T5232] lo speed is unknown, defaulting to 1000
[  100.140198][   T29] audit: type=1400 audit(1757132532.639:3675): avc:  denied  { write } for  pid=5254 comm="syz.5.575" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  100.173946][   T29] audit: type=1400 audit(1757132532.639:3676): avc:  denied  { open } for  pid=5254 comm="syz.5.575" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  100.253130][   T29] audit: type=1400 audit(1757132533.179:3677): avc:  denied  { name_bind } for  pid=5268 comm="syz.3.576" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  100.341771][ T5232] chnl_net:caif_netlink_parms(): no params data found
[  100.354631][ T5272] loop1: detected capacity change from 0 to 128
[  100.376727][ T5272] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  100.413415][ T5272] ext4 filesystem being mounted at /111/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  100.463213][   T29] audit: type=1400 audit(1757132533.389:3678): avc:  denied  { create } for  pid=5271 comm="syz.1.578" name="encrypted_dir" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  100.526545][ T3307] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  100.553976][ T5232] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.562096][ T5232] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.575698][ T5232] bridge_slave_0: entered allmulticast mode
[  100.576428][ T5292] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  100.587174][ T5232] bridge_slave_0: entered promiscuous mode
[  100.600161][ T5292] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  100.602326][ T5232] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.619382][ T5232] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.151535][ T5232] bridge_slave_1: entered allmulticast mode
[  101.159515][ T5232] bridge_slave_1: entered promiscuous mode
[  101.198010][ T5232] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  101.210928][ T5232] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  101.275851][ T5232] team0: Port device team_slave_0 added
[  101.310531][ T5232] team0: Port device team_slave_1 added
[  101.457547][ T5232] batman_adv: batadv0: Adding interface: batadv_slave_0
[  101.465653][ T5232] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  101.498914][ T5232] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  101.572969][ T5364] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  101.583554][ T5364] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.032351][ T5232] batman_adv: batadv0: Adding interface: batadv_slave_1
[  102.040789][ T5232] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.074325][ T5232] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  102.680618][ T5232] hsr_slave_0: entered promiscuous mode
[  102.693653][ T5232] hsr_slave_1: entered promiscuous mode
[  102.730758][ T5232] debugfs: 'hsr0' already exists in 'hsr'
[  102.738070][ T5232] Cannot create hsr debugfs directory
[  102.970414][ T5232] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  102.979801][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  102.979820][   T29] audit: type=1400 audit(1757132535.899:3683): avc:  denied  { bind } for  pid=5394 comm="syz.3.593" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  103.011874][   T29] audit: type=1400 audit(1757132535.919:3684): avc:  denied  { bind } for  pid=5396 comm="syz.3.594" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  103.016555][ T5232] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  103.046908][ T5402] loop3: detected capacity change from 0 to 128
[  103.048067][ T5232] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  103.068399][ T5232] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  103.148561][ T5232] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.174736][ T5232] 8021q: adding VLAN 0 to HW filter on device team0
[  103.190083][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.199686][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.217666][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.226389][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.246100][ T5409] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  103.326159][ T5232] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.478796][ T5232] veth0_vlan: entered promiscuous mode
[  103.490485][ T5232] veth1_vlan: entered promiscuous mode
[  103.517096][ T5232] veth0_macvtap: entered promiscuous mode
[  103.527290][ T5232] veth1_macvtap: entered promiscuous mode
[  103.543229][ T5232] batman_adv: batadv0: Interface activated: batadv_slave_0
[  103.558739][ T5232] batman_adv: batadv0: Interface activated: batadv_slave_1
[  103.574486][   T30] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.585131][   T30] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.600148][   T30] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.611023][   T30] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  103.632970][   T29] audit: type=1400 audit(1757132536.559:3685): avc:  denied  { mount } for  pid=5232 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  103.766721][   T29] audit: type=1400 audit(1757132536.699:3686): avc:  denied  { read write } for  pid=5444 comm="syz.4.601" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  103.795883][   T29] audit: type=1400 audit(1757132536.699:3687): avc:  denied  { open } for  pid=5444 comm="syz.4.601" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  103.839589][ T5450] __nla_validate_parse: 3 callbacks suppressed
[  103.839607][ T5450] netlink: 25 bytes leftover after parsing attributes in process `syz.6.599'.
[  103.878105][   T29] audit: type=1400 audit(1757132536.809:3688): avc:  denied  { mounton } for  pid=5448 comm="syz.5.603" path="/proc/253/task" dev="proc" ino=12450 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  103.958481][   T29] audit: type=1400 audit(1757132536.889:3689): avc:  denied  { unmount } for  pid=3310 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  104.167993][ T5463] loop5: detected capacity change from 0 to 128
[  104.179334][ T5463] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  104.196362][ T5463] ext4 filesystem being mounted at /100/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  104.242157][   T29] audit: type=1400 audit(1757132537.119:3690): avc:  denied  { remount } for  pid=5454 comm="syz.3.605" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  104.352406][   T29] audit: type=1400 audit(1757132537.279:3691): avc:  denied  { bind } for  pid=5469 comm="syz.1.609" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  104.398599][   T29] audit: type=1400 audit(1757132537.309:3692): avc:  denied  { listen } for  pid=5469 comm="syz.1.609" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  104.441993][ T3712] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  105.594244][ T5502] loop1: detected capacity change from 0 to 512
[  105.612723][ T5502] ext4: Unknown parameter 'fsuuid'
[  106.470127][ T5495] lo speed is unknown, defaulting to 1000
[  106.733534][ T5495] chnl_net:caif_netlink_parms(): no params data found
[  106.753228][ T5521] loop1: detected capacity change from 0 to 8192
[  106.769902][ T5521] msdos: Unknown parameter 'fowner>00000000000000000000'
[  107.177659][ T5495] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.186271][ T5495] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.197711][ T5495] bridge_slave_0: entered allmulticast mode
[  107.205362][ T5495] bridge_slave_0: entered promiscuous mode
[  107.215181][ T5495] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.223161][ T5495] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.231341][ T5495] bridge_slave_1: entered allmulticast mode
[  107.238690][ T5495] bridge_slave_1: entered promiscuous mode
[  107.261187][ T5495] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  107.274336][ T5495] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  107.300156][ T5495] team0: Port device team_slave_0 added
[  107.311627][ T5495] team0: Port device team_slave_1 added
[  107.335208][ T5495] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.343322][ T5495] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.376287][ T5495] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.391128][ T5495] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.401049][ T5495] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.437514][ T5495] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.481298][ T5495] hsr_slave_0: entered promiscuous mode
[  107.489579][ T5495] hsr_slave_1: entered promiscuous mode
[  107.498059][ T5495] debugfs: 'hsr0' already exists in 'hsr'
[  107.504656][ T5495] Cannot create hsr debugfs directory
[  107.556180][ T5551] Illegal XDP return value 4294967274 on prog  (id 531) dev N/A, expect packet loss!
[  107.641948][ T5553] loop4: detected capacity change from 0 to 2048
[  107.658221][ T5553] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.672847][ T5553] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.687890][ T5553] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.635: bg 0: block 345: padding at end of block bitmap is not set
[  107.692645][ T5495] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  107.746586][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.761116][ T5495] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  107.774325][ T5495] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  107.789668][ T5495] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  107.861581][ T5495] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.939269][ T5495] 8021q: adding VLAN 0 to HW filter on device team0
[  107.991468][   T30] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.999954][   T30] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.070027][ T5495] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  108.083348][ T5495] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  108.154963][   T30] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.163636][   T30] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.254055][ T5495] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.328042][ T3437] bridge_slave_1: left allmulticast mode
[  108.334718][ T3437] bridge_slave_1: left promiscuous mode
[  108.342141][ T3437] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.352288][ T3437] bridge_slave_0: left allmulticast mode
[  108.359425][ T3437] bridge_slave_0: left promiscuous mode
[  108.365599][ T3437] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.448643][ T3437] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  108.461197][ T3437] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  108.472090][ T3437] bond0 (unregistering): Released all slaves
[  108.488430][ T5569] lo speed is unknown, defaulting to 1000
[  108.617884][ T3437] hsr_slave_0: left promiscuous mode
[  108.624322][ T3437] hsr_slave_1: left promiscuous mode
[  108.632333][ T3437] batman_adv: batadv0: Removing interface: batadv_slave_0
[  108.643131][ T3437] batman_adv: batadv0: Removing interface: batadv_slave_1
[  108.685983][ T3437] team0 (unregistering): Port device team_slave_1 removed
[  108.700107][ T3437] team0 (unregistering): Port device team_slave_0 removed
[  108.797612][ T5495] veth0_vlan: entered promiscuous mode
[  108.811381][ T5611] capability: warning: `syz.3.647' uses 32-bit capabilities (legacy support in use)
[  108.827144][ T5495] veth1_vlan: entered promiscuous mode
[  108.865260][ T5569] chnl_net:caif_netlink_parms(): no params data found
[  108.909545][ T5495] veth0_macvtap: entered promiscuous mode
[  108.928162][ T5495] veth1_macvtap: entered promiscuous mode
[  108.946938][ T5569] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.956013][ T5569] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.964837][ T5569] bridge_slave_0: entered allmulticast mode
[  108.973180][ T5569] bridge_slave_0: entered promiscuous mode
[  108.996665][ T5495] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.008558][ T5495] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.035753][ T5569] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.045101][ T5569] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.054982][ T5569] bridge_slave_1: entered allmulticast mode
[  109.062150][ T5569] bridge_slave_1: entered promiscuous mode
[  109.077478][   T41] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.133033][ T5620] atomic_op ffff888118c7f928 conn xmit_atomic 0000000000000000
[  109.144776][   T36] IPVS: starting estimator thread 0...
[  109.379860][ T5621] IPVS: using max 2400 ests per chain, 120000 per kthread
[  109.422405][   T41] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.504674][   T29] kauditd_printk_skb: 10 callbacks suppressed
[  109.504694][   T29] audit: type=1400 audit(1757132542.429:3703): avc:  denied  { mount } for  pid=5622 comm="syz.4.649" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  109.552099][ T5569] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.584193][   T41] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.599243][ T5569] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.614464][   T41] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.688934][ T5569] team0: Port device team_slave_0 added
[  109.858820][   T29] audit: type=1400 audit(1757132542.789:3704): avc:  denied  { name_connect } for  pid=5630 comm="syz.3.650" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  109.880182][ T5569] team0: Port device team_slave_1 added
[  109.932380][ T5569] batman_adv: batadv0: Adding interface: batadv_slave_0
[  109.941694][ T5569] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.972325][ T5569] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  109.985781][ T5569] batman_adv: batadv0: Adding interface: batadv_slave_1
[  109.994202][ T5569] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.023897][ T5569] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.058552][   T29] audit: type=1400 audit(1757132542.989:3705): avc:  denied  { bind } for  pid=5637 comm="syz.7.653" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  110.131421][   T29] audit: type=1400 audit(1757132543.059:3706): avc:  denied  { unmount } for  pid=3302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  110.142749][ T5569] hsr_slave_0: entered promiscuous mode
[  110.154737][   T29] audit: type=1400 audit(1757132543.059:3707): avc:  denied  { write } for  pid=5637 comm="syz.7.653" path="socket:[12146]" dev="sockfs" ino=12146 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  110.189926][   T29] audit: type=1400 audit(1757132543.099:3708): avc:  denied  { read } for  pid=5637 comm="syz.7.653" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  110.200687][ T5569] hsr_slave_1: entered promiscuous mode
[  110.254225][ T5569] debugfs: 'hsr0' already exists in 'hsr'
[  110.261491][ T5569] Cannot create hsr debugfs directory
[  110.423385][   T12] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.569593][ T5569] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  110.603626][ T5569] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  110.679426][   T12] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.768086][   T29] audit: type=1400 audit(1757132543.699:3709): avc:  denied  { wake_alarm } for  pid=5658 comm="syz.3.657" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  110.830082][ T5569] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  110.863634][   T12] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.955590][ T5569] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  111.002196][   T12] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.151245][ T5655] lo speed is unknown, defaulting to 1000
[  111.176442][ T5569] 8021q: adding VLAN 0 to HW filter on device bond0
[  111.295547][ T5569] 8021q: adding VLAN 0 to HW filter on device team0
[  111.338998][   T12] bridge_slave_1: left allmulticast mode
[  111.346026][   T12] bridge_slave_1: left promiscuous mode
[  111.352982][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.382071][   T12] bridge_slave_0: left allmulticast mode
[  111.388802][   T12] bridge_slave_0: left promiscuous mode
[  111.395701][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.529425][ T5687] loop7: detected capacity change from 0 to 1024
[  111.540066][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  111.550488][ T5687] EXT4-fs: Ignoring removed oldalloc option
[  111.557582][ T5687] EXT4-fs: Ignoring removed bh option
[  111.565572][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  111.578770][   T12] bond0 (unregistering): Released all slaves
[  111.588401][ T5687] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.620989][ T3450] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.631368][ T3450] bridge0: port 1(bridge_slave_0) entered forwarding state
[  111.683280][ T3450] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.691897][ T3450] bridge0: port 2(bridge_slave_1) entered forwarding state
[  111.735631][   T12] hsr_slave_0: left promiscuous mode
[  111.748566][   T12] hsr_slave_1: left promiscuous mode
[  111.766456][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  111.774708][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  111.798846][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  111.807383][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  111.834087][   T12] veth1_macvtap: left promiscuous mode
[  111.848650][   T12] veth0_macvtap: left promiscuous mode
[  111.861131][   T12] veth1_vlan: left promiscuous mode
[  111.873958][   T12] veth0_vlan: left promiscuous mode
[  112.002985][ T5687] ==================================================================
[  112.012474][ T5687] BUG: KCSAN: data-race in xas_find_marked / xas_set_mark
[  112.022156][ T5687] 
[  112.025228][ T5687] write to 0xffff8881194b60f4 of 4 bytes by task 5693 on cpu 0:
[  112.033716][ T5687]  xas_set_mark+0x12b/0x140
[  112.038637][ T5687]  __folio_start_writeback+0x1dd/0x440
[  112.045654][ T5687]  ext4_bio_write_folio+0x5ad/0x9f0
[  112.051445][ T5687]  mpage_process_page_bufs+0x4a1/0x620
[  112.057132][ T5687]  mpage_prepare_extent_to_map+0x786/0xc00
[  112.064036][ T5687]  ext4_do_writepages+0x708/0x2750
[  112.070742][ T5687]  ext4_writepages+0x176/0x300
[  112.076175][ T5687]  do_writepages+0x1c6/0x310
[  112.081873][ T5687]  file_write_and_wait_range+0x156/0x2c0
[  112.088184][ T5687]  generic_buffers_fsync_noflush+0x45/0x120
[  112.095138][ T5687]  ext4_sync_file+0x1ab/0x690
[  112.101261][ T5687]  vfs_fsync_range+0x10d/0x130
[  112.106624][ T5687]  ext4_buffered_write_iter+0x34f/0x3c0
[  112.113360][ T5687]  ext4_file_write_iter+0x383/0xf00
[  112.119186][ T5687]  iter_file_splice_write+0x663/0xa60
[  112.126310][ T5687]  direct_splice_actor+0x153/0x2a0
[  112.131925][ T5687]  splice_direct_to_actor+0x30f/0x680
[  112.138392][ T5687]  do_splice_direct+0xda/0x150
[  112.143803][ T5687]  do_sendfile+0x380/0x650
[  112.148890][ T5687]  __x64_sys_sendfile64+0x105/0x150
[  112.154975][ T5687]  x64_sys_call+0x2bb0/0x2ff0
[  112.160416][ T5687]  do_syscall_64+0xd2/0x200
[  112.166125][ T5687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.173915][ T5687] 
[  112.176547][ T5687] read to 0xffff8881194b60f4 of 4 bytes by task 5687 on cpu 1:
[  112.185300][ T5687]  xas_find_marked+0x5dc/0x620
[  112.191013][ T5687]  find_get_entry+0x5d/0x380
[  112.196360][ T5687]  filemap_get_folios_tag+0x92/0x210
[  112.202666][ T5687]  mpage_prepare_extent_to_map+0x320/0xc00
[  112.209826][ T5687]  ext4_do_writepages+0x708/0x2750
[  112.215364][ T5687]  ext4_writepages+0x176/0x300
[  112.220797][ T5687]  do_writepages+0x1c6/0x310
[  112.227802][ T5687]  file_write_and_wait_range+0x156/0x2c0
[  112.235090][ T5687]  generic_buffers_fsync_noflush+0x45/0x120
[  112.241849][ T5687]  ext4_sync_file+0x1ab/0x690
[  112.247266][ T5687]  vfs_fsync_range+0x10d/0x130
[  112.253230][ T5687]  ext4_buffered_write_iter+0x34f/0x3c0
[  112.259535][ T5687]  ext4_file_write_iter+0x383/0xf00
[  112.265156][ T5687]  iter_file_splice_write+0x663/0xa60
[  112.271559][ T5687]  direct_splice_actor+0x153/0x2a0
[  112.277159][ T5687]  splice_direct_to_actor+0x30f/0x680
[  112.282925][ T5687]  do_splice_direct+0xda/0x150
[  112.288913][ T5687]  do_sendfile+0x380/0x650
[  112.294083][ T5687]  __x64_sys_sendfile64+0x105/0x150
[  112.299946][ T5687]  x64_sys_call+0x2bb0/0x2ff0
[  112.305419][ T5687]  do_syscall_64+0xd2/0x200
[  112.310660][ T5687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.317788][ T5687] 
[  112.320228][ T5687] value changed: 0x0a000021 -> 0x04000021
[  112.327330][ T5687] 
[  112.329861][ T5687] Reported by Kernel Concurrency Sanitizer on:
[  112.337675][ T5687] CPU: 1 UID: 0 PID: 5687 Comm: syz.7.664 Not tainted syzkaller #0 PREEMPT(voluntary) 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  112.348564][ T5687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  112.361727][ T5687] ==================================================================
[  112.392778][   T29] audit: type=1400 audit(1757132545.309:3710): avc:  denied  { write } for  pid=3292 comm="syz-executor" path="pipe:[1627]" dev="pipefs" ino=1627 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  112.442709][   T12] team0 (unregistering): Port device team_slave_1 removed
[  112.485236][ T5687] syz.7.664 (5687) used greatest stack depth: 9080 bytes left
[  112.495069][   T12] team0 (unregistering): Port device team_slave_0 removed
[  112.952986][ T5686] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.981644][   T12] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.019989][   T12] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.068818][   T12] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.149392][   T12] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.892749][   T12] bridge_slave_1: left allmulticast mode
[  113.900291][   T12] bridge_slave_1: left promiscuous mode
[  113.906614][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.918645][   T12] bridge_slave_0: left allmulticast mode
[  113.927099][   T12] bridge_slave_0: left promiscuous mode
[  113.934402][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.945441][   T12] dummy0: left allmulticast mode
[  113.951512][   T12] bridge0: port 3(dummy0) entered disabled state
[  113.961897][   T12] bridge_slave_1: left allmulticast mode
[  113.968839][   T12] bridge_slave_1: left promiscuous mode
[  113.976336][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.986116][   T12] bridge_slave_0: left allmulticast mode
[  113.992646][   T12] bridge_slave_0: left promiscuous mode
[  114.000053][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.011170][   T12] bridge_slave_1: left allmulticast mode
[  114.019057][   T12] bridge_slave_1: left promiscuous mode
[  114.026385][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.036609][   T12] bridge_slave_0: left allmulticast mode
[  114.045914][   T12] bridge_slave_0: left promiscuous mode
[  114.052908][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.064681][   T12] bridge_slave_1: left allmulticast mode
[  114.071927][   T12] bridge_slave_1: left promiscuous mode
[  114.078687][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.090970][   T12] bridge_slave_0: left allmulticast mode
[  114.098195][   T12] bridge_slave_0: left promiscuous mode
[  114.106129][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.219300][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  114.232012][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  114.244414][   T12] bond0 (unregistering): Released all slaves
[  114.347985][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  114.359974][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  114.371596][   T12] bond0 (unregistering): Released all slaves
[  114.458673][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  114.472686][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  114.484775][   T12] bond0 (unregistering): Released all slaves
[  114.547981][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  114.559891][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  114.571647][   T12] bond0 (unregistering): Released all slaves
[  114.720867][   T12] hsr_slave_0: left promiscuous mode
[  114.727698][   T12] hsr_slave_1: left promiscuous mode
[  114.734584][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  114.743563][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  114.752786][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  114.762567][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  114.773892][   T12] hsr_slave_0: left promiscuous mode
[  114.781592][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  114.790715][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  114.800928][   T12] hsr_slave_0: left promiscuous mode
[  114.807984][   T12] hsr_slave_1: left promiscuous mode
[  114.814062][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  114.822956][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  114.833630][   T12] hsr_slave_0: left promiscuous mode
[  114.839950][   T12] hsr_slave_1: left promiscuous mode
[  114.846474][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  114.854771][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  114.867440][   T12] veth1_macvtap: left promiscuous mode
[  114.873762][   T12] veth0_macvtap: left promiscuous mode
[  114.880200][   T12] veth1_vlan: left promiscuous mode
[  114.886121][   T12] veth0_vlan: left promiscuous mode
[  114.963509][   T12] team0 (unregistering): Port device team_slave_1 removed
[  114.974139][   T12] team0 (unregistering): Port device team_slave_0 removed
[  115.039143][   T12] team0 (unregistering): Port device team_slave_1 removed
[  115.050115][   T12] team0 (unregistering): Port device team_slave_0 removed
[  115.107593][   T12] team0 (unregistering): Port device team_slave_1 removed
[  115.119367][   T12] team0 (unregistering): Port device team_slave_0 removed
[  115.183422][   T12] team0 (unregistering): Port device team_slave_1 removed
[  115.193816][   T12] team0 (unregistering): Port device team_slave_0 removed
[  116.032483][   T12] IPVS: stop unused estimator thread 0...