last executing test programs:

10m25.784439499s ago: executing program 2 (id=1377):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\t\x00\x00\x00'], 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='maps\x00')
sendmsg$tipc(r0, &(0x7f0000000580)={&(0x7f0000000200)=@id={0x1e, 0x3, 0x0, {0x4e20, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x44}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00'}, 0x10)
pipe2$9p(&(0x7f0000000240), 0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000580)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000000}}, {@noauto_da_alloc}, {@dioread_nolock}, {@usrquota}, {@nobarrier}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xba6, &(0x7f0000000c00)="$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")
pipe(0x0)
mkdir(0x0, 0x10)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r1, 0x0)
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000680)=@raw={'raw\x00', 0x8, 0x3, 0x308, 0x0, 0xb, 0xd0e0011, 0x120, 0xc6, 0x270, 0x1d8, 0x190, 0x270, 0x1d8, 0x3, 0x0, {[{{@ip={@rand_addr, @broadcast, 0x0, 0x0, 'nr0\x00', '\x00', {}, {}, 0x1}, 0x0, 0xd8, 0x120, 0x2000000, {}, [@common=@icmp={{0x28}, {0x0, "0010"}}, @common=@unspec=@connlimit={{0x40}, {[0x0, 0x0, 0xffffffff]}}]}, @unspec=@CT0={0x48}}, {{@ip={@remote, @multicast1, 0x0, 0x0, 'bridge_slave_1\x00', 'virt_wifi0\x00'}, 0x0, 0xe8, 0x150, 0x0, {}, [@common=@inet=@multiport={{0x50}, {0x1, 0x8, [0x4e22, 0x4e23, 0x4e23, 0x4e23, 0x4e23, 0x4e22, 0x4e24, 0x4e22, 0x4e23, 0x4e22, 0x4e24, 0x4e23, 0x4e23, 0x4e23, 0x4e22], [0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1]}}, @inet=@rpfilter={{0x28}, {0x6}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x20000, 'syz1\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x368)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
connect$unix(r1, 0x0, 0x0)
sched_setscheduler(0x0, 0x6, &(0x7f0000000740)=0xfffffff7)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
getrandom(&(0x7f0000000600)=""/274, 0xffffff4f, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)

10m25.010454041s ago: executing program 2 (id=1382):
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x97, 0x34, 0xf5, 0x10, 0x69a, 0x821, 0xde11, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x3, 0x0, 0x0, [{{0x9, 0x4, 0x1f, 0x0, 0x0, 0xb3, 0x72, 0x42}}]}}]}}, 0x0)

10m23.194426619s ago: executing program 2 (id=1385):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000580)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000000}}, {@noauto_da_alloc}, {@dioread_nolock}, {@test_dummy_encryption}, {@nobarrier}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x3, 0xba6, &(0x7f0000000c00)="$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")
chdir(&(0x7f0000000040)='./file0\x00')
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0x0, 0x0, &(0x7f00000007c0))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./bus/file0\x00')

10m23.09458621s ago: executing program 2 (id=1386):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1000e, &(0x7f0000000300), 0x3, 0x445, &(0x7f0000000b00)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
linkat(r0, &(0x7f0000000180)='./file1\x00', r0, &(0x7f00000001c0)='./file3\x00', 0x400)

10m22.926249323s ago: executing program 2 (id=1387):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000340)={[{@minixdf}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
mkdir(&(0x7f0000000080)='./bus\x00', 0x0)
r0 = open(&(0x7f0000000980)='./bus\x00', 0x30000, 0x1b0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @adiantum, 0x0, @desc3})
chdir(&(0x7f0000000300)='./bus\x00')
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x48140, 0x0)

10m22.902359253s ago: executing program 2 (id=1388):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x597, &(0x7f0000000b80)="$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")
syz_mount_image$ext4(&(0x7f00000000c0)='ext3\x00', &(0x7f0000000380)='./file0\x00', 0x10e, &(0x7f0000000140)={[{@inlinecrypt}, {@nodelalloc}, {@jqfmt_vfsold}, {@bh}, {@block_validity}, {@debug}]}, 0xb, 0x46e, &(0x7f0000000680)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x1304c24, &(0x7f0000000140)='usrjquota=')

10m22.884020824s ago: executing program 32 (id=1388):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x597, &(0x7f0000000b80)="$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")
syz_mount_image$ext4(&(0x7f00000000c0)='ext3\x00', &(0x7f0000000380)='./file0\x00', 0x10e, &(0x7f0000000140)={[{@inlinecrypt}, {@nodelalloc}, {@jqfmt_vfsold}, {@bh}, {@block_validity}, {@debug}]}, 0xb, 0x46e, &(0x7f0000000680)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x1304c24, &(0x7f0000000140)='usrjquota=')

2.952628129s ago: executing program 4 (id=8433):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x64, 0x52b, &(0x7f0000000f40)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r1 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000440)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

2.106284701s ago: executing program 4 (id=8444):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000006c0)={0xa4, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_DST={0x10, 0xd, 0x0, 0x1, [@CTA_NAT_PROTO={0x4, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6}]}]}]}, 0xa4}}, 0x0)

2.075044952s ago: executing program 4 (id=8445):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvmsg(r2, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r3, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

1.142396175s ago: executing program 4 (id=8467):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
mkdir(0x0, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x1)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)

943.275077ms ago: executing program 0 (id=8476):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000021c0)=@delchain={0x730, 0x65, 0x2, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0x6}}, [@filter_kind_options=@f_bpf={{0x8}, {0x6f4, 0x2, [@TCA_BPF_FLAGS={0x8, 0x8, 0x1}, @TCA_BPF_FLAGS={0x8, 0x8, 0x1}, @TCA_BPF_ACT={0x610, 0x1, [@m_skbedit={0x40, 0x4, 0x0, 0x0, {{0xc}, {0x14, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0xe}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x8, 0x9}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x4c, 0x17, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_IFE_METALST={0x18, 0x6, [@IFE_META_PRIO={0x8, 0x3, @val=0x3}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x8, 0x3, @val=0x8}]}, @TCA_IFE_TYPE={0x6, 0x5, 0xff}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_tunnel_key={0xe8, 0x15, 0x0, 0x0, {{0xf}, {0x30, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x3, 0x5, 0x7, 0xfffffff9, 0x8}, 0x2}}, @TCA_TUNNEL_KEY_NO_CSUM={0x5, 0xa, 0x1}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @empty}]}, {0x89, 0x6, "8a04812913092c8213a2dbb7717e3280eb4455e9a6c790eb632127395961b24277cbe961824d8dffa6254aaaef00817a0d7c6e408ce00ef6528fb785fa4acd83370830456557acac32724622392d150dfa6158a33a0f61e334fef1bfeb24901c557e139ff68291d499706c8298f58b4f430682a21a3291c0db76100fb368643d615cd1cb98"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_gact={0x10c, 0x1b, 0x0, 0x0, {{0x9}, {0x88, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0xffffff54, 0x7, 0xb, 0xbd12, 0x7}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x20e7, 0x7}}, @TCA_GACT_PARMS={0x18, 0x2, {0x1, 0x1f, 0x3, 0x303, 0x1}}, @TCA_GACT_PARMS={0x18, 0x2, {0xfff, 0x4, 0x8, 0x2, 0x1}}, @TCA_GACT_PARMS={0x18, 0x2, {0x3, 0x9, 0x2, 0xd06b, 0x81}}, @TCA_GACT_PARMS={0x18, 0x2, {0x7, 0x459e4a61, 0x3, 0x9, 0x8000}}]}, {0x59, 0x6, "774c1105510fde420370530ab2bd47477b518cf11199fb04f96f6f9d1250e1f4a45661f7f014b4728a42010a53b91cada6bc7a4248fdd2ec7108feeaf9b4ee42600043fe0b1fcb6ca546038fef209edc3e89e0b94b"}, {0xc}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x130, 0x11, 0x0, 0x0, {{0x8}, {0x9c, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x9, 0x3, 0x10000000, 0x6, 0x4}}}, @TCA_IFE_DMAC={0xa, 0x3, @multicast}, @TCA_IFE_METALST={0xc, 0x6, [@IFE_META_PRIO={0x8, 0x3, @val=0x101}]}, @TCA_IFE_SMAC={0xa, 0x4, @broadcast}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x80, 0x1, 0x9, 0xfffffffd}, 0x1}}, @TCA_IFE_METALST={0x20, 0x6, [@IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x8, 0x3, @val=0x2}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x6}]}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x7fff, 0x7, 0x5, 0x9, 0xffffffff}, 0x1}}]}, {0x6d, 0x6, "2070da558b924112a16d87d7d7c36b6531ad8fa6ee1e1aa875903e0576cfb5d8e00c69defc36429c91ac9346a30836fcf42eb89c8bb6ce510d4bc4e41d556ac48bbb21ddeea9c5f47441b07ba5c66168b8934b6f21d6409064c09c9801014484b595fba42c93c1d29f"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_tunnel_key={0xf0, 0x20, 0x0, 0x0, {{0xf}, {0x50, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @loopback}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x1}, @TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x800, 0x0, 0x4, 0x7fff, 0x5}, 0x2}}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @private0}]}, {0x71, 0x6, "acbe704a3ff9a7fd5cfa371c5c6ec0b54ccb0cff90a000c0b0058d259d1fe5e4ddbfc19eb783ed8d1fcb930ff3bf98bdeb5bdca12054a5dedae28a81b2adacfe1c9800b716ac6f00aea2892097cd8563cad6ed4bf60e1bee9451f6c152a99beb33ded4b4a03d7f53c2ce160958"}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_connmark={0x16c, 0xc, 0x0, 0x0, {{0xd}, {0xac, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x7, 0x3, 0x6, 0x2, 0x5}, 0x78f}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x24, 0x631, 0x1bf458d95fbea47, 0xfffffe01, 0x5}, 0xfac5}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x1, 0x0, 0x6, 0x3, 0x8}, 0xffff}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x1ff, 0x10000000, 0x80000000, 0x101}, 0x1ff}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x5, 0x2, 0x3, 0x1ff}, 0xd}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x9, 0x54502cee, 0x6, 0x9, 0x1}, 0x3}}]}, {0x91, 0x6, "486b2e426638c9779bc5122073ed9451802ac8e04148f71d0c69ffe8f25f7875fa18add49d0b4a4315f0967427bed0aa785e5597bdfd9c819e3d7d062c5aceb43ebe141562de0b3bb6244dcc001068eabf3dc28e5a16cf1424f0e61ecddc9c36f6c02a07ade040e4344175fa89e57a68e469234cc44455b67135261ce970a8a6f307a71c223658dbd5e43204ce"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}, @TCA_BPF_ACT={0xd0, 0x1, [@m_sample={0xcc, 0x10, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x5}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x7}, @TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x200}]}, {0x85, 0x6, "9200fd45cfbfaf345fb3a8a997749fefa053a1e631f289e2733a34bfda3a1983d7027974d46e922209e9f418398e634151458aec78c3e590819e1ab74e5f08ce9f128c78176c6afb718af7f892cc43aa236ae8553e2bcb9475712e849a72c8618a556ea37252caba7ed994f095c56da51cd5d78c3a9aeb9b782ad180c98a44e209"}, {0xc}, {0xc, 0x8, {0x3}}}}]}]}}, @filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x730}, 0x1, 0x0, 0x0, 0x81}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)=@newtfilter={0x88, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xfffa}, {}, {0xffe0, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x58, 0x2, [@TCA_FLOWER_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xffffffc7, 0x0, 0x2, 0x3, 0x951}, 0xd495}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x88}}, 0x24000000)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000580)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000540)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x200400d0}, 0x40)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

943.039117ms ago: executing program 0 (id=8477):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010400000000000000000100000008000240000000020900010073797a300000000014000000110001"], 0x50}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000009006000000000000000000000a44000000090a050600000000000000000100000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001405000d404600000014000000110001"], 0x6c}}, 0x0)

942.902328ms ago: executing program 0 (id=8478):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x0, &(0x7f0000000240)={0xa0, 0x0, 0xfffc, 0x35e}, 0x8, 0x7, 0x80, 0x0, 0x1, 0x101, 0x0})

942.087657ms ago: executing program 0 (id=8479):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf35d5affae69a39a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000020000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f00000008c0)={<r1=>0xffffffffffffffff})
read(r1, &(0x7f0000032440)=""/102364, 0x18fdc)

338.158486ms ago: executing program 1 (id=8502):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc2001}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002080)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
timer_getoverrun(0x0)

317.051846ms ago: executing program 3 (id=8504):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000004cc0)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000380)="a1", 0x1}], 0x1, &(0x7f0000000a40)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r2, @ANYBLOB="0000000014"], 0x30, 0x40400d1}}], 0x1, 0x10)
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r2, 0x0, r4, 0x0, 0x400000, 0x3)

283.400867ms ago: executing program 3 (id=8505):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000002000000e27f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="021380ee02"], 0x10}}, 0x8000)
r2 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r2, &(0x7f0000000180), 0x32bc45944b084a6, 0x0)

282.128547ms ago: executing program 1 (id=8506):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x101040)
readv(r0, &(0x7f0000000600)=[{0x0}], 0x1)
ioctl$EVIOCGABS20(r0, 0x40044591, 0x0)

253.828007ms ago: executing program 1 (id=8507):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f0000000080), 0x0, 0x553, &(0x7f0000001080)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000010000000000f400040000000000000020"], 0x1c, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x12e)

251.978067ms ago: executing program 4 (id=8508):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000540)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r0}, 0x18)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
flistxattr(r1, 0x0, 0x0)

222.037568ms ago: executing program 3 (id=8509):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000280)='veth1_virt_wifi\x00', 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001100)=ANY=[@ANYBLOB="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"/849], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x4)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x28}, 0x1c)
connect$pppl2tp(r2, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
writev(r2, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x0, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket(0xa, 0x2, 0x0)
signalfd4(0xffffffffffffffff, &(0x7f00000000c0)={[0x3]}, 0x8, 0x80800)

221.887417ms ago: executing program 4 (id=8510):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(r0, &(0x7f00000057c0)=[{{0x0, 0x0, 0x0}, 0x3}, {{0x0, 0x0, 0x0}, 0xa1}], 0x2, 0x0, 0x0)

171.494728ms ago: executing program 5 (id=8512):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0xe)
lgetxattr(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0)

170.421548ms ago: executing program 5 (id=8513):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000000))

139.601129ms ago: executing program 5 (id=8514):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, {0x1}, {0x0, 0x0, 0x1}}, {{@in, 0x0, 0x6c}, 0x0, @in=@dev={0xac, 0x14, 0x14, 0x2b}, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0xe8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000300)={@local, @random="00e300", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x4, 0x1, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x100, @rand_addr=0x64010102, @rand_addr=0x64010101}}}}}}, 0x0)

137.891349ms ago: executing program 1 (id=8515):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000970000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_enter\x00', r0}, 0x10)
tgkill(0x0, 0x0, 0x15)

127.580159ms ago: executing program 3 (id=8516):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x9, 0x3, 0x8, 0x4, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffffc}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r3)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01400000000000000000067400062c00070073797352656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a733000080002000000e6ff07000700263a3a0914000600626f6e64300000000000000000000000080003"], 0x78}, 0x1, 0xffffffff00000003}, 0x0)

126.448709ms ago: executing program 5 (id=8517):
prctl$PR_SET_NAME(0xf, &(0x7f00000003c0)='&\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a044300040018000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f)

106.535289ms ago: executing program 1 (id=8518):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000300)={r0, 0x0, &(0x7f0000000200)=""/32}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./control\x00', 0x0, 0x2000, 0x0)

77.258629ms ago: executing program 3 (id=8519):
pipe2$9p(0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000800850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x66, &(0x7f00000004c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb86dd60003a0400303afffe8000000000000000000000000000bbff020000000000000000000000000001"], 0x0)

76.071179ms ago: executing program 0 (id=8520):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd')
pipe2(&(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r3 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000000)={0xf6c447fee59251f4})
close_range(r1, r2, 0x0)

38.9294ms ago: executing program 3 (id=8521):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000001c0)='./file0\x00', 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1, 0x120b, &(0x7f0000002300)="$eJzs3M9rXFUUB/CTNv1hajJRa7UF6UE3unk2WbhyEyQF6YDSNoVWEF7NRIeZzIS8ITBFbHdu/TvEpTtB/AeyceNacJeNyy7EJ84LtglxEcFOWz6fzRzm3i9zH28YeJd7Zu/9bzZ7G1WxUY7ixMxMzG5F5MOMjBNxMhoP4p1bv/z6xo3bd66ttNur1zOvrtxcei8zFy7/+MmX37350+jcre8XfjgTu4uf7v2+/Nvuhd2Le3/e/KJbZbfKwXCUZd4dDkfl3X4n17tVr8j8uN8pq052B1Vn+8D4Rn+4tTXOcrA+P7e13amqLAfj7HXGORrmaHuc5edld5BFUeT8XPDfnY61bx/WdR1R16fidNR1Xb8Qc3EuXoz5WIhWLMZL8XK8Eufj1bgQr8XrcXEya9orBwAAAAAAAAAAAAAAAAAAgOeL/n8AAAAAAAAAAAAAAAAAAACYPv3/AAAAAAAAAAAAAAAAAAAAMH36/wEAAAAAAAAAAAAAAAAAAGD6bty+c22l3V69nnk2YvPrnbWdtea1GV/ZiG70oxNXohV/xKT7v9HUVz9sr17JicV4d/P+fv7+ztrJg/mlyd8JHJlfavJ5MH8m5h7PL0crzh+dXz4yfzbefuuxfBGt+PmzGEY/1uPv7KP8V0uZH3zUPpS/NJkHAAAAz4Mi/3Hk83tR5MxMM/XQePPmv+8P1K1D+wOHnq9n49LsFC+ciWp8r1f2+53tZ6vY/0rGvV55+WlYj+IYxf69e/C0rOcZLU5FxP/4EVP8UeKJeXTTp70SAAAAAAAAAAAAjuMYBwNnm/O2xz9OOO1rBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP5iB44FAAAAAIT5W6fRsQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFcFAAD//78558w=")
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000001300)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

37.68426ms ago: executing program 1 (id=8522):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000006740)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@jqfmt_vfsold}, {@resgid}, {@data_err_ignore}, {@jqfmt_vfsv0}, {@nobh}, {@user_xattr}, {@nobarrier}, {@jqfmt_vfsold}, {@nojournal_checksum}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r0, 0x0, 0x0, 0x8000c62)
openat$tun(0xffffffffffffff9c, 0x0, 0x302, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x40)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x147042, 0x9c)
r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x1a5c42, 0xd)
sendfile(r2, r3, 0x0, 0x80000000)

1.1572ms ago: executing program 0 (id=8523):
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
r1 = epoll_create(0x5)
poll(&(0x7f0000000000)=[{r0, 0x8000}, {0xffffffffffffffff, 0x80}, {r0, 0x602}, {r0, 0x88}], 0x4, 0x884a)
socket$packet(0x11, 0x3, 0x300)
epoll_create1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x800)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
r5 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x19})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r6, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000780)={0x2c, 0x4, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc080}, 0xe821651e0a1b45fc)

1.04144ms ago: executing program 5 (id=8524):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0xe)
lgetxattr(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0)

0s ago: executing program 5 (id=8525):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0x6}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x655c, 0x2, 0x1ffffffe, 0x9, 0x800}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x0)

kernel console output (not intermixed with test programs):

vice pim6reg1 entered promiscuous mode
[  952.611945][T16434] device pim6reg1 entered promiscuous mode
[  952.618985][T16435] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5286'.
[  952.649700][T16435] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5286'.
[  952.772441][T16445] device pim6reg1 entered promiscuous mode
[  952.865796][T16448] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  952.881341][T16448] netlink: 'syz.0.5295': attribute type 27 has an invalid length.
[  952.902154][T16452] device pim6reg1 entered promiscuous mode
[  952.962447][T16460] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5300'.
[  952.979581][T16460] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5300'.
[  953.097766][T16475] device pim6reg1 entered promiscuous mode
[  953.213843][T16485] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5312'.
[  953.224958][T16479] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  953.244801][T16485] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5312'.
[  953.327343][T16479] netlink: 'syz.3.5309': attribute type 27 has an invalid length.
[  953.814729][T16518] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5326'.
[  953.830543][T16518] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5326'.
[  953.951878][T16534] device pim6reg1 entered promiscuous mode
[  954.002400][T16535] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  954.015121][T16535] netlink: 'syz.4.5329': attribute type 27 has an invalid length.
[  955.166873][T16603] device pim6reg1 entered promiscuous mode
[  955.196457][T16599] device pim6reg1 entered promiscuous mode
[  955.963121][T16639] device pim6reg1 entered promiscuous mode
[  957.195364][T16705] device pim6reg1 entered promiscuous mode
[  957.650906][T16725] overlayfs: missing 'lowerdir'
[  957.937927][T16746] EXT4-fs (loop4): Ignoring removed orlov option
[  958.239037][T16746] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[  958.955133][T16790] device syzkaller0 entered promiscuous mode
[  959.731322][T16815] device pim6reg1 entered promiscuous mode
[  961.514401][T16855] device pim6reg1 entered promiscuous mode
[  961.619707][T16869] device pim6reg1 entered promiscuous mode
[  961.630840][T16865] device pim6reg1 entered promiscuous mode
[  962.737770][T16893] device pim6reg1 entered promiscuous mode
[  962.835001][T16907] device pim6reg1 entered promiscuous mode
[  963.642886][T16940] device pim6reg1 entered promiscuous mode
[  964.190722][T16948] device pim6reg1 entered promiscuous mode
[  964.271607][T16960] device pim6reg1 entered promiscuous mode
[  965.462345][T16968] device pim6reg1 entered promiscuous mode
[  965.550692][T16983] device pim6reg1 entered promiscuous mode
[  965.567106][T16985] device pim6reg1 entered promiscuous mode
[  965.923689][T16995] device pim6reg1 entered promiscuous mode
[  966.722591][T17018] device pim6reg1 entered promiscuous mode
[  967.099421][T17027] device pim6reg1 entered promiscuous mode
[  967.110320][T17029] device pim6reg1 entered promiscuous mode
[  967.301959][T17053] device pim6reg1 entered promiscuous mode
[  967.340098][T17050] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  967.353627][T17050] netlink: 'syz.4.5543': attribute type 27 has an invalid length.
[  967.456743][T17064] device pim6reg1 entered promiscuous mode
[  967.524209][T17068] device pim6reg1 entered promiscuous mode
[  967.534318][T17070] device veth1_macvtap left promiscuous mode
[  967.541458][T17070] device macsec0 entered promiscuous mode
[  967.621441][T17080] device pim6reg1 entered promiscuous mode
[  968.168836][T17099] device veth1_macvtap left promiscuous mode
[  968.175305][T17099] device macsec0 entered promiscuous mode
[  968.439887][T17102] device pim6reg1 entered promiscuous mode
[  968.718221][T17123] device pim6reg1 entered promiscuous mode
[  968.760208][T17126] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  968.772113][T17126] netlink: 'syz.1.5576': attribute type 27 has an invalid length.
[  969.044190][T17149] device pim6reg1 entered promiscuous mode
[  970.122893][T17194] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  970.164938][T17194] netlink: 'syz.5.5606': attribute type 27 has an invalid length.
[  970.465164][T17212] device pim6reg1 entered promiscuous mode
[  971.304013][T17237] device pim6reg1 entered promiscuous mode
[  971.418603][T17242] device pim6reg1 entered promiscuous mode
[  971.611414][T17249] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  971.642669][T17249] netlink: 'syz.3.5630': attribute type 27 has an invalid length.
[  972.772660][T17277] device pim6reg1 entered promiscuous mode
[  972.843615][T17286] device pim6reg1 entered promiscuous mode
[  972.879616][T17288] device pim6reg1 entered promiscuous mode
[  973.184422][T17299] overlayfs: failed to resolve './file2': -2
[  974.110852][T17320] device pim6reg1 entered promiscuous mode
[  974.447889][T17337] device pim6reg1 entered promiscuous mode
[  974.727090][T17352] device pim6reg1 entered promiscuous mode
[  974.789726][    T9] Bluetooth: hci0: Frame reassembly failed (-84)
[  975.265004][T17374] device pim6reg1 entered promiscuous mode
[  975.461636][T17382] device syzkaller0 entered promiscuous mode
[  975.644656][T17392] device pim6reg1 entered promiscuous mode
[  976.654137][T17428] device pim6reg1 entered promiscuous mode
[  976.814041][ T9425] Bluetooth: hci0: command 0x1003 tx timeout
[  976.831895][  T775] Bluetooth: hci0: sending frame failed (-49)
[  977.256845][T17449] device syzkaller0 entered promiscuous mode
[  978.500003][T17497] device pim6reg1 entered promiscuous mode
[  978.894069][   T52] Bluetooth: hci0: command 0x1001 tx timeout
[  978.901058][  T775] Bluetooth: hci0: sending frame failed (-49)
[  979.231973][T17521] device pim6reg1 entered promiscuous mode
[  980.198177][T17551] device pim6reg1 entered promiscuous mode
[  980.359535][T17559] device pim6reg1 entered promiscuous mode
[  980.974076][   T52] Bluetooth: hci0: command 0x1009 tx timeout
[  981.042330][T17584] device pim6reg1 entered promiscuous mode
[  982.511225][T17617] device pim6reg1 entered promiscuous mode
[  982.685895][T17625] device syzkaller0 entered promiscuous mode
[  984.144162][T17663] device pim6reg1 entered promiscuous mode
[  984.320581][  T289] attempt to access beyond end of device
[  984.320581][  T289] loop3: rw=1, want=1041, limit=128
[  984.388641][T17674] device pim6reg1 entered promiscuous mode
[  985.248091][T17706] device pim6reg1 entered promiscuous mode
[  985.874790][  T289] attempt to access beyond end of device
[  985.874790][  T289] loop5: rw=1, want=1041, limit=128
[  986.254966][T17734] device pim6reg1 entered promiscuous mode
[  986.761158][T17751] EXT4-fs (loop4): Ignoring removed orlov option
[  986.796346][T17751] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[  986.855049][    T9] attempt to access beyond end of device
[  986.855049][    T9] loop1: rw=1, want=1041, limit=128
[  987.013272][T17764] device pim6reg1 entered promiscuous mode
[  987.129149][T17767] 9pnet: Could not find request transport: unHx
[  987.335879][T17766] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[  987.594722][T17779] device pim6reg1 entered promiscuous mode
[  987.935448][T17796] device pim6reg1 entered promiscuous mode
[  988.345020][T17803] EXT4-fs (loop1): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[  988.630715][T17826] device pim6reg1 entered promiscuous mode
[  989.255910][T17845] device pim6reg1 entered promiscuous mode
[  989.485253][T17856] device pim6reg1 entered promiscuous mode
[  991.467527][T17899] device pim6reg1 entered promiscuous mode
[  991.799465][T17919] device pim6reg1 entered promiscuous mode
[  991.811915][T17911] bridge0: port 1(bridge_slave_0) entered blocking state
[  991.823212][T17911] bridge0: port 1(bridge_slave_0) entered disabled state
[  991.832075][T17911] device bridge_slave_0 entered promiscuous mode
[  991.840980][T17911] bridge0: port 2(bridge_slave_1) entered blocking state
[  991.849900][T17911] bridge0: port 2(bridge_slave_1) entered disabled state
[  991.858168][T17911] device bridge_slave_1 entered promiscuous mode
[  991.963222][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  991.972035][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  991.997780][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  992.007403][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  992.016944][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  992.024827][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  992.033516][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  992.043903][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  992.054350][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  992.062792][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  992.072526][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  992.119120][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  992.128562][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  992.155275][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  992.165915][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  992.203936][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  992.222512][T17911] device veth0_vlan entered promiscuous mode
[  992.240543][T17911] device veth1_macvtap entered promiscuous mode
[  992.258940][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  992.268311][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  992.276698][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  992.285975][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  992.306112][T17932] device pim6reg1 entered promiscuous mode
[  992.317439][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  992.326382][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  992.336628][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  992.347151][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  992.465249][T17943] device pim6reg1 entered promiscuous mode
[  992.809483][T17952] device pim6reg1 entered promiscuous mode
[  993.131691][T17966] device pim6reg1 entered promiscuous mode
[  993.605591][T16683] device bridge_slave_1 left promiscuous mode
[  993.613695][T16683] bridge0: port 2(bridge_slave_1) entered disabled state
[  993.623229][T16683] device bridge_slave_0 left promiscuous mode
[  993.630695][T16683] bridge0: port 1(bridge_slave_0) entered disabled state
[  993.641329][T16683] device veth0_vlan left promiscuous mode
[  994.997563][T18021] device pim6reg1 entered promiscuous mode
[  996.979094][T18059] device pim6reg1 entered promiscuous mode
[  997.024785][T18062] device pim6reg1 entered promiscuous mode
[  999.832428][T18110] device pim6reg1 entered promiscuous mode
[ 1000.056038][T18120] overlayfs: failed to resolve './file2': -2
[ 1001.294677][T18141] device pim6reg1 entered promiscuous mode
[ 1003.711148][T18174] device pim6reg1 entered promiscuous mode
[ 1003.796926][T18187] device pim6reg1 entered promiscuous mode
[ 1005.571121][T18214] device pim6reg1 entered promiscuous mode
[ 1005.580099][T18211] device pim6reg1 entered promiscuous mode
[ 1005.632884][T18200] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1005.640892][T18200] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1005.649075][T18200] device bridge_slave_0 entered promiscuous mode
[ 1005.665835][T18200] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1005.674700][T18200] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1005.684577][T18200] device bridge_slave_1 entered promiscuous mode
[ 1005.741520][T18200] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1005.749557][T18200] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1005.757263][T18200] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1005.765014][T18200] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1005.775054][T18227] device pim6reg1 entered promiscuous mode
[ 1006.746600][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1006.809859][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1006.829151][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1006.859502][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1006.868535][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1006.884407][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1006.917998][T18243] EXT4-fs (loop4): Ignoring removed orlov option
[ 1006.940514][T18243] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1006.966374][T18200] device veth0_vlan entered promiscuous mode
[ 1006.973056][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1006.982506][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1007.018937][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1007.027622][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1007.036953][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1007.091261][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1007.105946][T18200] device veth1_macvtap entered promiscuous mode
[ 1007.132739][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1007.144646][T18257] 9pnet: Could not find request transport: unHx
[ 1007.163366][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1007.173250][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1007.182760][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1007.192954][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1007.218838][T18260] device pim6reg1 entered promiscuous mode
[ 1007.251801][T18264] device pim6reg1 entered promiscuous mode
[ 1007.302244][T18266] device pim6reg1 entered promiscuous mode
[ 1007.481648][T18275] device pim6reg1 entered promiscuous mode
[ 1008.119482][T18292] device pim6reg1 entered promiscuous mode
[ 1008.132579][T18290] EXT4-fs (loop3): Ignoring removed orlov option
[ 1008.169823][T18299] device pim6reg1 entered promiscuous mode
[ 1008.171038][T18290] EXT4-fs (loop3): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1008.205237][  T289] device bridge_slave_1 left promiscuous mode
[ 1008.213399][  T289] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1008.251804][  T289] device bridge_slave_0 left promiscuous mode
[ 1008.258783][  T289] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1008.278455][  T289] device veth0_vlan left promiscuous mode
[ 1008.504165][T18305] 9pnet: Could not find request transport: unHx
[ 1009.093207][T18317] EXT4-fs (loop4): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1009.212780][T18333] device pim6reg1 entered promiscuous mode
[ 1011.286444][T18379] device pim6reg1 entered promiscuous mode
[ 1011.705496][  T289] attempt to access beyond end of device
[ 1011.705496][  T289] loop0: rw=1, want=1041, limit=128
[ 1011.856466][T18395] device pim6reg1 entered promiscuous mode
[ 1012.504436][T18411] device pim6reg1 entered promiscuous mode
[ 1013.398176][T18435] EXT4-fs (loop0): Ignoring removed orlov option
[ 1013.565092][T18435] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1013.732931][T18451] device pim6reg1 entered promiscuous mode
[ 1014.015048][T18457] 9pnet: Could not find request transport: unHx
[ 1015.133413][T18487] device pim6reg1 entered promiscuous mode
[ 1015.335169][T18503] device pim6reg1 entered promiscuous mode
[ 1015.519756][T18516] device pim6reg1 entered promiscuous mode
[ 1015.628252][  T289] attempt to access beyond end of device
[ 1015.628252][  T289] loop5: rw=1, want=1041, limit=128
[ 1015.955799][T18530] EXT4-fs (loop5): Test dummy encryption mode enabled
[ 1016.130888][T18530] EXT4-fs (loop5): mounted filesystem without journal. Opts: resuid=0x0000000000000000,barrier=0x00000000000083fc,noblock_validity,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue
[ 1016.165158][T18535] device pim6reg1 entered promiscuous mode
[ 1016.260137][T18546] device pim6reg1 entered promiscuous mode
[ 1016.272672][T18542] device pim6reg1 entered promiscuous mode
[ 1016.373288][T18549] device pim6reg1 entered promiscuous mode
[ 1016.825948][T18553] EXT4-fs (loop0): Ignoring removed orlov option
[ 1016.857230][T18561] device pim6reg1 entered promiscuous mode
[ 1016.874626][T18553] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1016.946221][    T9] attempt to access beyond end of device
[ 1016.946221][    T9] loop3: rw=1, want=1041, limit=128
[ 1017.542247][T18570] 9pnet: Could not find request transport: unHx
[ 1017.810120][T18576] device pim6reg1 entered promiscuous mode
[ 1018.688216][T18603] device pim6reg1 entered promiscuous mode
[ 1018.833071][T18611] device pim6reg1 entered promiscuous mode
[ 1020.353198][T18631] 9pnet: Insufficient options for proto=fd
[ 1020.372763][T18645] device pim6reg1 entered promiscuous mode
[ 1020.815453][T18653] device pim6reg1 entered promiscuous mode
[ 1020.838484][T18656] device pim6reg1 entered promiscuous mode
[ 1021.084217][T18670] EXT4-fs (loop3): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1021.595610][T18684] device pim6reg1 entered promiscuous mode
[ 1021.884931][T18703] device pim6reg1 entered promiscuous mode
[ 1022.012252][T18701] __nla_validate_parse: 6 callbacks suppressed
[ 1022.012271][T18701] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6176'.
[ 1022.889112][T18729] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1022.910725][T18729] netlink: 'syz.1.6185': attribute type 27 has an invalid length.
[ 1023.190719][T18736] device pim6reg1 entered promiscuous mode
[ 1023.206608][T18732] device pim6reg1 entered promiscuous mode
[ 1023.467338][T18743] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6193'.
[ 1023.630429][T18744] device pim6reg1 entered promiscuous mode
[ 1024.556309][T18763] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1024.572643][T18763] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1024.581100][T18763] device bridge_slave_0 entered promiscuous mode
[ 1024.592979][T18763] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1024.600618][T18763] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1024.608923][T18763] device bridge_slave_1 entered promiscuous mode
[ 1024.682419][T18763] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1024.690326][T18763] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1024.698523][T18763] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1024.706938][T18763] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1024.738979][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1024.747914][ T4840] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1024.756939][ T4840] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1024.771921][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1024.782768][ T4840] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1024.790754][ T4840] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1024.816924][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1024.827246][ T4840] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1024.835044][ T4840] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1024.845207][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1024.854635][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1024.872418][T18777] device pim6reg1 entered promiscuous mode
[ 1024.900603][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1024.932599][T18763] device veth0_vlan entered promiscuous mode
[ 1024.942150][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1024.952367][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1024.976720][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1025.006373][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1025.023544][T18763] device veth1_macvtap entered promiscuous mode
[ 1025.039691][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1025.071930][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1025.086562][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1025.440147][T18789] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6207'.
[ 1025.452182][    T9] device bridge_slave_1 left promiscuous mode
[ 1025.459457][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1025.467430][    T9] device bridge_slave_0 left promiscuous mode
[ 1025.478621][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1025.488760][    T9] device veth0_vlan left promiscuous mode
[ 1026.261674][T18810] device pim6reg1 entered promiscuous mode
[ 1027.320143][T18845] device pim6reg1 entered promiscuous mode
[ 1027.448012][T18851] device pim6reg1 entered promiscuous mode
[ 1028.441432][T18880] device pim6reg1 entered promiscuous mode
[ 1028.645484][T18888] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1029.134591][T18911] device pim6reg1 entered promiscuous mode
[ 1029.360709][T18931] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1030.707671][T18956] device pim6reg1 entered promiscuous mode
[ 1031.022999][T18955] attempt to access beyond end of device
[ 1031.022999][T18955] loop5: rw=2049, want=937, limit=128
[ 1033.127040][ T4840] attempt to access beyond end of device
[ 1033.127040][ T4840] loop5: rw=1, want=529, limit=128
[ 1033.129166][T18993] device pim6reg1 entered promiscuous mode
[ 1035.751544][T19034] device pim6reg1 entered promiscuous mode
[ 1035.905739][T19047] device pim6reg1 entered promiscuous mode
[ 1036.923338][T19070] attempt to access beyond end of device
[ 1036.923338][T19070] loop0: rw=2049, want=1041, limit=128
[ 1037.015855][T19074] device pim6reg1 entered promiscuous mode
[ 1037.131479][T19079] overlayfs: failed to resolve './file2': -2
[ 1037.547554][    T9] attempt to access beyond end of device
[ 1037.547554][    T9] loop0: rw=1, want=1001, limit=128
[ 1040.230008][T19117] device pim6reg1 entered promiscuous mode
[ 1040.348681][T19123] device pim6reg1 entered promiscuous mode
[ 1041.257963][T19137] overlayfs: failed to resolve './file2': -2
[ 1041.361058][T19144] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1041.421642][T19144] netlink: 'syz.1.6339': attribute type 27 has an invalid length.
[ 1041.748423][T19154] device pim6reg1 entered promiscuous mode
[ 1041.777556][T19157] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1041.790618][T19157] netlink: 'syz.3.6342': attribute type 27 has an invalid length.
[ 1041.915846][T19169] device pim6reg1 entered promiscuous mode
[ 1042.023986][T19172] netlink: 60 bytes leftover after parsing attributes in process `syz.4.6347'.
[ 1042.039157][T19172] netlink: 60 bytes leftover after parsing attributes in process `syz.4.6347'.
[ 1042.414748][T19184] overlayfs: failed to resolve './file2': -2
[ 1042.741675][T19190] device pim6reg1 entered promiscuous mode
[ 1042.772079][T19196] device pim6reg1 entered promiscuous mode
[ 1043.530155][T19218] netlink: 60 bytes leftover after parsing attributes in process `syz.3.6368'.
[ 1044.135206][T19233] device pim6reg1 entered promiscuous mode
[ 1044.146590][T19234] device pim6reg1 entered promiscuous mode
[ 1044.881124][T19243] attempt to access beyond end of device
[ 1044.881124][T19243] loop0: rw=2049, want=1041, limit=128
[ 1044.916518][T19243] attempt to access beyond end of device
[ 1044.916518][T19243] loop0: rw=2049, want=665, limit=128
[ 1045.396725][T16683] attempt to access beyond end of device
[ 1045.396725][T16683] loop0: rw=1, want=657, limit=128
[ 1045.469308][T19273] device pim6reg1 entered promiscuous mode
[ 1046.631609][T19302] device pim6reg1 entered promiscuous mode
[ 1046.693860][T19304] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1046.713305][T19304] netlink: 'syz.4.6400': attribute type 27 has an invalid length.
[ 1048.233501][T19353] netlink: 60 bytes leftover after parsing attributes in process `syz.1.6418'.
[ 1048.255893][T19353] netlink: 60 bytes leftover after parsing attributes in process `syz.1.6418'.
[ 1051.237334][T16683] attempt to access beyond end of device
[ 1051.237334][T16683] loop1: rw=1, want=1041, limit=128
[ 1053.300643][T19437] device pim6reg1 entered promiscuous mode
[ 1053.636620][T19444] device pim6reg1 entered promiscuous mode
[ 1053.742471][T19438] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1053.750257][T19438] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1053.758238][T19438] device bridge_slave_0 entered promiscuous mode
[ 1053.766556][T19438] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1053.774491][T19438] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1053.782977][T19438] device bridge_slave_1 entered promiscuous mode
[ 1053.842938][T19438] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1053.850777][T19438] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1053.858390][T19438] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1053.865778][T19438] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1053.922189][T16683] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1053.931412][T16683] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1053.970748][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1053.980404][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1053.995007][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1054.210819][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1054.220679][T16683] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1054.228375][T16683] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1054.361412][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1054.415598][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1054.466641][T16683] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1054.474935][T16683] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1054.565368][T19465] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6459'.
[ 1054.588035][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1054.601147][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1054.628272][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1054.638873][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1054.666550][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1054.675603][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1054.705112][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1054.713706][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1054.722685][T19438] device veth0_vlan entered promiscuous mode
[ 1054.730127][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1054.746226][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1055.388518][T19438] device veth1_macvtap entered promiscuous mode
[ 1055.416274][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1055.454748][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1055.463725][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1055.472120][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1055.481054][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1056.367439][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1056.398568][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1056.444263][T19486] device pim6reg1 entered promiscuous mode
[ 1057.086223][ T4840] device bridge_slave_1 left promiscuous mode
[ 1057.117406][ T4840] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1057.127696][ T4840] device bridge_slave_0 left promiscuous mode
[ 1057.134522][ T4840] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1057.194323][ T4840] device veth1_macvtap left promiscuous mode
[ 1057.402022][ T4840] device veth0_vlan left promiscuous mode
[ 1057.504711][T19516] device pim6reg1 entered promiscuous mode
[ 1057.876513][T19527] device pim6reg1 entered promiscuous mode
[ 1058.336772][T19548] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6488'.
[ 1060.942370][T19578] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6499'.
[ 1061.544817][T19589] device pim6reg1 entered promiscuous mode
[ 1061.629831][T19597] device pim6reg1 entered promiscuous mode
[ 1063.746971][T19626] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1066.009408][T19682] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1066.878190][T19744] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1066.982134][T19755] EXT4-fs (loop4): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1067.745265][T19786] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1069.139986][T19799] overlayfs: failed to resolve './file2': -2
[ 1069.553356][T19822] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1069.667225][T19826] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[ 1069.683216][T19826] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1047: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1069.699187][T19826] EXT4-fs (loop0): 1 truncate cleaned up
[ 1069.705466][T19826] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1070.794549][T19851] overlayfs: failed to resolve './file2': -2
[ 1071.219929][T19863] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1072.100308][T19899] device syzkaller0 entered promiscuous mode
[ 1072.650624][T19907] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1073.320285][T19932] overlayfs: failed to resolve './file2': -2
[ 1074.974697][T19951] EXT4-fs (loop3): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1076.452442][T19994] device pim6reg1 entered promiscuous mode
[ 1077.032781][T20010] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1077.049783][T20010] netlink: 'syz.3.6655': attribute type 27 has an invalid length.
[ 1077.758151][T20032] device pim6reg1 entered promiscuous mode
[ 1078.156585][T20041] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1078.167124][T20041] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 1078.181823][T20041] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1078.405253][T20044] EXT4-fs (loop3): Ignoring removed orlov option
[ 1078.516727][T20044] EXT4-fs (loop3): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1079.029389][T20062] 9pnet: Could not find request transport: unHx
[ 1079.748200][T20072] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1080.143379][T20072] netlink: 'syz.0.6675': attribute type 27 has an invalid length.
[ 1080.937980][T20101] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1080.948397][T20101] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 1080.961256][T20101] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1081.645314][T20107] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[ 1081.715110][T20107] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1047: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1081.732570][T20107] EXT4-fs (loop1): 1 truncate cleaned up
[ 1081.739250][T20107] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[ 1081.768752][T20118] overlayfs: failed to resolve './file2': -2
[ 1082.246462][T20126] device pim6reg1 entered promiscuous mode
[ 1082.429372][T20135] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1082.447669][T20135] netlink: 'syz.1.6697': attribute type 27 has an invalid length.
[ 1082.783229][T20148] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1082.793345][T20148] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 1082.805555][T20148] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1083.044927][T20152] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1083.055530][T20152] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1047: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1083.075206][T20152] EXT4-fs (loop5): 1 truncate cleaned up
[ 1083.082203][T20152] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 1084.590199][T20189] device pim6reg1 entered promiscuous mode
[ 1087.017392][T20214] overlayfs: failed to resolve './file2': -2
[ 1087.586755][T20227] device pim6reg1 entered promiscuous mode
[ 1087.987644][T20240] overlayfs: missing 'lowerdir'
[ 1089.669374][T20264] device pim6reg1 entered promiscuous mode
[ 1090.687934][ T4840] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1092.094559][T20292] overlayfs: missing 'lowerdir'
[ 1093.621909][   T52] Bluetooth: hci0: command 0x1003 tx timeout
[ 1093.628781][  T775] Bluetooth: hci0: sending frame failed (-49)
[ 1093.653505][T20309] device pim6reg1 entered promiscuous mode
[ 1094.600199][T20327] device pim6reg1 entered promiscuous mode
[ 1095.248714][T20330] overlayfs: missing 'lowerdir'
[ 1095.451177][T20342] overlayfs: missing 'lowerdir'
[ 1095.695741][   T52] Bluetooth: hci0: command 0x1001 tx timeout
[ 1095.702313][  T775] Bluetooth: hci0: sending frame failed (-49)
[ 1095.721325][T20347] device pim6reg1 entered promiscuous mode
[ 1096.081234][T20356] EXT4-fs (loop4): Ignoring removed orlov option
[ 1096.101103][T20356] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1096.424262][T20367] 9pnet: Could not find request transport: unHx
[ 1096.587233][T20365] EXT4-fs (loop5): Ignoring removed orlov option
[ 1096.646243][T20365] EXT4-fs (loop5): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1096.805375][T20374] device pim6reg1 entered promiscuous mode
[ 1097.110505][T20375] 9pnet: Could not find request transport: unHx
[ 1097.938263][T20382] overlayfs: missing 'workdir'
[ 1098.029787][ T9301] Bluetooth: hci0: command 0x1009 tx timeout
[ 1098.532953][T20399] overlayfs: missing 'lowerdir'
[ 1099.192695][  T611] attempt to access beyond end of device
[ 1099.192695][  T611] loop5: rw=1, want=1041, limit=128
[ 1099.213348][T20410] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1099.672239][T20422] overlayfs: failed to resolve './file2': -2
[ 1099.927234][  T611] attempt to access beyond end of device
[ 1099.927234][  T611] loop4: rw=1, want=1041, limit=128
[ 1100.165482][T20426] EXT4-fs (loop4): Ignoring removed orlov option
[ 1100.432001][T20426] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1100.868941][T20439] 9pnet: Could not find request transport: unHx
[ 1101.294238][T20449] overlayfs: missing 'lowerdir'
[ 1101.718729][T20455] overlayfs: failed to resolve './file2': -2
[ 1102.037781][T20462] device pim6reg1 entered promiscuous mode
[ 1102.485006][  T611] attempt to access beyond end of device
[ 1102.485006][  T611] loop3: rw=1, want=1041, limit=128
[ 1102.886594][T20482] overlayfs: failed to resolve './file2': -2
[ 1105.414066][T20512] overlayfs: failed to resolve './file2': -2
[ 1106.212444][T20520] device pim6reg1 entered promiscuous mode
[ 1106.220213][ T4840] attempt to access beyond end of device
[ 1106.220213][ T4840] loop0: rw=1, want=1041, limit=128
[ 1106.354129][T20522] EXT4-fs (loop5): Ignoring removed orlov option
[ 1106.473374][T20522] EXT4-fs (loop5): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1108.166735][T20543] 9pnet: Could not find request transport: unHx
[ 1109.172875][T20566] device pim6reg1 entered promiscuous mode
[ 1109.365427][  T611] attempt to access beyond end of device
[ 1109.365427][  T611] loop4: rw=1, want=1041, limit=128
[ 1110.676995][T20578] EXT4-fs (loop4): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1110.949894][T20586] EXT4-fs (loop0): Ignoring removed orlov option
[ 1111.094134][T20586] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1112.445307][T20602] 9pnet: Could not find request transport: unHx
[ 1112.509745][T20605] EXT4-fs (loop3): Ignoring removed orlov option
[ 1112.558248][T20605] EXT4-fs (loop3): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1113.004155][T20616] 9pnet: Could not find request transport: unHx
[ 1113.540076][T20627] attempt to access beyond end of device
[ 1113.540076][T20627] loop3: rw=2049, want=817, limit=128
[ 1115.289460][ T4840] attempt to access beyond end of device
[ 1115.289460][ T4840] loop4: rw=1, want=929, limit=128
[ 1115.442721][ T4840] attempt to access beyond end of device
[ 1115.442721][ T4840] loop3: rw=1, want=465, limit=128
[ 1115.587758][T20671] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1115.615031][T20671] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6863'.
[ 1117.290297][T20694] EXT4-fs (loop4): Ignoring removed orlov option
[ 1117.402761][T20694] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1118.566281][T20708] device pim6reg1 entered promiscuous mode
[ 1118.792554][T20725] device pim6reg1 entered promiscuous mode
[ 1119.345799][T20731] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1120.776798][T20753] device pim6reg1 entered promiscuous mode
[ 1122.005639][  T611] attempt to access beyond end of device
[ 1122.005639][  T611] loop1: rw=1, want=1041, limit=128
[ 1122.041033][T20772] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1122.139457][T20792] device pim6reg1 entered promiscuous mode
[ 1122.242359][T20797] device pim6reg1 entered promiscuous mode
[ 1122.442771][T20799] EXT4-fs (loop4): Ignoring removed orlov option
[ 1122.458876][T20799] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1123.648770][T20828] device pim6reg1 entered promiscuous mode
[ 1123.735292][T20824] device pim6reg1 entered promiscuous mode
[ 1124.183246][T20848] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1124.641123][T20851] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1125.375143][T20869] device pim6reg1 entered promiscuous mode
[ 1125.407299][T20871] device pim6reg1 entered promiscuous mode
[ 1128.077853][T20913] device pim6reg1 entered promiscuous mode
[ 1128.191596][T20918] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1128.218265][T20918] netlink: 'syz.0.6941': attribute type 27 has an invalid length.
[ 1129.874076][T20926] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6948'.
[ 1130.885001][T20949] device pim6reg1 entered promiscuous mode
[ 1132.633873][T20973] device pim6reg1 entered promiscuous mode
[ 1132.762067][T20974] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1132.947437][T20974] netlink: 'syz.5.6964': attribute type 27 has an invalid length.
[ 1133.468999][T20984] device pim6reg1 entered promiscuous mode
[ 1133.703326][T20987] device pim6reg1 entered promiscuous mode
[ 1133.948518][T20997] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1133.961074][T20997] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1133.969884][T20997] device bridge_slave_0 entered promiscuous mode
[ 1134.254352][T20997] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1134.357954][T20997] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1134.393848][T20997] device bridge_slave_1 entered promiscuous mode
[ 1134.408600][T21010] device pim6reg1 entered promiscuous mode
[ 1134.448110][T20997] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1134.456243][T20997] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1134.463661][T20997] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1134.471145][T20997] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1134.495950][T16683] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1134.505355][T16683] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1134.830859][  T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1134.853021][  T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1134.866269][  T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1134.884349][  T611] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1134.898774][  T611] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1134.906180][  T611] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1134.965133][  T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1134.973890][  T611] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1134.983364][  T611] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1134.990693][  T611] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1135.000157][  T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1135.943819][  T611] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1136.028999][  T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1136.040470][  T611] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1136.631642][T20997] device veth0_vlan entered promiscuous mode
[ 1136.641964][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1136.662811][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1136.673573][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1136.682470][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1136.691156][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1136.699378][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1136.769822][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1136.792472][T16683] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1137.411992][T20997] device veth1_macvtap entered promiscuous mode
[ 1137.440899][T21046] device pim6reg1 entered promiscuous mode
[ 1137.453207][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1137.462953][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1137.480208][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1137.493557][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1137.506853][ T4840] device bridge_slave_1 left promiscuous mode
[ 1137.532600][ T4840] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1137.541332][ T4840] device bridge_slave_0 left promiscuous mode
[ 1137.548840][ T4840] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1137.708974][ T4840] device veth0_vlan left promiscuous mode
[ 1138.507788][T21072] device pim6reg1 entered promiscuous mode
[ 1139.496139][T21085] device pim6reg1 entered promiscuous mode
[ 1139.521991][T21081] EXT4-fs (loop5): Ignoring removed orlov option
[ 1139.561597][T21081] EXT4-fs (loop5): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1140.304980][T21090] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1140.322936][T21090] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 1140.348765][T21090] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1140.434918][T21100] 9pnet: Could not find request transport: unHx
[ 1140.866944][T21113] device pim6reg1 entered promiscuous mode
[ 1143.329893][T21136] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1144.986046][T21164] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1145.520250][T21167] EXT4-fs (loop1): Ignoring removed orlov option
[ 1145.892397][T21167] EXT4-fs (loop1): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1147.525255][T21189] 9pnet: Could not find request transport: unHx
[ 1147.896103][T21195] device pim6reg1 entered promiscuous mode
[ 1152.837576][T21336] device pim6reg1 entered promiscuous mode
[ 1154.289711][T21363] device veth1_macvtap left promiscuous mode
[ 1154.296880][T21363] device macsec0 entered promiscuous mode
[ 1154.418727][T21371] device pim6reg1 entered promiscuous mode
[ 1154.763424][T21379] overlayfs: missing 'workdir'
[ 1154.947234][T21382] device veth1_macvtap left promiscuous mode
[ 1154.954104][T21382] device macsec0 entered promiscuous mode
[ 1155.085571][T21398] netlink: 60 bytes leftover after parsing attributes in process `syz.0.7116'.
[ 1155.096685][T21398] netlink: 60 bytes leftover after parsing attributes in process `syz.0.7116'.
[ 1155.542880][T21414] device pim6reg1 entered promiscuous mode
[ 1155.731688][T21427] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1155.747578][T21427] netlink: 'syz.4.7126': attribute type 27 has an invalid length.
[ 1156.242369][T21445] device pim6reg1 entered promiscuous mode
[ 1156.387623][T21454] device pim6reg1 entered promiscuous mode
[ 1156.655882][T21466] device pim6reg1 entered promiscuous mode
[ 1157.606153][T21476] device veth1_macvtap left promiscuous mode
[ 1157.612257][T21476] device macsec0 entered promiscuous mode
[ 1157.639635][T21478] device pim6reg1 entered promiscuous mode
[ 1157.932487][T21493] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1158.111857][T21493] netlink: 'syz.0.7155': attribute type 27 has an invalid length.
[ 1158.692239][T21510] device veth1_macvtap left promiscuous mode
[ 1158.707715][T21510] device macsec0 entered promiscuous mode
[ 1160.676814][T21560] device pim6reg1 entered promiscuous mode
[ 1161.276592][T21569] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[ 1161.290653][T21569] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1047: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1161.306732][T21569] EXT4-fs (loop4): 1 truncate cleaned up
[ 1161.313255][T21569] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[ 1162.857864][T21597] device pim6reg1 entered promiscuous mode
[ 1163.996190][T21638] device pim6reg1 entered promiscuous mode
[ 1164.509651][T21654] device pim6reg1 entered promiscuous mode
[ 1167.211645][T21675] device pim6reg1 entered promiscuous mode
[ 1167.390659][T21673] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1168.738298][T21720] device pim6reg1 entered promiscuous mode
[ 1169.107399][T21726] device pim6reg1 entered promiscuous mode
[ 1169.703436][T21730] netlink: 60 bytes leftover after parsing attributes in process `syz.1.7244'.
[ 1170.083440][T21749] device pim6reg1 entered promiscuous mode
[ 1170.208961][T21751] EXT4-fs (loop3): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1170.374604][T21758] device pim6reg1 entered promiscuous mode
[ 1172.076188][T21802] device pim6reg1 entered promiscuous mode
[ 1174.450818][T21848] device pim6reg1 entered promiscuous mode
[ 1176.126210][T21879] device pim6reg1 entered promiscuous mode
[ 1176.968531][T21899] device pim6reg1 entered promiscuous mode
[ 1177.046153][T21911] device pim6reg1 entered promiscuous mode
[ 1178.722725][T21940] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1179.615985][T21986] device veth1_macvtap left promiscuous mode
[ 1179.622481][T21986] device macsec0 entered promiscuous mode
[ 1179.847949][T21996] device pim6reg1 entered promiscuous mode
[ 1180.697762][  T611] attempt to access beyond end of device
[ 1180.697762][  T611] loop3: rw=1, want=1041, limit=128
[ 1180.859196][T22033] device pim6reg1 entered promiscuous mode
[ 1180.990750][T22040] device pim6reg1 entered promiscuous mode
[ 1181.140117][T22044] EXT4-fs (loop3): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1181.450899][T22059] EXT4-fs (loop3): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1182.061213][T22079] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1182.096918][T22086] EXT4-fs (loop3): Ignoring removed orlov option
[ 1182.131088][T22086] EXT4-fs (loop3): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue
[ 1182.424980][T22102] 9pnet: Could not find request transport: unHx
[ 1184.106616][T22121] device pim6reg1 entered promiscuous mode
[ 1184.623244][T22145] device pim6reg1 entered promiscuous mode
[ 1185.099613][T22158] device pim6reg1 entered promiscuous mode
[ 1185.122472][T22160] device pim6reg1 entered promiscuous mode
[ 1185.994062][T22182] device pim6reg1 entered promiscuous mode
[ 1186.109512][T22185] device pim6reg1 entered promiscuous mode
[ 1186.661462][T22200] EXT4-fs (loop1): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1189.739334][T22284] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1190.296220][T22301] device pim6reg1 entered promiscuous mode
[ 1190.987744][T22335] device pim6reg1 entered promiscuous mode
[ 1191.126694][T22346] device pim6reg1 entered promiscuous mode
[ 1191.916707][T22375] device pim6reg1 entered promiscuous mode
[ 1191.930747][T22369] EXT4-fs (loop4): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1192.958370][T22407] device pim6reg1 entered promiscuous mode
[ 1194.450357][T22449] device pim6reg1 entered promiscuous mode
[ 1196.093648][T22481] device pim6reg1 entered promiscuous mode
[ 1196.116951][T22483] device pim6reg1 entered promiscuous mode
[ 1196.157880][T22476] overlayfs: failed to resolve './file2': -2
[ 1196.281303][T22491] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1199.202060][T22570] device pim6reg1 entered promiscuous mode
[ 1200.527870][T22589] EXT4-fs (loop1): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1200.563182][T22597] device pim6reg1 entered promiscuous mode
[ 1201.197455][T22608] overlayfs: failed to resolve './file2': -2
[ 1201.673489][T22615] EXT4-fs (loop1): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1202.142103][T22633] overlayfs: failed to resolve './file2': -2
[ 1202.235268][T22638] device pim6reg1 entered promiscuous mode
[ 1202.262421][T22637] device pim6reg1 entered promiscuous mode
[ 1204.900204][T22673] device pim6reg1 entered promiscuous mode
[ 1205.087843][T22679] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1205.809297][T22709] device pim6reg1 entered promiscuous mode
[ 1206.285358][T22722] overlayfs: failed to resolve './file2': -2
[ 1208.807525][T22769] device pim6reg1 entered promiscuous mode
[ 1208.834757][T22771] device pim6reg1 entered promiscuous mode
[ 1208.935083][T22779] EXT4-fs (loop3): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1209.126426][T22795] device pim6reg1 entered promiscuous mode
[ 1210.235732][T22821] device pim6reg1 entered promiscuous mode
[ 1210.645022][T22853] EXT4-fs (loop4): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1210.928577][T22861] overlayfs: missing 'lowerdir'
[ 1211.105024][T22863] device pim6reg1 entered promiscuous mode
[ 1211.835387][T22889] device pim6reg1 entered promiscuous mode
[ 1212.964247][   T49] attempt to access beyond end of device
[ 1212.964247][   T49] loop5: rw=1, want=1041, limit=128
[ 1213.175914][T22916] device pim6reg1 entered promiscuous mode
[ 1213.187868][T22917] device pim6reg1 entered promiscuous mode
[ 1213.426206][T22932] device pim6reg1 entered promiscuous mode
[ 1213.637896][T22938] EXT4-fs (loop3): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1213.706006][T22946] device pim6reg1 entered promiscuous mode
[ 1213.878685][T22950] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1214.488221][T22970] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1214.497956][T22970] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 1214.510329][T22970] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1215.222913][T22983] device pim6reg1 entered promiscuous mode
[ 1215.535020][T22993] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1215.544454][T22993] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 1215.556430][T22993] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1215.936271][T23002] overlayfs: missing 'lowerdir'
[ 1217.305684][T23022] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1217.794234][T23048] device pim6reg1 entered promiscuous mode
[ 1217.836163][T23052] overlayfs: failed to resolve './file2': -2
[ 1217.887115][T23054] device pim6reg1 entered promiscuous mode
[ 1218.284677][T23072] device pim6reg1 entered promiscuous mode
[ 1223.864288][T23145] device pim6reg1 entered promiscuous mode
[ 1224.175747][T23163] overlayfs: missing 'lowerdir'
[ 1224.294579][T23159] EXT4-fs (loop1): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,usrquota,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[ 1225.178961][T23182] device pim6reg1 entered promiscuous mode
[ 1225.589122][T23207] device pim6reg1 entered promiscuous mode
[ 1226.841196][T23236] device pim6reg1 entered promiscuous mode
[ 1227.100294][T23241] overlayfs: missing 'lowerdir'
[ 1231.360688][T23317] device pim6reg1 entered promiscuous mode
[ 1233.935491][T23383] FAULT_INJECTION: forcing a failure.
[ 1233.935491][T23383] name failslab, interval 1, probability 0, space 0, times 1
[ 1233.951917][T23383] CPU: 1 PID: 23383 Comm: syz.5.7885 Tainted: G        W         5.10.237-syzkaller-00309-g7e2543346ff7 #0
[ 1233.964719][T23383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1233.975759][T23383] Call Trace:
[ 1233.980355][T23383]  __dump_stack+0x21/0x24
[ 1233.986123][T23383]  dump_stack_lvl+0x169/0x1d8
[ 1233.991502][T23383]  ? thaw_kernel_threads+0x220/0x220
[ 1233.997279][T23383]  ? show_regs_print_info+0x18/0x18
[ 1234.003051][T23383]  ? finish_task_switch+0x12e/0x5a0
[ 1234.009362][T23383]  ? switch_mm_irqs_off+0x763/0x9a0
[ 1234.015715][T23383]  dump_stack+0x15/0x1c
[ 1234.020624][T23383]  should_fail+0x3c1/0x510
[ 1234.025575][T23383]  ? __se_sys_memfd_create+0xf2/0x3a0
[ 1234.031894][T23383]  __should_failslab+0xa4/0xe0
[ 1234.037629][T23383]  should_failslab+0x9/0x20
[ 1234.042735][T23383]  __kmalloc+0x60/0x330
[ 1234.046926][T23383]  ? strnlen_user+0x13b/0x1c0
[ 1234.051964][T23383]  __se_sys_memfd_create+0xf2/0x3a0
[ 1234.057534][T23383]  __x64_sys_memfd_create+0x5b/0x70
[ 1234.063648][T23383]  do_syscall_64+0x31/0x40
[ 1234.068565][T23383]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1234.076542][T23383] RIP: 0033:0x7fd8b84ea969
[ 1234.091597][T23383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1234.114240][T23383] RSP: 002b:00007fd8b6b52e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[ 1234.123124][T23383] RAX: ffffffffffffffda RBX: 0000000000000b70 RCX: 00007fd8b84ea969
[ 1234.131507][T23383] RDX: 00007fd8b6b52ef0 RSI: 0000000000000000 RDI: 00007fd8b856d444
[ 1234.141988][T23383] RBP: 0000200000000c40 R08: 00007fd8b6b52bb7 R09: 00007fd8b6b52e40
[ 1234.150332][T23383] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000bc0
[ 1234.158617][T23383] R13: 00007fd8b6b52ef0 R14: 00007fd8b6b52eb0 R15: 0000200000000c00
[ 1234.310110][T23396] FAULT_INJECTION: forcing a failure.
[ 1234.310110][T23396] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 1234.326023][T23396] CPU: 1 PID: 23396 Comm: syz.0.7891 Tainted: G        W         5.10.237-syzkaller-00309-g7e2543346ff7 #0
[ 1234.338077][T23396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1234.348455][T23396] Call Trace:
[ 1234.351918][T23396]  __dump_stack+0x21/0x24
[ 1234.356257][T23396]  dump_stack_lvl+0x169/0x1d8
[ 1234.362299][T23396]  ? show_regs_print_info+0x18/0x18
[ 1234.369020][T23396]  ? vfs_write+0xac8/0xd60
[ 1234.373897][T23396]  dump_stack+0x15/0x1c
[ 1234.378306][T23396]  should_fail+0x3c1/0x510
[ 1234.383238][T23396]  should_fail_usercopy+0x1a/0x20
[ 1234.388520][T23396]  _copy_from_user+0x20/0xd0
[ 1234.393365][T23396]  __se_sys_bpf+0x181/0x680
[ 1234.397953][T23396]  ? __x64_sys_bpf+0x90/0x90
[ 1234.402628][T23396]  ? fpu__clear_all+0x20/0x20
[ 1234.407704][T23396]  __x64_sys_bpf+0x7b/0x90
[ 1234.412212][T23396]  do_syscall_64+0x31/0x40
[ 1234.416626][T23396]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1234.423102][T23396] RIP: 0033:0x7f36c62bc969
[ 1234.428169][T23396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1234.450345][T23396] RSP: 002b:00007f36c4925038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1234.459957][T23396] RAX: ffffffffffffffda RBX: 00007f36c64e3fa0 RCX: 00007f36c62bc969
[ 1234.468825][T23396] RDX: 000000000000001e RSI: 0000200000000080 RDI: 000000000000000a
[ 1234.477789][T23396] RBP: 00007f36c4925090 R08: 0000000000000000 R09: 0000000000000000
[ 1234.486192][T23396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1234.496914][T23396] R13: 0000000000000000 R14: 00007f36c64e3fa0 R15: 00007ffcb94c21c8
[ 1234.560175][T23400] FAULT_INJECTION: forcing a failure.
[ 1234.560175][T23400] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1234.577483][T20622] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 1234.587807][T23400] CPU: 0 PID: 23400 Comm: syz.0.7893 Tainted: G        W         5.10.237-syzkaller-00309-g7e2543346ff7 #0
[ 1234.601203][T23400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1234.612234][T23400] Call Trace:
[ 1234.615806][T23400]  __dump_stack+0x21/0x24
[ 1234.620541][T23400]  dump_stack_lvl+0x169/0x1d8
[ 1234.625995][T23400]  ? show_regs_print_info+0x18/0x18
[ 1234.631581][T23400]  ? vfs_write+0xac8/0xd60
[ 1234.636627][T23400]  dump_stack+0x15/0x1c
[ 1234.641529][T23400]  should_fail+0x3c1/0x510
[ 1234.647550][T23400]  should_fail_usercopy+0x1a/0x20
[ 1234.653176][T23400]  _copy_from_user+0x20/0xd0
[ 1234.658062][T23400]  __se_sys_bpf+0x181/0x680
[ 1234.663734][T23400]  ? __x64_sys_bpf+0x90/0x90
[ 1234.669042][T23400]  ? fpu__clear_all+0x20/0x20
[ 1234.673711][T23400]  __x64_sys_bpf+0x7b/0x90
[ 1234.678300][T23400]  do_syscall_64+0x31/0x40
[ 1234.682804][T23400]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1234.688982][T23400] RIP: 0033:0x7f36c62bc969
[ 1234.693831][T23400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1234.714479][T23400] RSP: 002b:00007f36c4925038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1234.723236][T23400] RAX: ffffffffffffffda RBX: 00007f36c64e3fa0 RCX: 00007f36c62bc969
[ 1234.731997][T23400] RDX: 0000000000000080 RSI: 00002000000001c0 RDI: 0000000000000005
[ 1234.742341][T23400] RBP: 00007f36c4925090 R08: 0000000000000000 R09: 0000000000000000
[ 1234.750965][T23400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1234.759237][T23400] R13: 0000000000000000 R14: 00007f36c64e3fa0 R15: 00007ffcb94c21c8
[ 1234.884052][   T24] kauditd_printk_skb: 1 callbacks suppressed
[ 1234.884066][   T24] audit: type=1400 audit(1746831564.133:1010): avc:  denied  { write } for  pid=23411 comm="syz.1.7899" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1235.711882][   T24] audit: type=1400 audit(1746831564.243:1011): avc:  denied  { setopt } for  pid=23413 comm="syz.1.7900" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1236.471422][   T24] audit: type=1326 audit(1746831564.263:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23417 comm="syz.4.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f3c723969 code=0x7ffc0000
[ 1236.496839][   T24] audit: type=1326 audit(1746831564.263:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23417 comm="syz.4.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7f4f3c723969 code=0x7ffc0000
[ 1236.524910][   T24] audit: type=1326 audit(1746831564.263:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23417 comm="syz.4.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f3c723969 code=0x7ffc0000
[ 1236.534153][T20622] usb 6-1: config 0 interface 0 altsetting 64 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1236.551417][   T24] audit: type=1326 audit(1746831564.263:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23417 comm="syz.4.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f3c723969 code=0x7ffc0000
[ 1236.585330][T20622] usb 6-1: config 0 interface 0 altsetting 64 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1236.587770][   T24] audit: type=1326 audit(1746831564.263:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23417 comm="syz.4.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4f3c7222d0 code=0x7ffc0000
[ 1236.623956][   T24] audit: type=1326 audit(1746831564.263:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23417 comm="syz.4.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f3c723969 code=0x7ffc0000
[ 1236.653075][T20622] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1236.662831][T20622] usb 6-1: New USB device found, idVendor=04b4, idProduct=07b1, bcdDevice= 0.00
[ 1236.673413][T20622] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1236.690762][   T24] audit: type=1326 audit(1746831564.263:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23417 comm="syz.4.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f3c723969 code=0x7ffc0000
[ 1236.724030][T23422] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[ 1236.737003][T20622] usb 6-1: config 0 descriptor??
[ 1236.752821][   T24] audit: type=1326 audit(1746831566.023:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23440 comm="syz.3.7908" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f311409d969 code=0x0
[ 1236.804532][T23447] FAULT_INJECTION: forcing a failure.
[ 1236.804532][T23447] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1236.824822][T23447] CPU: 1 PID: 23447 Comm: syz.3.7908 Tainted: G        W         5.10.237-syzkaller-00309-g7e2543346ff7 #0
[ 1236.838478][T23447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1236.851251][T23447] Call Trace:
[ 1236.855210][T23447]  __dump_stack+0x21/0x24
[ 1236.860406][T23447]  dump_stack_lvl+0x169/0x1d8
[ 1236.866292][T23447]  ? show_regs_print_info+0x18/0x18
[ 1236.866306][T23447]  ? kstrtouint_from_user+0x1a0/0x200
[ 1236.866328][T23447]  dump_stack+0x15/0x1c
[ 1236.866341][T23447]  should_fail+0x3c1/0x510
[ 1236.866352][T23447]  should_fail_usercopy+0x1a/0x20
[ 1236.866363][T23447]  _copy_from_user+0x20/0xd0
[ 1236.866377][T23447]  ptrace_request+0x34a/0x1970
[ 1236.866391][T23447]  ? __kasan_check_write+0x14/0x20
[ 1236.866403][T23447]  ? _raw_spin_lock+0x8e/0xe0
[ 1236.866413][T23447]  ? _raw_spin_trylock_bh+0x130/0x130
[ 1236.866422][T23447]  ? rw_verify_area+0x1c0/0x360
[ 1236.866432][T23447]  ? ptrace_writedata+0x3a0/0x3a0
[ 1236.866442][T23447]  ? vfs_write+0xac8/0xd60
[ 1236.866453][T23447]  ? task_rq_lock+0xcf/0x2d0
[ 1236.866465][T23447]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[ 1236.866475][T23447]  ? wait_task_inactive+0x22a/0x440
[ 1236.866486][T23447]  ? __kasan_check_write+0x14/0x20
[ 1236.866497][T23447]  ? migrate_swap_stop+0x700/0x700
[ 1236.866506][T23447]  ? fput_many+0x15a/0x1a0
[ 1236.866522][T23447]  arch_ptrace+0x3b0/0x440
[ 1236.866532][T23447]  __se_sys_ptrace+0xfd/0x410
[ 1236.866544][T23447]  __x64_sys_ptrace+0x9b/0xb0
[ 1236.866555][T23447]  do_syscall_64+0x31/0x40
[ 1236.866567][T23447]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1236.866578][T23447] RIP: 0033:0x7f311409d969
[ 1236.866590][T23447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1236.866598][T23447] RSP: 002b:00007f31126e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000065
[ 1236.866614][T23447] RAX: ffffffffffffffda RBX: 00007f31142c5080 RCX: 00007f311409d969
[ 1236.866622][T23447] RDX: 0000200000000080 RSI: 00000000000002cf RDI: 0000000000004209
[ 1236.866629][T23447] RBP: 00007f31126e5090 R08: 0000000000000000 R09: 0000000000000000
[ 1236.866636][T23447] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1236.866642][T23447] R13: 0000000000000000 R14: 00007f31142c5080 R15: 00007ffd09aed2c8
[ 1237.122496][T23459] FAULT_INJECTION: forcing a failure.
[ 1237.122496][T23459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1237.138040][T23459] CPU: 0 PID: 23459 Comm: syz.1.7913 Tainted: G        W         5.10.237-syzkaller-00309-g7e2543346ff7 #0
[ 1237.151285][T23459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1237.162071][T23459] Call Trace:
[ 1237.165482][T23459]  __dump_stack+0x21/0x24
[ 1237.170105][T23459]  dump_stack_lvl+0x169/0x1d8
[ 1237.175243][T23459]  ? show_regs_print_info+0x18/0x18
[ 1237.181276][T23459]  ? is_prefetch+0x490/0x490
[ 1237.185989][T23459]  dump_stack+0x15/0x1c
[ 1237.191124][T23459]  should_fail+0x3c1/0x510
[ 1237.197858][T23459]  should_fail_usercopy+0x1a/0x20
[ 1237.203181][T23459]  _copy_from_user+0x20/0xd0
[ 1237.208888][T23459]  __copy_msghdr_from_user+0xaf/0x5e0
[ 1237.214492][T23459]  ? __ia32_sys_shutdown+0x1e0/0x1e0
[ 1237.219984][T23459]  ? __fsnotify_parent+0x5f5/0x6c0
[ 1237.225823][T23459]  ___sys_sendmsg+0x156/0x260
[ 1237.231065][T23459]  ? __sys_sendmsg+0x250/0x250
[ 1237.237895][T23459]  ? __fdget+0x1a1/0x230
[ 1237.244774][T23459]  __x64_sys_sendmsg+0x1e2/0x2a0
[ 1237.251798][T23459]  ? ___sys_sendmsg+0x260/0x260
[ 1237.257529][T23459]  ? syscall_trace_enter+0x108/0x170
[ 1237.263101][T23459]  do_syscall_64+0x31/0x40
[ 1237.268008][T23459]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1237.274813][T23459] RIP: 0033:0x7f84f11e4969
[ 1237.280500][T23459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1237.303212][T23459] RSP: 002b:00007f84ef84d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1237.313283][T23459] RAX: ffffffffffffffda RBX: 00007f84f140bfa0 RCX: 00007f84f11e4969
[ 1237.321862][T23459] RDX: 0000000000004000 RSI: 0000200000000080 RDI: 000000000000000a
[ 1237.331051][T23459] RBP: 00007f84ef84d090 R08: 0000000000000000 R09: 0000000000000000
[ 1237.339530][T23459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1237.348779][T23459] R13: 0000000000000000 R14: 00007f84f140bfa0 R15: 00007ffe073a10b8
[ 1237.361946][T20622] cypress 0003:04B4:07B1.0001: unknown main item tag 0x0
[ 1237.373769][T20622] cypress 0003:04B4:07B1.0001: unknown main item tag 0x0
[ 1237.381435][T20622] cypress 0003:04B4:07B1.0001: unknown main item tag 0x0
[ 1237.389402][T20622] cypress 0003:04B4:07B1.0001: unknown main item tag 0x0
[ 1237.397400][T20622] cypress 0003:04B4:07B1.0001: unknown main item tag 0x0
[ 1237.406420][T20622] cypress 0003:04B4:07B1.0001: hidraw0: USB HID v0.00 Device [HID 04b4:07b1] on usb-dummy_hcd.5-1/input0
[ 1237.433505][T23451] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1237.473350][T23451] ext4 filesystem being mounted at /394/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1237.615491][T23468] SELinux:  Context system_u:object_r:man_t:s0 is not valid (left unmapped).
[ 1237.639068][T23471] netlink: 44 bytes leftover after parsing attributes in process `syz.3.7916'.
[ 1237.764041][T23390] FAT-fs (loop5): Unrecognized mount option "/dev/net/tun" or missing value
[ 1237.785369][T23468] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1237.825740][T23468] EXT4-fs error (device loop1): ext4_ext_check_inode:500: inode #4: comm syz.1.7915: pblk 0 bad header/extent: too large eh_depth - magic f30a, entries 1, max 4(4), depth 2048(2048)
[ 1237.914131][T23390] EXT4-fs (loop5): Ignoring removed oldalloc option
[ 1237.921214][T23390] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1238.004976][T23390] EXT4-fs (loop5): 1 truncate cleaned up
[ 1238.027633][T23390] EXT4-fs (loop5): mounted filesystem without journal. Opts: quota,oldalloc,barrier=0x0000000000000003,debug_want_extra_isize=0x0000000000000080,block_validity,jqfmt=vfsv1,,errors=continue
[ 1238.053993][T23468] EXT4-fs error (device loop1): ext4_quota_enable:6450: comm syz.1.7915: Bad quota inode: 4, type: 1
[ 1238.079608][T23468] EXT4-fs warning (device loop1): ext4_enable_quotas:6491: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[ 1238.095011][T23468] EXT4-fs (loop1): Cannot turn on quotas: error -117
[ 1238.102476][T23468] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[ 1238.137980][T23485] device pim6reg1 entered promiscuous mode
[ 1238.210623][T23486] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7915'.
[ 1238.245893][T23488] device pim6reg1 entered promiscuous mode
[ 1238.441599][T23500] FAULT_INJECTION: forcing a failure.
[ 1238.441599][T23500] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1238.456995][T23500] CPU: 1 PID: 23500 Comm: syz.4.7925 Tainted: G        W         5.10.237-syzkaller-00309-g7e2543346ff7 #0
[ 1238.469611][T23500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1238.481070][T23500] Call Trace:
[ 1238.484634][T23500]  __dump_stack+0x21/0x24
[ 1238.489438][T23500]  dump_stack_lvl+0x169/0x1d8
[ 1238.494635][T23500]  ? thaw_kernel_threads+0x220/0x220
[ 1238.500378][T23500]  ? show_regs_print_info+0x18/0x18
[ 1238.505756][T23500]  ? preempt_schedule_irq+0xbb/0x110
[ 1238.511417][T23500]  ? preempt_schedule_notrace+0x110/0x110
[ 1238.517456][T23500]  dump_stack+0x15/0x1c
[ 1238.521795][T23500]  should_fail+0x3c1/0x510
[ 1238.526911][T23500]  should_fail_usercopy+0x1a/0x20
[ 1238.532193][T23500]  _copy_to_user+0x20/0x90
[ 1238.537070][T23500]  simple_read_from_buffer+0xe9/0x160
[ 1238.542732][T23500]  proc_fail_nth_read+0x19a/0x210
[ 1238.547954][T23500]  ? proc_fault_inject_write+0x2f0/0x2f0
[ 1238.554614][T23500]  ? rw_verify_area+0x1c0/0x360
[ 1238.559581][T23500]  ? proc_fault_inject_write+0x2f0/0x2f0
[ 1238.566190][T23500]  vfs_read+0x1fe/0xa10
[ 1238.570652][T23500]  ? kernel_read+0x70/0x70
[ 1238.575341][T23500]  ? __kasan_check_write+0x14/0x20
[ 1238.580947][T23500]  ? mutex_lock+0x8c/0xe0
[ 1238.585315][T23500]  ? mutex_trylock+0xa0/0xa0
[ 1238.590241][T23500]  ? __fget_files+0x2c4/0x320
[ 1238.595492][T23500]  ? __fdget_pos+0x2d2/0x380
[ 1238.600385][T23500]  ? ksys_read+0x71/0x240
[ 1238.605087][T23500]  ksys_read+0x140/0x240
[ 1238.609762][T23500]  ? vfs_write+0xd60/0xd60
[ 1238.615242][T23500]  ? fpu__clear_all+0x20/0x20
[ 1238.620116][T23500]  ? __kasan_check_read+0x11/0x20
[ 1238.626474][T23500]  __x64_sys_read+0x7b/0x90
[ 1238.631532][T23500]  do_syscall_64+0x31/0x40
[ 1238.636637][T23500]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1238.643270][T23500] RIP: 0033:0x7f4f3c72237c
[ 1238.648375][T23500] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1238.670377][T23500] RSP: 002b:00007f4f3ad4a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1238.680039][T23500] RAX: ffffffffffffffda RBX: 00007f4f3c94b160 RCX: 00007f4f3c72237c
[ 1238.690289][T23500] RDX: 000000000000000f RSI: 00007f4f3ad4a0a0 RDI: 000000000000000b
[ 1238.704210][T23500] RBP: 00007f4f3ad4a090 R08: 0000000000000000 R09: 0000000000000000
[ 1238.713444][T23500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1238.721724][T23500] R13: 0000000000000000 R14: 00007f4f3c94b160 R15: 00007fffff312d48
[ 1238.731603][  T541] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[ 1239.144245][  T541] usb 4-1: config 0 has an invalid interface number: 156 but max is 0
[ 1239.170130][  T541] usb 4-1: config 0 has no interface number 0
[ 1239.179165][  T541] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1239.193665][  T541] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1239.205270][  T541] usb 4-1: config 0 interface 156 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1239.224153][ T3457] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[ 1239.236496][  T541] usb 4-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[ 1239.256301][  T541] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1239.274673][ T8087] usb 6-1: USB disconnect, device number 2
[ 1239.289171][  T541] usb 4-1: config 0 descriptor??
[ 1239.334772][  T541] usb 4-1: MIDIStreaming interface descriptor not found
[ 1240.026760][  T541] usb 4-1: USB disconnect, device number 6
[ 1240.074511][ T3457] usb 5-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[ 1240.104461][ T3457] usb 5-1: config 7 has 1 interface, different from the descriptor's value: 2
[ 1240.279844][ T3457] usb 5-1: New USB device found, idVendor=19d2, idProduct=1275, bcdDevice= 0.84
[ 1240.294448][ T3457] usb 5-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[ 1240.303113][ T3457] usb 5-1: Product: syz
[ 1240.308381][ T3457] usb 5-1: SerialNumber: syz
[ 1240.354952][ T3457] usb 5-1: bad CDC descriptors
[ 1240.931426][   T24] kauditd_printk_skb: 19 callbacks suppressed
[ 1240.931439][   T24] audit: type=1400 audit(1746831570.203:1039): avc:  denied  { connect } for  pid=23545 comm="syz.0.7941" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1241.312699][   T24] audit: type=1326 audit(1746831570.573:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23553 comm="syz.1.7944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1241.338920][   T24] audit: type=1326 audit(1746831570.573:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23553 comm="syz.1.7944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1241.365486][   T24] audit: type=1326 audit(1746831570.583:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23553 comm="syz.1.7944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1241.393108][   T24] audit: type=1326 audit(1746831570.583:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23553 comm="syz.1.7944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1241.417933][   T24] audit: type=1326 audit(1746831570.583:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23553 comm="syz.1.7944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1241.462056][   T24] audit: type=1326 audit(1746831570.583:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23553 comm="syz.1.7944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1241.462818][T23551] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1241.490146][   T24] audit: type=1326 audit(1746831570.583:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23553 comm="syz.1.7944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1241.525314][T23551] ext4 filesystem being mounted at /404/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1241.561621][   T49] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm kworker/u4:2: bg 0: block 393: padding at end of block bitmap is not set
[ 1241.583199][   T49] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1241.608393][   T49] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1241.608393][   T49] 
[ 1241.625613][   T49] EXT4-fs (loop0): Total free blocks count 0
[ 1241.632536][   T49] EXT4-fs (loop0): Free/Dirty block details
[ 1241.639465][   T49] EXT4-fs (loop0): free_blocks=0
[ 1241.645862][   T49] EXT4-fs (loop0): dirty_blocks=16
[ 1241.651306][   T49] EXT4-fs (loop0): Block reservation details
[ 1241.657951][   T49] EXT4-fs (loop0): i_reserved_data_blocks=1
[ 1241.773820][   T24] audit: type=1326 audit(1746831571.043:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23574 comm="syz.0.7948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c62bc969 code=0x7ffc0000
[ 1241.813767][ T3457] usb 5-1: USB disconnect, device number 3
[ 1241.843975][   T24] audit: type=1326 audit(1746831571.093:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23574 comm="syz.0.7948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36c62bc969 code=0x7ffc0000
[ 1242.020938][T23598] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1242.030848][T23598] ext4 filesystem being mounted at /407/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1242.084456][T23576]  loop5: p2 p3 p7
[ 1242.155800][   T95]  loop5: p2 p3 p7
[ 1242.224088][T23626] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 1242.296036][T23636] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7980'.
[ 1242.312633][ T6309] udevd[6309]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[ 1242.336578][ T6309] udevd[6309]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[ 1242.349781][ T6311] udevd[6311]: inotify_add_watch(7, /dev/loop5p7, 10) failed: No such file or directory
[ 1242.369072][T23642] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1242.377370][T23642] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1242.406354][T23648] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1242.412102][ T6120] udevd[6120]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[ 1242.414597][T23648] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1242.432337][ T6309] udevd[6309]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[ 1242.442828][T23651] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1242.459006][T23649] udevd[23649]: inotify_add_watch(7, /dev/loop5p7, 10) failed: No such file or directory
[ 1242.460524][T23642] device bridge_slave_1 left promiscuous mode
[ 1242.478765][T23642] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1242.480645][T23651] EXT4-fs (loop4): 1 truncate cleaned up
[ 1242.492458][T23642] device bridge_slave_0 left promiscuous mode
[ 1242.492702][T23651] EXT4-fs (loop4): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue
[ 1242.500627][T23642] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1242.552276][T23656] EXT4-fs (loop3): 1 orphan inode deleted
[ 1242.558668][T23656] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[ 1242.568364][T23656] ext4 filesystem being mounted at /286/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1242.609959][T23656] EXT4-fs error (device loop3) in ext4_do_update_inode:5335: error 27
[ 1242.619583][T23656] EXT4-fs error (device loop3): ext4_dirty_inode:6142: inode #18: comm syz.3.7987: mark_inode_dirty error
[ 1242.632732][T23656] EXT4-fs error (device loop3) in ext4_do_update_inode:5335: error 27
[ 1242.641897][T23654] device bridge_slave_1 left promiscuous mode
[ 1242.642663][T23656] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2959: inode #18: comm syz.3.7987: mark_inode_dirty error
[ 1242.654052][T23654] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1242.682118][T23665] cgroup: Unknown subsys name 'favordynmods'
[ 1242.689240][T23656] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2962: inode #18: comm syz.3.7987: mark inode dirty (error -27)
[ 1242.703063][T23654] device bridge_slave_0 left promiscuous mode
[ 1242.718184][T23656] EXT4-fs warning (device loop3): ext4_evict_inode:303: xattr delete (err -27)
[ 1242.725845][T23654] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1242.764502][T23667] Alternate GPT is invalid, using primary GPT.
[ 1242.765087][T23670] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=118 sclass=netlink_route_socket pid=23670 comm=syz.4.7992
[ 1242.771417][T23667]  loop0: p1 p2 p3
[ 1242.839547][T23673] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=39 sclass=netlink_xfrm_socket pid=23673 comm=syz.3.7993
[ 1243.058128][T23683] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1243.085610][T23683] EXT4-fs (loop5): 1 truncate cleaned up
[ 1243.092018][T23683] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000358,resuid=0x0000000000000000,stripe=0x0000000000000009,,errors=continue
[ 1243.097914][T23690] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[ 1243.122397][T23690] ext4 filesystem being mounted at /289/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1243.274667][T23721] EXT4-fs (loop4): error: journal path ./bus is not a block device
[ 1243.406405][T23737] tc_dump_action: action bad kind
[ 1243.463716][T23734] EXT4-fs (loop1): mounted filesystem without journal. Opts: noquota,barrier=0x0000000000001003,errors=remount-ro,noauto_da_alloc,dioread_lock,
[ 1243.491522][T23737] x_tables: ip6_tables: NETMAP.0 target: invalid size 40 (kernel) != (user) 0
[ 1243.501328][T23734] ext4 filesystem being mounted at /439/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1243.556264][T23750] syz.0.8025[23750] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1243.556342][T23750] syz.0.8025[23750] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1243.584287][T23734] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.8019: corrupted xattr block 19
[ 1243.648041][T23734] EXT4-fs (loop1): Remounting filesystem read-only
[ 1243.656107][T23734] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[ 1243.874114][T23769] tipc: Started in network mode
[ 1243.880183][T23769] tipc: Own node identity f20627fa0fdc, cluster identity 4711
[ 1243.896980][T23769] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1243.914910][T23773] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[ 1243.926653][T23768] tipc: Resetting bearer <eth:syzkaller0>
[ 1243.926803][T23773] SELinux: failed to load policy
[ 1243.959093][T23768] tipc: Disabling bearer <eth:syzkaller0>
[ 1244.058192][T23785] syz.5.8039[23785] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1244.058264][T23785] syz.5.8039[23785] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1244.140382][T23794] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[ 1244.473971][T23815] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 1244.485080][T23829] syz.4.8061[23829] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1244.485155][T23829] syz.4.8061[23829] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1244.510760][T23815] ext4 filesystem being mounted at /183/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1244.546165][T23836] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8063'.
[ 1244.564686][T23839] syz.1.8065[23839] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1244.565036][T23839] syz.1.8065[23839] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1244.587084][T23836] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 1244.703062][T23848] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1244.711375][T23847] tipc: Resetting bearer <eth:syzkaller0>
[ 1244.764445][T23847] tipc: Disabling bearer <eth:syzkaller0>
[ 1244.870759][T23854] EXT4-fs (loop3): failed to initialize system zone (-117)
[ 1244.878382][T23854] EXT4-fs (loop3): mount failed
[ 1244.891817][T23863] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=23863 comm=syz.1.8074
[ 1244.969631][T23870] EXT4-fs (loop1): Ignoring removed bh option
[ 1244.976871][T23870] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1244.996596][T23870] EXT4-fs (loop1): mounted filesystem without journal. Opts: delalloc,jqfmt=vfsold,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nodioread_nolock,user_xattr,bh,dioread_nolock,,errors=continue
[ 1245.109892][T23882] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095
[ 1245.207819][T23894] EXT4-fs (loop5): mounted filesystem without journal. Opts: bsdgroups,,errors=continue
[ 1245.233611][T23894] ext4 filesystem being mounted at /190/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1245.542344][T23906] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.8089: bg 0: block 248: padding at end of block bitmap is not set
[ 1245.557816][T23906] EXT4-fs error (device loop1): ext4_acquire_dquot:6226: comm syz.1.8089: Failed to acquire dquot type 1
[ 1245.571630][T23906] EXT4-fs (loop1): 1 truncate cleaned up
[ 1245.577667][T23906] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[ 1245.588099][T23906] ext4 filesystem being mounted at /461/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1245.605601][T23915] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000008,min_batch_time=0x0000000000000000,,errors=continue
[ 1245.621804][T23915] ext4 filesystem being mounted at /396/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1245.635812][T23919] EXT4-fs (loop5): Ignoring removed nobh option
[ 1245.672365][T23919] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobh,abort,,errors=continue
[ 1245.683710][T23919] ext4 filesystem being mounted at /192/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1246.165400][   T24] kauditd_printk_skb: 258 callbacks suppressed
[ 1246.165425][   T24] audit: type=1400 audit(1746831575.443:1305): avc:  denied  { load_policy } for  pid=23927 comm="syz.1.8095" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[ 1246.489646][T23935] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[ 1246.502768][T23935] SELinux: failed to load policy
[ 1246.693373][T23931] EXT4-fs (loop0): Ignoring removed bh option
[ 1246.705576][   T24] audit: type=1400 audit(1746831575.983:1306): avc:  denied  { create } for  pid=23947 comm="syz.4.8098" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1246.739885][T23931] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1246.743274][   T24] audit: type=1400 audit(1746831576.013:1307): avc:  denied  { write } for  pid=23947 comm="syz.4.8098" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1246.774311][   T24] audit: type=1400 audit(1746831576.013:1308): avc:  denied  { nlmsg_write } for  pid=23947 comm="syz.4.8098" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1246.797802][   T24] audit: type=1400 audit(1746831576.083:1309): avc:  denied  { block_suspend } for  pid=23953 comm="syz.1.8104" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1246.830899][T23931] EXT4-fs (loop0): mounted filesystem without journal. Opts: inlinecrypt,errors=remount-ro,barrier=0x0000000000000002,errors=remount-ro,data_err=ignore,jqfmt=vfsv1,nodelalloc,grpquota,noload,nouid32,bh,dioread_nolock,
[ 1246.867024][   T24] audit: type=1400 audit(1746831576.143:1310): avc:  denied  { relabelfrom } for  pid=23960 comm="syz.4.8107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1246.894771][T23951] EXT4-fs (loop5): Ignoring removed bh option
[ 1246.914113][T23951] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1246.942598][   T24] audit: type=1400 audit(1746831576.213:1311): avc:  denied  { relabelto } for  pid=23960 comm="syz.4.8107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1246.965438][T23951] EXT4-fs (loop5): mounted filesystem without journal. Opts: delalloc,jqfmt=vfsold,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nodioread_nolock,user_xattr,bh,dioread_nolock,,errors=continue
[ 1247.004004][T23965] SELinux: failed to load policy
[ 1247.021487][   T24] audit: type=1400 audit(1746831576.293:1312): avc:  denied  { mount } for  pid=23974 comm="syz.4.8111" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 1247.044863][   T24] audit: type=1400 audit(1746831576.293:1313): avc:  denied  { ioctl } for  pid=23946 comm="syz.5.8102" path="/194/file1/file1" dev="loop5" ino=15 ioctlcmd=0x8904 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1247.082660][   T24] audit: type=1400 audit(1746831576.353:1314): avc:  denied  { remount } for  pid=23966 comm="syz.1.8109" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 1247.255148][T23967] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1247.328010][T23967] EXT4-fs (loop1): 1 truncate cleaned up
[ 1247.362283][T23967] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,init_itable=0x0000000000000002,errors=remount-ro,quota,nodelalloc,inlinecrypt,barrier=0x0000000000007a34,usrjquota=,
[ 1247.375372][T23991] SELinux: failed to load policy
[ 1247.455230][T24013] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=24013 comm=syz.0.8126
[ 1247.511334][T24006]  loop3: p1 < > p4
[ 1247.517660][T24006] loop3: p4 size 8388608 extends beyond EOD, truncated
[ 1247.656489][   T95]  loop3: p1 < > p4
[ 1247.661092][   T95] loop3: p4 size 8388608 extends beyond EOD, truncated
[ 1247.949865][ T6311] udevd[6311]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[ 1247.964681][ T6309] udevd[6309]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[ 1248.158297][T24027] hub 8-0:1.0: USB hub found
[ 1248.164354][T24027] hub 8-0:1.0: 1 port detected
[ 1248.366001][T24033] SELinux:  Context system_u:object_r:dmidecode_exec_t:s0 is not valid (left unmapped).
[ 1248.685360][T24040] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1248.833562][T24047] syz.0.8139[24047] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1248.833898][T24047] syz.0.8139[24047] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1248.852083][T24040] EXT4-fs error (device loop4): __ext4_iget:5007: inode #11: block 1: comm syz.4.8134: invalid block
[ 1248.877779][T24040] EXT4-fs error (device loop4): ext4_orphan_get:1400: comm syz.4.8134: couldn't read orphan inode 11 (err -117)
[ 1248.891844][T24040] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,user_xattr,max_dir_size_kb=0x0000000000000009,bsddf,nouid32,sysvgroups,nojournal_checksum,noauto_da_alloc,test_dummy_encryption,jqfmt=vfsv1,journal_dev=0x0000000000000008,acl,,errors=continue
[ 1249.614333][T24040] device batadv_slave_0 entered promiscuous mode
[ 1249.622112][T24039] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1249.645555][T24039] EXT4-fs (loop5): 1 truncate cleaned up
[ 1249.652118][T24039] EXT4-fs (loop5): mounted filesystem without journal. Opts: noload,nombcache,journal_ioprio=0x0000000000000003,errors=remount-ro,lazytime,minixdf,noquota,usrjquota=,
[ 1249.729670][T24039] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.8138: bg 0: block 256: padding at end of block bitmap is not set
[ 1249.747297][T24039] EXT4-fs (loop5): Remounting filesystem read-only
[ 1249.940626][T24073] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[ 1249.952754][T24073] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[ 1249.986096][T24073] JBD2: no valid journal superblock found
[ 1249.991966][T24073] EXT4-fs (loop4): error loading journal
[ 1250.200231][T24087] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 1250.232996][T24101] syz.1.8160[24101] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1250.233078][T24101] syz.1.8160[24101] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1250.279260][T20997] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[ 1250.312542][T20997] EXT4-fs error (device loop5) in ext4_mb_clear_bb:5645: Corrupt filesystem
[ 1250.323118][T24100] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[ 1250.339437][T24100] EXT4-fs (loop4): re-mounted. Opts: (null)
[ 1250.981287][T24140] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8175'.
[ 1250.995940][T24140] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8175'.
[ 1251.095116][T24142] EXT4-fs (loop0): revision level too high, forcing read-only mode
[ 1251.114998][T24142] EXT4-fs (loop0): orphan cleanup on readonly fs
[ 1251.122188][T24142] EXT4-fs error (device loop0): ext4_ext_check_inode:500: inode #3: comm syz.0.8176: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[ 1251.175874][T24142] EXT4-fs error (device loop0): ext4_quota_enable:6450: comm syz.0.8176: Bad quota inode: 3, type: 0
[ 1251.179058][   T24] kauditd_printk_skb: 272 callbacks suppressed
[ 1251.179071][   T24] audit: type=1326 audit(1746831580.453:1587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24108 comm="syz.4.8162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4f3c71a927 code=0x7ffc0000
[ 1251.203363][T24142] EXT4-fs warning (device loop0): ext4_enable_quotas:6491: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[ 1251.248938][T24142] EXT4-fs (loop0): Cannot turn on quotas: error -117
[ 1251.263059][T24142] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000008,grpquota,nouid32,nodelalloc,abort,data=ordered,barrier,journal_dev=0x0000000000000f35,,errors=continue
[ 1251.294041][   T24] audit: type=1326 audit(1746831580.453:1588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24108 comm="syz.4.8162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4f3c6bfb39 code=0x7ffc0000
[ 1251.321546][   T24] audit: type=1326 audit(1746831580.453:1589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24108 comm="syz.4.8162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f4f3c723969 code=0x7ffc0000
[ 1251.416216][   T24] audit: type=1326 audit(1746831580.533:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24113 comm="syz.4.8162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f4f3c756225 code=0x7ffc0000
[ 1251.457069][T24164] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8184'.
[ 1251.469935][   T24] audit: type=1326 audit(1746831580.533:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24113 comm="syz.4.8162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f4f3c723969 code=0x7ffc0000
[ 1251.470478][T24170] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[ 1251.496236][   T24] audit: type=1326 audit(1746831580.633:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24157 comm="syz.3.8180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1251.507287][T24159] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[ 1251.529241][   T24] audit: type=1326 audit(1746831580.633:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24157 comm="syz.3.8180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1251.562298][   T24] audit: type=1326 audit(1746831580.633:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24157 comm="syz.3.8180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1251.587149][   T24] audit: type=1326 audit(1746831580.633:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24157 comm="syz.3.8180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1251.611881][T24159] ext4 filesystem being mounted at /415/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1251.611970][   T24] audit: type=1326 audit(1746831580.633:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24157 comm="syz.3.8180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1252.194187][T24193] syz.1.8198[24193] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1252.194239][T24193] syz.1.8198[24193] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1252.426622][T24216] syz.3.8210[24216] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1252.454577][T24216] syz.3.8210[24216] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1252.606263][T24235] process 'syz.0.8217' launched '/dev/fd/3' with NULL argv: empty string added
[ 1252.629977][T24233] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8214'.
[ 1253.018666][T24249] SELinux:  Context Ü is not valid (left unmapped).
[ 1253.286238][T24287] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=24287 comm=syz.1.8239
[ 1253.326090][T24282] EXT4-fs (loop5): 1 orphan inode deleted
[ 1253.333128][T24282] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 1253.333243][T24282] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1253.739820][T24337] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1253.773299][T24337] EXT4-fs error (device loop5): ext4_validate_block_bitmap:429: comm syz.5.8262: bg 0: block 5: invalid block bitmap
[ 1253.790672][T24337] EXT4-fs error (device loop5) in ext4_mb_clear_bb:5645: Corrupt filesystem
[ 1253.826740][T24337] EXT4-fs error (device loop5): ext4_free_branches:1026: inode #11: comm syz.5.8262: invalid indirect mapped block 3 (level 2)
[ 1253.864757][T24337] EXT4-fs (loop5): 2 truncates cleaned up
[ 1253.871231][T24337] EXT4-fs (loop5): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,dioread_nolock,grpquota,,errors=continue
[ 1254.010482][T24365] 9pnet: Could not find request transport: rdma
[ 1254.112719][T24372] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 1254.170721][T24378] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[ 1254.179428][T24381] bridge0: port 3(vlan2) entered blocking state
[ 1254.187393][T24381] bridge0: port 3(vlan2) entered disabled state
[ 1254.188093][T24378] EXT4-fs (loop0): orphan cleanup on readonly fs
[ 1254.202920][T24378] EXT4-fs error (device loop0): ext4_acquire_dquot:6226: comm syz.0.8278: Failed to acquire dquot type 1
[ 1254.216419][T24378] EXT4-fs (loop0): 1 truncate cleaned up
[ 1254.222578][T24378] EXT4-fs (loop0): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,nomblk_io_submit,noquota,abort,noload,bsdgroups,,errors=continue
[ 1254.417692][T24401] syz.0.8289[24401] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1254.417767][T24401] syz.0.8289[24401] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1254.449523][T24407] netlink: 'syz.4.8292': attribute type 4 has an invalid length.
[ 1254.464485][T24409] netlink: 72 bytes leftover after parsing attributes in process `syz.0.8293'.
[ 1254.532633][T24416] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8296'.
[ 1254.549811][T24416] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8296'.
[ 1254.661860][T24412] attempt to access beyond end of device
[ 1254.661860][T24412] loop5: rw=2049, want=1041, limit=128
[ 1254.690473][T24412] attempt to access beyond end of device
[ 1254.690473][T24412] loop5: rw=524288, want=369, limit=128
[ 1254.703746][T24412] attempt to access beyond end of device
[ 1254.703746][T24412] loop5: rw=0, want=153, limit=128
[ 1254.716021][T24412] attempt to access beyond end of device
[ 1254.716021][T24412] loop5: rw=0, want=153, limit=128
[ 1254.717864][T24429] serio: Serial port ptm0
[ 1254.728259][T24412] attempt to access beyond end of device
[ 1254.728259][T24412] loop5: rw=0, want=153, limit=128
[ 1254.751852][T24412] attempt to access beyond end of device
[ 1254.751852][T24412] loop5: rw=0, want=153, limit=128
[ 1254.764205][T24412] attempt to access beyond end of device
[ 1254.764205][T24412] loop5: rw=0, want=153, limit=128
[ 1254.776123][T24412] attempt to access beyond end of device
[ 1254.776123][T24412] loop5: rw=0, want=153, limit=128
[ 1254.787952][T24412] attempt to access beyond end of device
[ 1254.787952][T24412] loop5: rw=0, want=153, limit=128
[ 1254.800056][T24412] attempt to access beyond end of device
[ 1254.800056][T24412] loop5: rw=0, want=153, limit=128
[ 1254.829279][T24434] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1254.846879][T24434] ext4 filesystem being mounted at /470/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1255.017465][T24452] netlink: 96 bytes leftover after parsing attributes in process `syz.4.8312'.
[ 1255.219341][T24464] EXT4-fs (loop1): mounted filesystem without journal. Opts: sb=0x0000000000000001,nodioread_nolock,,errors=continue
[ 1255.241273][T24464] ext4 filesystem being mounted at /518/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1255.385978][T24475] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,min_batch_time=0x0000000000000005,
[ 1255.415968][T24475] ext4 filesystem being mounted at /331/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1255.467374][ T9425] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0
[ 1255.480797][ T9425] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0
[ 1255.503065][ T9425] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0
[ 1255.519979][ T9425] hid-generic 0000:0004:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1255.554978][T24480] EXT4-fs error (device loop4): ext4_acquire_dquot:6226: comm syz.4.8322: Failed to acquire dquot type 1
[ 1255.576530][T24480] EXT4-fs (loop4): 1 truncate cleaned up
[ 1255.583983][T24480] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[ 1255.593822][T24480] ext4 filesystem being mounted at /464/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1255.683534][T24492] netlink: 'syz.3.8326': attribute type 13 has an invalid length.
[ 1255.821956][T24492] device veth1_macvtap entered promiscuous mode
[ 1256.046664][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[ 1256.080413][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1256.111443][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 1256.120885][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1256.129915][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1256.140354][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1256.151215][T24501] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[ 1256.161133][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1256.170772][T24501] EXT4-fs (loop0): error: could not find journal device path: error -2
[ 1256.180278][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1256.190574][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1256.199025][   T24] kauditd_printk_skb: 153 callbacks suppressed
[ 1256.199037][   T24] audit: type=1326 audit(1746831585.473:1746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24502 comm="syz.3.8330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1256.237258][   T24] audit: type=1326 audit(1746831585.473:1747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24502 comm="syz.3.8330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1256.271372][   T24] audit: type=1326 audit(1746831585.493:1748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24502 comm="syz.3.8330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1256.298124][   T24] audit: type=1326 audit(1746831585.513:1749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24502 comm="syz.3.8330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1256.324103][   T24] audit: type=1326 audit(1746831585.513:1750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24502 comm="syz.3.8330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1256.350092][   T24] audit: type=1326 audit(1746831585.513:1751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24502 comm="syz.3.8330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=4 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1256.376748][   T24] audit: type=1326 audit(1746831585.513:1752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24502 comm="syz.3.8330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1256.404132][   T24] audit: type=1326 audit(1746831585.513:1753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24502 comm="syz.3.8330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311409d969 code=0x7ffc0000
[ 1257.144044][T24524] loop_set_status: loop7 () has still dirty pages (nrpages=1152)
[ 1257.170794][   T24] audit: type=1326 audit(1746831586.443:1754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24532 comm="syz.0.8340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c62bc969 code=0x7ffc0000
[ 1257.196610][   T24] audit: type=1326 audit(1746831586.443:1755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24532 comm="syz.0.8340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f36c62bc969 code=0x7ffc0000
[ 1257.228387][T24528] EXT4-fs (loop1): Ignoring removed bh option
[ 1257.253759][T24528] EXT4-fs (loop1): Unrecognized mount option "mb_optimize_scan=0x0000000000000001" or missing value
[ 1257.853213][T24548] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8346'.
[ 1258.065336][T24565] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[ 1258.074440][T24565] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1258.088665][T24565] EXT4-fs (loop4): 1 truncate cleaned up
[ 1258.096076][T24565] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpjquota=,mblk_io_submit,debug_want_extra_isize=0x0000000000000068,lazytime,discard,grpquota,,errors=continue
[ 1258.232294][T24574] SELinux: failed to load policy
[ 1258.347897][T24576] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 198)
[ 1258.360502][T24576] FAT-fs (loop4): Filesystem has been set read-only
[ 1258.368806][T24576] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 198)
[ 1258.390577][T24583] syz.5.8359[24583] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1258.390644][T24583] syz.5.8359[24583] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1258.520580][T24596] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=24596 comm=syz.4.8364
[ 1258.673276][T24606] SELinux: failed to load policy
[ 1259.166964][T24609] EXT4-fs (loop4): 1 orphan inode deleted
[ 1259.173383][T24609] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[ 1259.184076][T24609] ext4 filesystem being mounted at /476/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1259.543819][T24623] syz.5.8372[24623] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1259.544257][T24623] syz.5.8372[24623] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1259.885037][T24661]  loop4: p1 < > p4
[ 1259.904328][T24661] loop4: p4 size 8388608 extends beyond EOD, truncated
[ 1260.299442][ T6107] udevd[6107]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[ 1260.718694][T24711] IPv4: Oversized IP packet from 127.202.26.0
[ 1261.050773][T24715] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[ 1261.064292][T24715] EXT4-fs (loop0): error: could not find journal device path: error -2
[ 1261.254515][   T24] kauditd_printk_skb: 92 callbacks suppressed
[ 1261.254558][   T24] audit: type=1400 audit(1746831590.533:1848): avc:  denied  { getopt } for  pid=24719 comm="syz.3.8414" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1261.467079][T24726] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1261.945928][T24737] ip6t_rpfilter: unknown options
[ 1262.118782][T24749] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1262.334991][T24749] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[ 1262.344669][T24749] EXT4-fs error (device loop5): ext4_free_branches:1026: inode #13: comm syz.5.8425: invalid indirect mapped block 2683928664 (level 1)
[ 1262.472769][T24749] EXT4-fs (loop5): Remounting filesystem read-only
[ 1262.534719][T24760] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[ 1262.606148][T24760] EXT4-fs (loop1): error: could not find journal device path: error -2
[ 1262.638706][T24766] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8432'.
[ 1262.711157][T24749] EXT4-fs (loop5): 1 truncate cleaned up
[ 1262.754670][T24749] EXT4-fs (loop5): mounted filesystem without journal. Opts: noblock_validity,dioread_nolock,errors=remount-ro,minixdf,jqfmt=vfsv0,usrjquota=."
[ 1263.062328][T24768] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1263.075415][T24768] EXT4-fs error (device loop4): ext4_orphan_get:1421: comm syz.4.8433: bad orphan inode 13
[ 1263.094388][   T24] audit: type=1400 audit(1746831592.373:1849): avc:  denied  { bind } for  pid=24778 comm="syz.3.8437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1263.121617][T24768] ext4_test_bit(bit=12, block=18) = 1
[ 1263.129253][T24768] is_bad_inode(inode)=0
[ 1263.134022][T24768] NEXT_ORPHAN(inode)=2130706432
[ 1263.139023][T24768] max_ino=32
[ 1263.142333][T24768] i_nlink=1
[ 1263.153522][T24768] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[ 1263.180928][   T24] audit: type=1326 audit(1746831592.453:1850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24784 comm="syz.1.8439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1263.180955][   T24] audit: type=1326 audit(1746831592.453:1851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24784 comm="syz.1.8439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1263.180971][   T24] audit: type=1326 audit(1746831592.453:1852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24784 comm="syz.1.8439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1263.180988][   T24] audit: type=1326 audit(1746831592.453:1853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24784 comm="syz.1.8439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1263.181003][   T24] audit: type=1326 audit(1746831592.453:1854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24784 comm="syz.1.8439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1263.181218][   T24] audit: type=1400 audit(1746831592.453:1855): avc:  denied  { execute } for  pid=24767 comm="syz.4.8433" name="file2" dev="loop4" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1263.181571][T24768] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 1263.181819][   T24] audit: type=1326 audit(1746831592.453:1856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24784 comm="syz.1.8439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1263.181888][   T24] audit: type=1326 audit(1746831592.453:1857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24784 comm="syz.1.8439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84f11e4969 code=0x7ffc0000
[ 1263.287990][T24768] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.8433: bg 0: block 248: padding at end of block bitmap is not set
[ 1263.288612][T24786] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[ 1263.288699][T24786] ext4 filesystem being mounted at /354/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1263.294582][T24768] EXT4-fs error (device loop4): ext4_acquire_dquot:6226: comm syz.4.8433: Failed to acquire dquot type 1
[ 1263.315909][T24796] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1263.479232][T24768] EXT4-fs warning (device loop4): ext4_enable_quotas:6491: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[ 1263.496741][T24791] tipc: Started in network mode
[ 1263.501874][T24791] tipc: Own node identity fffffffb, cluster identity 4711
[ 1263.501883][T24791] tipc: 32-bit node address hash set to fffffffb
[ 1263.580672][T24805] netlink: 'syz.4.8444': attribute type 2 has an invalid length.
[ 1264.136299][T24824] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a806c118, mo2=0002]
[ 1264.145183][T24824] EXT4-fs (loop0): failed to initialize system zone (-117)
[ 1264.154545][T24824] EXT4-fs (loop0): mount failed
[ 1264.294322][T24831] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[ 1264.339031][T24843] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1264.549189][T24858] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.8466' sets config #1
[ 1264.711034][T24879] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[ 1264.725309][T24879] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[ 1264.736253][T24879] EXT4-fs (loop3): 1 truncate cleaned up
[ 1264.742529][T24879] EXT4-fs (loop3): mounted filesystem without journal. Opts: usrquota,usrjquota="data=ordered,noload,grpid,grpjquota="init_itable,jqfmt=vfsold,noblock_validity,,errors=continue
[ 1264.766774][T24879] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=122 sclass=netlink_route_socket pid=24879 comm=syz.3.8475
[ 1265.415112][T24950] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1265.465554][T24949] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[ 1265.580504][T24973] netlink: '&': attribute type 4 has an invalid length.
[ 1265.608761][T24973] netlink: 3657 bytes leftover after parsing attributes in process `&'.
[ 1265.775656][T24983] EXT4-fs (loop1): Ignoring removed nobh option
[ 1265.782662][T24983] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1265.797551][T24990] hub 8-0:1.0: USB hub found
[ 1265.802516][T24990] hub 8-0:1.0: 1 port detected
[ 1265.804642][T24993] ==================================================================
[ 1265.816388][T24993] BUG: KASAN: slab-out-of-bounds in tc_setup_flow_action+0x842/0x3280
[ 1265.825202][T24993] Read of size 8 at addr ffff88811558b2c0 by task syz.5.8525/24993
[ 1265.833499][T24993] 
[ 1265.836347][T24993] CPU: 0 PID: 24993 Comm: syz.5.8525 Tainted: G        W         5.10.237-syzkaller-00309-g7e2543346ff7 #0
[ 1265.848258][T24993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1265.858874][T24993] Call Trace:
[ 1265.862200][T24993]  __dump_stack+0x21/0x24
[ 1265.866698][T24993]  dump_stack_lvl+0x169/0x1d8
[ 1265.871757][T24993]  ? show_regs_print_info+0x18/0x18
[ 1265.877522][T24993]  ? thaw_kernel_threads+0x220/0x220
[ 1265.883060][T24993]  print_address_description+0x7f/0x2c0
[ 1265.888879][T24993]  ? tc_setup_flow_action+0x842/0x3280
[ 1265.894680][T24993]  kasan_report+0xe2/0x130
[ 1265.899366][T24993]  ? flow_action_cookie_create+0x28/0x90
[ 1265.905597][T24993]  ? tc_setup_flow_action+0x842/0x3280
[ 1265.911140][T24993]  __asan_report_load8_noabort+0x14/0x20
[ 1265.917052][T24993]  tc_setup_flow_action+0x842/0x3280
[ 1265.922722][T24993]  ? __kmalloc+0x1a7/0x330
[ 1265.927136][T24993]  ? flow_rule_alloc+0x32/0x2c0
[ 1265.932474][T24993]  mall_replace_hw_filter+0x293/0x810
[ 1265.938547][T24993]  ? pcpu_block_update_hint_alloc+0x8bc/0xc50
[ 1265.945863][T24993]  ? mall_set_parms+0x410/0x410
[ 1265.950986][T24993]  ? tcf_exts_destroy+0xb0/0xb0
[ 1265.956440][T24993]  ? pcpu_alloc+0xf8a/0x16b0
[ 1265.961183][T24993]  ? mall_set_parms+0x19d/0x410
[ 1265.966167][T24993]  mall_change+0x528/0x750
[ 1265.970787][T24993]  ? __kasan_check_write+0x14/0x20
[ 1265.975914][T24993]  ? mall_get+0xa0/0xa0
[ 1265.980173][T24993]  ? tcf_chain_tp_insert_unique+0xac1/0xc10
[ 1265.986702][T24993]  ? nla_strcmp+0xf4/0x140
[ 1265.991376][T24993]  tc_new_tfilter+0x13f6/0x1a10
[ 1265.996570][T24993]  ? mall_get+0xa0/0xa0
[ 1266.000811][T24993]  ? tcf_gate_entry_destructor+0x20/0x20
[ 1266.007023][T24993]  ? security_capable+0x87/0xb0
[ 1266.012443][T24993]  ? ns_capable+0x8c/0xf0
[ 1266.016966][T24993]  ? netlink_net_capable+0x125/0x160
[ 1266.022454][T24993]  ? tcf_gate_entry_destructor+0x20/0x20
[ 1266.028257][T24993]  rtnetlink_rcv_msg+0x800/0xb90
[ 1266.033592][T24993]  ? rtnetlink_bind+0x80/0x80
[ 1266.038715][T24993]  ? arch_stack_walk+0xee/0x140
[ 1266.044329][T24993]  ? stack_trace_save+0x98/0xe0
[ 1266.049344][T24993]  ? stack_trace_snprint+0xf0/0xf0
[ 1266.055125][T24993]  ? memcpy+0x56/0x70
[ 1266.059124][T24993]  ? avc_has_perm+0x234/0x360
[ 1266.063793][T24993]  ? __kasan_slab_alloc+0xbd/0xf0
[ 1266.069600][T24993]  ? slab_post_alloc_hook+0x5d/0x2f0
[ 1266.075416][T24993]  ? ___sys_sendmsg+0x1f0/0x260
[ 1266.080672][T24993]  ? avc_has_perm_noaudit+0x240/0x240
[ 1266.086529][T24993]  ? selinux_nlmsg_lookup+0x3fb/0x4a0
[ 1266.092236][T24993]  netlink_rcv_skb+0x1e0/0x430
[ 1266.096995][T24993]  ? rtnetlink_bind+0x80/0x80
[ 1266.102254][T24993]  ? netlink_ack+0xb80/0xb80
[ 1266.107271][T24993]  ? __netlink_lookup+0x387/0x3b0
[ 1266.112369][T24993]  rtnetlink_rcv+0x1c/0x20
[ 1266.117169][T24993]  netlink_unicast+0x87c/0xa40
[ 1266.122397][T24993]  netlink_sendmsg+0x88d/0xb30
[ 1266.127800][T24993]  ? schedule_preempt_disabled+0x20/0x20
[ 1266.133919][T24993]  ? netlink_getsockopt+0x530/0x530
[ 1266.139220][T24993]  ? security_socket_sendmsg+0x82/0xa0
[ 1266.144941][T24993]  ? netlink_getsockopt+0x530/0x530
[ 1266.150429][T24993]  ____sys_sendmsg+0x5a2/0x8c0
[ 1266.155423][T24993]  ? __sys_sendmsg_sock+0x40/0x40
[ 1266.160762][T24993]  ? import_iovec+0x7c/0xb0
[ 1266.166085][T24993]  ___sys_sendmsg+0x1f0/0x260
[ 1266.171032][T24993]  ? __sys_sendmsg+0x250/0x250
[ 1266.176132][T24993]  ? __fdget+0x1a1/0x230
[ 1266.180726][T24993]  __x64_sys_sendmsg+0x1e2/0x2a0
[ 1266.185870][T24993]  ? ___sys_sendmsg+0x260/0x260
[ 1266.191052][T24993]  ? switch_fpu_return+0x197/0x340
[ 1266.197212][T24993]  do_syscall_64+0x31/0x40
[ 1266.202504][T24993]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1266.208398][T24993] RIP: 0033:0x7fd8b84ea969
[ 1266.212816][T24993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1266.233022][T24993] RSP: 002b:00007fd8b6b53038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1266.241612][T24993] RAX: ffffffffffffffda RBX: 00007fd8b8711fa0 RCX: 00007fd8b84ea969
[ 1266.250137][T24993] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004
[ 1266.259251][T24993] RBP: 00007fd8b856cab1 R08: 0000000000000000 R09: 0000000000000000
[ 1266.267450][T24993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1266.275544][T24993] R13: 0000000000000000 R14: 00007fd8b8711fa0 R15: 00007ffde31503e8
[ 1266.283626][T24993] 
[ 1266.285955][T24993] Allocated by task 24993:
[ 1266.290752][T24993]  __kasan_kmalloc+0xda/0x110
[ 1266.295515][T24993]  __kmalloc+0x1a7/0x330
[ 1266.299748][T24993]  tcf_idr_create+0x5f/0x790
[ 1266.304672][T24993]  tcf_idr_create_from_flags+0x61/0x70
[ 1266.310213][T24993]  tcf_gact_init+0x2b4/0x520
[ 1266.314795][T24993]  tcf_action_init_1+0x3e1/0x670
[ 1266.319836][T24993]  tcf_action_init+0x1e6/0x700
[ 1266.324940][T24993]  tcf_exts_validate+0x215/0x510
[ 1266.330149][T24993]  mall_set_parms+0x4b/0x410
[ 1266.335432][T24993]  mall_change+0x45c/0x750
[ 1266.340135][T24993]  tc_new_tfilter+0x13f6/0x1a10
[ 1266.344984][T24993]  rtnetlink_rcv_msg+0x800/0xb90
[ 1266.349920][T24993]  netlink_rcv_skb+0x1e0/0x430
[ 1266.354859][T24993]  rtnetlink_rcv+0x1c/0x20
[ 1266.359294][T24993]  netlink_unicast+0x87c/0xa40
[ 1266.364334][T24993]  netlink_sendmsg+0x88d/0xb30
[ 1266.369199][T24993]  ____sys_sendmsg+0x5a2/0x8c0
[ 1266.373980][T24993]  ___sys_sendmsg+0x1f0/0x260
[ 1266.378672][T24993]  __x64_sys_sendmsg+0x1e2/0x2a0
[ 1266.383683][T24993]  do_syscall_64+0x31/0x40
[ 1266.388806][T24993]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1266.394949][T24993] 
[ 1266.397291][T24993] The buggy address belongs to the object at ffff88811558b200
[ 1266.397291][T24993]  which belongs to the cache kmalloc-192 of size 192
[ 1266.412144][T24993] The buggy address is located 0 bytes to the right of
[ 1266.412144][T24993]  192-byte region [ffff88811558b200, ffff88811558b2c0)
[ 1266.426723][T24993] The buggy address belongs to the page:
[ 1266.432577][T24993] page:ffffea00045562c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11558b
[ 1266.443247][T24993] flags: 0x4000000000000200(slab)
[ 1266.448499][T24993] raw: 4000000000000200 0000000000000000 0000000400000001 ffff888100043380
[ 1266.457863][T24993] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 1266.466979][T24993] page dumped because: kasan: bad access detected
[ 1266.474007][T24993] page_owner tracks the page as allocated
[ 1266.479813][T24993] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 95, ts 1253741652370, free_ts 1253740894155
[ 1266.496152][T24993]  prep_new_page+0x179/0x180
[ 1266.500736][T24993]  get_page_from_freelist+0x2235/0x23d0
[ 1266.506272][T24993]  __alloc_pages_nodemask+0x268/0x5f0
[ 1266.511720][T24993]  new_slab+0x84/0x3f0
[ 1266.515780][T24993]  ___slab_alloc+0x2a6/0x450
[ 1266.520365][T24993]  __slab_alloc+0x63/0xa0
[ 1266.524780][T24993]  kmem_cache_alloc_trace+0x1b3/0x2e0
[ 1266.530141][T24993]  kernfs_fop_open+0x343/0xb30
[ 1266.534985][T24993]  do_dentry_open+0x793/0x1090
[ 1266.539829][T24993]  vfs_open+0x73/0x80
[ 1266.543805][T24993]  path_openat+0x27ad/0x3160
[ 1266.548478][T24993]  do_filp_open+0x1b3/0x3e0
[ 1266.552977][T24993]  do_sys_openat2+0x14c/0x6d0
[ 1266.557758][T24993]  __x64_sys_openat+0x136/0x160
[ 1266.562631][T24993]  do_syscall_64+0x31/0x40
[ 1266.567256][T24993]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1266.573242][T24993] page last free stack trace:
[ 1266.577927][T24993]  free_unref_page_prepare+0x2b7/0x2d0
[ 1266.583488][T24993]  __free_pages+0x14b/0x380
[ 1266.587982][T24993]  free_pages+0x82/0x90
[ 1266.592138][T24993]  selinux_genfs_get_sid+0x20b/0x250
[ 1266.597714][T24993]  inode_doinit_with_dentry+0x86d/0xd70
[ 1266.603338][T24993]  selinux_d_instantiate+0x27/0x40
[ 1266.608527][T24993]  security_d_instantiate+0x9e/0xf0
[ 1266.613824][T24993]  d_splice_alias+0x6d/0x390
[ 1266.618405][T24993]  kernfs_iop_lookup+0x2c5/0x310
[ 1266.623645][T24993]  __lookup_slow+0x2aa/0x3e0
[ 1266.628312][T24993]  lookup_slow+0x57/0x70
[ 1266.632741][T24993]  walk_component+0x325/0x460
[ 1266.637671][T24993]  path_lookupat+0x180/0x490
[ 1266.642376][T24993]  filename_lookup+0x1d5/0x600
[ 1266.647629][T24993]  user_path_at_empty+0x43/0x50
[ 1266.653011][T24993]  do_readlinkat+0xd4/0x480
[ 1266.657772][T24993] 
[ 1266.660372][T24993] Memory state around the buggy address:
[ 1266.666205][T24993]  ffff88811558b180: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1266.674945][T24993]  ffff88811558b200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1266.683712][T24993] >ffff88811558b280: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[ 1266.692027][T24993]                                            ^
[ 1266.698269][T24993]  ffff88811558b300: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1266.706699][T24993]  ffff88811558b380: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1266.715184][T24993] ==================================================================
[ 1266.723719][T24993] Disabling lock debugging due to kernel taint
[ 1266.754454][T24983] EXT4-fs (loop1): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,jqfmt=vfsold,resgid=0x0000000000000000,data_err=ignore,jqfmt=vfsv0,nobh,user_xattr,nobarrier,jqfmt=vfsold,nojournal_checksum,dioread_nolock,,errors=continue
[ 1266.813291][T24983] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3342: comm syz.1.8522: Allocating blocks 385-513 which overlap fs metadata
[ 1266.833842][   T24] kauditd_printk_skb: 146 callbacks suppressed
[ 1266.838497][T24983] EXT4-fs (loop1): pa ffff88811c15fe70: logic 16, phys. 129, len 24
[ 1266.841015][   T24] audit: type=1400 audit(1746831596.103:2002): avc:  denied  { append } for  pid=24982 comm="syz.1.8522" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1266.848577][T24983] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4359: group 0, free 0, pa_free 8