last executing test programs:

11.579479604s ago: executing program 2 (id=363):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)

11.111470983s ago: executing program 2 (id=371):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x800000000006}, 0x18)
timer_gettime(0x0, &(0x7f00000001c0))

11.093376164s ago: executing program 2 (id=373):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'veth1_to_bond\x00', <r1=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r1, 0x2, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x39}}, 0x10)
close(0x3)

10.966565866s ago: executing program 2 (id=378):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x20c006, &(0x7f0000000480)={[{@debug}, {@mblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@discard}, {@grpquota}], [{@seclabel}]}, 0x1, 0x446, &(0x7f0000000d40)="$eJzs28tvG8UfAPDv2kn6/P1qqvLoAwgURMQjadJSeuACAokDSEhwKMeQpFWo26AmSLSKICBUjqgSd8QRib+AE1wQcELiCndUqUK5tMDFaOPdxHbttA5ONtSfj7TJzO44M1/vjj07kw2gbw2nP5KIvRHxa0Tsq2ebCwzXf91cXpz6c3lxKola7Y0/kpVyN5YXp/Ki+ev25JmBiNInSRxuU+/8pcvnJqvVmYtZfmzh/Ltj85cuPzN7fvLszNmZCxOnTp04Pv7cyYlnexJnGteNQx/MHTn4yltXX5s6ffXtH79O8vhb4uiR4fUOPl6r9bi6Yv2vIZ0MFNgQulKud9MYXOn/+6IcaydvX7z8caGNAzZVrVar3df58FINuIslUXQLgGLkX/Tp/W++bdHQY1u4/kL9BiiN+2a21Y8MRCkrM9hyf9tLwxFxeumvL9ItNmceAgCgybfp+OfpbPzXtPBTisZ5of9nayiViLgnIvZHxMmIOBAR90aslL0/Ih7osv7WRZJbxz+la13+ya6k47/ns7Wt5vFfPvqLSjni73y4XInB5MxsdeZY9p6MxOCOND++Th3fvfTLZ52ONY7/0i2tPx8LZu24NrCj+TXTkwuT/ybmRtc/ijg00C7+ZHUlIL0sDkbEoQ3WMfvkV0c6Hbt9/M2GGjM9WGeqfRnxRP38L0VL/Llk/fXJsZ1RnTk2ll8Vt/rp5yuvd6q/2/h7LT3/u9te/6vxV5LG9dr57uu48tunHe9pNnr9DyVvNu17f3Jh4eJ4xFDyar3RjfsnWspNrJVP4x852r7/74+1d+JwRKQX8YMR8VBEPJy1/ZGIeDQijq4T/w8vPvZO856ki/g3Vxr/dFfnfy0xFK172ifK577/pqnSSnQRf3r+T6ykRrI9d/L5dyft2tjVDAAAAP89pYjYG0lpdDVdKo2O1v+H/0DsLlXn5heeOjP33oXp+jMClRgs5TNd9fng+nzoeHZbn+cnWvLHs3njz8u7VvKjU3PV6aKDhz63p0P/T/1eLrp1wKbzvBb0L/0f+pf+D/1L/4f+1ab/7yqiHcDWa/f9/2EB7QC2Xkv/t+wHfcT9P/Qv/R/6l/4PfWl+V9z+Ifntmti5PZrRn4koFVd7PkNV+JtwFycK/mACAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADokX8CAAD//2Ts5lU=")
r0 = syz_clone3(&(0x7f0000000780)={0x1c3002480, 0x0, 0x0, 0x0, {0x2b}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000180)='sys_enter\x00'}, 0x10)
utimensat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0x0, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
ptrace(0x10, r2)
tkill(r0, 0xe)
ptrace$peeksig(0x4209, r0, &(0x7f0000000140), &(0x7f0000002200))
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
memfd_create(&(0x7f0000000380)='kfree\x00', 0x3)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r3, 0x0, 0xb}, 0x18)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r4, 0x80047210, &(0x7f00000001c0))
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@deltaction={0x3c, 0x18, 0x1, 0x70bd28, 0x25dfdbfe, {0xa}, [@TCA_ACT_TAB={0x28, 0x1, [{0x10, 0x80, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0x14, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}]}]}, 0x3c}}, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f00000000010000000000", 0x1b)
pwritev2(r1, &(0x7f0000000240)=[{}], 0x1, 0x7c00, 0x3000, 0x3)

10.085767893s ago: executing program 2 (id=394):
connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x100, 0x2, 0x10, {0x2, 0x0, @multicast2}}, 0x24)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
close(r2)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000200)={'veth0_to_bridge\x00', @random="e5db029ea53c"})
write$cgroup_devices(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="1e000300008c71ef28ff4b"], 0xffdd)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0xf3a, 0x0)
signalfd4(r3, &(0x7f00000001c0)={[0x9]}, 0x8, 0x800)
tee(r3, r6, 0x8f5, 0x100000000000000)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r6, <r7=>0xffffffffffffffff}, 0x4)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r8}, 0x4)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r9, 0x0, 0x4}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000940)=@base={0xb, 0x9, 0x2, 0xbf21, 0x1, 0xffffffffffffffff, 0xfffffffe, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000500)=@generic={&(0x7f00000002c0)='./bus\x00', r7}, 0x18)
write$cgroup_type(r6, &(0x7f0000000180), 0x9)
write(r4, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000003000000400000002200040095000000010000000000000000000000b6b0b5587faaa2ca4acd567169435f7fac133f3d5f0a39f77834488b23e6ba115b63112719fd27ffd9c2ebb3b55ac756ca6a678391d3ad47c8430521fb0c12f78229816631162cb3a00d6636ea514f69a18be00179584fcbee341f9f326e7123ecbb19f4d2ade1c5f2ce37581d065463902ec3066ed66c701db725d8ef40ef6fbdcd3569b5a299f9afa628ec1814f272074ce04536b11b4f9bf163366f5acfb56a949110"], &(0x7f0000000000)='GPL\x00', 0x4, 0xd, &(0x7f0000000040)=""/13, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x4006, &(0x7f0000000380)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@quota}, {@resuid}, {@lazytime}]}, 0x1, 0x443, &(0x7f0000001040)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x100, 0x2000000000000007}, 0x2202, 0xfffe, 0x0, 0x9, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000005}, 0x0, 0x7, 0xffffffffffffffff, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)

9.002335244s ago: executing program 2 (id=419):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x200000000000006}, 0x18)
r2 = socket(0x11, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'gre0\x00', <r4=>0x0})
bind$packet(r2, &(0x7f0000000180)={0x11, 0x0, r4}, 0x14)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r2, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="020108dd012918000e3580009f0001140000002f0600ac141414e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88"], 0xdd12}], 0x1}, 0x0)

8.946594125s ago: executing program 32 (id=419):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x200000000000006}, 0x18)
r2 = socket(0x11, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'gre0\x00', <r4=>0x0})
bind$packet(r2, &(0x7f0000000180)={0x11, 0x0, r4}, 0x14)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r2, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="020108dd012918000e3580009f0001140000002f0600ac141414e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88"], 0xdd12}], 0x1}, 0x0)

1.663977707s ago: executing program 3 (id=551):
socketpair$unix(0x1, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r3}, &(0x7f0000000240), &(0x7f0000000280)=r4}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0x30, 0x2c, 0xd2b, 0x70bd2b, 0x35dfdbfb, {0x0, 0x0, 0x0, r2, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}}, 0x24040084)

1.482723171s ago: executing program 3 (id=555):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0xfd, 0x2a9, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r0, 0xfffffffffffffffe, 0x29)
perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x6}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x8020000006}, 0x0, 0xffffffffffffffff, r0, 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021181500001e0a05010000000000000000070000000900020073797a31000000000900010073797a3000000000ec140380300000802c000180250001"], 0x159c}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001200)={0xffffffffffffffff, 0x0, 0xed, 0x1000, &(0x7f0000000000)="4b37b5b13ff5e5d9d4dfbc0aee19cd3933e34c41910dc3cc6a95d028f252df85f9756221004061b43315d39b7631f00a551324179de858e6882336db8cb42a0b83eb36688ddc194a8f0ed2687f7cabef046c7607412747193f21cb7513ebd723edf3e2c536cc3b69e86bfabe7a757b171fd20c848ce91ff427e00ea5dc50728bdebdb2eacb1ec3927d3568805342d28a5b2198eb4a7f91718afbcfe0ca904c8e61ddd7e5adacda0d50ab2e0e28d4a00d4eb2b4a0a69c52bdd4849f2de8f466fffb5bb2019b7c4dc15c928823bf679dbc0374809cca20d73b7776fb8cedc32f90a6573ed6dd65edee99de60de23", &(0x7f0000000100)=""/4096, 0x9b7, 0x0, 0x8, 0x91, &(0x7f0000001100)="a0d2c70055ecba1b", &(0x7f0000001140)="c60d437ecf2626856119a713f22d050e90fa4e85182adf21ce0b260c789581b836816c9c7b4d90eec9fb54c8566d3bab43335c3c1285fbfcd285a1535f8c37f485450175a80f13828544d594c6a63967f16e3c04cf5ab49fe75e9fdb1c17f00a7ba4adfa187e952b977e6e0603fe1a06b1d2f97b896502da9894242d9a9c894bed80bbbc6198c7b4467df8a81051945f3f", 0x4, 0x0, 0x8}, 0x50)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$RTC_UIE_ON(r2, 0x7003)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000001280)=[@in={0x2, 0x4e24, @rand_addr=0x64010101}], 0x10)
ioctl$RTC_WKALM_SET(r2, 0x4028700f, &(0x7f0000000240)={0x1, 0x1, {0xa, 0xfffffffd, 0x4, 0x4, 0x7, 0xfe3, 0x0, 0x151, 0xffffffffffffffff}})
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x7000001, 0x6e073, 0xffffffffffffffff, 0x0)

1.292027415s ago: executing program 4 (id=560):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d00000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0xf)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@aname={'aname', 0x3d, '\\]&!'}}]}})

1.228313735s ago: executing program 3 (id=561):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r1, 0x0, 0x44, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105eb953f86fbc6b204e076aa7a493e796123bbbd8e3b7e62d8fd097cf21d6d431a069ebc0aefd5fce80cc99fb38c771fa46e2c32a95fe99", 0x0, 0x86, 0x0, 0xffffffffffffff80, 0x0, &(0x7f0000000000)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x15)

1.227691306s ago: executing program 5 (id=562):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x9)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000000880)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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"/329, @ANYRES64], 0x8, 0x2eb, &(0x7f0000001a80)="$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")
prctl$PR_SET_NAME(0xf, &(0x7f0000000a40)='GPL\x00')
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r4, 0x0, 0x5}, 0x18)
sendfile(r3, 0xffffffffffffffff, 0x0, 0x1ff)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, &(0x7f0000000180)={&(0x7f0000000b00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [], {0x14}}, 0x28}}, 0x0)

1.099481438s ago: executing program 3 (id=563):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)={0x110, 0x28, 0x1, 0x4, 0x25dfdbf8, "", [@nested={0xff, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac08}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2d}}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be"]}]}, 0x110}], 0x1, 0x0, 0x0, 0x1}, 0x0)

1.096999578s ago: executing program 4 (id=564):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="200000003e000701fcf7fffffedbdf25017c00000c0004"], 0x20}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000) (fail_nth: 1)

867.018623ms ago: executing program 3 (id=566):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r1 = perf_event_open$cgroup(&(0x7f0000000540)={0x4, 0x80, 0x5, 0x57, 0x0, 0xf4, 0x0, 0x8, 0xbcb, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x63, 0x2, @perf_config_ext={0x7, 0x64}, 0x9240, 0x3, 0x4, 0xa, 0x80000001, 0x3, 0x2, 0x0, 0x1ff, 0x0, 0x9}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f00000004c0)='kfree\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001340)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x6}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r4, 0x0, 0xfffffffffffffffd}, 0x18)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8042, &(0x7f0000000500), 0x1, 0x4f8, &(0x7f0000001900)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000006c0), 0x4)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000000400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

777.032894ms ago: executing program 5 (id=567):
open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x0, 0x0})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r6}, 0x9)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000080)={0x0, 0x55, &(0x7f00000001c0)=[{&(0x7f00000000c0)="d8000000180081054e81f782db4cb90402200800fe00fe05e8fe55a10a0015000600142603600e1208000f007f370401a8001600200001401c00010003580461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090014d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00350db798262f3d40fad95667e006dcdf63951f215c3b8b6ad2cba0e2375ee535e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6f4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000540)='kfree\x00', r4}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000004700))
io_uring_enter(0xffffffffffffffff, 0x2ded, 0x4000, 0x0, 0x0, 0x0)

719.357246ms ago: executing program 4 (id=568):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000ed75d8461881d1ffe700007b8af88ace163507e28a0b000000300000020000f8ffffffb70300000805000000000000000000008500"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x3b, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
unlinkat(0xffffffffffffff9c, 0x0, 0x0)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd)
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r3, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r3, &(0x7f0000000780)=[{{&(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

694.307906ms ago: executing program 4 (id=569):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
r1 = dup(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r2, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$nl_route(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)=@ipv4_getrule={0x1c, 0x22, 0x20, 0x70bd2a, 0x25dfdbfd, {0x2, 0x80, 0x80, 0x9, 0xf9, 0x0, 0x0, 0x0, 0x8}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20044008}, 0x801)
connect$unix(r1, &(0x7f0000002200)=@file={0x0, './file0\x00'}, 0x6e)

608.186898ms ago: executing program 3 (id=570):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000100)=0x3ff, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0x41b4, 0x4)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8000800}, 0x1c, 0x0, 0x0, 0x0, 0x43}}], 0x1, 0x0)
recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

584.480118ms ago: executing program 4 (id=571):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x800000000006}, 0x18)
timer_gettime(0x0, &(0x7f00000001c0))

481.33114ms ago: executing program 4 (id=573):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mkdir(0x0, 0x0)
lsetxattr$security_selinux(&(0x7f0000000400)='./file0\x00', &(0x7f00000003c0), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x22, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x5)
getsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000200)=""/60, &(0x7f0000000300)=0x3c)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x244, &(0x7f0000000400)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101842, 0x11)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000005c0))
pwritev2(r2, &(0x7f0000000cc0)=[{&(0x7f0000000240)=';', 0xffffffbc}], 0x1, 0xfff, 0xc, 0x4)
ioctl$EXT4_IOC_MIGRATE(r2, 0x6609)

431.441511ms ago: executing program 1 (id=574):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r1, 0x0, 0x44, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105eb953f86fbc6b204e076aa7a493e796123bbbd8e3b7e62d8fd097cf21d6d431a069ebc0aefd5fce80cc99fb38c771fa46e2c32a95fe99", 0x0, 0x86, 0x0, 0xffffffffffffff80, 0x0, &(0x7f0000000000)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x15)

404.056022ms ago: executing program 1 (id=575):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d00000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0xf)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@aname={'aname', 0x3d, '\\]&!'}}]}})

353.946533ms ago: executing program 5 (id=576):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)={0x110, 0x28, 0x1, 0x4, 0x25dfdbf8, "", [@nested={0xff, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac08}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2d}}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be"]}]}, 0x110}], 0x1, 0x0, 0x0, 0x1}, 0x0)

328.266764ms ago: executing program 5 (id=587):
openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40086610, &(0x7f0000000140)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
r2 = socket$tipc(0x1e, 0x5, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x28, 0x8, 0x0, 0xfffff034}, {0x80000006, 0x0, 0x9, 0x3ff}]}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bind$tipc(r2, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r2, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, 0x0}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
connect$phonet_pipe(r1, &(0x7f0000000540)={0x23, 0x8, 0x8, 0x6}, 0x10)
r7 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r7, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0xfffffffffffffffe)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040), 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESDEC, @ANYBLOB=',wfdno=', @ANYRESHEX=r7])

304.276334ms ago: executing program 1 (id=578):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@aname={'aname', 0x3d, '\\]&!'}}]}})

243.935415ms ago: executing program 0 (id=579):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r1, 0x0, 0x44, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105eb953f86fbc6b204e076aa7a493e796123bbbd8e3b7e62d8fd097cf21d6d431a069ebc0aefd5fce80cc99fb38c771fa46e2c32a95fe99", 0x0, 0x86, 0x0, 0xffffffffffffff80, 0x0, &(0x7f0000000000)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x15)

243.254205ms ago: executing program 0 (id=580):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94) (async)
syz_emit_ethernet(0xbe, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaa23"], 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x18) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./bus\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="726f6469722c726f6469722c726f6469722c73686f72746e616d653d77696e39352c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f775efb0c8a6e695f786c6174653d312c6e6f636173652c726f6469722c726f646959d799c470b6723d312c00000000000000"], 0x1, 0x356, &(0x7f0000000200)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
write$UHID_INPUT(r4, &(0x7f0000003040)={0x8, {"488085fddf7e1378d3ad4adb6e165913c1f7ae15c9b4ed75d7413838ff0d9381cead5adbe8228d9ba29fe815a6f64afca949ca64011b9d8c93b4272d6428962fe017b1cb68796b7b800b25eb3013496be2e3e973309e6842f2df0e5309a233d16ced2bc26cd6f7db616268621fe160c1644afc707a535571e0a936469f5dd6d60c6962109cd8de336fc0938bcd412788f01c1d84e33d5eaa3e140944ddefde0366395044cf0f095786b3f1fd27c0eaf2d0df657acf52c9220297bc28779a85ac06d4f14c31cbfced5519b61ddf599c08c7f10e385e4a6637e44ce117631e6d561c5118ad8e21bba948e572e54c67516e0f2a504f05f23e00d9b04160dac7e52d6caacf617d94e200e9c97771d56fe7b2ad6b69247904463f36b11e74b41ea9e63e77ded5af1406fe0f01f2350e756fd41c94f9dee22f611720853d7f8fd755903f1c3e044bd704bd4255c570cc0c82cacec7b9b7720cd6d5b2cd96e583ff1ddb0ad39155daa2f29a4f61298b44ea802bbac9b1f552cf0279f52ff200178468b94b293f7052817d89adb9130a3eaec5ceeeb386a31a7d9807f069ad07e3488e99a0b7f7f92fc2a63226175432a93ae4dc820e702d21bdec10a773c7b3de3f0ec4b5f8af60a159aaa4231ed4e79883acf5d2eed3a0fd3445d46d7fbbd47f2c610d96d6435293b103db15b8e7383e63e9d672410f5248183d4e608e7aee4d9dbfd040fb3fae39faec3cc0f5410d0d479bc1b7addd255ba502a52fa858eb6574530fd16c01e1138b19258e1c40b9a29a8672f418159f663bc8fe634e3a0d23dde1ced471cfb1decc1a9464667771b795229b1906651e9e5e4402c7e75182b1432acb4b54c499358585aa83fca804fbdd12dfd3b9e95b0ac718cadb879a2898d86c4ed914a59918df6ba519de4599f662811202158e418cef0d103ed4e77833d4dea6e59f7fef1c86f818121655dd1b2cb3717c892a289797049911356b5dd5dc0c50caadd0dd0318994d730fd6e6953e01730fb2682ab3f7ca8b4d596574456f59b95f34ff6f79db68b495010b8816a7b55229b35a2790f25c42ef1efcc5271c66500fc285de61516fc401518ba1ae388f90b0a5760e01031ceed37d1eb8a792f4a196a9fa0ff1579358bfe5c63744027d1a01e0a4602c79c2fe727034a4d810f0a2c30dc5a4c122e510e4d6348774754bf1f924c1d5a31dccf345a6c752389cc38e46e968e3b2815e2ecc3e5827f198f5d836b5783e9d7cc5bc5ba1715d23a4c35157b28e997010c627cbcebda89d08ac88e3d2f387c87af78b2a565dd5704bf3c12e4019d91890ad4f660345b384b59fad6d9f56f1fcf35babe5a9fbd8dd3908be450edf05ca8a3154fb3ac1af485508c61a7ba322ac06928e7d660fee6bfef74c9c4f22bbab318077446163a3230a3d486ce6d71aed12e2581e4208eed1a540560921ac89e9372482594351a5ff0cf9e95e80f0a69c4d621638c9056ae0bdfc44895f061767aba8400da865b73b5488c690694af744372c00d87bba4664a60f13f1453337113055d7b659a87208c1e663e4d35f0ebcfe70459f5ec5812434468cec38d3fbcf90598de986b3d49ad45e7b3b230fc389b5278ed6242abe9c44a8c74438968cc9b7a253d89c5b14f7a917b86a6d51f5d5380f2a7606dbe1867fd781fab284d153e20f5bf1a2c8156b93e60dc8945eb8385d937537b785f6f6af81ea0131398c77819ddea78eadf6b6f019db772e69e9cde3540ddc95625987b4a4e1dbbf15bc0217abac6cc3ff0650ed11fa612b90afaab842be4c2bd9967702b023e8ecd5f4a0e62af56f7320241a8516bcdf344a4421eed035b8c5a126820c5dc3962f5df4bf369bd6260eb09aa8e1310bf6f28aba0e3236f699721daa26950de7fa8fd8c3d2adebc101e304d0ed1af839c74b6cc42a6d7244f6b31ed08f6f12f62569b2c0602cc371962bff74b9b3c5f6326247d4ffec7f2d0a073e5a678e76f4243533001b1c0de6739c5c6ec0195fa9a8e898c2068bb614c40c403324e84cdbc530121217ba49f300aa8d5056d170d0a6bc8827ee20d55401b9f401b12e212cf630781139978b5fb38fdf768fec87b79f7a70d6083c3df98019ebd09b7941708e06c8d9fa930a1fdb993e0061343c87b4cf47dd36f9a3d603ca986f5144af403b7b04a93f5808a8c192df5e4c17af1ec23eddd1e7fc91109e6a4cfe5e23435bcabf3915ce5242cb6f7974e97c8ad3773e3a510afa52c4193c36fd1b99a02ece5b19ad35eb8fa97b57fd1641b463de79cdd2aac5d5b4060a040ad1d5752d70015b74d556fb4ef0cc8747591edc8858707616104f0ec342fb3a9b95df31b6f84e56387aae80a72d8dd670be7aaeef54065d6e2d7837481ce5622ee3c115d02d50efdb20aaf25b636d6d6c7e49f50a4b30ae243ecf1187ffe851c52bb1849c5e5c0979b758b747aebfdab58d8fd60faa5d5005f401c661256183dd4e7cba38b4ccf03506398eab901595dc2de27ab231abdddffc9d120abd8025b77ac47f39b6373a38a09bc045559578ccdf0402385177d499333d06d2cd3f604689d50dcd01b04ffbcb545385da389e4b6102ee77febb8a34a906f822601e61d2d3fc9e206caf3753f65422a5ff31dc3b3c4d09aa9a90f9ebc858ee2e4df6a730948e436586c665a3c64aab00aa757d252eec5b8bea5035a5b9f644cb84a991286edc2a394cef9fd40ad085aa99680aea363dc163c2ef40e0f289e0b79dc600f31ae510bbd74f963632ff25230a1ec866fed0db0d0af59c5b9f4a18659f5a218c3d0db80700719a61e59efbd5f996145139e5654a9290bf504eb7453775b8c6190ff51d4c04ce9384060f1dd34799fee04c0f951ae15cb589f80dc544c05421d60f51cbc78df7dceff213575bfebe2bb307d196ef0a5cf3c2608fbb969a574e6dce9132246447a84cab6dd4923281cf40bc19c29585a02bc0d2d491907e5b528a1cfc7b2fe88dc2520ea49903423cb7a0d23530daa7217e7f312d4ec67c02fc74ab8d91b8ead50bfe9508b0f7d70e88868ee1a5f38349054374ae463d1148e0ca238c0f9fe7b40f6fba87498697f3220612ea66feb18a29f1df04234ac3d69e0706d0deef321d09ee16de188a32f4c41635cf48ee35a42140fc08b42c2e0e289a3c73fd4b0e656a72b29b99093127a17aaa199610787787abb0f4613dd03332a9306b9b5e98e9c839ffce5e72c44b288593bee47253613dc0fc3e583ab9aac7e1a161dfc36bd038d533eb6829b22dc1a01f055c16f83c1b1abe049b5744508456658c6df44c13d6ab1a18d76a55740cdcfca4a1dd81b54d9c4e71cef9f4b55f1ebc7751766175d631f9607f22a613377f6d96afaddbc66cbeef20ae578468f33265516ee711e2591e1af272a35bf5cedc78aec6e330bf6f3f3b9cdb7d373754125c9caea6a4d344d098c7332175b09441cc11040e5b71e9b975b2aaaaa5f8c5f502b00ad3ade9de204602aa227c9f11da55107b79802c09d246050c6580d92559a47935cfb59b47e88aa8095ea1ac34578697ffe89c440a2369f6661db2c24f1056d553e200184b927b359efba5db1e69e7f2cf5e4dd9c9bbc3e085fc38c43f436aa47abcc1e9986fc0226262588110c5b27c6fe9b8072cd8204c500883d3b9feaed80d5d87929d01b9bad995ed58a1be3ccad600840c6424625f4f4c221c8e1cd11af1a5ac153954ac6b441692f296ac2d529233d317fecf3fbfa53f77c8ea47d1385e3ca4b8b55fd2467cac15af1bfa04fb41784305a4b9aed6880cfba9629d6dabd22b2bd90c1aad0f2e0dff0777112b1e313447cf9417a52a58b17cc73ab03d4841ec9b1dc3f75d0fb5ece65c99982b338bb2f42b68104d94c826247814bd68e7c9664e8b2a9fdaf7fde4730960b43a496cb818badfbc97d1e51aa7817657e49536e69cacb3c4abb27dfe10d5c962fabdd3056d290a2b969e7f61d144e22539c5e2027b57c8e099db6ab8f0fdda7412b393af60e3299478744e9071801c4c39b0c87d4f237ade73b955812f254e641844e985d40f3e4df51bf7a9c81f02d22ad8296fe94d4664f3c0d113974ba222dab68c4407e9d5359205a5fec059d4370e0d15fd040ced32baa7e8586d38680a4c2e4e5679c0d374636e9dc0fd9a06808671f08e8c19b0bed18540de8107855f410f8954e078755a8c7b0822c25e2534887c9593aa1e008e78244cfec5b347a847ecf61cb207dcb2170b663a54d98ffeea991a9d944e4a8302bf37231bf3558c6b2fcaf925becb663bb574341bc81bbc50e9f0108c5d8a7783caf25bcb3bc24368e8a4915785652877555d22f7d6cbcb12049180ee4c49502d41c0fb00e31f3835b53e622e85290ee5a641eb9215567fed4782484ba8ccb43d81d3ef3ca5d8a2e3389864c15946e3d5dad607447f35a5396c27e99e20a1b98393169d85e788e9c4f9367649b308094479bc0ad8d68f0dc655724e2d9f599557f567fe7fd11f87b37df7ce0530e40d7e0ab06c2b273716e2598bd6e816c18c2e3c038b199e58424a5d72759af13e121e21d263fa0f24577a32b4356919cc22c5d1929b15590a53861aaf68aaa9ed404d1e64c3c6b0fa19e0a5299bd46867aff993b87ce96fd493fa2b125ea23907f9598acc33cd7e90c2383d5af5d232d979766ac2743c93d947db811d38df20742fa1db7c6f2306ec008ca9d53faf1a7cc2372d42437f906ef6ff9db785ac575c97e4f568e57414a0881ffe1b8dee59240305e28ab5f4f2c990c959009b022a656386229c7a71b3fcbc381a1f3511751ef19653d8e7dd0de12f630c719413a84b385802f5e8e2680cc2afa7fbb1cd1193a1e5af32ad07b24ba1c05904d3325634d10aa685d97f9c1d58377cfa46f17f0f57c7d48ce0917a8b4f5bccdf60e52764b7a826e6ccab1b70821a74cc5cc2e15532d3ef346aaf9c31fe0e0776bb1e3f4f5f276bcf53f5ea9018609b18b47497dba8e73676d2fc2fba47472ffba25ba7ddca1e9754b516eff05a05eaba9e7752f8d97f99684e3a53ded2d2c1913a6e488c65f57f8d85d261c762c37015c756e0aeed54edda41236bae33ed83c688478bcd94ce9e67971c0f8e588f1a3a4cd3f7da5e571c1984d9c9a10bb7eaf8414cbabf5fb97a17a67d10ae1a7ab96a8df88da1e82e797e67b534f765a5dcac76bb769d9547f375cfbea8d9f434f48d60e05df8797919fef5cb01a04177ed092a37f71f7948279bc4c35e3239e943a1507cff0b7152dd95c27e573e0191cfe1bc9f3862e5329ddcd160c61fc5bb82b57d8086e1e74abfc36bb43404357c50eb150fcaea9aac90fa0c413ea9f8538055a45b77d5a7548f6a4f2414714495576a1de459a55ab298a2a2fa33459da0d205e4b91d340c0721226e546f323bb878605590b66516fa51fd635e5eaa580486f6fb543b6b5236871aa3dedcb44e7d73d9bf704420fc0bb9b1a0f21e848ed9161e9bf1ae3bc628861b5007f0a38884a178dc85dbf034e9234fe603698cda4811dfcb73253335ca7cee533957578a9b97f149ae6dbd43c4aae8a16da135830f7a1c5b913838d5c28936f45f2d9ed991ec7a3ab83df4dd6fe2ff720a6b8abf40927bf8835bfa25effb92eadea47ae1629193ee5707767b13771cb105f231be2af8380a85b9de42f682d22d17c926ccbe39ea3fa7a5d3c0f6b3dc7802b927a36cd04ade3e02bf8ce06a52585388fb8f49df4dda68e9eb426da9c0909d5b9cf4b16c2e3f78331c8683a1698033ea0b1ed4dd33edeecd89c4f14caf84d52336e500", 0x1000}}, 0xff49)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r4, 0x0) (async)
open(&(0x7f0000000340)='./bus\x00', 0x14927e, 0x102) (async)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_WOL_GET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00J@', @ANYRES16=r5, @ANYBLOB="01002abd7000000000001b0000001800018014000200626f6e645f736c6176655f3000000000"], 0x2c}}, 0x0) (async)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r6, 0x11c, 0x3, &(0x7f0000000280)=""/128, &(0x7f0000000080)=0x80) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffe7e}, 0x94) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="070000000400000008000000d9"], 0x50) (async)
r9 = syz_io_uring_setup(0x546f, &(0x7f0000000300)={0x0, 0x1560, 0x10000, 0x3, 0x39f}, &(0x7f0000000380), &(0x7f00000003c0))
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r9, 0x18, &(0x7f0000000400)={0x7, r7, 0x32, {0x3c, 0x45f}, 0x2}, 0x1)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5800f20002ef1106"], 0x58}, 0x1, 0x0, 0x0, 0x4001}, 0x0) (async)
sendmsg$nl_route(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000100000000000200012800b000100697036746e6c000010000280050009000400000004001300080004"], 0x48}, 0x1, 0x0, 0x0, 0x20040001}, 0x8000) (async)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000001000080000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b703000000000000850000001b000000b700000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r11}, 0x18)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10) (async)
r12 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r12, 0xc0105512, &(0x7f0000000200))

228.805815ms ago: executing program 1 (id=581):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
r1 = dup(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r2, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$nl_route(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)=@ipv4_getrule={0x1c, 0x22, 0x20, 0x70bd2a, 0x25dfdbfd, {0x2, 0x80, 0x80, 0x9, 0xf9, 0x0, 0x0, 0x0, 0x8}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20044008}, 0x801)
connect$unix(r1, &(0x7f0000002200)=@file={0x0, './file0\x00'}, 0x6e)

187.285966ms ago: executing program 0 (id=582):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r1 = perf_event_open$cgroup(&(0x7f0000000540)={0x4, 0x80, 0x5, 0x57, 0x0, 0xf4, 0x0, 0x8, 0xbcb, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x63, 0x2, @perf_config_ext={0x7, 0x64}, 0x9240, 0x3, 0x4, 0xa, 0x80000001, 0x3, 0x2, 0x0, 0x1ff, 0x0, 0x9}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f00000004c0)='kfree\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001340)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x6}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r4, 0x0, 0xfffffffffffffffd}, 0x18)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8042, &(0x7f0000000500), 0x1, 0x4f8, &(0x7f0000001900)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000006c0), 0x4)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000000400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

179.155896ms ago: executing program 1 (id=583):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x800000000006}, 0x18)
timer_gettime(0x0, &(0x7f00000001c0))

137.673277ms ago: executing program 0 (id=584):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@multicast1, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x4f}}, {{@in6=@mcast2, 0x404d3, 0x2b}, 0x0, @in=@empty}}, 0xe4)

114.950348ms ago: executing program 1 (id=585):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0)
mlockall(0x3)

113.984977ms ago: executing program 5 (id=586):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r1, 0x0, 0x44, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105eb953f86fbc6b204e076aa7a493e796123bbbd8e3b7e62d8fd097cf21d6d431a069ebc0aefd5fce80cc99fb38c771fa46e2c32a95fe99", 0x0, 0x86, 0x0, 0xffffffffffffff80, 0x0, &(0x7f0000000000)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x15)

27.504509ms ago: executing program 0 (id=588):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)={0x38, 0x28, 0x1, 0x4, 0x25dfdbf8, "", [@nested={0x28, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac08}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2d}}}, @typed={0x4, 0xe9}]}]}, 0x38}], 0x1, 0x0, 0x0, 0x1}, 0x0)

26.998999ms ago: executing program 5 (id=589):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x6, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x18)
r3 = socket$pptp(0x18, 0x1, 0x2)
r4 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
io_uring_setup(0x5b54, &(0x7f0000000040)={0x0, 0x7707, 0x80, 0x0, 0x2b2})
ioctl$MON_IOCX_MFETCH(r4, 0xc0109207, &(0x7f0000000c40)={0x0, 0xfe72})
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00')
fchdir(r5)
ioctl$USBDEVFS_CONTROL(r5, 0xc0185500, &(0x7f0000000240)={0x0, 0xf, 0x4, 0x39, 0xb8, 0x5, &(0x7f00000002c0)="241a8bf6ca5ef143482a5f79a21ba16c0a8a4e88421c7c513e5c399c4d8b00b54d5ed7be72b782ebc5972cfb0ed0d8f0a1fc79f2081758315a219e4c0e0632fb2f83dd2579d3b6def6bb7a568df84f8540e177a209323ff0f2adae422584d63ccb63d1b2502d2e9b79ae6e0f608b45ee6ca473cb04944509a5347746da8bf790e96a56e58b2389c06f1dd117495de1543dcde5673ab121bb4939374acd42e57ea968c482a973a9dac05ed09099ffb8e687d0d434685bb862"})
close_range(r3, 0xffffffffffffffff, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x20, 0x1, 0x1, 0x101, 0x0, 0x0, {0xa}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0xcc}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x0)

0s ago: executing program 0 (id=590):
openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40086610, &(0x7f0000000140)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
r2 = socket$tipc(0x1e, 0x5, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x28, 0x8, 0x0, 0xfffff034}, {0x80000006, 0x0, 0x9, 0x3ff}]}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bind$tipc(r2, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r2, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, 0x0}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
connect$phonet_pipe(r1, &(0x7f0000000540)={0x23, 0x8, 0x8, 0x6}, 0x10)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0xfffffffffffffffe)
openat$selinux_member(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r7 = socket$unix(0x1, 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040), 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESDEC=r7, @ANYBLOB=',wfdno=', @ANYRESHEX])

kernel console output (not intermixed with test programs):

filesystem permissive=1
[   31.184604][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_1
[   31.189923][   T29] audit: type=1400 audit(1757044708.482:88): avc:  denied  { mounton } for  pid=3302 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   31.217255][   T29] audit: type=1400 audit(1757044708.482:89): avc:  denied  { mount } for  pid=3302 comm="syz-executor" name="/" dev="gadgetfs" ino=3700 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   31.222486][ T3312] veth0_macvtap: entered promiscuous mode
[   31.246398][ T3302] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   31.261300][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.270315][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.271909][   T29] audit: type=1400 audit(1757044708.772:90): avc:  denied  { read write } for  pid=3302 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   31.295113][ T3311] veth0_macvtap: entered promiscuous mode
[   31.324774][ T3312] veth1_macvtap: entered promiscuous mode
[   31.332143][ T1435] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.353043][ T1435] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.364976][ T3311] veth1_macvtap: entered promiscuous mode
[   31.384008][ T1435] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.411044][ T3312] batman_adv: batadv0: Interface activated: batadv_slave_0
[   31.431787][ T1435] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.443416][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_0
[   31.451567][ T1435] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.465688][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_1
[   31.474189][ T1435] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.493357][ T3312] batman_adv: batadv0: Interface activated: batadv_slave_1
[   31.538572][ T1435] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.568195][ T1435] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.603879][ T1435] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.626430][ T1435] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.654189][ T1435] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.668676][    C0] hrtimer: interrupt took 58234 ns
[   31.761058][ T1435] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.781778][ T1435] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.801359][ T3509] netlink: 12 bytes leftover after parsing attributes in process `syz.4.14'.
[   31.827948][ T1435] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.839542][ T3502] loop1: detected capacity change from 0 to 512
[   31.840083][ T3516] loop0: detected capacity change from 0 to 128
[   31.848150][ T3515] loop3: detected capacity change from 0 to 2048
[   31.870263][ T3502] =======================================================
[   31.870263][ T3502] WARNING: The mand mount option has been deprecated and
[   31.870263][ T3502]          and is ignored by this kernel. Remove the mand
[   31.870263][ T3502]          option from the mount to silence this warning.
[   31.870263][ T3502] =======================================================
[   31.873661][ T3520] netlink: 36 bytes leftover after parsing attributes in process `syz.2.18'.
[   31.873687][ T3520] netlink: 36 bytes leftover after parsing attributes in process `syz.2.18'.
[   31.981705][ T3521] netlink: 24 bytes leftover after parsing attributes in process `syz.2.18'.
[   32.035723][ T3515] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   32.052114][ T3502] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   32.082273][ T3502] ext4 filesystem being mounted at /3/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   32.088791][ T3515] EXT4-fs error (device loop3): ext4_free_inode:354: comm +}[@: bit already cleared for inode 15
[   32.157822][ T3502] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.11: corrupted inode contents
[   32.186178][ T3502] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.11: mark_inode_dirty error
[   32.261328][ T3502] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.11: corrupted inode contents
[   32.275414][ T3502] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.11: mark_inode_dirty error
[   32.291591][ T3540] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   32.302402][ T3540] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   32.343344][ T3540] loop4: detected capacity change from 0 to 128
[   32.368436][ T3540] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   32.411498][ T3563] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3563 comm=syz.0.22
[   32.443141][ T3540] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   32.453527][ T3502] syz.1.11 (3502) used greatest stack depth: 10888 bytes left
[   32.470663][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.494697][ T3563] netlink: 12 bytes leftover after parsing attributes in process `syz.0.22'.
[   32.700024][ T3515] kexec: Could not allocate control_code_buffer
[   32.743114][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.824880][ T3598] netlink: 8 bytes leftover after parsing attributes in process `syz.1.29'.
[   33.036981][ T3312] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   33.086735][ T3620] SELinux: failed to load policy
[   33.170860][ T3625] loop2: detected capacity change from 0 to 2048
[   33.196982][ T3625] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   33.213123][ T3625] EXT4-fs error (device loop2): ext4_free_inode:354: comm +}[@: bit already cleared for inode 15
[   33.247114][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.278934][ T3631] loop2: detected capacity change from 0 to 128
[   33.292510][ T3631] netlink: 4 bytes leftover after parsing attributes in process `GPL'.
[   33.308701][ T3631] GPL: attempt to access beyond end of device
[   33.308701][ T3631] loop2: rw=2049, sector=161, nr_sectors = 5 limit=128
[   33.325111][ T3631] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=3631 comm=GPL
[   33.337042][ T3631] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=3631 comm=GPL
[   33.364629][   T51] kworker/u8:3: attempt to access beyond end of device
[   33.364629][   T51] loop2: rw=1, sector=145, nr_sectors = 16 limit=128
[   33.488580][ T3653] loop4: detected capacity change from 0 to 512
[   33.503829][ T3655] syz.2.49 uses obsolete (PF_INET,SOCK_PACKET)
[   33.506419][ T3653] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.48: invalid block
[   33.523458][ T3653] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.48: invalid indirect mapped block 4294967295 (level 1)
[   33.544782][ T3653] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.48: invalid indirect mapped block 4294967295 (level 1)
[   33.559491][ T3653] EXT4-fs (loop4): 2 truncates cleaned up
[   33.565848][ T3653] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.586823][ T3653] netlink: 16 bytes leftover after parsing attributes in process `syz.4.48'.
[   33.603187][ T3655] loop2: detected capacity change from 0 to 1024
[   33.617468][ T3655] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   33.617701][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.628453][ T3655] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   33.662714][ T3655] JBD2: no valid journal superblock found
[   33.668472][ T3655] EXT4-fs (loop2): Could not load journal inode
[   33.698691][ T3659] loop4: detected capacity change from 0 to 512
[   33.706193][ T3659] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   33.719279][ T3659] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   33.745409][ T3659] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.50: bg 0: block 4: invalid block bitmap
[   33.758675][ T3659] EXT4-fs (loop4): Remounting filesystem read-only
[   33.765414][ T3659] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   33.778615][ T3659] EXT4-fs (loop4): 1 truncate cleaned up
[   33.784905][ T3659] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.800133][ T3659] syz.4.50 (3659) used greatest stack depth: 10632 bytes left
[   33.865348][ T3671] netlink: 8 bytes leftover after parsing attributes in process `syz.3.56'.
[   33.871868][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.905383][ T3673] loop0: detected capacity change from 0 to 512
[   33.918171][ T3673] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   33.928283][ T3679] netlink: 60 bytes leftover after parsing attributes in process `syz.4.55'.
[   33.928627][ T3676] loop2: detected capacity change from 0 to 512
[   33.938671][ T3680] loop3: detected capacity change from 0 to 128
[   33.951604][ T3673] EXT4-fs (loop0): 1 truncate cleaned up
[   33.956871][ T3675] loop1: detected capacity change from 0 to 1024
[   33.957671][ T3673] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   33.983612][ T3675] EXT4-fs: Ignoring removed orlov option
[   33.997720][ T3676] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.021064][ T3676] ext4 filesystem being mounted at /16/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   34.023797][ T3680] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   34.064247][ T3680] System zones: 1-3, 19-19, 35-36
[   34.071127][ T3680] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   34.076399][ T3676] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.53: corrupted inode contents
[   34.098144][ T3676] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.53: mark_inode_dirty error
[   34.101222][ T3675] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.121277][ T3680] ext4 filesystem being mounted at /9/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   34.182828][ T3676] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.53: corrupted inode contents
[   34.183563][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.284375][ T3708] loop0: detected capacity change from 0 to 1024
[   34.292026][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.303967][ T3302] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   34.328475][ T3708] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.62: Failed to acquire dquot type 0
[   34.344227][ T3708] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   34.359488][ T3708] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.62: corrupted inode contents
[   34.397516][ T3716] bridge1: entered allmulticast mode
[   34.416224][ T3708] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #13: comm syz.0.62: mark_inode_dirty error
[   34.428869][ T3708] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.62: corrupted inode contents
[   34.434783][ T3714] loop3: detected capacity change from 0 to 512
[   34.443916][ T3708] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #13: comm syz.0.62: mark_inode_dirty error
[   34.459280][ T3708] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.62: corrupted inode contents
[   34.481234][ T3708] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   34.493211][ T3708] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.62: corrupted inode contents
[   34.508600][ T3708] EXT4-fs error (device loop0): ext4_truncate:4666: inode #13: comm syz.0.62: mark_inode_dirty error
[   34.519913][ T3708] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   34.524911][ T3714] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.544632][ T3714] ext4 filesystem being mounted at /10/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   34.555752][ T3708] EXT4-fs (loop0): 1 truncate cleaned up
[   34.563825][ T3708] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.583142][ T3714] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.66: corrupted inode contents
[   34.602283][ T3714] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #2: comm syz.3.66: mark_inode_dirty error
[   34.658968][ T3714] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.66: corrupted inode contents
[   34.682881][ T3714] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.66: mark_inode_dirty error
[   34.713326][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.863806][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.925348][ T3740] loop1: detected capacity change from 0 to 2048
[   34.959225][ T3740] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.041260][ T3740] EXT4-fs error (device loop1): ext4_free_inode:354: comm +}[@: bit already cleared for inode 15
[   35.133166][ T3752] FAULT_INJECTION: forcing a failure.
[   35.133166][ T3752] name failslab, interval 1, probability 0, space 0, times 0
[   35.145885][ T3752] CPU: 0 UID: 0 PID: 3752 Comm: syz.4.78 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   35.145917][ T3752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   35.145932][ T3752] Call Trace:
[   35.145940][ T3752]  <TASK>
[   35.145949][ T3752]  __dump_stack+0x1d/0x30
[   35.145969][ T3752]  dump_stack_lvl+0xe8/0x140
[   35.145986][ T3752]  dump_stack+0x15/0x1b
[   35.146082][ T3752]  should_fail_ex+0x265/0x280
[   35.146102][ T3752]  should_failslab+0x8c/0xb0
[   35.146134][ T3752]  kmem_cache_alloc_noprof+0x50/0x310
[   35.146169][ T3752]  ? audit_log_start+0x365/0x6c0
[   35.146334][ T3752]  audit_log_start+0x365/0x6c0
[   35.146372][ T3752]  audit_seccomp+0x48/0x100
[   35.146404][ T3752]  ? __seccomp_filter+0x68c/0x10d0
[   35.146431][ T3752]  __seccomp_filter+0x69d/0x10d0
[   35.146508][ T3752]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   35.146533][ T3752]  ? vfs_write+0x7e8/0x960
[   35.146561][ T3752]  __secure_computing+0x82/0x150
[   35.146634][ T3752]  syscall_trace_enter+0xcf/0x1e0
[   35.146656][ T3752]  do_syscall_64+0xac/0x200
[   35.146780][ T3752]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   35.146810][ T3752]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   35.146854][ T3752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   35.146880][ T3752] RIP: 0033:0x7f046784ebe9
[   35.146946][ T3752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   35.146996][ T3752] RSP: 002b:00007f04662af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   35.147020][ T3752] RAX: ffffffffffffffda RBX: 00007f0467a85fa0 RCX: 00007f046784ebe9
[   35.147079][ T3752] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[   35.147090][ T3752] RBP: 00007f04662af090 R08: 0000000000000000 R09: 0000000000000000
[   35.147101][ T3752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   35.147112][ T3752] R13: 00007f0467a86038 R14: 00007f0467a85fa0 R15: 00007fff8d0bd448
[   35.147202][ T3752]  </TASK>
[   35.390574][ T3757] 9pnet: Could not find request transport: 0xffffffffffffffff
[   35.418970][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.432192][ T3760] random: crng reseeded on system resumption
[   35.432964][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.491138][ T3766] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   35.504739][ T3766] loop3: detected capacity change from 0 to 128
[   35.534104][ T3766] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   35.548192][ T3766] ext4 filesystem being mounted at /16/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   35.627683][ T3302] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   35.668454][ T3774] loop1: detected capacity change from 0 to 512
[   35.719068][ T3774] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.733432][ T3774] ext4 filesystem being mounted at /19/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   35.756561][ T3774] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.86: corrupted inode contents
[   35.779451][ T3774] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.86: mark_inode_dirty error
[   35.810030][ T3774] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.86: corrupted inode contents
[   35.863362][ T3781] loop3: detected capacity change from 0 to 512
[   35.915611][ T3774] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.86: mark_inode_dirty error
[   35.963164][ T3781] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.998478][ T3781] ext4 filesystem being mounted at /17/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   36.022026][   T29] kauditd_printk_skb: 771 callbacks suppressed
[   36.022104][   T29] audit: type=1400 audit(1757044713.522:858): avc:  denied  { bind } for  pid=3787 comm="syz.2.90" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   36.050851][ T3798] loop4: detected capacity change from 0 to 512
[   36.150490][ T3795] SELinux:  Context system_u:object_r:gpg_exec_t:s0 is not valid (left unmapped).
[   36.163108][   T29] audit: type=1400 audit(1757044713.652:859): avc:  denied  { relabelto } for  pid=3773 comm="syz.1.86" name="bus" dev="loop1" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 trawcon="system_u:object_r:gpg_exec_t:s0"
[   36.202100][ T3781] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.88: corrupted inode contents
[   36.232203][ T3781] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #2: comm syz.3.88: mark_inode_dirty error
[   36.245293][   T29] audit: type=1400 audit(1757044713.662:860): avc:  denied  { append } for  pid=3794 comm="syz.4.91" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   36.268784][   T29] audit: type=1400 audit(1757044713.722:861): avc:  denied  { read write } for  pid=3794 comm="syz.4.91" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   36.293470][   T29] audit: type=1400 audit(1757044713.722:862): avc:  denied  { open } for  pid=3794 comm="syz.4.91" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   36.298975][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.330022][ T3781] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.88: corrupted inode contents
[   36.337493][ T3802] loop4: detected capacity change from 0 to 1024
[   36.346592][ T3781] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.88: mark_inode_dirty error
[   36.372618][ T3802] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5
[   36.381797][ T3802] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[   36.391234][ T3802] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.92: Failed to acquire dquot type 0
[   36.454975][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.459344][ T3802] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   36.487694][ T3802] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.92: corrupted inode contents
[   36.500001][ T3802] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #13: comm syz.4.92: mark_inode_dirty error
[   36.512433][ T3802] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.92: corrupted inode contents
[   36.524647][ T3802] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #13: comm syz.4.92: mark_inode_dirty error
[   36.537337][ T3802] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.92: corrupted inode contents
[   36.553810][ T3802] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   36.562762][ T3802] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.92: corrupted inode contents
[   36.611481][ T3802] EXT4-fs error (device loop4): ext4_truncate:4666: inode #13: comm syz.4.92: mark_inode_dirty error
[   36.652676][ T3802] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   36.670277][ T3802] EXT4-fs (loop4): 1 truncate cleaned up
[   36.686441][ T3802] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.688117][ T3822] netlink: 'syz.3.101': attribute type 12 has an invalid length.
[   36.728447][   T29] audit: type=1400 audit(1757044714.222:863): avc:  denied  { execmem } for  pid=3801 comm="syz.4.92" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   36.758886][ T3822] loop3: detected capacity change from 0 to 256
[   36.766565][ T3822] msdos: Unknown parameter 'uid0x000000000000ee00'
[   36.789135][ T3825] veth3: entered promiscuous mode
[   36.836152][ T3822] FAULT_INJECTION: forcing a failure.
[   36.836152][ T3822] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   36.849283][ T3822] CPU: 0 UID: 0 PID: 3822 Comm: syz.3.101 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   36.849309][ T3822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   36.849391][ T3822] Call Trace:
[   36.849397][ T3822]  <TASK>
[   36.849404][ T3822]  __dump_stack+0x1d/0x30
[   36.849424][ T3822]  dump_stack_lvl+0xe8/0x140
[   36.849445][ T3822]  dump_stack+0x15/0x1b
[   36.849463][ T3822]  should_fail_ex+0x265/0x280
[   36.849510][ T3822]  should_fail+0xb/0x20
[   36.849525][ T3822]  should_fail_usercopy+0x1a/0x20
[   36.849545][ T3822]  _copy_from_user+0x1c/0xb0
[   36.849707][ T3822]  perf_copy_attr+0x145/0x610
[   36.849740][ T3822]  __se_sys_perf_event_open+0x67/0x11c0
[   36.849834][ T3822]  ? vfs_write+0x7e8/0x960
[   36.849858][ T3822]  ? __rcu_read_unlock+0x4f/0x70
[   36.849895][ T3822]  __x64_sys_perf_event_open+0x67/0x80
[   36.849994][ T3822]  x64_sys_call+0x7bd/0x2ff0
[   36.850041][ T3822]  do_syscall_64+0xd2/0x200
[   36.850072][ T3822]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   36.850103][ T3822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   36.850126][ T3822] RIP: 0033:0x7ff8c946ebe9
[   36.850140][ T3822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   36.850216][ T3822] RSP: 002b:00007ff8c7ed7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[   36.850234][ T3822] RAX: ffffffffffffffda RBX: 00007ff8c96a5fa0 RCX: 00007ff8c946ebe9
[   36.850247][ T3822] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000180
[   36.850261][ T3822] RBP: 00007ff8c7ed7090 R08: 0000000000000000 R09: 0000000000000000
[   36.850274][ T3822] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[   36.850287][ T3822] R13: 00007ff8c96a6038 R14: 00007ff8c96a5fa0 R15: 00007ffc835cda08
[   36.850360][ T3822]  </TASK>
[   37.125739][   T29] audit: type=1400 audit(1757044714.622:864): avc:  denied  { write } for  pid=3821 comm="syz.3.101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   37.439082][   T29] audit: type=1400 audit(1757044714.792:865): avc:  denied  { mount } for  pid=3836 comm="syz.0.102" name="/" dev="ramfs" ino=5399 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   37.675692][ T3841] lo speed is unknown, defaulting to 1000
[   37.682716][ T3841] lo speed is unknown, defaulting to 1000
[   37.688853][ T3841] lo speed is unknown, defaulting to 1000
[   37.745049][ T3841] infiniband s
z1: set active
[   37.749779][ T3841] infiniband s
z1: added lo
[   37.756927][ T2957] lo speed is unknown, defaulting to 1000
[   37.838474][ T3841] RDS/IB: s
z1: added
[   37.842539][ T3841] smc: adding ib device s
z1 with port count 1
[   37.848744][ T3841] smc:    ib device s
z1 port 1 has pnetid 
[   37.855360][ T3841] lo speed is unknown, defaulting to 1000
[   37.905155][ T3841] lo speed is unknown, defaulting to 1000
[   37.956453][ T3841] lo speed is unknown, defaulting to 1000
[   38.007746][ T3841] lo speed is unknown, defaulting to 1000
[   38.059442][ T3841] lo speed is unknown, defaulting to 1000
[   38.198487][ T2957] lo speed is unknown, defaulting to 1000
[   38.277715][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.474115][ T3866] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3866 comm=syz.4.112
[   38.502480][ T3866] __nla_validate_parse: 2 callbacks suppressed
[   38.502496][ T3866] netlink: 12 bytes leftover after parsing attributes in process `syz.4.112'.
[   38.531720][ T3865] loop1: detected capacity change from 0 to 1024
[   38.563339][ T3869] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3869 comm=syz.1.115
[   38.585854][ T3869] netdevsim netdevsim1 netdevsim0: IPsec offload requires 128 bit authentication
[   38.605139][ T3871] netlink: 36 bytes leftover after parsing attributes in process `syz.2.107'.
[   38.693845][ T3882] loop3: detected capacity change from 0 to 128
[   38.720404][ T3882] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   38.748531][ T3854] loop2: detected capacity change from 0 to 32768
[   38.756238][ T3882] ext4 filesystem being mounted at /24/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   38.804914][ T3289]  loop2: p1 p3 < >
[   38.816098][ T3854]  loop2: p1 p3 < >
[   38.876698][ T3874] loop4: detected capacity change from 0 to 32768
[   38.898966][ T3688] udevd[3688]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   38.899211][ T3289] udevd[3289]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   38.910130][ T3302] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   38.934454][ T3507]  loop4: p1 p3 < >
[   38.938795][ T3886] netlink: 36 bytes leftover after parsing attributes in process `syz.4.116'.
[   38.961815][ T3874]  loop4: p1 p3 < >
[   38.978774][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   38.989930][ T3289] udevd[3289]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   39.035507][ T3289] udevd[3289]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   39.065927][ T3891] loop2: detected capacity change from 0 to 512
[   39.143901][ T3891] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.144261][ T2994]  loop4: p1 p3 < >
[   39.158840][ T3891] ext4 filesystem being mounted at /25/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   39.193946][ T3891] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.122: corrupted inode contents
[   39.241717][ T3913] tipc: Started in network mode
[   39.246735][ T3913] tipc: Node identity 8ee7f3f5cce7, cluster identity 4711
[   39.254014][ T3913] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   39.256796][ T3891] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.122: mark_inode_dirty error
[   39.280327][ T3913] tipc: Disabling bearer <eth:syzkaller0>
[   39.286174][ T3891] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.122: corrupted inode contents
[   39.303761][ T3920] netlink: 32 bytes leftover after parsing attributes in process `syz.3.132'.
[   39.320994][ T3891] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.122: mark_inode_dirty error
[   39.338119][ T3920] loop3: detected capacity change from 0 to 512
[   39.366324][ T3920] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   39.379254][ T3920] System zones: 0-2, 18-18, 34-34
[   39.390953][ T3920] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.132: bg 0: block 248: padding at end of block bitmap is not set
[   39.407194][ T3920] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.132: Failed to acquire dquot type 1
[   39.419431][ T3920] EXT4-fs (loop3): 1 truncate cleaned up
[   39.425688][ T3920] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.438261][ T3920] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   39.449488][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.469288][ T3920] syz.3.132 (3920) used greatest stack depth: 9280 bytes left
[   39.477601][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.495460][ T3924] loop1: detected capacity change from 0 to 512
[   39.613043][ T2994]  loop4: p1 p3 < >
[   39.618853][ T3924] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   39.627285][ T3924] EXT4-fs (loop1): orphan cleanup on readonly fs
[   39.645755][ T3919] netlink: 36 bytes leftover after parsing attributes in process `syz.4.133'.
[   39.844763][ T3924] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.134: corrupted inode contents
[   39.894797][ T3924] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #16: comm syz.1.134: mark_inode_dirty error
[   40.008504][ T3924] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.134: corrupted inode contents
[   40.229198][ T3924] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm syz.1.134: mark_inode_dirty error
[   40.652474][ T3924] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.134: corrupted inode contents
[   40.901339][ T3924] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[   40.957460][ T3924] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.134: corrupted inode contents
[   41.041354][ T3955] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3955 comm=syz.0.144
[   41.060885][ T3924] EXT4-fs error (device loop1): ext4_truncate:4666: inode #16: comm syz.1.134: mark_inode_dirty error
[   41.080381][   T29] kauditd_printk_skb: 218 callbacks suppressed
[   41.080465][   T29] audit: type=1400 audit(1757044718.572:1082): avc:  denied  { ioctl } for  pid=3946 comm="syz.2.142" path="/27/file0" dev="tmpfs" ino=164 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   41.129266][ T3955] netlink: 12 bytes leftover after parsing attributes in process `syz.0.144'.
[   41.149920][ T3924] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[   41.176290][ T3924] EXT4-fs (loop1): 1 truncate cleaned up
[   41.196711][   T37] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   41.206543][   T37] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 1
[   41.226118][ T2994]  loop4: p1 p3 < >
[   41.287080][   T29] audit: type=1326 audit(1757044718.762:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   41.289396][ T3924] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   41.310640][   T29] audit: type=1326 audit(1757044718.772:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   41.346250][   T29] audit: type=1326 audit(1757044718.772:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   41.369728][   T29] audit: type=1326 audit(1757044718.772:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   41.393157][   T29] audit: type=1326 audit(1757044718.772:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   41.416623][   T29] audit: type=1326 audit(1757044718.772:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   41.439936][   T29] audit: type=1326 audit(1757044718.772:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   41.440049][   T29] audit: type=1326 audit(1757044718.772:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3963 comm="syz.3.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   41.444628][ T2994]  loop4: p1 p3 < >
[   41.477410][ T3969] loop0: detected capacity change from 0 to 2048
[   41.532540][ T3969] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.634680][ T2994]  loop4: p1 p3 < >
[   41.734582][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.948576][ T3992] loop2: detected capacity change from 0 to 1024
[   41.977244][ T3992] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.156: Failed to acquire dquot type 0
[   41.999045][ T3992] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   42.018336][ T3308] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[   42.033905][ T3992] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.156: corrupted inode contents
[   42.053200][ T3308] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   42.075234][ T3999] netlink: 32 bytes leftover after parsing attributes in process `syz.3.159'.
[   42.124921][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.135485][ T3992] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #13: comm syz.2.156: mark_inode_dirty error
[   42.164430][ T3999] loop3: detected capacity change from 0 to 512
[   42.201411][ T3999] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   42.205250][ T4003] FAULT_INJECTION: forcing a failure.
[   42.205250][ T4003] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   42.209520][ T3999] System zones: 
[   42.222573][ T4003] CPU: 1 UID: 0 PID: 4003 Comm: syz.0.158 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   42.222602][ T4003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   42.222616][ T4003] Call Trace:
[   42.222622][ T4003]  <TASK>
[   42.222661][ T4003]  __dump_stack+0x1d/0x30
[   42.222738][ T4003]  dump_stack_lvl+0xe8/0x140
[   42.222762][ T4003]  dump_stack+0x15/0x1b
[   42.222856][ T4003]  should_fail_ex+0x265/0x280
[   42.222883][ T4003]  should_fail+0xb/0x20
[   42.222905][ T4003]  should_fail_usercopy+0x1a/0x20
[   42.222933][ T4003]  _copy_from_user+0x1c/0xb0
[   42.223053][ T4003]  copy_from_sockptr+0x48/0x70
[   42.223142][ T4003]  raw_setsockopt+0x49f/0xbf0
[   42.223167][ T4003]  ? __pfx_raw_setsockopt+0x10/0x10
[   42.223250][ T4003]  __sys_setsockopt+0x181/0x200
[   42.223349][ T4003]  __x64_sys_setsockopt+0x64/0x80
[   42.223374][ T4003]  x64_sys_call+0x20ec/0x2ff0
[   42.223417][ T4003]  do_syscall_64+0xd2/0x200
[   42.223529][ T4003]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   42.223560][ T4003]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   42.223660][ T4003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.223686][ T4003] RIP: 0033:0x7fb93bd0ebe9
[   42.223706][ T4003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.223770][ T4003] RSP: 002b:00007fb93a777038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   42.223793][ T4003] RAX: ffffffffffffffda RBX: 00007fb93bf45fa0 RCX: 00007fb93bd0ebe9
[   42.223808][ T4003] RDX: 0000000000000001 RSI: 0000000000000065 RDI: 0000000000000003
[   42.223823][ T4003] RBP: 00007fb93a777090 R08: 0000000000000008 R09: 0000000000000000
[   42.223838][ T4003] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[   42.223852][ T4003] R13: 00007fb93bf46038 R14: 00007fb93bf45fa0 R15: 00007ffd6231a218
[   42.223876][ T4003]  </TASK>
[   42.284583][ T3992] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.156: corrupted inode contents
[   42.288390][ T3999] 0-2, 18-18, 34-34
[   42.307675][ T3992] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.156: mark_inode_dirty error
[   42.308205][ T3999] 
[   42.379249][ T3999] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.159: bg 0: block 248: padding at end of block bitmap is not set
[   42.437801][ T4013] loop0: detected capacity change from 0 to 2048
[   42.441680][ T3999] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.159: Failed to acquire dquot type 1
[   42.455847][ T3992] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.156: corrupted inode contents
[   42.471946][ T4011] loop1: detected capacity change from 0 to 8192
[   42.488092][ T3992] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   42.504195][ T3999] EXT4-fs (loop3): 1 truncate cleaned up
[   42.510278][ T3992] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.156: corrupted inode contents
[   42.522532][ T3999] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.534171][ T4011] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   42.548273][ T3992] EXT4-fs error (device loop2): ext4_truncate:4666: inode #13: comm syz.2.156: mark_inode_dirty error
[   42.559431][ T3999] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.577931][ T3992] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   42.587318][ T3992] EXT4-fs (loop2): 1 truncate cleaned up
[   42.590323][ T2994]  loop4: p1 p3 < >
[   42.597600][ T3992] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.597778][ T4013] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.637430][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.685743][ T4013] EXT4-fs error (device loop0): ext4_free_inode:354: comm +}[@: bit already cleared for inode 15
[   42.728960][ T2994]  loop4: p1 p3 < >
[   42.798679][ T4030] macvtap0: refused to change device tx_queue_len
[   43.447080][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.519830][ T4039] netlink: 32 bytes leftover after parsing attributes in process `syz.2.170'.
[   43.553395][ T4039] loop2: detected capacity change from 0 to 512
[   43.564014][ T4042] netlink: 'syz.3.173': attribute type 3 has an invalid length.
[   43.592791][ T4045] loop3: detected capacity change from 0 to 128
[   43.604038][ T4045] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   43.633322][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.650679][ T4045] ext4 filesystem being mounted at /41/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   43.692922][ T4039] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   43.705664][ T4039] System zones: 0-2, 18-18, 34-34
[   43.712060][ T4039] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.170: bg 0: block 248: padding at end of block bitmap is not set
[   43.734452][ T4039] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.170: Failed to acquire dquot type 1
[   43.750223][ T3302] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   43.759909][ T4039] EXT4-fs (loop2): 1 truncate cleaned up
[   43.766108][ T4039] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.779638][ T4039] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.809874][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.811120][ T4056] loop0: detected capacity change from 0 to 2048
[   43.832084][ T4058] netlink: 32 bytes leftover after parsing attributes in process `syz.3.177'.
[   43.845278][ T4056] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.845980][ T4058] loop3: detected capacity change from 0 to 512
[   43.882055][ T4056] EXT4-fs error (device loop0): ext4_free_inode:354: comm +}[@: bit already cleared for inode 15
[   43.905920][ T4058] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   43.951307][ T4058] System zones: 0-2, 18-18, 34-34
[   43.965181][ T4058] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.177: bg 0: block 248: padding at end of block bitmap is not set
[   44.002960][ T4058] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.177: Failed to acquire dquot type 1
[   44.017702][ T4058] EXT4-fs (loop3): 1 truncate cleaned up
[   44.024578][ T4058] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.038434][ T4058] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.081371][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.315411][ T4073] loop3: detected capacity change from 0 to 1024
[   44.344914][ T4073] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.182: Failed to acquire dquot type 0
[   44.357881][ T4073] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   44.373761][ T4073] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.182: corrupted inode contents
[   44.390519][ T4073] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #13: comm syz.3.182: mark_inode_dirty error
[   44.409497][ T4073] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.182: corrupted inode contents
[   44.422198][ T4073] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #13: comm syz.3.182: mark_inode_dirty error
[   44.434588][ T4073] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.182: corrupted inode contents
[   44.448817][ T4073] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   44.458898][ T4073] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.182: corrupted inode contents
[   44.474827][ T4073] EXT4-fs error (device loop3): ext4_truncate:4666: inode #13: comm syz.3.182: mark_inode_dirty error
[   44.475332][ T4078] FAULT_INJECTION: forcing a failure.
[   44.475332][ T4078] name failslab, interval 1, probability 0, space 0, times 0
[   44.485856][ T2994]  loop4: p1 p3 < >
[   44.502318][ T4078] CPU: 0 UID: 0 PID: 4078 Comm: syz.4.184 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   44.502420][ T4078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   44.502431][ T4078] Call Trace:
[   44.502437][ T4078]  <TASK>
[   44.502445][ T4078]  __dump_stack+0x1d/0x30
[   44.502510][ T4078]  dump_stack_lvl+0xe8/0x140
[   44.502528][ T4078]  dump_stack+0x15/0x1b
[   44.502687][ T4078]  should_fail_ex+0x265/0x280
[   44.502714][ T4078]  should_failslab+0x8c/0xb0
[   44.502744][ T4078]  kmem_cache_alloc_noprof+0x50/0x310
[   44.502775][ T4078]  ? getname_flags+0x80/0x3b0
[   44.502965][ T4078]  getname_flags+0x80/0x3b0
[   44.502999][ T4078]  __se_sys_newlstat+0x4b/0x280
[   44.503039][ T4078]  ? fput+0x8f/0xc0
[   44.503140][ T4078]  ? ksys_write+0x192/0x1a0
[   44.503172][ T4078]  __x64_sys_newlstat+0x31/0x40
[   44.503199][ T4078]  x64_sys_call+0x1b88/0x2ff0
[   44.503224][ T4078]  do_syscall_64+0xd2/0x200
[   44.503298][ T4078]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.503326][ T4078]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   44.503365][ T4078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.503392][ T4078] RIP: 0033:0x7f046784ebe9
[   44.503410][ T4078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.503431][ T4078] RSP: 002b:00007f04662af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000006
[   44.503503][ T4078] RAX: ffffffffffffffda RBX: 00007f0467a85fa0 RCX: 00007f046784ebe9
[   44.503518][ T4078] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000440
[   44.503565][ T4078] RBP: 00007f04662af090 R08: 0000000000000000 R09: 0000000000000000
[   44.503576][ T4078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.503586][ T4078] R13: 00007f0467a86038 R14: 00007f0467a85fa0 R15: 00007fff8d0bd448
[   44.503638][ T4078]  </TASK>
[   44.699599][ T4073] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   44.710121][ T4073] EXT4-fs (loop3): 1 truncate cleaned up
[   44.717633][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.731813][ T4073] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.873866][ T4080] loop1: detected capacity change from 0 to 32768
[   44.888297][ T4082] netlink: 36 bytes leftover after parsing attributes in process `syz.1.185'.
[   44.926295][ T4088] loop0: detected capacity change from 0 to 2048
[   45.050859][ T3507]  loop1: p1 p3 < >
[   45.057277][ T2994]  loop4: p1 p3 < >
[   45.068582][ T4088] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.204819][ T4088] EXT4-fs error (device loop0): ext4_free_inode:354: comm +}[@: bit already cleared for inode 15
[   45.258135][ T4101] 9pnet_fd: Insufficient options for proto=fd
[   45.574174][ T4080]  loop1: p1 p3 < >
[   45.579501][ T2994]  loop4: p1 p3 < >
[   45.584984][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.665963][ T2994]  loop4: p1 p3 < >
[   45.674851][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.714355][ T2994]  loop1: p1 p3 < >
[   45.748921][ T2994]  loop4: p1 p3 < >
[   45.762970][ T4116] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4116 comm=syz.3.199
[   45.781597][ T2994]  loop4: p1 p3 < >
[   45.797411][ T4120] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4120 comm=syz.0.201
[   45.862676][ T4125] loop0: detected capacity change from 0 to 512
[   45.919948][ T4125] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.203: Failed to acquire dquot type 1
[   45.993427][ T4125] EXT4-fs (loop0): 1 truncate cleaned up
[   45.999601][ T4125] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.077580][ T4131] veth3: entered promiscuous mode
[   46.083208][ T4125] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.095326][   T29] kauditd_printk_skb: 310 callbacks suppressed
[   46.095339][   T29] audit: type=1400 audit(1757044723.592:1389): avc:  denied  { rename } for  pid=4117 comm="syz.1.200" name="bus" dev="tmpfs" ino=239 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:gpg_exec_t:s0"
[   46.140125][ T4125] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.189766][ T2994]  loop1: p1 p3 < >
[   46.222830][   T29] audit: type=1400 audit(1757044723.672:1390): avc:  denied  { unlink } for  pid=3303 comm="syz-executor" name="file0" dev="tmpfs" ino=239 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:gpg_exec_t:s0"
[   46.305549][   T29] audit: type=1400 audit(1757044723.772:1391): avc:  denied  { connect } for  pid=4124 comm="syz.0.203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   46.347425][ T4138] loop3: detected capacity change from 0 to 2048
[   46.360612][ T4125] loop0: detected capacity change from 0 to 512
[   46.367392][ T4125] EXT4-fs: Ignoring removed nobh option
[   46.378803][ T4142] netlink: 32 bytes leftover after parsing attributes in process `syz.1.209'.
[   46.413143][ T4138] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.455725][ T4125] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.203: corrupted inode contents
[   46.491518][   T29] audit: type=1326 audit(1757044723.992:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4141 comm="syz.1.209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   46.502140][ T4138] EXT4-fs error (device loop3): ext4_free_inode:354: comm +}[@: bit already cleared for inode 15
[   46.515023][   T29] audit: type=1326 audit(1757044723.992:1393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4141 comm="syz.1.209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   46.548770][   T29] audit: type=1326 audit(1757044723.992:1394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4141 comm="syz.1.209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   46.579138][ T2994]  loop1: p1 p3 < >
[   46.583528][   T29] audit: type=1326 audit(1757044723.992:1395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4137 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   46.600455][ T4125] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #3: comm syz.0.203: mark_inode_dirty error
[   46.606611][   T29] audit: type=1326 audit(1757044723.992:1396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4137 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   46.640719][   T29] audit: type=1326 audit(1757044723.992:1397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4137 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   46.663901][   T29] audit: type=1326 audit(1757044723.992:1398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4137 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   46.740264][ T2994]  loop4: p1 p3 < >
[   46.762555][ T4125] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.203: corrupted inode contents
[   46.850456][ T4125] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.203: mark_inode_dirty error
[   46.866931][ T2994]  loop1: p1 p3 < >
[   46.874569][ T4163] netlink: 32 bytes leftover after parsing attributes in process `syz.2.216'.
[   46.894107][ T4125] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.203: Failed to acquire dquot type 0
[   46.929665][ T4163] loop2: detected capacity change from 0 to 512
[   46.950825][ T4125] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.203: corrupted inode contents
[   46.996222][ T4163] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   47.013925][ T4125] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.203: mark_inode_dirty error
[   47.028634][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.036564][ T4163] System zones: 0-2, 18-18, 34-34
[   47.065847][ T4163] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.216: bg 0: block 248: padding at end of block bitmap is not set
[   47.095215][ T4125] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.203: corrupted inode contents
[   47.121276][ T4163] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.216: Failed to acquire dquot type 1
[   47.138217][ T4163] EXT4-fs (loop2): 1 truncate cleaned up
[   47.155211][ T4163] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.180247][ T4125] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.203: mark_inode_dirty error
[   47.213741][ T4163] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.231101][ T4125] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.203: corrupted inode contents
[   47.259781][ T4125] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   47.285479][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.294054][ T4125] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.203: corrupted inode contents
[   47.296858][ T4169] loop3: detected capacity change from 0 to 2048
[   47.334674][ T4125] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.203: mark_inode_dirty error
[   47.361475][ T4169] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.401760][ T4125] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   47.432083][ T4175] Driver unsupported XDP return value 0 on prog  (id 124) dev N/A, expect packet loss!
[   47.450965][ T4125] EXT4-fs (loop0): 1 truncate cleaned up
[   47.471537][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.483095][ T4125] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.521780][ T4125] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.546680][ T2994]  loop1: p1 p3 < >
[   47.548007][ T4125] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.618619][ T4182] veth3: entered promiscuous mode
[   47.721533][ T4193] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4193 comm=syz.0.228
[   47.744033][ T4189] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   47.779454][ T4189] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[   47.892042][ T2994]  loop4: p1 p3 < >
[   47.971280][ T4211] netlink: 'syz.2.232': attribute type 21 has an invalid length.
[   47.988191][ T4204] bridge_slave_0: left allmulticast mode
[   47.993928][ T4204] bridge_slave_0: left promiscuous mode
[   47.999648][ T4204] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.055667][ T2994]  loop1: p1 p3 < >
[   48.063497][ T4204] bridge_slave_1: left allmulticast mode
[   48.069197][ T4204] bridge_slave_1: left promiscuous mode
[   48.074980][ T4204] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.120123][ T4204] bond0: (slave bond_slave_0): Releasing backup interface
[   48.160777][ T4204] bond0: (slave bond_slave_1): Releasing backup interface
[   48.174802][ T4204] team0: Port device team_slave_0 removed
[   48.185952][ T4204] team0: Port device team_slave_1 removed
[   48.193329][ T4204] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   48.201116][ T4204] batman_adv: batadv0: Removing interface: batadv_slave_0
[   48.211009][ T4204] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   48.218570][ T4204] batman_adv: batadv0: Removing interface: batadv_slave_1
[   48.221125][ T2994]  loop4: p1 p3 < >
[   48.264474][ T4211] netlink: 132 bytes leftover after parsing attributes in process `syz.2.232'.
[   48.273720][ T4211] netlink: 'syz.2.232': attribute type 1 has an invalid length.
[   48.341014][ T4234] FAULT_INJECTION: forcing a failure.
[   48.341014][ T4234] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   48.354224][ T4234] CPU: 1 UID: 0 PID: 4234 Comm: syz.4.242 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   48.354249][ T4234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   48.354297][ T4234] Call Trace:
[   48.354329][ T4234]  <TASK>
[   48.354337][ T4234]  __dump_stack+0x1d/0x30
[   48.354360][ T4234]  dump_stack_lvl+0xe8/0x140
[   48.354386][ T4234]  dump_stack+0x15/0x1b
[   48.354410][ T4234]  should_fail_ex+0x265/0x280
[   48.354441][ T4234]  should_fail+0xb/0x20
[   48.354545][ T4234]  should_fail_usercopy+0x1a/0x20
[   48.354642][ T4234]  strncpy_from_user+0x25/0x230
[   48.354676][ T4234]  path_setxattrat+0xeb/0x310
[   48.354721][ T4234]  __x64_sys_lsetxattr+0x71/0x90
[   48.354751][ T4234]  x64_sys_call+0x2877/0x2ff0
[   48.354819][ T4234]  do_syscall_64+0xd2/0x200
[   48.354854][ T4234]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   48.354884][ T4234]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   48.354925][ T4234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.355013][ T4234] RIP: 0033:0x7f046784ebe9
[   48.355051][ T4234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.355107][ T4234] RSP: 002b:00007f04662af038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   48.355123][ T4234] RAX: ffffffffffffffda RBX: 00007f0467a85fa0 RCX: 00007f046784ebe9
[   48.355133][ T4234] RDX: 0000200000000280 RSI: 0000200000000000 RDI: 0000200000000400
[   48.355157][ T4234] RBP: 00007f04662af090 R08: 0000000000000000 R09: 0000000000000000
[   48.355237][ T4234] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000001
[   48.355247][ T4234] R13: 00007f0467a86038 R14: 00007f0467a85fa0 R15: 00007fff8d0bd448
[   48.355269][ T4234]  </TASK>
[   48.562347][ T4236] loop2: detected capacity change from 0 to 2048
[   48.585503][ T4236] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.602323][ T2994]  loop4: p1 p3 < >
[   48.629685][ T2994]  loop1: p1 p3 < >
[   48.672158][ T2994]  loop4: p1 p3 < >
[   48.696070][ T4253] loop3: detected capacity change from 0 to 1024
[   48.704948][ T4251] loop0: detected capacity change from 0 to 2048
[   48.744896][ T4251] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.841085][ T4251] EXT4-fs error (device loop0): ext4_free_inode:354: comm +}[@: bit already cleared for inode 15
[   48.869006][ T4262] netlink: 'syz.1.252': attribute type 1 has an invalid length.
[   48.876713][ T4262] netlink: 224 bytes leftover after parsing attributes in process `syz.1.252'.
[   48.981958][ T2994]  loop1: p1 p3 < >
[   49.042564][ T2994]  loop4: p1 p3 < >
[   49.054944][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.144605][ T4274] veth3: entered promiscuous mode
[   49.303670][ T4281] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   49.319167][ T4280] netlink: 'syz.0.260': attribute type 1 has an invalid length.
[   49.326927][ T4280] netlink: 224 bytes leftover after parsing attributes in process `syz.0.260'.
[   49.332141][ T4281] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[   49.434456][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.474252][ T4285] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4285 comm=syz.0.263
[   49.554640][ T4291] netlink: 32 bytes leftover after parsing attributes in process `syz.0.265'.
[   49.568965][ T4291] loop0: detected capacity change from 0 to 512
[   49.611255][ T4291] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   49.628572][ T4291] System zones: 0-2, 18-18, 34-34
[   49.668759][ T2994]  loop1: p1 p3 < >
[   49.669666][ T4291] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.265: bg 0: block 248: padding at end of block bitmap is not set
[   49.717264][ T4291] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.265: Failed to acquire dquot type 1
[   49.733086][ T4291] EXT4-fs (loop0): 1 truncate cleaned up
[   49.750782][ T4291] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.785580][ T4291] ext4 filesystem being mounted at /43/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.810419][ T2994]  loop1: p1 p3 < >
[   49.816951][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.833869][ T4303] loop3: detected capacity change from 0 to 128
[   49.861750][ T4303] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   49.886685][ T4303] ext4 filesystem being mounted at /61/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   49.933644][ T2994]  loop1: p1 p3 < >
[   49.970564][ T4312] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4312 comm=syz.2.272
[   50.068943][ T4319] netlink: 'syz.2.274': attribute type 21 has an invalid length.
[   50.079235][ T4319] netlink: 132 bytes leftover after parsing attributes in process `syz.2.274'.
[   50.088251][ T4319] netlink: 'syz.2.274': attribute type 1 has an invalid length.
[   50.100980][ T2994]  loop1: p1 p3 < >
[   50.122062][ T2994]  loop4: p1 p3 < >
[   50.148496][ T3302] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   50.166876][ T4327] netlink: 'syz.2.279': attribute type 1 has an invalid length.
[   50.174594][ T4327] netlink: 224 bytes leftover after parsing attributes in process `syz.2.279'.
[   50.190925][ T2994]  loop1: p1 p3 < >
[   50.204144][ T4332] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   50.223701][ T4334] netlink: 32 bytes leftover after parsing attributes in process `syz.1.281'.
[   50.238643][ T4332] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[   50.394738][ T4349] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   50.407976][ T4351] netlink: 'syz.2.289': attribute type 1 has an invalid length.
[   50.415694][ T4351] netlink: 224 bytes leftover after parsing attributes in process `syz.2.289'.
[   50.425938][ T4349] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[   50.510674][ T2994]  loop1: p1 p3 < >
[   50.563335][ T4354] netlink: 'syz.2.290': attribute type 21 has an invalid length.
[   50.584100][ T4354] netlink: 132 bytes leftover after parsing attributes in process `syz.2.290'.
[   50.593179][ T4354] netlink: 'syz.2.290': attribute type 1 has an invalid length.
[   50.613007][ T2994]  loop1: p1 p3 < >
[   50.618236][ T4354] netlink: 'syz.2.290': attribute type 10 has an invalid length.
[   50.626078][ T4354] netlink: 40 bytes leftover after parsing attributes in process `syz.2.290'.
[   50.637303][ T4354] batman_adv: batadv0: Adding interface: veth1_vlan
[   50.643948][ T4354] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.687904][ T4354] batman_adv: batadv0: Interface activated: veth1_vlan
[   50.688436][ T4362] netlink: 'syz.1.294': attribute type 1 has an invalid length.
[   50.702574][ T4362] netlink: 224 bytes leftover after parsing attributes in process `syz.1.294'.
[   50.702684][ T4360] loop0: detected capacity change from 0 to 128
[   50.799179][ T4369] loop2: detected capacity change from 0 to 512
[   50.808212][ T4360] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   50.823495][ T4360] ext4 filesystem being mounted at /46/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   50.866254][ T4369] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   50.876738][ T4369] System zones: 0-2, 18-18, 34-34
[   50.886250][ T4369] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.296: bg 0: block 248: padding at end of block bitmap is not set
[   50.902265][ T4369] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.296: Failed to acquire dquot type 1
[   50.932766][ T3308] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   50.961616][ T2994]  loop4: p1 p3 < >
[   50.966048][ T4369] EXT4-fs (loop2): 1 truncate cleaned up
[   50.978237][ T4369] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.007436][ T4369] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.113891][   T29] kauditd_printk_skb: 201 callbacks suppressed
[   51.113907][   T29] audit: type=1326 audit(1757044728.612:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4388 comm="syz.0.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb93bd0ebe9 code=0x7ffc0000
[   51.144895][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.224126][ T2994]  loop1: p1 p3 < >
[   51.253310][   T29] audit: type=1326 audit(1757044728.612:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4388 comm="syz.0.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb93bd0ebe9 code=0x7ffc0000
[   51.276710][   T29] audit: type=1326 audit(1757044728.612:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4388 comm="syz.0.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb93bd0ebe9 code=0x7ffc0000
[   51.300089][   T29] audit: type=1326 audit(1757044728.612:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4388 comm="syz.0.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb93bd0ebe9 code=0x7ffc0000
[   51.305329][ T4403] syzkaller0: entered promiscuous mode
[   51.323449][   T29] audit: type=1326 audit(1757044728.612:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4388 comm="syz.0.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7fb93bd0ebe9 code=0x7ffc0000
[   51.323478][   T29] audit: type=1400 audit(1757044728.652:1597): avc:  denied  { setopt } for  pid=4386 comm="syz.4.303" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   51.323517][   T29] audit: type=1400 audit(1757044728.662:1598): avc:  denied  { watch watch_reads } for  pid=4386 comm="syz.4.303" path="/61/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1
[   51.323561][   T29] audit: type=1326 audit(1757044728.672:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4373 comm="syz.1.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   51.329040][ T4403] syzkaller0: entered allmulticast mode
[   51.371938][ T2994]  loop1: p1 p3 < >
[   51.372597][   T29] audit: type=1326 audit(1757044728.672:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4373 comm="syz.1.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   51.407448][ T4402] bridge_slave_0: left allmulticast mode
[   51.418796][   T29] audit: type=1326 audit(1757044728.672:1601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4373 comm="syz.1.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   51.424380][ T4402] bridge_slave_0: left promiscuous mode
[   51.486329][ T4402] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.502510][ T4402] bridge_slave_1: left allmulticast mode
[   51.508327][ T4402] bridge_slave_1: left promiscuous mode
[   51.514061][ T4402] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.542505][ T4402] bond0: (slave bond_slave_0): Releasing backup interface
[   51.564715][ T4402] bond0: (slave bond_slave_1): Releasing backup interface
[   51.580001][ T4402] team0: Port device team_slave_0 removed
[   51.590282][ T4402] team0: Port device team_slave_1 removed
[   51.599288][ T4402] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   51.606717][ T4402] batman_adv: batadv0: Removing interface: batadv_slave_0
[   51.616360][ T4402] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   51.624684][ T4402] batman_adv: batadv0: Removing interface: batadv_slave_1
[   51.687372][ T4408] batman_adv: batadv0: Adding interface: veth1_vlan
[   51.694225][ T4408] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.721347][ T4408] batman_adv: batadv0: Interface activated: veth1_vlan
[   51.805888][ T2994]  loop1: p1 p3 < >
[   51.843493][ T2994]  loop4: p1 p3 < >
[   51.867544][ T2994]  loop1: p1 p3 < >
[   51.892465][ T2994]  loop1: p1 p3 < >
[   51.925249][ T2994]  loop4: p1 p3 < >
[   51.952679][ T2994]  loop4: p1 p3 < >
[   52.048118][ T4446] netem: change failed
[   52.056435][ T4446] mmap: syz.4.324 (4446) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   52.127365][ T4448] bridge_slave_0: left allmulticast mode
[   52.133374][ T4448] bridge_slave_0: left promiscuous mode
[   52.139110][ T4448] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.181727][ T4457] FAULT_INJECTION: forcing a failure.
[   52.181727][ T4457] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   52.194887][ T4457] CPU: 1 UID: 0 PID: 4457 Comm: syz.0.327 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   52.194917][ T4457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   52.194930][ T4457] Call Trace:
[   52.194936][ T4457]  <TASK>
[   52.194943][ T4457]  __dump_stack+0x1d/0x30
[   52.195051][ T4457]  dump_stack_lvl+0xe8/0x140
[   52.195069][ T4457]  dump_stack+0x15/0x1b
[   52.195083][ T4457]  should_fail_ex+0x265/0x280
[   52.195130][ T4457]  should_fail+0xb/0x20
[   52.195150][ T4457]  should_fail_usercopy+0x1a/0x20
[   52.195222][ T4457]  _copy_from_user+0x1c/0xb0
[   52.195257][ T4457]  ___sys_sendmsg+0xc1/0x1d0
[   52.195302][ T4457]  __x64_sys_sendmsg+0xd4/0x160
[   52.195400][ T4457]  x64_sys_call+0x191e/0x2ff0
[   52.195466][ T4457]  do_syscall_64+0xd2/0x200
[   52.195546][ T4457]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   52.195577][ T4457]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   52.195606][ T4457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.195631][ T4457] RIP: 0033:0x7fb93bd0ebe9
[   52.195700][ T4457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.195721][ T4457] RSP: 002b:00007fb93a777038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   52.195750][ T4457] RAX: ffffffffffffffda RBX: 00007fb93bf45fa0 RCX: 00007fb93bd0ebe9
[   52.195765][ T4457] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[   52.195779][ T4457] RBP: 00007fb93a777090 R08: 0000000000000000 R09: 0000000000000000
[   52.195791][ T4457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.195863][ T4457] R13: 00007fb93bf46038 R14: 00007fb93bf45fa0 R15: 00007ffd6231a218
[   52.195886][ T4457]  </TASK>
[   52.198438][ T4448] bridge_slave_1: left allmulticast mode
[   52.373930][ T4448] bridge_slave_1: left promiscuous mode
[   52.379961][ T4448] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.391603][ T4448] bond0: (slave bond_slave_0): Releasing backup interface
[   52.407021][ T4448] bond0: (slave bond_slave_1): Releasing backup interface
[   52.432813][ T4448] team0: Port device team_slave_0 removed
[   52.449023][ T4448] team0: Port device team_slave_1 removed
[   52.460851][ T4448] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   52.468600][ T4448] batman_adv: batadv0: Removing interface: batadv_slave_0
[   52.477831][ T4448] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   52.485262][ T4448] batman_adv: batadv0: Removing interface: batadv_slave_1
[   52.506974][ T4433] loop3: detected capacity change from 0 to 32768
[   52.545555][ T4459] batman_adv: batadv0: Adding interface: veth1_vlan
[   52.552355][ T4459] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   52.600792][ T4459] batman_adv: batadv0: Interface activated: veth1_vlan
[   52.602840][ T4433]  loop3: p1 p3 < >
[   52.624555][ T4472] loop2: detected capacity change from 0 to 1024
[   52.647012][ T4472] EXT4-fs: Ignoring removed oldalloc option
[   52.676671][ T4472] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   52.705276][ T4258] udevd[4258]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   52.717705][ T4472] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.721503][ T4132] udevd[4132]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   52.761701][ T4472] team1 (uninitialized): Failed to send options change via netlink (err -105)
[   52.771722][ T2994]  loop1: p1 p3 < >
[   52.809052][ T4472] team1: entered promiscuous mode
[   52.814330][ T4472] team1: entered allmulticast mode
[   52.838355][ T4472] Zero length message leads to an empty skb
[   52.889365][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.911623][ T2994]  loop1: p1 p3 < >
[   52.941957][ T4470] lo speed is unknown, defaulting to 1000
[   52.971569][ T2994]  loop4: p1 p3 < >
[   53.030085][ T2994]  loop4: p1 p3 < >
[   53.075144][ T4490] FAULT_INJECTION: forcing a failure.
[   53.075144][ T4490] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.088392][ T4490] CPU: 1 UID: 0 PID: 4490 Comm: syz.2.339 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   53.088423][ T4490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   53.088437][ T4490] Call Trace:
[   53.088443][ T4490]  <TASK>
[   53.088452][ T4490]  __dump_stack+0x1d/0x30
[   53.088476][ T4490]  dump_stack_lvl+0xe8/0x140
[   53.088498][ T4490]  dump_stack+0x15/0x1b
[   53.088565][ T4490]  should_fail_ex+0x265/0x280
[   53.088588][ T4490]  should_fail+0xb/0x20
[   53.088605][ T4490]  should_fail_usercopy+0x1a/0x20
[   53.088675][ T4490]  strncpy_from_user+0x25/0x230
[   53.088702][ T4490]  ? nla_put+0xe3/0x110
[   53.088723][ T4490]  strncpy_from_user_nofault+0x68/0xf0
[   53.088787][ T4490]  bpf_probe_read_user_str+0x2a/0x70
[   53.088822][ T4490]  bpf_prog_02a70dbeb5f742df+0x43/0x49
[   53.088839][ T4490]  bpf_trace_run2+0x104/0x1c0
[   53.088865][ T4490]  ? skb_free_head+0xb8/0x150
[   53.088890][ T4490]  ? skb_free_head+0xb8/0x150
[   53.088954][ T4490]  __traceiter_kfree+0x2e/0x50
[   53.088979][ T4490]  ? skb_free_head+0xb8/0x150
[   53.089012][ T4490]  kfree+0x27b/0x320
[   53.089038][ T4490]  ? pskb_expand_head+0xf7/0x880
[   53.089067][ T4490]  skb_free_head+0xb8/0x150
[   53.089093][ T4490]  pskb_expand_head+0x24a/0x880
[   53.089174][ T4490]  netlink_trim+0x171/0x200
[   53.089196][ T4490]  netlink_broadcast_filtered+0x5c/0xc60
[   53.089222][ T4490]  ? rtmsg_ifinfo_build_skb+0x11c/0x1b0
[   53.089248][ T4490]  nlmsg_notify+0xcf/0x170
[   53.089265][ T4490]  ? __pfx_rtnetlink_event+0x10/0x10
[   53.089365][ T4490]  rtnetlink_event+0x1db/0x200
[   53.089388][ T4490]  raw_notifier_call_chain+0x6c/0x1b0
[   53.089477][ T4490]  ? call_netdevice_notifiers_info+0x9c/0x100
[   53.089512][ T4490]  call_netdevice_notifiers_info+0xae/0x100
[   53.089543][ T4490]  netif_set_mtu_ext+0x356/0x470
[   53.089566][ T4490]  netif_set_mtu+0x4a/0xf0
[   53.089621][ T4490]  dev_set_mtu+0xc1/0x170
[   53.089651][ T4490]  dev_ifsioc+0x474/0xaa0
[   53.089679][ T4490]  dev_ioctl+0x70a/0x960
[   53.089764][ T4490]  sock_do_ioctl+0x197/0x220
[   53.089795][ T4490]  sock_ioctl+0x41b/0x610
[   53.089817][ T4490]  ? __pfx_sock_ioctl+0x10/0x10
[   53.089903][ T4490]  __se_sys_ioctl+0xce/0x140
[   53.090023][ T4490]  __x64_sys_ioctl+0x43/0x50
[   53.090049][ T4490]  x64_sys_call+0x1816/0x2ff0
[   53.090074][ T4490]  do_syscall_64+0xd2/0x200
[   53.090105][ T4490]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   53.090140][ T4490]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   53.090214][ T4490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.090239][ T4490] RIP: 0033:0x7ff13de7ebe9
[   53.090303][ T4490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.090319][ T4490] RSP: 002b:00007ff13c8df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   53.090335][ T4490] RAX: ffffffffffffffda RBX: 00007ff13e0b5fa0 RCX: 00007ff13de7ebe9
[   53.090360][ T4490] RDX: 0000200000000080 RSI: 0000000000008922 RDI: 0000000000000007
[   53.090370][ T4490] RBP: 00007ff13c8df090 R08: 0000000000000000 R09: 0000000000000000
[   53.090386][ T4490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.090399][ T4490] R13: 00007ff13e0b6038 R14: 00007ff13e0b5fa0 R15: 00007ffca90091a8
[   53.090419][ T4490]  </TASK>
[   53.544569][ T2994]  loop4: p1 p3 < >
[   53.567940][ T4495] loop2: detected capacity change from 0 to 2048
[   53.613162][ T4495] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.683873][ T4495] EXT4-fs error (device loop2): ext4_free_inode:354: comm +}[@: bit already cleared for inode 15
[   53.715790][ T2994]  loop1: p1 p3 < >
[   53.769988][ T2994]  loop4: p1 p3 < >
[   53.802772][ T2994]  loop1: p1 p3 < >
[   53.842526][ T2994]  loop1: p1 p3 < >
[   53.938721][ T2994]  loop1: p1 p3 < >
[   53.979035][ T4533] loop3: detected capacity change from 0 to 512
[   53.999035][ T4533] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   54.083938][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.100071][ T4533] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.356: Failed to acquire dquot type 1
[   54.147393][ T4529] loop0: detected capacity change from 0 to 32768
[   54.162714][ T4533] EXT4-fs (loop3): 1 truncate cleaned up
[   54.202082][ T3289]  loop0: p1 p3 < >
[   54.228075][ T4533] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.244662][ T4536] __nla_validate_parse: 15 callbacks suppressed
[   54.244679][ T4536] netlink: 36 bytes leftover after parsing attributes in process `syz.0.355'.
[   54.263054][ T4529]  loop0: p1 p3 < >
[   54.301685][ T4541] loop2: detected capacity change from 0 to 128
[   54.309064][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.310792][ T4538] netlink: 36 bytes leftover after parsing attributes in process `syz.1.354'.
[   54.417263][ T2994]  loop0: p1 p3 < >
[   54.431125][ T4543] loop3: detected capacity change from 0 to 2048
[   54.477221][ T4543] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.524600][ T4551] bridge_slave_0: left allmulticast mode
[   54.530293][ T4551] bridge_slave_0: left promiscuous mode
[   54.536260][ T4551] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.550733][ T2994]  loop1: p1 p3 < >
[   54.558531][ T4543] EXT4-fs error (device loop3): ext4_free_inode:354: comm +}[@: bit already cleared for inode 15
[   54.568871][ T4552] validate_nla: 12 callbacks suppressed
[   54.568893][ T4552] netlink: 'syz.0.360': attribute type 21 has an invalid length.
[   54.592982][ T2994]  loop1: p1 p3 < >
[   54.607901][ T4554] capability: warning: `syz.1.361' uses 32-bit capabilities (legacy support in use)
[   54.629914][ T4555] netlink: 'syz.0.360': attribute type 10 has an invalid length.
[   54.637906][ T4555] netlink: 40 bytes leftover after parsing attributes in process `syz.0.360'.
[   54.659478][ T4551] bridge_slave_1: left allmulticast mode
[   54.665212][ T4551] bridge_slave_1: left promiscuous mode
[   54.670919][ T4551] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.690857][ T4551] bond0: (slave bond_slave_0): Releasing backup interface
[   54.702179][   T56] kworker/u8:4: attempt to access beyond end of device
[   54.702179][   T56] loop2: rw=1, sector=145, nr_sectors = 16 limit=128
[   54.718583][ T4551] bond0: (slave bond_slave_1): Releasing backup interface
[   54.727996][ T2994]  loop4: p1 p3 < >
[   54.767926][   T56] kworker/u8:4: attempt to access beyond end of device
[   54.767926][   T56] loop2: rw=1, sector=169, nr_sectors = 8 limit=128
[   54.771462][ T4551] team0: Port device team_slave_0 removed
[   54.801801][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.812862][   T56] kworker/u8:4: attempt to access beyond end of device
[   54.812862][   T56] loop2: rw=1, sector=185, nr_sectors = 8 limit=128
[   54.830591][   T56] kworker/u8:4: attempt to access beyond end of device
[   54.830591][   T56] loop2: rw=1, sector=201, nr_sectors = 8 limit=128
[   54.845705][ T2994]  loop1: p1 p3 < >
[   54.855230][ T4551] team0: Port device team_slave_1 removed
[   54.855461][   T56] kworker/u8:4: attempt to access beyond end of device
[   54.855461][   T56] loop2: rw=1, sector=217, nr_sectors = 8 limit=128
[   54.877002][ T4551] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   54.884460][ T4551] batman_adv: batadv0: Removing interface: batadv_slave_0
[   54.889779][   T56] kworker/u8:4: attempt to access beyond end of device
[   54.889779][   T56] loop2: rw=1, sector=233, nr_sectors = 8 limit=128
[   54.905570][   T56] kworker/u8:4: attempt to access beyond end of device
[   54.905570][   T56] loop2: rw=1, sector=249, nr_sectors = 8 limit=128
[   54.934247][   T56] kworker/u8:4: attempt to access beyond end of device
[   54.934247][   T56] loop2: rw=1, sector=265, nr_sectors = 8 limit=128
[   54.957210][ T4551] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   54.964693][ T4551] batman_adv: batadv0: Removing interface: batadv_slave_1
[   54.990501][   T56] kworker/u8:4: attempt to access beyond end of device
[   54.990501][   T56] loop2: rw=1, sector=281, nr_sectors = 8 limit=128
[   55.006759][   T56] kworker/u8:4: attempt to access beyond end of device
[   55.006759][   T56] loop2: rw=1, sector=297, nr_sectors = 8 limit=128
[   55.025150][ T4572] netlink: 32 bytes leftover after parsing attributes in process `syz.4.369'.
[   55.036706][ T2994]  loop1: p1 p3 < >
[   55.061973][ T2994]  loop4: p1 p3 < >
[   55.094156][ T3411] lo speed is unknown, defaulting to 1000
[   55.109122][ T4552] netlink: 132 bytes leftover after parsing attributes in process `syz.0.360'.
[   55.118238][ T4552] netlink: 'syz.0.360': attribute type 1 has an invalid length.
[   55.133552][ T4555] batman_adv: batadv0: Adding interface: veth1_vlan
[   55.140273][ T4555] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.168923][ T4555] batman_adv: batadv0: Interface activated: veth1_vlan
[   55.242544][ T4586] veth1_to_bond: entered allmulticast mode
[   55.248844][ T4586] veth1_to_bond: left allmulticast mode
[   55.254700][ T2994]  loop1: p1 p3 < >
[   55.281712][ T2994]  loop0: p1 p3 < >
[   55.336297][ T4593] loop2: detected capacity change from 0 to 512
[   55.343657][ T2994]  loop0: p1 p3 < >
[   55.346410][ T4593] EXT4-fs: Ignoring removed mblk_io_submit option
[   55.362087][ T4595] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   55.381862][ T4595] FAT-fs (loop9): unable to read boot sector
[   55.400647][ T4593] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   55.433234][ T4593] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e016c018, mo2=0002]
[   55.442812][ T4593] System zones: 1-12
[   55.448662][ T4593] EXT4-fs (loop2): 1 truncate cleaned up
[   55.451838][ T2994]  loop1: p1 p3 < >
[   55.458945][ T4593] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.514179][ T2994]  loop0: p1 p3 < >
[   55.533563][ T4593] lo speed is unknown, defaulting to 1000
[   55.542880][ T2994]  loop1: p1 p3 < >
[   55.575019][ T2994]  loop0: p1 p3 < >
[   55.616775][ T4612] IPv6: NLM_F_CREATE should be specified when creating new route
[   55.720661][ T2994]  loop1: p1 p3 < >
[   55.738864][ T2994]  loop1: p1 p3 < >
[   55.769556][ T2994]  loop1: p1 p3 < >
[   55.824796][ T4622] netlink: 20 bytes leftover after parsing attributes in process `syz.1.387'.
[   56.036090][ T2994]  loop4: p1 p3 < >
[   56.093586][ T2994]  loop4: p1 p3 < >
[   56.138731][   T29] kauditd_printk_skb: 571 callbacks suppressed
[   56.138748][   T29] audit: type=1326 audit(1757044733.632:2171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4633 comm="syz.3.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   56.171506][   T29] audit: type=1326 audit(1757044733.632:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4633 comm="syz.3.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   56.201375][ T3311] EXT4-fs error (device loop2): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /67/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   56.225228][   T29] audit: type=1326 audit(1757044733.672:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4633 comm="syz.3.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   56.248808][   T29] audit: type=1326 audit(1757044733.672:2174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4633 comm="syz.3.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   56.267686][ T2994]  loop4: p1 p3 < >
[   56.272153][   T29] audit: type=1326 audit(1757044733.672:2175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4633 comm="syz.3.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   56.272194][   T29] audit: type=1326 audit(1757044733.722:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4633 comm="syz.3.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   56.322585][   T29] audit: type=1326 audit(1757044733.722:2177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4633 comm="syz.3.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   56.327674][ T3311] EXT4-fs error (device loop2): ext4_empty_dir:3120: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   56.345937][   T29] audit: type=1326 audit(1757044733.722:2178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4633 comm="syz.3.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   56.367420][ T3311] EXT4-fs error (device loop2): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /67/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   56.388881][   T29] audit: type=1326 audit(1757044733.722:2179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4633 comm="syz.3.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   56.412185][ T3311] EXT4-fs error (device loop2): ext4_empty_dir:3120: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   56.433719][   T29] audit: type=1326 audit(1757044733.722:2180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4633 comm="syz.3.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8c946ebe9 code=0x7ffc0000
[   56.477332][ T3311] EXT4-fs error (device loop2): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /67/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   56.481597][ T4638] veth0_to_team: entered promiscuous mode
[   56.500074][ T3311] EXT4-fs error (device loop2): ext4_empty_dir:3120: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   56.524730][ T3311] EXT4-fs error (device loop2): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /67/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   56.556127][ T3311] EXT4-fs error (device loop2): ext4_empty_dir:3120: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   56.589940][ T2994]  loop0: p1 p3 < >
[   56.595196][ T3311] EXT4-fs error (device loop2): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /67/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   56.625612][ T4645] netlink: 16 bytes leftover after parsing attributes in process `syz.4.400'.
[   56.638443][ T3311] EXT4-fs error (device loop2): ext4_empty_dir:3120: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   56.661179][ T2994]  loop4: p1 p3 < >
[   56.674992][ T4645] netlink: 128 bytes leftover after parsing attributes in process `syz.4.400'.
[   56.693218][ T2994]  loop1: p1 p3 < >
[   56.811003][ T2994]  loop4: p1 p3 < >
[   56.842859][ T4660] netlink: 4 bytes leftover after parsing attributes in process `syz.1.404'.
[   56.873562][ T4660] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   56.880748][ T4660] batman_adv: batadv0: Removing interface: veth1_vlan
[   56.885641][ T2994]  loop4: p1 p3 < >
[   56.975659][ T2994]  loop0: p1 p3 < >
[   56.983944][ T4668] netlink: 24 bytes leftover after parsing attributes in process `syz.1.404'.
[   57.080462][ T2994]  loop1: p1 p3 < >
[   57.111567][ T2994]  loop1: p1 p3 < >
[   57.145298][ T2994]  loop1: p1 p3 < >
[   57.163910][ T4683] loop3: detected capacity change from 0 to 128
[   57.176792][ T2994]  loop0: p1 p3 < >
[   57.182164][ T4683] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   57.206812][ T4607] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.219500][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.231369][ T4683] ext4 filesystem being mounted at /87/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   57.295913][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.390298][ T2994]  loop0: p1 p3 < >
[   57.413249][ T3302] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   57.433578][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.447587][ T2994]  loop0: p1 p3 < >
[   57.488228][ T2994]  loop0: p1 p3 < >
[   57.543577][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.595698][ T2994]  loop0: p1 p3 < >
[   57.605337][ T4698] lo speed is unknown, defaulting to 1000
[   57.661296][ T2994]  loop1: p1 p3 < >
[   57.760752][ T2994]  loop0: p1 p3 < >
[   57.843420][   T12] bond0 (unregistering): Released all slaves
[   57.868620][ T4705] loop3: detected capacity change from 0 to 32768
[   57.899310][ T2994]  loop1: p1 p3 < >
[   57.984869][ T2994]  loop0: p1 p3 < >
[   58.000957][ T4740] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   58.017375][ T4740] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[   58.062622][ T2994]  loop4: p1 p3 < >
[   58.085499][   T12] hsr_slave_0: left promiscuous mode
[   58.092169][   T12] hsr_slave_1: left promiscuous mode
[   58.106764][   T12] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   58.113888][   T12] batman_adv: batadv0: Removing interface: veth1_vlan
[   58.142005][   T12] veth1_macvtap: left promiscuous mode
[   58.148049][ T2994]  loop0: p1 p3 < >
[   58.153374][   T12] veth0_macvtap: left promiscuous mode
[   58.174947][   T12] veth1_vlan: left promiscuous mode
[   58.180326][   T12] veth0_vlan: left promiscuous mode
[   58.201889][ T2994]  loop4: p1 p3 < >
[   58.240601][ T2994]  loop0: p1 p3 < >
[   58.389520][ T2994]  loop4: p1 p3 < >
[   58.500140][ T4698] chnl_net:caif_netlink_parms(): no params data found
[   58.686901][ T4698] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.694222][ T4698] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.727706][ T4698] bridge_slave_0: entered allmulticast mode
[   58.761190][ T4698] bridge_slave_0: entered promiscuous mode
[   58.788286][ T4698] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.795482][ T4698] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.803986][ T2994]  loop1: p1 p3 < >
[   58.857796][ T4698] bridge_slave_1: entered allmulticast mode
[   58.894722][ T4698] bridge_slave_1: entered promiscuous mode
[   59.004690][ T4698] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.064410][ T4801] bridge_slave_0: left allmulticast mode
[   59.070111][ T4801] bridge_slave_0: left promiscuous mode
[   59.075865][ T4801] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.094893][ T4801] bridge_slave_1: left allmulticast mode
[   59.100700][ T4801] bridge_slave_1: left promiscuous mode
[   59.106427][ T4801] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.111583][ T4805] netlink: 'syz.3.449': attribute type 21 has an invalid length.
[   59.124378][ T4801] bond0: (slave bond_slave_0): Releasing backup interface
[   59.130396][ T2994]  loop1: p1 p3 < >
[   59.138467][ T4801] bond0: (slave bond_slave_1): Releasing backup interface
[   59.156670][ T4801] team0: Port device team_slave_0 removed
[   59.168220][ T4809] netlink: 'syz.3.449': attribute type 10 has an invalid length.
[   59.186635][ T2994]  loop0: p1 p3 < >
[   59.196021][ T4801] team0: Port device team_slave_1 removed
[   59.211607][ T4801] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.219121][ T4801] batman_adv: batadv0: Removing interface: batadv_slave_0
[   59.253341][ T4801] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.261280][ T4801] batman_adv: batadv0: Removing interface: batadv_slave_1
[   59.288678][ T2994]  loop4: p1 p3 < >
[   59.304319][ T4698] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.339174][ T4805] __nla_validate_parse: 6 callbacks suppressed
[   59.339189][ T4805] netlink: 132 bytes leftover after parsing attributes in process `syz.3.449'.
[   59.354711][ T4805] netlink: 'syz.3.449': attribute type 1 has an invalid length.
[   59.359125][ T2994]  loop0: p1 p3 < >
[   59.374432][ T4809] batman_adv: batadv0: Adding interface: veth1_vlan
[   59.381596][ T4809] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.410935][ T4809] batman_adv: batadv0: Interface activated: veth1_vlan
[   59.420963][ T2994]  loop4: p1 p3 < >
[   59.445153][ T4819] netlink: 8 bytes leftover after parsing attributes in process `syz.4.454'.
[   59.454104][ T4819] netlink: 8 bytes leftover after parsing attributes in process `syz.4.454'.
[   59.464313][ T4698] team0: Port device team_slave_0 added
[   59.472484][ T4698] team0: Port device team_slave_1 added
[   59.523236][ T4821] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4821 comm=syz.0.455
[   59.535715][ T4821] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4821 comm=syz.0.455
[   59.572670][ T4698] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.579654][ T4698] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.605346][ T4825] netlink: 8 bytes leftover after parsing attributes in process `syz.4.457'.
[   59.605595][ T4698] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.614368][ T4825] netlink: 8 bytes leftover after parsing attributes in process `syz.4.457'.
[   59.653421][ T4827] netlink: 8 bytes leftover after parsing attributes in process `syz.3.458'.
[   59.662416][ T4827] netlink: 8 bytes leftover after parsing attributes in process `syz.3.458'.
[   59.704623][ T4698] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.711678][ T4698] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.737641][ T4698] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.761673][ T2994]  loop4: p1 p3 < >
[   59.795893][ T4837] loop3: detected capacity change from 0 to 128
[   59.862319][ T4837] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   59.880430][ T4837] ext4 filesystem being mounted at /93/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   59.939663][ T2994]  loop0: p1 p3 < >
[   59.944772][ T4698] hsr_slave_0: entered promiscuous mode
[   59.967408][ T4848] netlink: 4 bytes leftover after parsing attributes in process `GPL'.
[   60.010765][ T4698] hsr_slave_1: entered promiscuous mode
[   60.016654][ T4698] debugfs: 'hsr0' already exists in 'hsr'
[   60.022402][ T4698] Cannot create hsr debugfs directory
[   60.053361][ T2994]  loop1: p1 p3 < >
[   60.096690][ T2994]  loop4: p1 p3 < >
[   60.107013][ T3302] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   60.111033][ T4864] netlink: 'syz.1.466': attribute type 21 has an invalid length.
[   60.151673][ T4858] netlink: 36 bytes leftover after parsing attributes in process `syz.4.461'.
[   60.181061][ T4870] netlink: 'syz.1.466': attribute type 10 has an invalid length.
[   60.188814][ T4870] netlink: 40 bytes leftover after parsing attributes in process `syz.1.466'.
[   60.213868][ T4872] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   60.264694][ T4870] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   60.287373][ T4872] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[   60.319067][ T4864] netlink: 'syz.1.466': attribute type 1 has an invalid length.
[   60.364655][ T2994]  loop4: p1 p3 < >
[   60.399300][ T2994]  loop1: p1 p3 < >
[   60.467848][ T4887] can0: slcan on ttyS3.
[   60.517654][ T4895] FAULT_INJECTION: forcing a failure.
[   60.517654][ T4895] name failslab, interval 1, probability 0, space 0, times 0
[   60.530385][ T4895] CPU: 1 UID: 0 PID: 4895 Comm: syz.3.473 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.530409][ T4895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   60.530419][ T4895] Call Trace:
[   60.530424][ T4895]  <TASK>
[   60.530429][ T4895]  __dump_stack+0x1d/0x30
[   60.530536][ T4895]  dump_stack_lvl+0xe8/0x140
[   60.530558][ T4895]  dump_stack+0x15/0x1b
[   60.530576][ T4895]  should_fail_ex+0x265/0x280
[   60.530598][ T4895]  should_failslab+0x8c/0xb0
[   60.530624][ T4895]  kmem_cache_alloc_noprof+0x50/0x310
[   60.530681][ T4895]  ? audit_log_start+0x365/0x6c0
[   60.530713][ T4895]  audit_log_start+0x365/0x6c0
[   60.530767][ T4895]  audit_seccomp+0x48/0x100
[   60.530793][ T4895]  ? __seccomp_filter+0x68c/0x10d0
[   60.530810][ T4895]  __seccomp_filter+0x69d/0x10d0
[   60.530894][ T4895]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   60.530924][ T4895]  ? vfs_write+0x7e8/0x960
[   60.530945][ T4895]  ? __rcu_read_unlock+0x4f/0x70
[   60.530986][ T4895]  ? __fget_files+0x184/0x1c0
[   60.531016][ T4895]  __secure_computing+0x82/0x150
[   60.531033][ T4895]  syscall_trace_enter+0xcf/0x1e0
[   60.531116][ T4895]  do_syscall_64+0xac/0x200
[   60.531149][ T4895]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.531199][ T4895]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   60.531336][ T4895]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.531358][ T4895] RIP: 0033:0x7ff8c946ebe9
[   60.531370][ T4895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.531385][ T4895] RSP: 002b:00007ff8c7ed7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   60.531420][ T4895] RAX: ffffffffffffffda RBX: 00007ff8c96a5fa0 RCX: 00007ff8c946ebe9
[   60.531433][ T4895] RDX: 00000000000000d3 RSI: 0000000000000029 RDI: 0000000000000003
[   60.531446][ T4895] RBP: 00007ff8c7ed7090 R08: 000000000000005c R09: 0000000000000000
[   60.531459][ T4895] R10: 00002000000001c0 R11: 0000000000000246 R12: 0000000000000001
[   60.531470][ T4895] R13: 00007ff8c96a6038 R14: 00007ff8c96a5fa0 R15: 00007ffc835cda08
[   60.531491][ T4895]  </TASK>
[   60.565740][ T4698] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   60.747501][ T4698] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   60.773993][ T4698] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   60.788158][ T4698] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   60.798484][ T2994]  loop1: p1 p3 < >
[   60.810749][ T4900] can0 (unregistered): slcan off ttyS3.
[   60.821988][ T4901] can0: slcan on ttyS3.
[   60.848707][ T4918] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   60.858014][ T4918] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[   60.866040][ T2994]  loop1: p1 p3 < >
[   60.884738][ T2994]  loop1: p1 p3 < >
[   60.896553][ T4698] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.920495][ T4698] 8021q: adding VLAN 0 to HW filter on device team0
[   60.932633][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.939816][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.953352][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.960602][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.978950][ T2994]  loop0: p1 p3 < >
[   61.026983][ T2994]  loop1: p1 p3 < >
[   61.128702][ T4698] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.228247][   T29] kauditd_printk_skb: 376 callbacks suppressed
[   61.228260][   T29] audit: type=1326 audit(1757044738.722:2555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4950 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   61.248541][ T2994]  loop1: p1 p3 < >
[   61.279430][   T29] audit: type=1326 audit(1757044738.762:2556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4950 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   61.302921][   T29] audit: type=1326 audit(1757044738.762:2557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4950 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   61.326245][   T29] audit: type=1326 audit(1757044738.762:2558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4950 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   61.349457][   T29] audit: type=1326 audit(1757044738.762:2559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4950 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   61.420782][ T4887] can0 (unregistered): slcan off ttyS3.
[   61.443986][ T4698] veth0_vlan: entered promiscuous mode
[   61.457936][ T2994]  loop4: p1 p3 < >
[   61.475159][ T4698] veth1_vlan: entered promiscuous mode
[   61.487664][ T2994]  loop1: p1 p3 < >
[   61.517363][ T2994]  loop4: p1 p3 < >
[   61.520066][ T4698] veth0_macvtap: entered promiscuous mode
[   61.545128][ T4976] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4976 comm=GPL
[   61.557307][ T4976] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4976 comm=GPL
[   61.571377][ T4698] veth1_macvtap: entered promiscuous mode
[   61.610519][ T4698] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.645042][ T4698] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.685845][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.708104][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.754760][   T29] audit: type=1400 audit(1757044739.242:2560): avc:  denied  { mount } for  pid=4698 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   61.809296][ T2994]  loop1: p1 p3 < >
[   61.819573][ T4991] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   61.827123][ T4991] batman_adv: batadv0: Removing interface: veth1_vlan
[   61.848069][   T29] audit: type=1400 audit(1757044739.272:2561): avc:  denied  { mounton } for  pid=4698 comm="syz-executor" path="/root/syzkaller.vCpCAV/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   61.877541][ T2994]  loop0: p1 p3 < >
[   61.882159][ T4997] netlink: 'syz.4.490': attribute type 21 has an invalid length.
[   61.917665][   T29] audit: type=1326 audit(1757044739.412:2562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.0.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb93bd0ebe9 code=0x7ffc0000
[   61.941144][   T29] audit: type=1326 audit(1757044739.412:2563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.0.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb93bd0ebe9 code=0x7ffc0000
[   61.957261][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.994897][   T29] audit: type=1326 audit(1757044739.452:2564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.0.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb93bd0ebe9 code=0x7ffc0000
[   61.997171][ T4991] netlink: 'syz.4.490': attribute type 10 has an invalid length.
[   62.046292][ T4997] netlink: 'syz.4.490': attribute type 1 has an invalid length.
[   62.055893][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.088362][ T4991] batman_adv: batadv0: Adding interface: veth1_vlan
[   62.095129][ T4991] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.147755][ T2994]  loop1: p1 p3 < >
[   62.154609][ T5011] loop5: detected capacity change from 0 to 512
[   62.167658][ T4991] batman_adv: batadv0: Interface activated: veth1_vlan
[   62.187156][ T5011] ext4 filesystem being mounted at /0/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   62.202726][ T2994]  loop1: p1 p3 < >
[   62.218868][ T5011] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #2: comm syz.5.421: corrupted inode contents
[   62.251671][ T5011] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #2: comm syz.5.421: mark_inode_dirty error
[   62.266330][ T5019] loop3: detected capacity change from 0 to 2048
[   62.273856][ T5020] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   62.291429][ T5020] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[   62.294502][ T5011] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #2: comm syz.5.421: corrupted inode contents
[   62.353247][ T5019] EXT4-fs error (device loop3): ext4_free_inode:354: comm +}[@: bit already cleared for inode 15
[   62.372630][ T2994]  loop0: p1 p3 < >
[   62.376546][ T5011] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.421: mark_inode_dirty error
[   62.412717][ T2994]  loop4: p1 p3 < >
[   62.459138][ T2994]  loop4: p1 p3 < >
[   62.487532][ T2994]  loop0: p1 p3 < >
[   62.523947][ T2994]  loop0: p1 p3 < >
[   62.555821][ T5041] loop5: detected capacity change from 0 to 128
[   62.573415][ T2994]  loop4: p1 p3 < >
[   62.587446][ T5041] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5041 comm=GPL
[   62.599337][ T5041] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=5041 comm=GPL
[   62.613583][ T2994]  loop4: p1 p3 < >
[   62.655668][ T2994]  loop0: p1 p3 < >
[   62.678590][ T2994]  loop4: p1 p3 < >
[   62.740533][ T5057] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   62.742657][ T2994]  loop0: p1 p3 < >
[   62.747711][ T5057] batman_adv: batadv0: Removing interface: veth1_vlan
[   62.768326][ T5064] netlink: 'syz.4.513': attribute type 21 has an invalid length.
[   62.800136][ T5064] netlink: 'syz.4.513': attribute type 1 has an invalid length.
[   62.821189][ T2994]  loop4: p1 p3 < >
[   62.843073][ T2994]  loop0: p1 p3 < >
[   62.852786][ T5057] netlink: 'syz.4.513': attribute type 10 has an invalid length.
[   62.871089][ T5057] batman_adv: batadv0: Adding interface: veth1_vlan
[   62.877724][ T5057] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.904374][ T5057] batman_adv: batadv0: Interface activated: veth1_vlan
[   62.916350][ T2994]  loop0: p1 p3 < >
[   62.945254][ T2994]  loop0: p1 p3 < >
[   62.949478][ T5074] loop3: detected capacity change from 0 to 512
[   62.973304][ T5074] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.520: invalid block
[   62.990214][ T5074] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.520: invalid indirect mapped block 4294967295 (level 1)
[   63.004752][ T2994]  loop4: p1 p3 < >
[   63.005952][ T5074] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.520: invalid indirect mapped block 4294967295 (level 1)
[   63.024781][ T5074] EXT4-fs (loop3): 2 truncates cleaned up
[   63.047999][ T5053] loop5: detected capacity change from 0 to 32768
[   63.062097][ T2994]  loop0: p1 p3 < >
[   63.083259][ T5053]  loop5: p1 p3 < >
[   63.088717][ T2994]  loop0: p1 p3 < >
[   63.099343][ T5085] tipc: Started in network mode
[   63.104711][ T5085] tipc: Node identity ea1ba0600aa2, cluster identity 4711
[   63.112326][ T5085] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   63.142616][ T2994]  loop4: p1 p3 < >
[   63.152418][ T5092] tipc: Disabling bearer <eth:syzkaller0>
[   63.187616][ T2994]  loop0: p1 p3 < >
[   63.277473][ T2994]  loop0: p1 p3 < >
[   63.288573][ T5103] bridge_slave_0: left allmulticast mode
[   63.294307][ T5103] bridge_slave_0: left promiscuous mode
[   63.300026][ T5103] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.355263][ T5103] bridge_slave_1: left allmulticast mode
[   63.361399][ T5103] bridge_slave_1: left promiscuous mode
[   63.367157][ T5103] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.376097][ T2994]  loop1: p1 p3 < >
[   63.397937][ T5110] netlink: 'syz.5.532': attribute type 21 has an invalid length.
[   63.411497][ T5103] bond0: (slave bond_slave_0): Releasing backup interface
[   63.413364][ T2994]  loop0: p1 p3 < >
[   63.425793][ T5103] bond0: (slave bond_slave_1): Releasing backup interface
[   63.439215][ T5103] team0: Port device team_slave_0 removed
[   63.462535][ T5103] team0: Port device team_slave_1 removed
[   63.487225][ T5103] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.494730][ T5103] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.513994][ T5103] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.521639][ T5103] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.536517][ T2994]  loop1: p1 p3 < >
[   63.589412][ T5114] batman_adv: batadv0: Adding interface: veth1_vlan
[   63.596073][ T5114] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.628972][ T5114] batman_adv: batadv0: Interface activated: veth1_vlan
[   63.659154][ T2994]  loop1: p1 p3 < >
[   64.085355][ T3289] udevd[3289]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[   64.146862][ T2994]  loop0: p1 p3 < >
[   64.255177][ T2994]  loop0: p1 p3 < >
[   64.314303][ T5128] loop3: detected capacity change from 0 to 32768
[   64.353012][ T4717]  loop3: p1 p3 < >
[   64.366428][ T5128]  loop3: p1 p3 < >
[   64.483486][ T3289] udevd[3289]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[   64.493902][ T2994]  loop0: p1 p3 < >
[   64.504934][ T5171] loop3: detected capacity change from 0 to 128
[   64.527789][ T2994]  loop1: p1 p3 < >
[   64.534389][ T5171] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5171 comm=GPL
[   64.546336][ T5171] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=5171 comm=GPL
[   64.609733][ T2994]  loop1: p1 p3 < >
[   64.742492][ T5188] __nla_validate_parse: 20 callbacks suppressed
[   64.742512][ T5188] netlink: 132 bytes leftover after parsing attributes in process `syz.1.549'.
[   64.771928][ T5194] netlink: 8 bytes leftover after parsing attributes in process `syz.0.553'.
[   64.781005][ T5194] netlink: 8 bytes leftover after parsing attributes in process `syz.0.553'.
[   64.822052][ T5203] loop3: detected capacity change from 0 to 128
[   64.854179][ T2994]  loop1: p1 p3 < >
[   64.859515][ T5203] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   64.884097][ T5207] netlink: 4 bytes leftover after parsing attributes in process `syz.0.558'.
[   64.930270][ T5207] gretap0: entered promiscuous mode
[   64.950865][ T5203] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   64.960648][ T5207] macsec1: entered promiscuous mode
[   64.966050][ T5207] macsec1: entered allmulticast mode
[   64.971488][ T5207] gretap0: entered allmulticast mode
[   65.012624][ T2994]  loop4: p1 p3 < >
[   65.036279][ T5207] gretap0: left allmulticast mode
[   65.041485][ T5207] gretap0: left promiscuous mode
[   65.116126][ T5227] loop5: detected capacity change from 0 to 128
[   65.156534][ T5227] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5227 comm=GPL
[   65.168453][ T5227] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=5227 comm=GPL
[   65.204776][ T5235] FAULT_INJECTION: forcing a failure.
[   65.204776][ T5235] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   65.218003][ T5235] CPU: 1 UID: 0 PID: 5235 Comm: syz.4.564 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   65.218045][ T5235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   65.218057][ T5235] Call Trace:
[   65.218063][ T5235]  <TASK>
[   65.218084][ T5235]  __dump_stack+0x1d/0x30
[   65.218168][ T5235]  dump_stack_lvl+0xe8/0x140
[   65.218208][ T5235]  dump_stack+0x15/0x1b
[   65.218228][ T5235]  should_fail_ex+0x265/0x280
[   65.218249][ T5235]  should_fail+0xb/0x20
[   65.218268][ T5235]  should_fail_usercopy+0x1a/0x20
[   65.218290][ T5235]  _copy_from_user+0x1c/0xb0
[   65.218344][ T5235]  ___sys_sendmsg+0xc1/0x1d0
[   65.218429][ T5235]  __x64_sys_sendmsg+0xd4/0x160
[   65.218455][ T5235]  x64_sys_call+0x191e/0x2ff0
[   65.218482][ T5235]  do_syscall_64+0xd2/0x200
[   65.218517][ T5235]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   65.218547][ T5235]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   65.218614][ T5235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.218671][ T5235] RIP: 0033:0x7f046784ebe9
[   65.218691][ T5235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.218781][ T5235] RSP: 002b:00007f04662af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   65.218864][ T5235] RAX: ffffffffffffffda RBX: 00007f0467a85fa0 RCX: 00007f046784ebe9
[   65.218880][ T5235] RDX: 000000000000c000 RSI: 0000200000000080 RDI: 0000000000000003
[   65.218895][ T5235] RBP: 00007f04662af090 R08: 0000000000000000 R09: 0000000000000000
[   65.218910][ T5235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.218971][ T5235] R13: 00007f0467a86038 R14: 00007f0467a85fa0 R15: 00007fff8d0bd448
[   65.218988][ T5235]  </TASK>
[   65.400209][ T5233] netlink: 36 bytes leftover after parsing attributes in process `syz.1.556'.
[   65.410766][ T2994]  loop4: p1 p3 < >
[   65.430795][ T5239] loop3: detected capacity change from 0 to 512
[   65.440856][ T5239] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.566: invalid block
[   65.480817][ T5239] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.566: invalid indirect mapped block 4294967295 (level 1)
[   65.491888][ T4258] udevd[4258]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   65.525388][ T4717] udevd[4717]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   65.539926][ T2994]  loop4: p1 p3 < >
[   65.551978][ T5239] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.566: invalid indirect mapped block 4294967295 (level 1)
[   65.595851][ T4717] udevd[4717]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   65.616298][ T5239] EXT4-fs (loop3): 2 truncates cleaned up
[   65.620921][ T2994]  loop4: p1 p3 < >
[   65.626294][ T5255] netlink: 32 bytes leftover after parsing attributes in process `syz.0.565'.
[   65.644578][ T5256] validate_nla: 4 callbacks suppressed
[   65.644592][ T5256] netlink: 'syz.5.567': attribute type 21 has an invalid length.
[   65.658732][ T3289] udevd[3289]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   65.681213][ T5249] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   65.688311][ T5249] batman_adv: batadv0: Removing interface: veth1_vlan
[   65.728204][ T2994]  loop0: p1 p3 < >
[   65.729581][ T5265] loop9: detected capacity change from 0 to 7
[   65.739906][ T5265] Buffer I/O error on dev loop9, logical block 0, async page read
[   65.752349][ T2994]  loop4: p1 p3 < >
[   65.778035][ T2994]  loop0: p1 p3 < >
[   65.778057][ T5265] Buffer I/O error on dev loop9, logical block 0, async page read
[   65.789765][ T5265]  loop9: unable to read partition table
[   65.802477][ T5265] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[   65.802477][ T5265] 
) failed (rc=-5)
[   65.818862][ T5256] netlink: 132 bytes leftover after parsing attributes in process `syz.5.567'.
[   65.828024][ T5256] netlink: 'syz.5.567': attribute type 1 has an invalid length.
[   65.846849][ T5271] netlink: 12 bytes leftover after parsing attributes in process `syz.0.572'.
[   65.855821][ T5271] netlink: 28 bytes leftover after parsing attributes in process `syz.0.572'.
[   65.864786][ T5271] netlink: 12 bytes leftover after parsing attributes in process `syz.0.572'.
[   65.874250][ T2994]  loop4: p1 p3 < >
[   65.882693][ T5271] netlink: 'syz.0.572': attribute type 6 has an invalid length.
[   65.921940][ T2994]  loop1: p1 p3 < >
[   65.946912][ T2994]  loop1: p1 p3 < >
[   66.002606][ T2994]  loop4: p1 p3 < >
[   66.040367][ T2994]  loop1: p1 p3 < >
[   66.063728][ T5295] 9pnet_fd: Insufficient options for proto=fd
[   66.085771][ T2994]  loop0: p1 p3 < >
[   66.122969][ T2994]  loop0: p1 p3 < >
[   66.164164][ T2994]  loop1: p1 p3 < >
[   66.187497][ T2994]  loop0: p1 p3 < >
[   66.208559][ T2994]  loop1: p1 p3 < >
[   66.232891][ T2994]  loop0: p1 p3 < >
[   66.273562][ T2994]  loop1: p1 p3 < >
[   66.376402][ T3507] ==================================================================
[   66.384536][ T3507] BUG: KCSAN: data-race in fill_mg_cmtime / shmem_unlink
[   66.391577][ T3507] 
[   66.393991][ T3507] write to 0xffff8881037d9264 of 4 bytes by task 3688 on cpu 1:
[   66.401631][ T3507]  shmem_unlink+0x13c/0x170
[   66.406155][ T3507]  shmem_rename2+0x1a1/0x290
[   66.410762][ T3507]  vfs_rename+0x7f0/0xa40
[   66.415103][ T3507]  do_renameat2+0x557/0xa10
[   66.419608][ T3507]  __x64_sys_rename+0x58/0x70
[   66.424301][ T3507]  x64_sys_call+0x1f9/0x2ff0
[   66.428926][ T3507]  do_syscall_64+0xd2/0x200
[   66.433450][ T3507]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.439354][ T3507] 
[   66.441679][ T3507] read to 0xffff8881037d9264 of 4 bytes by task 3507 on cpu 0:
[   66.449226][ T3507]  fill_mg_cmtime+0x5b/0x260
[   66.453824][ T3507]  generic_fillattr+0x24a/0x340
[   66.458682][ T3507]  shmem_getattr+0x181/0x200
[   66.463282][ T3507]  vfs_getattr_nosec+0x146/0x1e0
[   66.468229][ T3507]  vfs_statx+0x113/0x390
[   66.472487][ T3507]  vfs_fstatat+0x115/0x170
[   66.476933][ T3507]  __se_sys_newfstatat+0x55/0x260
[   66.481969][ T3507]  __x64_sys_newfstatat+0x55/0x70
[   66.487003][ T3507]  x64_sys_call+0x135a/0x2ff0
[   66.491774][ T3507]  do_syscall_64+0xd2/0x200
[   66.496287][ T3507]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.502179][ T3507] 
[   66.504509][ T3507] value changed: 0x346fdbfa -> 0x34735105
[   66.510214][ T3507] 
[   66.512531][ T3507] Reported by Kernel Concurrency Sanitizer on:
[   66.518679][ T3507] CPU: 0 UID: 0 PID: 3507 Comm: udevd Not tainted syzkaller #0 PREEMPT(voluntary) 
[   66.527967][ T3507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   66.538023][ T3507] ==================================================================
[   66.644349][ T2994]  loop4: p1 p3 < >
[   66.743778][ T5314] 9pnet_fd: Insufficient options for proto=fd
[   66.773770][ T2994]  loop0: p1 p3 < >
[   66.778167][   T29] kauditd_printk_skb: 463 callbacks suppressed
[   66.778234][   T29] audit: type=1326 audit(1757044744.272:3028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5306 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000
[   66.807849][   T29] audit: type=1326 audit(1757044744.272:3029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5306 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03fcc3ebe9 code=0x7ffc0000