last executing test programs:

1.773051544s ago: executing program 0 (id=2435):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000004000000ff7f0000cc00000000000000", @ANYRES32, @ANYBLOB="0000000000000800000010000000000004000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000400"], 0x50)

1.622832397s ago: executing program 4 (id=2439):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$rds(r0, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {0x0}, &(0x7f0000000340)=[{&(0x7f0000001140)=""/102, 0x66}], 0x1, 0x60, 0xfffffffefffffffe}}], 0x48, 0x10040045}, 0x0)

1.547855488s ago: executing program 4 (id=2440):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0xe1d, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000019580)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000"], 0x0, 0xe}, 0x94)
r1 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r1, 0x84, 0x75, &(0x7f0000000400), 0x4)
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000580)={'sit0\x00', &(0x7f0000000940)={'syztnl2\x00', 0x0, 0x7, 0x80, 0x8, 0xfffffff8, {{0x11, 0x4, 0x3, 0x3, 0x44, 0x64, 0x0, 0xb5, 0x4, 0x0, @broadcast, @multicast2, {[@noop, @ssrr={0x89, 0xf, 0x44, [@multicast2, @multicast2, @multicast1]}, @cipso={0x86, 0x1d, 0xffffffffffffffff, [{0x5, 0xd, "5c9a75ce1e7bfc0adb044c"}, {0x7, 0x5, "133313"}, {0x6, 0x5, "38d9cb"}]}, @end]}}}}})
sendmsg$nl_xfrm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000192c0)=ANY=[@ANYBLOB="0401000010000700000000000000000000000000000000000000ffffac14143ee00000020000000000000000000000004e200000000000000000000002000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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"], 0x104}}, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={0xffffffffffffffff, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000280)=[0x1], 0x0, 0x0, 0x1, 0x1}}, 0x3c)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000400)="67d8901bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c14498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d3abc8a75ac1f30e53a0eff506f6e6b369ba6c5306e91acaa94e89d3bff4e52cd151235f3deff", 0x76}, {&(0x7f0000000900)="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", 0x3e4}], 0x2}, 0x0)

1.45172629s ago: executing program 1 (id=2442):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3, 0x0, 0x100}, 0x18)
sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000980)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01032bbd700000000000010000"], 0x20}, 0x1, 0x0, 0x0, 0x4004004}, 0x44) (fail_nth: 2)

1.420998411s ago: executing program 0 (id=2443):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x40505330, &(0x7f00000001c0)={0x800100, 0xffffffff, 0x22, 0xe1d9, 0x1101, 0xff})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x40505330, &(0x7f0000000040)={0x800100, 0xffffffff, 0x53b, 0xe1d7, 0xc9})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='mm_page_free\x00', r0, 0x0, 0x3}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

1.363778262s ago: executing program 1 (id=2444):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1400c, &(0x7f0000000840)={[{@stripe={'stripe', 0x3d, 0x40}}, {@init_itable}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x3, 0x45f, &(0x7f0000000ac0)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='system.posix_acl_access\x00', &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100002000000000020"], 0x24, 0x0)
r1 = semget$private(0x0, 0x6, 0x0)
semtimedop(r1, &(0x7f00000003c0)=[{0x4, 0x4, 0x1800}], 0x1, 0x0)
semop(r1, &(0x7f00000000c0)=[{0x4}, {0x2}], 0x2)
semop(r1, &(0x7f0000001240)=[{0x2, 0x102}, {0x3, 0x0, 0x2000}], 0x2)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, 0x0)
clock_settime(0x7, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000100)=[0x4])
semop(0x0, &(0x7f0000002480)=[{}], 0x1)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x1, 0x500, &(0x7f0000000500)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r2, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})
chdir(&(0x7f0000000100)='./file0\x00')
semop(0x0, &(0x7f00000003c0)=[{}], 0x1)
semctl$IPC_RMID(0x0, 0x0, 0x0)
semctl$GETPID(0x0, 0x0, 0xb, &(0x7f00000002c0)=""/107)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18)
r3 = socket(0x1e, 0x4, 0x0)
semtimedop(0x0, &(0x7f0000000240)=[{0x0, 0xa, 0x800}, {0x0, 0x9}, {0x0, 0x7, 0x1000}], 0x3, &(0x7f0000000500))
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x401, 0xfffffffe, 0x0, 0xffffffff}, 0x10)
io_uring_setup(0x4d3f, &(0x7f0000000480)={0x0, 0xa7b0, 0x4000, 0x2, 0x2b0})
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
linkat(r0, &(0x7f0000000000)='./file0/file0\x00', r0, &(0x7f0000000380)='./file0\x00', 0x1400)
kexec_load(0x4, 0xa, 0x0, 0x0)

1.362781902s ago: executing program 4 (id=2446):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000003b00)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
io_setup(0x8, &(0x7f0000004200))

1.282676084s ago: executing program 4 (id=2448):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000004, 0x3b071, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x11, &(0x7f00000002c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8f, 0x0, 0x0, 0x0, 0x41da}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffc}, {0x85, 0x0, 0x0, 0x86}}, {{0x5, 0x0, 0x5, 0x9, 0x0, 0x1, 0x80000000}}, [@map_fd={0x18, 0x6, 0x1, 0x0, r0}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0xae}}}, &(0x7f0000000080)='GPL\x00', 0xa, 0xffe, &(0x7f0000000cc0)=""/4094, 0x41000, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffb}, 0x94)

1.089475867s ago: executing program 0 (id=2452):
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000e40)='./file2\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$eJzs3c9rXNUeAPDvnSRNm/a95MGD9+oqIGigdGJqbBVcVFyIYKGga9thMg01k0zJTEoTAlpEcCOouBB007U/6s6tP7b6X7gQS9W0WHEhkTu5t502M2mSJpnqfD5wM+fceyfnfOf+OGfmHu4NoGeNpn8KEYcj4t0kYjibn0TEQDPVH3Fybb1bK8vldEpidfXlX5LmOjdXlsvR8p7UwSzz/4j45q2II4X15dYXl2ZK1WplPsuPN2YvjNcXl46eny1NV6Yrc8cnJiePnXjqxPGdi/W375cOXXvvhcc/P/nHm/+7+s63SZyMQ9my1jh2ymiMZp/JQPoR3uX5nS6sy5JuV4BtSQ/NvrWjPA7HcPQ1UwDAP9nrEbEKAPSYRPsPAD0m/x3g5spyOZ+6+4vE3rr+XETsX4s/v765tqQ/u2a3v3kddOhmcteVkSQiRnag/NGI+PjLVz9Np9il65AA7bxxOSLOjoyuP/8n68YsbNUTGyzbl72O3jPf+Q/2zldp/+fpdv2/wu3+T7Tp/wy2OXa3477H/4EdKGQDaf/v2Zaxbbda4s+M9GW5fzX7fAPJufPVSnpu+3dEjMXAYJqf2KCMsRt/3ui0rLX/9+v7r32Slp++3lmj8FP/4N3vmSo1Sg8Sc6vrlyMe6W8Xf3J7+ycd+r+nN1nGi8+8/VGnZWn8abz5tD7+yEYn7Y7VKxGPtd3+d0a0JRuOTxxv7g7j+U7Rxhc/fDjUqfzW7Z9Oafn5d4G9kG7/oY3jH0lax2vWt17Gd1eGv+607P7xt9//9yWvNNN5P+JSqdGYn4jYl7y0fv6xO+/N8/n6afxjj7Y//jfa/9PvhGc3GX//tZ8/2378uyuNf2pL23/riau3Zvo6lb+57T/ZTI1lczZz/ttsBR/kswMAAAAAAAAAAAAAAAAAAAAAAACAzSpExKFICsXb6UKhWFx7hvd/Y6hQrdUbR87VFuamovms7JEYKOS3uhxuuR/qRHY//Dx/7J78kxHxn4j4YPBAkt9HcarLsQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA7mCH5/+nfhzsdu0AgF2zv9sVAAD2nPYfAHqP9h8Aeo/2HwB6j/YfAHqP9h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBddvrUqXRa/X1luZzmpy4uLszULh6dqtRnirML5WK5Nn+hOF2rTVcrxXJt9n7/r1qrXZiMuYVL441KvTFeX1w6M1tbmGucOT9bmq6cqQzsSVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsDX1xaWZUrVamZfYRmL14ahG9xN92e70sNRnTxPJw1GNHU50+cQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8DfxVwAAAP//02Ii/w==")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0xb}})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000200), 0x1241, 0x0)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x10000, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000008000000000000e000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x101c0ca, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x6, 0x2c0, &(0x7f0000000900)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)
keyctl$setperm(0x5, r3, 0x0)

1.017453409s ago: executing program 3 (id=2454):
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='auxv\x00')
preadv(r0, &(0x7f0000001b80)=[{&(0x7f00000000c0)=""/92, 0x5c}], 0x1, 0x62, 0xfd4c)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
r2 = socket(0x400000000010, 0x3, 0x2) (async, rerun: 64)
r3 = socket$unix(0x1, 0x1, 0x0) (rerun: 64)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x8800) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xa0, 0x30, 0xffff, 0xfffffffe, 0x0, {}, [{0x8c, 0x1, [@m_gact={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_sample={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PARMS={0x18, 0x2, {0x2, 0x5f, 0x0, 0x101, 0x8cb8}}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x6}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x3}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}, 0xa0}}, 0x0) (async)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x7c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x4c, 0x2, [@TCA_GRED_PARMS={0x38, 0x1, {0x8, 0x7, 0x7, 0xe, 0x5, 0x6, 0x300, 0xffff8001, 0x9, 0x5, 0x8, 0x1d, 0xc, 0xc, 0x41, 0x2}}, @TCA_GRED_DPS={0x10, 0x3, {0x10, 0xa, 0x0, 0x1}}]}}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r7}, 0x18) (async)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r8}, 0x10) (async)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r10, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (async)
syslog(0x4, 0xfffffffffffffffe, 0x26) (async)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r4, {0xa, 0xffff}, {}, {0xfff3, 0xe}}, [@filter_kind_options=@f_flow={{0x9}, {0x1c, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_PERTURB={0x8, 0xc, 0x6}, @TCA_FLOW_KEYS={0x8, 0x1, 0x18d38}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x200008c2)

952.544461ms ago: executing program 3 (id=2455):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mount$9p_unix(&(0x7f0000002600)='./file0\x00', &(0x7f0000003600)='.\x00', &(0x7f0000003640), 0x2000000, &(0x7f0000003680)) (fail_nth: 4)

952.402281ms ago: executing program 3 (id=2456):
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff})
vmsplice(r0, &(0x7f0000000080)=[{&(0x7f0000000500)="7c15b6bce0568bdbef75e4667376c6507c51094765fcc21aa8810d5a760327a50bc67e6f84d20215ae0b84a847e4a948b5258b28626336e159ad54d4c00f287cdf1bade52605c3e691", 0x49}], 0x1, 0x0)

952.02608ms ago: executing program 2 (id=2457):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
getxattr(0x0, &(0x7f0000000040)=@known='system.sockprotoname\x00', 0x0, 0x0)

921.634931ms ago: executing program 2 (id=2458):
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000013c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x1}, 0x50)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000e00))
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = eventfd2(0x0, 0x0)
readv(r2, &(0x7f0000000500)=[{&(0x7f0000000000)=""/92, 0x5c}], 0x1)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x2b, 0x1d, &(0x7f0000001240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x8}, {}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}}, @generic={0x9, 0x7, 0xe, 0x7, 0x1000}, @cb_func={0x18, 0x5, 0x4, 0x0, 0x6}, @ldst={0x2, 0x3, 0x0, 0x8, 0x0, 0x40, 0x8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001340)='syzkaller\x00', 0xc, 0x15, &(0x7f0000001380)=""/21, 0x41000, 0x2, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x8, &(0x7f0000001600)={0x3, 0x4}, 0x8, 0x10, &(0x7f0000001640)={0x5, 0x4, 0x7fff, 0x67b}, 0x10, 0x0, 0xffffffffffffffff, 0x1, 0x0, &(0x7f0000001880)=[{0x4, 0x4, 0xa, 0x1}], 0x10, 0x8}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r4=>0x0})
sendto$packet(0xffffffffffffffff, &(0x7f0000001540)="028988a8", 0x4, 0x8000050, &(0x7f0000000080)={0x11, 0x8100, r4, 0x1, 0xfb}, 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000000"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')

921.288991ms ago: executing program 4 (id=2459):
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000013c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x1}, 0x50)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000e00))
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = eventfd2(0x0, 0x0)
readv(r2, &(0x7f0000000500)=[{&(0x7f0000000000)=""/92, 0x5c}], 0x1)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x2b, 0x1d, &(0x7f0000001240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x8}, {}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}}, @generic={0x9, 0x7, 0xe, 0x7, 0x1000}, @cb_func={0x18, 0x5, 0x4, 0x0, 0x6}, @ldst={0x2, 0x3, 0x0, 0x8, 0x0, 0x40, 0x8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001340)='syzkaller\x00', 0xc, 0x15, &(0x7f0000001380)=""/21, 0x41000, 0x2, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x8, &(0x7f0000001600)={0x3, 0x4}, 0x8, 0x10, &(0x7f0000001640)={0x5, 0x4, 0x7fff, 0x67b}, 0x10, 0x0, 0xffffffffffffffff, 0x1, 0x0, &(0x7f0000001880)=[{0x4, 0x4, 0xa, 0x1}], 0x10, 0x8}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r4=>0x0})
sendto$packet(0xffffffffffffffff, &(0x7f0000001540)="028988a8", 0x4, 0x8000050, &(0x7f0000000080)={0x11, 0x8100, r4, 0x1, 0xfb}, 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r6 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')

818.048973ms ago: executing program 0 (id=2460):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000480), 0x1a1040, 0x0)
ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0x7000000)

730.793605ms ago: executing program 0 (id=2461):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x43}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000780)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x1, 0x32}, 0x9c)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)='\x00', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000b80)="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", 0x38c}, {&(0x7f00000009c0)="f6c90cdedc37cdb39eae133fb46bb0b986be85321a17fc6e8ea85f018f6e81d55f", 0x21}], 0x2}}], 0x2, 0x4048884)
close_range(r0, 0xffffffffffffffff, 0x0)

730.211695ms ago: executing program 0 (id=2462):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
syz_mount_image$iso9660(&(0x7f0000000800), &(0x7f0000000c80)='./file0\x00', 0x1004491, &(0x7f0000000f00)=ANY=[], 0xfe, 0x875, &(0x7f0000001000)="$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")
r0 = mq_open(0x0, 0x42, 0x1f0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000001480)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r2, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)={0x14, 0x7, 0x1, 0x101, 0x0, 0x0, {0x3}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4040004}, 0x40094)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r1, 0x0, 0x4804}, 0x18)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
mq_open(&(0x7f0000000040)='GPL\x00', 0x2, 0xc6, &(0x7f00000000c0)={0xa, 0xfffffffffffffffb, 0x43, 0x9})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x6, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="370000000000008c0f2f00000000818034cf2531ed2442272372819757eba01a94d359bc59a63419715425bf6d27580334b1ac86b1fb69e2a0d1a1852fc6643108a9c1d083776af80bd05150d10c19bc4d7f6c4eeac19b47d627ab8c39875b52055918deb95b198150e4adbae4807da9671b492dac685b"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pause()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='mm_page_free\x00', r3, 0x0, 0x1d6}, 0xffffffffffffff80)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a31000000002c0003800800014000000000180003801400010076657468315f746f5f626f6e6400000008000240000000006c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a30000000004000038008000140000000002c0003801400010067656e657665300000000000000000001400010076657468315f746f5f626f6e64000000080002"], 0x10c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000100)={0x5, 0xd1c3, 0xfffffffc, 0x9, 0x2, "de29d553077baac7b9ca70d7b27a934f9472d7"})

493.53257ms ago: executing program 1 (id=2463):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYRES16=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r4)
sendmsg$IEEE802154_LIST_PHY(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)={0x14, r5, 0x30b, 0x0, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4044}, 0x20000004)
r6 = syz_init_net_socket$llc(0x1a, 0x802, 0x0)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x80089419, &(0x7f0000000180))
bind$llc(r6, &(0x7f0000000000)={0x1a, 0x0, 0x1, 0x0, 0x3, 0x4a}, 0x10)
close(r6)
getsockopt$SO_J1939_SEND_PRIO(r0, 0x6b, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r7 = socket(0x840000000002, 0x3, 0xfa)
connect$inet(r7, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r7, &(0x7f0000005240), 0x4000095, 0x0)
setsockopt$sock_int(r7, 0x1, 0x5, &(0x7f00000002c0)=0x200, 0x4)
memfd_secret(0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r8}, 0x10)

357.807723ms ago: executing program 1 (id=2464):
r0 = syz_io_uring_setup(0x2439, &(0x7f0000001480)={0x0, 0x1064, 0x1000, 0x7, 0x40224}, &(0x7f00000006c0)=<r1=>0x0, &(0x7f0000000500)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_SENDMSG={0x9, 0x10, 0x0, r0, 0x0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000180)=[{0x0}, {0x0}], 0x2, 0x0, 0x530}, 0x0, 0x1000})
io_uring_enter(r0, 0x47f8, 0x1e43, 0x0, 0x0, 0x0)

174.190926ms ago: executing program 1 (id=2465):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
flistxattr(r0, &(0x7f0000000600)=""/167, 0xa7)

152.399717ms ago: executing program 1 (id=2466):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000780)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x1, 0x32}, 0x9c)
bind$inet6(r2, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r2, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)='\x00', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000b80)="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", 0x38c}, {&(0x7f00000009c0)="f6c90cdedc37cdb39eae133fb46bb0b986be85321a17fc6e8ea85f018f6e81d55fa08f68960887cd42", 0x29}], 0x2}}], 0x2, 0x4048884)

71.108068ms ago: executing program 2 (id=2467):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='kfree\x00', r0}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x4, 0x1, 0x8}]}}, 0x0, 0x26, 0x0, 0x1}, 0x28) (fail_nth: 11)

46.677299ms ago: executing program 2 (id=2468):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
getxattr(0x0, &(0x7f0000000040)=@known='system.sockprotoname\x00', 0x0, 0x0)

46.527959ms ago: executing program 2 (id=2469):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff62, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1, 0x0, 0xff}, 0x18)
shmdt(0x0)

45.840829ms ago: executing program 4 (id=2470):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x43}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000780)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x1, 0x32}, 0x9c)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)='\x00', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000b80)="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", 0x38c}, {&(0x7f00000009c0)="f6c90cdedc37cdb39eae133fb46bb0b986be85321a17fc6e8ea85f018f6e81d55fa08f68960887cd42", 0x29}], 0x2}}], 0x2, 0x4048884)
close_range(r0, 0xffffffffffffffff, 0x0)

20.076049ms ago: executing program 3 (id=2471):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000480), 0x1a1040, 0x0)
ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0x7000000)

19.85906ms ago: executing program 2 (id=2472):
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32)
r2 = epoll_create1(0x0) (rerun: 32)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x3, 0x7ffc0001}]})
sched_getparam(0x0, &(0x7f00000004c0))
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/mem_sleep', 0x40040, 0x8f1c565178362edc)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r5, &(0x7f0000000200)={0xa000000a})
finit_module(r5, 0x0, 0x3) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'ip6_vti0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x3f, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x2000008, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}]}, 0x40}}, 0x0)

19.6171ms ago: executing program 3 (id=2473):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fdf7ffff18110000", @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x3, &(0x7f0000000480)=@framed, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000ac0)={r1, r2}, 0xc)

0s ago: executing program 3 (id=2474):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x8}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0x3100, 0x3100, &(0x7f0000000000), 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x50)

kernel console output (not intermixed with test programs):

ilable for device 127.0.0.1
[   54.607362][ T4931] loop4: detected capacity change from 0 to 512
[   54.615601][ T4931] EXT4-fs: Ignoring removed orlov option
[   54.621712][ T4931] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   54.633420][ T4935] netlink: 8 bytes leftover after parsing attributes in process `syz.3.543'.
[   54.732959][ T4931] EXT4-fs (loop4): 1 truncate cleaned up
[   54.804782][ T4931] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.836350][ T4939] syzkaller0: entered allmulticast mode
[   54.848224][ T4939] SELinux:  Context system_u:object_r:wireless_device_t:s0 is not valid (left unmapped).
[   54.919024][ T4939] syzkaller0: left allmulticast mode
[   54.968500][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.094743][ T4948] loop4: detected capacity change from 0 to 256
[   55.222931][ T4948] FAT-fs (loop4): codepage cp874 not found
[   55.240271][ T4948] loop4: detected capacity change from 0 to 1024
[   55.255000][ T4948] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.277031][ T4948] syz.4.545 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   55.421393][ T4955] netlink: 20 bytes leftover after parsing attributes in process `syz.1.549'.
[   55.675921][ T4962] 9pnet_virtio: no channels available for device 127.0.0.1
[   55.818460][ T4967] netlink: 20 bytes leftover after parsing attributes in process `syz.2.555'.
[   55.981571][ T4975] netlink: 'syz.1.559': attribute type 3 has an invalid length.
[   56.083959][ T4981] netlink: 20 bytes leftover after parsing attributes in process `syz.1.562'.
[   56.196462][ T4987] netlink: 12 bytes leftover after parsing attributes in process `syz.1.564'.
[   56.281628][ T4994] netlink: 'syz.3.567': attribute type 3 has an invalid length.
[   56.325023][ T4998] netlink: 20 bytes leftover after parsing attributes in process `syz.2.569'.
[   56.476551][ T5012] 9pnet_virtio: no channels available for device 127.0.0.1
[   56.548253][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.665884][ T5027] netlink: 'syz.3.582': attribute type 3 has an invalid length.
[   56.737503][ T5037] 9pnet_virtio: no channels available for device 127.0.0.1
[   56.755559][ T5038] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:17 to non-existent VLAN 649
[   57.155363][ T5078] netlink: 'syz.1.606': attribute type 10 has an invalid length.
[   57.163789][ T5078] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   57.274947][ T5088] lo speed is unknown, defaulting to 1000
[   57.281017][ T5088] lo speed is unknown, defaulting to 1000
[   57.659909][ T5108] 9pnet_virtio: no channels available for device 127.0.0.1
[   57.802062][ T5122] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   57.813001][ T5122] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.859242][   T29] kauditd_printk_skb: 455 callbacks suppressed
[   57.859254][   T29] audit: type=1400 audit(1758163122.667:4351): avc:  denied  { listen } for  pid=5126 comm="syz.4.627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   57.933179][   T29] audit: type=1326 audit(1758163122.747:4352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5130 comm="syz.4.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   57.957096][   T29] audit: type=1326 audit(1758163122.767:4353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5130 comm="syz.4.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   57.980682][   T29] audit: type=1326 audit(1758163122.767:4354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5130 comm="syz.4.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   58.005074][ T5122] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   58.009845][   T29] audit: type=1326 audit(1758163122.767:4355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5130 comm="syz.4.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   58.015462][ T5122] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.038849][   T29] audit: type=1326 audit(1758163122.767:4356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5130 comm="syz.4.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   58.098157][ T5133] 9pnet_virtio: no channels available for device 127.0.0.1
[   58.106541][   T29] audit: type=1400 audit(1758163122.917:4357): avc:  denied  { read } for  pid=5134 comm="syz.2.631" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   58.126909][   T29] audit: type=1326 audit(1758163122.917:4358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5136 comm="syz.4.632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   58.150684][   T29] audit: type=1326 audit(1758163122.917:4359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5136 comm="syz.4.632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   58.174379][   T29] audit: type=1326 audit(1758163122.917:4360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5136 comm="syz.4.632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   58.255696][ T5122] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   58.266062][ T5122] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.283673][ T5148] netlink: 'syz.2.635': attribute type 10 has an invalid length.
[   58.356127][ T5122] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   58.366557][ T5122] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.485849][   T41] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   58.494733][   T41] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.513667][   T41] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   58.522729][   T41] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.557043][   T41] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   58.565443][   T41] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.593710][   T41] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   58.602218][   T41] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.674080][ T5190] loop4: detected capacity change from 0 to 2048
[   58.713892][ T5190] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.780903][ T5207] netlink: 'syz.1.660': attribute type 10 has an invalid length.
[   58.789481][ T5207] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   58.971238][ T5190] netlink: 'syz.4.654': attribute type 10 has an invalid length.
[   59.029622][ T5190] random: crng reseeded on system resumption
[   59.081018][ T5219] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 649
[   59.125398][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.232068][ T5232] 9pnet_virtio: no channels available for device 127.0.0.1
[   59.312665][ T5246] loop4: detected capacity change from 0 to 1024
[   59.323420][ T5246] EXT4-fs: Ignoring removed orlov option
[   59.338393][ T5246] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.379803][ T5255] lo speed is unknown, defaulting to 1000
[   59.386299][ T5255] lo speed is unknown, defaulting to 1000
[   59.416834][ T5257] __nla_validate_parse: 22 callbacks suppressed
[   59.416847][ T5257] netlink: 20 bytes leftover after parsing attributes in process `syz.1.682'.
[   59.547125][ T5268] netlink: 96 bytes leftover after parsing attributes in process `syz.0.685'.
[   59.613047][ T5274] netlink: 20 bytes leftover after parsing attributes in process `syz.0.689'.
[   59.665008][ T5285] netlink: 28 bytes leftover after parsing attributes in process `syz.2.694'.
[   59.674065][ T5285] netlink: 28 bytes leftover after parsing attributes in process `syz.2.694'.
[   59.741283][ T5295] netlink: 'syz.0.699': attribute type 10 has an invalid length.
[   59.749326][ T5295] netlink: 40 bytes leftover after parsing attributes in process `syz.0.699'.
[   59.790688][ T5304] 9pnet_virtio: no channels available for device 127.0.0.1
[   59.885815][ T5319] netlink: 16 bytes leftover after parsing attributes in process `syz.3.710'.
[   59.895002][ T5319] netlink: 16 bytes leftover after parsing attributes in process `syz.3.710'.
[   59.904250][ T5319] netlink: 504 bytes leftover after parsing attributes in process `syz.3.710'.
[   59.977309][ T5333] netlink: 16 bytes leftover after parsing attributes in process `syz.3.716'.
[   60.147746][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.309542][ T5375] loop4: detected capacity change from 0 to 764
[   60.349732][ T5376] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 649
[   62.264895][ T5444] netlink: 'syz.3.763': attribute type 10 has an invalid length.
[   62.841150][ T5479] netlink: 'syz.4.781': attribute type 3 has an invalid length.
[   63.007571][   T29] kauditd_printk_skb: 573 callbacks suppressed
[   63.007586][   T29] audit: type=1326 audit(1758163127.817:4934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.4.785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   63.062610][   T29] audit: type=1326 audit(1758163127.847:4935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.4.785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   63.086763][   T29] audit: type=1326 audit(1758163127.847:4936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.4.785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   63.136896][   T29] audit: type=1326 audit(1758163127.947:4937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5500 comm="syz.1.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   63.176969][   T29] audit: type=1326 audit(1758163127.977:4938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5500 comm="syz.1.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   63.201832][   T29] audit: type=1326 audit(1758163127.977:4939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5500 comm="syz.1.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   63.226744][   T29] audit: type=1326 audit(1758163127.977:4940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5500 comm="syz.1.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   63.250792][   T29] audit: type=1326 audit(1758163127.977:4941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5500 comm="syz.1.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   63.275744][   T29] audit: type=1326 audit(1758163127.977:4942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5500 comm="syz.1.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   63.299220][   T29] audit: type=1326 audit(1758163127.977:4943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5500 comm="syz.1.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   63.453806][ T5502] sch_tbf: peakrate 7 is lower than or equals to rate 19 !
[   63.632426][ T5550] futex_wake_op: syz.3.806 tries to shift op by -1; fix this program
[   63.713304][ T5564] netlink: 'syz.1.813': attribute type 10 has an invalid length.
[   63.721954][ T5564] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   64.241809][ T5623] netlink: 'syz.2.837': attribute type 10 has an invalid length.
[   64.446135][ T5632] FAULT_INJECTION: forcing a failure.
[   64.446135][ T5632] name failslab, interval 1, probability 0, space 0, times 0
[   64.458815][ T5632] CPU: 1 UID: 0 PID: 5632 Comm: syz.4.842 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   64.458849][ T5632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   64.458860][ T5632] Call Trace:
[   64.458866][ T5632]  <TASK>
[   64.458873][ T5632]  __dump_stack+0x1d/0x30
[   64.458892][ T5632]  dump_stack_lvl+0xe8/0x140
[   64.458910][ T5632]  dump_stack+0x15/0x1b
[   64.458924][ T5632]  should_fail_ex+0x265/0x280
[   64.458993][ T5632]  should_failslab+0x8c/0xb0
[   64.459022][ T5632]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   64.459119][ T5632]  ? __request_module+0x1df/0x3e0
[   64.459144][ T5632]  kstrdup+0x3e/0xd0
[   64.459228][ T5632]  __request_module+0x1df/0x3e0
[   64.459251][ T5632]  blk_request_module+0xdf/0x1e0
[   64.459275][ T5632]  blkdev_get_no_open+0x4b/0x100
[   64.459324][ T5632]  bdev_file_open_by_dev+0xa5/0x250
[   64.459351][ T5632]  swsusp_check+0x3f/0x290
[   64.459406][ T5632]  software_resume+0x41/0x2f0
[   64.459425][ T5632]  resume_store+0x2d9/0x3d0
[   64.459447][ T5632]  ? __pfx_resume_store+0x10/0x10
[   64.459469][ T5632]  kobj_attr_store+0x4a/0x70
[   64.459616][ T5632]  ? __pfx_kobj_attr_store+0x10/0x10
[   64.459639][ T5632]  sysfs_kf_write+0xfb/0x120
[   64.459658][ T5632]  ? __pfx_sysfs_kf_write+0x10/0x10
[   64.459674][ T5632]  kernfs_fop_write_iter+0x1eb/0x300
[   64.459733][ T5632]  iter_file_splice_write+0x663/0xa60
[   64.459758][ T5632]  ? __pfx_iter_file_splice_write+0x10/0x10
[   64.459773][ T5632]  direct_splice_actor+0x153/0x2a0
[   64.459791][ T5632]  ? shmem_file_open+0x1/0x40
[   64.459882][ T5632]  splice_direct_to_actor+0x30f/0x680
[   64.459901][ T5632]  ? __pfx_direct_splice_actor+0x10/0x10
[   64.459964][ T5632]  do_splice_direct+0xda/0x150
[   64.459980][ T5632]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   64.460070][ T5632]  do_sendfile+0x380/0x650
[   64.460097][ T5632]  __x64_sys_sendfile64+0x105/0x150
[   64.460162][ T5632]  x64_sys_call+0x2bb0/0x2ff0
[   64.460244][ T5632]  do_syscall_64+0xd2/0x200
[   64.460275][ T5632]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   64.460297][ T5632]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   64.460392][ T5632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.460412][ T5632] RIP: 0033:0x7f46e24ceba9
[   64.460427][ T5632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.460453][ T5632] RSP: 002b:00007f46e0f2f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   64.460472][ T5632] RAX: ffffffffffffffda RBX: 00007f46e2715fa0 RCX: 00007f46e24ceba9
[   64.460484][ T5632] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005
[   64.460496][ T5632] RBP: 00007f46e0f2f090 R08: 0000000000000000 R09: 0000000000000000
[   64.460508][ T5632] R10: 00008000fffffffc R11: 0000000000000246 R12: 0000000000000001
[   64.460519][ T5632] R13: 00007f46e2716038 R14: 00007f46e2715fa0 R15: 00007ffda3604b28
[   64.460537][ T5632]  </TASK>
[   64.859786][ T5655] netlink: 'syz.1.848': attribute type 10 has an invalid length.
[   64.867720][ T5655] __nla_validate_parse: 18 callbacks suppressed
[   64.867736][ T5655] netlink: 40 bytes leftover after parsing attributes in process `syz.1.848'.
[   64.892681][ T5655] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   64.962269][ T5669] netlink: 'syz.2.851': attribute type 10 has an invalid length.
[   65.008028][ T5674] netlink: 4 bytes leftover after parsing attributes in process `syz.1.852'.
[   65.045451][ T5677] futex_wake_op: syz.4.853 tries to shift op by -1; fix this program
[   65.113626][ T5683] netlink: 16 bytes leftover after parsing attributes in process `syz.2.855'.
[   65.123416][ T5683] netlink: 16 bytes leftover after parsing attributes in process `syz.2.855'.
[   65.162095][ T5683] netlink: 504 bytes leftover after parsing attributes in process `syz.2.855'.
[   65.277978][ T5690] netlink: 20 bytes leftover after parsing attributes in process `syz.0.858'.
[   65.602821][ T5701] netlink: 'syz.0.863': attribute type 3 has an invalid length.
[   65.650815][ T5705] netlink: 16 bytes leftover after parsing attributes in process `syz.0.864'.
[   65.660091][ T5705] netlink: 16 bytes leftover after parsing attributes in process `syz.0.864'.
[   65.693392][ T5705] netlink: 504 bytes leftover after parsing attributes in process `syz.0.864'.
[   65.774775][ T5711] netlink: 16 bytes leftover after parsing attributes in process `syz.0.866'.
[   65.853151][ T5717] netlink: 'syz.0.869': attribute type 3 has an invalid length.
[   65.931068][ T5721] netlink: 'syz.2.871': attribute type 10 has an invalid length.
[   66.034209][ T5730] netlink: 'syz.1.874': attribute type 3 has an invalid length.
[   67.354975][ T5865] FAULT_INJECTION: forcing a failure.
[   67.354975][ T5865] name failslab, interval 1, probability 0, space 0, times 0
[   67.367877][ T5865] CPU: 1 UID: 0 PID: 5865 Comm: syz.4.933 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   67.367969][ T5865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   67.367981][ T5865] Call Trace:
[   67.368021][ T5865]  <TASK>
[   67.368030][ T5865]  __dump_stack+0x1d/0x30
[   67.368052][ T5865]  dump_stack_lvl+0xe8/0x140
[   67.368069][ T5865]  dump_stack+0x15/0x1b
[   67.368163][ T5865]  should_fail_ex+0x265/0x280
[   67.368187][ T5865]  should_failslab+0x8c/0xb0
[   67.368207][ T5865]  __kmalloc_noprof+0xa5/0x3e0
[   67.368230][ T5865]  ? bpf_test_init+0xa9/0x160
[   67.368255][ T5865]  bpf_test_init+0xa9/0x160
[   67.368335][ T5865]  bpf_prog_test_run_xdp+0x274/0x910
[   67.368415][ T5865]  ? kstrtouint+0x76/0xc0
[   67.368439][ T5865]  ? __rcu_read_unlock+0x4f/0x70
[   67.368463][ T5865]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   67.368523][ T5865]  bpf_prog_test_run+0x227/0x390
[   67.368553][ T5865]  __sys_bpf+0x4b9/0x7b0
[   67.368622][ T5865]  __x64_sys_bpf+0x41/0x50
[   67.368641][ T5865]  x64_sys_call+0x2aea/0x2ff0
[   67.368659][ T5865]  do_syscall_64+0xd2/0x200
[   67.368689][ T5865]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   67.368764][ T5865]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   67.368801][ T5865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.368823][ T5865] RIP: 0033:0x7f46e24ceba9
[   67.368838][ T5865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.368919][ T5865] RSP: 002b:00007f46e0f2f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   67.369003][ T5865] RAX: ffffffffffffffda RBX: 00007f46e2715fa0 RCX: 00007f46e24ceba9
[   67.369016][ T5865] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 000000000000000a
[   67.369029][ T5865] RBP: 00007f46e0f2f090 R08: 0000000000000000 R09: 0000000000000000
[   67.369120][ T5865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.369133][ T5865] R13: 00007f46e2716038 R14: 00007f46e2715fa0 R15: 00007ffda3604b28
[   67.369152][ T5865]  </TASK>
[   67.865952][ T5885] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5885 comm=syz.1.941
[   67.969586][ T5885] infiniband !yz!: set down
[   67.974157][ T5885] infiniband !yz!: added team_slave_0
[   67.992884][ T5885] RDS/IB: !yz!: added
[   67.996944][ T5885] smc: adding ib device !yz! with port count 1
[   68.004685][ T5885] smc:    ib device !yz! port 1 has pnetid 
[   68.104229][   T29] kauditd_printk_skb: 489 callbacks suppressed
[   68.104243][   T29] audit: type=1326 audit(1758163132.917:5433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5899 comm="syz.3.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa49100eba9 code=0x7ffc0000
[   68.147617][   T29] audit: type=1326 audit(1758163132.947:5434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5899 comm="syz.3.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7fa49100eba9 code=0x7ffc0000
[   68.171216][   T29] audit: type=1326 audit(1758163132.947:5435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5899 comm="syz.3.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa49100eba9 code=0x7ffc0000
[   68.194876][   T29] audit: type=1326 audit(1758163132.957:5436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5884 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   68.218421][   T29] audit: type=1326 audit(1758163132.957:5437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5884 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   68.253262][ T5903] validate_nla: 1 callbacks suppressed
[   68.253339][ T5903] netlink: 'syz.3.948': attribute type 3 has an invalid length.
[   68.349288][   T29] audit: type=1326 audit(1758163133.157:5438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5910 comm="syz.0.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa65e4eba9 code=0x7ffc0000
[   68.373114][   T29] audit: type=1326 audit(1758163133.187:5439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5910 comm="syz.0.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7faa65e4eba9 code=0x7ffc0000
[   68.465576][   T29] audit: type=1326 audit(1758163133.217:5440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5918 comm="syz.3.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa49100eba9 code=0x7ffc0000
[   68.489627][   T29] audit: type=1326 audit(1758163133.217:5441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5918 comm="syz.3.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa49100eba9 code=0x7ffc0000
[   68.512990][   T29] audit: type=1326 audit(1758163133.217:5442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5918 comm="syz.3.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa49100eba9 code=0x7ffc0000
[   68.607387][    C1] hrtimer: interrupt took 67835 ns
[   68.730777][ T5947] netlink: 'syz.1.962': attribute type 3 has an invalid length.
[   68.918248][ T5974] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(9)
[   68.924951][ T5974] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   68.932708][ T5974] vhci_hcd vhci_hcd.0: Device attached
[   68.943730][    C0] vcan0: j1939_session_tx_dat: 0xffff88811a6ac200: queue data error: -100
[   68.952335][    C0] vcan0 (unregistering): j1939_xtp_rx_dpo: no connection found
[   68.959891][    C0] vcan0 (unregistering): j1939_xtp_rx_dpo: no connection found
[   68.967744][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   68.975597][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   68.983443][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   68.991340][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   68.999212][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.007031][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.014887][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.022923][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.030761][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.038783][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.046633][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.054476][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.062434][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.070304][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.078135][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.085955][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.093764][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.101552][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.109821][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.117624][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.121856][   T36] vhci_hcd: vhci_device speed not set
[   69.125442][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.138680][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.146580][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.154397][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.162330][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.170299][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.178145][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.185963][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.191837][   T36] usb 9-1: new full-speed USB device number 2 using vhci_hcd
[   69.193804][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.209054][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.216901][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.224711][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.232531][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.240329][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.248186][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.255999][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.263823][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.271644][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.279452][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.287307][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.295130][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.303033][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.310914][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.318737][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.326563][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.334420][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.342264][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.350056][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.357976][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.365976][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.373819][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.381888][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.390157][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.398132][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.405939][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.414012][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.421842][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.429740][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.437568][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.445385][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.453237][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.461037][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.468856][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.476708][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.484535][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.492360][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.500188][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.508018][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.515836][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.523657][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.531456][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.539284][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.547208][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.555003][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.562825][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.570614][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.578464][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.586276][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.594270][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.602076][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.609871][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.617795][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.625604][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.633421][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.641232][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.649129][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.656934][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.664745][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.672556][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.680375][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.688319][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.696391][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.704222][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.712127][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.720013][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.727889][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.735731][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.743644][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.751446][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.759243][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.767045][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.774846][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.782764][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.790555][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.798487][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[   69.806409][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[   69.822426][ T5975] vhci_hcd: connection reset by peer
[   69.838816][ T3893] vhci_hcd: stop threads
[   69.843307][ T3893] vhci_hcd: release socket
[   69.847734][ T3893] vhci_hcd: disconnect device
[   69.879876][ T5993] netlink: 'syz.2.980': attribute type 10 has an invalid length.
[   69.888118][ T5993] __nla_validate_parse: 49 callbacks suppressed
[   69.888133][ T5993] netlink: 40 bytes leftover after parsing attributes in process `syz.2.980'.
[   70.043211][ T6019] netlink: 16 bytes leftover after parsing attributes in process `syz.1.991'.
[   70.052209][ T6019] netlink: 16 bytes leftover after parsing attributes in process `syz.1.991'.
[   70.071523][ T6019] netlink: 504 bytes leftover after parsing attributes in process `syz.1.991'.
[   70.115272][ T6022] netlink: 96 bytes leftover after parsing attributes in process `syz.4.992'.
[   70.189885][ T6035] netlink: 'syz.0.997': attribute type 10 has an invalid length.
[   70.198662][ T6035] netlink: 40 bytes leftover after parsing attributes in process `syz.0.997'.
[   70.280580][ T6043] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1000'.
[   70.294696][ T6043] batman_adv: batadv0: Interface deactivated: veth1_vlan
[   70.302052][ T6043] batman_adv: batadv0: Removing interface: veth1_vlan
[   70.310876][ T6043] bond0: (slave batadv0): Releasing backup interface
[   70.317848][ T6043] bond0: (slave batadv0): the permanent HWaddr of slave - aa:aa:aa:aa:aa:2a - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[   70.377277][ T6049] bond0: (slave dummy0): Releasing backup interface
[   70.550984][ T6072] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1012'.
[   70.814522][ T6088] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1019'.
[   70.983126][ T6097] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1023'.
[   71.140643][ T6110] netlink: 'syz.1.1029': attribute type 3 has an invalid length.
[   71.193872][ T6114] loop4: detected capacity change from 0 to 1024
[   71.233460][ T6114] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.242449][ T6120] lo speed is unknown, defaulting to 1000
[   71.268576][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.299565][ T6120] lo speed is unknown, defaulting to 1000
[   71.597527][ T6147] lo speed is unknown, defaulting to 1000
[   71.604301][ T6147] lo speed is unknown, defaulting to 1000
[   71.985612][ T6160] netlink: 'syz.0.1048': attribute type 10 has an invalid length.
[   73.258479][   T29] kauditd_printk_skb: 343 callbacks suppressed
[   73.258492][   T29] audit: type=1326 audit(1758163138.067:5786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6240 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   73.293572][   T29] audit: type=1326 audit(1758163138.067:5787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6240 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   73.317115][   T29] audit: type=1326 audit(1758163138.107:5788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6240 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   73.341213][   T29] audit: type=1326 audit(1758163138.107:5789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6240 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   73.364701][   T29] audit: type=1326 audit(1758163138.107:5790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6240 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   73.375982][ T6241] netlink: 'syz.1.1081': attribute type 10 has an invalid length.
[   73.388777][   T29] audit: type=1326 audit(1758163138.107:5791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6240 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   73.397755][ T6241] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   73.419949][   T29] audit: type=1326 audit(1758163138.107:5792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6240 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   73.459077][ T6245] FAULT_INJECTION: forcing a failure.
[   73.459077][ T6245] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.459106][ T6245] CPU: 1 UID: 0 PID: 6245 Comm: syz.4.1084 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   73.459139][ T6245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   73.459151][ T6245] Call Trace:
[   73.459157][ T6245]  <TASK>
[   73.459163][ T6245]  __dump_stack+0x1d/0x30
[   73.459185][ T6245]  dump_stack_lvl+0xe8/0x140
[   73.459204][ T6245]  dump_stack+0x15/0x1b
[   73.459292][ T6245]  should_fail_ex+0x265/0x280
[   73.459313][ T6245]  should_fail+0xb/0x20
[   73.459332][ T6245]  should_fail_usercopy+0x1a/0x20
[   73.459422][ T6245]  strncpy_from_user+0x25/0x230
[   73.459490][ T6245]  strncpy_from_user_nofault+0x68/0xf0
[   73.459513][ T6245]  bpf_probe_read_user_str+0x2a/0x70
[   73.459544][ T6245]  bpf_prog_02a70dbeb5f742df+0x43/0x49
[   73.459608][ T6245]  bpf_trace_run2+0x107/0x1c0
[   73.459628][ T6245]  ? rds_cmsg_rdma_args+0xbc5/0xc10
[   73.459653][ T6245]  ? rds_cmsg_rdma_args+0xbc5/0xc10
[   73.459674][ T6245]  __traceiter_kfree+0x2b/0x50
[   73.459695][ T6245]  ? rds_cmsg_rdma_args+0xbc5/0xc10
[   73.459806][ T6245]  kfree+0x27b/0x320
[   73.459913][ T6245]  rds_cmsg_rdma_args+0xbc5/0xc10
[   73.459942][ T6245]  rds_cmsg_send+0x24e/0x3d0
[   73.460094][ T6245]  rds_sendmsg+0xca7/0x14a0
[   73.460127][ T6245]  ? __pfx_rds_sendmsg+0x10/0x10
[   73.460155][ T6245]  __sock_sendmsg+0x145/0x180
[   73.460203][ T6245]  ____sys_sendmsg+0x31e/0x4e0
[   73.460235][ T6245]  ___sys_sendmsg+0x17b/0x1d0
[   73.460285][ T6245]  __x64_sys_sendmsg+0xd4/0x160
[   73.460313][ T6245]  x64_sys_call+0x191e/0x2ff0
[   73.460333][ T6245]  do_syscall_64+0xd2/0x200
[   73.460363][ T6245]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   73.460487][ T6245]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   73.460514][ T6245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.460534][ T6245] RIP: 0033:0x7f46e24ceba9
[   73.460626][ T6245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.460695][ T6245] RSP: 002b:00007f46e0f2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.460713][ T6245] RAX: ffffffffffffffda RBX: 00007f46e2715fa0 RCX: 00007f46e24ceba9
[   73.460725][ T6245] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000006
[   73.460737][ T6245] RBP: 00007f46e0f2f090 R08: 0000000000000000 R09: 0000000000000000
[   73.460749][ T6245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   73.460761][ T6245] R13: 00007f46e2716038 R14: 00007f46e2715fa0 R15: 00007ffda3604b28
[   73.460779][ T6245]  </TASK>
[   73.722573][   T29] audit: type=1326 audit(1758163138.107:5793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6240 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   73.746019][   T29] audit: type=1326 audit(1758163138.107:5794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6240 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   73.770113][   T29] audit: type=1326 audit(1758163138.157:5795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6240 comm="syz.1.1081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   74.134160][ T6293] netlink: 'syz.0.1102': attribute type 3 has an invalid length.
[   74.222413][   T36] usb 9-1: enqueue for inactive port 0
[   74.229080][   T36] usb 9-1: enqueue for inactive port 0
[   74.378347][   T36] vhci_hcd: vhci_device speed not set
[   74.446792][ T6319] netlink: 'syz.2.1111': attribute type 10 has an invalid length.
[   74.466941][ T6319] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   74.565738][ T6331] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[   76.078355][ T6377] __nla_validate_parse: 20 callbacks suppressed
[   76.078369][ T6377] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1133'.
[   76.150378][ T6382] FAULT_INJECTION: forcing a failure.
[   76.150378][ T6382] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.164279][ T6382] CPU: 0 UID: 0 PID: 6382 Comm: syz.4.1135 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   76.164303][ T6382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   76.164315][ T6382] Call Trace:
[   76.164322][ T6382]  <TASK>
[   76.164330][ T6382]  __dump_stack+0x1d/0x30
[   76.164369][ T6382]  dump_stack_lvl+0xe8/0x140
[   76.164384][ T6382]  dump_stack+0x15/0x1b
[   76.164462][ T6382]  should_fail_ex+0x265/0x280
[   76.164482][ T6382]  should_fail+0xb/0x20
[   76.164498][ T6382]  should_fail_usercopy+0x1a/0x20
[   76.164519][ T6382]  strncpy_from_user+0x25/0x230
[   76.164629][ T6382]  ? kmem_cache_alloc_noprof+0x186/0x310
[   76.164658][ T6382]  ? getname_flags+0x80/0x3b0
[   76.164686][ T6382]  getname_flags+0xae/0x3b0
[   76.164710][ T6382]  __x64_sys_rmdir+0x21/0x40
[   76.164739][ T6382]  x64_sys_call+0x238c/0x2ff0
[   76.164757][ T6382]  do_syscall_64+0xd2/0x200
[   76.164785][ T6382]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   76.164805][ T6382]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   76.164902][ T6382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.164925][ T6382] RIP: 0033:0x7f46e24ceba9
[   76.164940][ T6382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.164957][ T6382] RSP: 002b:00007f46e0f2f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[   76.165001][ T6382] RAX: ffffffffffffffda RBX: 00007f46e2715fa0 RCX: 00007f46e24ceba9
[   76.165014][ T6382] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   76.165025][ T6382] RBP: 00007f46e0f2f090 R08: 0000000000000000 R09: 0000000000000000
[   76.165035][ T6382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.165044][ T6382] R13: 00007f46e2716038 R14: 00007f46e2715fa0 R15: 00007ffda3604b28
[   76.165098][ T6382]  </TASK>
[   76.358723][ T6384] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1136'.
[   76.443485][ T6399] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1141'.
[   76.537417][ T6415] loop4: detected capacity change from 0 to 512
[   76.545580][ T6415] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   76.557457][ T6415] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.1148: bad orphan inode 131083
[   76.569632][ T6412] lo speed is unknown, defaulting to 1000
[   76.578401][ T6415] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.591963][ T6412] lo speed is unknown, defaulting to 1000
[   76.700441][ T6421] EXT4-fs (loop4): shut down requested (1)
[   76.705788][ T6430] pimreg: entered allmulticast mode
[   76.711725][ T6421] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   76.714855][ T6430] netlink: 'syz.3.1153': attribute type 4 has an invalid length.
[   76.729644][ T6421] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   76.799001][ T6438] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1156'.
[   76.820159][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.837166][ T6446] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1157'.
[   76.879309][ T6448] futex_wake_op: syz.3.1159 tries to shift op by -1; fix this program
[   76.887777][ T6446] loop4: detected capacity change from 0 to 512
[   76.895220][ T6446] journal_path: Non-blockdev passed as './bus'
[   76.901371][ T6446] EXT4-fs: error: could not find journal device path
[   77.024608][ T6458] netlink: 'syz.4.1164': attribute type 3 has an invalid length.
[   77.082166][ T6462] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1166'.
[   77.117319][ T6468] loop4: detected capacity change from 0 to 512
[   77.124598][ T6468] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   77.136133][ T6468] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.1168: bad orphan inode 131083
[   77.147133][ T6468] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.215911][ T6470] EXT4-fs (loop4): shut down requested (1)
[   77.968966][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.977062][ T6512] netlink: 'syz.3.1184': attribute type 10 has an invalid length.
[   77.985858][ T6512] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1184'.
[   78.024779][ T6518] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1186'.
[   78.056816][ T6522] lo speed is unknown, defaulting to 1000
[   78.061004][ T6514] netlink: 'syz.2.1185': attribute type 10 has an invalid length.
[   78.064602][ T6522] lo speed is unknown, defaulting to 1000
[   78.071086][ T6514] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1185'.
[   78.086880][ T6514] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   78.203993][ T6531] loop4: detected capacity change from 0 to 2048
[   78.263902][ T6531] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[   78.281112][ T6531] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.299104][ T6531] FAULT_INJECTION: forcing a failure.
[   78.299104][ T6531] name failslab, interval 1, probability 0, space 0, times 0
[   78.311816][ T6531] CPU: 1 UID: 0 PID: 6531 Comm: syz.4.1192 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   78.311849][ T6531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   78.311860][ T6531] Call Trace:
[   78.311865][ T6531]  <TASK>
[   78.311872][ T6531]  __dump_stack+0x1d/0x30
[   78.311969][ T6531]  dump_stack_lvl+0xe8/0x140
[   78.311989][ T6531]  dump_stack+0x15/0x1b
[   78.312006][ T6531]  should_fail_ex+0x265/0x280
[   78.312030][ T6531]  should_failslab+0x8c/0xb0
[   78.312083][ T6531]  __kmalloc_noprof+0xa5/0x3e0
[   78.312109][ T6531]  ? ext4_find_extent+0x16b/0x7a0
[   78.312131][ T6531]  ext4_find_extent+0x16b/0x7a0
[   78.312159][ T6531]  ? blk_mq_dispatch_queue_requests+0x201/0x350
[   78.312253][ T6531]  ext4_ext_map_blocks+0x11f/0x38a0
[   78.312281][ T6531]  ? __blk_flush_plug+0x262/0x2a0
[   78.312303][ T6531]  ? css_rstat_updated+0xb7/0x240
[   78.312354][ T6531]  ? __rcu_read_unlock+0x4f/0x70
[   78.312375][ T6531]  ? __perf_event_task_sched_in+0xa5b/0xac0
[   78.312452][ T6531]  ? folio_mark_accessed+0x240/0x3d0
[   78.312488][ T6531]  ext4_map_query_blocks+0xa8/0x480
[   78.312543][ T6531]  ext4_map_blocks+0x330/0xd00
[   78.312566][ T6531]  ? ext4_get_group_desc+0x16b/0x190
[   78.312619][ T6531]  ? __ext4_journal_start_sb+0x131/0x300
[   78.312641][ T6531]  ext4_iomap_begin+0x88d/0xe00
[   78.312779][ T6531]  ? __pfx_ext4_iomap_begin+0x10/0x10
[   78.312810][ T6531]  iomap_iter+0x32f/0x730
[   78.312883][ T6531]  ? should_failslab+0x8c/0xb0
[   78.312908][ T6531]  __iomap_dio_rw+0x708/0x1250
[   78.312937][ T6531]  ? ext4_journal_check_start+0x11a/0x1b0
[   78.312990][ T6531]  iomap_dio_rw+0x40/0x90
[   78.313011][ T6531]  ext4_file_write_iter+0xad9/0xf00
[   78.313048][ T6531]  do_iter_readv_writev+0x499/0x540
[   78.313078][ T6531]  vfs_writev+0x2df/0x8b0
[   78.313107][ T6531]  __se_sys_pwritev2+0xfc/0x1c0
[   78.313129][ T6531]  __x64_sys_pwritev2+0x67/0x80
[   78.313199][ T6531]  x64_sys_call+0x2c55/0x2ff0
[   78.313220][ T6531]  do_syscall_64+0xd2/0x200
[   78.313256][ T6531]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   78.313277][ T6531]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   78.313301][ T6531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.313391][ T6531] RIP: 0033:0x7f46e24ceba9
[   78.313405][ T6531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.313420][ T6531] RSP: 002b:00007f46e0f2f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   78.313435][ T6531] RAX: ffffffffffffffda RBX: 00007f46e2715fa0 RCX: 00007f46e24ceba9
[   78.313446][ T6531] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000004
[   78.313457][ T6531] RBP: 00007f46e0f2f090 R08: 0000000000000000 R09: 0000000000000003
[   78.313468][ T6531] R10: 0000000000007c00 R11: 0000000000000246 R12: 0000000000000001
[   78.313478][ T6531] R13: 00007f46e2716038 R14: 00007f46e2715fa0 R15: 00007ffda3604b28
[   78.313507][ T6531]  </TASK>
[   78.605646][   T29] kauditd_printk_skb: 475 callbacks suppressed
[   78.605663][   T29] audit: type=1326 audit(1758163143.137:6271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.2.1191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   78.636354][   T29] audit: type=1326 audit(1758163143.137:6272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6528 comm="syz.2.1191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   78.701536][ T6549] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1199'.
[   78.739724][ T6554] netlink: 'syz.2.1202': attribute type 4 has an invalid length.
[   78.750700][   T29] audit: type=1326 audit(1758163143.557:6273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6555 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   78.774953][   T29] audit: type=1326 audit(1758163143.557:6274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6555 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   78.786610][ T6556] netlink: 'syz.1.1201': attribute type 10 has an invalid length.
[   78.799685][   T29] audit: type=1326 audit(1758163143.557:6275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6555 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   78.830524][   T29] audit: type=1326 audit(1758163143.557:6276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6555 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   78.833438][ T6556] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   78.854590][   T29] audit: type=1326 audit(1758163143.557:6277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6555 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   78.893212][   T29] audit: type=1326 audit(1758163143.557:6278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6555 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   78.917405][   T29] audit: type=1326 audit(1758163143.557:6279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6555 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   78.941446][   T29] audit: type=1326 audit(1758163143.557:6280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6555 comm="syz.1.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   78.976312][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.017543][ T6564] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   79.032812][ T3389] lo speed is unknown, defaulting to 1000
[   79.038699][ T3389] syz2: Port: 1 Link DOWN
[   79.038825][ T6569] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[   79.474974][ T6592] netlink: 'syz.1.1217': attribute type 10 has an invalid length.
[   79.527512][ T6592] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   80.234307][ T6690] lo speed is unknown, defaulting to 1000
[   80.240536][ T6690] lo speed is unknown, defaulting to 1000
[   80.260255][ T6691] lo speed is unknown, defaulting to 1000
[   80.275915][ T6691] lo speed is unknown, defaulting to 1000
[   81.089819][ T6705] sit0: entered allmulticast mode
[   81.127606][ T6705] sit0: entered promiscuous mode
[   81.147200][ T6713] __nla_validate_parse: 19 callbacks suppressed
[   81.147213][ T6713] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1255'.
[   81.283261][ T6722] netlink: 'syz.4.1259': attribute type 6 has an invalid length.
[   81.337840][ T6727] loop4: detected capacity change from 0 to 764
[   81.353944][ T6722] rock: directory entry would overflow storage
[   81.360129][ T6722] rock: sig=0x4f50, size=4, remaining=3
[   81.365956][ T6722] iso9660: Corrupted directory entry in block 6 of inode 1792
[   81.404994][ T6733] netlink: 'syz.0.1264': attribute type 13 has an invalid length.
[   81.452163][ T6733] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   81.467693][ T3412] lo speed is unknown, defaulting to 1000
[   81.480439][ T6745] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1267'.
[   82.107964][ T6777] sit0: entered allmulticast mode
[   82.131624][ T6777] sit0: entered promiscuous mode
[   82.376174][ T6778] lo speed is unknown, defaulting to 1000
[   82.377069][ T6778] lo speed is unknown, defaulting to 1000
[   82.409086][ T6785] netlink: 'syz.4.1283': attribute type 13 has an invalid length.
[   82.482689][ T6785] 8021q: adding VLAN 0 to HW filter on device team0
[   82.493885][ T6785] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   82.525562][ T6792] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1284'.
[   82.697958][ T6800] netlink: 'syz.1.1288': attribute type 1 has an invalid length.
[   82.714593][ T6800] bond1: entered promiscuous mode
[   82.727284][ T6800] 8021q: adding VLAN 0 to HW filter on device bond1
[   82.737971][ T6807] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1286'.
[   82.794196][ T6800] 8021q: adding VLAN 0 to HW filter on device bond1
[   82.805921][ T6800] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[   82.816879][ T6800] bond1: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[   82.817708][ T6820] netlink: 'syz.2.1295': attribute type 13 has an invalid length.
[   82.840215][ T6800] bond1: (slave wireguard0): making interface the new active one
[   82.848228][ T6800] wireguard0: entered promiscuous mode
[   82.856723][ T6800] bond1: (slave wireguard0): Enslaving as an active interface with an up link
[   82.912337][ T6820] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   83.029414][ T6835] mmap: syz.2.1300 (6835) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   83.133897][ T6846] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1305'.
[   83.175710][ T6848] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1306'.
[   83.211308][ T6858] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1310'.
[   83.294452][ T6868] lo speed is unknown, defaulting to 1000
[   83.303037][ T6868] lo speed is unknown, defaulting to 1000
[   83.430765][ T6872] SELinux: security_context_str_to_sid () failed with errno=-22
[   83.456035][ T6874] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1318'.
[   83.536004][ T6882] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1321'.
[   83.610949][ T6895] loop4: detected capacity change from 0 to 764
[   83.625779][   T29] kauditd_printk_skb: 497 callbacks suppressed
[   83.625795][   T29] audit: type=1326 audit(1758163148.437:6778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6894 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f46e24cd80a code=0x7ffc0000
[   83.655915][   T29] audit: type=1326 audit(1758163148.437:6779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6894 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f46e24cd80a code=0x7ffc0000
[   83.662789][ T6899] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1328'.
[   83.679411][   T29] audit: type=1326 audit(1758163148.437:6780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6894 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f46e24cd417 code=0x7ffc0000
[   83.679468][   T29] audit: type=1326 audit(1758163148.437:6781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6894 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f46e24d034a code=0x7ffc0000
[   83.752858][ T6895] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   83.764977][   T29] audit: type=1326 audit(1758163148.577:6782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6894 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f46e24cd510 code=0x7ffc0000
[   83.788774][   T29] audit: type=1326 audit(1758163148.577:6783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6894 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f46e24cd8f7 code=0x7ffc0000
[   83.812099][   T29] audit: type=1326 audit(1758163148.577:6784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6894 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f46e24cd510 code=0x7ffc0000
[   83.835950][   T29] audit: type=1326 audit(1758163148.577:6785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6894 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   83.861627][ T6907] netlink: 'syz.3.1330': attribute type 4 has an invalid length.
[   83.870464][ T6904] netlink: 'syz.3.1330': attribute type 4 has an invalid length.
[   83.871474][   T29] audit: type=1326 audit(1758163148.577:6786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6894 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   83.904061][   T29] audit: type=1326 audit(1758163148.577:6787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6894 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[   83.941213][ T6895] netlink: 'syz.4.1326': attribute type 10 has an invalid length.
[   83.963695][ T6911] ip6erspan0: entered promiscuous mode
[   84.240416][ T6923] SELinux: security_context_str_to_sid () failed with errno=-22
[   84.376999][ T6966] loop4: detected capacity change from 0 to 512
[   84.393808][ T6966] ext4: Unknown parameter 'smackfstransmute'
[   84.418236][ T6966] netlink: 'syz.4.1355': attribute type 1 has an invalid length.
[   84.979271][ T6982] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=6982 comm=syz.1.1361
[   85.617009][ T7022] netlink: 'syz.0.1378': attribute type 4 has an invalid length.
[   85.933278][ T7061] loop4: detected capacity change from 0 to 764
[   85.951302][ T7061] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   86.047190][ T7061] netlink: 'syz.4.1392': attribute type 10 has an invalid length.
[   86.204375][ T7080] __nla_validate_parse: 22 callbacks suppressed
[   86.204391][ T7080] netlink: 220 bytes leftover after parsing attributes in process `syz.4.1401'.
[   86.219867][ T7080] netlink: 220 bytes leftover after parsing attributes in process `syz.4.1401'.
[   86.292517][ T7090] loop4: detected capacity change from 0 to 764
[   86.300326][ T7090] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   86.320217][ T7090] netlink: 'syz.4.1405': attribute type 10 has an invalid length.
[   86.328074][ T7090] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1405'.
[   86.355508][ T7094] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1406'.
[   87.007450][ T7123] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1417'.
[   87.048421][ T7128] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1418'.
[   87.049572][ T7129] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1419'.
[   87.200407][ T7137] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   87.356927][ T7158] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1433'.
[   87.445015][ T7169] FAULT_INJECTION: forcing a failure.
[   87.445015][ T7169] name failslab, interval 1, probability 0, space 0, times 0
[   87.458081][ T7169] CPU: 1 UID: 0 PID: 7169 Comm: syz.4.1437 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   87.458124][ T7169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   87.458137][ T7169] Call Trace:
[   87.458143][ T7169]  <TASK>
[   87.458151][ T7169]  __dump_stack+0x1d/0x30
[   87.458165][ T7169]  dump_stack_lvl+0xe8/0x140
[   87.458175][ T7169]  dump_stack+0x15/0x1b
[   87.458206][ T7169]  should_fail_ex+0x265/0x280
[   87.458230][ T7169]  should_failslab+0x8c/0xb0
[   87.458245][ T7169]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   87.458262][ T7169]  ? sidtab_sid2str_get+0xa0/0x130
[   87.458292][ T7169]  kmemdup_noprof+0x2b/0x70
[   87.458330][ T7169]  sidtab_sid2str_get+0xa0/0x130
[   87.458342][ T7169]  security_sid_to_context_core+0x1eb/0x2e0
[   87.458369][ T7169]  security_sid_to_context+0x27/0x40
[   87.458379][ T7169]  avc_audit_post_callback+0x10f/0x520
[   87.458394][ T7169]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   87.458408][ T7169]  common_lsm_audit+0x1bb/0x230
[   87.458428][ T7169]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   87.458443][ T7169]  slow_avc_audit+0x104/0x140
[   87.458483][ T7169]  avc_has_perm+0x13a/0x180
[   87.458497][ T7169]  selinux_socket_sendmsg+0x175/0x1b0
[   87.458516][ T7169]  security_socket_sendmsg+0x48/0x80
[   87.458596][ T7169]  __sock_sendmsg+0x30/0x180
[   87.458613][ T7169]  ____sys_sendmsg+0x31e/0x4e0
[   87.458629][ T7169]  ___sys_sendmsg+0x17b/0x1d0
[   87.458671][ T7169]  __x64_sys_sendmsg+0xd4/0x160
[   87.458687][ T7169]  x64_sys_call+0x191e/0x2ff0
[   87.458699][ T7169]  do_syscall_64+0xd2/0x200
[   87.458792][ T7169]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   87.458878][ T7169]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   87.458894][ T7169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.458906][ T7169] RIP: 0033:0x7f46e24ceba9
[   87.458916][ T7169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.458926][ T7169] RSP: 002b:00007f46e0f2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.458976][ T7169] RAX: ffffffffffffffda RBX: 00007f46e2715fa0 RCX: 00007f46e24ceba9
[   87.458983][ T7169] RDX: 0000000000004004 RSI: 0000200000000040 RDI: 0000000000000003
[   87.458990][ T7169] RBP: 00007f46e0f2f090 R08: 0000000000000000 R09: 0000000000000000
[   87.458996][ T7169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.459064][ T7169] R13: 00007f46e2716038 R14: 00007f46e2715fa0 R15: 00007ffda3604b28
[   87.459074][ T7169]  </TASK>
[   87.459282][ T7169] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1437'.
[   87.466084][ T7170] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 649
[   87.779264][ T7185] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7185 comm=syz.4.1441
[   87.824929][ T7187] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1442'.
[   87.847879][ T7189] loop4: detected capacity change from 0 to 512
[   87.862131][ T7189] EXT4-fs (loop4): can't mount with commit=, fs mounted w/o journal
[   88.174068][ T7214] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7214 comm=syz.2.1454
[   88.231462][ T7223] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.273846][ T7223] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.328939][ T7244] netlink: 'syz.1.1467': attribute type 21 has an invalid length.
[   88.349293][ T7223] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.362216][ T7250] 9pnet_fd: Insufficient options for proto=fd
[   88.433989][ T7223] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.504826][ T4295] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.516207][ T4295] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.527559][ T4295] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.538954][ T4295] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.828888][   T29] kauditd_printk_skb: 897 callbacks suppressed
[   88.828901][   T29] audit: type=1326 audit(1758163153.637:7685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7287 comm="syz.2.1485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   88.860150][   T29] audit: type=1326 audit(1758163153.637:7686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7287 comm="syz.2.1485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   88.884354][   T29] audit: type=1326 audit(1758163153.667:7687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7287 comm="syz.2.1485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   88.907830][   T29] audit: type=1326 audit(1758163153.667:7688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7287 comm="syz.2.1485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   88.932209][   T29] audit: type=1326 audit(1758163153.667:7689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7287 comm="syz.2.1485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   88.963495][   T29] audit: type=1326 audit(1758163153.767:7690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7289 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   88.986925][   T29] audit: type=1326 audit(1758163153.767:7691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7289 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   89.011222][   T29] audit: type=1326 audit(1758163153.767:7692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7289 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   89.035521][   T29] audit: type=1326 audit(1758163153.767:7693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7289 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   89.059224][   T29] audit: type=1326 audit(1758163153.777:7694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7289 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   89.152145][ T7296] loop4: detected capacity change from 0 to 4096
[   89.162904][ T7296] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.201734][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.858256][ T7325] loop4: detected capacity change from 0 to 8192
[   89.891935][ T7325] vfat: Unknown parameter 'syztnl0'
[   90.159251][ T7350] SELinux:  Context system_u:object_r:framebuf_device_t:s0 is not valid (left unmapped).
[   90.190910][ T7356] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7356 comm=syz.0.1511
[   90.260231][ T7372] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[   90.274052][ T7368] 9pnet_fd: Insufficient options for proto=fd
[   90.280971][ T7368] IPVS: stopping master sync thread 7372 ...
[   90.413660][ T7388] FAULT_INJECTION: forcing a failure.
[   90.413660][ T7388] name failslab, interval 1, probability 0, space 0, times 0
[   90.426770][ T7388] CPU: 1 UID: 0 PID: 7388 Comm: syz.4.1522 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   90.426794][ T7388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   90.426825][ T7388] Call Trace:
[   90.426832][ T7388]  <TASK>
[   90.426839][ T7388]  __dump_stack+0x1d/0x30
[   90.426860][ T7388]  dump_stack_lvl+0xe8/0x140
[   90.426880][ T7388]  dump_stack+0x15/0x1b
[   90.426894][ T7388]  should_fail_ex+0x265/0x280
[   90.426920][ T7388]  should_failslab+0x8c/0xb0
[   90.426996][ T7388]  __kmalloc_noprof+0xa5/0x3e0
[   90.427020][ T7388]  ? ethnl_default_set_doit+0xf0/0x6c0
[   90.427091][ T7388]  ? __nla_parse+0x40/0x60
[   90.427163][ T7388]  ethnl_default_set_doit+0xf0/0x6c0
[   90.427189][ T7388]  ? genl_family_rcv_msg_attrs_parse+0x13b/0x190
[   90.427234][ T7388]  ? genl_family_rcv_msg_attrs_parse+0x184/0x190
[   90.427269][ T7388]  genl_family_rcv_msg_doit+0x140/0x1b0
[   90.427367][ T7388]  genl_rcv_msg+0x422/0x460
[   90.427394][ T7388]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[   90.427422][ T7388]  netlink_rcv_skb+0x123/0x220
[   90.427522][ T7388]  ? __pfx_genl_rcv_msg+0x10/0x10
[   90.427555][ T7388]  genl_rcv+0x28/0x40
[   90.427583][ T7388]  netlink_unicast+0x5bd/0x690
[   90.427632][ T7388]  netlink_sendmsg+0x58b/0x6b0
[   90.427707][ T7388]  ? __pfx_netlink_sendmsg+0x10/0x10
[   90.427747][ T7388]  __sock_sendmsg+0x145/0x180
[   90.427829][ T7388]  ____sys_sendmsg+0x31e/0x4e0
[   90.427855][ T7388]  ___sys_sendmsg+0x17b/0x1d0
[   90.427889][ T7388]  __x64_sys_sendmsg+0xd4/0x160
[   90.427960][ T7388]  x64_sys_call+0x191e/0x2ff0
[   90.427982][ T7388]  do_syscall_64+0xd2/0x200
[   90.428016][ T7388]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   90.428036][ T7388]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   90.428073][ T7388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.428134][ T7388] RIP: 0033:0x7f46e24ceba9
[   90.428153][ T7388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.428170][ T7388] RSP: 002b:00007f46e0f0e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   90.428187][ T7388] RAX: ffffffffffffffda RBX: 00007f46e2716090 RCX: 00007f46e24ceba9
[   90.428197][ T7388] RDX: 0000000000000000 RSI: 0000200000001540 RDI: 0000000000000005
[   90.428209][ T7388] RBP: 00007f46e0f0e090 R08: 0000000000000000 R09: 0000000000000000
[   90.428222][ T7388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.428240][ T7388] R13: 00007f46e2716128 R14: 00007f46e2716090 R15: 00007ffda3604b28
[   90.428260][ T7388]  </TASK>
[   91.462440][ T7433] __nla_validate_parse: 18 callbacks suppressed
[   91.462464][ T7433] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1540'.
[   91.502608][ T7433] netlink: 288 bytes leftover after parsing attributes in process `syz.2.1540'.
[   91.818845][ T7452] loop4: detected capacity change from 0 to 1024
[   91.834058][ T7452] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.855160][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.248734][ T7476] futex_wake_op: syz.0.1557 tries to shift op by -1; fix this program
[   92.313113][ T7482] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1560'.
[   92.440084][ T7495] FAULT_INJECTION: forcing a failure.
[   92.440084][ T7495] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.453779][ T7495] CPU: 0 UID: 0 PID: 7495 Comm: syz.4.1566 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   92.453807][ T7495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   92.453819][ T7495] Call Trace:
[   92.453825][ T7495]  <TASK>
[   92.453832][ T7495]  __dump_stack+0x1d/0x30
[   92.453884][ T7495]  dump_stack_lvl+0xe8/0x140
[   92.453904][ T7495]  dump_stack+0x15/0x1b
[   92.453921][ T7495]  should_fail_ex+0x265/0x280
[   92.453945][ T7495]  should_fail+0xb/0x20
[   92.453962][ T7495]  should_fail_usercopy+0x1a/0x20
[   92.454036][ T7495]  _copy_from_user+0x1c/0xb0
[   92.454098][ T7495]  ___sys_sendmsg+0xc1/0x1d0
[   92.454187][ T7495]  __sys_sendmmsg+0x178/0x300
[   92.454276][ T7495]  __x64_sys_sendmmsg+0x57/0x70
[   92.454300][ T7495]  x64_sys_call+0x1c4a/0x2ff0
[   92.454318][ T7495]  do_syscall_64+0xd2/0x200
[   92.454442][ T7495]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   92.454466][ T7495]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   92.454566][ T7495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.454615][ T7495] RIP: 0033:0x7f46e24ceba9
[   92.454628][ T7495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.454642][ T7495] RSP: 002b:00007f46e0f2f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   92.454659][ T7495] RAX: ffffffffffffffda RBX: 00007f46e2715fa0 RCX: 00007f46e24ceba9
[   92.454670][ T7495] RDX: 0000000000000001 RSI: 0000200000006980 RDI: 0000000000000004
[   92.454682][ T7495] RBP: 00007f46e0f2f090 R08: 0000000000000000 R09: 0000000000000000
[   92.454695][ T7495] R10: 0000000000048001 R11: 0000000000000246 R12: 0000000000000001
[   92.454758][ T7495] R13: 00007f46e2716038 R14: 00007f46e2715fa0 R15: 00007ffda3604b28
[   92.454778][ T7495]  </TASK>
[   92.672963][ T7496] 9pnet_fd: Insufficient options for proto=fd
[   92.683004][ T7498] loop4: detected capacity change from 0 to 736
[   92.704629][ T7498] iso9660: Unknown parameter 'h‘»œYuid'
[   92.725221][ T7498] loop4: detected capacity change from 0 to 164
[   92.988606][ T7519] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1574'.
[   92.997588][ T7519] netlink: 'syz.3.1574': attribute type 5 has an invalid length.
[   93.023441][ T7519] lo speed is unknown, defaulting to 1000
[   93.029949][ T7519] lo speed is unknown, defaulting to 1000
[   93.453425][ T7526] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1578'.
[   93.463294][ T7526] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1578'.
[   93.491541][ T7526] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1578'.
[   93.501277][ T7526] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1578'.
[   93.599486][ T7526] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1578'.
[   93.611537][ T7526] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1578'.
[   93.669514][ T7536] openvswitch: netlink: Message has 6 unknown bytes.
[   93.677655][ T7536] netlink: 'syz.2.1580': attribute type 4 has an invalid length.
[   93.688487][ T7536] netlink: 'syz.2.1580': attribute type 4 has an invalid length.
[   93.888431][   T29] kauditd_printk_skb: 294 callbacks suppressed
[   93.888445][   T29] audit: type=1326 audit(1758163158.697:7989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7550 comm="syz.2.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   93.929475][ T7551] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7551 comm=syz.2.1586
[   93.996175][   T29] audit: type=1326 audit(1758163158.737:7990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7550 comm="syz.2.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   94.021357][   T29] audit: type=1326 audit(1758163158.737:7991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7550 comm="syz.2.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   94.045182][   T29] audit: type=1326 audit(1758163158.737:7992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7550 comm="syz.2.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   94.069426][   T29] audit: type=1326 audit(1758163158.737:7993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7550 comm="syz.2.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   94.093351][   T29] audit: type=1326 audit(1758163158.737:7994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7550 comm="syz.2.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   94.117841][   T29] audit: type=1326 audit(1758163158.737:7995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7550 comm="syz.2.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   94.142233][   T29] audit: type=1326 audit(1758163158.737:7996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7550 comm="syz.2.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   94.165978][   T29] audit: type=1326 audit(1758163158.737:7997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7550 comm="syz.2.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   94.189624][   T29] audit: type=1326 audit(1758163158.737:7998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7550 comm="syz.2.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[   94.232147][ T7553] futex_wake_op: syz.2.1587 tries to shift op by -1; fix this program
[   94.620829][ T7567] netlink: 'syz.0.1592': attribute type 10 has an invalid length.
[   94.728665][ T7578] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[   94.742422][ T7577] 9pnet_fd: Insufficient options for proto=fd
[   94.749378][ T7577] IPVS: stopping master sync thread 7578 ...
[   95.092611][ T7605] FAULT_INJECTION: forcing a failure.
[   95.092611][ T7605] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.105868][ T7605] CPU: 1 UID: 0 PID: 7605 Comm: syz.4.1607 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   95.105894][ T7605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   95.105905][ T7605] Call Trace:
[   95.105911][ T7605]  <TASK>
[   95.105990][ T7605]  __dump_stack+0x1d/0x30
[   95.106005][ T7605]  dump_stack_lvl+0xe8/0x140
[   95.106015][ T7605]  dump_stack+0x15/0x1b
[   95.106024][ T7605]  should_fail_ex+0x265/0x280
[   95.106038][ T7605]  should_fail+0xb/0x20
[   95.106126][ T7605]  should_fail_usercopy+0x1a/0x20
[   95.106140][ T7605]  _copy_from_user+0x1c/0xb0
[   95.106157][ T7605]  sk_setsockopt+0x1fa/0x20e0
[   95.106192][ T7605]  udp_lib_setsockopt+0x93/0x640
[   95.106211][ T7605]  udp_setsockopt+0x77/0xb0
[   95.106262][ T7605]  ? __pfx_udp_push_pending_frames+0x10/0x10
[   95.106278][ T7605]  sock_common_setsockopt+0x69/0x80
[   95.106358][ T7605]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   95.106376][ T7605]  __sys_setsockopt+0x184/0x200
[   95.106390][ T7605]  __x64_sys_setsockopt+0x64/0x80
[   95.106403][ T7605]  x64_sys_call+0x20ec/0x2ff0
[   95.106484][ T7605]  do_syscall_64+0xd2/0x200
[   95.106545][ T7605]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   95.106558][ T7605]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   95.106639][ T7605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.106731][ T7605] RIP: 0033:0x7f46e24ceba9
[   95.106741][ T7605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.106751][ T7605] RSP: 002b:00007f46e0f2f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   95.106792][ T7605] RAX: ffffffffffffffda RBX: 00007f46e2715fa0 RCX: 00007f46e24ceba9
[   95.106799][ T7605] RDX: 0000000000000033 RSI: 0000000000000001 RDI: 0000000000000003
[   95.106806][ T7605] RBP: 00007f46e0f2f090 R08: 0000000000000010 R09: 0000000000000000
[   95.106813][ T7605] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[   95.106819][ T7605] R13: 00007f46e2716038 R14: 00007f46e2715fa0 R15: 00007ffda3604b28
[   95.106865][ T7605]  </TASK>
[   95.581364][ T7613] futex_wake_op: syz.1.1609 tries to shift op by -1; fix this program
[   95.746804][ T7619] loop4: detected capacity change from 0 to 512
[   95.778088][ T7619] EXT4-fs error (device loop4): ext4_init_orphan_info:585: comm syz.4.1613: inode #0: comm syz.4.1613: iget: illegal inode #
[   95.792833][ T7619] EXT4-fs (loop4): Remounting filesystem read-only
[   95.799463][ T7619] EXT4-fs (loop4): get orphan inode failed
[   95.807334][ T7619] EXT4-fs (loop4): mount failed
[   95.897366][ T7625] netlink: 'syz.2.1615': attribute type 10 has an invalid length.
[   95.922672][ T7625] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[   96.147273][ T7653] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7653 comm=syz.4.1627
[   96.186363][ T7656] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 649
[   96.208606][ T7658] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   96.247038][ T7661] loop4: detected capacity change from 0 to 764
[   96.254894][ T7661] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   96.274200][ T7661] netlink: 'syz.4.1630': attribute type 10 has an invalid length.
[   96.348623][ T7671] lo speed is unknown, defaulting to 1000
[   96.355030][ T7671] lo speed is unknown, defaulting to 1000
[   96.454655][ T7688] openvswitch: netlink: Message has 6 unknown bytes.
[   96.559499][ T7694] __nla_validate_parse: 7 callbacks suppressed
[   96.559515][ T7694] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1652'.
[   96.666415][ T3360] IPVS: starting estimator thread 0...
[   96.761930][ T7706] IPVS: using max 2880 ests per chain, 144000 per kthread
[   96.787769][ T7715] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1649'.
[   96.804956][ T7717] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1650'.
[   96.857199][ T7725] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1655'.
[   96.867956][ T7727] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   96.945534][ T7737] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1661'.
[   96.986752][ T7747] loop4: detected capacity change from 0 to 764
[   97.020826][ T7753] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1669'.
[   97.048356][ T7755] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1670'.
[   97.058047][ T7755] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1670'.
[   97.069685][ T7755] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1670'.
[   97.069685][ T7757] netlink: 'syz.3.1671': attribute type 10 has an invalid length.
[   97.069896][ T7755] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1670'.
[   97.123411][ T7761] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7761 comm=syz.3.1672
[   97.143584][ T7761] netlink: 'syz.3.1672': attribute type 16 has an invalid length.
[   97.151594][ T7761] netlink: 'syz.3.1672': attribute type 17 has an invalid length.
[   97.214666][ T7761] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   97.311649][ T7779] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 649
[   97.759697][ T7805] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[   97.772253][ T7804] 9pnet_fd: Insufficient options for proto=fd
[   97.778561][ T7804] IPVS: stopping master sync thread 7805 ...
[   98.022654][ T7838] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[   98.049441][ T7834] 9pnet_fd: Insufficient options for proto=fd
[   98.068167][ T7834] IPVS: stopping master sync thread 7838 ...
[   98.241476][ T7871] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7871 comm=syz.4.1718
[   98.272915][ T7875] 9pnet_fd: Insufficient options for proto=fd
[   98.289365][ T7877] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[   98.475967][ T7902] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7902 comm=syz.0.1732
[   98.494849][ T7905] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[   98.837683][ T7935] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[   98.884780][ T7940] netlink: 'syz.0.1748': attribute type 10 has an invalid length.
[   98.893443][   T29] kauditd_printk_skb: 741 callbacks suppressed
[   98.893458][   T29] audit: type=1326 audit(1758163163.697:8738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7939 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7faa65e4eba9 code=0x7ffc0000
[   98.937457][   T29] audit: type=1326 audit(1758163163.747:8739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7939 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa65e4eba9 code=0x7ffc0000
[   98.961638][   T29] audit: type=1326 audit(1758163163.747:8740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7939 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa65e4eba9 code=0x7ffc0000
[   98.991703][   T29] audit: type=1326 audit(1758163163.797:8741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7939 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7faa65e4eba9 code=0x7ffc0000
[   99.016994][   T29] audit: type=1326 audit(1758163163.797:8742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7939 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa65e4eba9 code=0x7ffc0000
[   99.171875][   T29] audit: type=1326 audit(1758163163.947:8743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7959 comm="syz.1.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   99.195468][   T29] audit: type=1326 audit(1758163163.957:8744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7959 comm="syz.1.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   99.219173][   T29] audit: type=1326 audit(1758163163.957:8745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7959 comm="syz.1.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   99.242713][   T29] audit: type=1326 audit(1758163163.957:8746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7959 comm="syz.1.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   99.266589][   T29] audit: type=1326 audit(1758163163.957:8747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7959 comm="syz.1.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c5feba9 code=0x7ffc0000
[   99.407962][ T7976] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7976 comm=syz.1.1763
[   99.458588][ T7982] loop4: detected capacity change from 0 to 764
[   99.467541][ T7982] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   99.488797][ T7982] netlink: 'syz.4.1765': attribute type 10 has an invalid length.
[   99.616082][ T8003] loop4: detected capacity change from 0 to 764
[  100.168526][ T8037] lo speed is unknown, defaulting to 1000
[  100.175011][ T8037] lo speed is unknown, defaulting to 1000
[  100.829559][ T8060] ------------[ cut here ]------------
[  100.835343][ T8060] verifier bug: REG INVARIANTS VIOLATION (false_reg1): range bounds violation u64=[0xfffffffefffff630, 0xffffffff00000000] s64=[0xfffffffefffff630, 0xffffffff00000000] u32=[0x30, 0x8000050] s32=[0x30, 0x0] var_off=(0xfffffffe00000030, 0x10fffffc0)(1)
[  100.859544][ T8060] WARNING: CPU: 1 PID: 8060 at kernel/bpf/verifier.c:2728 reg_bounds_sanity_check+0x673/0x680
[  100.869876][ T8060] Modules linked in:
[  100.873941][ T8060] CPU: 1 UID: 0 PID: 8060 Comm: syz.0.1799 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  100.883672][ T8060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  100.893850][ T8060] RIP: 0010:reg_bounds_sanity_check+0x673/0x680
[  100.900109][ T8060] Code: 7c 24 18 41 ff 74 24 20 55 41 56 4d 89 ee 53 48 8b 5c 24 30 ff 74 24 40 ff 74 24 50 ff 74 24 30 e8 e2 81 ba ff 48 83 c4 38 90 <0f> 0b 90 90 e9 02 fb ff ff 0f 1f 40 00 90 90 90 90 90 90 90 90 90
[  100.920010][ T8060] RSP: 0018:ffffc9000fcef440 EFLAGS: 00010292
[  100.926257][ T8060] RAX: a5d607dfa6e31800 RBX: ffff88811a40d1a8 RCX: 0000000000080000
[  100.934429][ T8060] RDX: ffffc90004299000 RSI: 00000000000107ce RDI: 00000000000107cf
[  100.942688][ T8060] RBP: fffffffe00000030 R08: 0001c9000fcef27f R09: 0000000000000000
[  100.950720][ T8060] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff88811a40d168
[  100.958920][ T8060] R13: ffff88811c458000 R14: ffff88811c458000 R15: ffff88811a40d1a0
[  100.967026][ T8060] FS:  00007faa648966c0(0000) GS:ffff8882aef40000(0000) knlGS:0000000000000000
[  100.976010][ T8060] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  100.982620][ T8060] CR2: 0000200000003fe0 CR3: 000000011cbb4000 CR4: 00000000003506f0
[  100.990793][ T8060] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  100.998847][ T8060] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  101.006850][ T8060] Call Trace:
[  101.010130][ T8060]  <TASK>
[  101.013163][ T8060]  reg_set_min_max+0x215/0x260
[  101.017994][ T8060]  check_cond_jmp_op+0x1080/0x16e0
[  101.023184][ T8060]  do_check+0x332a/0x7a10
[  101.027568][ T8060]  do_check_common+0xc3a/0x12a0
[  101.027687][ T8060]  bpf_check+0x942b/0xd9e0
[  101.027810][ T8060]  ? __rcu_read_unlock+0x4f/0x70
[  101.027831][ T8060]  ? __alloc_frozen_pages_noprof+0x188/0x360
[  101.027869][ T8060]  ? alloc_pages_bulk_noprof+0x4b8/0x540
[  101.027902][ T8060]  ? __vmap_pages_range_noflush+0xbc4/0xcf0
[  101.027940][ T8060]  ? pcpu_block_update+0x24e/0x3b0
[  101.028084][ T8060]  ? _find_next_zero_bit+0x64/0xa0
[  101.028107][ T8060]  ? pcpu_block_refresh_hint+0x157/0x170
[  101.028195][ T8060]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[  101.028216][ T8060]  ? css_rstat_updated+0xb7/0x240
[  101.028262][ T8060]  ? __rcu_read_unlock+0x4f/0x70
[  101.028299][ T8060]  ? pcpu_memcg_post_alloc_hook+0xf1/0x150
[  101.028317][ T8060]  ? should_fail_ex+0x30/0x280
[  101.028336][ T8060]  ? selinux_bpf_prog_load+0x36/0xf0
[  101.028358][ T8060]  ? should_failslab+0x8c/0xb0
[  101.028459][ T8060]  ? __kmalloc_cache_noprof+0x189/0x320
[  101.028555][ T8060]  ? selinux_bpf_prog_load+0xbf/0xf0
[  101.028587][ T8060]  ? security_bpf_prog_load+0x2c/0xa0
[  101.028605][ T8060]  bpf_prog_load+0xedd/0x1070
[  101.028707][ T8060]  ? security_bpf+0x2b/0x90
[  101.028724][ T8060]  __sys_bpf+0x462/0x7b0
[  101.028762][ T8060]  __x64_sys_bpf+0x41/0x50
[  101.028783][ T8060]  x64_sys_call+0x2aea/0x2ff0
[  101.028897][ T8060]  do_syscall_64+0xd2/0x200
[  101.028989][ T8060]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  101.029012][ T8060]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  101.029041][ T8060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.029064][ T8060] RIP: 0033:0x7faa65e4eba9
[  101.029122][ T8060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.029138][ T8060] RSP: 002b:00007faa64896038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  101.029156][ T8060] RAX: ffffffffffffffda RBX: 00007faa66096090 RCX: 00007faa65e4eba9
[  101.029210][ T8060] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  101.029223][ T8060] RBP: 00007faa65ed1e19 R08: 0000000000000000 R09: 0000000000000000
[  101.029237][ T8060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  101.029251][ T8060] R13: 00007faa66096128 R14: 00007faa66096090 R15: 00007fff2d0a3938
[  101.029341][ T8060]  </TASK>
[  101.029348][ T8060] ---[ end trace 0000000000000000 ]---
[  101.090557][ T8069] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 649
[  101.776110][ T8076] __nla_validate_parse: 19 callbacks suppressed
[  101.776126][ T8076] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1805'.
[  101.822955][ T8078] netlink: 'syz.0.1806': attribute type 10 has an invalid length.
[  101.830877][ T8078] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1806'.
[  101.888007][ T8086] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1811'.
[  102.021461][ T8101] netlink: 'syz.3.1817': attribute type 3 has an invalid length.
[  102.074045][ T8104] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1819'.
[  102.108754][ T8108] netlink: 'syz.3.1820': attribute type 10 has an invalid length.
[  102.109460][ T8112] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1823'.
[  102.116876][ T8108] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1820'.
[  102.171308][ T8117] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1825'.
[  102.265933][ T8129] netlink: 'syz.3.1831': attribute type 3 has an invalid length.
[  102.319867][ T8138] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1835'.
[  102.350317][ T8139] loop4: detected capacity change from 0 to 764
[  102.357599][ T8142] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1837'.
[  102.368420][ T8139] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  102.385232][ T8139] netlink: 'syz.4.1836': attribute type 10 has an invalid length.
[  102.393307][ T8139] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1836'.
[  102.683166][ T8161] netlink: 'syz.4.1846': attribute type 3 has an invalid length.
[  102.932014][ T8181] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[  102.964750][ T8184] loop4: detected capacity change from 0 to 512
[  102.971569][ T8184] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  102.990717][ T8184] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  103.038225][ T8184] EXT4-fs (loop4): 1 truncate cleaned up
[  103.061638][ T8184] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.080353][ T8184] FAULT_INJECTION: forcing a failure.
[  103.080353][ T8184] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  103.094286][ T8184] CPU: 0 UID: 0 PID: 8184 Comm: syz.4.1857 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  103.094328][ T8184] Tainted: [W]=WARN
[  103.094376][ T8184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  103.094387][ T8184] Call Trace:
[  103.094394][ T8184]  <TASK>
[  103.094401][ T8184]  __dump_stack+0x1d/0x30
[  103.094421][ T8184]  dump_stack_lvl+0xe8/0x140
[  103.094437][ T8184]  dump_stack+0x15/0x1b
[  103.094493][ T8184]  should_fail_ex+0x265/0x280
[  103.094567][ T8184]  should_fail+0xb/0x20
[  103.094586][ T8184]  should_fail_usercopy+0x1a/0x20
[  103.094612][ T8184]  strncpy_from_user+0x25/0x230
[  103.094678][ T8184]  ? kmem_cache_alloc_noprof+0x186/0x310
[  103.094702][ T8184]  ? getname_flags+0x80/0x3b0
[  103.094779][ T8184]  getname_flags+0xae/0x3b0
[  103.094802][ T8184]  user_path_at+0x28/0x130
[  103.094891][ T8184]  user_statfs+0x4d/0x110
[  103.094915][ T8184]  __x64_sys_statfs+0x65/0xf0
[  103.094943][ T8184]  ? __bpf_trace_sys_enter+0x10/0x30
[  103.094966][ T8184]  ? trace_sys_enter+0xd0/0xf0
[  103.095050][ T8184]  ? syscall_trace_enter+0x102/0x1e0
[  103.095072][ T8184]  x64_sys_call+0x2a03/0x2ff0
[  103.095151][ T8184]  do_syscall_64+0xd2/0x200
[  103.095177][ T8184]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  103.095197][ T8184]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  103.095296][ T8184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.095315][ T8184] RIP: 0033:0x7f46e24ceba9
[  103.095329][ T8184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.095344][ T8184] RSP: 002b:00007f46e0f2f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000089
[  103.095386][ T8184] RAX: ffffffffffffffda RBX: 00007f46e2715fa0 RCX: 00007f46e24ceba9
[  103.095399][ T8184] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000580
[  103.095482][ T8184] RBP: 00007f46e0f2f090 R08: 0000000000000000 R09: 0000000000000000
[  103.095495][ T8184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.095507][ T8184] R13: 00007f46e2716038 R14: 00007f46e2715fa0 R15: 00007ffda3604b28
[  103.095526][ T8184]  </TASK>
[  103.316679][ T8213] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 649
[  103.331509][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.756474][ T8246] netlink: 'syz.4.1879': attribute type 3 has an invalid length.
[  103.966598][   T29] kauditd_printk_skb: 486 callbacks suppressed
[  103.966611][   T29] audit: type=1326 audit(1758163168.777:9234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8258 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  104.006663][ T8259] netlink: 'syz.2.1887': attribute type 10 has an invalid length.
[  104.015585][ T8259] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  104.032582][   T29] audit: type=1326 audit(1758163168.807:9235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8258 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  104.056142][   T29] audit: type=1326 audit(1758163168.807:9236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8258 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  104.080599][   T29] audit: type=1326 audit(1758163168.807:9237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8258 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  104.104526][   T29] audit: type=1326 audit(1758163168.807:9238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8258 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  104.128196][   T29] audit: type=1326 audit(1758163168.807:9239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8258 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  104.151799][   T29] audit: type=1326 audit(1758163168.807:9240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8258 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  104.175382][   T29] audit: type=1326 audit(1758163168.807:9241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8258 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  104.198836][   T29] audit: type=1326 audit(1758163168.807:9242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8258 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  104.222525][   T29] audit: type=1326 audit(1758163168.807:9243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8258 comm="syz.2.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  104.394606][ T8294] netlink: 'syz.3.1902': attribute type 10 has an invalid length.
[  104.417976][ T8225] syz.0.1873 (8225) used greatest stack depth: 7336 bytes left
[  104.521615][ T8307] netlink: 'syz.2.1908': attribute type 3 has an invalid length.
[  105.066594][ T8328] lo speed is unknown, defaulting to 1000
[  105.083333][ T8328] lo speed is unknown, defaulting to 1000
[  105.285822][ T8354] netlink: 'syz.0.1928': attribute type 3 has an invalid length.
[  106.331009][ T8397] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8397 comm=syz.4.1947
[  106.390661][ T8402] loop4: detected capacity change from 0 to 764
[  106.412121][ T8402] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  107.347942][ T8475] __nla_validate_parse: 15 callbacks suppressed
[  107.347958][ T8475] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1976'.
[  107.382684][ T8480] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1982'.
[  107.404242][ T8482] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8482 comm=syz.0.1983
[  107.505260][ T8501] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1992'.
[  107.526192][ T8503] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1993'.
[  107.626887][ T8514] FAULT_INJECTION: forcing a failure.
[  107.626887][ T8514] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.640067][ T8514] CPU: 0 UID: 0 PID: 8514 Comm: syz.4.1998 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  107.640149][ T8514] Tainted: [W]=WARN
[  107.640153][ T8514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  107.640160][ T8514] Call Trace:
[  107.640164][ T8514]  <TASK>
[  107.640168][ T8514]  __dump_stack+0x1d/0x30
[  107.640182][ T8514]  dump_stack_lvl+0xe8/0x140
[  107.640193][ T8514]  dump_stack+0x15/0x1b
[  107.640222][ T8514]  should_fail_ex+0x265/0x280
[  107.640235][ T8514]  should_fail+0xb/0x20
[  107.640247][ T8514]  should_fail_usercopy+0x1a/0x20
[  107.640260][ T8514]  _copy_from_iter+0xd2/0xe80
[  107.640276][ T8514]  ? __build_skb_around+0x1a0/0x200
[  107.640340][ T8514]  ? __alloc_skb+0x223/0x320
[  107.640351][ T8514]  pfkey_sendmsg+0x126/0x900
[  107.640405][ T8514]  ? avc_has_perm+0xf7/0x180
[  107.640428][ T8514]  ? selinux_socket_sendmsg+0x175/0x1b0
[  107.640524][ T8514]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  107.640539][ T8514]  __sock_sendmsg+0x145/0x180
[  107.640637][ T8514]  ____sys_sendmsg+0x31e/0x4e0
[  107.640658][ T8514]  ___sys_sendmsg+0x17b/0x1d0
[  107.640752][ T8514]  __x64_sys_sendmsg+0xd4/0x160
[  107.640768][ T8514]  x64_sys_call+0x191e/0x2ff0
[  107.640780][ T8514]  do_syscall_64+0xd2/0x200
[  107.640797][ T8514]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  107.640825][ T8514]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  107.640864][ T8514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.640912][ T8514] RIP: 0033:0x7f46e24ceba9
[  107.640973][ T8514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.640983][ T8514] RSP: 002b:00007f46e0f2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.640994][ T8514] RAX: ffffffffffffffda RBX: 00007f46e2715fa0 RCX: 00007f46e24ceba9
[  107.641040][ T8514] RDX: 0000000000000040 RSI: 00002000000007c0 RDI: 0000000000000003
[  107.641047][ T8514] RBP: 00007f46e0f2f090 R08: 0000000000000000 R09: 0000000000000000
[  107.641054][ T8514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.641061][ T8514] R13: 00007f46e2716038 R14: 00007f46e2715fa0 R15: 00007ffda3604b28
[  107.641071][ T8514]  </TASK>
[  107.884664][ T8518] 9pnet: p9_errstr2errno: server reported unknown error 
[  107.929285][ T8524] 9pnet_fd: Insufficient options for proto=fd
[  107.975895][ T8531] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2006'.
[  108.045505][ T8542] loop4: detected capacity change from 0 to 764
[  108.053513][ T8542] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  108.235026][ T8565] lo speed is unknown, defaulting to 1000
[  108.241431][ T8565] lo speed is unknown, defaulting to 1000
[  108.312399][ T8573] netlink: zone id is out of range
[  108.317764][ T8573] netlink: zone id is out of range
[  108.323411][ T8573] netlink: zone id is out of range
[  108.328555][ T8573] netlink: zone id is out of range
[  108.345229][ T8573] netlink: zone id is out of range
[  108.350798][ T8573] netlink: zone id is out of range
[  108.356107][ T8573] netlink: zone id is out of range
[  108.362892][ T8573] netlink: zone id is out of range
[  108.371368][ T8573] netlink: zone id is out of range
[  108.380595][ T8573] netlink: zone id is out of range
[  108.707370][ T8623] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2045'.
[  108.994853][ T8651] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2057'.
[  109.050861][   T29] kauditd_printk_skb: 635 callbacks suppressed
[  109.050874][   T29] audit: type=1326 audit(1758163173.857:9879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8654 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  109.056302][ T8656] loop4: detected capacity change from 0 to 764
[  109.057169][   T29] audit: type=1326 audit(1758163173.857:9880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8654 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  109.110866][   T29] audit: type=1326 audit(1758163173.857:9881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8654 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  109.138926][   T29] audit: type=1326 audit(1758163173.857:9882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8654 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  109.162953][   T29] audit: type=1326 audit(1758163173.857:9883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8654 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  109.186375][   T29] audit: type=1326 audit(1758163173.857:9884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8654 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  109.210489][   T29] audit: type=1326 audit(1758163173.857:9885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8654 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  109.234515][   T29] audit: type=1326 audit(1758163173.857:9886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8654 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  109.258106][   T29] audit: type=1326 audit(1758163173.857:9887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8654 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  109.282199][   T29] audit: type=1326 audit(1758163173.867:9888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8654 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  109.363425][ T8656] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  109.977323][ T8680] loop4: detected capacity change from 0 to 512
[  109.999422][ T8680] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  110.018898][ T8680] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.2071: invalid indirect mapped block 4294967295 (level 0)
[  110.035111][ T8680] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.2071: invalid indirect mapped block 4294967295 (level 1)
[  110.049732][ T8680] EXT4-fs (loop4): 1 orphan inode deleted
[  110.055616][ T8680] EXT4-fs (loop4): 1 truncate cleaned up
[  110.072423][ T8680] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.116708][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.149625][ T8689] netlink: 200 bytes leftover after parsing attributes in process `syz.1.2074'.
[  110.409168][ T8720] netlink: 14 bytes leftover after parsing attributes in process `syz.3.2087'.
[  110.453195][ T8720] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  110.482090][ T8720] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  110.496772][ T8720] bond0 (unregistering): Released all slaves
[  110.754563][ T8747] netlink: 332 bytes leftover after parsing attributes in process `syz.2.2096'.
[  110.826958][ T8763] futex_wake_op: syz.2.2102 tries to shift op by -1; fix this program
[  111.263799][ T8813] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=8813 comm=syz.3.2124
[  111.302548][ T8817] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8817 comm=syz.3.2126
[  111.364094][ T8825] futex_wake_op: syz.4.2130 tries to shift op by -1; fix this program
[  111.413956][ T8835] futex_wake_op: syz.1.2135 tries to shift op by -1; fix this program
[  112.234215][ T8863] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8863 comm=syz.4.2147
[  112.359167][ T8878] futex_wake_op: syz.1.2155 tries to shift op by -1; fix this program
[  112.456597][ T8891] __nla_validate_parse: 2 callbacks suppressed
[  112.456615][ T8891] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2161'.
[  112.524847][ T8895] IPVS: set_ctl: invalid protocol: 0 224.0.0.1:20000
[  112.883067][ T8928] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2176'.
[  113.203414][ T8947] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2185'.
[  113.236600][ T8949] loop4: detected capacity change from 0 to 2048
[  113.262885][ T8949] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.299224][ T8965] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2186'.
[  113.385616][ T8976] random: crng reseeded on system resumption
[  113.453267][ T8971] futex_wake_op: syz.0.2195 tries to shift op by -1; fix this program
[  113.464487][ T8986] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2200'.
[  113.590624][ T8997] lo speed is unknown, defaulting to 1000
[  113.597021][ T8997] lo speed is unknown, defaulting to 1000
[  113.625728][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.794700][ T9022] loop4: detected capacity change from 0 to 512
[  113.801697][ T9022] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  113.813865][ T9022] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.2216: invalid indirect mapped block 4294967295 (level 0)
[  113.829080][ T9022] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.2216: invalid indirect mapped block 4294967295 (level 1)
[  113.845119][ T9022] EXT4-fs (loop4): 1 orphan inode deleted
[  113.850948][ T9022] EXT4-fs (loop4): 1 truncate cleaned up
[  113.858381][ T9022] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.887424][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.905786][ T9029] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9029 comm=syz.4.2219
[  114.053059][   T29] kauditd_printk_skb: 727 callbacks suppressed
[  114.053071][   T29] audit: type=1326 audit(1758163178.867:10616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8987 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa491005b67 code=0x7ffc0000
[  114.084818][   T29] audit: type=1326 audit(1758163178.897:10617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8987 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa490faada9 code=0x7ffc0000
[  114.107807][   T29] audit: type=1326 audit(1758163178.897:10618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8987 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa491005b67 code=0x7ffc0000
[  114.131306][   T29] audit: type=1326 audit(1758163178.897:10619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8987 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa490faada9 code=0x7ffc0000
[  114.154820][   T29] audit: type=1326 audit(1758163178.897:10620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8987 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7fa49100eba9 code=0x7ffc0000
[  114.179316][   T29] audit: type=1326 audit(1758163178.917:10621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9041 comm="syz.4.2225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  114.203682][   T29] audit: type=1326 audit(1758163178.917:10622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9041 comm="syz.4.2225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46e24ceba9 code=0x7ffc0000
[  114.227354][   T29] audit: type=1326 audit(1758163178.987:10623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8987 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa491005b67 code=0x7ffc0000
[  114.251195][   T29] audit: type=1326 audit(1758163178.987:10624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8987 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa490faada9 code=0x7ffc0000
[  114.274740][   T29] audit: type=1326 audit(1758163178.987:10625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8987 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7fa49100eba9 code=0x7ffc0000
[  114.549402][ T9076] futex_wake_op: syz.0.2239 tries to shift op by -1; fix this program
[  114.700735][ T9081] netlink: 'syz.2.2241': attribute type 3 has an invalid length.
[  115.075391][ T9111] netlink: 'syz.1.2253': attribute type 3 has an invalid length.
[  115.252769][ T3536] hid-generic 0000:0000:0000.0001: unknown main item tag 0x1
[  115.260209][ T3536] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  115.268251][ T3536] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  115.275718][ T3536] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  115.283133][ T3536] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  115.290781][ T3536] hid-generic 0000:0000:0000.0001: unknown main item tag 0x2
[  115.298937][ T3536] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  115.306374][ T3536] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  115.313932][ T3536] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  115.321418][ T3536] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  115.330868][ T3536] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz1
[  115.350572][ T9119] loop4: detected capacity change from 0 to 2048
[  115.363910][ T9119] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  115.385296][ T9119] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  115.401009][ T9119] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  115.413999][ T9119] EXT4-fs (loop4): This should not happen!! Data will be lost
[  115.413999][ T9119] 
[  115.423838][ T9119] EXT4-fs (loop4): Total free blocks count 0
[  115.429834][ T9119] EXT4-fs (loop4): Free/Dirty block details
[  115.435867][ T9119] EXT4-fs (loop4): free_blocks=2415919104
[  115.441666][ T9119] EXT4-fs (loop4): dirty_blocks=16
[  115.447042][ T9119] EXT4-fs (loop4): Block reservation details
[  115.453047][ T9119] EXT4-fs (loop4): i_reserved_data_blocks=1
[  115.487978][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  115.647916][ T9160] loop4: detected capacity change from 0 to 764
[  115.656504][ T9160] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  115.716753][ T9168] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2277'.
[  115.809000][ T9184] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2285'.
[  115.948807][ T9196] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2291'.
[  116.095715][ T9215] netlink: 'syz.4.2299': attribute type 3 has an invalid length.
[  116.138732][ T9223] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2303'.
[  116.489048][ T9254] netlink: 'syz.0.2313': attribute type 3 has an invalid length.
[  116.529300][ T9260] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2316'.
[  116.792775][ T9285] netlink: 'syz.2.2327': attribute type 3 has an invalid length.
[  116.953586][ T9312] netlink: 'syz.3.2339': attribute type 3 has an invalid length.
[  117.239132][ T9339] vhci_hcd: invalid port number 23
[  117.561533][ T9387] __nla_validate_parse: 6 callbacks suppressed
[  117.561568][ T9387] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2367'.
[  117.613712][ T9391] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  117.622874][ T9391] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  117.660876][ T9382] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2365'.
[  117.761524][ T9405] netlink: 'syz.2.2376': attribute type 3 has an invalid length.
[  117.785786][ T9409] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2378'.
[  118.115886][ T9433] netlink: 'syz.3.2389': attribute type 3 has an invalid length.
[  118.131365][ T9435] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2390'.
[  118.603813][ T9460] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2401'.
[  119.346324][ T9443] kexec: Could not allocate control_code_buffer
[  119.367148][ T9490] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2412'.
[  119.731899][   T29] kauditd_printk_skb: 909 callbacks suppressed
[  119.731915][   T29] audit: type=1326 audit(1758163184.537:11535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  119.762184][   T29] audit: type=1326 audit(1758163184.537:11536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  119.785937][   T29] audit: type=1326 audit(1758163184.537:11537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  119.809489][   T29] audit: type=1326 audit(1758163184.537:11538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  119.833215][   T29] audit: type=1326 audit(1758163184.537:11539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  119.912407][ T9506] loop4: detected capacity change from 0 to 2048
[  119.965453][ T9506] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.028229][   T29] audit: type=1326 audit(1758163184.697:11540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  120.052334][   T29] audit: type=1326 audit(1758163184.697:11541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  120.075934][   T29] audit: type=1326 audit(1758163184.707:11542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  120.077706][ T9514] netlink: 'syz.1.2421': attribute type 2 has an invalid length.
[  120.099515][   T29] audit: type=1326 audit(1758163184.707:11543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  120.099546][   T29] audit: type=1326 audit(1758163184.707:11544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffb5db6eba9 code=0x7ffc0000
[  120.243889][ T9517] random: crng reseeded on system resumption
[  120.419737][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.451543][ T9542] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9542 comm=syz.1.2434
[  120.740233][ T9557] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2440'.
[  121.105957][ T9578] 9pnet_fd: Insufficient options for proto=fd
[  122.243190][ T9638] ==================================================================
[  122.251333][ T9638] BUG: KCSAN: data-race in call_rcu / mas_state_walk
[  122.258195][ T9638] 
[  122.261029][ T9638] write to 0xffff888104be3b08 of 8 bytes by task 9637 on cpu 0:
[  122.268650][ T9638]  call_rcu+0x51/0x3f0
[  122.272722][ T9638]  mas_wmb_replace+0xc6a/0x14a0
[  122.277736][ T9638]  mas_wr_store_entry+0x1773/0x2b50
[  122.283014][ T9638]  mas_store_prealloc+0x74d/0x9e0
[  122.288043][ T9638]  vma_iter_store_new+0x1c5/0x200
[  122.293147][ T9638]  vma_complete+0x125/0x580
[  122.297647][ T9638]  __split_vma+0x5d9/0x650
[  122.302055][ T9638]  vma_modify+0x3f2/0xc80
[  122.306374][ T9638]  vma_modify_flags+0x101/0x130
[  122.311220][ T9638]  mprotect_fixup+0x2cc/0x570
[  122.315902][ T9638]  do_mprotect_pkey+0x6d6/0x980
[  122.320751][ T9638]  __x64_sys_mprotect+0x48/0x60
[  122.325597][ T9638]  x64_sys_call+0x274e/0x2ff0
[  122.330272][ T9638]  do_syscall_64+0xd2/0x200
[  122.334787][ T9638]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.340693][ T9638] 
[  122.343012][ T9638] read to 0xffff888104be3b08 of 8 bytes by task 9638 on cpu 1:
[  122.350545][ T9638]  mas_state_walk+0x28f/0x650
[  122.355313][ T9638]  mas_walk+0x60/0x150
[  122.359389][ T9638]  lock_vma_under_rcu+0x8d/0x160
[  122.364327][ T9638]  do_user_addr_fault+0x233/0x1090
[  122.369439][ T9638]  exc_page_fault+0x62/0xa0
[  122.373935][ T9638]  asm_exc_page_fault+0x26/0x30
[  122.378771][ T9638] 
[  122.381083][ T9638] value changed: 0x00007ffb5c58efff -> 0xffff888104be3a08
[  122.388177][ T9638] 
[  122.390483][ T9638] Reported by Kernel Concurrency Sanitizer on:
[  122.396640][ T9638] CPU: 1 UID: 0 PID: 9638 Comm: syz.2.2472 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  122.407925][ T9638] Tainted: [W]=WARN
[  122.411711][ T9638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  122.421765][ T9638] ==================================================================
[  122.489121][ T9638] cgroup: fork rejected by pids controller in /syz2