last executing test programs:

1m6.960939477s ago: executing program 3 (id=683):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r3, 0x40505412, &(0x7f00000000c0)={0x5, 0x897, 0x200, 0x0, 0xf})
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010080030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a32000000008c000000060a010400000000000000000100000008000b400000000064000480340001800b000100657874686472000024000280080001400000000c0800034000000000080004400000002205000200070000002c0001800b0001007470726f787900001c00028008000240000000110800034000fdff1008000140000000020900010073797a30"], 0x100}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f00000003c0)={'wg1\x00', <r6=>0x0})
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000500)={0x3, 0x4, 0x4, 0xa, 0x0, r2, 0x4, '\x00', r6, 0xffffffffffffffff, 0x4, 0x4, 0x4}, 0x50)
lsetxattr$security_selinux(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100), &(0x7f0000000140)='system_u:object_r:getty_var_run_t:s0\x00', 0x25, 0x2)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r2, 0x40605346, &(0x7f0000000580)={0x101, 0x0, {0xffffffffffffffff, 0x0, 0xfffffffe, 0x2, 0x800}})
futimesat(0xffffffffffffffff, 0x0, 0xfffffffffffffffd)
r7 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_int(r7, 0x0, 0xf, &(0x7f0000000100)=0xfffffffffffffff9, 0x4)
bind$inet(r7, &(0x7f0000000000)={0x2, 0x4e23, @empty}, 0x10)
fcntl$F_GET_RW_HINT(r5, 0x40b, &(0x7f0000000200))
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000800000000000070000000900010073797a30000000007c000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d38001280140001800c000100636f756e7465720004000280200001800e000100636f6e6e6c696d69740000000c00028008000140000000080800034000000110"], 0xc4}}, 0x20050890)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.cpu/syz0\x00', 0x1ff)

1m6.804177s ago: executing program 3 (id=685):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, 0x0, &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x42073, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)

1m6.80234966s ago: executing program 3 (id=687):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
unshare(0x4020400)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000002340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
unshare(0x22020400)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x15, 0x3, &(0x7f0000000900)=ANY=[@ANYRES32], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport}, 0x94)
r3 = socket(0x10, 0x800000000080002, 0x2)
setsockopt$sock_attach_bpf(r3, 0x1, 0x34, &(0x7f00000000c0)=r2, 0x4)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000000)={'wg0\x00', <r4=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r4, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r5, 0x0, 0x487, &(0x7f0000000340)={{0x2c, @empty, 0x4e20, 0x0, 'sed\x00', 0x11, 0x49, 0xe}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e21, 0x4, 0x71983b17, 0x3}}, 0x44)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x49, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB='8\x00\x00\x00\x00\x00', @ANYRESOCT], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000040)='fib6_table_lookup\x00', r7}, 0x10)
r8 = socket(0xa, 0x2400000001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r8, 0x29, 0x2a, &(0x7f0000000340)={0x0, {{0xa, 0x2, 0x0, @mcast1}}}, 0x88)
r9 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r9, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x101000, 0x800, 0x2, 0x4}, 0x20)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000180), 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='kmem_cache_free\x00', r10}, 0x18)
openat$dir(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x800, 0x100)
faccessat2(r5, &(0x7f0000000240)='./file0\x00', 0x7, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r6}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000180)={@cgroup=r1, r1, 0x2f, 0x2000, 0x4}, 0x20)

1m6.740577372s ago: executing program 3 (id=688):
socket$inet(0x2, 0x1, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x2, 0x7fffffffffffffff}, 0x100b28, 0x1, 0x0, 0x5, 0x400, 0x21005, 0x3, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001000)={&(0x7f0000000140)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r2 = syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000300), &(0x7f0000000000)=ANY=[], 0xfe37, 0x0)
unlink(&(0x7f0000000180)='./file1\x00')
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r3, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r0, {0x7fff}}, './file1\x00'})
r5 = syz_clone(0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(r5, &(0x7f0000000100)='stack\x00')
fcntl$setown(r4, 0x8, r5)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8002, 0x0)
ioctl$TCSETSW2(r6, 0x5453, 0x0)

1m6.588854775s ago: executing program 3 (id=690):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x200000000000006}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000080)='./file1\x00', 0x1808004, &(0x7f0000000180)=ANY=[@ANYRES16=0x0, @ANYRESHEX], 0x4, 0x7e2, &(0x7f0000000f40)="$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")
r2 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
write$binfmt_script(r2, &(0x7f00000003c0)={'#! ', './file0'}, 0xb)
execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (fail_nth: 5)

1m6.392571738s ago: executing program 3 (id=698):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x42073, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)

1m6.363884939s ago: executing program 32 (id=698):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x42073, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)

2.228493197s ago: executing program 5 (id=1736):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)='syzkaller\x00', 0x4, 0xff0, &(0x7f000062b000)=""/4080, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0x3d, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000100)="2c8e", 0x2}, 0x50)

2.06832993s ago: executing program 5 (id=1737):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = perf_event_open(&(0x7f0000000fc0)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x10041, 0x0, 0x3, 0x4, 0x1, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000180)='cpu>=0||!')

1.896659034s ago: executing program 1 (id=1740):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0)={0x0, r0}, 0x8)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = syz_io_uring_setup(0x497, &(0x7f0000002180)={0x0, 0x787f, 0x100, 0x4, 0x1b0}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r2, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0x1f, 0x3}]}, 0x1, 0x1}, 0x1)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000d00)={0x8, {"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", 0x1000}}, 0x1006)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x2, r1, 0x0, 0x0, 0x0, 0x200, 0x1, {0x1}})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYRESDEC=0x0], &(0x7f0000000280)='syzkaller\x00', 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r5 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r6=>0x0})
ioctl$FS_IOC_GETFSUUID(r5, 0x80111500, &(0x7f0000000140))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000004679100000000000000000095000000"], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', r6, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x94)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r8, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0xe, 0xb}}}, 0x24}}, 0x800)

1.893732834s ago: executing program 0 (id=1741):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002400), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000000c0)={@local, @empty}, &(0x7f0000000100)=0xc)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_GET(r0, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002600)={&(0x7f0000000000)={0x28, r1, 0x303, 0x70bd27, 0x25dfdbfc, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x28}, 0x1, 0x0, 0xa1ffffffffffffff, 0x40008891}, 0x0)

1.837810155s ago: executing program 5 (id=1742):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$kcm(0x21, 0x2, 0x2)
recvmsg$kcm(r1, 0x0, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000035c0)="5c00000013006bcd9e3fe3dc4e48aa31086b8703340000001f00000000000000040014000d000a00140000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x240000c0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
sendmsg$DEVLINK_CMD_GET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x34, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40800}, 0x10)
kexec_load(0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x41000000}], 0x0)

1.786495476s ago: executing program 0 (id=1744):
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3f, 0x0, 0x0, 0x0, 0xb}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r2}, 0x18)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)

1.723774437s ago: executing program 1 (id=1747):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="3800000010000108fdffffff11581ceb", @ANYRES32=0x0, @ANYBLOB="000000002104020008001b"], 0x38}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000001200)={[{@nodiscard}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xeb}}, {@abort}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x55f, &(0x7f0000000580)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)
lsetxattr$security_ima(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000200)=ANY=[], 0x9, 0x1)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', &(0x7f00000003c0)='system.posix_acl_access\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000500)=ANY=[], 0xfe37, 0x0)

1.642154389s ago: executing program 1 (id=1749):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="13", 0x1}, {&(0x7f0000000000)="bc5eb4431acd5ce5071913a7662e072d59de759ccb91650000000000", 0x1c}], 0x2}, 0x4051)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/power/resume_offset', 0x242, 0x2bd)
write$RDMA_USER_CM_CMD_DESTROY_ID(r2, &(0x7f00000006c0)={0x1, 0x10, 0xfa00, {0x0}}, 0x18)
recvmsg$unix(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x2122)
socket$pppl2tp(0x18, 0x1, 0x1)

1.633633998s ago: executing program 0 (id=1750):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000042000501"], 0x14}, 0x1, 0x0, 0x0, 0x68840}, 0x4)
recvmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000004c0)=""/4091, 0xffb}], 0x1}}], 0x1, 0x2, 0x0)
perf_event_open(&(0x7f0000004cc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4044d, 0x6, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaf1d, 0x1, @perf_bp={0x0, 0x1}, 0x100410, 0x200, 0x2, 0x7, 0x9, 0xd, 0xf18, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
socket$inet6(0xa, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002ec0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="5953fdfffffffddbdf256b000000080043"], 0x28}}, 0x50)
sendmsg$NL80211_CMD_SET_WDS_PEER(r0, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x4c, r2, 0x100, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @random="eb4f43244390"}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x4040014)
syz_genetlink_get_family_id$team(&(0x7f0000000340), r3)
socket$kcm(0x10, 0x3, 0x10)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0xe, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000004851000"], &(0x7f00000006c0)='GPL\x00', 0x9}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000002000000000000000018110000732936a8df75ceb0e94d737477a2d32bad3bc0db3d64d9ff0b8edb2c549f38288dc8abb58b6473f5a37907b494837b98ee8fbbff9d16dec57b7a6ebffd64a43ef74e7d378bad04965b312add767a34bf1f9c9849a035654632ff4b76a0fb2f669397cd068680909aa721ac5d539bdd71905b21fc13a8bfbd04854572e46a9e5c", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r5}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r8}, 0x10)
open(&(0x7f0000000740)='./bus\x00', 0x143c62, 0x0)
mount(&(0x7f0000000000), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000080)={0x0, 0x3000000, 0x8, 0x1b, 0x100, &(0x7f00000000c0)="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"})

826.101364ms ago: executing program 5 (id=1752):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = perf_event_open(&(0x7f0000000fc0)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x10041, 0x0, 0x3, 0x4, 0x1, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000180)='cpu>=0||!')

806.180224ms ago: executing program 4 (id=1753):
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='stack\x00')
pread64(r0, &(0x7f000001a240)=""/102400, 0x19000, 0x41e)
socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000280)=0x14)
read(r2, &(0x7f00000019c0)=""/4097, 0x1001)

755.812466ms ago: executing program 5 (id=1755):
socket$igmp(0x2, 0x3, 0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001a0001002bbd7000030000000a000000", @ANYRES32=0x0, @ANYBLOB="0400000414000300070000000400000000000000000000001400010000000000000000000087"], 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x40000)
r1 = timerfd_create(0x8, 0x0) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]}) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]}) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
sync_file_range(0xffffffffffffffff, 0x6, 0x10000000000000, 0x2) (async)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, &(0x7f0000000380)={0x8, 0x3, 0x9, 0x6, 0xe0}) (async)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r2}, 0x38) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) (async)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x3, {0x0, 0x2, 0x1}}, 0x10)
listen(r4, 0x0) (async)
r5 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r5, &(0x7f0000002300)={&(0x7f0000000040)=@id={0x1e, 0x3, 0x3, {0x4e20, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x44}, 0x4) (async)
sendmsg$tipc(r5, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x480c0}, 0x0) (async)
accept4(r4, 0x0, 0x0, 0x400000000000000) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) (async)
set_mempolicy_home_node(&(0x7f0000146000/0x1000)=nil, 0x1000, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x18) (async)
timerfd_settime(r1, 0x3, &(0x7f0000000040)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
getpeername$unix(0xffffffffffffffff, &(0x7f0000000200)=@abs, &(0x7f0000000080)=0x6e)

755.663126ms ago: executing program 1 (id=1756):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="580000800000000000000000010000009500000000000076"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="300000003e000701fcfffffffddbdf25047c0000100036800c00020007009300000000000c0001"], 0x30}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

742.578626ms ago: executing program 4 (id=1758):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000024000000000500000ac4010000060a0b040000000000000000020000004c000480340001800b000100746172676574000024000280090001004d41524b000000000c00030002b51112d439c5920800024000000002140001800b0001006c6f6f6b75700000040002800900010073797a30000000000900020073797a3200000000f70007404884b24b02a8a7758a6889"], 0x1ec}, 0x1, 0x0, 0x0, 0x4000840}, 0x0)

701.090807ms ago: executing program 1 (id=1760):
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x0, &(0x7f0000003240)=ANY=[], 0x6, 0x360, &(0x7f0000000680)="$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")
creat(&(0x7f0000000d80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r1, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setreuid(0xffffffffffffffff, 0xee00)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f00000000c0)={0x6, 0x1, 0x0, 0x0, @vifc_lcl_addr=@dev={0xac, 0x14, 0x14, 0x3c}, @local}, 0x10)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
fchownat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0xc00)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYRES32=r2], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e088641100050000210281ac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)

700.816317ms ago: executing program 4 (id=1761):
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='wg1\x00')
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000240)={0xffffffffffffffff, 0x20, &(0x7f00000001c0)={&(0x7f0000000000)=""/74, 0x4a, <r0=>0x0, &(0x7f0000000140)=""/4, 0x4}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r0}, 0x94)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fdffffff18110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014003900b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000340)={0x5, 0x90, 0x1, 'queue0\x00', 0x1})
close(r3)

663.455047ms ago: executing program 5 (id=1762):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$kcm(0x21, 0x2, 0x2)
recvmsg$kcm(r1, 0x0, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000035c0)="5c00000013006bcd9e3fe3dc4e48aa31086b8703340000001f00000000000000040014000d000a00140000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x240000c0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
sendmsg$DEVLINK_CMD_GET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x34, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40800}, 0x10)
kexec_load(0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x41000000}], 0x0)

663.177077ms ago: executing program 1 (id=1763):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x9)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x7fffffffffffffff)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f00000003c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r4, 0x0, 0x1}, 0x18)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
flock(r5, 0x5)
r6 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x0)
flock(r6, 0x1)
flock(r6, 0x2)
dup3(r6, r5, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff274"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20d00, 0x0)
ioctl$TCSETS(r9, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0xffffffff, 0x0, 0x7, "ff00"})
r10 = syz_open_pts(r9, 0x0)
ioctl$TIOCSTI(r10, 0x5412, &(0x7f00000000c0))
ioctl$TCSETSW2(r10, 0x402c542c, &(0x7f0000000340)={0xffffef03, 0x6, 0x1e1, 0x6, 0x4, "65abe401feff800000000000006564db6600", 0x41, 0x1ff})
ioctl$TIOCSTI(r10, 0x5412, &(0x7f0000000080)=0x1)
syz_emit_ethernet(0x76, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60000000004006fffe800000000000000000000000000000aa00ff4e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="04c20000907800001e0401a1fe06e2d4c3d9fe04f98913127224407c80fe8a3616b4bf3400006cc81e0c89010000000000000003"], 0x0)
r11 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r11, &(0x7f00000002c0)={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000000d7c0d6c878f064eb", @ANYRES32=r12], 0x48}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x24, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r12, {}, {0xfff1, 0xffff}, {0x0, 0x4}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@gettfilter={0x24, 0x29, 0x6ce324a938346939, 0x0, 0x0, {0x0, 0x0, 0x0, r12, {0x3}, {0x0, 0xffff}}}, 0x24}}, 0x0)

662.676887ms ago: executing program 2 (id=1764):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)='syzkaller\x00', 0x4, 0xff0, &(0x7f000062b000)=""/4080, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0x3d, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000100)="2c8e", 0x2}, 0x50)

658.759127ms ago: executing program 4 (id=1765):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = perf_event_open(&(0x7f0000000fc0)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x10041, 0x0, 0x3, 0x4, 0x1, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000180)='cpu>=0||!')

588.345059ms ago: executing program 2 (id=1766):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES16=r0, @ANYRES16=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x18)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_access\x00', &(0x7f0000001440)=ANY=[@ANYBLOB="0200000001000000000000000400050000000000100000000000000020"], 0x24, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

580.574319ms ago: executing program 2 (id=1767):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000020c0)=ANY=[@ANYBLOB="18000000900c0000000000000000000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000004000000850000000600000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
r4 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r4, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x4, @dev}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=[{0x18, 0x110, 0x1, "dc"}], 0x18}, 0xfc00)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)={0x48, 0x3, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="120000000200000008000000ebd0000000000000", @ANYRES32, @ANYBLOB="00000000000000000200"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000004"], 0x50)

552.343619ms ago: executing program 4 (id=1768):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'ip6gre0\x00'})
sendmsg$nl_route_sched(r2, 0x0, 0x0)
syz_read_part_table(0x5eb, &(0x7f0000000f00)="$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") (fail_nth: 12)

309.785064ms ago: executing program 0 (id=1769):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r4=>0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000380)=ANY=[@ANYRES16=r3, @ANYBLOB="010000000000040000020f00000005002e000100000005002f000000000008000300", @ANYRES32=r4], 0x2c}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)

174.257337ms ago: executing program 2 (id=1770):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={0x0, r0, 0x0, 0x2}, 0x18)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000400)={0x0, r1}, 0x8)
socket$inet6_sctp(0xa, 0x801, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x80, 0x7a5, &(0x7f0000000f80)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f0000000800)={{}, {0x1, 0x6}, [{}], {0x4, 0x2}, [{0x8, 0x4}, {}, {0x8, 0x1}, {0x8, 0x5, 0xee01}], {}, {0x20, 0x2}}, 0x4c, 0x2)

134.142857ms ago: executing program 0 (id=1771):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000008c0), 0x4)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$AUTOFS_IOC_FAIL(r1, 0x9361, 0x5)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(0xffffffffffffffff, 0x84, 0x6b, &(0x7f0000000580)=[@in={0x2, 0x4e22, @loopback}], 0x10)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r2, &(0x7f00000003c0)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000540)='\x00', 0x1}], 0x1}}], 0x1, 0x20008050)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000580)=ANY=[], 0x1000f)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x36, 0x36, 0x6, [@fwd={0x8}, @datasec={0xf, 0x1, 0x0, 0xf, 0x2, [{0x3, 0x7, 0x5}], 'r]'}, @int={0x5, 0x0, 0x0, 0x1, 0x0, 0x47, 0x0, 0x54}]}, {0x0, [0x30, 0x2e, 0x30, 0x61]}}, &(0x7f0000000100)=""/125, 0x56, 0x7d, 0x0, 0x8}, 0x28)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000180)={'team0\x00', <r4=>0x0})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x2000000000000005, &(0x7f00000002c0)=ANY=[@ANYRES64=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', r4, @fallback=0xf, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r7)
sendmsg$NL80211_CMD_NEW_INTERFACE(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="090d2000000000f0ff0007"], 0x58}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x18)
syz_emit_ethernet(0x12, &(0x7f00000004c0)={@multicast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@llc={0x4, {@llc={0x42, 0x42, "f3", "f4"}}}}}, 0x0)
r9 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DEL_MFC(r9, 0x29, 0xcd, &(0x7f0000000300)={{0xa, 0x4e24, 0x7024, @private0, 0xd}, {0xa, 0x4e23, 0x8, @loopback, 0x7}, 0x0, {[0x10001, 0x8, 0x3ff, 0x4, 0xffff8d1b, 0x5, 0xc3a, 0xc]}}, 0x5c)

125.890528ms ago: executing program 2 (id=1772):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200000009000100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000024000000000500000ac4010000060a0b040000000000000000020000004c000480340001800b000100746172676574000024000280090001004d41524b000000000c00030002b51112d439c5920800024000000002140001800b0001006c6f6f6b75700000040002800900010073797a30000000000900020073797a3200000000f70007404884b24b02a8a7758a6889"], 0x1ec}, 0x1, 0x0, 0x0, 0x4000840}, 0x0)

54.300949ms ago: executing program 2 (id=1773):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000002000500000ac4010000060a0b040000000000000000020000004c000480340001800b000100746172676574000024000280090001004d41524b000000000c00030002b51112d439c5920800024000000002140001800b0001006c6f6f6b75700000040002800900010073797a30000000000900020073797a32"], 0x1ec}, 0x1, 0x0, 0x0, 0x4000840}, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x5, 0x0, 0xffffffffffbffffe, 0xfffffffc}, 0x0)
pipe2(&(0x7f0000000000), 0x8880)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x20000023896)

242.77µs ago: executing program 4 (id=1774):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
perf_event_open(0x0, 0x0, 0xb, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
r2 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80006f, 0x81501)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x4b5a9da54893e123, 0x3, 0x5, 0xffff}, 0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffab}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000180), &(0x7f00000001c0)=r4}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
ioperm(0x0, 0xd, 0x4000000000000020)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xf, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r8}, 0x10)
lstat(&(0x7f0000000440)='./file0\x00', 0x0)
r9 = syz_open_procfs(0x0, &(0x7f0000000100)='map_files\x00')
readlinkat(r9, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000540)=""/76, 0x4c)
write$cgroup_subtree(r9, &(0x7f0000000600)=ANY=[@ANYBLOB="2d64657669636573202b28ac1fe06f202d696f202d726c696d6974202d6e65745f636c73202b696f202d626c6b696f202b6e6574202d68756765746c62202b72646d6120959f1baff9a2cc7f5d03cb76cc93975d5acc1af046c3820735e312ad2dca0f5d01131a51333eb8147412b7177ddf530a4319a4daba7c57f72858ea6aae701e802cb31311f62240f89937b9f9a065f39eefdb24fb266f7c425700471d"], 0x44)
r10 = socket(0xa, 0x3, 0xff)
bind$inet(r10, &(0x7f0000000180)={0x2, 0x7dff, @empty}, 0x10)
setsockopt$CAN_RAW_FILTER(r9, 0x65, 0x1, &(0x7f00000002c0)=[{{0x3, 0x0, 0x1, 0x1}, {0x0, 0x1, 0x1, 0x1}}, {{0x2, 0x0, 0x1}, {0x3}}], 0x10)
close_range(r3, 0xffffffffffffffff, 0x0)

0s ago: executing program 0 (id=1775):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="3800000010000108fdffffff11581ceb8c", @ANYRES32=0x0, @ANYBLOB="000000002104020008001b"], 0x38}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000001200)={[{@nodiscard}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xeb}}, {@abort}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x55f, &(0x7f0000000580)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)
lsetxattr$security_ima(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000200)=ANY=[], 0x9, 0x1)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', &(0x7f00000003c0)='system.posix_acl_access\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000500)=ANY=[], 0xfe37, 0x0)

kernel console output (not intermixed with test programs):

4][ T9149] RBP: 00007f2e7afbf090 R08: 0000000000000000 R09: 0000000000000000
[   84.590424][ T9149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   84.590464][ T9149] R13: 00007f2e7c796038 R14: 00007f2e7c795fa0 R15: 00007ffea75e0c08
[   84.590483][ T9149]  </TASK>
[   84.801054][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a962400: rx timeout, send abort
[   84.809276][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811aefda00: rx timeout, send abort
[   84.817624][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a962400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   84.831982][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811aefda00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   84.854302][ T9151] FAULT_INJECTION: forcing a failure.
[   84.854302][ T9151] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.867560][ T9151] CPU: 0 UID: 0 PID: 9151 Comm: syz.0.941 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   84.867619][ T9151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   84.867635][ T9151] Call Trace:
[   84.867642][ T9151]  <TASK>
[   84.867651][ T9151]  __dump_stack+0x1d/0x30
[   84.867677][ T9151]  dump_stack_lvl+0xe8/0x140
[   84.867702][ T9151]  dump_stack+0x15/0x1b
[   84.867786][ T9151]  should_fail_ex+0x265/0x280
[   84.867886][ T9151]  should_fail+0xb/0x20
[   84.867988][ T9151]  should_fail_usercopy+0x1a/0x20
[   84.868018][ T9151]  _copy_to_user+0x20/0xa0
[   84.868085][ T9151]  __se_sys_move_pages+0xfbc/0x1360
[   84.868133][ T9151]  ? get_pid_task+0x96/0xd0
[   84.868185][ T9151]  ? __bpf_trace_sys_enter+0x10/0x30
[   84.868265][ T9151]  ? trace_sys_enter+0xd0/0xf0
[   84.868367][ T9151]  __x64_sys_move_pages+0x78/0x90
[   84.868405][ T9151]  x64_sys_call+0x2f78/0x2ff0
[   84.868434][ T9151]  do_syscall_64+0xd2/0x200
[   84.868471][ T9151]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.868571][ T9151]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   84.868667][ T9151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.868695][ T9151] RIP: 0033:0x7f33fd8aebe9
[   84.868780][ T9151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.868840][ T9151] RSP: 002b:00007f33fc30f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[   84.868862][ T9151] RAX: ffffffffffffffda RBX: 00007f33fdae5fa0 RCX: 00007f33fd8aebe9
[   84.868876][ T9151] RDX: 0000200000000080 RSI: 0000000000001efe RDI: 0000000000000000
[   84.868889][ T9151] RBP: 00007f33fc30f090 R08: 0000200000000040 R09: 0000000000000000
[   84.868900][ T9151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   84.868959][ T9151] R13: 00007f33fdae6038 R14: 00007f33fdae5fa0 R15: 00007ffd4053b898
[   84.868985][ T9151]  </TASK>
[   85.060403][   T29] kauditd_printk_skb: 122 callbacks suppressed
[   85.060418][   T29] audit: type=1400 audit(1757413806.091:3791): avc:  denied  { setopt } for  pid=9154 comm="syz.2.943" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   85.084335][ T9157] loop2: detected capacity change from 0 to 1024
[   85.095025][ T9157] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   85.106130][ T9157] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   85.118178][ T9157] JBD2: no valid journal superblock found
[   85.121179][ T9153] loop4: detected capacity change from 0 to 1024
[   85.124070][ T9157] EXT4-fs (loop2): Could not load journal inode
[   85.131325][ T9153] EXT4-fs: Ignoring removed bh option
[   85.173406][ T9153] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.187936][ T9163] FAULT_INJECTION: forcing a failure.
[   85.187936][ T9163] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   85.201068][ T9163] CPU: 1 UID: 0 PID: 9163 Comm: syz.1.945 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   85.201174][ T9163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   85.201197][ T9163] Call Trace:
[   85.201204][ T9163]  <TASK>
[   85.201213][ T9163]  __dump_stack+0x1d/0x30
[   85.201272][ T9163]  dump_stack_lvl+0xe8/0x140
[   85.201317][ T9163]  dump_stack+0x15/0x1b
[   85.201337][ T9163]  should_fail_ex+0x265/0x280
[   85.201367][ T9163]  should_fail+0xb/0x20
[   85.201521][ T9163]  should_fail_usercopy+0x1a/0x20
[   85.201553][ T9163]  _copy_from_user+0x1c/0xb0
[   85.201591][ T9163]  copy_from_sockptr+0x48/0x70
[   85.201625][ T9163]  ip_mroute_setsockopt+0x5cd/0x960
[   85.201676][ T9163]  do_ip_setsockopt+0xcea/0x2240
[   85.201728][ T9163]  ip_setsockopt+0x58/0x110
[   85.201812][ T9163]  raw_setsockopt+0xbd/0x150
[   85.201896][ T9163]  sock_common_setsockopt+0x69/0x80
[   85.201990][ T9163]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   85.202031][ T9163]  __sys_setsockopt+0x181/0x200
[   85.202063][ T9163]  __x64_sys_setsockopt+0x64/0x80
[   85.202163][ T9163]  x64_sys_call+0x20ec/0x2ff0
[   85.202197][ T9163]  do_syscall_64+0xd2/0x200
[   85.202236][ T9163]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   85.202267][ T9163]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   85.202336][ T9163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.202450][ T9163] RIP: 0033:0x7fede194ebe9
[   85.202464][ T9163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.202482][ T9163] RSP: 002b:00007fede03af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   85.202512][ T9163] RAX: ffffffffffffffda RBX: 00007fede1b85fa0 RCX: 00007fede194ebe9
[   85.202528][ T9163] RDX: 00000000000000d3 RSI: 0000000000000000 RDI: 0000000000000003
[   85.202685][ T9163] RBP: 00007fede03af090 R08: 000000000000003c R09: 0000000000000000
[   85.202696][ T9163] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[   85.202711][ T9163] R13: 00007fede1b86038 R14: 00007fede1b85fa0 R15: 00007fffadb79db8
[   85.202735][ T9163]  </TASK>
[   85.429217][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.445252][ T9169] loop2: detected capacity change from 0 to 512
[   85.482994][ T9169] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.497807][ T9169] ext4 filesystem being mounted at /196/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   85.515503][   T29] audit: type=1400 audit(1757413806.541:3792): avc:  denied  { create } for  pid=9168 comm="syz.2.948" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   85.551855][   T29] audit: type=1400 audit(1757413806.541:3793): avc:  denied  { setopt } for  pid=9168 comm="syz.2.948" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   85.571354][   T29] audit: type=1400 audit(1757413806.541:3794): avc:  denied  { create } for  pid=9168 comm="syz.2.948" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   85.591105][   T29] audit: type=1400 audit(1757413806.541:3795): avc:  denied  { connect } for  pid=9168 comm="syz.2.948" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   85.611136][   T29] audit: type=1400 audit(1757413806.541:3796): avc:  denied  { create } for  pid=9168 comm="syz.2.948" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[   85.653407][   T29] audit: type=1400 audit(1757413806.561:3797): avc:  denied  { read } for  pid=9168 comm="syz.2.948" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[   85.698865][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.699913][   T29] audit: type=1400 audit(1757413806.721:3798): avc:  denied  { create } for  pid=9189 comm="syz.1.953" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   85.730232][   T29] audit: type=1400 audit(1757413806.751:3799): avc:  denied  { firmware_load } for  pid=9189 comm="syz.1.953" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[   85.778341][   T29] audit: type=1326 audit(1757413806.751:3800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9197 comm="syz.0.956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[   85.896860][ T9225] loop4: detected capacity change from 0 to 1024
[   85.904015][ T9225] EXT4-fs: Ignoring removed bh option
[   85.916786][ T9222] loop2: detected capacity change from 0 to 1024
[   85.924570][ T9222] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   85.935520][ T9222] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   85.947061][ T9222] JBD2: no valid journal superblock found
[   85.952866][ T9222] EXT4-fs (loop2): Could not load journal inode
[   85.962702][ T9225] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.995492][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.203454][ T9243] bond2: left allmulticast mode
[   86.208654][ T9243] bond2: left promiscuous mode
[   86.213683][ T9243] bridge0: port 1(bond2) entered disabled state
[   86.227105][ T9244] netlink: 'syz.4.968': attribute type 10 has an invalid length.
[   86.237827][ T9243] bond3: left allmulticast mode
[   86.242774][ T9243] bond3: left promiscuous mode
[   86.247850][ T9243] bridge0: port 2(bond3) entered disabled state
[   86.261676][ T9244] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   86.466854][ T9253] loop1: detected capacity change from 0 to 128
[   86.494694][ T9253] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   86.502748][ T9253] FAT-fs (loop1): Filesystem has been set read-only
[   86.509660][ T9253] syz.1.971: attempt to access beyond end of device
[   86.509660][ T9253] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   86.524447][ T9253] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   86.532500][ T9253] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   86.542036][ T9253] syz.1.971: attempt to access beyond end of device
[   86.542036][ T9253] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   86.556003][ T9253] syz.1.971: attempt to access beyond end of device
[   86.556003][ T9253] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   86.572929][ T9253] syz.1.971: attempt to access beyond end of device
[   86.572929][ T9253] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   86.588602][ T9253] syz.1.971: attempt to access beyond end of device
[   86.588602][ T9253] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   86.602941][ T9253] syz.1.971: attempt to access beyond end of device
[   86.602941][ T9253] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   86.616473][ T9253] syz.1.971: attempt to access beyond end of device
[   86.616473][ T9253] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   86.631095][ T9253] syz.1.971: attempt to access beyond end of device
[   86.631095][ T9253] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   86.645633][ T9253] syz.1.971: attempt to access beyond end of device
[   86.645633][ T9253] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   86.659145][ T9253] syz.1.971: attempt to access beyond end of device
[   86.659145][ T9253] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   86.796616][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811a7e3800: rx timeout, send abort
[   86.804900][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811a7e2400: rx timeout, send abort
[   86.813192][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a7e3800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   86.827592][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a7e2400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   86.878183][ T9270] loop5: detected capacity change from 0 to 1024
[   86.892174][ T9272] loop2: detected capacity change from 0 to 1024
[   86.898859][ T9270] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   86.909867][ T9270] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   86.921561][ T9272] EXT4-fs: Ignoring removed bh option
[   86.933628][ T9272] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.948251][ T9270] JBD2: no valid journal superblock found
[   86.954250][ T9270] EXT4-fs (loop5): Could not load journal inode
[   87.010854][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.333083][ T9331] sctp: [Deprecated]: syz.1.987 (pid 9331) Use of int in max_burst socket option.
[   87.333083][ T9331] Use struct sctp_assoc_value instead
[   87.472468][ T9344] loop1: detected capacity change from 0 to 1024
[   87.496138][ T9344] EXT4-fs: Ignoring removed bh option
[   87.520276][ T9344] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.535651][ T9332] SELinux: failed to load policy
[   87.563880][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.057435][ T9391] 9pnet_fd: Insufficient options for proto=fd
[   88.103646][ T9399] loop4: detected capacity change from 0 to 1024
[   88.110562][ T9399] EXT4-fs: Ignoring removed bh option
[   88.132614][ T9399] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.141993][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a957800: rx timeout, send abort
[   88.152877][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a957600: rx timeout, send abort
[   88.161364][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a957800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   88.175689][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a957600: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   88.205300][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.230283][ T9416] FAULT_INJECTION: forcing a failure.
[   88.230283][ T9416] name failslab, interval 1, probability 0, space 0, times 0
[   88.243122][ T9416] CPU: 0 UID: 0 PID: 9416 Comm: syz.2.1010 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   88.243150][ T9416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   88.243162][ T9416] Call Trace:
[   88.243169][ T9416]  <TASK>
[   88.243177][ T9416]  __dump_stack+0x1d/0x30
[   88.243276][ T9416]  dump_stack_lvl+0xe8/0x140
[   88.243299][ T9416]  dump_stack+0x15/0x1b
[   88.243315][ T9416]  should_fail_ex+0x265/0x280
[   88.243338][ T9416]  should_failslab+0x8c/0xb0
[   88.243443][ T9416]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   88.243536][ T9416]  ? sidtab_sid2str_get+0xa0/0x130
[   88.243565][ T9416]  kmemdup_noprof+0x2b/0x70
[   88.243597][ T9416]  sidtab_sid2str_get+0xa0/0x130
[   88.243623][ T9416]  security_sid_to_context_core+0x1eb/0x2e0
[   88.243676][ T9416]  security_sid_to_context+0x27/0x40
[   88.243724][ T9416]  avc_audit_post_callback+0x10f/0x520
[   88.243755][ T9416]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   88.243841][ T9416]  common_lsm_audit+0x1bb/0x230
[   88.243926][ T9416]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   88.243957][ T9416]  ? avc_denied+0xe4/0x100
[   88.244050][ T9416]  slow_avc_audit+0x104/0x140
[   88.244128][ T9416]  avc_has_perm+0x13a/0x180
[   88.244157][ T9416]  selinux_lsm_setattr+0x121/0x660
[   88.244181][ T9416]  selinux_setprocattr+0x4f/0x70
[   88.244209][ T9416]  security_setprocattr+0x1a7/0x1d0
[   88.244326][ T9416]  proc_pid_attr_write+0x1eb/0x220
[   88.244371][ T9416]  ? __pfx_proc_pid_attr_write+0x10/0x10
[   88.244397][ T9416]  vfs_write+0x266/0x960
[   88.244417][ T9416]  ? __rcu_read_unlock+0x4f/0x70
[   88.244440][ T9416]  ? __fget_files+0x184/0x1c0
[   88.244528][ T9416]  ksys_write+0xda/0x1a0
[   88.244551][ T9416]  __x64_sys_write+0x40/0x50
[   88.244635][ T9416]  x64_sys_call+0x27fe/0x2ff0
[   88.244661][ T9416]  do_syscall_64+0xd2/0x200
[   88.244732][ T9416]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   88.244760][ T9416]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   88.244867][ T9416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.244893][ T9416] RIP: 0033:0x7f2a2e31ebe9
[   88.244910][ T9416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.245034][ T9416] RSP: 002b:00007f2a2cd7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   88.245058][ T9416] RAX: ffffffffffffffda RBX: 00007f2a2e555fa0 RCX: 00007f2a2e31ebe9
[   88.245072][ T9416] RDX: 000000000000001d RSI: 0000200000000100 RDI: 0000000000000005
[   88.245086][ T9416] RBP: 00007f2a2cd7f090 R08: 0000000000000000 R09: 0000000000000000
[   88.245100][ T9416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.245115][ T9416] R13: 00007f2a2e556038 R14: 00007f2a2e555fa0 R15: 00007ffc5d2b0db8
[   88.245134][ T9416]  </TASK>
[   88.578534][ T9419] loop2: detected capacity change from 0 to 512
[   88.613648][ T9421] __nla_validate_parse: 9 callbacks suppressed
[   88.613667][ T9421] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1009'.
[   88.746201][ T9463] loop2: detected capacity change from 0 to 1024
[   88.762593][ T9463] EXT4-fs: Ignoring removed bh option
[   88.783223][ T9465] loop5: detected capacity change from 0 to 1024
[   88.793009][ T9465] EXT4-fs: Ignoring removed bh option
[   88.799127][ T9463] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.832035][ T9465] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.904062][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.923109][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.014897][ T9486] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1022'.
[   89.222723][ T9506] loop2: detected capacity change from 0 to 1024
[   89.229690][ T9506] EXT4-fs: Ignoring removed bh option
[   89.256450][ T9506] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.258546][ T9512] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   89.275733][ T9512] batman_adv: batadv0: Removing interface: veth1_vlan
[   89.283179][ T9529] netlink: 'syz.5.1032': attribute type 10 has an invalid length.
[   89.291133][ T9529] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1032'.
[   89.343983][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.354799][ T9529] batman_adv: batadv0: Adding interface: veth1_vlan
[   89.361463][ T9529] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.435733][ T9529] batman_adv: batadv0: Interface activated: veth1_vlan
[   89.462523][ T9533] netlink: 'syz.4.1034': attribute type 24 has an invalid length.
[   89.642117][ T9556] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1037'.
[   89.717105][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811952aa00: rx timeout, send abort
[   89.725393][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811952be00: rx timeout, send abort
[   89.740965][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811952aa00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   89.755353][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811952be00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   90.155241][   T29] kauditd_printk_skb: 248 callbacks suppressed
[   90.155256][   T29] audit: type=1326 audit(1757413811.181:4049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9570 comm="syz.1.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fede194ebe9 code=0x7ffc0000
[   90.185312][   T29] audit: type=1326 audit(1757413811.181:4050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9570 comm="syz.1.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fede194ebe9 code=0x7ffc0000
[   90.259434][   T29] audit: type=1326 audit(1757413811.181:4051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9570 comm="syz.1.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fede194ebe9 code=0x7ffc0000
[   90.283055][   T29] audit: type=1326 audit(1757413811.181:4052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9570 comm="syz.1.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fede194ebe9 code=0x7ffc0000
[   90.306591][   T29] audit: type=1326 audit(1757413811.181:4053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9570 comm="syz.1.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fede194ebe9 code=0x7ffc0000
[   90.330140][   T29] audit: type=1326 audit(1757413811.181:4054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9570 comm="syz.1.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fede194ebe9 code=0x7ffc0000
[   90.353640][   T29] audit: type=1326 audit(1757413811.181:4055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9570 comm="syz.1.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fede194ebe9 code=0x7ffc0000
[   90.377179][   T29] audit: type=1326 audit(1757413811.181:4056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9570 comm="syz.1.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fede194ebe9 code=0x7ffc0000
[   90.400626][   T29] audit: type=1326 audit(1757413811.181:4057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9570 comm="syz.1.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7fede194ebe9 code=0x7ffc0000
[   90.424114][   T29] audit: type=1326 audit(1757413811.181:4058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9570 comm="syz.1.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fede194ebe9 code=0x7ffc0000
[   90.501900][ T9607] loop4: detected capacity change from 0 to 1024
[   90.503819][ T9608] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1050'.
[   90.508847][ T9607] EXT4-fs: Ignoring removed nobh option
[   90.517281][ T9608] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1050'.
[   90.528973][ T9608] netlink: 'syz.2.1050': attribute type 10 has an invalid length.
[   90.532349][ T9607] EXT4-fs: Ignoring removed bh option
[   90.546160][ T9608] loop2: detected capacity change from 0 to 512
[   90.557620][ T9608] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   90.569157][ T9607] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.583510][ T9608] System zones: 1-12
[   90.591522][ T9608] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.1050: error while reading EA inode 32 err=-116
[   90.606767][ T9608] EXT4-fs (loop2): Remounting filesystem read-only
[   90.613350][ T9608] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   90.625742][ T9608] EXT4-fs (loop2): 1 orphan inode deleted
[   90.632635][ T9608] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.633321][ T9607] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.1051: Allocating blocks 257-513 which overlap fs metadata
[   90.720979][ T9630] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   90.728213][ T9630] batman_adv: batadv0: Removing interface: veth1_vlan
[   90.753481][ T9630] netlink: 'syz.1.1057': attribute type 10 has an invalid length.
[   90.761434][ T9630] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1057'.
[   90.771831][ T9630] batman_adv: batadv0: Adding interface: veth1_vlan
[   90.778457][ T9630] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.805562][ T9630] batman_adv: batadv0: Interface activated: veth1_vlan
[   90.886049][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.153179][ T9646] loop4: detected capacity change from 0 to 1024
[   91.161181][ T9646] EXT4-fs warning (device loop4): ext4_multi_mount_protect:318: fsck is running on the filesystem
[   91.171906][ T9646] EXT4-fs warning (device loop4): ext4_multi_mount_protect:318: MMP failure info: last update time: 1669132791, last update node: dvyukov-desk.muc.corp.google.com, last update device: loop5
[   91.197625][ T9646] nfs4: Unknown parameter '$'
[   91.248322][    C0] vcan0: j1939_tp_rxtimer: 0xffff888108c6ea00: rx timeout, send abort
[   91.256679][    C0] vcan0: j1939_tp_rxtimer: 0xffff888108c6f200: rx timeout, send abort
[   91.264976][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888108c6ea00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   91.279331][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888108c6f200: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   91.416312][ T9686] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1061'.
[   91.479388][ T9691] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1065'.
[   91.727680][ T9704] loop5: detected capacity change from 0 to 1024
[   91.760642][ T9704] EXT4-fs: Ignoring removed bh option
[   91.926556][ T9734] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   91.933748][ T9734] batman_adv: batadv0: Removing interface: veth1_vlan
[   91.956195][ T9734] netlink: 'syz.5.1079': attribute type 10 has an invalid length.
[   91.964090][ T9734] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1079'.
[   91.976323][ T9734] batman_adv: batadv0: Adding interface: veth1_vlan
[   91.983257][ T9734] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.009340][ T9734] batman_adv: batadv0: Interface activated: veth1_vlan
[   92.552984][    C1] vcan0: j1939_tp_rxtimer: 0xffff888104454000: rx timeout, send abort
[   92.561249][    C1] vcan0: j1939_tp_rxtimer: 0xffff888104454e00: rx timeout, send abort
[   92.569479][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888104454000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   92.583797][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888104454e00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   92.770234][ T9767] SELinux:  policydb version 0 does not match my version range 15-35
[   92.779081][ T9767] SELinux: failed to load policy
[   93.123979][ T9804] loop5: detected capacity change from 0 to 764
[   93.132008][ T9804] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   93.232546][ T9810] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   93.239636][ T9810] batman_adv: batadv0: Removing interface: veth1_vlan
[   93.266895][ T9810] netlink: 'syz.5.1106': attribute type 10 has an invalid length.
[   93.276539][ T9810] batman_adv: batadv0: Adding interface: veth1_vlan
[   93.283289][ T9810] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.311561][ T9810] batman_adv: batadv0: Interface activated: veth1_vlan
[   93.709601][    C1] vcan0: j1939_tp_rxtimer: 0xffff888108ca6c00: rx timeout, send abort
[   93.717882][    C1] vcan0: j1939_tp_rxtimer: 0xffff888108ca6800: rx timeout, send abort
[   93.726397][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888108ca6c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   93.740704][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888108ca6800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   94.272869][ T9846] loop5: detected capacity change from 0 to 1024
[   94.279939][ T9846] EXT4-fs: Ignoring removed bh option
[   94.903493][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a6cda00: rx timeout, send abort
[   94.911772][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a6cd800: rx timeout, send abort
[   94.920048][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a6cda00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   94.934390][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a6cd800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   94.991203][ T9883] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   94.998381][ T9883] batman_adv: batadv0: Removing interface: veth1_vlan
[   95.013758][ T9888] netlink: 'syz.5.1131': attribute type 10 has an invalid length.
[   95.021725][ T9888] __nla_validate_parse: 6 callbacks suppressed
[   95.021740][ T9888] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1131'.
[   95.053325][ T9888] batman_adv: batadv0: Adding interface: veth1_vlan
[   95.059978][ T9888] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.141211][ T9888] batman_adv: batadv0: Interface activated: veth1_vlan
[   95.605669][ T9898] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1136'.
[   95.820246][   T29] kauditd_printk_skb: 194 callbacks suppressed
[   95.820262][   T29] audit: type=1326 audit(1757413816.841:4253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9922 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[   95.860854][   T29] audit: type=1326 audit(1757413816.881:4254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9922 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[   95.884374][   T29] audit: type=1326 audit(1757413816.881:4255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9922 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[   95.907972][   T29] audit: type=1326 audit(1757413816.881:4256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9922 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[   95.931525][   T29] audit: type=1326 audit(1757413816.881:4257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9922 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[   95.955046][   T29] audit: type=1326 audit(1757413816.881:4258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9922 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[   95.978607][   T29] audit: type=1326 audit(1757413816.881:4259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9922 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[   95.980728][ T9927] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1148'.
[   96.002032][   T29] audit: type=1326 audit(1757413816.881:4260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9922 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[   96.002072][   T29] audit: type=1326 audit(1757413816.881:4261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9922 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[   96.045540][ T9930] loop5: detected capacity change from 0 to 1024
[   96.057911][   T29] audit: type=1326 audit(1757413816.881:4262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9922 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[   96.066126][ T9930] EXT4-fs: Ignoring removed bh option
[   96.146223][ T9941] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1151'.
[   96.196776][ T9949] loop5: detected capacity change from 0 to 512
[   96.222219][ T9949] tipc: Can't bind to reserved service type 0
[   96.269377][ T9964] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   96.276481][ T9964] batman_adv: batadv0: Removing interface: veth1_vlan
[   96.306711][ T9964] netlink: 'syz.5.1158': attribute type 10 has an invalid length.
[   96.314682][ T9964] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1158'.
[   96.335925][ T9964] batman_adv: batadv0: Adding interface: veth1_vlan
[   96.342619][ T9964] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   96.371597][ T9964] batman_adv: batadv0: Interface activated: veth1_vlan
[   96.466550][    C0] vcan0: j1939_tp_rxtimer: 0xffff888103898800: rx timeout, send abort
[   96.474904][    C0] vcan0: j1939_tp_rxtimer: 0xffff888103898200: rx timeout, send abort
[   96.483215][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888103898800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   96.497524][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888103898200: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   96.546667][T10015] loop4: detected capacity change from 0 to 1024
[   96.553775][T10015] EXT4-fs: Ignoring removed bh option
[   97.144504][T10029] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1164'.
[   97.244554][T10041] loop5: detected capacity change from 0 to 1024
[   97.253442][T10041] EXT4-fs: Ignoring removed bh option
[   97.328321][T10052] serio: Serial port ttyS3
[   97.420352][T10052] loop5: detected capacity change from 0 to 1024
[   97.436011][T10065] loop2: detected capacity change from 0 to 1024
[   97.443233][T10065] EXT4-fs: Ignoring removed bh option
[   97.506239][T10077] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   97.513462][T10077] batman_adv: batadv0: Removing interface: veth1_vlan
[   97.530802][T10083] netlink: 'syz.2.1176': attribute type 10 has an invalid length.
[   97.538813][T10083] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1176'.
[   97.549819][T10085] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1178'.
[   97.556825][T10083] batman_adv: batadv0: Adding interface: veth1_vlan
[   97.565497][T10083] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   97.591695][T10083] batman_adv: batadv0: Interface activated: veth1_vlan
[   97.669284][T10094] loop5: detected capacity change from 0 to 2048
[   97.684712][T10094] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   98.063951][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a81de00: rx timeout, send abort
[   98.072231][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a81dc00: rx timeout, send abort
[   98.080926][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a81de00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   98.095241][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a81dc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   98.228150][T10111] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   98.531537][T10123] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1190'.
[   98.626620][T10126] sch_tbf: burst 824 is lower than device lo mtu (65550) !
[   98.660758][T10135] loop4: detected capacity change from 0 to 2048
[   98.724899][T10135] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   98.775546][T10150] FAULT_INJECTION: forcing a failure.
[   98.775546][T10150] name failslab, interval 1, probability 0, space 0, times 0
[   98.788321][T10150] CPU: 0 UID: 0 PID: 10150 Comm: syz.1.1198 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   98.788377][T10150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.788392][T10150] Call Trace:
[   98.788398][T10150]  <TASK>
[   98.788407][T10150]  __dump_stack+0x1d/0x30
[   98.788432][T10150]  dump_stack_lvl+0xe8/0x140
[   98.788457][T10150]  dump_stack+0x15/0x1b
[   98.788476][T10150]  should_fail_ex+0x265/0x280
[   98.788545][T10150]  ? fw_change+0x430/0x770
[   98.788571][T10150]  should_failslab+0x8c/0xb0
[   98.788602][T10150]  __kmalloc_cache_noprof+0x4c/0x320
[   98.788637][T10150]  fw_change+0x430/0x770
[   98.788673][T10150]  ? __pfx_fw_change+0x10/0x10
[   98.788693][T10150]  tc_new_tfilter+0xde1/0x10a0
[   98.788788][T10150]  ? __rcu_read_unlock+0x4f/0x70
[   98.788825][T10150]  ? ns_capable+0x7d/0xb0
[   98.788844][T10150]  ? __pfx_tc_new_tfilter+0x10/0x10
[   98.788868][T10150]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   98.789012][T10150]  netlink_rcv_skb+0x123/0x220
[   98.789041][T10150]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   98.789086][T10150]  rtnetlink_rcv+0x1c/0x30
[   98.789113][T10150]  netlink_unicast+0x5bd/0x690
[   98.789225][T10150]  netlink_sendmsg+0x58b/0x6b0
[   98.789386][T10150]  ? __pfx_netlink_sendmsg+0x10/0x10
[   98.789410][T10150]  __sock_sendmsg+0x142/0x180
[   98.789441][T10150]  ____sys_sendmsg+0x31e/0x4e0
[   98.789545][T10150]  ___sys_sendmsg+0x17b/0x1d0
[   98.789601][T10150]  __x64_sys_sendmsg+0xd4/0x160
[   98.789639][T10150]  x64_sys_call+0x191e/0x2ff0
[   98.789665][T10150]  do_syscall_64+0xd2/0x200
[   98.789749][T10150]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   98.789771][T10150]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.789799][T10150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.789821][T10150] RIP: 0033:0x7fede194ebe9
[   98.789886][T10150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.789904][T10150] RSP: 002b:00007fede03af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   98.789927][T10150] RAX: ffffffffffffffda RBX: 00007fede1b85fa0 RCX: 00007fede194ebe9
[   98.789942][T10150] RDX: 0000000004000800 RSI: 0000200000006040 RDI: 0000000000000006
[   98.789956][T10150] RBP: 00007fede03af090 R08: 0000000000000000 R09: 0000000000000000
[   98.789970][T10150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.789999][T10150] R13: 00007fede1b86038 R14: 00007fede1b85fa0 R15: 00007fffadb79db8
[   98.790020][T10150]  </TASK>
[   99.179362][T10174] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   99.186518][T10174] batman_adv: batadv0: Removing interface: veth1_vlan
[   99.205545][T10174] netlink: 'syz.2.1203': attribute type 10 has an invalid length.
[   99.213492][T10174] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1203'.
[   99.224805][T10174] batman_adv: batadv0: Adding interface: veth1_vlan
[   99.231540][T10174] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.274486][T10174] batman_adv: batadv0: Interface activated: veth1_vlan
[   99.514211][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811a835400: rx timeout, send abort
[   99.522566][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811a825c00: rx timeout, send abort
[   99.540925][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a835400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   99.555344][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a825c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  100.000749][T10192] loop5: detected capacity change from 0 to 2048
[  100.087139][T10192] EXT4-fs mount: 21 callbacks suppressed
[  100.087153][T10192] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.114075][T10192] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  100.160886][T10227] loop4: detected capacity change from 0 to 1024
[  100.168231][T10227] EXT4-fs: Ignoring removed bh option
[  100.227233][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.230160][T10227] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.238717][T10231] FAULT_INJECTION: forcing a failure.
[  100.238717][T10231] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  100.271485][T10231] CPU: 1 UID: 0 PID: 10231 Comm: syz.2.1215 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  100.271518][T10231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  100.271531][T10231] Call Trace:
[  100.271538][T10231]  <TASK>
[  100.271546][T10231]  __dump_stack+0x1d/0x30
[  100.271570][T10231]  dump_stack_lvl+0xe8/0x140
[  100.271593][T10231]  dump_stack+0x15/0x1b
[  100.271627][T10231]  should_fail_ex+0x265/0x280
[  100.271657][T10231]  should_fail_alloc_page+0xf2/0x100
[  100.271687][T10231]  __alloc_frozen_pages_noprof+0xff/0x360
[  100.271787][T10231]  alloc_pages_mpol+0xb3/0x250
[  100.271820][T10231]  vma_alloc_folio_noprof+0x1aa/0x300
[  100.271855][T10231]  do_wp_page+0x5db/0x24e0
[  100.271923][T10231]  ? __rcu_read_lock+0x37/0x50
[  100.271949][T10231]  handle_mm_fault+0x77d/0x2c20
[  100.271979][T10231]  do_user_addr_fault+0x636/0x1090
[  100.272018][T10231]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  100.272117][T10231]  exc_page_fault+0x62/0xa0
[  100.272163][T10231]  asm_exc_page_fault+0x26/0x30
[  100.272187][T10231] RIP: 0033:0x7f2a2e1e0ba3
[  100.272205][T10231] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  100.272292][T10231] RSP: 002b:00007f2a2cd7e4a0 EFLAGS: 00010202
[  100.272307][T10231] RAX: 0000000000003400 RBX: 00007f2a2cd7e540 RCX: 00007f2a2495f000
[  100.272366][T10231] RDX: 00007f2a2cd7e6e0 RSI: 0000000000000011 RDI: 00007f2a2cd7e5e0
[  100.272381][T10231] RBP: 00000000000000b2 R08: 0000000000000006 R09: 0000000000000020
[  100.272393][T10231] R10: 0000000000000024 R11: 00007f2a2cd7e540 R12: 0000000000000001
[  100.272405][T10231] R13: 00007f2a2e3bda20 R14: 0000000000000002 R15: 00007f2a2cd7e5e0
[  100.272428][T10231]  </TASK>
[  100.481535][T10231] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  100.483805][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.509318][T10245] __nla_validate_parse: 1 callbacks suppressed
[  100.509337][T10245] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1216'.
[  100.539678][T10231] loop2: detected capacity change from 0 to 512
[  100.619561][T10231] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.626795][T10231] EXT4-fs: Ignoring removed i_version option
[  100.641592][T10231] EXT4-fs (loop2): 1 orphan inode deleted
[  100.648948][T10231] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.665663][T10231] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.707969][T10261] 9pnet: Could not find request transport: fd0x0000000000000006
[  100.750097][T10264] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  100.757181][T10264] batman_adv: batadv0: Removing interface: veth1_vlan
[  100.778645][T10264] netlink: 'syz.2.1223': attribute type 10 has an invalid length.
[  100.786540][T10264] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1223'.
[  100.797376][T10264] batman_adv: batadv0: Adding interface: veth1_vlan
[  100.804059][T10264] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  100.830338][T10264] batman_adv: batadv0: Interface activated: veth1_vlan
[  100.982785][   T29] kauditd_printk_skb: 176 callbacks suppressed
[  100.982802][   T29] audit: type=1326 audit(1757413822.011:4439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10290 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[  101.012722][   T29] audit: type=1326 audit(1757413822.021:4440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10290 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[  101.035585][   T29] audit: type=1326 audit(1757413822.021:4441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10290 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[  101.058523][   T29] audit: type=1326 audit(1757413822.021:4442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10290 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[  101.082631][   T29] audit: type=1326 audit(1757413822.041:4443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10290 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[  101.115265][T10292] SELinux:  Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped).
[  101.127105][   T29] audit: type=1400 audit(1757413822.151:4444): avc:  denied  { relabelto } for  pid=10290 comm="syz.0.1225" name="cgroup.procs" dev="cgroup" ino=151 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:netutils_exec_t:s0"
[  101.154719][   T29] audit: type=1400 audit(1757413822.151:4445): avc:  denied  { associate } for  pid=10290 comm="syz.0.1225" name="cgroup.procs" dev="cgroup" ino=151 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:netutils_exec_t:s0"
[  101.366850][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a825c00: rx timeout, send abort
[  101.375111][    C1] vcan0: j1939_tp_rxtimer: 0xffff888103898800: rx timeout, send abort
[  101.383424][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a825c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  101.397737][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888103898800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  101.479756][T10300] loop4: detected capacity change from 0 to 2048
[  101.495311][T10304] loop5: detected capacity change from 0 to 1024
[  101.912570][T10304] EXT4-fs: Ignoring removed bh option
[  101.923341][T10300] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.937525][T10304] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.967665][T10300] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  101.997388][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.012238][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.140766][T10326] loop2: detected capacity change from 0 to 1024
[  102.152028][T10326] EXT4-fs: Ignoring removed bh option
[  102.163026][T10326] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.234192][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.250714][T10338] loop5: detected capacity change from 0 to 1024
[  102.257867][T10338] EXT4-fs: Ignoring removed bh option
[  102.280853][T10338] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.312428][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.322336][   T29] audit: type=1326 audit(1757413823.341:4446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10348 comm="syz.2.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  102.345956][   T29] audit: type=1326 audit(1757413823.341:4447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10348 comm="syz.2.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  102.369486][   T29] audit: type=1326 audit(1757413823.341:4448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10348 comm="syz.2.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  102.388938][T10353] loop5: detected capacity change from 0 to 2048
[  102.422530][T10353] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.436064][T10353] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  102.462362][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.612347][T10365] netlink: 'syz.5.1245': attribute type 1 has an invalid length.
[  102.781897][T10370] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  102.788997][T10370] batman_adv: batadv0: Removing interface: veth1_vlan
[  102.808316][T10370] netlink: 'syz.5.1246': attribute type 10 has an invalid length.
[  102.816208][T10370] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1246'.
[  102.825718][T10370] batman_adv: batadv0: Adding interface: veth1_vlan
[  102.832628][T10370] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.858645][T10370] batman_adv: batadv0: Interface activated: veth1_vlan
[  103.033335][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a3b2200: rx timeout, send abort
[  103.041589][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a7f8800: rx timeout, send abort
[  103.050925][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a3b2200: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  103.065248][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a7f8800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  103.169634][T10384] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1252'.
[  103.184967][T10383] loop4: detected capacity change from 0 to 1024
[  103.207639][T10383] EXT4-fs: Ignoring removed bh option
[  103.283771][T10383] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.478529][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.351576][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811a84b800: rx timeout, send abort
[  104.359808][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811a84b600: rx timeout, send abort
[  104.368083][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a84b800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  104.382409][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a84b600: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  104.464497][T10469] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1265'.
[  104.498638][T10472] netlink: 'syz.1.1266': attribute type 4 has an invalid length.
[  104.510667][T10473] loop2: detected capacity change from 0 to 2048
[  104.533425][T10473] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.545502][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811ae8ce00: rx timeout, send abort
[  104.545558][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811ae8c800: rx timeout, send abort
[  104.553838][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811ae8ce00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  104.553887][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811ae8c800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  104.609665][T10473] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  104.633581][T10486] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  104.640657][T10486] batman_adv: batadv0: Removing interface: veth1_vlan
[  104.648455][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.658923][T10488] netlink: 'syz.5.1270': attribute type 10 has an invalid length.
[  104.666913][T10488] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1270'.
[  104.684479][T10488] batman_adv: batadv0: Adding interface: veth1_vlan
[  104.691158][T10488] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.717067][T10488] batman_adv: batadv0: Interface activated: veth1_vlan
[  105.366345][T10533] tipc: Started in network mode
[  105.371410][T10533] tipc: Node identity aac50ad30eeb, cluster identity 4711
[  105.378701][T10533] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  105.402713][T10538] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1278'.
[  105.411765][T10533] syzkaller0: entered promiscuous mode
[  105.417272][T10533] syzkaller0: entered allmulticast mode
[  105.427260][T10533] tipc: Resetting bearer <eth:syzkaller0>
[  105.434795][T10532] tipc: Resetting bearer <eth:syzkaller0>
[  105.471866][T10532] tipc: Disabling bearer <eth:syzkaller0>
[  105.518419][T10543] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=2049 sclass=netlink_xfrm_socket pid=10543 comm=syz.0.1279
[  105.557760][T10547] loop5: detected capacity change from 0 to 1024
[  105.566975][T10547] EXT4-fs: Ignoring removed bh option
[  105.594336][T10547] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.643443][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.990970][   T29] kauditd_printk_skb: 809 callbacks suppressed
[  105.990985][   T29] audit: type=1326 audit(1757413827.021:5258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10569 comm="syz.5.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f296776adb9 code=0x7ffc0000
[  106.022841][   T29] audit: type=1326 audit(1757413827.041:5259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10569 comm="syz.5.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f29677c5ba7 code=0x7ffc0000
[  106.046596][   T29] audit: type=1326 audit(1757413827.041:5260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10569 comm="syz.5.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f296776adb9 code=0x7ffc0000
[  106.070106][   T29] audit: type=1326 audit(1757413827.051:5261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10569 comm="syz.5.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  106.097204][   T29] audit: type=1326 audit(1757413827.121:5262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10569 comm="syz.5.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f29677c5ba7 code=0x7ffc0000
[  106.120646][   T29] audit: type=1326 audit(1757413827.121:5263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10569 comm="syz.5.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f296776adb9 code=0x7ffc0000
[  106.144122][   T29] audit: type=1326 audit(1757413827.121:5264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10569 comm="syz.5.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  106.169429][   T29] audit: type=1326 audit(1757413827.191:5265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10569 comm="syz.5.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f29677c5ba7 code=0x7ffc0000
[  106.192987][   T29] audit: type=1326 audit(1757413827.191:5266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10569 comm="syz.5.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f296776adb9 code=0x7ffc0000
[  106.216426][   T29] audit: type=1326 audit(1757413827.191:5267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10569 comm="syz.5.1285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  106.287634][    C0] vcan0: j1939_tp_rxtimer: 0xffff888108d9d600: rx timeout, send abort
[  106.295920][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811a322a00: rx timeout, send abort
[  106.304173][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888108d9d600: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  106.318492][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a322a00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  106.394322][T10601] netlink: 'syz.0.1292': attribute type 10 has an invalid length.
[  106.402294][T10601] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1292'.
[  106.415464][T10601] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  106.735610][T10612] loop4: detected capacity change from 0 to 2048
[  106.823667][T10612] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.014245][T10612] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  107.128582][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.178544][T10620] loop4: detected capacity change from 0 to 1024
[  107.225211][T10620] EXT4-fs: Ignoring removed bh option
[  107.258967][T10622] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1290'.
[  107.273712][T10620] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.322795][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.374249][T10633] loop4: detected capacity change from 0 to 512
[  107.380845][T10633] ext4: Unknown parameter 'nouser_xattr'
[  107.461771][T10652] loop5: detected capacity change from 0 to 1024
[  107.478782][T10652] EXT4-fs: Ignoring removed bh option
[  107.518248][T10652] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.560695][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.592189][   T10] Process accounting resumed
[  107.652183][T10715] loop5: detected capacity change from 0 to 2048
[  107.660840][T10714] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  107.663875][T10715] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.667966][T10714] batman_adv: batadv0: Removing interface: veth1_vlan
[  107.682754][T10715] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  107.690537][T10719] netlink: 'syz.1.1308': attribute type 10 has an invalid length.
[  107.709330][T10719] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1308'.
[  107.719292][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.731002][T10719] batman_adv: batadv0: Adding interface: veth1_vlan
[  107.737656][T10719] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.771626][T10721] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1311'.
[  107.781222][T10719] batman_adv: batadv0: Interface activated: veth1_vlan
[  108.246687][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811a322600: rx timeout, send abort
[  108.254946][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811a322a00: rx timeout, send abort
[  108.263191][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a322600: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  108.277513][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a322a00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  108.926010][T10767] loop5: detected capacity change from 0 to 1024
[  108.933800][T10767] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  108.944818][T10767] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  108.959841][T10767] JBD2: no valid journal superblock found
[  108.963973][T10769] loop4: detected capacity change from 0 to 2048
[  108.965726][T10767] EXT4-fs (loop5): Could not load journal inode
[  109.002427][T10782] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1323'.
[  109.022823][T10769] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.069126][T10777] netlink: 'syz.0.1321': attribute type 10 has an invalid length.
[  109.077015][T10777] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1321'.
[  109.086787][T10777] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  109.141725][T10769] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  109.254217][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.934781][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a958800: rx timeout, send abort
[  109.943040][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811a958c00: rx timeout, send abort
[  109.951324][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a958800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  109.965661][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a958c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  110.094400][T10816] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1333'.
[  110.138623][T10816] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1333'.
[  110.147622][T10816] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1333'.
[  110.178020][T10816] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1333'.
[  110.191811][T10823] netlink: 'syz.5.1334': attribute type 10 has an invalid length.
[  110.211755][T10820] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  110.218850][T10820] batman_adv: batadv0: Removing interface: veth1_vlan
[  110.236364][T10823] batman_adv: batadv0: Adding interface: veth1_vlan
[  110.243084][T10823] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.273364][T10823] batman_adv: batadv0: Interface activated: veth1_vlan
[  110.443578][T10855] netlink: 'syz.1.1348': attribute type 4 has an invalid length.
[  110.459418][T10857] loop4: detected capacity change from 0 to 2048
[  110.583224][T10857] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.597070][T10857] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  110.624761][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.914999][    C1] vcan0: j1939_tp_rxtimer: 0xffff888119534400: rx timeout, send abort
[  110.923260][    C1] vcan0: j1939_tp_rxtimer: 0xffff888119534e00: rx timeout, send abort
[  110.931651][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888119534400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  110.946143][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888119534e00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  111.176487][   T29] kauditd_printk_skb: 479 callbacks suppressed
[  111.176504][   T29] audit: type=1326 audit(1757413832.201:5747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10883 comm="syz.0.1347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33fd8aebe9 code=0x7ffc0000
[  111.207602][   T29] audit: type=1326 audit(1757413832.221:5748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10887 comm="syz.5.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  111.231297][   T29] audit: type=1326 audit(1757413832.221:5749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10887 comm="syz.5.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  111.254967][   T29] audit: type=1326 audit(1757413832.221:5750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10887 comm="syz.5.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  111.278943][   T29] audit: type=1326 audit(1757413832.221:5751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10887 comm="syz.5.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  111.302516][   T29] audit: type=1326 audit(1757413832.221:5752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10887 comm="syz.5.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  111.326095][   T29] audit: type=1326 audit(1757413832.221:5753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10887 comm="syz.5.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  111.349620][   T29] audit: type=1326 audit(1757413832.221:5754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10887 comm="syz.5.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  111.373122][   T29] audit: type=1326 audit(1757413832.221:5755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10887 comm="syz.5.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  111.396635][   T29] audit: type=1326 audit(1757413832.221:5756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10887 comm="syz.5.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  111.488545][   T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  111.511726][   T10] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  111.668252][T10953] __nla_validate_parse: 9 callbacks suppressed
[  111.668268][T10953] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1355'.
[  111.758500][T10957] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  111.765628][T10957] batman_adv: batadv0: Removing interface: veth1_vlan
[  111.791327][T10963] netlink: 'syz.2.1357': attribute type 10 has an invalid length.
[  111.799235][T10963] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1357'.
[  111.811383][T10963] batman_adv: batadv0: Adding interface: veth1_vlan
[  111.817997][T10963] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.849146][T10963] batman_adv: batadv0: Interface activated: veth1_vlan
[  111.922826][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811a95f800: rx timeout, send abort
[  111.931107][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811a95f600: rx timeout, send abort
[  111.939379][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a95f800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  111.953766][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811a95f600: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  112.797436][T11026] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1368'.
[  112.907935][T11070] macvtap1: entered allmulticast mode
[  112.913390][T11070] bridge0: entered allmulticast mode
[  112.939693][T11070] bridge0: port 1(macvtap1) entered blocking state
[  112.946796][T11070] bridge0: port 1(macvtap1) entered disabled state
[  112.965696][T11070] bridge0: left allmulticast mode
[  113.321576][T11100] netlink: 'syz.2.1381': attribute type 10 has an invalid length.
[  113.329550][T11100] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1381'.
[  113.329571][T11099] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  113.345692][T11099] batman_adv: batadv0: Removing interface: veth1_vlan
[  113.399653][T11100] batman_adv: batadv0: Adding interface: veth1_vlan
[  113.406315][T11100] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.482205][T11100] batman_adv: batadv0: Interface activated: veth1_vlan
[  113.514634][T11105] loop5: detected capacity change from 0 to 1024
[  113.521842][T11105] EXT4-fs: Ignoring removed bh option
[  113.533543][T11105] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.592904][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.672377][T11117] loop5: detected capacity change from 0 to 1764
[  113.701348][T11117] process 'syz.5.1386' launched '/dev/fd/12' with NULL argv: empty string added
[  113.741853][ T7781] iso9660: Corrupted directory entry in block 2 of inode 1920
[  113.801917][ T7781] iso9660: Corrupted directory entry in block 2 of inode 1920
[  113.834312][T11129] loop5: detected capacity change from 0 to 128
[  113.851791][T11129] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  113.864975][T11129] ext4 filesystem being mounted at /140/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  113.907495][T11129] EXT4-fs warning (device loop5): __ext4_ioctl:1259: Setting inode version is not supported with metadata_csum enabled.
[  114.040365][ T7781] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  114.084086][T11145] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1392'.
[  114.198653][T11151] loop4: detected capacity change from 0 to 1024
[  114.205603][T11151] EXT4-fs: Ignoring removed bh option
[  114.232631][T11151] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.257672][T11159] loop5: detected capacity change from 0 to 2048
[  114.278102][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.293870][T11159] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.316592][T11159] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  114.359049][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.600835][T11193] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1406'.
[  114.619497][T11203] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1411'.
[  115.017821][T11242] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1415'.
[  115.026835][T11242] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1415'.
[  115.035876][T11242] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1415'.
[  115.045585][T11242] netlink: 'syz.1.1415': attribute type 6 has an invalid length.
[  115.053694][T11242] netlink: 'syz.1.1415': attribute type 6 has an invalid length.
[  115.233057][T11257] loop4: detected capacity change from 0 to 1024
[  115.240289][T11257] EXT4-fs: Ignoring removed bh option
[  115.263498][T11257] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.296971][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.362806][T11272] loop4: detected capacity change from 0 to 1024
[  115.370357][T11272] EXT4-fs: Ignoring removed bh option
[  115.393728][T11272] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.423158][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.455879][T11285] 9pnet_fd: Insufficient options for proto=fd
[  115.467294][T11285] loop4: detected capacity change from 0 to 1024
[  115.474492][T11285] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  115.485418][T11285] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  115.496538][T11285] JBD2: no valid journal superblock found
[  115.502365][T11285] EXT4-fs (loop4): Could not load journal inode
[  115.513632][T11285] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  116.035546][T11328] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address.
[  116.044484][T11328] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (133)
[  116.271723][   T29] kauditd_printk_skb: 523 callbacks suppressed
[  116.271740][   T29] audit: type=1400 audit(1757413837.291:6280): avc:  denied  { write } for  pid=11366 comm="syz.0.1448" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  116.408917][   T29] audit: type=1326 audit(1757413837.431:6281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.5.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  116.480474][   T29] audit: type=1326 audit(1757413837.471:6282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.5.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=277 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  116.491733][T11381] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  116.504150][   T29] audit: type=1326 audit(1757413837.471:6283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.5.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  116.538143][   T29] audit: type=1326 audit(1757413837.471:6284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.5.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  116.561765][   T29] audit: type=1326 audit(1757413837.471:6285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11376 comm="syz.5.1452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  116.585319][   T29] audit: type=1400 audit(1757413837.501:6286): avc:  denied  { write } for  pid=11380 comm="syz.0.1454" name="igmp6" dev="proc" ino=4026532520 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  116.649515][   T29] audit: type=1400 audit(1757413837.671:6287): avc:  denied  { create } for  pid=11385 comm="syz.2.1456" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  116.669179][   T29] audit: type=1400 audit(1757413837.671:6288): avc:  denied  { bind } for  pid=11385 comm="syz.2.1456" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  116.688537][   T29] audit: type=1400 audit(1757413837.671:6289): avc:  denied  { write } for  pid=11385 comm="syz.2.1456" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  116.695360][T11377] netlink: 'syz.5.1452': attribute type 1 has an invalid length.
[  116.823145][T11396] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  116.829849][T11399] netlink: 'syz.2.1458': attribute type 10 has an invalid length.
[  116.830251][T11396] batman_adv: batadv0: Removing interface: veth1_vlan
[  116.838154][T11399] __nla_validate_parse: 11 callbacks suppressed
[  116.838227][T11399] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1458'.
[  116.892040][T11399] batman_adv: batadv0: Adding interface: veth1_vlan
[  116.898732][T11399] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.925480][T11399] batman_adv: batadv0: Interface activated: veth1_vlan
[  117.004853][T11426] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1463'.
[  117.174641][T11443] loop5: detected capacity change from 0 to 1024
[  117.186422][T11440] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1465'.
[  117.190734][T11443] EXT4-fs: Ignoring removed bh option
[  117.224689][T11443] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.286090][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.333538][T11454] netlink: 'syz.0.1470': attribute type 1 has an invalid length.
[  117.561274][T11468] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1476'.
[  117.975785][T11534] FAULT_INJECTION: forcing a failure.
[  117.975785][T11534] name failslab, interval 1, probability 0, space 0, times 0
[  117.988504][T11534] CPU: 0 UID: 0 PID: 11534 Comm: gtp Not tainted syzkaller #0 PREEMPT(voluntary) 
[  117.988535][T11534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  117.988550][T11534] Call Trace:
[  117.988625][T11534]  <TASK>
[  117.988632][T11534]  __dump_stack+0x1d/0x30
[  117.988656][T11534]  dump_stack_lvl+0xe8/0x140
[  117.988697][T11534]  dump_stack+0x15/0x1b
[  117.988715][T11534]  should_fail_ex+0x265/0x280
[  117.988753][T11534]  should_failslab+0x8c/0xb0
[  117.988780][T11534]  __kmalloc_noprof+0xa5/0x3e0
[  117.988811][T11534]  ? security_prepare_creds+0x52/0x120
[  117.988884][T11534]  security_prepare_creds+0x52/0x120
[  117.988909][T11534]  prepare_creds+0x34a/0x4c0
[  117.988938][T11534]  copy_creds+0x8f/0x3f0
[  117.989010][T11534]  copy_process+0x658/0x2000
[  117.989096][T11534]  ? kstrtouint+0x76/0xc0
[  117.989125][T11534]  ? __rcu_read_unlock+0x4f/0x70
[  117.989162][T11534]  kernel_clone+0x16c/0x5c0
[  117.989192][T11534]  __x64_sys_clone+0xe6/0x120
[  117.989300][T11534]  x64_sys_call+0x119c/0x2ff0
[  117.989322][T11534]  do_syscall_64+0xd2/0x200
[  117.989353][T11534]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  117.989432][T11534]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  117.989461][T11534]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.989550][T11534] RIP: 0033:0x7fede194ebe9
[  117.989566][T11534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.989585][T11534] RSP: 002b:00007fede03aefe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  117.989671][T11534] RAX: ffffffffffffffda RBX: 00007fede1b85fa0 RCX: 00007fede194ebe9
[  117.989684][T11534] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  117.989696][T11534] RBP: 00007fede03af090 R08: 0000000000000000 R09: 0000000000000000
[  117.989753][T11534] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  117.989766][T11534] R13: 00007fede1b86038 R14: 00007fede1b85fa0 R15: 00007fffadb79db8
[  117.989786][T11534]  </TASK>
[  117.995445][T11530] netlink: 'syz.4.1493': attribute type 10 has an invalid length.
[  118.018656][T11538] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1496'.
[  118.021561][T11530] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1493'.
[  118.216571][T11530] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  118.246513][T11544] pim6reg1: entered promiscuous mode
[  118.251900][T11544] pim6reg1: entered allmulticast mode
[  118.312310][T11553] loop5: detected capacity change from 0 to 2048
[  118.346138][T11553] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.369175][T11553] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  118.450077][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.542454][T11593] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1502'.
[  118.714898][T11617] netlink: 64 bytes leftover after parsing attributes in process `syz.5.1505'.
[  118.814746][T11619] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  118.882653][T11621] loop5: detected capacity change from 0 to 128
[  118.912259][T11621] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  118.924478][T11621] ext4 filesystem being mounted at /163/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  118.960318][T11621] EXT4-fs warning (device loop5): __ext4_ioctl:1259: Setting inode version is not supported with metadata_csum enabled.
[  118.984515][ T7781] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  119.012304][T11630] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1509'.
[  119.081176][ T9091] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.111009][T11636] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1510'.
[  119.120054][ T9091] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.129816][T11636] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  119.136971][T11636] batman_adv: batadv0: Removing interface: veth1_vlan
[  119.148424][ T9091] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.166628][ T9091] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.179922][T11639] loop5: detected capacity change from 0 to 164
[  119.299404][T11655] 8021q: adding VLAN 0 to HW filter on device bond0
[  119.309541][T11655] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  119.442952][T11688] netlink: 'syz.5.1518': attribute type 10 has an invalid length.
[  119.451346][T11688] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  120.479914][T11809] FAULT_INJECTION: forcing a failure.
[  120.479914][T11809] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  120.493257][T11809] CPU: 1 UID: 0 PID: 11809 Comm: syz.5.1536 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  120.493288][T11809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  120.493304][T11809] Call Trace:
[  120.493310][T11809]  <TASK>
[  120.493318][T11809]  __dump_stack+0x1d/0x30
[  120.493399][T11809]  dump_stack_lvl+0xe8/0x140
[  120.493421][T11809]  dump_stack+0x15/0x1b
[  120.493474][T11809]  should_fail_ex+0x265/0x280
[  120.493503][T11809]  should_fail_alloc_page+0xf2/0x100
[  120.493533][T11809]  __alloc_frozen_pages_noprof+0xff/0x360
[  120.493608][T11809]  alloc_pages_mpol+0xb3/0x250
[  120.493708][T11809]  vma_alloc_folio_noprof+0x1aa/0x300
[  120.493807][T11809]  do_wp_page+0x5db/0x24e0
[  120.493847][T11809]  ? css_rstat_updated+0xb7/0x240
[  120.493877][T11809]  ? __rcu_read_lock+0x37/0x50
[  120.493946][T11809]  handle_mm_fault+0x77d/0x2c20
[  120.494029][T11809]  do_user_addr_fault+0x636/0x1090
[  120.494073][T11809]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  120.494166][T11809]  exc_page_fault+0x62/0xa0
[  120.494193][T11809]  asm_exc_page_fault+0x26/0x30
[  120.494216][T11809] RIP: 0033:0x7f2967690c50
[  120.494262][T11809] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[  120.494283][T11809] RSP: 002b:00007f29662364a0 EFLAGS: 00010202
[  120.494320][T11809] RAX: 0000000000007005 RBX: 00007f2966236540 RCX: 0000000000000101
[  120.494336][T11809] RDX: 00000000000003ff RSI: 0000000000001000 RDI: 00007f29662365e0
[  120.494369][T11809] RBP: 0000000000000102 R08: 00007f295de17000 R09: 0000000000000010
[  120.494385][T11809] R10: 0000200000001782 R11: 000000000000054e R12: 0000000000000c01
[  120.494401][T11809] R13: 00007f296786da20 R14: 0000000000000017 R15: 00007f29662365e0
[  120.494427][T11809]  </TASK>
[  120.494438][T11809] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  120.689236][T11809] loop5: detected capacity change from 0 to 512
[  120.696911][T11809] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  120.714146][T11809] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.1536: Failed to acquire dquot type 1
[  120.726266][T11809] EXT4-fs (loop5): 1 truncate cleaned up
[  120.732656][T11809] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.804788][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.852999][T11821] tmpfs: Unknown parameter '	'
[  121.280944][   T29] kauditd_printk_skb: 563 callbacks suppressed
[  121.280961][   T29] audit: type=1326 audit(1757413842.301:6851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11838 comm="syz.5.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  121.312731][   T29] audit: type=1326 audit(1757413842.311:6852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11838 comm="syz.5.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  121.336285][   T29] audit: type=1326 audit(1757413842.311:6853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11838 comm="syz.5.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  121.359863][   T29] audit: type=1326 audit(1757413842.311:6854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11838 comm="syz.5.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  121.383336][   T29] audit: type=1326 audit(1757413842.311:6855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11838 comm="syz.5.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  121.406976][   T29] audit: type=1326 audit(1757413842.311:6856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11838 comm="syz.5.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  121.430632][   T29] audit: type=1326 audit(1757413842.311:6857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11838 comm="syz.5.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  121.454160][   T29] audit: type=1326 audit(1757413842.311:6858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11838 comm="syz.5.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  121.477662][   T29] audit: type=1326 audit(1757413842.311:6859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11838 comm="syz.5.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  121.501550][   T29] audit: type=1326 audit(1757413842.311:6860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11838 comm="syz.5.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f29677cebe9 code=0x7ffc0000
[  122.150226][T11898] __nla_validate_parse: 8 callbacks suppressed
[  122.150240][T11898] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1554'.
[  122.208552][T11902] FAULT_INJECTION: forcing a failure.
[  122.208552][T11902] name failslab, interval 1, probability 0, space 0, times 0
[  122.221420][T11902] CPU: 0 UID: 0 PID: 11902 Comm: syz.5.1556 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  122.221453][T11902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  122.221468][T11902] Call Trace:
[  122.221476][T11902]  <TASK>
[  122.221485][T11902]  __dump_stack+0x1d/0x30
[  122.221554][T11902]  dump_stack_lvl+0xe8/0x140
[  122.221577][T11902]  dump_stack+0x15/0x1b
[  122.221598][T11902]  should_fail_ex+0x265/0x280
[  122.221709][T11902]  should_failslab+0x8c/0xb0
[  122.221734][T11902]  __kmalloc_noprof+0xa5/0x3e0
[  122.221766][T11902]  ? nla_strdup+0x78/0xc0
[  122.221795][T11902]  ? __kvmalloc_node_noprof+0x44b/0x4e0
[  122.221910][T11902]  nla_strdup+0x78/0xc0
[  122.221937][T11902]  nf_tables_newset+0xe06/0x14e0
[  122.222057][T11902]  nfnetlink_rcv+0xb96/0x1690
[  122.222114][T11902]  netlink_unicast+0x5bd/0x690
[  122.222142][T11902]  netlink_sendmsg+0x58b/0x6b0
[  122.222216][T11902]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.222240][T11902]  __sock_sendmsg+0x142/0x180
[  122.222301][T11902]  ____sys_sendmsg+0x31e/0x4e0
[  122.222336][T11902]  ___sys_sendmsg+0x17b/0x1d0
[  122.222374][T11902]  __x64_sys_sendmsg+0xd4/0x160
[  122.222418][T11902]  x64_sys_call+0x191e/0x2ff0
[  122.222443][T11902]  do_syscall_64+0xd2/0x200
[  122.222490][T11902]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  122.222566][T11902]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  122.222615][T11902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.222638][T11902] RIP: 0033:0x7f29677cebe9
[  122.222661][T11902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.222679][T11902] RSP: 002b:00007f2966237038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.222702][T11902] RAX: ffffffffffffffda RBX: 00007f2967a05fa0 RCX: 00007f29677cebe9
[  122.222714][T11902] RDX: 0000000000000000 RSI: 0000200000000900 RDI: 0000000000000003
[  122.222775][T11902] RBP: 00007f2966237090 R08: 0000000000000000 R09: 0000000000000000
[  122.222807][T11902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  122.222821][T11902] R13: 00007f2967a06038 R14: 00007f2967a05fa0 R15: 00007ffe46489428
[  122.222860][T11902]  </TASK>
[  122.364830][T11905] netlink: 'syz.1.1557': attribute type 10 has an invalid length.
[  122.451993][T11905] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1557'.
[  122.523421][T11912] netlink: 'syz.5.1558': attribute type 10 has an invalid length.
[  122.531366][T11912] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1558'.
[  122.592724][T11912] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  122.934024][T11968] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1570'.
[  122.954987][T11965] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1570'.
[  123.118573][T11977] netlink: 'syz.4.1574': attribute type 10 has an invalid length.
[  123.126534][T11977] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1574'.
[  123.154281][T11977] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  123.227913][T11979] FAULT_INJECTION: forcing a failure.
[  123.227913][T11979] name failslab, interval 1, probability 0, space 0, times 0
[  123.240655][T11979] CPU: 0 UID: 0 PID: 11979 Comm: syz.4.1575 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  123.240692][T11979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  123.240704][T11979] Call Trace:
[  123.240710][T11979]  <TASK>
[  123.240719][T11979]  __dump_stack+0x1d/0x30
[  123.240744][T11979]  dump_stack_lvl+0xe8/0x140
[  123.240767][T11979]  dump_stack+0x15/0x1b
[  123.240813][T11979]  should_fail_ex+0x265/0x280
[  123.240836][T11979]  should_failslab+0x8c/0xb0
[  123.240903][T11979]  kmem_cache_alloc_node_noprof+0x57/0x320
[  123.241008][T11979]  ? __alloc_skb+0x101/0x320
[  123.241030][T11979]  __alloc_skb+0x101/0x320
[  123.241127][T11979]  alloc_skb_with_frags+0x7d/0x470
[  123.241150][T11979]  ? selinux_file_open+0x2df/0x330
[  123.241172][T11979]  sock_alloc_send_pskb+0x43a/0x4f0
[  123.241222][T11979]  ? mntput+0x4b/0x80
[  123.241251][T11979]  tun_get_user+0x9b3/0x2680
[  123.241280][T11979]  ? ref_tracker_alloc+0x1f2/0x2f0
[  123.241322][T11979]  ? selinux_file_permission+0x2f0/0x320
[  123.241349][T11979]  tun_chr_write_iter+0x15e/0x210
[  123.241410][T11979]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  123.241476][T11979]  vfs_write+0x527/0x960
[  123.241514][T11979]  ksys_write+0xda/0x1a0
[  123.241544][T11979]  __x64_sys_write+0x40/0x50
[  123.241642][T11979]  x64_sys_call+0x27fe/0x2ff0
[  123.241668][T11979]  do_syscall_64+0xd2/0x200
[  123.241749][T11979]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  123.241825][T11979]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  123.241861][T11979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.241888][T11979] RIP: 0033:0x7f2e7c55ebe9
[  123.241904][T11979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.241933][T11979] RSP: 002b:00007f2e7afbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  123.241974][T11979] RAX: ffffffffffffffda RBX: 00007f2e7c795fa0 RCX: 00007f2e7c55ebe9
[  123.241989][T11979] RDX: 000000000000fdef RSI: 0000200000000300 RDI: 00000000000000c8
[  123.242004][T11979] RBP: 00007f2e7afbf090 R08: 0000000000000000 R09: 0000000000000000
[  123.242018][T11979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.242029][T11979] R13: 00007f2e7c796038 R14: 00007f2e7c795fa0 R15: 00007ffea75e0c08
[  123.242111][T11979]  </TASK>
[  123.591218][T11990] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1581'.
[  123.639975][T11997] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1583'.
[  123.753330][T12012] FAULT_INJECTION: forcing a failure.
[  123.753330][T12012] name failslab, interval 1, probability 0, space 0, times 0
[  123.766011][T12012] CPU: 1 UID: 0 PID: 12012 Comm: syz.0.1590 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  123.766109][T12012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  123.766121][T12012] Call Trace:
[  123.766127][T12012]  <TASK>
[  123.766195][T12012]  __dump_stack+0x1d/0x30
[  123.766220][T12012]  dump_stack_lvl+0xe8/0x140
[  123.766245][T12012]  dump_stack+0x15/0x1b
[  123.766266][T12012]  should_fail_ex+0x265/0x280
[  123.766291][T12012]  should_failslab+0x8c/0xb0
[  123.766315][T12012]  kmem_cache_alloc_noprof+0x50/0x310
[  123.766348][T12012]  ? alloc_empty_file+0x76/0x200
[  123.766391][T12012]  alloc_empty_file+0x76/0x200
[  123.766474][T12012]  path_openat+0x68/0x2170
[  123.766508][T12012]  ? __bpf_get_stack+0x5ff/0x630
[  123.766623][T12012]  ? _parse_integer_limit+0x170/0x190
[  123.766682][T12012]  ? _parse_integer+0x27/0x40
[  123.766708][T12012]  ? kstrtoull+0x111/0x140
[  123.766731][T12012]  do_filp_open+0x109/0x230
[  123.766761][T12012]  file_open_name+0xfa/0x120
[  123.766821][T12012]  __se_sys_acct+0xf0/0x490
[  123.766850][T12012]  __x64_sys_acct+0x1f/0x30
[  123.766944][T12012]  x64_sys_call+0x2f2b/0x2ff0
[  123.766991][T12012]  do_syscall_64+0xd2/0x200
[  123.767028][T12012]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  123.767057][T12012]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  123.767092][T12012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.767146][T12012] RIP: 0033:0x7f33fd8aebe9
[  123.767211][T12012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.767306][T12012] RSP: 002b:00007f33fc30f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[  123.767329][T12012] RAX: ffffffffffffffda RBX: 00007f33fdae5fa0 RCX: 00007f33fd8aebe9
[  123.767344][T12012] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000002040
[  123.767422][T12012] RBP: 00007f33fc30f090 R08: 0000000000000000 R09: 0000000000000000
[  123.767437][T12012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.767451][T12012] R13: 00007f33fdae6038 R14: 00007f33fdae5fa0 R15: 00007ffd4053b898
[  123.767473][T12012]  </TASK>
[  124.060751][T12027] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1593'.
[  124.186661][T12039] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1598'.
[  124.427112][T12053] loop5: detected capacity change from 0 to 256
[  124.437031][T12053] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  124.447306][T12053] FAT-fs (loop5): Filesystem has been set read-only
[  124.454051][T12053] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  124.464474][T12053] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  124.516725][T12068] loop5: detected capacity change from 0 to 2048
[  124.551471][T12068] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.581800][T12068] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  124.663054][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.983509][T12104] IPv6: sit1: Disabled Multicast RS
[  124.989605][T12104] sit1: entered allmulticast mode
[  125.717022][T12120] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  125.724220][T12120] batman_adv: batadv0: Removing interface: veth1_vlan
[  125.750629][T12123] netlink: 'syz.1.1619': attribute type 10 has an invalid length.
[  125.783721][T12123] batman_adv: batadv0: Adding interface: veth1_vlan
[  125.790403][T12123] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.846719][T12123] batman_adv: batadv0: Interface activated: veth1_vlan
[  126.291080][   T29] kauditd_printk_skb: 966 callbacks suppressed
[  126.291097][   T29] audit: type=1326 audit(1757413847.311:7827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12172 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2a2e2badb9 code=0x7ffc0000
[  126.354573][   T29] audit: type=1326 audit(1757413847.321:7828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12172 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  126.378148][   T29] audit: type=1326 audit(1757413847.321:7829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12172 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2a2e315ba7 code=0x7ffc0000
[  126.401758][   T29] audit: type=1326 audit(1757413847.321:7830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12172 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2a2e2badb9 code=0x7ffc0000
[  126.425169][   T29] audit: type=1326 audit(1757413847.321:7831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12172 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  126.448689][   T29] audit: type=1326 audit(1757413847.321:7832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12172 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2a2e315ba7 code=0x7ffc0000
[  126.472487][   T29] audit: type=1326 audit(1757413847.321:7833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12172 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2a2e2badb9 code=0x7ffc0000
[  126.495910][   T29] audit: type=1326 audit(1757413847.321:7834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12172 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  126.519587][   T29] audit: type=1326 audit(1757413847.351:7835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12172 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2a2e315ba7 code=0x7ffc0000
[  126.543095][   T29] audit: type=1326 audit(1757413847.361:7836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12172 comm="syz.2.1628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2a2e2badb9 code=0x7ffc0000
[  127.007455][T12205] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  127.014609][T12205] batman_adv: batadv0: Removing interface: veth1_vlan
[  127.036657][T12213] netlink: 'syz.2.1640': attribute type 10 has an invalid length.
[  127.072346][T12213] batman_adv: batadv0: Adding interface: veth1_vlan
[  127.078998][T12213] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  127.112757][T12213] batman_adv: batadv0: Interface activated: veth1_vlan
[  127.222616][T12230] __nla_validate_parse: 10 callbacks suppressed
[  127.222636][T12230] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1647'.
[  127.367775][T12235] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1649'.
[  127.395003][T12235] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1649'.
[  127.405933][T12247] FAULT_INJECTION: forcing a failure.
[  127.405933][T12247] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.419021][T12247] CPU: 0 UID: 0 PID: 12247 Comm: syz.0.1652 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  127.419053][T12247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  127.419066][T12247] Call Trace:
[  127.419073][T12247]  <TASK>
[  127.419114][T12247]  __dump_stack+0x1d/0x30
[  127.419137][T12247]  dump_stack_lvl+0xe8/0x140
[  127.419157][T12247]  dump_stack+0x15/0x1b
[  127.419174][T12247]  should_fail_ex+0x265/0x280
[  127.419272][T12247]  should_fail+0xb/0x20
[  127.419336][T12247]  should_fail_usercopy+0x1a/0x20
[  127.419365][T12247]  _copy_to_user+0x20/0xa0
[  127.419401][T12247]  simple_read_from_buffer+0xb5/0x130
[  127.419429][T12247]  proc_fail_nth_read+0x10e/0x150
[  127.419459][T12247]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  127.419483][T12247]  vfs_read+0x1a5/0x770
[  127.419502][T12247]  ? __rcu_read_unlock+0x4f/0x70
[  127.419548][T12247]  ? __fget_files+0x184/0x1c0
[  127.419576][T12247]  ksys_read+0xda/0x1a0
[  127.419648][T12247]  __x64_sys_read+0x40/0x50
[  127.419723][T12247]  x64_sys_call+0x27bc/0x2ff0
[  127.419756][T12247]  do_syscall_64+0xd2/0x200
[  127.419788][T12247]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  127.419843][T12247]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  127.419928][T12247]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.419948][T12247] RIP: 0033:0x7f33fd8ad5fc
[  127.419965][T12247] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  127.419985][T12247] RSP: 002b:00007f33fc30f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  127.420006][T12247] RAX: ffffffffffffffda RBX: 00007f33fdae5fa0 RCX: 00007f33fd8ad5fc
[  127.420020][T12247] RDX: 000000000000000f RSI: 00007f33fc30f0a0 RDI: 0000000000000004
[  127.420034][T12247] RBP: 00007f33fc30f090 R08: 0000000000000000 R09: 0000000000000000
[  127.420107][T12247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.420122][T12247] R13: 00007f33fdae6038 R14: 00007f33fdae5fa0 R15: 00007ffd4053b898
[  127.420144][T12247]  </TASK>
[  127.654011][T12235] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1649'.
[  127.664114][T12244] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1649'.
[  127.760633][T12256] tipc: Started in network mode
[  127.765653][T12256] tipc: Node identity ac1414aa, cluster identity 4711
[  127.785565][T12256] tipc: Enabled bearer <udp:s>, priority 10
[  127.901508][T12261] FAULT_INJECTION: forcing a failure.
[  127.901508][T12261] name failslab, interval 1, probability 0, space 0, times 0
[  127.914259][T12261] CPU: 0 UID: 0 PID: 12261 Comm: syz.4.1658 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  127.914289][T12261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  127.914304][T12261] Call Trace:
[  127.914312][T12261]  <TASK>
[  127.914393][T12261]  __dump_stack+0x1d/0x30
[  127.914417][T12261]  dump_stack_lvl+0xe8/0x140
[  127.914438][T12261]  dump_stack+0x15/0x1b
[  127.914457][T12261]  should_fail_ex+0x265/0x280
[  127.914485][T12261]  should_failslab+0x8c/0xb0
[  127.914512][T12261]  kmem_cache_alloc_noprof+0x50/0x310
[  127.914604][T12261]  ? mm_alloc+0x2b/0xa0
[  127.914633][T12261]  mm_alloc+0x2b/0xa0
[  127.914677][T12261]  alloc_bprm+0x20e/0x350
[  127.914702][T12261]  do_execveat_common+0x12e/0x750
[  127.914734][T12261]  __x64_sys_execve+0x5c/0x70
[  127.914839][T12261]  x64_sys_call+0x2716/0x2ff0
[  127.914864][T12261]  do_syscall_64+0xd2/0x200
[  127.914904][T12261]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  127.914934][T12261]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  127.915016][T12261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.915043][T12261] RIP: 0033:0x7f2e7c55ebe9
[  127.915104][T12261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.915125][T12261] RSP: 002b:00007f2e7afbf038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  127.915148][T12261] RAX: ffffffffffffffda RBX: 00007f2e7c795fa0 RCX: 00007f2e7c55ebe9
[  127.915163][T12261] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000080
[  127.915178][T12261] RBP: 00007f2e7afbf090 R08: 0000000000000000 R09: 0000000000000000
[  127.915192][T12261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.915206][T12261] R13: 00007f2e7c796038 R14: 00007f2e7c795fa0 R15: 00007ffea75e0c08
[  127.915238][T12261]  </TASK>
[  128.135990][T12266] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1660'.
[  128.199580][T12266] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1660'.
[  128.220400][T12266] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1660'.
[  128.441657][T12337] SELinux: failed to load policy
[  128.460504][T12330] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1671'.
[  128.490793][T12344] netlink: 'syz.0.1678': attribute type 4 has an invalid length.
[  128.507405][T12330] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1671'.
[  128.657119][T12382] netlink: '/dev/virtual_nc': attribute type 6 has an invalid length.
[  128.901018][ T3691] tipc: Node number set to 2886997162
[  129.198472][T12441] FAULT_INJECTION: forcing a failure.
[  129.198472][T12441] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  129.211875][T12441] CPU: 1 UID: 0 PID: 12441 Comm: syz.5.1687 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  129.211899][T12441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  129.211939][T12441] Call Trace:
[  129.211946][T12441]  <TASK>
[  129.211954][T12441]  __dump_stack+0x1d/0x30
[  129.211978][T12441]  dump_stack_lvl+0xe8/0x140
[  129.212004][T12441]  dump_stack+0x15/0x1b
[  129.212021][T12441]  should_fail_ex+0x265/0x280
[  129.212049][T12441]  should_fail_alloc_page+0xf2/0x100
[  129.212166][T12441]  __alloc_frozen_pages_noprof+0xff/0x360
[  129.212211][T12441]  alloc_pages_mpol+0xb3/0x250
[  129.212248][T12441]  vma_alloc_folio_noprof+0x1aa/0x300
[  129.212316][T12441]  handle_mm_fault+0xec2/0x2c20
[  129.212352][T12441]  do_user_addr_fault+0x636/0x1090
[  129.212388][T12441]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  129.212484][T12441]  exc_page_fault+0x62/0xa0
[  129.212508][T12441]  asm_exc_page_fault+0x26/0x30
[  129.212594][T12441] RIP: 0033:0x7f2967690ba3
[  129.212681][T12441] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  129.212700][T12441] RSP: 002b:00007f29662364a0 EFLAGS: 00010206
[  129.212828][T12441] RAX: 0000000000012000 RBX: 00007f2966236540 RCX: 00007f295de17000
[  129.212842][T12441] RDX: 00007f29662366e0 RSI: 0000000000000001 RDI: 00007f29662365e0
[  129.212856][T12441] RBP: 0000000000000006 R08: 0000000000000006 R09: 0000000000000021
[  129.212870][T12441] R10: 0000000000000024 R11: 00007f2966236540 R12: 0000000000000001
[  129.212884][T12441] R13: 00007f296786da20 R14: 00000000000000ff R15: 00007f29662365e0
[  129.212906][T12441]  </TASK>
[  129.212916][T12441] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  129.396549][T12441] loop5: detected capacity change from 0 to 512
[  129.403378][T12441] EXT4-fs: Ignoring removed nobh option
[  129.422057][T12441] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.1687: corrupted inode contents
[  129.444632][T12441] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #3: comm syz.5.1687: mark_inode_dirty error
[  129.468543][T12441] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.1687: corrupted inode contents
[  129.515307][T12441] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #3: comm syz.5.1687: mark_inode_dirty error
[  129.544180][T12441] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.1687: Failed to acquire dquot type 0
[  129.573853][T12441] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.1687: corrupted inode contents
[  129.587711][T12457] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=12457 comm=syz.2.1693
[  129.603583][T12441] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #16: comm syz.5.1687: mark_inode_dirty error
[  129.648413][T12441] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.1687: corrupted inode contents
[  129.660925][T12441] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #16: comm syz.5.1687: mark_inode_dirty error
[  129.673083][T12441] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.1687: corrupted inode contents
[  129.687720][T12441] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  129.696584][T12441] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.1687: corrupted inode contents
[  129.708829][T12441] EXT4-fs error (device loop5): ext4_truncate:4666: inode #16: comm syz.5.1687: mark_inode_dirty error
[  129.720284][T12441] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  129.729881][T12441] EXT4-fs (loop5): 1 truncate cleaned up
[  129.737261][T12441] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.756526][T12441] ext4 filesystem being mounted at /193/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.802798][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.936758][T12515] loop5: detected capacity change from 0 to 2048
[  129.953262][T12515] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.967995][T12515] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  129.997337][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.157437][T12549] SELinux:  Context *m�kX�I��$h�x4۫�K�M� is not valid (left unmapped).
[  130.166812][T12549] SELinux:  Context ���KM*�,h�c��I�Ǿ�û��̋y���+�.�+y��0�[pr�;J�A9�����Iq�j�Ǽ=7)o
M{���nF��=����Xmnx��r�D�㑉��垳�4��TW
��}�t�����%ȖY��^s�lF����B�53��h�m���5�}��;J�����Xom%~"�~9mM��~alʺL�I8��i��<B�3
[  130.166812][T12549] \�,:��gՀ^!�(D�.�0 is not valid (left unmapped).
[  130.196457][T12549] SELinux:  Context 5�}��M3�p�X:����]�Q?��֧�p����{��O)B��R���D��P_N�[��`�3�?"�Mp$�=J�9[Ճ�CZ<R is not valid (left unmapped).
[  130.215457][T12549] SELinux:  Context 77Q�����.�y��H.j��o���@���M����ɭ+�Š��~���o��)�ơ�s�#��{�2t������f���Л�����7�ZDt�ǩ)�X� is not valid (left unmapped).
[  130.234549][T12549] SELinux:  Context A��)��t�'����*'ĺ����k�����ش�L�&��z�
[  130.234549][T12549] :_t� �0��H^����B��>&��Zw8	lX&�D;t�d�B�I�ݛ~���L
[  130.234549][T12549] uSċ�kxI��R��I$4"�l��X�
7f9�٬��b���B��|72�*�
��k���NM������ is not valid (left unmapped).
[  130.260029][T12549] SELinux:  Context �W�X�E��][O�:Ѹ���o�߭O���bZD�fq	:�~�t6�uY�x���(��Q��8����NPZ��eo����Q[aS��I> is not valid (left unmapped).
[  131.030477][T12616] netlink: 'syz.0.1719': attribute type 1 has an invalid length.
[  131.129054][T12630] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  131.136317][T12630] batman_adv: batadv0: Removing interface: veth1_vlan
[  131.172701][T12630] netlink: 'syz.1.1724': attribute type 10 has an invalid length.
[  131.181071][T12630] batman_adv: batadv0: Adding interface: veth1_vlan
[  131.187705][T12630] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.214020][T12630] batman_adv: batadv0: Interface activated: veth1_vlan
[  131.430739][T12640] loop5: detected capacity change from 0 to 2048
[  131.492742][T12640] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.512815][T12640] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  131.563808][ T7781] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.682623][T12650] netlink: 'syz.5.1730': attribute type 10 has an invalid length.
[  131.719903][T12650] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  131.798853][T12654] netlink: 'syz.2.1732': attribute type 1 has an invalid length.
[  131.930447][   T29] kauditd_printk_skb: 809 callbacks suppressed
[  131.930465][   T29] audit: type=1400 audit(1757413852.951:8644): avc:  denied  { create } for  pid=12677 comm="syz.2.1734" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  131.998186][   T29] audit: type=1326 audit(1757413853.021:8645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12677 comm="syz.2.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  132.021768][   T29] audit: type=1326 audit(1757413853.021:8646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12677 comm="syz.2.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  132.045400][   T29] audit: type=1326 audit(1757413853.021:8647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12677 comm="syz.2.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=315 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  132.068902][   T29] audit: type=1326 audit(1757413853.021:8648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12677 comm="syz.2.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  132.092452][   T29] audit: type=1326 audit(1757413853.021:8649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12677 comm="syz.2.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  132.115955][   T29] audit: type=1326 audit(1757413853.021:8650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12677 comm="syz.2.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  132.139442][   T29] audit: type=1326 audit(1757413853.021:8651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12677 comm="syz.2.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  132.163092][   T29] audit: type=1326 audit(1757413853.021:8652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12677 comm="syz.2.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  132.186572][   T29] audit: type=1326 audit(1757413853.021:8653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12677 comm="syz.2.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f2a2e31ebe9 code=0x7ffc0000
[  132.319430][T12694] __nla_validate_parse: 8 callbacks suppressed
[  132.319443][T12694] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1740'.
[  132.381973][T12699] netlink: 'syz.5.1742': attribute type 10 has an invalid length.
[  132.389828][T12699] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1742'.
[  132.401330][T12699] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  132.466927][T12715] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1746'.
[  132.562947][T12745] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=12745 comm=syz.0.1750
[  132.682645][T12746] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1748'.
[  133.349502][T12753] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  133.447229][T12761] netlink: 'syz.5.1755': attribute type 3 has an invalid length.
[  133.455411][T12767] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1758'.
[  133.569966][T12787] netlink: 'syz.5.1762': attribute type 10 has an invalid length.
[  133.577882][T12787] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1762'.
[  133.616705][T12787] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  133.671707][T12794] FAULT_INJECTION: forcing a failure.
[  133.671707][T12794] name failslab, interval 1, probability 0, space 0, times 0
[  133.684455][T12794] CPU: 1 UID: 0 PID: 12794 Comm: syz.4.1768 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  133.684485][T12794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  133.684497][T12794] Call Trace:
[  133.684504][T12794]  <TASK>
[  133.684510][T12794]  __dump_stack+0x1d/0x30
[  133.684548][T12794]  dump_stack_lvl+0xe8/0x140
[  133.684571][T12794]  dump_stack+0x15/0x1b
[  133.684591][T12794]  should_fail_ex+0x265/0x280
[  133.684625][T12794]  should_failslab+0x8c/0xb0
[  133.684723][T12794]  kmem_cache_alloc_noprof+0x50/0x310
[  133.684754][T12794]  ? __anon_vma_prepare+0xcd/0x2f0
[  133.684778][T12794]  __anon_vma_prepare+0xcd/0x2f0
[  133.684802][T12794]  do_wp_page+0x1926/0x24e0
[  133.684891][T12794]  ? __lruvec_stat_mod_folio+0xd6/0x120
[  133.684924][T12794]  ? css_rstat_updated+0xb7/0x240
[  133.685011][T12794]  ? __rcu_read_lock+0x37/0x50
[  133.685040][T12794]  handle_mm_fault+0x77d/0x2c20
[  133.685092][T12794]  do_user_addr_fault+0x636/0x1090
[  133.685128][T12794]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  133.685208][T12794]  exc_page_fault+0x62/0xa0
[  133.685238][T12794]  asm_exc_page_fault+0x26/0x30
[  133.685256][T12794] RIP: 0033:0x7f2e7c420ba3
[  133.685272][T12794] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  133.685337][T12794] RSP: 002b:00007f2e7afbe3f0 EFLAGS: 00010202
[  133.685351][T12794] RAX: 00000000000001c0 RBX: 00007f2e7afbe490 RCX: 00007f2e72b9f000
[  133.685363][T12794] RDX: 00007f2e7afbe630 RSI: 0000000000000000 RDI: 00007f2e7afbe530
[  133.685375][T12794] RBP: 00000000000000bd R08: 0000000000000008 R09: 00000000000000a4
[  133.685386][T12794] R10: 00000000000000c2 R11: 00007f2e7afbe490 R12: 0000000000000001
[  133.685401][T12794] R13: 00007f2e7c5fda20 R14: 0000000000000002 R15: 00007f2e7afbe530
[  133.685423][T12794]  </TASK>
[  133.685471][T12794] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  133.913451][T12788] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1763'.
[  134.067328][T12806] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1772'.
[  134.088216][T12804] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1771'.
[  134.099937][T12806] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1772'.
[  134.154890][T12808] ==================================================================
[  134.162987][T12808] BUG: KCSAN: data-race in hrtimer_reprogram / print_cpu
[  134.170043][T12808] 
[  134.172383][T12808] write to 0xffff888237d1b260 of 8 bytes by task 12777 on cpu 1:
[  134.180104][T12808]  hrtimer_reprogram+0x1a5/0x220
[  134.185054][T12808]  hrtimer_start_range_ns+0x6b2/0x740
[  134.190485][T12808]  do_nanosleep+0x79/0x330
[  134.194920][T12808]  hrtimer_nanosleep+0xdd/0x280
[  134.199812][T12808]  common_nsleep+0x62/0x80
[  134.204250][T12808]  __se_sys_clock_nanosleep+0x21a/0x250
[  134.209835][T12808]  __x64_sys_clock_nanosleep+0x55/0x70
[  134.212153][T12813] vhci_hcd: invalid port number 255
[  134.215326][T12808]  x64_sys_call+0x272d/0x2ff0
[  134.215352][T12808]  do_syscall_64+0xd2/0x200
[  134.215380][T12808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.215398][T12808] 
[  134.215403][T12808] read to 0xffff888237d1b260 of 8 bytes by task 12808 on cpu 0:
[  134.215417][T12808]  print_cpu+0x30b/0x680
[  134.220612][T12813] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  134.225288][T12808]  timer_list_show+0x107/0x170
[  134.263180][T12808]  seq_read_iter+0x62a/0x940
[  134.267791][T12808]  proc_reg_read_iter+0x10d/0x180
[  134.272836][T12808]  copy_splice_read+0x43f/0x660
[  134.277695][T12808]  splice_direct_to_actor+0x26c/0x680
[  134.283071][T12808]  do_splice_direct+0xda/0x150
[  134.287835][T12808]  do_sendfile+0x380/0x650
[  134.292264][T12808]  __x64_sys_sendfile64+0x105/0x150
[  134.297470][T12808]  x64_sys_call+0x2bb0/0x2ff0
[  134.302153][T12808]  do_syscall_64+0xd2/0x200
[  134.306672][T12808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.312600][T12808] 
[  134.314945][T12808] value changed: 0x0000001f3ab094e6 -> 0x0000001f3a79125e
[  134.322047][T12808] 
[  134.324365][T12808] Reported by Kernel Concurrency Sanitizer on:
[  134.330510][T12808] CPU: 0 UID: 0 PID: 12808 Comm: syz.2.1773 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  134.340335][T12808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  134.350388][T12808] ==================================================================