last executing test programs:

23.426668535s ago: executing program 2 (id=4087):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000040)={'veth0_virt_wifi\x00', &(0x7f0000000000)=@ethtool_sset_info={0x37, 0x1, 0x7}})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000007000000080001006e00000008000300", @ANYRES32, @ANYBLOB="0c0099000000000000000000050053000100000014000400776c616e310000000000000000000000140006"], 0x60}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r3}, 0x10)
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
bpf$PROG_BIND_MAP(0x23, &(0x7f00000002c0)={r3, r0}, 0xc)
sendmsg$nl_route_sched(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x4c, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)
syz_io_uring_complete(0x0)
pipe(&(0x7f0000000380)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x1e, &(0x7f0000000540)=0xffffffff, 0xffffffffffffff41)
fcntl$setpipe(r6, 0x407, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0x14, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r7, &(0x7f0000000300)={0x2, 0x0, @multicast2}, 0x10)
sendto$inet(r7, &(0x7f0000000200)="e1", 0xfea8, 0x0, 0x0, 0x0)
setsockopt$inet6_IPV6_PKTINFO(r6, 0x29, 0x32, &(0x7f0000000340)={@local, r5}, 0x14)
splice(r7, 0x0, r6, 0x0, 0xfea8, 0xa)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket(0x10, 0x3, 0x9)
newfstatat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', &(0x7f00000003c0), 0x1000)

23.297904568s ago: executing program 2 (id=4090):
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180800000000010000000000000000008510000006", @ANYRES32=0x0, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x200000000010}, 0x18)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000a00), &(0x7f0000000a40)=r1}, 0x20)
bpf$LINK_DETACH(0x22, &(0x7f0000000100), 0x4)

22.598874609s ago: executing program 2 (id=4104):
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x22c7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='kfree\x00', r0, 0x0, 0x2}, 0x18)
r1 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
read$hiddev(r1, 0x0, 0x0)

22.530471816s ago: executing program 2 (id=4105):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xc5c, &(0x7f00000005c0), 0x3, 0x445, &(0x7f0000000b00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
r1 = fsopen(&(0x7f0000000200)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000240)=':\'-\'\'**,\x00', &(0x7f00000002c0)=',\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
ptrace$getregset(0x4204, r5, 0x202, &(0x7f0000000140)={&(0x7f0000000100)=""/32, 0x20})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000040)={0x4, 0x7fff, 0x7, 0x6, 0x40, 0x77})
r6 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7c, 0x2, @perf_config_ext={0x0, 0x7}, 0xa00, 0x81, 0x43a1bd76, 0x0, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000008500000061000000180100002064682500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
clock_nanosleep(0x8, 0x0, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r7 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040100000400050000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r8}, &(0x7f0000000180), &(0x7f00000001c0)=r7}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)

21.647721305s ago: executing program 2 (id=4117):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r0], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
pipe(&(0x7f00000007c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
close(r2)
socket$nl_generic(0x10, 0x3, 0x10)
splice(r2, 0x0, r3, 0x0, 0xfffd, 0x0)

21.258122024s ago: executing program 2 (id=4123):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = io_uring_setup(0x1d48, &(0x7f0000000340)={0x0, 0x8000f2d5, 0x800, 0x6, 0x3a2})
r3 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r3, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r3, 0x4)
recvmmsg(r3, &(0x7f00000050c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000}}], 0x1, 0x40000100, 0x0)
close_range(r2, r3, 0x0)

21.159370074s ago: executing program 32 (id=4123):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = io_uring_setup(0x1d48, &(0x7f0000000340)={0x0, 0x8000f2d5, 0x800, 0x6, 0x3a2})
r3 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r3, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r3, 0x4)
recvmmsg(r3, &(0x7f00000050c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000}}], 0x1, 0x40000100, 0x0)
close_range(r2, r3, 0x0)

2.335443193s ago: executing program 5 (id=4509):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004004}, 0x204c031)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f0000000380)=0x20000, 0x4)
readlinkat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r1, @ANYRES8=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000000)=ANY=[@ANYRES16], 0x0, 0xffffff71, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x3c1, 0x3, 0x370, 0x1c0, 0x111, 0x4b4, 0x0, 0xd4feffff, 0x2d0, 0x20a, 0x278, 0x2d0, 0x278, 0x3, 0x0, {[{{@ipv6={@empty, @empty, [0x0, 0xffffff00], [0x0, 0x0, 0x0, 0xffffffff], 'ipvlan0\x00', 'team_slave_0\x00', {}, {}, 0x6, 0xfe}, 0x0, 0x168, 0x190, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "6d93eb04697dfa39de04767f46614613a407abbf4ed2e83a63b484dbb3bf6b2a850e79009e2905d2f98ba19f91f3c9faee6d3686e9bee067f4e77d9ad66238750c4100d7ee97ec7646259d90edece6e9787a97bc956c01754c34c5c9518c46178ed5f9194454980e579c80eca35a58dc47d1d5e4ff6e216c724e88c702448587", 0xa}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ipv6={@loopback, @mcast2, [], [], 'veth1_to_hsr\x00', 'pim6reg1\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x20, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d0)

2.286208778s ago: executing program 5 (id=4513):
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32=0x0, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x200000000010}, 0x18)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000a00), &(0x7f0000000a40)=r1}, 0x20)
bpf$LINK_DETACH(0x22, &(0x7f0000000100), 0x4)

1.512863117s ago: executing program 5 (id=4532):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@GTPA_LINK={0x8}, @GTPA_O_TEI={0x8}, @GTPA_VERSION={0x8, 0x2, 0x1}]}, 0x2c}}, 0x8000)

1.512091147s ago: executing program 5 (id=4533):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x3, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[], 0x48)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xbf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000000, 0x7}, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000340)='cpu\t>0&&\t')
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x1000040, &(0x7f0000000000)={[{@errors_remount}]}, 0x1, 0x599, &(0x7f0000000540)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x84042, 0x1fb)
write$P9_RUNLINKAT(r2, &(0x7f0000000000)={0xfffffffffffffecb, 0x4d, 0x1}, 0xffffffd7)
r3 = add_key$keyring(&(0x7f0000000200), 0x0, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f0000000000)='asymmetric\x00', &(0x7f0000000040)=@chain={'key_or_keyring:', r3})
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0xf, 0x4, 0x0, 0x0, 0x50, 0x0, 0x0, 0x0, 0x5, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010100, {[@timestamp_addr={0x44, 0x1c, 0x6, 0x3, 0x0, [{@empty}, {@private}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}]}, @ssrr={0x89, 0x7, 0xc6, [@loopback]}, @generic={0x83, 0x2}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x108, &(0x7f00000001c0)=0x690d, 0x0, 0x4)
r4 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r4, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb, 0x20}, 0xc)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="a800000000010904000500000000000002000000240001801400018008000100e000000108000200ac1e01010c00028005000100000009002400028014000180080001000000010908000200ac1e00010c000280050001000000000044000f800800014000000006080003400000002b080003400000000808000240000000400800014000000000fb0001400000000708000140000044f10800034000000003080007"], 0xa8}}, 0x0)
keyctl$update(0x2, r3, &(0x7f0000000b00)="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", 0x800)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0xe, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7f58800008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_RTHDR(r7, 0x29, 0x39, &(0x7f00000001c0)={0x2f, 0x0, 0xe06d3381b53a8b9e, 0xff}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0)

1.37742294s ago: executing program 5 (id=4539):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), &(0x7f0000000080)=r3}, 0x20)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x2, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x4}, 0x0, 0xfffbffffffffffff, 0xffffffffffffffff, 0x0)

1.204394728s ago: executing program 3 (id=4543):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0x3)
ioctl$TCSETSW2(r1, 0x5408, &(0x7f0000000140)={0x2, 0x0, 0x0, 0x2, 0x1, "23f555d9adb42d4408020e90d1beaa82dc1ecf", 0x0, 0xfffffffe})
ioctl$TIOCGPGRP(r0, 0x5437, 0x0)

956.407753ms ago: executing program 1 (id=4551):
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCSETSW2(r1, 0x5408, &(0x7f0000000140)={0x2, 0x0, 0x0, 0x2, 0x1, "23f555d9adb42d4408020e90d1beaa82dc1ecf", 0x0, 0xfffffffe})
ioctl$TIOCGPGRP(r0, 0x5437, 0x0)

910.657358ms ago: executing program 3 (id=4552):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000800)={r1, 0x0, 0x25, 0x2000000, @void}, 0x10)

825.255026ms ago: executing program 3 (id=4555):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800"/13], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
socket(0xa, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x4)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socket(0x10, 0x803, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0xc2, 0x0, 0x7fff0005}]})
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x5, 0x2}, 0x48)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300), 0x111, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0xfffc, 0x2, @empty, 0xa09c}, {0xa, 0x2, 0xfffffffe, @dev={0xfe, 0x80, '\x00', 0x39}}, 0xffffffffffffffff, 0x40099d}}, 0x37)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000300))
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0xff7fffff}, 0x8)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2)

801.833069ms ago: executing program 3 (id=4557):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800"/13], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
socket(0xa, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x4)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socket(0x10, 0x803, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0xc2, 0x0, 0x7fff0005}]})
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x5, 0x2}, 0x48)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300), 0x111, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0xfffc, 0x2, @empty, 0xa09c}, {0xa, 0x2, 0xfffffffe, @dev={0xfe, 0x80, '\x00', 0x39}}, 0xffffffffffffffff, 0x40099d}}, 0x37)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000300))
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0xff7fffff}, 0x8)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2)

753.118174ms ago: executing program 3 (id=4559):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000580)='kmem_cache_free\x00', r1, 0x0, 0x7fff}, 0x18)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200100, 0x200000, 0x0, 0x0, 0x10000, 0x20})

688.98192ms ago: executing program 3 (id=4562):
r0 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x20, 0x801, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x100000000}, 0x0, 0x4, 0x0, 0x3, 0xfff, 0x8001, 0x7fff}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
read$msr(r0, 0x0, 0x0) (async)
read$msr(r0, 0x0, 0x0)

617.947537ms ago: executing program 4 (id=4563):
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r0, 0xf503, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r1, 0x0, 0x1034}, 0x18)
r2 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYRESDEC=r2], &(0x7f00000001c0)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000400)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xc}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00}, 0x94)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000004}, 0x14004040)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

589.99761ms ago: executing program 1 (id=4564):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f00000002c0)={0xa, 0x0, 0xfffffffe, @ipv4={'\x00', '\xff\xff', @loopback}, 0x4}, 0x1c)
connect$pppl2tp(r1, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x8, 0x0, 0x1003, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/vmallocinfo\x00', 0x0, 0x0)
timerfd_settime(r3, 0x1, &(0x7f00000001c0)={{}, {0x77359400}}, 0x0)
setsockopt$IP_VS_SO_SET_EDIT(r3, 0x0, 0x483, &(0x7f00000001c0)={0x2e, @remote, 0x4e22, 0x0, 'dh\x00', 0x19, 0x6, 0xb}, 0x2c)
writev(r1, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1, 0x8}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)=@newtfilter={0x50, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x1, 0xfff3}, {0x0, 0x1}, {0x10, 0x6}}, [@filter_kind_options=@f_flow={{0x9}, {0x20, 0x2, [@TCA_FLOW_EMATCHES={0x1c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0xc, 0x1, 0x0, 0x0, {{0xe6a7, 0x0, 0xfffe}}}]}]}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x40004}, 0x2008c010)

566.051252ms ago: executing program 0 (id=4565):
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r0 = socket(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r1}, 0x3d)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r2}, 0x3d)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x4c, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0x2}, {0xffff, 0xffff}, {0x4, 0x300}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)
r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
write$vga_arbiter(r4, &(0x7f0000000200)=ANY=[@ANYBLOB="6c6f636b20696f2b6d776d0007b524a256a58f678bd938f3eb78b8a24dda1cdd8958ac715927fe9255af9a8f85320b381e34f493fabe764e80dfbcaea2596b8105eade462a1bb0f487f31eeee162217ad0959cdf5085717fbf31ef8681d8fc91d82e1372f6c8fec12ed4c026add53f1e83e24c741b11555dc1b4353dcd00030aa5fade841c899c06842253107b241c1f684cf0ffa8ae5f707f9f89f631e6a413eea8caa0fd18fc60e023bd5f1efcafde"], 0xc)
epoll_create(0xb398)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00', r6, 0x0, 0xffffffffffff8001}, 0x18)
pipe(0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
recvmmsg(0xffffffffffffffff, &(0x7f0000001640)=[{{0x0, 0x0, &(0x7f0000000040)=[{0x0}], 0x1}}], 0x1, 0x34000, 0x0)
ioctl$SNAPSHOT_FREE(0xffffffffffffffff, 0x3305)

448.540064ms ago: executing program 0 (id=4566):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")

420.909358ms ago: executing program 1 (id=4567):
socket$inet(0x2, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$selinux_access(r1, &(0x7f0000001a80)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7570647077645f657865635f742073797374656d5f753a73797374656d5f723afaffffffffffffff3a73302030"], 0x56)

404.727329ms ago: executing program 0 (id=4568):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1d459d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x183, 0x3}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)={0x1c, r1, 0x1, 0x4070bd28, 0x1, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0xf8)

379.593122ms ago: executing program 1 (id=4569):
write$binfmt_aout(0xffffffffffffffff, 0x0, 0x20)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = io_uring_setup(0x1d48, &(0x7f0000000340)={0x0, 0x8000f2d5, 0x800, 0x6, 0x3a2})
r2 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r2, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r2, 0x4)
recvmmsg(r2, &(0x7f00000050c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000}}], 0x1, 0x40000100, 0x0)
close_range(r1, r2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r3}, 0x18)

343.884705ms ago: executing program 0 (id=4570):
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000351000/0x2000)=nil)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000640)=""/4112, 0x1010}], 0x1, 0x4000, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000380)={0x1, 0x58, &(0x7f0000000400)}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = accept4(r0, &(0x7f00000002c0)=@ax25={{0x3, @default}, [@remote, @rose, @netrom, @netrom, @netrom, @null, @netrom, @bcast]}, &(0x7f0000000100)=0x80, 0x80000)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000340)={&(0x7f0000001680)=@flushsa={0x1b8, 0x1c, 0x1, 0x70bd27, 0x25dfdbfd, {0x3c}, [@sec_ctx={0x52, 0x8, {0x4e, 0x8, 0x0, 0xed, 0x46, "72059e0f3ff32c5790242cb107c76aa3ebfbf2c4697864b82269f140734ceac4e49d6e479cb7d7a9271e65fa9c79b9c1d5e614286ef0452ad3cdc7db1bd7741ab45378153fa0"}}, @algo_auth={0xd7, 0x1, {{'sha384-arm64\x00'}, 0x478, "ab5136c066aa0073c3ce6ae6ae30b071ea70e91b98df9997001efcb5be67e99fc0f1d6d7e7339b243688cac662bcff559cdd85126c0044ba8014e37f679aed5ad7071e4b870cfa14eb4ac4e63c9964b54b8591e98f30e73b556966f5e54e0bb135a6e5f3183fac05d647240bc1e0761c45628624712a110877535e76065b4f24fde8d33acb5a12cf13734d56ea61a2"}}, @XFRMA_SET_MARK={0x8, 0x1d, 0x9}, @policy_type={0xa}, @algo_comp={0x63, 0x3, {{'lzjh\x00'}, 0xd8, "102b514db52762fc2397c224e930a3232c72851819cdd61b4bfeeb"}}]}, 0x1b8}}, 0x44080)
msgsnd(0x0, 0x0, 0x2000, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00005f5000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)={0x2, 0x17, 0x20, 0x0, 0x3, 0x0, 0x0, 0x0, [@sadb_x_nat_t_type={0x1, 0x14, 0x81}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e21, @broadcast}}]}, 0x30}}, 0x0)
getrandom(&(0x7f0000001880)=""/4096, 0x1000, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000031900850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sys_enter\x00', r4, 0x0, 0xfffffffffffffffd}, 0x18)
getpgrp(0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r5 = fsopen(&(0x7f0000000180)='proc\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
getresuid(&(0x7f0000000680), &(0x7f00000006c0), &(0x7f0000000700))
ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='sched_switch\x00', r6}, 0x10)
r7 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
semop(0x0, &(0x7f0000000040)=[{0x2, 0xef9c, 0x1800}, {0x4, 0x0, 0x1000}, {0x1, 0xfff5, 0x800}, {0x1, 0x7}, {0x1, 0xa141, 0x1800}, {0x0, 0x7ff, 0x1000}, {0x1, 0x9407}, {0x1}], 0x8)
flock(r7, 0x5)

315.743048ms ago: executing program 4 (id=4571):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x22c7, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
read$hiddev(r2, 0x0, 0x0)

295.11495ms ago: executing program 0 (id=4572):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x818010, &(0x7f0000000300)={[{@minixdf}, {@grpjquota}]}, 0x1, 0x72d, &(0x7f00000014c0)="$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")

268.087373ms ago: executing program 4 (id=4573):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004004}, 0x204c031)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r3, 0x11b, 0x3, &(0x7f0000000380)=0x20000, 0x4)
readlinkat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r1, @ANYRES8=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000000)=ANY=[@ANYRES16=r2], 0x0, 0xffffff71, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000f00)='kfree\x00', r4, 0x0, 0x34}, 0x18)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x3c1, 0x3, 0x370, 0x1c0, 0x111, 0x4b4, 0x0, 0xd4feffff, 0x2d0, 0x20a, 0x278, 0x2d0, 0x278, 0x3, 0x0, {[{{@ipv6={@empty, @empty, [0x0, 0xffffff00], [0x0, 0x0, 0x0, 0xffffffff], 'ipvlan0\x00', 'team_slave_0\x00', {}, {}, 0x6, 0xfe}, 0x0, 0x168, 0x190, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "6d93eb04697dfa39de04767f46614613a407abbf4ed2e83a63b484dbb3bf6b2a850e79009e2905d2f98ba19f91f3c9faee6d3686e9bee067f4e77d9ad66238750c4100d7ee97ec7646259d90edece6e9787a97bc956c01754c34c5c9518c46178ed5f9194454980e579c80eca35a58dc47d1d5e4ff6e216c724e88c702448587", 0xa}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ipv6={@loopback, @mcast2, [], [], 'veth1_to_hsr\x00', 'pim6reg1\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x20, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d0)
r6 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r6, &(0x7f0000000340)=@name={0x1e, 0x2, 0x3, {{0x42, 0x3}}}, 0x10)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000002c0)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r8, 0x400454ce, 0x0)
ioctl$TUNSETLINK(r7, 0x400454cc, 0x0)
ioctl$TUNSETLINK(r7, 0x400454cd, 0x100)

267.375703ms ago: executing program 1 (id=4574):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001240)={0x11, 0xd, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xe, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000001480)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r5, @ANYBLOB="01030003000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="4c00000010001ffffcfffffffdffffff00000000", @ANYRES32=0x0, @ANYBLOB="0002010000000000240012800b00010065727370616e000014000280050016000000000008000700ac1414bb08000a00", @ANYRES32=r5], 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1}, 0x24}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r1, 0x0, 0x4804}, 0x18)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000003c0)=[{0x0}, {0x0}], 0x2)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x8, &(0x7f0000000000)={&(0x7f0000000200)={{0x14, 0x10, 0xc00e}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x4000000, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWSETELEM={0x78, 0xc, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4c, 0x3, 0x0, 0x1, [{0x48, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0xb}, @NFTA_SET_ELEM_EXPRESSIONS={0x3c, 0xb, 0x0, 0x1, [{0x20, 0x7, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x18, 0x1, 0x0, 0x1, @connlimit={{0x4, 0x2}, @val={0x4}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xfc}}, 0x0)

176.954392ms ago: executing program 0 (id=4575):
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCSETSW2(r1, 0x5408, &(0x7f0000000140)={0x2, 0x0, 0x0, 0x2, 0x1, "23f555d9adb42d4408020e90d1beaa82dc1ecf", 0x0, 0xfffffffe})
ioctl$TIOCGPGRP(r0, 0x5437, 0x0)

106.501419ms ago: executing program 4 (id=4576):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000600)='kfree\x00'}, 0x18)
lsetxattr$security_selinux(&(0x7f0000000900)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:netutils_exec_t:s0\x00', 0x25, 0x0)

87.398182ms ago: executing program 4 (id=4577):
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x59405396}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r1, 0x29, 0x39, 0x0, 0x0)

81.557932ms ago: executing program 1 (id=4578):
arch_prctl$ARCH_SHSTK_STATUS(0x5005, &(0x7f0000000040))
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x1000c40, &(0x7f00000002c0), 0x5, 0x51c, &(0x7f0000000700)="$eJzs3cFvI1cZAPBvZjebNE2bFCoVENClFBa0WjvxtlHVU7mAUFUJUXHikIbEG0Vx4ih2ShNWavI/IFGJA4ITZyQQHCr1xBHBDW69lANSgRWoQeJgNONx1t3YG3c3awv795NGM29mMt97Y8178RfHL4CJdTUijiLiSkS8ERHzxf6kWOKV9pKd99Gd22snd26vJdFqvf6PJD+e7Yuun8k8XlxzJiK++62IHyRn4zYODrdWa7XqXlEuN7d3y42Dwxub26sb1Y3qTqWyvLS8+NLNFysDtWNmgHOe3f7Vh9/cfPV77/7uCx/86ejrP8qqNVcc627HRWo3feo0TuZyRLz6KIKNwKWiPVdGXREeSBoRn4qI5/Lnfz4u5a/mYHo81gDA/4FWaz5a891lAGDcpXkOLElLRS5gLtK0VGrn8J6O2bRWbzSv36rv76y3c2ULMZXe2qxVF4tc4UJMJVl56e1s+265Eh8v34yIpyLix9OP5eXS2uB5BgDgYj1+z/j/7+n2+A8AjLmeH57pfn++Mry6AADDMciHZwGA8WL8B4DJc3f8nx1pPQCA4fH+HwAmj/EfACbN+53x/9KoawIADMV3XnstW1onxfdfr795sL9Vf/PGerWxVdreXyut1fd2Sxv1+katWlqrb593vVq9vrv0Quy/VW5WG81y4+BwZbu+v9Ncyb/Xe6U6NZRWAQD389Sz7/0liYijlx/Ll+iay8FYDeMtHXUFgJGR84fJ5Vu4YXJ5jw+T69fFf/yeN5dn348Iv/MAQVtvP8APARft2mfl/2FSyf/D5JL/h8kl/w+Tq9VK+s35n56eAgCMlU+Y4/cnARhDQ/37PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIyJuXxZ6CqnaakU8URELMRUcmuzVl2MiCcj4s/TU9NZeWmkNQYAHl76t6SY/+va/PNz9x69kvxnOl9HxA9/+vpP3lptNveWsv3/PN3ffKfYXxlF/QGA83TG6c443vHRndtrnWWY9fnwG+3JRbO4J8XSPnI5LmerP87kkw7P/itplwvZ7yuXLiD+0XFEfKZX+5M8N7JQzHx6b/ws9hNDjZ9+LH6aH2uvs3vx6TNXnu4b87y5XmFSvJf1P6/0ev7SuJqvZ3pOfjyT91APr9P/nZzp/zrP+0ze1/Tq/64OGuOF33+777HjiM9d7hU/OY2f9In//IDx3//8F5/rd6z184hr0Tt+d6xyc3u33Dg4vJHd+OpGdadSWV5aXnzp5ouVcp6jLncy1d3aI8TfX77+ZN/2//K3RUd5Nv7MOe3/yn1b3TrtgH/x3ze+/6V+8Y8jvvbl3q//0/eJn42JXy22+/f0bauzv+k7fXcWf719/48/6et//Zy4HR/89XB9wFMBgCFoHBxurdZq1b0L3ZiKC75g10byiOpsYwQbMcRY2a/JD3udZ4qU2Wrn+ek+5w8/e/eZbN/I7+qFbIyuTwKG4+5DP+qaAAAAAAAAAAAAAAAA/TzyfydKR91CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAxtn/AgAA//8LKMVX")
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)="2400000064006bcd9e3fe3dc6e48aa31086b8703130000001f0000000000000004001400", 0x24}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4044000)
socket(0x2, 0x80805, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
name_to_handle_at(r1, &(0x7f0000000280)='./mnt\x00', &(0x7f00000008c0)=ANY=[@ANYBLOB="03925fd5757e7c175a0200000009000000070000007f0000000200000034acc4665bb987589e9e3d2b7b0c725d67476ee9f0d9e4935bf7bb99f2365c936b8594069ebde3ef793eb8f6e788dd21cb0747a95727ae98266f1d4a363e623ed0b9d3b8a560b6d5b01c7adc122e55a8c851dde1cb598bb59a06abe3a55dee7b1b399c9e3539f1fd84b8e1292b7410a81626456f2209ec4b9bec9e"], &(0x7f00000002c0), 0x400)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, 0x0, &(0x7f0000000080))
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
r2 = open(&(0x7f0000000040)='./bus\x00', 0x10103e, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r3}, 0x18)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='memory.swap.current\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000500), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r7}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})

51.555955ms ago: executing program 4 (id=4579):
socket$netlink(0x10, 0x3, 0xf)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
bind$netlink(0xffffffffffffffff, &(0x7f0000000a40)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=@newlink={0x48, 0x10, 0xffffff1f, 0x0, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x20300}}}}}}]}, 0x48}}, 0x4040004)

0s ago: executing program 5 (id=4580):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1d459d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x183, 0x3}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)={0x1c, r1, 0x1, 0x4070bd28, 0x1, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0xf8)

kernel console output (not intermixed with test programs):

[   T29] audit: type=1326 audit(1768106073.233:40333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22875 comm="syz.4.3801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  312.992578][   T29] audit: type=1326 audit(1768106073.233:40334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22875 comm="syz.4.3801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  313.000469][T22882] __nla_validate_parse: 6 callbacks suppressed
[  313.000523][T22882] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3802'.
[  313.016386][   T29] audit: type=1326 audit(1768106073.233:40335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22875 comm="syz.4.3801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  313.055666][   T29] audit: type=1326 audit(1768106073.233:40336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22875 comm="syz.4.3801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  313.079450][   T29] audit: type=1326 audit(1768106073.233:40337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22875 comm="syz.4.3801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  313.103629][   T29] audit: type=1326 audit(1768106073.233:40338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22875 comm="syz.4.3801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  313.127737][   T29] audit: type=1326 audit(1768106073.233:40339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22875 comm="syz.4.3801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  313.151992][   T29] audit: type=1400 audit(1768106073.343:40340): avc:  denied  { read } for  pid=22877 comm="syz.3.3802" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  313.152002][T22863] bond1: left promiscuous mode
[  313.156344][T22881] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3803'.
[  313.172454][   T29] audit: type=1326 audit(1768106073.343:40341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22877 comm="syz.3.3802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc079f6f749 code=0x7ffc0000
[  313.182393][T22881] netlink: 52 bytes leftover after parsing attributes in process `syz.0.3803'.
[  313.339234][T22910] loop0: detected capacity change from 0 to 512
[  313.348005][T22902] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3809'.
[  313.362315][T22910] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  313.379362][T22910] EXT4-fs (loop0): 1 truncate cleaned up
[  313.391278][T22924] loop1: detected capacity change from 0 to 1024
[  313.414830][T22902] gretap1: entered promiscuous mode
[  313.436900][T22932] lo speed is unknown, defaulting to 1000
[  313.444594][T22924] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.449846][T22933] lo speed is unknown, defaulting to 1000
[  313.459554][T22924] EXT4-fs error (device loop1): ext4_lookup:1785: inode #15: comm syz.1.3813: inode has both inline data and extents flags
[  313.502554][T22924] EXT4-fs (loop1): Remounting filesystem read-only
[  313.523882][T22924] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3813'.
[  313.635192][T22992] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3816'.
[  313.663594][T22994] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3817'.
[  313.683438][T22996] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3818'.
[  313.692875][T22997] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3818'.
[  313.708574][T22996] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3818'.
[  313.739329][T23000] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23000 comm=syz.3.3818
[  313.754621][T22997] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=22997 comm=syz.3.3818
[  313.892587][T23026] loop3: detected capacity change from 0 to 1024
[  313.919061][T23026] ext4 filesystem being mounted at /156/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.933737][T23026] EXT4-fs error (device loop3): ext4_lookup:1785: inode #15: comm syz.3.3826: inode has both inline data and extents flags
[  313.947188][T23026] EXT4-fs (loop3): Remounting filesystem read-only
[  313.996194][T23040] lo speed is unknown, defaulting to 1000
[  314.078179][T23057] loop0: detected capacity change from 0 to 764
[  314.151629][T23053] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1793 sclass=netlink_route_socket pid=23053 comm=syz.1.3834
[  314.214453][T23053] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23053 comm=syz.1.3834
[  314.252424][T23053] loop1: detected capacity change from 0 to 1024
[  314.265570][T23053] EXT4-fs: Ignoring removed orlov option
[  314.271326][T23053] EXT4-fs: Ignoring removed nomblk_io_submit option
[  314.279461][T23053] ext4: Unknown parameter 'subj_role'
[  314.363828][T23120] netlink: 'syz.0.3845': attribute type 13 has an invalid length.
[  314.436895][T23120] bridge0: port 2(bridge_slave_1) entered disabled state
[  314.444214][T23120] bridge0: port 1(bridge_slave_0) entered disabled state
[  314.535348][T23120] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  314.546769][T23120] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  314.766026][  T863] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  314.799171][  T863] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  314.812668][  T863] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  314.853597][  T863] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  315.071047][T23142] ext4 filesystem being mounted at /130/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  315.284016][T23143] Alternate GPT is invalid, using primary GPT.
[  315.290654][T23143]  loop3: p2 p3 p7
[  315.734779][T23202] EXT4-fs: inline encryption not supported
[  315.774679][T23202] EXT4-fs mount: 23 callbacks suppressed
[  315.774706][T23202] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  315.838606][T23207] set_capacity_and_notify: 5 callbacks suppressed
[  315.838697][T23207] loop1: detected capacity change from 0 to 128
[  315.909820][T20025] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.985006][T23219] loop0: detected capacity change from 0 to 2048
[  316.009564][T18308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.032802][T23226] loop1: detected capacity change from 0 to 128
[  316.041683][T23219] Alternate GPT is invalid, using primary GPT.
[  316.048177][T23219]  loop0: p2 p3 p7
[  316.154521][T23226] bio_check_eod: 410 callbacks suppressed
[  316.154543][T23226] syz.1.3870: attempt to access beyond end of device
[  316.154543][T23226] loop1: rw=2049, sector=145, nr_sectors = 16 limit=128
[  316.174537][T23226] syz.1.3870: attempt to access beyond end of device
[  316.174537][T23226] loop1: rw=2049, sector=169, nr_sectors = 8 limit=128
[  316.188615][T23226] syz.1.3870: attempt to access beyond end of device
[  316.188615][T23226] loop1: rw=2049, sector=185, nr_sectors = 8 limit=128
[  316.210068][T23226] syz.1.3870: attempt to access beyond end of device
[  316.210068][T23226] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[  316.224376][T23226] syz.1.3870: attempt to access beyond end of device
[  316.224376][T23226] loop1: rw=2049, sector=217, nr_sectors = 8 limit=128
[  316.242523][T23226] syz.1.3870: attempt to access beyond end of device
[  316.242523][T23226] loop1: rw=2049, sector=233, nr_sectors = 8 limit=128
[  316.259847][T23226] syz.1.3870: attempt to access beyond end of device
[  316.259847][T23226] loop1: rw=2049, sector=249, nr_sectors = 8 limit=128
[  316.274009][T23226] syz.1.3870: attempt to access beyond end of device
[  316.274009][T23226] loop1: rw=2049, sector=265, nr_sectors = 8 limit=128
[  316.288946][T23226] syz.1.3870: attempt to access beyond end of device
[  316.288946][T23226] loop1: rw=2049, sector=281, nr_sectors = 8 limit=128
[  316.303503][T23226] syz.1.3870: attempt to access beyond end of device
[  316.303503][T23226] loop1: rw=2049, sector=297, nr_sectors = 8 limit=128
[  316.392101][T23249] vhci_hcd vhci_hcd.0: invalid port number 23
[  316.404671][T23249] loop2: detected capacity change from 0 to 764
[  316.414025][T23251] loop1: detected capacity change from 0 to 1024
[  316.429458][T23249] netlink: 'syz.2.3876': attribute type 13 has an invalid length.
[  316.470875][T23256] loop2: detected capacity change from 0 to 2048
[  316.498555][T23251] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  316.517641][T23251] ext4 filesystem being mounted at /233/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  316.533567][T23256] Alternate GPT is invalid, using primary GPT.
[  316.540185][T23256]  loop2: p2 p3 p7
[  316.558561][T23251] EXT4-fs error (device loop1): ext4_lookup:1785: inode #15: comm syz.1.3877: inode has both inline data and extents flags
[  316.617240][T23251] EXT4-fs (loop1): Remounting filesystem read-only
[  316.656462][T23276] FAULT_INJECTION: forcing a failure.
[  316.656462][T23276] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  316.669826][T23276] CPU: 0 UID: 0 PID: 23276 Comm: syz.4.3881 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  316.669866][T23276] Tainted: [W]=WARN
[  316.669872][T23276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  316.669884][T23276] Call Trace:
[  316.669891][T23276]  <TASK>
[  316.669927][T23276]  __dump_stack+0x1d/0x30
[  316.670008][T23276]  dump_stack_lvl+0x95/0xd0
[  316.670074][T23276]  dump_stack+0x15/0x1b
[  316.670093][T23276]  should_fail_ex+0x265/0x280
[  316.670116][T23276]  should_fail+0xb/0x20
[  316.670136][T23276]  should_fail_usercopy+0x1a/0x20
[  316.670192][T23276]  _copy_from_user+0x1c/0xb0
[  316.670295][T23276]  __sys_bpf+0x183/0x7c0
[  316.670386][T23276]  __x64_sys_bpf+0x41/0x50
[  316.670418][T23276]  x64_sys_call+0x28e1/0x3000
[  316.670515][T23276]  do_syscall_64+0xca/0x2b0
[  316.670616][T23276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.670717][T23276] RIP: 0033:0x7f718cabf749
[  316.670735][T23276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  316.670754][T23276] RSP: 002b:00007f718b527038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  316.670779][T23276] RAX: ffffffffffffffda RBX: 00007f718cd15fa0 RCX: 00007f718cabf749
[  316.670797][T23276] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  316.670813][T23276] RBP: 00007f718b527090 R08: 0000000000000000 R09: 0000000000000000
[  316.670830][T23276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  316.670845][T23276] R13: 00007f718cd16038 R14: 00007f718cd15fa0 R15: 00007ffd24fb5be8
[  316.670950][T23276]  </TASK>
[  316.671602][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  316.741591][T23272] loop3: detected capacity change from 0 to 128
[  316.870584][T23278] lo speed is unknown, defaulting to 1000
[  316.903119][T23298] loop4: detected capacity change from 0 to 2048
[  316.927571][T23304] loop3: detected capacity change from 0 to 128
[  316.948216][T23298] Alternate GPT is invalid, using primary GPT.
[  316.954694][T23298]  loop4: p2 p3 p7
[  317.041542][T23323] lo speed is unknown, defaulting to 1000
[  317.058269][T23334] netlink: 'syz.4.3893': attribute type 13 has an invalid length.
[  317.139670][T23336] loop1: detected capacity change from 0 to 1024
[  317.158605][T23336] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  317.171327][T23336] ext4 filesystem being mounted at /237/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  317.184410][T23338] Alternate GPT is invalid, using primary GPT.
[  317.190830][T23338]  loop0: p2 p3 p7
[  317.201047][T23336] EXT4-fs error (device loop1): ext4_lookup:1785: inode #15: comm syz.1.3896: inode has both inline data and extents flags
[  317.202676][T23334] bridge0: port 2(bridge_slave_1) entered disabled state
[  317.214873][T23336] EXT4-fs (loop1): Remounting filesystem read-only
[  317.221348][T23334] bridge0: port 1(bridge_slave_0) entered disabled state
[  317.269966][T23334] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  317.280493][T23334] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  317.289805][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  317.334944][ T3503] lo speed is unknown, defaulting to 1000
[  317.340841][ T3503] syz2: Port: 1 Link DOWN
[  317.352713][ T3630] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  317.371032][ T3630] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  317.404333][ T3630] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  317.404551][ T3630] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  317.594145][T23415] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  317.759697][T23442] netlink: 'syz.1.3915': attribute type 1 has an invalid length.
[  317.781397][T23442] bond1: entered promiscuous mode
[  317.786614][T23442] bond1: entered allmulticast mode
[  317.792570][T23442] 8021q: adding VLAN 0 to HW filter on device bond1
[  317.813577][T23442] erspan1: entered allmulticast mode
[  317.825109][T23442] bond1: (slave erspan1): making interface the new active one
[  317.832818][T23442] erspan1: entered promiscuous mode
[  317.839781][T23442] bond1: (slave erspan1): Enslaving as an active interface with an up link
[  317.875714][T23442] bond1 (unregistering): (slave erspan1): Releasing active interface
[  317.884563][T23442] erspan1: left promiscuous mode
[  317.900740][T23442] bond1 (unregistering): Released all slaves
[  317.946228][T23479] netlink: 'syz.1.3915': attribute type 3 has an invalid length.
[  317.954196][T23479] netlink: 'syz.1.3915': attribute type 3 has an invalid length.
[  318.088545][T23523] Alternate GPT is invalid, using primary GPT.
[  318.095083][T23523]  loop4: p2 p3 p7
[  318.172269][   T29] kauditd_printk_skb: 1782 callbacks suppressed
[  318.172289][   T29] audit: type=1326 audit(1768106078.433:42124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23541 comm="syz.4.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  318.207057][T23534] Alternate GPT is invalid, using primary GPT.
[  318.213528][T23534]  loop1: p2 p3 p7
[  318.230410][   T29] audit: type=1326 audit(1768106078.483:42125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23541 comm="syz.4.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  318.254328][   T29] audit: type=1326 audit(1768106078.483:42126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23541 comm="syz.4.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  318.278086][   T29] audit: type=1326 audit(1768106078.483:42127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23541 comm="syz.4.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  318.301814][   T29] audit: type=1326 audit(1768106078.483:42128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23541 comm="syz.4.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  318.325773][   T29] audit: type=1326 audit(1768106078.483:42129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23541 comm="syz.4.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  318.349504][   T29] audit: type=1326 audit(1768106078.483:42130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23541 comm="syz.4.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  318.373251][   T29] audit: type=1326 audit(1768106078.483:42131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23541 comm="syz.4.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  318.397391][   T29] audit: type=1326 audit(1768106078.483:42132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23541 comm="syz.4.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  318.421013][   T29] audit: type=1326 audit(1768106078.483:42133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23541 comm="syz.4.3922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  318.910706][T23572] Alternate GPT is invalid, using primary GPT.
[  318.917318][T23572]  loop3: p2 p3 p7
[  318.953741][T23579] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.108477][T23579] ext4 filesystem being mounted at /253/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  319.272791][T23611] __nla_validate_parse: 13 callbacks suppressed
[  319.272807][T23611] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3941'.
[  319.293444][T23611] batman_adv: batadv0: Removing interface: batadv_slave_1
[  319.421388][T23626] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  319.437063][T23633] FAULT_INJECTION: forcing a failure.
[  319.437063][T23633] name failslab, interval 1, probability 0, space 0, times 0
[  319.449829][T23633] CPU: 0 UID: 0 PID: 23633 Comm: syz.3.3947 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  319.449875][T23633] Tainted: [W]=WARN
[  319.449883][T23633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  319.449899][T23633] Call Trace:
[  319.449908][T23633]  <TASK>
[  319.449919][T23633]  __dump_stack+0x1d/0x30
[  319.449967][T23633]  dump_stack_lvl+0x95/0xd0
[  319.449993][T23633]  dump_stack+0x15/0x1b
[  319.450019][T23633]  should_fail_ex+0x265/0x280
[  319.450114][T23633]  should_failslab+0x8c/0xb0
[  319.450143][T23633]  __kmalloc_cache_noprof+0x65/0x4c0
[  319.450175][T23633]  ? vcs_poll_data_get+0x5d/0x160
[  319.450205][T23633]  ? __pfx_vcs_poll+0x10/0x10
[  319.450228][T23633]  vcs_poll_data_get+0x5d/0x160
[  319.450335][T23633]  ? __pfx_vcs_poll+0x10/0x10
[  319.450358][T23633]  vcs_poll+0x20/0xe0
[  319.450383][T23633]  do_select+0x8f1/0xf40
[  319.450421][T23633]  ? __pfx___pollwait+0x10/0x10
[  319.450475][T23633]  core_sys_select+0x3dc/0x6e0
[  319.450562][T23633]  ? set_user_sigmask+0x84/0x190
[  319.450677][T23633]  __se_sys_pselect6+0x213/0x280
[  319.450708][T23633]  __x64_sys_pselect6+0x78/0x90
[  319.450793][T23633]  x64_sys_call+0x2e98/0x3000
[  319.450825][T23633]  do_syscall_64+0xca/0x2b0
[  319.450879][T23633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.450962][T23633] RIP: 0033:0x7fc079f6f749
[  319.450982][T23633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.451005][T23633] RSP: 002b:00007fc0789cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  319.451030][T23633] RAX: ffffffffffffffda RBX: 00007fc07a1c5fa0 RCX: 00007fc079f6f749
[  319.451046][T23633] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000002000
[  319.451061][T23633] RBP: 00007fc0789cf090 R08: 0000000000000000 R09: 0000000000000000
[  319.451077][T23633] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[  319.451097][T23633] R13: 00007fc07a1c6038 R14: 00007fc07a1c5fa0 R15: 00007ffd219c6528
[  319.451120][T23633]  </TASK>
[  319.660351][T23637] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3948'.
[  319.705918][T23626] EXT4-fs error (device loop4): ext4_quota_enable:7173: comm syz.4.3945: Bad quota inum: 2, type: 1
[  319.717331][T23626] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=2). Please run e2fsck to fix.
[  319.787244][T15165] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  319.812173][T23654] FAULT_INJECTION: forcing a failure.
[  319.812173][T23654] name failslab, interval 1, probability 0, space 0, times 0
[  319.825082][T23654] CPU: 1 UID: 0 PID: 23654 Comm: syz.2.3951 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  319.825123][T23654] Tainted: [W]=WARN
[  319.825131][T23654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  319.825148][T23654] Call Trace:
[  319.825156][T23654]  <TASK>
[  319.825166][T23654]  __dump_stack+0x1d/0x30
[  319.825198][T23654]  dump_stack_lvl+0x95/0xd0
[  319.825232][T23654]  dump_stack+0x15/0x1b
[  319.825257][T23654]  should_fail_ex+0x265/0x280
[  319.825287][T23654]  should_failslab+0x8c/0xb0
[  319.825316][T23654]  kmem_cache_alloc_noprof+0x69/0x4b0
[  319.825345][T23654]  ? vm_area_alloc+0x2c/0xb0
[  319.825376][T23654]  vm_area_alloc+0x2c/0xb0
[  319.825406][T23654]  mmap_region+0xadf/0x1410
[  319.825482][T23654]  do_mmap+0x9b3/0xbe0
[  319.825521][T23654]  vm_mmap_pgoff+0x17a/0x2e0
[  319.825555][T23654]  ksys_mmap_pgoff+0xc2/0x310
[  319.825597][T23654]  ? __x64_sys_mmap+0x49/0x70
[  319.825635][T23654]  x64_sys_call+0x16bb/0x3000
[  319.825665][T23654]  do_syscall_64+0xca/0x2b0
[  319.825711][T23654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.825739][T23654] RIP: 0033:0x7f027f41f783
[  319.825758][T23654] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  319.825779][T23654] RSP: 002b:00007f027de7ee18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  319.825803][T23654] RAX: ffffffffffffffda RBX: 000000000000072b RCX: 00007f027f41f783
[  319.825818][T23654] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  319.825835][T23654] RBP: 00002000000014c2 R08: 00000000ffffffff R09: 0000000000000000
[  319.825851][T23654] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
[  319.825867][T23654] R13: 00007f027de7eef0 R14: 00007f027de7eeb0 R15: 0000200000000300
[  319.825892][T23654]  </TASK>
[  320.635346][T23690] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3959'.
[  320.937617][T23699] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3961'.
[  320.948881][T23699] hsr_slave_0: left promiscuous mode
[  320.955084][T23699] hsr_slave_1: left promiscuous mode
[  320.982080][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.160399][T23716] set_capacity_and_notify: 10 callbacks suppressed
[  321.160428][T23716] loop1: detected capacity change from 0 to 2048
[  321.207279][T23716] Alternate GPT is invalid, using primary GPT.
[  321.213734][T23716]  loop1: p2 p3 p7
[  321.261126][T23747] loop3: detected capacity change from 0 to 512
[  321.276254][T23759] netlink: 72 bytes leftover after parsing attributes in process `syz.1.3973'.
[  321.286671][T23760] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3974'.
[  321.338696][T23772] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3976'.
[  321.408782][T23785] loop2: detected capacity change from 0 to 128
[  321.504805][T23803] loop2: detected capacity change from 0 to 1024
[  321.524831][T23803] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  321.547346][T23803] ext4 filesystem being mounted at /151/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.562983][T23809] batman_adv: batadv0: Adding interface: dummy0
[  321.569401][T23809] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  321.595159][T23809] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  321.626947][T23803] EXT4-fs error (device loop2): ext4_lookup:1785: inode #15: comm syz.2.3985: inode has both inline data and extents flags
[  321.645502][T23811] loop1: detected capacity change from 0 to 512
[  321.652488][T23803] EXT4-fs (loop2): Remounting filesystem read-only
[  321.660127][T23811] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  321.671841][T23811] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it
[  321.682253][T23811] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.3987: Corrupt directory, running e2fsck is recommended
[  321.697016][T23803] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3985'.
[  321.697334][T23811] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  321.714974][T23811] EXT4-fs error (device loop1): ext4_iget_extra_inode:5073: inode #15: comm syz.1.3987: corrupted in-inode xattr: e_name out of bounds
[  321.729829][T23811] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.3987: couldn't read orphan inode 15 (err -117)
[  321.744630][T23811] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  321.773054][T18308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  321.784041][T23811] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  321.795688][T23811] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it
[  321.806021][T23811] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.3987: Corrupt directory, running e2fsck is recommended
[  321.831423][T23811] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  321.843150][T23811] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it
[  321.853467][T23811] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.3987: Corrupt directory, running e2fsck is recommended
[  321.854537][T23821] loop2: detected capacity change from 0 to 512
[  321.880796][T23811] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  321.892480][T23811] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it
[  321.902748][T23811] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.3987: Corrupt directory, running e2fsck is recommended
[  321.903136][T23821] EXT4-fs: Ignoring removed i_version option
[  321.921769][T23821] EXT4-fs: Ignoring removed bh option
[  321.927442][T23822] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3990'.
[  321.950300][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.964728][T23821] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.028201][T23821] ext4 filesystem being mounted at /152/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  322.195674][T23842] loop1: detected capacity change from 0 to 2048
[  322.272718][T23848] FAULT_INJECTION: forcing a failure.
[  322.272718][T23848] name failslab, interval 1, probability 0, space 0, times 0
[  322.285996][T23848] CPU: 0 UID: 0 PID: 23848 Comm: +}[@ Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  322.286106][T23848] Tainted: [W]=WARN
[  322.286116][T23848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  322.286133][T23848] Call Trace:
[  322.286143][T23848]  <TASK>
[  322.286154][T23848]  __dump_stack+0x1d/0x30
[  322.286222][T23848]  dump_stack_lvl+0x95/0xd0
[  322.286244][T23848]  dump_stack+0x15/0x1b
[  322.286270][T23848]  should_fail_ex+0x265/0x280
[  322.286370][T23848]  should_failslab+0x8c/0xb0
[  322.286398][T23848]  kmem_cache_alloc_noprof+0x69/0x4b0
[  322.286425][T23848]  ? mb_cache_entry_create+0xf0/0x540
[  322.286489][T23848]  mb_cache_entry_create+0xf0/0x540
[  322.286533][T23848]  ext4_xattr_get+0x298/0x470
[  322.286612][T23848]  ext4_xattr_security_get+0x32/0x40
[  322.286637][T23848]  ? __pfx_ext4_xattr_security_get+0x10/0x10
[  322.286793][T23848]  __vfs_getxattr+0x2ad/0x2c0
[  322.286825][T23848]  cap_inode_need_killpriv+0x2e/0x50
[  322.286884][T23848]  security_inode_need_killpriv+0x36/0x70
[  322.286916][T23848]  file_remove_privs_flags+0x11f/0x320
[  322.286956][T23848]  ? generic_write_checks_count+0x276/0x2c0
[  322.287064][T23848]  file_modified+0x18/0x50
[  322.287099][T23848]  ext4_buffered_write_iter+0x1d0/0x3c0
[  322.287169][T23848]  ? ext4_file_write_iter+0xfe/0xf60
[  322.287210][T23848]  ext4_file_write_iter+0x387/0xf60
[  322.287294][T23848]  ? path_openat+0x1e82/0x23b0
[  322.287329][T23848]  ? _parse_integer_limit+0x170/0x190
[  322.287404][T23848]  do_iter_readv_writev+0x4a1/0x540
[  322.287435][T23848]  vfs_writev+0x2df/0x8b0
[  322.287469][T23848]  __se_sys_pwritev2+0xfc/0x1c0
[  322.287492][T23848]  __x64_sys_pwritev2+0x67/0x80
[  322.287521][T23848]  x64_sys_call+0x2c9e/0x3000
[  322.287626][T23848]  do_syscall_64+0xca/0x2b0
[  322.287669][T23848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.287704][T23848] RIP: 0033:0x7f027f41f749
[  322.287720][T23848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.287744][T23848] RSP: 002b:00007f027de3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  322.287773][T23848] RAX: ffffffffffffffda RBX: 00007f027f676180 RCX: 00007f027f41f749
[  322.287786][T23848] RDX: 0000000000000001 RSI: 00002000000001c0 RDI: 000000000000000a
[  322.287799][T23848] RBP: 00007f027de3d090 R08: 0000000000000000 R09: 0000000000000000
[  322.287811][T23848] R10: 0000000000000e7b R11: 0000000000000246 R12: 0000000000000001
[  322.287823][T23848] R13: 00007f027f676218 R14: 00007f027f676180 R15: 00007ffffb8b3a28
[  322.287844][T23848]  </TASK>
[  322.594250][T23842] Alternate GPT is invalid, using primary GPT.
[  322.600819][T23842]  loop1: p2 p3 p7
[  322.676852][T23855] FAULT_INJECTION: forcing a failure.
[  322.676852][T23855] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  322.690629][T23855] CPU: 0 UID: 0 PID: 23855 Comm: syz.0.3999 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  322.690665][T23855] Tainted: [W]=WARN
[  322.690677][T23855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  322.690690][T23855] Call Trace:
[  322.690698][T23855]  <TASK>
[  322.690708][T23855]  __dump_stack+0x1d/0x30
[  322.690741][T23855]  dump_stack_lvl+0x95/0xd0
[  322.690818][T23855]  dump_stack+0x15/0x1b
[  322.690916][T23855]  should_fail_ex+0x265/0x280
[  322.690939][T23855]  should_fail+0xb/0x20
[  322.690963][T23855]  should_fail_usercopy+0x1a/0x20
[  322.690999][T23855]  _copy_to_user+0x20/0xa0
[  322.691033][T23855]  simple_read_from_buffer+0xb5/0x130
[  322.691056][T23855]  proc_fail_nth_read+0x10e/0x150
[  322.691119][T23855]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  322.691146][T23855]  vfs_read+0x1a8/0x770
[  322.691162][T23855]  ? __rcu_read_unlock+0x4f/0x70
[  322.691237][T23855]  ? __fget_files+0x184/0x1c0
[  322.691261][T23855]  ? mutex_lock+0x58/0x90
[  322.691348][T23855]  ksys_read+0xda/0x1a0
[  322.691367][T23855]  __x64_sys_read+0x40/0x50
[  322.691457][T23855]  x64_sys_call+0x2889/0x3000
[  322.691489][T23855]  do_syscall_64+0xca/0x2b0
[  322.691570][T23855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.691600][T23855] RIP: 0033:0x7efc557be15c
[  322.691617][T23855] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  322.691638][T23855] RSP: 002b:00007efc5421f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  322.691665][T23855] RAX: ffffffffffffffda RBX: 00007efc55a15fa0 RCX: 00007efc557be15c
[  322.691733][T23855] RDX: 000000000000000f RSI: 00007efc5421f0a0 RDI: 0000000000000003
[  322.691772][T23855] RBP: 00007efc5421f090 R08: 0000000000000000 R09: 0000000000000000
[  322.691784][T23855] R10: 000000000000008a R11: 0000000000000246 R12: 0000000000000001
[  322.691814][T23855] R13: 00007efc55a16038 R14: 00007efc55a15fa0 R15: 00007ffded2d55f8
[  322.691837][T23855]  </TASK>
[  322.948194][T23856] loop3: detected capacity change from 0 to 512
[  322.954979][T23856] EXT4-fs: Ignoring removed i_version option
[  322.961173][T23856] EXT4-fs: Ignoring removed bh option
[  322.966082][T18308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.980358][T23873] FAULT_INJECTION: forcing a failure.
[  322.980358][T23873] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  322.993688][T23873] CPU: 1 UID: 0 PID: 23873 Comm: syz.1.4001 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  322.993727][T23873] Tainted: [W]=WARN
[  322.993735][T23873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  322.993748][T23873] Call Trace:
[  322.993755][T23873]  <TASK>
[  322.993764][T23873]  __dump_stack+0x1d/0x30
[  322.993796][T23873]  dump_stack_lvl+0x95/0xd0
[  322.993887][T23873]  dump_stack+0x15/0x1b
[  322.993908][T23873]  should_fail_ex+0x265/0x280
[  322.993935][T23873]  should_fail+0xb/0x20
[  322.993953][T23873]  should_fail_usercopy+0x1a/0x20
[  322.994044][T23873]  _copy_from_iter+0xcf/0xe70
[  322.994070][T23873]  ? __alloc_skb+0x396/0x4b0
[  322.994094][T23873]  ? __alloc_skb+0x228/0x4b0
[  322.994120][T23873]  netlink_sendmsg+0x471/0x6b0
[  322.994164][T23873]  ? __pfx_netlink_sendmsg+0x10/0x10
[  322.994215][T23873]  __sock_sendmsg+0x145/0x180
[  322.994240][T23873]  ____sys_sendmsg+0x31e/0x4a0
[  322.994345][T23873]  ___sys_sendmsg+0x17b/0x1d0
[  322.994401][T23873]  __x64_sys_sendmsg+0xd4/0x160
[  322.994478][T23873]  x64_sys_call+0x17ba/0x3000
[  322.994504][T23873]  do_syscall_64+0xca/0x2b0
[  322.994551][T23873]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.994623][T23873] RIP: 0033:0x7f9b5d7ff749
[  322.994640][T23873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.994660][T23873] RSP: 002b:00007f9b5c267038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  322.994685][T23873] RAX: ffffffffffffffda RBX: 00007f9b5da55fa0 RCX: 00007f9b5d7ff749
[  322.994741][T23873] RDX: 0000000000000010 RSI: 0000200000000100 RDI: 0000000000000003
[  322.994818][T23873] RBP: 00007f9b5c267090 R08: 0000000000000000 R09: 0000000000000000
[  322.994830][T23873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  322.994842][T23873] R13: 00007f9b5da56038 R14: 00007f9b5da55fa0 R15: 00007fff1dcfd588
[  322.994867][T23873]  </TASK>
[  323.211095][T23856] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  323.213639][T23883] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4002'.
[  323.224863][T23856] ext4 filesystem being mounted at /193/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  323.263408][T23875] lo speed is unknown, defaulting to 1000
[  323.366152][   T29] kauditd_printk_skb: 872 callbacks suppressed
[  323.366171][   T29] audit: type=1326 audit(1768106083.613:43006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23877 comm="syz.2.4002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027f41f749 code=0x7ffc0000
[  323.396092][   T29] audit: type=1326 audit(1768106083.613:43007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23877 comm="syz.2.4002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027f41f749 code=0x7ffc0000
[  323.420009][   T29] audit: type=1326 audit(1768106083.613:43008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23877 comm="syz.2.4002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027f41f749 code=0x7ffc0000
[  323.443801][   T29] audit: type=1326 audit(1768106083.613:43009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23877 comm="syz.2.4002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f027f421667 code=0x7ffc0000
[  323.467404][   T29] audit: type=1326 audit(1768106083.613:43010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23877 comm="syz.2.4002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f027f4215dc code=0x7ffc0000
[  323.491059][   T29] audit: type=1326 audit(1768106083.613:43011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23877 comm="syz.2.4002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f027f421514 code=0x7ffc0000
[  323.514879][   T29] audit: type=1326 audit(1768106083.613:43012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23877 comm="syz.2.4002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f027f421514 code=0x7ffc0000
[  323.538411][   T29] audit: type=1326 audit(1768106083.613:43013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23877 comm="syz.2.4002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f027f41e3aa code=0x7ffc0000
[  323.541819][T23908] loop0: detected capacity change from 0 to 1024
[  323.562757][   T29] audit: type=1326 audit(1768106083.613:43014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23877 comm="syz.2.4002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027f41f749 code=0x7ffc0000
[  323.562797][   T29] audit: type=1326 audit(1768106083.613:43015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23877 comm="syz.2.4002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027f41f749 code=0x7ffc0000
[  323.628373][T23908] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  323.643733][T23908] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  323.656207][T23908] EXT4-fs (loop0): orphan cleanup on readonly fs
[  323.663022][T23908] EXT4-fs error (device loop0): ext4_free_blocks:6728: comm syz.0.4000: Freeing blocks not in datazone - block = 0, count = 4096
[  324.011946][T23908] EXT4-fs (loop0): 1 orphan inode deleted
[  324.053235][T23908] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  324.107680][T23939] loop4: detected capacity change from 0 to 2048
[  324.192942][T23939] Alternate GPT is invalid, using primary GPT.
[  324.199811][T23939]  loop4: p2 p3 p7
[  324.206107][T16847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.261805][T23949] lo speed is unknown, defaulting to 1000
[  324.417863][T23975] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  324.449702][T23975] ext4 filesystem being mounted at /265/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  324.467148][T23975] EXT4-fs error (device loop1): ext4_lookup:1785: inode #15: comm syz.1.4014: inode has both inline data and extents flags
[  324.492157][T23975] EXT4-fs (loop1): Remounting filesystem read-only
[  324.509113][T23975] __nla_validate_parse: 2 callbacks suppressed
[  324.509207][T23975] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4014'.
[  324.587221][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  324.639437][T23985] netlink: 52 bytes leftover after parsing attributes in process `syz.1.4015'.
[  324.742793][T23992] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4018'.
[  324.785418][T23997] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4019'.
[  324.801780][T23997] netlink: 52 bytes leftover after parsing attributes in process `syz.3.4019'.
[  324.845359][T24005] netlink: 'syz.2.4022': attribute type 11 has an invalid length.
[  324.936322][T24009] EXT4-fs (loop1): failed to initialize system zone (-117)
[  324.945480][T24009] EXT4-fs (loop1): mount failed
[  324.990704][T24025] netlink: 52 bytes leftover after parsing attributes in process `syz.3.4027'.
[  325.227448][T24052] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  325.293658][T24052] ext4 filesystem being mounted at /274/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  325.325002][T24052] EXT4-fs error (device loop1): ext4_lookup:1785: inode #15: comm syz.1.4035: inode has both inline data and extents flags
[  325.340262][T24052] EXT4-fs (loop1): Remounting filesystem read-only
[  325.418387][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  325.441407][T24069] netlink: 52 bytes leftover after parsing attributes in process `syz.3.4041'.
[  325.453237][T24066] lo speed is unknown, defaulting to 1000
[  325.489859][T24064] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.533223][T24079] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  325.535498][T24064] ext4 filesystem being mounted at /160/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  325.575434][T24079] ext4 filesystem being mounted at /275/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  325.596670][T24084] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  325.642260][T24084] EXT4-fs (loop3): orphan cleanup on readonly fs
[  325.654570][T24079] EXT4-fs error (device loop1): ext4_lookup:1785: inode #15: comm syz.1.4042: inode has both inline data and extents flags
[  325.695835][T24084] EXT4-fs warning (device loop3): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  325.711010][T24084] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  325.719568][T24079] EXT4-fs (loop1): Remounting filesystem read-only
[  325.730677][T24084] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #16: comm syz.3.4043: invalid fast symlink length 9000
[  325.769777][T24084] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4043: couldn't read orphan inode 16 (err -117)
[  325.785795][T24079] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4042'.
[  325.816474][T24084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  325.856139][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  325.884329][T16847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.030098][T24066] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4040'.
[  326.174175][T24116] Alternate GPT is invalid, using primary GPT.
[  326.180612][T24116]  loop1: p2 p3 p7
[  326.320198][T24139] netlink: 'syz.1.4050': attribute type 3 has an invalid length.
[  326.328192][T24139] netlink: 'syz.1.4050': attribute type 3 has an invalid length.
[  326.418985][T18308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.445954][T24139] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4050'.
[  326.496205][T24153] set_capacity_and_notify: 7 callbacks suppressed
[  326.496222][T24153] loop3: detected capacity change from 0 to 128
[  326.537207][T24158] lo speed is unknown, defaulting to 1000
[  326.652532][T24174] loop3: detected capacity change from 0 to 1024
[  326.666212][T24177] loop4: detected capacity change from 0 to 2048
[  326.689493][T24174] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  326.715915][T24174] ext4 filesystem being mounted at /208/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  326.742574][T24174] EXT4-fs error (device loop3): ext4_lookup:1785: inode #15: comm syz.3.4059: inode has both inline data and extents flags
[  326.745890][T24177] Alternate GPT is invalid, using primary GPT.
[  326.761848][T24177]  loop4: p2 p3 p7
[  326.776005][T24174] EXT4-fs (loop3): Remounting filesystem read-only
[  326.782960][T24204] netlink: 'syz.2.4062': attribute type 11 has an invalid length.
[  326.836275][T16847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  326.886176][T24216] loop3: detected capacity change from 0 to 1024
[  326.896756][T24216] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  326.956063][T24216] ext4 filesystem being mounted at /209/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  326.979006][T24216] EXT4-fs error (device loop3): ext4_lookup:1785: inode #15: comm syz.3.4064: inode has both inline data and extents flags
[  326.997517][T24216] EXT4-fs (loop3): Remounting filesystem read-only
[  327.008713][T20025] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.133785][T24228] netlink: 'syz.1.4068': attribute type 1 has an invalid length.
[  327.165428][T16847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  327.283339][T24240] loop0: detected capacity change from 0 to 1024
[  327.342551][T24228] bond1: entered promiscuous mode
[  327.347826][T24228] bond1: entered allmulticast mode
[  327.353570][T24228] 8021q: adding VLAN 0 to HW filter on device bond1
[  327.361841][T24240] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  327.395539][T24240] ext4 filesystem being mounted at /126/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  327.413536][T24241] bond1 (unregistering): Released all slaves
[  327.425701][T24240] EXT4-fs error (device loop0): ext4_lookup:1785: inode #15: comm syz.0.4070: inode has both inline data and extents flags
[  327.475255][T24240] EXT4-fs (loop0): Remounting filesystem read-only
[  327.530013][T20025] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  327.542574][T24325] FAULT_INJECTION: forcing a failure.
[  327.542574][T24325] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  327.556027][T24325] CPU: 0 UID: 0 PID: 24325 Comm: syz.1.4073 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  327.556103][T24325] Tainted: [W]=WARN
[  327.556109][T24325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  327.556124][T24325] Call Trace:
[  327.556147][T24325]  <TASK>
[  327.556158][T24325]  __dump_stack+0x1d/0x30
[  327.556202][T24325]  dump_stack_lvl+0x95/0xd0
[  327.556231][T24325]  dump_stack+0x15/0x1b
[  327.556267][T24325]  should_fail_ex+0x265/0x280
[  327.556338][T24325]  should_fail_alloc_page+0xf2/0x100
[  327.556369][T24325]  __alloc_frozen_pages_noprof+0x109/0x360
[  327.556407][T24325]  alloc_pages_mpol+0xb3/0x260
[  327.556442][T24325]  vma_alloc_folio_noprof+0x1aa/0x300
[  327.556478][T24325]  do_wp_page+0xf60/0x2510
[  327.556518][T24325]  ? css_rstat_updated+0xbb/0x280
[  327.556599][T24325]  ? __rcu_read_lock+0x37/0x50
[  327.556630][T24325]  handle_mm_fault+0x7b0/0x2c60
[  327.556735][T24325]  ? __rcu_read_unlock+0x4f/0x70
[  327.556758][T24325]  ? mt_find+0x21b/0x330
[  327.556784][T24325]  do_user_addr_fault+0x3fe/0x1080
[  327.556821][T24325]  exc_page_fault+0x62/0xa0
[  327.556858][T24325]  asm_exc_page_fault+0x26/0x30
[  327.556930][T24325] RIP: 0010:__put_user_4+0xd/0x20
[  327.556982][T24325] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 07 9f 01 00 90 90 90 90 90 90 90 90 90 90
[  327.557003][T24325] RSP: 0018:ffffc90003023d08 EFLAGS: 00050206
[  327.557048][T24325] RAX: 00000000fffffff2 RBX: 0000000000000000 RCX: 0000200000002000
[  327.557063][T24325] RDX: ffff88815c093180 RSI: 00000000fffffff2 RDI: 0000000000000000
[  327.557112][T24325] RBP: ffffc90003023eb0 R08: 0001888103097c07 R09: 0000000000000000
[  327.557130][T24325] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  327.557146][T24325] R13: 0000000000000800 R14: 0000000000000000 R15: 00000000fffffff2
[  327.557170][T24325]  __se_sys_move_pages+0xa2f/0x1360
[  327.557273][T24325]  ? get_pid_task+0x96/0xd0
[  327.557313][T24325]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  327.557351][T24325]  ? __fget_files+0x184/0x1c0
[  327.557383][T24325]  ? fput+0x8f/0xc0
[  327.557436][T24325]  ? ksys_write+0x192/0x1a0
[  327.557461][T24325]  __x64_sys_move_pages+0x78/0x90
[  327.557493][T24325]  x64_sys_call+0x27c3/0x3000
[  327.557609][T24325]  do_syscall_64+0xca/0x2b0
[  327.557654][T24325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.557711][T24325] RIP: 0033:0x7f9b5d7ff749
[  327.557732][T24325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.557755][T24325] RSP: 002b:00007f9b5c267038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[  327.557779][T24325] RAX: ffffffffffffffda RBX: 00007f9b5da55fa0 RCX: 00007f9b5d7ff749
[  327.557856][T24325] RDX: 0000200000000040 RSI: 00000000000020a0 RDI: 0000000000000000
[  327.557916][T24325] RBP: 00007f9b5c267090 R08: 0000200000000000 R09: 0000000000000000
[  327.557933][T24325] R10: 0000200000001180 R11: 0000000000000246 R12: 0000000000000001
[  327.557950][T24325] R13: 00007f9b5da56038 R14: 00007f9b5da55fa0 R15: 00007fff1dcfd588
[  327.557976][T24325]  </TASK>
[  327.885071][T24330] netlink: 'syz.0.4074': attribute type 11 has an invalid length.
[  327.986340][T24335] FAULT_INJECTION: forcing a failure.
[  327.986340][T24335] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  327.999484][T24335] CPU: 1 UID: 0 PID: 24335 Comm: syz.0.4076 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  327.999522][T24335] Tainted: [W]=WARN
[  327.999529][T24335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  327.999542][T24335] Call Trace:
[  327.999549][T24335]  <TASK>
[  327.999557][T24335]  __dump_stack+0x1d/0x30
[  327.999583][T24335]  dump_stack_lvl+0x95/0xd0
[  327.999605][T24335]  dump_stack+0x15/0x1b
[  327.999706][T24335]  should_fail_ex+0x265/0x280
[  327.999760][T24335]  should_fail+0xb/0x20
[  327.999883][T24335]  should_fail_usercopy+0x1a/0x20
[  327.999908][T24335]  strncpy_from_user+0x27/0x260
[  327.999951][T24335]  strncpy_from_user_nofault+0x68/0xf0
[  328.000035][T24335]  bpf_probe_read_user_str+0x2a/0x70
[  328.000063][T24335]  bpf_prog_7f11bb5dfa26a882+0x43/0x49
[  328.000083][T24335]  bpf_trace_run2+0x107/0x1d0
[  328.000119][T24335]  ? proc_do_submiturb+0xdc3/0x1d20
[  328.000284][T24335]  ? proc_do_submiturb+0xdc3/0x1d20
[  328.000316][T24335]  kfree+0x353/0x3c0
[  328.000415][T24335]  proc_do_submiturb+0xdc3/0x1d20
[  328.000450][T24335]  ? proc_do_submiturb+0x131/0x1d20
[  328.000483][T24335]  ? should_fail_ex+0xdb/0x280
[  328.000567][T24335]  proc_submiturb+0x7b/0xa0
[  328.000639][T24335]  usbdev_ioctl+0xcb6/0x1700
[  328.000666][T24335]  ? __pfx_usbdev_ioctl+0x10/0x10
[  328.000691][T24335]  __se_sys_ioctl+0xce/0x140
[  328.000724][T24335]  __x64_sys_ioctl+0x43/0x50
[  328.000779][T24335]  x64_sys_call+0x14b0/0x3000
[  328.000805][T24335]  do_syscall_64+0xca/0x2b0
[  328.000881][T24335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.000904][T24335] RIP: 0033:0x7efc557bf749
[  328.001054][T24335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  328.001075][T24335] RSP: 002b:00007efc5421f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  328.001095][T24335] RAX: ffffffffffffffda RBX: 00007efc55a15fa0 RCX: 00007efc557bf749
[  328.001109][T24335] RDX: 0000200000000800 RSI: 000000008038550a RDI: 0000000000000005
[  328.001122][T24335] RBP: 00007efc5421f090 R08: 0000000000000000 R09: 0000000000000000
[  328.001135][T24335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  328.001196][T24335] R13: 00007efc55a16038 R14: 00007efc55a15fa0 R15: 00007ffded2d55f8
[  328.001216][T24335]  </TASK>
[  328.334675][T24352] loop3: detected capacity change from 0 to 2048
[  328.341968][T24347] loop0: detected capacity change from 0 to 2048
[  328.360568][T24343] loop4: detected capacity change from 0 to 512
[  328.387807][T24352] Alternate GPT is invalid, using primary GPT.
[  328.394239][T24352]  loop3: p2 p3 p7
[  328.399236][T24347] Alternate GPT is invalid, using primary GPT.
[  328.405735][T24347]  loop0: p2 p3 p7
[  328.414270][   T29] kauditd_printk_skb: 1768 callbacks suppressed
[  328.414288][   T29] audit: type=1326 audit(1768106088.673:44784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24351 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc079f6f749 code=0x7ffc0000
[  328.480108][T24343] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  328.492892][   T29] audit: type=1326 audit(1768106088.673:44785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24351 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc079f6f749 code=0x7ffc0000
[  328.516553][   T29] audit: type=1326 audit(1768106088.673:44786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24351 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc079f6f749 code=0x7ffc0000
[  328.528463][T24343] ext4 filesystem being mounted at /284/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  328.540280][   T29] audit: type=1326 audit(1768106088.673:44787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24351 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fc079f6f749 code=0x7ffc0000
[  328.540317][   T29] audit: type=1326 audit(1768106088.673:44788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24351 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc079f6f749 code=0x7ffc0000
[  328.598024][   T29] audit: type=1326 audit(1768106088.673:44789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24351 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc079f6f749 code=0x7ffc0000
[  328.621637][   T29] audit: type=1326 audit(1768106088.673:44790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24351 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc079f6f749 code=0x7ffc0000
[  328.645450][   T29] audit: type=1326 audit(1768106088.673:44791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24351 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fc079f6f749 code=0x7ffc0000
[  328.669193][   T29] audit: type=1326 audit(1768106088.673:44792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24351 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc079f6f749 code=0x7ffc0000
[  328.692901][   T29] audit: type=1326 audit(1768106088.673:44793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24351 comm="syz.3.4082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc079f6f749 code=0x7ffc0000
[  328.723782][T24381] netlink: 'syz.0.4083': attribute type 1 has an invalid length.
[  328.770428][T24382] loop1: detected capacity change from 0 to 1024
[  328.825966][T24382] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  328.844411][T24381] bond1: entered promiscuous mode
[  328.849533][T24381] bond1: entered allmulticast mode
[  328.856650][T24381] 8021q: adding VLAN 0 to HW filter on device bond1
[  328.900569][T24402] loop3: detected capacity change from 0 to 2048
[  328.912440][T24385] erspan1: entered allmulticast mode
[  328.947193][T24385] bond1: (slave erspan1): making interface the new active one
[  328.954822][T24385] erspan1: entered promiscuous mode
[  328.973158][T24382] ext4 filesystem being mounted at /287/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  328.985593][T24382] EXT4-fs error (device loop1): ext4_lookup:1785: inode #15: comm syz.1.4084: inode has both inline data and extents flags
[  328.999368][T24402] Alternate GPT is invalid, using primary GPT.
[  328.999373][T24385] bond1: (slave erspan1): Enslaving as an active interface with an up link
[  329.006128][T24402]  loop3: p2 p3 p7
[  329.020629][T24382] EXT4-fs (loop1): Remounting filesystem read-only
[  329.047439][T24415] bond1 (unregistering): (slave erspan1): Releasing active interface
[  329.088593][T24415] erspan1: left promiscuous mode
[  329.095579][T24415] bond1 (unregistering): Released all slaves
[  329.106303][T24433] netlink: 'syz.2.4087': attribute type 11 has an invalid length.
[  329.126007][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  329.170849][T24475] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24475 comm=syz.1.4089
[  329.233055][T24478] lo speed is unknown, defaulting to 1000
[  329.397600][T24493] Alternate GPT is invalid, using primary GPT.
[  329.404096][T24493]  loop3: p2 p3 p7
[  329.538655][T24530] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  329.551024][T24530] ext4 filesystem being mounted at /219/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  329.579023][T24530] EXT4-fs error (device loop3): ext4_lookup:1785: inode #15: comm syz.3.4097: inode has both inline data and extents flags
[  329.633812][T24530] EXT4-fs (loop3): Remounting filesystem read-only
[  329.644596][T24535] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  329.754889][T16847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  329.785811][T24538] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  329.800159][T24538] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  329.812703][T24538] EXT4-fs error (device loop0): ext4_lookup:1785: inode #15: comm syz.0.4099: inode has both inline data and extents flags
[  329.816237][T15165] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.835659][T24538] EXT4-fs (loop0): Remounting filesystem read-only
[  329.845108][T24538] __nla_validate_parse: 13 callbacks suppressed
[  329.845124][T24538] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4099'.
[  329.888767][T24553] netlink: 'syz.4.4102': attribute type 1 has an invalid length.
[  329.900239][T20025] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  329.924654][T24553] bond1: entered promiscuous mode
[  329.929829][T24553] bond1: entered allmulticast mode
[  329.941105][T24592] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  329.951291][T24553] 8021q: adding VLAN 0 to HW filter on device bond1
[  329.959057][T24592] EXT4-fs (loop2): 1 truncate cleaned up
[  329.968959][T24596] erspan1: entered allmulticast mode
[  329.976835][T24596] bond1: (slave erspan1): making interface the new active one
[  329.984404][T24596] erspan1: entered promiscuous mode
[  329.993019][T24596] bond1: (slave erspan1): Enslaving as an active interface with an up link
[  330.002601][T24592] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  330.027625][T24555] Alternate GPT is invalid, using primary GPT.
[  330.034094][T24555]  loop1: p2 p3 p7
[  330.036109][T24553] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4102'.
[  330.070933][T24553] bond1 (unregistering): (slave erspan1): Releasing active interface
[  330.096058][T24553] erspan1: left promiscuous mode
[  330.132426][T24553] bond1 (unregistering): Released all slaves
[  330.191413][T24612] netlink: 1072 bytes leftover after parsing attributes in process `syz.0.4107'.
[  330.214754][T24611] netlink: 'syz.0.4107': attribute type 13 has an invalid length.
[  330.727190][T24678] lo speed is unknown, defaulting to 1000
[  330.941834][T22001] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.197802][T24733] Alternate GPT is invalid, using primary GPT.
[  331.204317][T24733]  loop3: p2 p3 p7
[  331.220647][ T3865] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.253720][T24747] netlink: 'syz.1.4122': attribute type 1 has an invalid length.
[  331.289181][T24747] bond1: entered promiscuous mode
[  331.293344][T24748] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  331.294451][T24747] bond1: entered allmulticast mode
[  331.312581][T24747] 8021q: adding VLAN 0 to HW filter on device bond1
[  331.325103][ T3865] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.346560][T24748] ext4 filesystem being mounted at /140/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  331.358418][T24747] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4122'.
[  331.379854][T24747] bond1 (unregistering): Released all slaves
[  331.426203][ T3865] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.443311][T24800] netlink: 'syz.1.4122': attribute type 3 has an invalid length.
[  331.451220][T24800] netlink: 'syz.1.4122': attribute type 3 has an invalid length.
[  331.475631][T24800] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4122'.
[  331.548646][ T3865] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.657396][T24857] set_capacity_and_notify: 8 callbacks suppressed
[  331.657417][T24857] loop3: detected capacity change from 0 to 256
[  331.670614][ T3865] bridge_slave_1: left allmulticast mode
[  331.671011][T24857] vfat: Unknown parameter '0x00000000ffffffff'
[  331.676504][ T3865] bridge_slave_1: left promiscuous mode
[  331.688561][ T3865] bridge0: port 2(bridge_slave_1) entered disabled state
[  331.704877][T24845] loop1: detected capacity change from 0 to 128
[  331.714856][ T3865] bridge_slave_0: left allmulticast mode
[  331.720730][ T3865] bridge_slave_0: left promiscuous mode
[  331.726581][ T3865] bridge0: port 1(bridge_slave_0) entered disabled state
[  331.801924][ T3865] bond1 (unregistering): (slave gretap1): Releasing active interface
[  331.888495][ T3865] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  331.924499][ T3865] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  331.937993][ T3865] bond0 (unregistering): Released all slaves
[  331.957760][ T3865] bond1 (unregistering): Released all slaves
[  331.989206][ T3613] syû: Port: 1 Link DOWN
[  332.043704][T24880] loop4: detected capacity change from 0 to 1024
[  332.052655][T24799] lo speed is unknown, defaulting to 1000
[  332.071501][T24880] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  332.096562][T24880] ext4 filesystem being mounted at /291/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.108770][ T3865] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  332.116221][ T3865] batman_adv: batadv0: Removing interface: batadv_slave_0
[  332.124936][ T3865] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  332.132418][ T3865] batman_adv: batadv0: Removing interface: batadv_slave_1
[  332.144133][ T3865] veth1_macvtap: left promiscuous mode
[  332.149820][ T3865] veth0_macvtap: left promiscuous mode
[  332.155447][ T3865] veth1_vlan: left promiscuous mode
[  332.160702][ T3865] veth0_vlan: left promiscuous mode
[  332.175205][T24880] EXT4-fs error (device loop4): ext4_lookup:1785: inode #15: comm syz.4.4132: inode has both inline data and extents flags
[  332.195516][T24880] EXT4-fs (loop4): Remounting filesystem read-only
[  332.214513][T24889] loop1: detected capacity change from 0 to 1024
[  332.263937][ T3865] team0 (unregistering): Port device team_slave_1 removed
[  332.285107][T24889] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  332.297530][ T3865] team0 (unregistering): Port device team_slave_0 removed
[  332.305450][T15165] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  332.319086][T24889] ext4 filesystem being mounted at /297/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.326487][ T3639] smc: removing ib device syû
[  332.364733][T24889] EXT4-fs error (device loop1): ext4_lookup:1785: inode #15: comm syz.1.4133: inode has both inline data and extents flags
[  332.381275][T24897] loop4: detected capacity change from 0 to 2048
[  332.389529][T24889] EXT4-fs (loop1): Remounting filesystem read-only
[  332.433975][T24889] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4133'.
[  332.454609][T24897] Alternate GPT is invalid, using primary GPT.
[  332.461117][T24897]  loop4: p2 p3 p7
[  332.507435][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  332.600612][T24799] chnl_net:caif_netlink_parms(): no params data found
[  332.640039][T20025] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.738281][T24799] bridge0: port 1(bridge_slave_0) entered blocking state
[  332.745804][T24799] bridge0: port 1(bridge_slave_0) entered disabled state
[  332.753943][T24799] bridge_slave_0: entered allmulticast mode
[  332.760535][T24799] bridge_slave_0: entered promiscuous mode
[  332.767983][T24799] bridge0: port 2(bridge_slave_1) entered blocking state
[  332.775102][T24799] bridge0: port 2(bridge_slave_1) entered disabled state
[  332.782812][T24799] bridge_slave_1: entered allmulticast mode
[  332.795980][T24799] bridge_slave_1: entered promiscuous mode
[  332.834764][T24799] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  332.867897][T24799] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  332.918311][T24799] team0: Port device team_slave_0 added
[  332.926170][T24799] team0: Port device team_slave_1 added
[  332.972720][T24799] batman_adv: batadv0: Adding interface: batadv_slave_0
[  332.979963][T24799] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  333.006420][T24799] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  333.018731][T24799] batman_adv: batadv0: Adding interface: batadv_slave_1
[  333.025769][T24799] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  333.051900][T24799] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  333.091074][T24799] hsr_slave_0: entered promiscuous mode
[  333.098272][T24799] hsr_slave_1: entered promiscuous mode
[  333.217288][T24799] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  333.229687][T24799] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  333.251159][T25261] loop4: detected capacity change from 0 to 1024
[  333.262681][T24799] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  333.273044][T24799] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  333.285172][T25261] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  333.303092][T25261] ext4 filesystem being mounted at /293/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  333.332251][T24799] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.332285][T24799] bridge0: port 2(bridge_slave_1) entered forwarding state
[  333.332381][T24799] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.332422][T24799] bridge0: port 1(bridge_slave_0) entered forwarding state
[  333.335564][T25261] EXT4-fs error (device loop4): ext4_lookup:1785: inode #15: comm syz.4.4143: inode has both inline data and extents flags
[  333.344990][T25261] EXT4-fs (loop4): Remounting filesystem read-only
[  333.365035][T24799] 8021q: adding VLAN 0 to HW filter on device bond0
[  333.374937][ T3865] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.442247][ T3865] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.457402][T24799] 8021q: adding VLAN 0 to HW filter on device team0
[  333.459315][T15165] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  333.526626][ T3865] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.533744][ T3865] bridge0: port 1(bridge_slave_0) entered forwarding state
[  333.559686][ T3865] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.566875][ T3865] bridge0: port 2(bridge_slave_1) entered forwarding state
[  333.632119][T25277] loop1: detected capacity change from 0 to 1024
[  333.657081][T24799] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  333.676017][   T29] kauditd_printk_skb: 1473 callbacks suppressed
[  333.676104][   T29] audit: type=1326 audit(1768106093.883:46267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25272 comm="syz.1.4145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5d7ff749 code=0x7ffc0000
[  333.706220][   T29] audit: type=1326 audit(1768106093.883:46268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25272 comm="syz.1.4145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5d7ff749 code=0x7ffc0000
[  333.729880][   T29] audit: type=1326 audit(1768106093.883:46269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25272 comm="syz.1.4145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b5d7ff749 code=0x7ffc0000
[  333.753537][   T29] audit: type=1326 audit(1768106093.883:46270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25272 comm="syz.1.4145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5d7ff749 code=0x7ffc0000
[  333.777395][   T29] audit: type=1326 audit(1768106093.883:46271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25272 comm="syz.1.4145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5d7ff749 code=0x7ffc0000
[  333.801131][   T29] audit: type=1326 audit(1768106093.883:46272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25272 comm="syz.1.4145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b5d7ff749 code=0x7ffc0000
[  333.825626][   T29] audit: type=1326 audit(1768106093.883:46273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25272 comm="syz.1.4145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5d7ff749 code=0x7ffc0000
[  333.849491][   T29] audit: type=1326 audit(1768106093.883:46274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25272 comm="syz.1.4145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f9b5d7ff749 code=0x7ffc0000
[  333.873224][   T29] audit: type=1326 audit(1768106093.893:46275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25272 comm="syz.1.4145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5d7ff749 code=0x7ffc0000
[  333.876047][T25277] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  333.896923][   T29] audit: type=1326 audit(1768106093.893:46276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25272 comm="syz.1.4145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5d7ff749 code=0x7ffc0000
[  333.925753][T25277] ext4 filesystem being mounted at /304/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  333.988148][T25277] EXT4-fs error (device loop1): ext4_lookup:1785: inode #15: comm syz.1.4145: inode has both inline data and extents flags
[  334.081081][T25277] EXT4-fs (loop1): Remounting filesystem read-only
[  334.110184][T24799] 8021q: adding VLAN 0 to HW filter on device batadv0
[  334.122726][T25277] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4145'.
[  334.209737][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  334.222911][T25300] loop4: detected capacity change from 0 to 512
[  334.306796][T25300] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.317619][T24799] veth0_vlan: entered promiscuous mode
[  334.352101][T24799] veth1_vlan: entered promiscuous mode
[  334.374035][T24799] veth0_macvtap: entered promiscuous mode
[  334.387731][T25300] ext4 filesystem being mounted at /295/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  334.393005][T24799] veth1_macvtap: entered promiscuous mode
[  334.414528][T24799] batman_adv: batadv0: Interface activated: batadv_slave_0
[  334.471339][T24799] batman_adv: batadv0: Interface activated: batadv_slave_1
[  334.497421][T25324] loop1: detected capacity change from 0 to 2048
[  334.504689][T25322] loop3: detected capacity change from 0 to 2048
[  334.520970][ T3635] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  334.530801][ T3635] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  334.540663][ T3635] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  334.551341][T25322] EXT4-fs (loop3): failed to initialize system zone (-117)
[  334.561290][T25324] Alternate GPT is invalid, using primary GPT.
[  334.567782][T25324]  loop1: p2 p3 p7
[  334.571745][T25322] EXT4-fs (loop3): mount failed
[  334.603534][ T3635] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  334.691849][T25337] ªªªªªª: renamed from vlan0 (while UP)
[  334.738865][T25347] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4155'.
[  334.754224][T25347] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4155'.
[  334.846019][T25350] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4155'.
[  334.961228][T25356] netlink: 'syz.3.4158': attribute type 1 has an invalid length.
[  335.023313][T25356] bond2: entered promiscuous mode
[  335.028638][T25356] bond2: entered allmulticast mode
[  335.045369][T25356] 8021q: adding VLAN 0 to HW filter on device bond2
[  335.088106][T25370] erspan1: entered allmulticast mode
[  335.118939][T25356] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4158'.
[  335.121482][T25370] bond2: (slave erspan1): making interface the new active one
[  335.135446][T25370] erspan1: entered promiscuous mode
[  335.142690][T25370] bond2: (slave erspan1): Enslaving as an active interface with an up link
[  335.181611][T25370] netlink: 'syz.3.4158': attribute type 3 has an invalid length.
[  335.189603][T25370] netlink: 'syz.3.4158': attribute type 3 has an invalid length.
[  335.251254][T25370] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4158'.
[  335.260648][T25417] Alternate GPT is invalid, using primary GPT.
[  335.267132][T25417]  loop0: p2 p3 p7
[  335.286275][T25356] bond2 (unregistering): (slave erspan1): Releasing active interface
[  335.297492][T25356] erspan1: left promiscuous mode
[  335.312559][T25356] bond2 (unregistering): Released all slaves
[  335.345875][T25459] netlink: 1072 bytes leftover after parsing attributes in process `syz.1.4167'.
[  335.360034][T25459] netlink: 'syz.1.4167': attribute type 13 has an invalid length.
[  335.459206][T25459] bridge0: port 2(bridge_slave_1) entered disabled state
[  335.466612][T25459] bridge0: port 1(bridge_slave_0) entered disabled state
[  335.666072][T25459] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  335.678771][T15165] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.708451][T25459] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  335.903894][ T3867] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  335.924141][ T3867] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  335.942679][ T3867] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  335.970554][T25481] wireguard0: entered promiscuous mode
[  335.976174][T25481] wireguard0: entered allmulticast mode
[  336.010411][ T3867] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  336.038166][T25491] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4173'.
[  336.138560][T25501] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  336.154042][T25501] ext4 filesystem being mounted at /313/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  336.166668][T25501] EXT4-fs error (device loop1): ext4_lookup:1785: inode #15: comm syz.1.4177: inode has both inline data and extents flags
[  336.185829][T25501] EXT4-fs (loop1): Remounting filesystem read-only
[  336.298395][T25518] lo speed is unknown, defaulting to 1000
[  336.332879][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  336.357165][T25545] netlink: 'syz.1.4182': attribute type 11 has an invalid length.
[  336.379722][T25547] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4183'.
[  336.417408][T25547] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4183'.
[  336.449636][T25560] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.462402][T25547] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4183'.
[  336.487469][T25560] ext4 filesystem being mounted at /146/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  336.521932][T25569] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4185'.
[  336.592705][T25518] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4181'.
[  336.635041][T25574] Alternate GPT is invalid, using primary GPT.
[  336.641831][T25574]  loop1: p2 p3 p7
[  336.726092][T25585] set_capacity_and_notify: 4 callbacks suppressed
[  336.726118][T25585] loop4: detected capacity change from 0 to 1024
[  336.749347][T25587] loop3: detected capacity change from 0 to 1024
[  336.768054][T25585] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  336.784434][T25587] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  336.807376][T25585] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  336.828321][T25587] ext4 filesystem being mounted at /243/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  336.845114][T25585] EXT4-fs error (device loop4): ext4_lookup:1785: inode #15: comm syz.4.4192: inode has both inline data and extents flags
[  336.876751][T25602] loop5: detected capacity change from 0 to 128
[  336.886625][T25585] EXT4-fs (loop4): Remounting filesystem read-only
[  336.893860][T25587] EXT4-fs error (device loop3): ext4_lookup:1785: inode #15: comm syz.3.4190: inode has both inline data and extents flags
[  336.907536][T25587] EXT4-fs (loop3): Remounting filesystem read-only
[  336.945060][T25612] netlink: 'syz.4.4195': attribute type 11 has an invalid length.
[  337.093381][T25622] lo speed is unknown, defaulting to 1000
[  337.110754][T25633] syz.5.4200: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  337.125516][T25633] CPU: 0 UID: 0 PID: 25633 Comm: syz.5.4200 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  337.125617][T25633] Tainted: [W]=WARN
[  337.125624][T25633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  337.125641][T25633] Call Trace:
[  337.125651][T25633]  <TASK>
[  337.125662][T25633]  __dump_stack+0x1d/0x30
[  337.125771][T25633]  dump_stack_lvl+0x95/0xd0
[  337.125793][T25633]  dump_stack+0x15/0x1b
[  337.125812][T25633]  warn_alloc+0x12b/0x1a0
[  337.125927][T25633]  __vmalloc_node_range_noprof+0xa0/0x1310
[  337.125966][T25633]  ? __rcu_read_unlock+0x4f/0x70
[  337.126031][T25633]  ? avc_has_perm_noaudit+0xab/0x130
[  337.126074][T25633]  ? should_fail_ex+0x30/0x280
[  337.126099][T25633]  ? should_failslab+0x8c/0xb0
[  337.126159][T25633]  vmalloc_user_noprof+0x7d/0xb0
[  337.126212][T25633]  ? xskq_create+0x80/0xe0
[  337.126231][T25633]  xskq_create+0x80/0xe0
[  337.126248][T25633]  xsk_init_queue+0x95/0xf0
[  337.126282][T25633]  xsk_setsockopt+0x3f5/0x640
[  337.126394][T25633]  ? __pfx_xsk_setsockopt+0x10/0x10
[  337.126478][T25633]  __sys_setsockopt+0x184/0x200
[  337.126513][T25633]  __x64_sys_setsockopt+0x64/0x80
[  337.126540][T25633]  x64_sys_call+0x21d5/0x3000
[  337.126623][T25633]  do_syscall_64+0xca/0x2b0
[  337.126713][T25633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.126752][T25633] RIP: 0033:0x7f4cee65f749
[  337.126774][T25633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  337.126798][T25633] RSP: 002b:00007f4ced0c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  337.126824][T25633] RAX: ffffffffffffffda RBX: 00007f4cee8b5fa0 RCX: 00007f4cee65f749
[  337.126865][T25633] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000007
[  337.126880][T25633] RBP: 00007f4cee6e3f91 R08: 0000000000000004 R09: 0000000000000000
[  337.126892][T25633] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  337.126904][T25633] R13: 00007f4cee8b6038 R14: 00007f4cee8b5fa0 R15: 00007ffd37a51eb8
[  337.126973][T25633]  </TASK>
[  337.126997][T25633] Mem-Info:
[  337.335103][T25633] active_anon:13845 inactive_anon:0 isolated_anon:0
[  337.335103][T25633]  active_file:9512 inactive_file:3860 isolated_file:0
[  337.335103][T25633]  unevictable:0 dirty:256 writeback:0
[  337.335103][T25633]  slab_reclaimable:3439 slab_unreclaimable:96024
[  337.335103][T25633]  mapped:34231 shmem:4009 pagetables:1556
[  337.335103][T25633]  sec_pagetables:0 bounce:0
[  337.335103][T25633]  kernel_misc_reclaimable:0
[  337.335103][T25633]  free:1740364 free_pcp:13468 free_cma:0
[  337.380913][T25633] Node 0 active_anon:55728kB inactive_anon:0kB active_file:38048kB inactive_file:15440kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:137156kB dirty:1024kB writeback:0kB shmem:16268kB kernel_stack:4880kB pagetables:6224kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  337.408544][T25633] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  337.438303][T25633] lowmem_reserve[]: 0 2880 7859 7859
[  337.443672][T25633] Node 0 DMA32 free:2945992kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2949520kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:3528kB free_cma:0kB
[  337.475110][T25633] lowmem_reserve[]: 0 0 4978 4978
[  337.480229][T25633] Node 0 Normal free:3999640kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:56076kB inactive_anon:0kB active_file:38048kB inactive_file:15440kB unevictable:0kB writepending:1024kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:50184kB local_pcp:29220kB free_cma:0kB
[  337.513572][T25633] lowmem_reserve[]: 0 0 0 0
[  337.518155][T25633] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  337.531036][T25633] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 3*16kB (M) 4*32kB (M) 4*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 3*2048kB (M) 716*4096kB (M) = 2945992kB
[  337.547179][T25633] Node 0 Normal: 1707*4kB (UM) 696*8kB (UM) 1*16kB (M) 559*32kB (UM) 327*64kB (UM) 242*128kB (UME) 353*256kB (UME) 295*512kB (UME) 247*1024kB (UM) 151*2048kB (UME) 760*4096kB (UM) = 3998748kB
[  337.566298][T25633] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  337.575721][T25633] 17742 total pagecache pages
[  337.580435][T25633] 47 pages in swap cache
[  337.584715][T25633] Free swap  = 124748kB
[  337.588993][T25633] Total swap = 124996kB
[  337.593182][T25633] 2097051 pages RAM
[  337.597054][T25633] 0 pages HighMem/MovableOnly
[  337.601806][T25633] 81271 pages reserved
[  337.697016][T25665] netlink: 'syz.1.4203': attribute type 6 has an invalid length.
[  337.768771][T25671] FAULT_INJECTION: forcing a failure.
[  337.768771][T25671] name failslab, interval 1, probability 0, space 0, times 0
[  337.781530][T25671] CPU: 0 UID: 0 PID: 25671 Comm: syz.4.4207 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  337.781634][T25671] Tainted: [W]=WARN
[  337.781640][T25671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  337.781651][T25671] Call Trace:
[  337.781736][T25671]  <TASK>
[  337.781796][T25671]  __dump_stack+0x1d/0x30
[  337.781818][T25671]  dump_stack_lvl+0x95/0xd0
[  337.781898][T25671]  dump_stack+0x15/0x1b
[  337.781916][T25671]  should_fail_ex+0x265/0x280
[  337.781937][T25671]  should_failslab+0x8c/0xb0
[  337.781997][T25671]  kmem_cache_alloc_lru_noprof+0x6d/0x4c0
[  337.782020][T25671]  ? __d_alloc+0x37/0x340
[  337.782044][T25671]  ? obj_cgroup_charge_account+0x122/0x1a0
[  337.782086][T25671]  __d_alloc+0x37/0x340
[  337.782110][T25671]  d_alloc_pseudo+0x1e/0x80
[  337.782135][T25671]  alloc_file_pseudo+0x71/0x160
[  337.782227][T25671]  ? security_inode_alloc+0x69/0x100
[  337.782248][T25671]  sock_alloc_file+0x9c/0x1e0
[  337.782314][T25671]  do_accept+0x1e4/0x3a0
[  337.782342][T25671]  __sys_accept4+0xbe/0x170
[  337.782365][T25671]  __x64_sys_accept+0x42/0x50
[  337.782451][T25671]  x64_sys_call+0x2215/0x3000
[  337.782512][T25671]  do_syscall_64+0xca/0x2b0
[  337.782546][T25671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.782566][T25671] RIP: 0033:0x7f718cabf749
[  337.782580][T25671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  337.782597][T25671] RSP: 002b:00007f718b527038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  337.782674][T25671] RAX: ffffffffffffffda RBX: 00007f718cd15fa0 RCX: 00007f718cabf749
[  337.782685][T25671] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[  337.782761][T25671] RBP: 00007f718b527090 R08: 0000000000000000 R09: 0000000000000000
[  337.782812][T25671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  337.782823][T25671] R13: 00007f718cd16038 R14: 00007f718cd15fa0 R15: 00007ffd24fb5be8
[  337.782876][T25671]  </TASK>
[  338.129547][T25700] netlink: 'syz.3.4213': attribute type 11 has an invalid length.
[  338.150058][T25698] loop1: detected capacity change from 0 to 2048
[  338.187913][T25698] Alternate GPT is invalid, using primary GPT.
[  338.194380][T25698]  loop1: p2 p3 p7
[  338.283266][T25721] loop5: detected capacity change from 0 to 1024
[  338.297092][T25721] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  338.309171][T25721] EXT4-fs error (device loop5): ext4_lookup:1785: inode #15: comm syz.5.4220: inode has both inline data and extents flags
[  338.323884][T25721] EXT4-fs (loop5): Remounting filesystem read-only
[  338.363651][T25735] netlink: 'syz.0.4222': attribute type 13 has an invalid length.
[  338.431860][T25754] loop4: detected capacity change from 0 to 512
[  338.459358][T25754] ext4 filesystem being mounted at /315/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  338.485767][T25762] loop0: detected capacity change from 0 to 2048
[  338.495263][T25754] pim6reg1: entered promiscuous mode
[  338.500698][T25754] pim6reg1: entered allmulticast mode
[  338.520896][T25762] EXT4-fs (loop0): failed to initialize system zone (-117)
[  338.540586][T25762] EXT4-fs (loop0): mount failed
[  338.608589][T25784] loop5: detected capacity change from 0 to 1024
[  338.627229][T25784] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  338.639608][T25784] EXT4-fs error (device loop5): ext4_lookup:1785: inode #15: comm syz.5.4236: inode has both inline data and extents flags
[  338.652915][T25784] EXT4-fs (loop5): Remounting filesystem read-only
[  338.682153][T25791] usb usb7: usbfs: process 25791 (syz.3.4237) did not claim interface 0 before use
[  338.708012][T25797] FAULT_INJECTION: forcing a failure.
[  338.708012][T25797] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  338.712940][T25791] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1540 sclass=netlink_route_socket pid=25791 comm=syz.3.4237
[  338.721192][T25797] CPU: 0 UID: 0 PID: 25797 Comm: syz.4.4238 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  338.721300][T25797] Tainted: [W]=WARN
[  338.721329][T25797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  338.721389][T25797] Call Trace:
[  338.721418][T25797]  <TASK>
[  338.721455][T25797]  __dump_stack+0x1d/0x30
[  338.721533][T25797]  dump_stack_lvl+0x95/0xd0
[  338.721670][T25797]  dump_stack+0x15/0x1b
[  338.721756][T25797]  should_fail_ex+0x265/0x280
[  338.721877][T25797]  should_fail+0xb/0x20
[  338.721935][T25797]  should_fail_usercopy+0x1a/0x20
[  338.722021][T25797]  _copy_from_user+0x1c/0xb0
[  338.722101][T25797]  ___sys_sendmsg+0xc1/0x1d0
[  338.722252][T25797]  __x64_sys_sendmsg+0xd4/0x160
[  338.722430][T25797]  x64_sys_call+0x17ba/0x3000
[  338.722508][T25797]  do_syscall_64+0xca/0x2b0
[  338.722625][T25797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.722735][T25797] RIP: 0033:0x7f718cabf749
[  338.722804][T25797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.722873][T25797] RSP: 002b:00007f718b527038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  338.722930][T25797] RAX: ffffffffffffffda RBX: 00007f718cd15fa0 RCX: 00007f718cabf749
[  338.723037][T25797] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000007
[  338.723072][T25797] RBP: 00007f718b527090 R08: 0000000000000000 R09: 0000000000000000
[  338.723107][T25797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  338.723149][T25797] R13: 00007f718cd16038 R14: 00007f718cd15fa0 R15: 00007ffd24fb5be8
[  338.723225][T25797]  </TASK>
[  338.835408][   T29] kauditd_printk_skb: 1355 callbacks suppressed
[  338.835522][   T29] audit: type=1326 audit(1768106355.069:47632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25798 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  338.858484][T25799] loop4: detected capacity change from 0 to 2048
[  338.864801][   T29] audit: type=1326 audit(1768106355.069:47633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25798 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  338.960712][   T29] audit: type=1326 audit(1768106355.069:47634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25798 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  338.982001][T25799] EXT4-fs (loop4): failed to initialize system zone (-117)
[  338.984482][   T29] audit: type=1326 audit(1768106355.069:47635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25798 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  338.992124][T25799] EXT4-fs (loop4): mount failed
[  339.015625][   T29] audit: type=1326 audit(1768106355.069:47636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25798 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  339.044172][   T29] audit: type=1326 audit(1768106355.069:47637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25798 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  339.067884][   T29] audit: type=1326 audit(1768106355.069:47638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25798 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  339.091676][   T29] audit: type=1326 audit(1768106355.069:47639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25798 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  339.115363][   T29] audit: type=1326 audit(1768106355.069:47640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25798 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  339.139105][   T29] audit: type=1326 audit(1768106355.069:47641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25798 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f718cabf749 code=0x7ffc0000
[  339.243358][T25826] netlink: 'syz.1.4243': attribute type 1 has an invalid length.
[  339.262350][T25826] bond1: entered promiscuous mode
[  339.267480][T25826] bond1: entered allmulticast mode
[  339.279379][T25826] 8021q: adding VLAN 0 to HW filter on device bond1
[  339.313296][T25826] bond1 (unregistering): Released all slaves
[  339.358741][T25903] netlink: 'syz.1.4243': attribute type 3 has an invalid length.
[  339.366684][T25903] netlink: 'syz.1.4243': attribute type 3 has an invalid length.
[  339.403830][T25866] lo speed is unknown, defaulting to 1000
[  339.453800][T25930] loop3: detected capacity change from 0 to 2048
[  339.503008][T25930] Alternate GPT is invalid, using primary GPT.
[  339.509408][T25930]  loop3: p2 p3 p7
[  339.523280][T25944] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  339.546232][T25938] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  339.547538][T25944] EXT4-fs (loop1): 1 truncate cleaned up
[  339.565892][T25938] EXT4-fs error (device loop5): ext4_lookup:1785: inode #15: comm syz.5.4256: inode has both inline data and extents flags
[  339.606639][T25944] EXT4-fs error (device loop1): ext4_lookup:1785: inode #14: comm syz.1.4258: invalid fast symlink length 39
[  339.652762][T25938] EXT4-fs (loop5): Remounting filesystem read-only
[  339.660542][T25944] bridge2: entered promiscuous mode
[  339.666035][T25944] bridge2: entered allmulticast mode
[  339.764743][T25969] ext4 filesystem being mounted at /255/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  339.836555][T25969] EXT4-fs error (device loop3): ext4_lookup:1785: inode #15: comm syz.3.4261: inode has both inline data and extents flags
[  339.837731][T25992] netlink: 'syz.0.4267': attribute type 1 has an invalid length.
[  339.857966][T25969] EXT4-fs (loop3): Remounting filesystem read-only
[  339.876640][T25991] EXT4-fs (loop4): failed to initialize system zone (-117)
[  339.881619][T25992] bond1: entered promiscuous mode
[  339.889390][T25992] bond1: entered allmulticast mode
[  339.896128][T25988] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  339.907263][T25992] 8021q: adding VLAN 0 to HW filter on device bond1
[  339.908259][T25991] EXT4-fs (loop4): mount failed
[  339.922025][T25992] __nla_validate_parse: 10 callbacks suppressed
[  339.922046][T25992] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4267'.
[  339.944286][T25988] EXT4-fs error (device loop5): ext4_lookup:1785: inode #15: comm syz.5.4265: inode has both inline data and extents flags
[  339.958337][T25992] bond1 (unregistering): Released all slaves
[  339.987507][T26065] netlink: 'syz.0.4267': attribute type 3 has an invalid length.
[  339.995455][T26065] netlink: 'syz.0.4267': attribute type 3 has an invalid length.
[  340.009320][T25988] EXT4-fs (loop5): Remounting filesystem read-only
[  340.031486][T26065] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4267'.
[  340.031585][T25988] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4265'.
[  340.078213][T26079] Alternate GPT is invalid, using primary GPT.
[  340.085040][T26079]  loop4: p2 p3 p7
[  340.191110][T26107] SELinux: failed to load policy
[  340.237097][T26114] EXT4-fs (loop0): failed to initialize system zone (-117)
[  340.245075][T26114] EXT4-fs (loop0): mount failed
[  340.307367][T26127] ext4 filesystem being mounted at /168/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  340.320131][T26127] EXT4-fs error (device loop0): ext4_lookup:1785: inode #15: comm syz.0.4284: inode has both inline data and extents flags
[  340.333541][T26127] EXT4-fs (loop0): Remounting filesystem read-only
[  340.343616][T26127] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4284'.
[  340.416600][T26141] netlink: 'syz.1.4287': attribute type 13 has an invalid length.
[  340.434488][T26148] netlink: 'syz.5.4290': attribute type 13 has an invalid length.
[  340.551936][T26148] bridge0: port 2(bridge_slave_1) entered disabled state
[  340.559247][T26148] bridge0: port 1(bridge_slave_0) entered disabled state
[  340.575389][T26153] ext4 filesystem being mounted at /326/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  340.597036][T26153] EXT4-fs error (device loop1): ext4_lookup:1785: inode #15: comm syz.1.4292: inode has both inline data and extents flags
[  340.647987][T26153] EXT4-fs (loop1): Remounting filesystem read-only
[  340.696860][T26163] EXT4-fs (loop0): failed to initialize system zone (-117)
[  340.711925][T26163] EXT4-fs (loop0): mount failed
[  340.772630][T26148] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  340.784278][T26148] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  341.003782][ T3642] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  341.025482][ T3642] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  341.049698][ T3642] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  341.062069][T26177] lo speed is unknown, defaulting to 1000
[  341.071626][ T3642] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  341.127443][T26224] netlink: 'syz.3.4300': attribute type 11 has an invalid length.
[  341.279188][T26252] netlink: 52 bytes leftover after parsing attributes in process `syz.5.4306'.
[  341.295849][T26255] veth2: entered promiscuous mode
[  341.301063][T26255] veth2: entered allmulticast mode
[  341.324160][T26261] bond2: entered promiscuous mode
[  341.329325][T26261] bond2: entered allmulticast mode
[  341.334799][T26261] 8021q: adding VLAN 0 to HW filter on device bond2
[  341.366242][T26261] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4309'.
[  341.366584][T26309] netlink: 52 bytes leftover after parsing attributes in process `syz.0.4310'.
[  341.387018][T26261] bond2 (unregistering): Released all slaves
[  341.446967][T26348] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4309'.
[  341.515628][T26357] usb usb7: usbfs: process 26357 (syz.3.4316) did not claim interface 0 before use
[  341.558551][T26363] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1540 sclass=netlink_route_socket pid=26363 comm=syz.5.4317
[  341.664271][T26385] veth2: entered promiscuous mode
[  341.669611][T26385] veth2: entered allmulticast mode
[  341.683790][T26392] netlink: 52 bytes leftover after parsing attributes in process `syz.1.4322'.
[  341.728095][T26384] ext4 filesystem being mounted at /325/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.751296][T26384] EXT4-fs error (device loop4): ext4_lookup:1785: inode #15: comm syz.4.4321: inode has both inline data and extents flags
[  341.765113][T26384] EXT4-fs (loop4): Remounting filesystem read-only
[  341.775682][T26384] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4321'.
[  341.803384][T26420] lo speed is unknown, defaulting to 1000
[  341.901103][T26451] usb usb7: usbfs: process 26451 (syz.4.4329) did not claim interface 0 before use
[  341.973560][T26450] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1540 sclass=netlink_route_socket pid=26450 comm=syz.0.4330
[  341.999852][T26469] set_capacity_and_notify: 14 callbacks suppressed
[  341.999877][T26469] loop1: detected capacity change from 0 to 512
[  342.033702][T26469] EXT4-fs (loop1): 1 truncate cleaned up
[  342.103266][T26477] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  342.167961][T26484] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  342.187367][T26483] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  342.216034][T26484] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  342.293529][T26496] lo speed is unknown, defaulting to 1000
[  342.429232][T26527] netlink: 'syz.0.4338': attribute type 11 has an invalid length.
[  342.704125][T26541] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1540 sclass=netlink_route_socket pid=26541 comm=syz.3.4343
[  342.871378][T26575] netlink: 'syz.0.4349': attribute type 11 has an invalid length.
[  342.895648][T26573] lo speed is unknown, defaulting to 1000
[  342.935161][T26580] loop4: detected capacity change from 0 to 2048
[  342.962530][T26580] EXT4-fs (loop4): failed to initialize system zone (-117)
[  342.975345][T26580] EXT4-fs (loop4): mount failed
[  342.998114][T26592] loop3: detected capacity change from 0 to 1024
[  343.038696][T26592] ext4 filesystem being mounted at /278/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  343.094197][T26592] EXT4-fs error (device loop3): ext4_lookup:1785: inode #15: comm syz.3.4352: inode has both inline data and extents flags
[  343.110235][T26627] loop5: detected capacity change from 0 to 2048
[  343.122786][T26625] loop4: detected capacity change from 0 to 512
[  343.129728][T26592] EXT4-fs (loop3): Remounting filesystem read-only
[  343.143900][T26625] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  343.153618][T26625] EXT4-fs (loop4): 1 truncate cleaned up
[  343.160462][T26627] EXT4-fs (loop5): failed to initialize system zone (-117)
[  343.168033][T26627] EXT4-fs (loop5): mount failed
[  343.220005][T26625] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.4354: Logical block already allocated
[  343.239448][T26625] EXT4-fs (loop4): Remounting filesystem read-only
[  343.300026][T26651] usb usb7: usbfs: process 26651 (syz.3.4359) did not claim interface 0 before use
[  343.370410][T26664] loop1: detected capacity change from 0 to 8192
[  343.405203][T26678] loop5: detected capacity change from 0 to 512
[  343.433842][T26678] ext4 filesystem being mounted at /53/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  343.468176][T26692] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  343.503155][T26678] lo speed is unknown, defaulting to 1000
[  343.553766][T26716] lo speed is unknown, defaulting to 1000
[  343.695920][T26678] EXT4-fs error (device loop5): ext4_lookup:1785: inode #12: comm syz.5.4367: iget: bad i_size value: 2533274857506816
[  343.701067][T26762] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  343.801390][T26715] EXT4-fs error (device loop5): ext4_lookup:1785: inode #12: comm syz.5.4367: iget: bad i_size value: 2533274857506816
[  343.840416][T26766] FAULT_INJECTION: forcing a failure.
[  343.840416][T26766] name failslab, interval 1, probability 0, space 0, times 0
[  343.853362][T26766] CPU: 0 UID: 0 PID: 26766 Comm: syz.1.4378 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  343.853406][T26766] Tainted: [W]=WARN
[  343.853416][T26766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  343.853430][T26766] Call Trace:
[  343.853436][T26766]  <TASK>
[  343.853443][T26766]  __dump_stack+0x1d/0x30
[  343.853549][T26766]  dump_stack_lvl+0x95/0xd0
[  343.853575][T26766]  dump_stack+0x15/0x1b
[  343.853599][T26766]  should_fail_ex+0x265/0x280
[  343.853640][T26766]  should_failslab+0x8c/0xb0
[  343.853665][T26766]  kmem_cache_alloc_node_noprof+0x6b/0x4c0
[  343.853692][T26766]  ? __alloc_skb+0x2ff/0x4b0
[  343.853766][T26766]  __alloc_skb+0x2ff/0x4b0
[  343.853791][T26766]  ? __alloc_skb+0x228/0x4b0
[  343.853894][T26766]  netlink_alloc_large_skb+0xbf/0xf0
[  343.854005][T26766]  netlink_sendmsg+0x3cf/0x6b0
[  343.854118][T26766]  ? __pfx_netlink_sendmsg+0x10/0x10
[  343.854235][T26766]  __sock_sendmsg+0x145/0x180
[  343.854261][T26766]  ____sys_sendmsg+0x31e/0x4a0
[  343.854319][T26766]  ___sys_sendmsg+0x17b/0x1d0
[  343.854375][T26766]  __x64_sys_sendmsg+0xd4/0x160
[  343.854497][T26766]  x64_sys_call+0x17ba/0x3000
[  343.854534][T26766]  do_syscall_64+0xca/0x2b0
[  343.854573][T26766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.854602][T26766] RIP: 0033:0x7f9b5d7ff749
[  343.854623][T26766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.854642][T26766] RSP: 002b:00007f9b5c267038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  343.854713][T26766] RAX: ffffffffffffffda RBX: 00007f9b5da55fa0 RCX: 00007f9b5d7ff749
[  343.854730][T26766] RDX: 0000000000000000 RSI: 0000200000000440 RDI: 0000000000000003
[  343.854747][T26766] RBP: 00007f9b5c267090 R08: 0000000000000000 R09: 0000000000000000
[  343.854763][T26766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  343.854780][T26766] R13: 00007f9b5da56038 R14: 00007f9b5da55fa0 R15: 00007fff1dcfd588
[  343.854800][T26766]  </TASK>
[  344.246703][   T29] kauditd_printk_skb: 2121 callbacks suppressed
[  344.246721][   T29] audit: type=1326 audit(1768106360.509:49763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26772 comm="syz.0.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  344.276989][   T29] audit: type=1326 audit(1768106360.509:49764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26772 comm="syz.0.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  344.300911][   T29] audit: type=1326 audit(1768106360.509:49765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26772 comm="syz.0.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  344.325797][   T29] audit: type=1326 audit(1768106360.509:49766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26772 comm="syz.0.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  344.349786][   T29] audit: type=1326 audit(1768106360.509:49767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26772 comm="syz.0.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  344.374530][   T29] audit: type=1326 audit(1768106360.509:49768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26772 comm="syz.0.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  344.398457][   T29] audit: type=1326 audit(1768106360.509:49769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26772 comm="syz.0.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  344.422527][   T29] audit: type=1326 audit(1768106360.509:49770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26772 comm="syz.0.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  344.446165][   T29] audit: type=1326 audit(1768106360.509:49771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26772 comm="syz.0.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  344.470039][   T29] audit: type=1326 audit(1768106360.509:49772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26772 comm="syz.0.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  344.556450][T26784] loop0: detected capacity change from 0 to 1024
[  344.579215][T26794] validate_nla: 4 callbacks suppressed
[  344.579231][T26794] netlink: 'syz.5.4387': attribute type 13 has an invalid length.
[  344.595587][T26788] loop1: detected capacity change from 0 to 2048
[  344.595969][T26784] ext4 filesystem being mounted at /203/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  344.639662][T26784] EXT4-fs error (device loop0): ext4_lookup:1785: inode #15: comm syz.0.4385: inode has both inline data and extents flags
[  344.653820][T26784] EXT4-fs (loop0): Remounting filesystem read-only
[  344.663895][T26788] Alternate GPT is invalid, using primary GPT.
[  344.670512][T26788]  loop1: p2 p3 p7
[  344.688349][T26809] netlink: 'syz.5.4391': attribute type 11 has an invalid length.
[  344.837823][T26839] netlink: 'syz.0.4396': attribute type 11 has an invalid length.
[  344.941789][T26853] FAULT_INJECTION: forcing a failure.
[  344.941789][T26853] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  344.955054][T26853] CPU: 0 UID: 0 PID: 26853 Comm: syz.3.4402 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  344.955091][T26853] Tainted: [W]=WARN
[  344.955101][T26853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  344.955117][T26853] Call Trace:
[  344.955126][T26853]  <TASK>
[  344.955136][T26853]  __dump_stack+0x1d/0x30
[  344.955239][T26853]  dump_stack_lvl+0x95/0xd0
[  344.955265][T26853]  dump_stack+0x15/0x1b
[  344.955307][T26853]  should_fail_ex+0x265/0x280
[  344.955358][T26853]  should_fail+0xb/0x20
[  344.955388][T26853]  should_fail_usercopy+0x1a/0x20
[  344.955441][T26853]  _copy_from_user+0x1c/0xb0
[  344.955477][T26853]  __copy_msghdr+0x244/0x300
[  344.955514][T26853]  ___sys_sendmsg+0x109/0x1d0
[  344.955625][T26853]  __x64_sys_sendmsg+0xd4/0x160
[  344.955666][T26853]  x64_sys_call+0x17ba/0x3000
[  344.955698][T26853]  do_syscall_64+0xca/0x2b0
[  344.955744][T26853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.955769][T26853] RIP: 0033:0x7fc079f6f749
[  344.955785][T26853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.955816][T26853] RSP: 002b:00007fc0789cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  344.955838][T26853] RAX: ffffffffffffffda RBX: 00007fc07a1c5fa0 RCX: 00007fc079f6f749
[  344.955855][T26853] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000004
[  344.955871][T26853] RBP: 00007fc0789cf090 R08: 0000000000000000 R09: 0000000000000000
[  344.955888][T26853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  344.955901][T26853] R13: 00007fc07a1c6038 R14: 00007fc07a1c5fa0 R15: 00007ffd219c6528
[  344.956033][T26853]  </TASK>
[  344.963742][T26851] loop0: detected capacity change from 0 to 1024
[  345.147010][T26858] pim6reg: entered allmulticast mode
[  345.152577][T26858] pim6reg: left allmulticast mode
[  345.167787][T26851] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  345.181188][T26851] EXT4-fs error (device loop0): ext4_lookup:1785: inode #15: comm syz.0.4401: inode has both inline data and extents flags
[  345.194390][T26851] EXT4-fs (loop0): Remounting filesystem read-only
[  345.204366][T26865] __nla_validate_parse: 7 callbacks suppressed
[  345.204385][T26865] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4403'.
[  345.343937][T26898] netlink: 'syz.5.4409': attribute type 11 has an invalid length.
[  345.395489][T26900] can0: slcan on ttyS3.
[  345.414846][T26900] lo speed is unknown, defaulting to 1000
[  346.245679][T26854] can0 (unregistered): slcan off ttyS3.
[  346.286226][T26978] veth6: entered promiscuous mode
[  346.291492][T26978] veth6: entered allmulticast mode
[  346.490205][T27013] usb usb7: usbfs: process 27013 (syz.3.4434) did not claim interface 0 before use
[  346.752834][T27057] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4447'.
[  346.784053][T27057] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4447'.
[  346.813154][T27057] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4447'.
[  346.891732][T27080] netlink: 'syz.4.4452': attribute type 13 has an invalid length.
[  346.936599][T27083] usb usb7: usbfs: process 27083 (syz.0.4451) did not claim interface 0 before use
[  346.946519][T27088] netlink: 'syz.1.4454': attribute type 11 has an invalid length.
[  347.061635][T27101] set_capacity_and_notify: 3 callbacks suppressed
[  347.061691][T27101] loop5: detected capacity change from 0 to 512
[  347.144196][T27101] EXT4-fs mount: 35 callbacks suppressed
[  347.144218][T27101] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.185460][T27101] ext4 filesystem being mounted at /72/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  347.229070][T27110] netlink: 'syz.4.4460': attribute type 11 has an invalid length.
[  347.368304][T27117] loop0: detected capacity change from 0 to 512
[  347.390392][T27119] veth2: entered promiscuous mode
[  347.395633][T27119] veth2: entered allmulticast mode
[  347.475349][T27124] loop1: detected capacity change from 0 to 128
[  347.588512][T27117] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.642473][T27117] ext4 filesystem being mounted at /223/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  347.662005][T27150] netlink: 'syz.1.4466': attribute type 11 has an invalid length.
[  347.772664][T27155] loop1: detected capacity change from 0 to 128
[  347.839057][T27160] lo speed is unknown, defaulting to 1000
[  347.982148][T24799] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.083458][T27188] loop5: detected capacity change from 0 to 2048
[  348.096323][T27188] EXT4-fs (loop5): failed to initialize system zone (-117)
[  348.105412][T27188] EXT4-fs (loop5): mount failed
[  348.222685][T27201] netlink: 'syz.5.4475': attribute type 1 has an invalid length.
[  348.259582][T27201] bond1: entered promiscuous mode
[  348.264745][T27201] bond1: entered allmulticast mode
[  348.275818][T27201] 8021q: adding VLAN 0 to HW filter on device bond1
[  348.291663][T27236] loop4: detected capacity change from 0 to 512
[  348.309961][T27234] erspan1: entered allmulticast mode
[  348.323783][T27168] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4470'.
[  348.335734][T27201] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4475'.
[  348.347209][T27234] bond1: (slave erspan1): making interface the new active one
[  348.354764][T27234] erspan1: entered promiscuous mode
[  348.366734][T27236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.386170][T27234] bond1: (slave erspan1): Enslaving as an active interface with an up link
[  348.408052][T27244] netlink: 'syz.5.4475': attribute type 3 has an invalid length.
[  348.415879][T27244] netlink: 'syz.5.4475': attribute type 3 has an invalid length.
[  348.443012][T27236] ext4 filesystem being mounted at /350/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  348.471933][T27244] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4475'.
[  348.488122][T27201] bond1 (unregistering): (slave erspan1): Releasing active interface
[  348.517863][T27201] erspan1: left promiscuous mode
[  348.538469][T27201] bond1 (unregistering): Released all slaves
[  348.566079][T27236] pim6reg1: entered promiscuous mode
[  348.571574][T27236] pim6reg1: entered allmulticast mode
[  348.652667][T20025] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.720342][T15165] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.769670][T27300] loop5: detected capacity change from 0 to 2048
[  348.827824][T27314] veth4: entered promiscuous mode
[  348.832949][T27314] veth4: entered allmulticast mode
[  348.851930][T27300] EXT4-fs (loop5): failed to initialize system zone (-117)
[  348.857093][T27327] veth6: entered promiscuous mode
[  348.864389][T27327] veth6: entered allmulticast mode
[  348.873977][T27300] EXT4-fs (loop5): mount failed
[  348.942387][T27350] netlink: 'syz.0.4491': attribute type 1 has an invalid length.
[  348.981139][T27350] bond1: entered promiscuous mode
[  348.986384][T27350] bond1: entered allmulticast mode
[  348.994476][T27350] 8021q: adding VLAN 0 to HW filter on device bond1
[  349.013047][T27350] netlink: 'syz.0.4491': attribute type 3 has an invalid length.
[  349.020965][T27350] netlink: 'syz.0.4491': attribute type 3 has an invalid length.
[  349.067767][T27350] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4491'.
[  349.186188][T27404] lo speed is unknown, defaulting to 1000
[  349.289993][T27430] loop1: detected capacity change from 0 to 2048
[  349.305695][   T29] kauditd_printk_skb: 756 callbacks suppressed
[  349.305728][   T29] audit: type=1326 audit(1768106365.569:50529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27400 comm="syz.0.4497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  349.307666][T27431] netlink: 'syz.0.4497': attribute type 13 has an invalid length.
[  349.311983][   T29] audit: type=1326 audit(1768106365.569:50530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27400 comm="syz.0.4497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  349.407883][T27427] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4498'.
[  349.419268][T27430] Alternate GPT is invalid, using primary GPT.
[  349.425774][T27430]  loop1: p2 p3 p7
[  349.453908][   T29] audit: type=1326 audit(1768106365.709:50531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27439 comm="syz.0.4501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  349.477915][   T29] audit: type=1326 audit(1768106365.719:50532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27439 comm="syz.0.4501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  349.501571][   T29] audit: type=1326 audit(1768106365.739:50533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27439 comm="syz.0.4501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  349.525952][   T29] audit: type=1326 audit(1768106365.739:50534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27439 comm="syz.0.4501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  349.549896][   T29] audit: type=1326 audit(1768106365.739:50535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27439 comm="syz.0.4501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  349.573700][   T29] audit: type=1326 audit(1768106365.779:50536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27439 comm="syz.0.4501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  349.597242][   T29] audit: type=1326 audit(1768106365.779:50537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27439 comm="syz.0.4501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  349.620931][   T29] audit: type=1326 audit(1768106365.779:50538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27439 comm="syz.0.4501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc557bf749 code=0x7ffc0000
[  349.655162][T27443] netlink: 'syz.0.4502': attribute type 1 has an invalid length.
[  349.678222][T27443] bond2: entered promiscuous mode
[  349.683411][T27443] bond2: entered allmulticast mode
[  349.689340][T27443] 8021q: adding VLAN 0 to HW filter on device bond2
[  349.705026][T27443] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4502'.
[  349.716930][T27443] bond2 (unregistering): Released all slaves
[  349.760528][T27511] netlink: 'syz.0.4502': attribute type 3 has an invalid length.
[  349.768637][T27511] netlink: 'syz.0.4502': attribute type 3 has an invalid length.
[  349.850452][T27513] netlink: 'syz.0.4503': attribute type 58 has an invalid length.
[  349.873898][T27513] lo speed is unknown, defaulting to 1000
[  350.268840][T27563] lo speed is unknown, defaulting to 1000
[  350.283044][T27571] loop4: detected capacity change from 0 to 128
[  350.388312][T27570] loop0: detected capacity change from 0 to 8192
[  350.534297][T27605] __nla_validate_parse: 2 callbacks suppressed
[  350.534360][T27605] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4518'.
[  350.635724][T27607] lo speed is unknown, defaulting to 1000
[  350.709856][T27629] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4522'.
[  350.745040][T27629] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4522'.
[  350.777976][T27629] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4522'.
[  350.886941][T27675] netlink: 464 bytes leftover after parsing attributes in process `syz.1.4529'.
[  350.910423][T27675] netlink: 52 bytes leftover after parsing attributes in process `syz.1.4529'.
[  350.945176][T27680] netlink: 'syz.3.4531': attribute type 11 has an invalid length.
[  351.009513][T27689] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  351.017969][T27616] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4517'.
[  351.022395][T27689] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  351.046480][T27689] EXT4-fs error (device loop5): ext4_lookup:1785: inode #15: comm syz.5.4533: inode has both inline data and extents flags
[  351.064455][T27689] EXT4-fs (loop5): Remounting filesystem read-only
[  351.076314][T27689] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4533'.
[  351.116690][T24799] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  351.264174][T27719] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4541'.
[  351.292710][T27721] netlink: 'syz.1.4542': attribute type 13 has an invalid length.
[  351.345432][T15848] page_pool_release_retry() stalled pool shutdown: id 111, 1 inflight 60 sec
[  351.608111][T27753] netlink: 'syz.0.4554': attribute type 11 has an invalid length.
[  351.698156][T27760] EXT4-fs (loop0): failed to initialize system zone (-117)
[  351.708904][T27760] EXT4-fs (loop0): mount failed
[  351.819261][T27775] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  351.837890][T27775] ext4 filesystem being mounted at /240/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  351.850417][T27775] EXT4-fs error (device loop0): ext4_lookup:1785: inode #15: comm syz.0.4560: inode has both inline data and extents flags
[  351.864293][T27775] EXT4-fs (loop0): Remounting filesystem read-only
[  351.874654][T27775] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4560'.
[  351.930270][T20025] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  352.233289][T27815] set_capacity_and_notify: 4 callbacks suppressed
[  352.233347][T27815] loop0: detected capacity change from 0 to 2048
[  352.252051][T27819] netlink: 'syz.1.4574': attribute type 1 has an invalid length.
[  352.264734][T27815] EXT4-fs (loop0): failed to initialize system zone (-117)
[  352.272229][T27815] EXT4-fs (loop0): mount failed
[  352.296510][T27819] bond1: entered promiscuous mode
[  352.301625][T27819] bond1: entered allmulticast mode
[  352.308867][T27819] 8021q: adding VLAN 0 to HW filter on device bond1
[  352.332235][T27819] netlink: 'syz.1.4574': attribute type 3 has an invalid length.
[  352.340137][T27819] netlink: 'syz.1.4574': attribute type 3 has an invalid length.
[  352.431255][T27874] loop1: detected capacity change from 0 to 512
[  352.447723][T27874] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  352.461133][T27874] ext4 filesystem being mounted at /378/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  352.482781][T27881] veth8: entered promiscuous mode
[  352.487990][T27881] veth8: entered allmulticast mode
[  352.501320][  T863] ==================================================================
[  352.509469][  T863] BUG: KCSAN: data-race in copy_process / free_pid
[  352.516090][  T863] 
[  352.518430][  T863] read-write to 0xffffffff86860008 of 4 bytes by task 27895 on cpu 0:
[  352.526597][  T863]  free_pid+0xb9/0x1d0
[  352.530690][  T863]  free_pids+0x7a/0xb0
[  352.534795][  T863]  release_task+0x9a7/0xb60
[  352.539347][  T863]  do_exit+0xd4d/0x1590
[  352.543534][  T863]  call_usermodehelper_exec_async+0x247/0x250
[  352.549632][  T863]  ret_from_fork+0x149/0x290
[  352.554252][  T863]  ret_from_fork_asm+0x1a/0x30
[  352.559066][  T863] 
[  352.561495][  T863] read to 0xffffffff86860008 of 4 bytes by task 863 on cpu 1:
[  352.568972][  T863]  copy_process+0x16d4/0x1ef0
[  352.573845][  T863]  kernel_clone+0x16c/0x5c0
[  352.578367][  T863]  user_mode_thread+0x7d/0xb0
[  352.583157][  T863]  call_usermodehelper_exec_work+0x41/0x160
[  352.589093][  T863]  process_scheduled_works+0x4ce/0x9d0
[  352.594592][  T863]  worker_thread+0x582/0x770
[  352.599212][  T863]  kthread+0x489/0x510
[  352.603306][  T863]  ret_from_fork+0x149/0x290
[  352.607918][  T863]  ret_from_fork_asm+0x1a/0x30
[  352.612702][  T863] 
[  352.615050][  T863] value changed: 0x80000144 -> 0x80000143
[  352.620779][  T863] 
[  352.623120][  T863] Reported by Kernel Concurrency Sanitizer on:
[  352.629289][  T863] CPU: 1 UID: 0 PID: 863 Comm: kworker/u8:8 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  352.640952][  T863] Tainted: [W]=WARN
[  352.644773][  T863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  352.654864][  T863] Workqueue: events_unbound call_usermodehelper_exec_work
[  352.662013][  T863] ==================================================================
[  352.766011][T13994] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.