last executing test programs:

1.968317882s ago: executing program 0 (id=5245):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x20, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x9, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$xdp(0x2c, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x18)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0xfffffffffffffffd], 0x0, 0x4, 0x1}}, 0x40)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000280), 0x802, 0x0)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d000000140000001100"], 0xa8}}, 0x0)

1.965074512s ago: executing program 0 (id=5247):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x0, &(0x7f0000000280), 0x0, 0x4bc, &(0x7f0000000a40)="$eJzs3ctvW1UaAPDPdpMmaWb6mNGo7UjTSh2p81DjPDRqMjObWc3MotJoKrEBqYTEDSVOHMVOaaIuUth1wQKBQEIs2PMXsKErKiTEGvaIBSqCEiRAQjK613abOHGwII1p7u8n3ebch/2dU+s7Ovf4Xt8AMuts8k8uYjgiPoyIo43VrQecbfzZuH9zJllyUa9f/iKXHpestw5tve5IRKxHxEBE/P/fEc/ktsetrq7NT5fLpeXmerG2sFSsrq5duLYwPVeaKy2OTV6cmpocnRif2rO23n7puduX3vlv/9vfvHjv7svvvZtUa7i5b3M79lKj6X1xfNO2QxHxz0cRrAcKzfYM9roi/CTJ5/ebiDiX5v/RKKSfJpAF9Xq9/n39cKfd63XgwMqnY+BcfiQiGuV8fmSkMYb/bQzly5Vq7a9XKyuLs42x8rHoy1+9Vi6NNs8VjkVfLlkfS8sP18fb1ici0jHwK4XBdH1kplKe3d+uDmhzpC3/vy408h/ICKf8kF3yH7JL/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv+QXfIfskv+Qyb979KlZKm37n+fvb66Ml+5fmG2VJ0fWViZGZmpLC+NzFUqc+k9Ows/9n7lSmVp7G+xcqNYK1Vrxerq2pWFyspi7Up6X/+VUt++tAroxvEzdz7ORcT63wfTJdHf3CdX4WCr13PR63uQgd4o9LoDAnrG1B9kl3N8oP0netvHBQOdXrj0cL4QeLzke10BoGfOn/L9H2SV+X/ILvP/kF3G+MAOj+jbYrf5f+DxZP4fsmu4w/O/frXp2V2jEfHriPio0He49awv4CDIf5Zrjv/PH/3jcPve/ty36VcE/RHx/BuXX7sxXastjyXbv3ywvfZ6c/v4phd2PGEAeqWVp608BgCya+P+zZnWsp9xP/9X4yKE7fEPNecmB9LvKIc2cluuVcjt0bUL67ci4uRO8XPN5503TmSGNgrb4p9o/s013iKt76H0uen7E//Upvh/2BT/9M/+X4FsuJP0P6M75V8+zel4kH9b+5/hPbp2onP/l3/Q/xU69H9nuozx7JsvfNox/q2I0zvGb8UbSGO1x0/qdr7L+PeeeuJ3nfbV32q8z07xW5JSsbawVKyurl1If0durrQ4NnlxampydGJ8qpjOURdbM9Xb/ePkB3d3a/9Qh/i7tT/Z9ucu2//d799/8uwu8f90bufP/8Qu8Qcj4i9dxv9q/JOnO+1L4s92aH9+l/jJtoku41df/c/hLg8FAPZBdXVtfrpcLi0rKCj0pHDrl1GNtkKveybgUauuJqfmSdL3uiYAAAAAAAAAAABAt/bjcuJetxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4CD4IQAA//9HcdTQ")
creat(&(0x7f00000000c0)='./bus\x00', 0x182)
openat$dir(0xffffffffffffff9c, 0x0, 0x200, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000300)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0xffffffffffffff67, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$phonet_pipe(0x23, 0x5, 0x2)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x4, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe46a}, 0x94)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x80, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x8, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
listen(r1, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x2c050007, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000140)={0xfbb, 0x5, 0x1, 0x4, 0x7, 0x0, 0xd}, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)

1.494413141s ago: executing program 2 (id=5262):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0], <r1=>0x0, 0x81, &(0x7f0000000380), 0x0, 0x10, &(0x7f0000000480), &(0x7f00000004c0), 0x3, 0x3c, 0x8, 0x8, &(0x7f0000000500)}}, 0x10)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000440)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x20, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000001eadecd4360000f1ffffffff1fb15c110b000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007ffffffb403000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000080)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7fff}, 0x18)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r4 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x8000000000000000)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000380)={0x0, <r5=>0x0})
ioctl$TIOCSPGRP(r4, 0x5410, &(0x7f0000000640)=r5)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'rose0\x00', 0x112})
ioctl$TUNSETTXFILTER(r3, 0x400454d1, &(0x7f0000000a00)=ANY=[@ANYBLOB="00000700bbbbbbbbbbbbaaaaaaaaaabb3dd4e44f2bca72216caaaaaaaaaaaa0180c200000effffffffffffffffffffffff2ebf0f30e982ace71b22645c49cc1543687a225adc71a902b9e6562282918452357d0d551cd1810354a1668383d2eb72b855e4303f280baec9f3c9fe8f9da4ec7bd6c02e796e2f0b044465df39b7459e0cadcc8a8abb"])
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2b}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4008050)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0], 0x0, 0x81, &(0x7f0000000380), 0x0, 0x10, &(0x7f0000000480), &(0x7f00000004c0), 0x3, 0x3c, 0x8, 0x8, &(0x7f0000000500)}}, 0x10) (async)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000440)={0x0, r0}, 0x8) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x20, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000001eadecd4360000f1ffffffff1fb15c110b000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007ffffffb403000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000080)}, 0x20) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7fff}, 0x18) (async)
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x8000000000000000) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000380)) (async)
ioctl$TIOCSPGRP(r4, 0x5410, &(0x7f0000000640)=r5) (async)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'rose0\x00', 0x112}) (async)
ioctl$TUNSETTXFILTER(r3, 0x400454d1, &(0x7f0000000a00)=ANY=[@ANYBLOB="00000700bbbbbbbbbbbbaaaaaaaaaabb3dd4e44f2bca72216caaaaaaaaaaaa0180c200000effffffffffffffffffffffff2ebf0f30e982ace71b22645c49cc1543687a225adc71a902b9e6562282918452357d0d551cd1810354a1668383d2eb72b855e4303f280baec9f3c9fe8f9da4ec7bd6c02e796e2f0b044465df39b7459e0cadcc8a8abb"]) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2b}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4008050) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0) (async)

1.461317141s ago: executing program 4 (id=5263):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffd}, 0x94)
r4 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r5 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\x00'/557, 0x1)
pwritev(r5, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5)
sendfile(r4, r4, 0x0, 0x24002de8)
r6 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r6, 0x29, 0xc8, &(0x7f0000000340), 0x4)
setsockopt$MRT6_ADD_MIF(r6, 0x29, 0xca, &(0x7f00000000c0)={0x4, 0x1, 0x78, 0x0, 0xfffffff8}, 0xc)
setsockopt$MRT6_FLUSH(r6, 0x29, 0xd4, &(0x7f0000000080)=0x6, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r3}, 0x10)
r7 = socket$kcm(0x10, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000c80)={'ip6gre0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001240)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x4000000, {0x0, 0x0, 0x0, r10, {0x0, 0x1}, {0xffff, 0xffff}, {0xc}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x1, 0xffffffff, 0x1fc, 0x0, 0xfffffc80, 0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0xe8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x20, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3f, 0x0, 0x0, 0x2, 0xffffffff, 0x2, 0xc00, 0x0, 0x1, 0x0, 0x10000202, 0xfff, 0x0, 0x0, 0x0, 0x1000, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x272, 0xb, 0x0, 0x9, 0x3, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2, 0x7, 0x4, 0x0, 0x0, 0x0, 0x81, 0xfffffffd, 0x10, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1b, 0xfffffffc, 0x3, 0x0, 0x7, 0x0, 0xb97, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x3, 0x5e, 0xfffffffc, 0x8, 0x0, 0x0, 0x400000, 0x7, 0x0, 0xc, 0x10, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x4, 0xfffffffd, 0x3ff, 0x0, 0x80003, 0x0, 0x0, 0x1, 0x0, 0x400, 0x0, 0x0, 0xffffffff, 0x40, 0x0, 0xfffffffd, 0x0, 0x0, 0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8, 0x81, 0x20, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0xffffffff, 0xffff, 0x0, 0x0, 0xb3c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x440000, 0x0, 0x2, 0x800000, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xae, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0xd79, 0x0, 0x2, 0x0, 0x0, 0x100001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x2, 0x0, 0x6, 0x0, 0x100, 0x0, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffd]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x1, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xff, 0x0, 0x0, 0x0, 0x0, 0x8d4}, 0x0, 0x7f}}]}}]}, 0x45c}}, 0x0)
sendmsg$kcm(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000940)="2e00000010008188e6b62aa73772cc9f1ba1f8482e0000005e140602000000000e000a001000000002800000128c", 0x2e}], 0x1}, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRESOCT=r0, @ANYBLOB])
lchown(&(0x7f0000000700)='./file0\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000300)={[{@grpjquota}, {@abort}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7fffffff}}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x4f8, &(0x7f00000011c0)="$eJzs3E9sVMUfAPDv27a0/PvRHyIKohbR2EhsoaBwMDEYTTxoYsREPTZtIUihhpZECOqSGDwaEu/Go1cPXtULMZxMvOLRxJAQwwUwIa55u++12+1uS7fbXUs/n2TbmfdvZnbevJ03s/sCWLcG0j9JJXwjIrZFRKF2g4HKv7u3L43du31pLIql0vG/kvJud9J4JjtMbM4ig4WIwhfJ3Ioq0xcunh6dnJw4l8WHZ858PDx94eKLp/qyJUePHj508MjLIy8tv1B10kvLdWf3Z1N7dr354dW3x7rz5Xlq1eVolYEYqJeVsudanViHba0KJ90dzAjLkp7/aXX1lNv/tuiKxSqv2MacAautVCqVehuvLpZqXV6wBFizoq/TOQA6I/+gT+9/81e9jsCG1el+dNytY5UboLTcd7NXxNPlhfk4SE/N/W0rDUTEB8W/v0lf0WgcomuVEgcA1qWfjuU9wZr+X39lZuT++Wuvpv//l82h9EfE/yNie0Q8EhE7IuLRiNgZEY9FxOM1x0+7LqVF0h+oic+mPzsJVbjZoqLWlfb/Xsnmtub6f/My0N+VxbZG5B3miQPZezIYPb0nTk1OHFwkjZ9f/+2rRuuq+3/pK00/7wtm+bjZXTNANz46M9p0gWvcuhyxu7u2/El3RDI7E5BExK6I2L2M4/ZXhU+98N2e2UjP/O2WLn9Zqe48WgvmmUrfRjwfyf27ty8VY179z6WYzJufPDN6cuLkxNmR2fnJ4b6YnDgwnJ4FB+qmcf3XK+80Sn/J8v/wR+0ubxz58XjLbgrS+t9Udf5HPn87V/7+JCKZna+dXn4aV37/suHcarPn/4bkvXI4vy/9ZHRm5tzBiA3JWwuXj8ztm8fT/1GslH9wX/32vz3bJ30nnoiI9CR+MiKeisodYpr3vRHxTETsW6T8v7z27EfLLn9hkQO2UFr+8ZrrX6Xm59X/3Hx9o0CSzQ3WWdV1eu+New0uHg9W/4fLocFsSf3rXzLvEtEop/mnXbrknxW/ewAAALA2FCJiS9VY0pYoFIaGKmNAO2JTYXJqemb/ianzZ8fTdRH90VPIR7oq48E9ST7+2V8VH6mJH8rGjb/u2liOD41NTY53tOTA5nKbTwpDEe93VbX/1J++dwIPP7/XgvVrsfafduJ3Xm1jZoC2evDP/2ufrmpGgLarav+NfuFfbOJ7X8Aa4P4fmLP0g35cM2DtK2nLsK4tq/3v9xBAeJh0x7uz4Tb97hD4j2i2//95i/MBtNWSv+tfUaDUW39VXyzcOPryJfnjHuZv0xXNZWNjnbQ6Ekh7Vh1JfWMze+VPU2i4TRSWd8DeWLiqmTo9scJ3o3hu+uTOlp/8pey78q2uwe8bt9PrvYvUzsoDbb8UAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAArIp/AwAA//9RId3A")

1.296432545s ago: executing program 2 (id=5265):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x97}]}, &(0x7f0000000200)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x43, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000080)="b9ff033168440392b89e14f00800", 0x0, 0x9, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.274545976s ago: executing program 2 (id=5266):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r4}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x870bd2d, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x167, 0x7, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x6}}}}]}]}, 0x70}}, 0x20040000)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001140)=ANY=[@ANYRESHEX=r0, @ANYRES8, @ANYRES16=r0, @ANYRES32=r6, @ANYBLOB="1c2e4b48d07b7af46bfba4ce82342bc3c9de15b891b9ecfdf17b11445f135b4292557122688a55d842bf21ec0d29807b4747bcacace33b623cc359ce2efbf9223ca4561c73fdd7d6d9c541afd754064df9341998b48b2458482299ae4648ec314279", @ANYRES32=r7, @ANYRESOCT=r1], 0x90}}, 0x0)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r3, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000001040)=ANY=[@ANYRES32=r2, @ANYRES16=0x0, @ANYRES16=r2, @ANYRES32=r8, @ANYBLOB="e2a34611cd04f60c486edefae346930ccb4d73b730d54f5aa9aa24e32efd3988ecc9eadc3f77411c72"], &(0x7f0000000880)='GPL\x00', 0x0, 0x51, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r9}, 0x18)
r10 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844)
fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000040), 0x0, 0x0, 0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
ioctl$FS_IOC_SETFLAGS(r11, 0x40086602, &(0x7f00000001c0)=0x10)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x2)
fremovexattr(r2, &(0x7f00000000c0)=@known='trusted.overlay.metacopy\x00')

1.133826858s ago: executing program 3 (id=5268):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r3}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x870bd2d, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x167, 0x7, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x6}}}}]}]}, 0x70}}, 0x20040000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001140)=ANY=[@ANYRESHEX=r0, @ANYRES8, @ANYRES16=r0, @ANYRES32=r5, @ANYBLOB="1c2e4b48d07b7af46bfba4ce82342bc3c9de15b891b9ecfdf17b11445f135b4292557122688a55d842bf21ec0d29807b4747bcacace33b623cc359ce2efbf9223ca4561c73fdd7d6d9c541afd754064df9341998b48b2458482299ae4648ec314279", @ANYRES32=r6, @ANYRESOCT], 0x90}}, 0x0)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000001040)=ANY=[@ANYRES32=r1, @ANYRES16=0x0, @ANYRES16=r1, @ANYRES32=r7, @ANYBLOB="e2a34611cd04f60c486edefae346930ccb4d73b730d54f5aa9aa24e32efd3988ecc9eadc3f77411c"], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r8}, 0x18)
r9 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844)
fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000040), 0x0, 0x0, 0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
ioctl$FS_IOC_SETFLAGS(r10, 0x40086602, &(0x7f00000001c0)=0x10)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x2)
fremovexattr(r1, &(0x7f00000000c0)=@known='trusted.overlay.metacopy\x00')

1.05648419s ago: executing program 0 (id=5269):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x18, r0, 0x3141e0b2751b0f9b, 0x70bd2a, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x60c5}, 0x80)

1.055464619s ago: executing program 4 (id=5270):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x20, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x9, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$xdp(0x2c, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x18)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0xfffffffffffffffd], 0x0, 0x4, 0x1}}, 0x40)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000280), 0x802, 0x0)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d000000140000001100"], 0xa8}}, 0x0)

1.020970321s ago: executing program 0 (id=5271):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x97}]}, &(0x7f0000000200)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x43, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000080)="b9ff033168440392b89e14f00800", 0x0, 0x9, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) (fail_nth: 2)

960.348642ms ago: executing program 4 (id=5272):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000040)=0x8, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x5e21, @local}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e24, @local}, 0x10)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r3, 0x1, 0xf, &(0x7f0000000040)=0x8, 0x4)
bind$inet(r3, &(0x7f0000000280)={0x2, 0x5e21, @local}, 0x10)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e24, @local}, 0x10)
close_range(r2, 0xffffffffffffffff, 0x0)

774.852405ms ago: executing program 0 (id=5273):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x20, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x9, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$xdp(0x2c, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(0xffffffffffffffff)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={0xffffffffffffffff, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0xfffffffffffffffd], 0x0, 0x4, 0x1}}, 0x40)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000280), 0x802, 0x0)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001", @ANYRES16=r1], 0x7c}, 0x1, 0x0, 0x0, 0x4010}, 0x4000004)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d000000140000001100"], 0xa8}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x2710}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000002180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8923, &(0x7f0000000140)={'wg2\x00', @local})

767.317885ms ago: executing program 4 (id=5274):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000f"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00'}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
pwrite64(r1, &(0x7f0000000140)='2', 0xfcd1, 0xfecc)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r4, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01dfffffff9a26000000210000000c00018008000100", @ANYRES32=r3], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wg2\x00'})
r6 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x6, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13580}, &(0x7f0000000100), &(0x7f0000000380))
io_uring_enter(r7, 0x6b4d, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xfff3}}}, 0x24}}, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000300)={'wg0\x00', <r9=>0x0})
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000a00)=@security={'security\x00', 0xe, 0x4, 0x470, 0xffffffff, 0x138, 0x0, 0x2d0, 0xffffffff, 0xffffffff, 0x3a0, 0x3a0, 0x3a0, 0xffffffff, 0x4, &(0x7f0000000080), {[{{@uncond, 0x0, 0xf8, 0x138, 0x0, {}, [@common=@hl={{0x28}, {0x3, 0x2}}, @common=@eui64={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x6, {0x3}}}}, {{@ipv6={@mcast2, @local, [0xff, 0xff000000, 0xff000000, 0xffffffff], [0xffffffff, 0xff000000, 0x0, 0xffffff00], 'syz_tun\x00', 'rose0\x00', {0xff}, {}, 0x21, 0xb, 0x5, 0x2}, 0x0, 0x138, 0x198, 0x0, {}, [@common=@srh1={{0x90}, {0x2c, 0x60, 0xe1, 0x1, 0xff, @mcast2, @private1={0xfc, 0x1, '\x00', 0x1}, @private0, [0x0, 0xff, 0x0, 0xffffff], [0xff, 0xffffff00, 0xff], [0xff000000, 0x0, 0xff000000, 0xffffffff], 0x1000, 0x2c42}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast2, [0xff, 0xff000000, 0x0, 0xffffff00], 0x4e22, 0x4e22, 0x4e20, 0x4e21, 0x4, 0x100, 0x1000, 0x7bd0, 0x40}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4d0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
sendto$packet(r8, &(0x7f0000000180)="0b03feff4f00021202004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r9}, 0x14)

660.976627ms ago: executing program 1 (id=5276):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r2 = gettid()
timer_create(0x9, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
ptrace$setregs(0xd, r2, 0xfff, &(0x7f0000000040)="2d2386c6f05291942c49576d73eaccfab03adea489142d60854b228aefd12e27a7583b472a375a36269662")
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x18)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
mq_open(0x0, 0x40, 0x70, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r5, 0x0, 0xa55c}, 0x18)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a030000000000000000000002"], 0x0, 0x56}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x1a, 0x4, 0x0, 0x1, 0x8000, 0x1, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0, @value=r6}, 0x50)
syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000340), 0x1, 0x512, &(0x7f0000000a40)="$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")
ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000000)={0x0, 0x8001, [0x10001, 0x8, 0x8, 0x8e, 0xffffffff80000000, 0x2]})

507.322221ms ago: executing program 1 (id=5277):
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x8dd, &(0x7f0000000440)={0x0, 0x1b7, 0x400, 0x8, 0x20000fe}, &(0x7f00000000c0), &(0x7f0000000040))
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)
r1 = io_uring_setup(0x423d, &(0x7f00000000c0)={0x0, 0x6087, 0x1040, 0x3, 0x161})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r1, 0xb, &(0x7f00000004c0)=[@ioring_restriction_register_op={0x0, 0x13}], 0x1)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r1, 0xc, 0x0, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r1, 0x13, 0x0, 0x2)
mmap$IORING_OFF_SQES(&(0x7f00008af000/0x4000)=nil, 0x4000, 0x1000003, 0x2010, r0, 0x10000000)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0xfff9}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r5=>r4, {0x5}}, './file0\x00'})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000200)={'syztnl2\x00', &(0x7f0000000180)={'syztnl2\x00', <r6=>0x0, 0x29, 0x0, 0x5, 0xffffff80, 0x4, @remote, @empty, 0x7, 0x20, 0x0, 0xfffffc00}})
ioctl$sock_inet6_SIOCDELRT(r5, 0x890c, &(0x7f0000000240)={@remote, @empty, @mcast2, 0x80000001, 0x58f, 0x5, 0x600, 0x1, 0x210040, r6})
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r7 = creat(&(0x7f00000000c0)='./file0\x00', 0xf4)
r8 = dup2(r7, r7)
ioctl$BLKTRACESETUP(r8, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x200000a, 0x1, 0x8})
setsockopt$inet6_mreq(r5, 0x29, 0x15, &(0x7f0000000340)={@mcast1, r6}, 0x14)
ioctl$BLKTRACESETUP(r8, 0x1276, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r9, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)

480.022961ms ago: executing program 4 (id=5278):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
close_range(r2, 0xffffffffffffffff, 0x0)

461.339582ms ago: executing program 4 (id=5279):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000850000005000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
set_robust_list(&(0x7f0000000400)={0x0, 0x6}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
r2 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000100)=@qipcrtr={0x2a, 0x4, 0x1}, 0x80, &(0x7f0000000500)=[{&(0x7f00000006c0)="2703a2fd160014000000002f1eafacf706e105400000894f00050005ee0b80558ddbba9b37242d37a518fc9c5be50eaf07c3650596", 0xfdac}], 0x1}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89n\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zp\xadbdY\xdcz\xc6lo\xd0\xc7\'CT')
r3 = socket$rds(0x15, 0x5, 0x0)
sendmsg$rds(r3, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}], 0x48}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$lock(r4, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r4, 0x26, &(0x7f00000031c0)={0x1})
fcntl$lock(r4, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x3})
fcntl$lock(r4, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x7fffffff, 0xffffffffffffffff})

428.907232ms ago: executing program 0 (id=5280):
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0)
writev(r0, &(0x7f0000000380)=[{&(0x7f0000000180)='T', 0x1}], 0x1)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x80000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r3}, 0x10)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
mount$9p_rdma(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0), 0x200004, &(0x7f00000003c0)={'trans=rdma,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@timeout={'timeout', 0x3d, 0x81}}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'multiq\x00'}}, {@audit}, {@fsuuid={'fsuuid', 0x3d, {[0x65, 0x36, 0x36, 0x34, 0x35, 0x61, 0x66, 0x32], 0x2d, [0x66, 0x6c, 0x30, 0x65], 0x2d, [0x63, 0xa, 0x63, 0x38], 0x2d, [0x54, 0x31, 0x64, 0x39], 0x2d, [0x65, 0x65, 0x62, 0x35, 0x33, 0x5a, 0x64, 0x31]}}}, {@dont_measure}, {@permit_directio}, {@subj_type={'subj_type', 0x3d, 'GPL\x00'}}]}})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0xa2}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x22e, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x50, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r6, {0x0, 0xf}, {}, {0x7, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x20, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8035}, @TCA_FLOWER_KEY_IPV6_DST={0x14, 0x10, @dev={0xfe, 0x80, '\x00', 0x2c}}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x24000014}, 0x20084084)
mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x8)
ioctl$SNAPSHOT_FREE(r0, 0x3305)

416.786192ms ago: executing program 2 (id=5281):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0xffffffff, 0xfd}, 0x0, 0x0, 0x800000, 0x6, 0x2, 0xcb, 0xffff, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xfff7ffffffffffff, 0xffffffffffffffff, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x50)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000580)={'veth1_to_bond\x00', <r6=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r1, r6, 0x25, 0x4}, 0x14)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
close_range(r0, 0xffffffffffffffff, 0x0)

368.911573ms ago: executing program 1 (id=5282):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000600)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000002"], 0x110)
setsockopt$inet_group_source_req(r0, 0x0, 0x2c, &(0x7f00000006c0)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @empty}}}, 0x108)
setsockopt$inet_group_source_req(r0, 0x0, 0x2c, &(0x7f00000004c0)={0x2, {{0x2, 0x3, @multicast2}}, {{0x2, 0x4e21, @private=0xfffffffd}}}, 0x108)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000600)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})

327.858514ms ago: executing program 2 (id=5283):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYRES8=r0], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000080)=0x4748, 0x4)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
r4 = openat$selinux_status(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r5 = socket(0x11, 0x800000003, 0x0)
r6 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)={'team0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000d40)=@newqdisc={0x88, 0x24, 0xf0b, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x22, [0xf, 0x2, 0x1, 0x0, 0xa, 0x0, 0xd, 0x3, 0xfd, 0xa, 0x0, 0x80, 0x0, 0x0, 0xfc, 0x2], 0x0, [0x1, 0x2, 0x0, 0x0, 0x0, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x400, 0x8, 0x0, 0x1000], [0x0, 0x7, 0x0, 0x7, 0x0, 0x10]}}}}]}, 0x88}}, 0x40004)
r8 = pidfd_getfd(0xffffffffffffffff, r2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000100010000000000", @ANYRES32=r4, @ANYBLOB="0200"/20, @ANYRES32=r7, @ANYRES32=r8, @ANYBLOB="000000000100000002000000000000630700"/28], 0x50)
setsockopt$inet_int(r3, 0x0, 0x14, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000002c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=""/21, 0x15}, 0x5}], 0x1, 0x45833af92e4bbbfe, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={<r9=>0xffffffffffffffff}, 0x111, 0x4}}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
mkdir(0x0, 0xbe9bac6d2d0f4e0b)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000280)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21, 0x802, @empty, 0xc}, {0xa, 0x4e20, 0x41ff, @dev={0xfe, 0x80, '\x00', 0x1d}, 0xca9a}, r9, 0x9}}, 0x48)
openat2(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x0, 0x0)
listen(0xffffffffffffffff, 0x6)
unshare(0x6a040000)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x80)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

302.636005ms ago: executing program 1 (id=5284):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000040)=0x8, 0x4)
bind$inet(r2, &(0x7f0000000280)={0x2, 0x5e21, @local}, 0x10)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x4e24, @local}, 0x10)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r3, 0x1, 0xf, &(0x7f0000000040)=0x8, 0x4)
bind$inet(r3, &(0x7f0000000280)={0x2, 0x5e21, @local}, 0x10)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e24, @local}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

277.502075ms ago: executing program 1 (id=5285):
r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x3c, r0, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x240080b0)

277.117235ms ago: executing program 3 (id=5286):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000540)='kfree\x00', r1}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={r1, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x2, 0x8, &(0x7f0000000340)=[0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xf6, &(0x7f00000003c0)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000400), &(0x7f00000004c0), 0x8, 0xe5, 0x8, 0x8, &(0x7f0000000500)}}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
fadvise64(r3, 0x7f, 0x1000000, 0x4)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000c00)=@bpf_lsm={0x1d, 0x13, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@cb_func={0x18, 0x5, 0x4, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x47}, @func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000280)='syzkaller\x00', 0x81, 0x4, &(0x7f00000002c0)=""/4, 0x0, 0x0, '\x00', r2, 0x1b, r3, 0x8, &(0x7f00000006c0)={0x8, 0x2}, 0x8, 0x10, &(0x7f0000000700)={0x3, 0x0, 0x6, 0x5}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000bc0)=[{0x4, 0x4, 0x5, 0xa}], 0x10, 0xa}, 0x94)

208.433106ms ago: executing program 3 (id=5287):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757815"], 0x65)

208.167526ms ago: executing program 1 (id=5288):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)=ANY=[@ANYBLOB="bc010000190001000000000001000000fe880000000000000000000000000101ac1414bb0000000000000000000000000000000000000000020000000000000088252d56795202c7ad83d635694c7b4765343e4ec40bf5ae604fd2c26991d35c540f3831fc", @ANYRES8, @ANYRES32, @ANYRES8=r0], 0x1bc}, 0x1, 0x0, 0x0, 0x4008091}, 0x40080)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000400)=ANY=[@ANYRES16=r0, @ANYRES16=r0, @ANYRESOCT=r2], &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x64, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
syz_genetlink_get_family_id$fou(&(0x7f00000000c0), r1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./bus\x00', 0x4040, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='rpcgss_update_slack\x00', r3, 0x0, 0x17fbfe15}, 0x18)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x20)
write(r6, &(0x7f0000004200)='t', 0x1)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
sendfile(r6, r5, 0x0, 0x3ffff)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000cc0)=@newtaction={0x14, 0x30, 0x10, 0x0, 0x0, {0x0, 0x0, 0x1be}}, 0x14}}, 0x0)
sendfile(r6, r5, 0x0, 0x7ffff000)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
r9 = socket$rds(0x15, 0x5, 0x0)
sendmsg$rds(r9, &(0x7f0000001d00)={&(0x7f00000017c0)={0x2, 0x0, @empty}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_args={0x48, 0x114, 0x1, {{0x0, 0x3}, {&(0x7f00000001c0)=""/117, 0x75}, &(0x7f0000001b40)=[{&(0x7f0000000140)=""/86, 0x56}], 0x1}}], 0xff85, 0x80}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r8, 0x0, 0x2}, 0x18)
r10 = syz_io_uring_setup(0x88f, &(0x7f0000000200)={0x0, 0xaee2, 0x80, 0x3, 0x1f9}, &(0x7f0000000000), &(0x7f0000000300))
io_uring_register$IORING_REGISTER_RESTRICTIONS(r10, 0xb, &(0x7f0000000040)=[@ioring_restriction_sqe_op={0x1, 0x1d}, @ioring_restriction_sqe_flags_required={0x3, 0x15}, @ioring_restriction_sqe_flags_allowed={0x2, 0x1b}, @ioring_restriction_sqe_flags_required={0x3, 0x8}], 0x100000000000025a)
r11 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/sync_on_suspend', 0x1a1042, 0x28f)
write$tcp_mem(r11, &(0x7f0000000280)={0x800800008000000e, 0x2d, 0x2, 0x3a, 0x2000000005, 0x2c}, 0x48)
io_uring_register$IORING_REGISTER_PROBE(r10, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, '\x00', [{}, {}]}, 0x2)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x1)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000600)='./file0\x00', 0x2144840, 0x0, 0x3, 0x0, &(0x7f0000000100))
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

174.516207ms ago: executing program 3 (id=5289):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
close_range(r2, 0xffffffffffffffff, 0x0)

116.640708ms ago: executing program 3 (id=5290):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x20, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x9, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$xdp(0x2c, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(0xffffffffffffffff)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0xfffffffffffffffd], 0x0, 0x4, 0x1}}, 0x40)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000280), 0x802, 0x0)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001", @ANYRES16=r1], 0x7c}, 0x1, 0x0, 0x0, 0x4010}, 0x4000004)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d000000140000001100"], 0xa8}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x2710}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000002180)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8923, &(0x7f0000000140)={'wg2\x00', @local})

101.525828ms ago: executing program 2 (id=5291):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r4}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x870bd2d, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x167, 0x7, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x6}}}}]}]}, 0x70}}, 0x20040000)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001140)=ANY=[@ANYRESHEX=r0, @ANYRES8, @ANYRES16=r0, @ANYRES32=r6, @ANYBLOB="1c2e4b48d07b7af46bfba4ce82342bc3c9de15b891b9ecfdf17b11445f135b4292557122688a55d842bf21ec0d29807b4747bcacace33b623cc359ce2efbf9223ca4561c73fdd7d6d9c541afd754064df9341998b48b2458482299ae4648ec314279", @ANYRES32=r7, @ANYRESOCT=r1], 0x90}}, 0x0)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r3, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000001040)=ANY=[@ANYRES32=r2, @ANYRES16=0x0, @ANYRES16=r2, @ANYRES32=r8, @ANYBLOB="e2a34611cd04f60c486edefae346930ccb4d73b730d54f5aa9aa24e32efd3988ecc9eadc3f77411c72"], &(0x7f0000000880)='GPL\x00', 0x0, 0x51, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r9}, 0x18)
r10 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844)
fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000040), 0x0, 0x0, 0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
ioctl$FS_IOC_SETFLAGS(r11, 0x40086602, &(0x7f00000001c0)=0x10)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x2)
fremovexattr(r2, &(0x7f00000000c0)=@known='trusted.overlay.metacopy\x00')

0s ago: executing program 3 (id=5292):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async, rerun: 64)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0x0, 0x40, &(0x7f0000000000)={0x4b5a9da54893e123, 0x14, 0x8, 0x2}, 0x8, 0x7, 0x200, 0x0, 0x0, 0x0, 0x0}) (async, rerun: 64)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0) (async)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
mremap(&(0x7f0000a94000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000259000/0x4000)=nil) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="070000000400000008000000d90000000021083460000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120f00cc32be6cdc176bda0b7a89d25b6e63418ba37ee2b452b136ec9f900f760e86eac7257138f158540a8c4bf6907541893ab04ee3271b2a66962c22f6590c63a152d653ab188660f4c841be47e79c7eab62ce76d8d57625c4385478aab4608b4d2dee873117a186d688be3c49a69f6b39d123f80bf7ef7b8e5c9f8b4fbb869926cdbd", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2, 0x0, 0xfffffffffffffffc}, 0x18)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000580)=[@in={0x2, 0x4e21, @local}], 0x10)
sendmsg$inet_sctp(r3, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x2000c015)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000240)={0x0, 0x3}, 0x8) (async)
r4 = dup(r3)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r4, &(0x7f0000000280)={0x16, 0x98, 0xfa00, {0x0, 0x1, 0xffffffffffffffff, 0x10, 0x1, @ib={0x1b, 0x8, 0x5, {"ddab859aac404d9c3808ac78fbcbba24"}, 0x7fff, 0x8, 0x7}}}, 0xa0)
r5 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async, rerun: 64)
r6 = socket(0x10, 0x803, 0x0) (rerun: 64)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x6, 0x40}})
write$selinux_load(r5, &(0x7f0000000280)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757815"], 0x65)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000080)={{0x1}}) (async)
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r0, 0x40045402, 0x0)

kernel console output (not intermixed with test programs):

0
[  302.519633][T15924]  bpf_bprintf_prepare+0x88f/0xd90
[  302.519672][T15924]  ? selinux_file_open+0x2df/0x330
[  302.519714][T15924]  ? bpf_prog_875c16cd5bffa0dc+0x32/0x32
[  302.519792][T15924]  ? bpf_trace_run2+0xf5/0x1c0
[  302.519820][T15924]  bpf_trace_printk+0x84/0x1c0
[  302.519892][T15924]  ? bpf_trace_run2+0xf5/0x1c0
[  302.519927][T15924]  bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[  302.519947][T15924]  bpf_trace_run2+0x107/0x1c0
[  302.520061][T15924]  ? down_write+0x36/0x70
[  302.520097][T15924]  ? snd_seq_port_connect+0x251/0x270
[  302.520131][T15924]  ? snd_seq_port_connect+0x251/0x270
[  302.520212][T15924]  kfree+0x27b/0x320
[  302.520243][T15924]  snd_seq_port_connect+0x251/0x270
[  302.520280][T15924]  snd_seq_ioctl_subscribe_port+0x22b/0x3b0
[  302.520322][T15924]  snd_seq_ioctl+0x17d/0x2e0
[  302.520382][T15924]  ? __pfx_snd_seq_ioctl+0x10/0x10
[  302.520464][T15924]  __se_sys_ioctl+0xce/0x140
[  302.520485][T15924]  __x64_sys_ioctl+0x43/0x50
[  302.520503][T15924]  x64_sys_call+0x1816/0x2ff0
[  302.520525][T15924]  do_syscall_64+0xd2/0x200
[  302.520616][T15924]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  302.520641][T15924]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  302.520671][T15924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.520717][T15924] RIP: 0033:0x7faf4610eec9
[  302.520737][T15924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.520762][T15924] RSP: 002b:00007faf44b77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  302.520788][T15924] RAX: ffffffffffffffda RBX: 00007faf46365fa0 RCX: 00007faf4610eec9
[  302.520805][T15924] RDX: 0000200000000300 RSI: 0000000040505330 RDI: 0000000000000003
[  302.520896][T15924] RBP: 00007faf44b77090 R08: 0000000000000000 R09: 0000000000000000
[  302.520930][T15924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  302.520943][T15924] R13: 00007faf46366038 R14: 00007faf46365fa0 R15: 00007ffe22040b48
[  302.520966][T15924]  </TASK>
[  302.922379][T15935] random: crng reseeded on system resumption
[  302.952915][T15937] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  302.960954][T15937] SELinux: failed to load policy
[  302.994835][T15940] Restarting kernel threads ...
[  303.011021][T15940] Done restarting kernel threads.
[  303.017771][T15942] wireguard0: entered promiscuous mode
[  303.023435][T15942] wireguard0: entered allmulticast mode
[  303.040736][T15945] loop3: detected capacity change from 0 to 512
[  303.064836][T15945] EXT4-fs (loop3): too many log groups per flexible block group
[  303.073002][T15945] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  303.091369][T15945] EXT4-fs (loop3): mount failed
[  303.309791][T15962] loop3: detected capacity change from 0 to 512
[  303.316648][T15962] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  303.328273][T15962] EXT4-fs (loop3): 1 truncate cleaned up
[  303.334671][T15962] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  303.348234][T15962] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  303.383236][T15971] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  303.391257][T15971] SELinux: failed to load policy
[  303.488617][T15982] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  303.608799][T15991] loop3: detected capacity change from 0 to 512
[  303.630911][T15993] ieee802154 phy1 wpan1: encryption failed: -22
[  303.648614][T15991] EXT4-fs (loop3): too many log groups per flexible block group
[  303.656423][T15991] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  303.663395][T15991] EXT4-fs (loop3): mount failed
[  303.749743][T15999] loop3: detected capacity change from 0 to 512
[  303.759228][T15999] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  303.771124][T15999] EXT4-fs (loop3): 1 truncate cleaned up
[  303.777448][T15999] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  303.791946][T15999] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  303.827975][T16003] loop1: detected capacity change from 0 to 164
[  303.837971][T16003] bio_check_eod: 218 callbacks suppressed
[  303.837991][T16003] syz.1.4395: attempt to access beyond end of device
[  303.837991][T16003] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  303.857977][T16003] syz.1.4395: attempt to access beyond end of device
[  303.857977][T16003] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  303.963502][T16014] ieee802154 phy1 wpan1: encryption failed: -22
[  303.976142][T16014] loop1: detected capacity change from 0 to 512
[  303.988895][T16014] EXT4-fs warning (device loop1): ext4_xattr_inode_get:542: inode #11: comm syz.1.4400: ea_inode file size=0 entry size=6
[  304.002756][T16014] EXT4-fs (loop1): 1 orphan inode deleted
[  304.009184][T16014] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  304.111972][T16018] __nla_validate_parse: 3 callbacks suppressed
[  304.112012][T16018] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4401'.
[  304.130681][T16025] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4403'.
[  304.158460][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.179398][T16029] loop3: detected capacity change from 0 to 512
[  304.187089][T16029] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  304.197878][T16027] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  304.206156][T16027] SELinux: failed to load policy
[  304.220258][T16029] EXT4-fs (loop3): 1 truncate cleaned up
[  304.241362][T16029] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  304.255267][T16034] loop1: detected capacity change from 0 to 164
[  304.260828][T16036] random: crng reseeded on system resumption
[  304.270544][T16029] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.336498][T16041] ªªªªªªÿÿòÿÿÿòÿÿ: renamed from wg2
[  304.348264][T16044] loop3: detected capacity change from 0 to 512
[  304.355084][T16044] EXT4-fs: Ignoring removed bh option
[  304.364249][T16044] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  304.377495][T16044] ext4 filesystem being mounted at /245/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  304.441850][T16036] Restarting kernel threads ...
[  304.449976][T16036] Done restarting kernel threads.
[  304.487826][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.514531][T16057] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4416'.
[  304.524016][T16058] FAULT_INJECTION: forcing a failure.
[  304.524016][T16058] name failslab, interval 1, probability 0, space 0, times 0
[  304.536953][T16058] CPU: 0 UID: 0 PID: 16058 Comm: syz.2.4417 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  304.536996][T16058] Tainted: [W]=WARN
[  304.537005][T16058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  304.537020][T16058] Call Trace:
[  304.537027][T16058]  <TASK>
[  304.537037][T16058]  __dump_stack+0x1d/0x30
[  304.537071][T16058]  dump_stack_lvl+0xe8/0x140
[  304.537141][T16058]  dump_stack+0x15/0x1b
[  304.537164][T16058]  should_fail_ex+0x265/0x280
[  304.537196][T16058]  ? sctp_add_bind_addr+0x71/0x1e0
[  304.537231][T16058]  should_failslab+0x8c/0xb0
[  304.537318][T16058]  __kmalloc_cache_noprof+0x4c/0x320
[  304.537361][T16058]  sctp_add_bind_addr+0x71/0x1e0
[  304.537409][T16058]  sctp_copy_local_addr_list+0x199/0x220
[  304.537453][T16058]  sctp_copy_one_addr+0x7f/0x280
[  304.537499][T16058]  sctp_bind_addr_copy+0x79/0x290
[  304.537539][T16058]  sctp_assoc_set_bind_addr_from_ep+0xce/0xe0
[  304.537594][T16058]  sctp_connect_new_asoc+0x1c3/0x3a0
[  304.537645][T16058]  sctp_sendmsg+0xf10/0x18d0
[  304.537725][T16058]  ? selinux_socket_sendmsg+0x111/0x1b0
[  304.537771][T16058]  ? __pfx_sctp_sendmsg+0x10/0x10
[  304.537815][T16058]  inet_sendmsg+0xc2/0xd0
[  304.537847][T16058]  __sock_sendmsg+0x102/0x180
[  304.537951][T16058]  ____sys_sendmsg+0x345/0x4e0
[  304.538032][T16058]  ___sys_sendmsg+0x17b/0x1d0
[  304.538084][T16058]  __sys_sendmmsg+0x178/0x300
[  304.538132][T16058]  __x64_sys_sendmmsg+0x57/0x70
[  304.538242][T16058]  x64_sys_call+0x1c4a/0x2ff0
[  304.538271][T16058]  do_syscall_64+0xd2/0x200
[  304.538312][T16058]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  304.538352][T16058]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  304.538388][T16058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.538490][T16058] RIP: 0033:0x7fd45927eec9
[  304.538509][T16058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.538528][T16058] RSP: 002b:00007fd457ce7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  304.538547][T16058] RAX: ffffffffffffffda RBX: 00007fd4594d5fa0 RCX: 00007fd45927eec9
[  304.538567][T16058] RDX: 0000000000000002 RSI: 0000200000000880 RDI: 0000000000000006
[  304.538583][T16058] RBP: 00007fd457ce7090 R08: 0000000000000000 R09: 0000000000000000
[  304.538600][T16058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.538617][T16058] R13: 00007fd4594d6038 R14: 00007fd4594d5fa0 R15: 00007ffd092bbc88
[  304.538642][T16058]  </TASK>
[  304.792678][T16062] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  304.800844][T16062] SELinux: failed to load policy
[  304.950285][T16076] loop3: detected capacity change from 0 to 128
[  305.036327][T16084] random: crng reseeded on system resumption
[  305.111362][   T29] kauditd_printk_skb: 511 callbacks suppressed
[  305.111384][   T29] audit: type=1326 audit(2000000194.700:14353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16083 comm="syz.0.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  305.155136][   T29] audit: type=1326 audit(2000000194.710:14354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16083 comm="syz.0.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  305.188705][ T3726] kworker/u8:59: attempt to access beyond end of device
[  305.188705][ T3726] loop3: rw=1, sector=145, nr_sectors = 16 limit=128
[  305.213593][ T3726] kworker/u8:59: attempt to access beyond end of device
[  305.213593][ T3726] loop3: rw=1, sector=169, nr_sectors = 8 limit=128
[  305.237546][   T29] audit: type=1326 audit(2000000194.770:14355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16083 comm="syz.0.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  305.262029][   T29] audit: type=1326 audit(2000000194.770:14356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16083 comm="syz.0.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  305.286011][   T29] audit: type=1326 audit(2000000194.800:14357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16083 comm="syz.0.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  305.309888][   T29] audit: type=1326 audit(2000000194.800:14358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16083 comm="syz.0.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  305.313113][ T3726] kworker/u8:59: attempt to access beyond end of device
[  305.313113][ T3726] loop3: rw=1, sector=185, nr_sectors = 8 limit=128
[  305.333869][   T29] audit: type=1326 audit(2000000194.800:14359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16083 comm="syz.0.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  305.370911][   T29] audit: type=1326 audit(2000000194.800:14360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16083 comm="syz.0.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  305.374012][T16098] Restarting kernel threads ...
[  305.395090][   T29] audit: type=1326 audit(2000000194.820:14361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16083 comm="syz.0.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  305.395131][   T29] audit: type=1326 audit(2000000194.820:14362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16083 comm="syz.0.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  305.436296][ T3726] kworker/u8:59: attempt to access beyond end of device
[  305.436296][ T3726] loop3: rw=1, sector=201, nr_sectors = 8 limit=128
[  305.462360][T16098] Done restarting kernel threads.
[  305.467700][ T3726] kworker/u8:59: attempt to access beyond end of device
[  305.467700][ T3726] loop3: rw=1, sector=217, nr_sectors = 8 limit=128
[  305.484276][ T3726] kworker/u8:59: attempt to access beyond end of device
[  305.484276][ T3726] loop3: rw=1, sector=233, nr_sectors = 8 limit=128
[  305.498781][ T3726] kworker/u8:59: attempt to access beyond end of device
[  305.498781][ T3726] loop3: rw=1, sector=249, nr_sectors = 8 limit=128
[  305.513287][ T3726] kworker/u8:59: attempt to access beyond end of device
[  305.513287][ T3726] loop3: rw=1, sector=265, nr_sectors = 8 limit=128
[  305.527758][T16094] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4431'.
[  305.635519][T16110] loop3: detected capacity change from 0 to 512
[  305.637436][T16109] loop1: detected capacity change from 0 to 164
[  305.642286][T16110] EXT4-fs: Ignoring removed bh option
[  305.732355][T16110] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  305.750562][T16116] loop4: detected capacity change from 0 to 1024
[  305.760442][T16110] ext4 filesystem being mounted at /251/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  305.783296][T16116] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  305.798603][T16116] ext4 filesystem being mounted at /233/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  305.833314][T16116] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 1: comm syz.4.4440: lblock 1 mapped to illegal pblock 1 (length 15)
[  305.857793][T16116] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  305.870485][T16116] EXT4-fs (loop4): This should not happen!! Data will be lost
[  305.870485][T16116] 
[  305.898861][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.954327][T16127] netlink: 'syz.0.4439': attribute type 10 has an invalid length.
[  306.006907][T16128] netlink: 'syz.0.4439': attribute type 10 has an invalid length.
[  306.025334][T16127] bond0: (slave dummy0): Releasing backup interface
[  306.034322][T16127] team0: Port device dummy0 added
[  306.041923][T16128] team0: Port device dummy0 removed
[  306.049287][T16128] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  306.157190][T16130] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4444'.
[  306.233649][T16132] loop1: detected capacity change from 0 to 1024
[  306.295683][T16132] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  306.310756][T16132] ext4 filesystem being mounted at /343/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  306.337110][T16132] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 1: comm syz.1.4445: lblock 1 mapped to illegal pblock 1 (length 15)
[  306.354396][T16132] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  306.366826][T16132] EXT4-fs (loop1): This should not happen!! Data will be lost
[  306.366826][T16132] 
[  306.399811][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.410472][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.427553][T16136] random: crng reseeded on system resumption
[  306.501424][T16145] Restarting kernel threads ...
[  306.506804][T16145] Done restarting kernel threads.
[  306.512366][T16140] loop4: detected capacity change from 0 to 512
[  306.529903][T16140] EXT4-fs: Ignoring removed bh option
[  306.568043][T16140] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  306.581124][T16140] ext4 filesystem being mounted at /234/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  306.634951][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.637212][T16153] ieee802154 phy1 wpan1: encryption failed: -22
[  306.831765][T16167] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4454'.
[  306.860136][T16169] loop1: detected capacity change from 0 to 128
[  307.017418][T16177] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  307.053169][T16177] SELinux: failed to load policy
[  307.174661][T16196] loop4: detected capacity change from 0 to 164
[  307.232411][T16199] SELinux: failed to load policy
[  307.252901][T16199] loop4: detected capacity change from 0 to 512
[  307.260182][T16199] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  307.324260][T16199] EXT4-fs (loop4): 1 truncate cleaned up
[  307.442843][T16215] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  307.471347][T16215] SELinux: failed to load policy
[  307.596893][T16226] FAULT_INJECTION: forcing a failure.
[  307.596893][T16226] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  307.610197][T16226] CPU: 0 UID: 0 PID: 16226 Comm: syz.3.4477 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  307.610317][T16226] Tainted: [W]=WARN
[  307.610325][T16226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  307.610338][T16226] Call Trace:
[  307.610347][T16226]  <TASK>
[  307.610357][T16226]  __dump_stack+0x1d/0x30
[  307.610386][T16226]  dump_stack_lvl+0xe8/0x140
[  307.610424][T16226]  dump_stack+0x15/0x1b
[  307.610447][T16226]  should_fail_ex+0x265/0x280
[  307.610480][T16226]  should_fail+0xb/0x20
[  307.610538][T16226]  should_fail_usercopy+0x1a/0x20
[  307.610572][T16226]  _copy_from_user+0x1c/0xb0
[  307.610687][T16226]  __copy_msghdr+0x244/0x300
[  307.610719][T16226]  ___sys_sendmsg+0x109/0x1d0
[  307.610772][T16226]  __x64_sys_sendmsg+0xd4/0x160
[  307.610813][T16226]  x64_sys_call+0x191e/0x2ff0
[  307.610843][T16226]  do_syscall_64+0xd2/0x200
[  307.610919][T16226]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  307.610953][T16226]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  307.610991][T16226]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.611086][T16226] RIP: 0033:0x7fcb628beec9
[  307.611107][T16226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  307.611128][T16226] RSP: 002b:00007fcb61327038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  307.611149][T16226] RAX: ffffffffffffffda RBX: 00007fcb62b15fa0 RCX: 00007fcb628beec9
[  307.611162][T16226] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000006
[  307.611175][T16226] RBP: 00007fcb61327090 R08: 0000000000000000 R09: 0000000000000000
[  307.611256][T16226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  307.611278][T16226] R13: 00007fcb62b16038 R14: 00007fcb62b15fa0 R15: 00007ffec5843b68
[  307.611306][T16226]  </TASK>
[  307.856208][T16227] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4472'.
[  307.942291][T16229] loop3: detected capacity change from 0 to 512
[  307.950993][T16229] EXT4-fs: Ignoring removed bh option
[  307.963001][T16229] ext4 filesystem being mounted at /257/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  308.313500][T16255] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4486'.
[  308.596608][T16259] loop3: detected capacity change from 0 to 164
[  308.767180][T16247] netlink: 'syz.2.4485': attribute type 10 has an invalid length.
[  308.810749][T16247] .`: (slave dummy0): Releasing backup interface
[  308.833193][T16247] team0: Port device dummy0 added
[  308.834344][T16267] netlink: 'syz.2.4485': attribute type 10 has an invalid length.
[  308.889245][T16267] team0: Port device dummy0 removed
[  308.923821][T16267] .`: (slave dummy0): Enslaving as an active interface with an up link
[  309.153863][T16281] loop1: detected capacity change from 0 to 128
[  309.244905][T16284] loop1: detected capacity change from 0 to 1024
[  309.272848][T16284] ext4 filesystem being mounted at /357/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  309.315728][T16284] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 1: comm syz.1.4497: lblock 1 mapped to illegal pblock 1 (length 15)
[  309.369657][T16284] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  309.382474][T16284] EXT4-fs (loop1): This should not happen!! Data will be lost
[  309.382474][T16284] 
[  309.448967][T16291] loop3: detected capacity change from 0 to 8192
[  309.486557][T16291] bio_check_eod: 107 callbacks suppressed
[  309.486576][T16291] syz.3.4499: attempt to access beyond end of device
[  309.486576][T16291] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  309.506729][T16291] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1)
[  309.514640][T16291] FAT-fs (loop3): Filesystem has been set read-only
[  309.533824][T16291] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  309.556594][T16291] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  309.666514][T16301] ªªªªªªÿÿòÿÿÿòÿÿ: renamed from wg2
[  309.755086][T16307] ªªªªªªÿÿòÿÿÿòÿÿ: renamed from wg2
[  310.167676][T16344] loop3: detected capacity change from 0 to 512
[  310.176832][T16344] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  310.189412][T16344] EXT4-fs (loop3): 1 truncate cleaned up
[  310.204590][   T29] kauditd_printk_skb: 632 callbacks suppressed
[  310.204607][   T29] audit: type=1400 audit(2000000199.790:14995): avc:  denied  { execmem } for  pid=16343 comm="syz.3.4517" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  310.305506][T16344] netlink: 'syz.3.4517': attribute type 10 has an invalid length.
[  310.318757][T16344] bond0: (slave dummy0): Releasing backup interface
[  310.327476][T16344] team0: Port device dummy0 added
[  310.334120][T16344] netlink: 'syz.3.4517': attribute type 10 has an invalid length.
[  310.343976][T16344] team0: Port device dummy0 removed
[  310.350928][T16344] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  310.370743][   T29] audit: type=1400 audit(2000000199.850:14996): avc:  denied  { remount } for  pid=16328 comm="syz.2.4514" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  310.390901][   T29] audit: type=1400 audit(2000000199.850:14997): avc:  denied  { create } for  pid=16328 comm="syz.2.4514" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  310.410640][   T29] audit: type=1400 audit(2000000199.860:14998): avc:  denied  { write } for  pid=16328 comm="syz.2.4514" path="socket:[57724]" dev="sockfs" ino=57724 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  310.434184][   T29] audit: type=1400 audit(2000000199.870:14999): avc:  denied  { shutdown } for  pid=16328 comm="syz.2.4514" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  310.497992][   T29] audit: type=1400 audit(2000000200.090:15000): avc:  denied  { sys_module } for  pid=16353 comm="syz.1.4522" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  310.529100][T16354] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4522'.
[  310.554284][   T29] audit: type=1400 audit(2000000200.140:15001): avc:  denied  { mount } for  pid=16357 comm="syz.0.4524" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  310.584171][T16362] loop3: detected capacity change from 0 to 1024
[  310.603762][T16362] ext4 filesystem being mounted at /267/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  310.821115][T16362] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 1: comm syz.3.4523: lblock 1 mapped to illegal pblock 1 (length 15)
[  310.883135][   T29] audit: type=1326 audit(2000000200.480:15002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16361 comm="syz.3.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  310.883840][T16362] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  310.919506][T16362] EXT4-fs (loop3): This should not happen!! Data will be lost
[  310.919506][T16362] 
[  310.948239][   T29] audit: type=1326 audit(2000000200.480:15003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16361 comm="syz.3.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  310.972058][   T29] audit: type=1326 audit(2000000200.480:15004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16361 comm="syz.3.4523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  311.055833][T16377] loop4: detected capacity change from 0 to 8192
[  311.140387][T16386] loop4: detected capacity change from 0 to 1024
[  311.187812][T16386] ext4 filesystem being mounted at /248/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  311.203903][T16386] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 1: comm syz.4.4531: lblock 1 mapped to illegal pblock 1 (length 15)
[  311.220431][T16386] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  311.232978][T16386] EXT4-fs (loop4): This should not happen!! Data will be lost
[  311.232978][T16386] 
[  311.233162][T16397] loop3: detected capacity change from 0 to 512
[  311.250441][T16392] netlink: 'syz.0.4533': attribute type 10 has an invalid length.
[  311.251538][T16397] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  311.266502][T16397] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  311.266879][T16392] bond0: (slave dummy0): Releasing backup interface
[  311.275599][T16397] EXT4-fs (loop3): 1 truncate cleaned up
[  311.290506][T16392] team0: Port device dummy0 added
[  311.297625][T16392] netlink: 'syz.0.4533': attribute type 10 has an invalid length.
[  311.308903][T16392] team0: Port device dummy0 removed
[  311.309444][T16397] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  311.315949][T16392] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  311.495765][T16413] loop4: detected capacity change from 0 to 128
[  311.703119][T16431] loop4: detected capacity change from 0 to 512
[  311.710452][T16431] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  311.729456][T16431] EXT4-fs (loop4): 1 truncate cleaned up
[  311.751581][T16431] EXT4-fs mount: 13 callbacks suppressed
[  311.751667][T16431] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  311.899977][T16431] netlink: 'syz.4.4547': attribute type 10 has an invalid length.
[  311.908876][T16431] bond0: (slave dummy0): Releasing backup interface
[  311.917882][T16431] team0: Port device dummy0 added
[  311.924574][T16431] netlink: 'syz.4.4547': attribute type 10 has an invalid length.
[  311.934174][T16431] team0: Port device dummy0 removed
[  311.941084][T16431] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  311.979379][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.011708][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.231432][T16465] loop3: detected capacity change from 0 to 512
[  312.245853][T16465] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  312.254152][T16465] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  312.264746][T16465] EXT4-fs (loop3): 1 truncate cleaned up
[  312.270880][T16465] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  312.289222][T16465] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  312.394160][T16475] ieee802154 phy1 wpan1: encryption failed: -22
[  312.422798][T16475] loop4: detected capacity change from 0 to 512
[  312.431612][T16475] EXT4-fs warning (device loop4): ext4_xattr_inode_get:542: inode #11: comm syz.4.4563: ea_inode file size=0 entry size=6
[  312.444719][T16475] EXT4-fs (loop4): 1 orphan inode deleted
[  312.450894][T16475] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  312.563137][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.644583][T16487] random: crng reseeded on system resumption
[  312.716092][T16488] Restarting kernel threads ...
[  312.721316][T16488] Done restarting kernel threads.
[  312.869632][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.919815][T16495] loop3: detected capacity change from 0 to 1024
[  312.933914][T16495] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  312.948588][T16495] ext4 filesystem being mounted at /270/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  312.967112][T16495] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 1: comm syz.3.4570: lblock 1 mapped to illegal pblock 1 (length 15)
[  312.993250][T16495] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  313.006024][T16495] EXT4-fs (loop3): This should not happen!! Data will be lost
[  313.006024][T16495] 
[  313.021594][T16507] loop1: detected capacity change from 0 to 164
[  313.052184][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.091985][T16513] FAULT_INJECTION: forcing a failure.
[  313.091985][T16513] name failslab, interval 1, probability 0, space 0, times 0
[  313.105087][T16513] CPU: 1 UID: 0 PID: 16513 Comm: syz.3.4577 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  313.105131][T16513] Tainted: [W]=WARN
[  313.105140][T16513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  313.105156][T16513] Call Trace:
[  313.105164][T16513]  <TASK>
[  313.105172][T16513]  __dump_stack+0x1d/0x30
[  313.105195][T16513]  dump_stack_lvl+0xe8/0x140
[  313.105216][T16513]  dump_stack+0x15/0x1b
[  313.105314][T16513]  should_fail_ex+0x265/0x280
[  313.105340][T16513]  should_failslab+0x8c/0xb0
[  313.105366][T16513]  kmem_cache_alloc_noprof+0x50/0x310
[  313.105397][T16513]  ? audit_log_start+0x365/0x6c0
[  313.105518][T16513]  audit_log_start+0x365/0x6c0
[  313.105549][T16513]  ? __traceiter_kmem_cache_free+0x38/0x60
[  313.105580][T16513]  ? getname_flags+0x2be/0x3b0
[  313.105612][T16513]  audit_seccomp+0x48/0x100
[  313.105715][T16513]  ? __seccomp_filter+0x68c/0x10d0
[  313.105797][T16513]  __seccomp_filter+0x69d/0x10d0
[  313.105822][T16513]  ? __x64_sys_statfs+0x79/0xf0
[  313.105870][T16513]  __secure_computing+0x82/0x150
[  313.106064][T16513]  syscall_trace_enter+0xcf/0x1e0
[  313.106095][T16513]  do_syscall_64+0xac/0x200
[  313.106135][T16513]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  313.106167][T16513]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  313.106201][T16513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.106225][T16513] RIP: 0033:0x7fcb628bd8dc
[  313.106291][T16513] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  313.106316][T16513] RSP: 002b:00007fcb61327030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  313.106339][T16513] RAX: ffffffffffffffda RBX: 00007fcb62b15fa0 RCX: 00007fcb628bd8dc
[  313.106432][T16513] RDX: 000000000000000f RSI: 00007fcb613270a0 RDI: 0000000000000006
[  313.106444][T16513] RBP: 00007fcb61327090 R08: 0000000000000000 R09: 0000000000000000
[  313.106470][T16513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.106483][T16513] R13: 00007fcb62b16038 R14: 00007fcb62b15fa0 R15: 00007ffec5843b68
[  313.106509][T16513]  </TASK>
[  313.127242][T16515] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  313.331553][T16515] SELinux: failed to load policy
[  313.357218][T16524] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  313.372651][T16526] loop1: detected capacity change from 0 to 164
[  313.381200][T16526] syz.1.4584: attempt to access beyond end of device
[  313.381200][T16526] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  313.395359][T16526] syz.1.4584: attempt to access beyond end of device
[  313.395359][T16526] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  313.499047][T16533] loop3: detected capacity change from 0 to 1024
[  313.529337][T16533] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.558004][T16533] ext4 filesystem being mounted at /274/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.588927][T16533] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 1: comm syz.3.4587: lblock 1 mapped to illegal pblock 1 (length 15)
[  313.606066][T16533] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  313.618546][T16533] EXT4-fs (loop3): This should not happen!! Data will be lost
[  313.618546][T16533] 
[  313.653721][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.677170][T16549] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  313.685046][T16549] SELinux: failed to load policy
[  313.755982][T16556] loop3: detected capacity change from 0 to 512
[  313.777291][T16556] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  313.821239][T16556] ext4 filesystem being mounted at /275/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.865659][T16569] random: crng reseeded on system resumption
[  313.865981][T16567] loop4: detected capacity change from 0 to 128
[  313.995489][T16569] Restarting kernel threads ...
[  314.011351][T16569] Done restarting kernel threads.
[  314.226539][T16591] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  314.274749][T16593] team0 (unregistering): Port device team_slave_0 removed
[  314.295163][T16593] team0 (unregistering): Port device team_slave_1 removed
[  314.453220][T16602] loop4: detected capacity change from 0 to 512
[  314.460522][T16602] EXT4-fs: Ignoring removed bh option
[  314.475937][T16602] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  314.489561][T16602] ext4 filesystem being mounted at /280/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  314.533013][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.574859][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.632379][T16628] loop4: detected capacity change from 0 to 512
[  314.654054][T16628] EXT4-fs (loop4): too many log groups per flexible block group
[  314.661934][T16628] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  314.669344][T16628] EXT4-fs (loop4): mount failed
[  314.772024][T16638] loop3: detected capacity change from 0 to 512
[  314.784210][T16638] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  314.792623][T16638] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  314.801458][T16638] EXT4-fs (loop3): 1 truncate cleaned up
[  314.809642][T16638] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  314.827297][T16638] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  314.989717][T16641] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  315.251599][T16647] random: crng reseeded on system resumption
[  315.266874][   T29] kauditd_printk_skb: 490 callbacks suppressed
[  315.266893][   T29] audit: type=1326 audit(2000000204.860:15493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  315.297450][   T29] audit: type=1326 audit(2000000204.860:15494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  315.321419][   T29] audit: type=1326 audit(2000000204.870:15495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  315.345705][   T29] audit: type=1326 audit(2000000204.870:15496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  315.345744][   T29] audit: type=1326 audit(2000000204.880:15497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  315.345781][   T29] audit: type=1326 audit(2000000204.880:15498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  315.418182][   T29] audit: type=1326 audit(2000000204.920:15499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  315.433537][T16647] Restarting kernel threads ...
[  315.441882][   T29] audit: type=1326 audit(2000000204.920:15500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  315.441927][   T29] audit: type=1326 audit(2000000204.930:15501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  315.441966][   T29] audit: type=1326 audit(2000000204.930:15502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  315.524941][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.526913][T16647] Done restarting kernel threads.
[  315.542030][T16650] loop1: detected capacity change from 0 to 512
[  315.564646][T16650] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  315.577669][T16650] ext4 filesystem being mounted at /389/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  315.613708][T16656] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4631'.
[  315.851095][T16662] netlink: 'syz.4.4633': attribute type 10 has an invalid length.
[  315.859531][T16662] team0: Device hsr_slave_0 failed to register rx_handler
[  316.045348][T16671] random: crng reseeded on system resumption
[  316.112354][T16677] Restarting kernel threads ...
[  316.117758][T16677] Done restarting kernel threads.
[  316.338625][T16688] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  316.354880][T16688] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4644'.
[  316.379741][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.526906][T16701] loop1: detected capacity change from 0 to 512
[  316.536562][T16701] EXT4-fs: Ignoring removed bh option
[  316.556066][T16701] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  316.570921][T16701] ext4 filesystem being mounted at /390/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  316.632106][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.662978][T16721] 9pnet: p9_errstr2errno: server reported unknown error 
[  316.713864][T16724] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4659'.
[  316.865449][T16738] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  316.873270][T16738] SELinux: failed to load policy
[  317.061856][T16754] loop1: detected capacity change from 0 to 512
[  317.070458][T16754] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  317.078792][T16754] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[  317.078895][T16753] loop4: detected capacity change from 0 to 1024
[  317.088138][T16754] EXT4-fs (loop1): 1 truncate cleaned up
[  317.099882][T16754] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.104139][T16753] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  317.126550][T16753] ext4 filesystem being mounted at /295/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  317.137826][T16754] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  317.147210][T16753] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 1: comm syz.4.4666: lblock 1 mapped to illegal pblock 1 (length 15)
[  317.161548][T16753] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  317.174139][T16753] EXT4-fs (loop4): This should not happen!! Data will be lost
[  317.174139][T16753] 
[  317.199433][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.240720][T16761] loop4: detected capacity change from 0 to 128
[  317.375724][T16767] pimreg: entered allmulticast mode
[  317.384738][T16767] pimreg: left allmulticast mode
[  317.476025][T16778] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  317.484644][T16778] SELinux: failed to load policy
[  317.535396][T16784] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  317.681832][T16800] pimreg: entered allmulticast mode
[  317.689032][T16800] pimreg: left allmulticast mode
[  317.751617][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.764729][T16806] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  317.773540][T16806] SELinux: failed to load policy
[  317.890155][T16812] ªªªªªªÿÿòÿÿÿòÿÿ: renamed from wg2
[  317.895578][T16819] loop1: detected capacity change from 0 to 512
[  317.903370][T16819] EXT4-fs warning (device loop1): ext4_xattr_inode_get:542: inode #11: comm syz.1.4692: ea_inode file size=0 entry size=6
[  317.921454][T16819] EXT4-fs (loop1): 1 orphan inode deleted
[  317.927978][T16819] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  318.031665][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.056527][T16834] loop1: detected capacity change from 0 to 1024
[  318.081134][T16834] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  318.125700][T16834] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  318.142357][T16834] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[  318.154900][T16834] EXT4-fs (loop1): This should not happen!! Data will be lost
[  318.154900][T16834] 
[  318.164873][T16834] EXT4-fs (loop1): Total free blocks count 0
[  318.170935][T16834] EXT4-fs (loop1): Free/Dirty block details
[  318.177167][T16834] EXT4-fs (loop1): free_blocks=20480
[  318.182518][T16834] EXT4-fs (loop1): dirty_blocks=96
[  318.187721][T16834] EXT4-fs (loop1): Block reservation details
[  318.193826][T16834] EXT4-fs (loop1): i_reserved_data_blocks=6
[  318.215148][ T3711] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  318.265474][T16851] SELinux: failed to load policy
[  318.272062][T16851] FAULT_INJECTION: forcing a failure.
[  318.272062][T16851] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.285412][T16851] CPU: 0 UID: 0 PID: 16851 Comm: syz.0.4704 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  318.285455][T16851] Tainted: [W]=WARN
[  318.285503][T16851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  318.285521][T16851] Call Trace:
[  318.285531][T16851]  <TASK>
[  318.285542][T16851]  __dump_stack+0x1d/0x30
[  318.285569][T16851]  dump_stack_lvl+0xe8/0x140
[  318.285595][T16851]  dump_stack+0x15/0x1b
[  318.285612][T16851]  should_fail_ex+0x265/0x280
[  318.285662][T16851]  should_fail+0xb/0x20
[  318.285689][T16851]  should_fail_usercopy+0x1a/0x20
[  318.285798][T16851]  _copy_to_user+0x20/0xa0
[  318.285906][T16851]  mon_bin_read+0x287/0x470
[  318.285960][T16851]  ? __pfx_mon_bin_read+0x10/0x10
[  318.286043][T16851]  vfs_readv+0x3f8/0x690
[  318.286074][T16851]  ? __pfx_mon_bin_read+0x10/0x10
[  318.286119][T16851]  do_readv+0xe7/0x210
[  318.286169][T16851]  __x64_sys_readv+0x45/0x50
[  318.286197][T16851]  x64_sys_call+0x29f8/0x2ff0
[  318.286219][T16851]  do_syscall_64+0xd2/0x200
[  318.286249][T16851]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  318.286291][T16851]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  318.286329][T16851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.286429][T16851] RIP: 0033:0x7faf7357eec9
[  318.286449][T16851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.286528][T16851] RSP: 002b:00007faf71fe7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  318.286548][T16851] RAX: ffffffffffffffda RBX: 00007faf737d5fa0 RCX: 00007faf7357eec9
[  318.286562][T16851] RDX: 0000000000000002 RSI: 00002000000002c0 RDI: 0000000000000007
[  318.286577][T16851] RBP: 00007faf71fe7090 R08: 0000000000000000 R09: 0000000000000000
[  318.286612][T16851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.286628][T16851] R13: 00007faf737d6038 R14: 00007faf737d5fa0 R15: 00007fffe0617818
[  318.286654][T16851]  </TASK>
[  318.743595][T16883] FAULT_INJECTION: forcing a failure.
[  318.743595][T16883] name failslab, interval 1, probability 0, space 0, times 0
[  318.756549][T16883] CPU: 0 UID: 0 PID: 16883 Comm: syz.2.4716 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  318.756593][T16883] Tainted: [W]=WARN
[  318.756602][T16883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  318.756644][T16883] Call Trace:
[  318.756651][T16883]  <TASK>
[  318.756660][T16883]  __dump_stack+0x1d/0x30
[  318.756693][T16883]  dump_stack_lvl+0xe8/0x140
[  318.756719][T16883]  dump_stack+0x15/0x1b
[  318.756741][T16883]  should_fail_ex+0x265/0x280
[  318.756774][T16883]  should_failslab+0x8c/0xb0
[  318.756882][T16883]  kmem_cache_alloc_noprof+0x50/0x310
[  318.756920][T16883]  ? security_file_alloc+0x32/0x100
[  318.756967][T16883]  security_file_alloc+0x32/0x100
[  318.757062][T16883]  init_file+0x5c/0x1d0
[  318.757099][T16883]  alloc_empty_file+0x8b/0x200
[  318.757216][T16883]  path_openat+0x68/0x2170
[  318.757244][T16883]  ? mntput+0x4b/0x80
[  318.757277][T16883]  ? terminate_walk+0x27f/0x2a0
[  318.757361][T16883]  ? path_openat+0x1bf8/0x2170
[  318.757388][T16883]  ? _parse_integer_limit+0x170/0x190
[  318.757422][T16883]  do_filp_open+0x109/0x230
[  318.757454][T16883]  do_open_execat+0xd8/0x260
[  318.757537][T16883]  alloc_bprm+0x25/0x350
[  318.757566][T16883]  do_execveat_common+0x12e/0x750
[  318.757598][T16883]  ? getname_flags+0x154/0x3b0
[  318.757637][T16883]  __x64_sys_execveat+0x73/0x90
[  318.757745][T16883]  x64_sys_call+0x1fec/0x2ff0
[  318.757772][T16883]  do_syscall_64+0xd2/0x200
[  318.757860][T16883]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  318.757885][T16883]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  318.757923][T16883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.757970][T16883] RIP: 0033:0x7fd45927eec9
[  318.757991][T16883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.758015][T16883] RSP: 002b:00007fd457ce7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  318.758041][T16883] RAX: ffffffffffffffda RBX: 00007fd4594d5fa0 RCX: 00007fd45927eec9
[  318.758054][T16883] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  318.758116][T16883] RBP: 00007fd457ce7090 R08: 0000000000001000 R09: 0000000000000000
[  318.758134][T16883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.758150][T16883] R13: 00007fd4594d6038 R14: 00007fd4594d5fa0 R15: 00007ffd092bbc88
[  318.758171][T16883]  </TASK>
[  319.154925][T16897] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  319.162917][T16897] SELinux: failed to load policy
[  319.350614][T16911] lo speed is unknown, defaulting to 1000
[  319.356733][T16911] lo speed is unknown, defaulting to 1000
[  319.362897][T16911] lo speed is unknown, defaulting to 1000
[  319.369795][T16911] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  319.381401][T16911] lo speed is unknown, defaulting to 1000
[  319.387515][T16911] lo speed is unknown, defaulting to 1000
[  319.393619][T16911] lo speed is unknown, defaulting to 1000
[  319.399955][T16911] lo speed is unknown, defaulting to 1000
[  319.406244][T16911] lo speed is unknown, defaulting to 1000
[  319.412248][T16911] lo speed is unknown, defaulting to 1000
[  319.418554][T16911] lo speed is unknown, defaulting to 1000
[  319.424691][T16911] lo speed is unknown, defaulting to 1000
[  319.744642][T16927] netlink: 348 bytes leftover after parsing attributes in process `syz.3.4732'.
[  319.877068][T16933] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  319.885423][T16933] SELinux: failed to load policy
[  320.099644][T16963] sg_write: data in/out 2204/14 bytes for SCSI command 0x3-- guessing data in;
[  320.099644][T16963]    program syz.1.4746 not setting count and/or reply_len properly
[  320.187715][T16969] netlink: 'syz.1.4750': attribute type 1 has an invalid length.
[  320.230387][T16969] 8021q: adding VLAN 0 to HW filter on device bond2
[  320.324564][   T29] kauditd_printk_skb: 403 callbacks suppressed
[  320.324583][   T29] audit: type=1326 audit(2000000209.920:15906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16948 comm="syz.2.4740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  320.431366][   T29] audit: type=1326 audit(2000000210.010:15907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16990 comm="syz.0.4759" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faf7357eec9 code=0x0
[  320.458041][T16993] loop4: detected capacity change from 0 to 512
[  320.468552][T16995] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4759'.
[  320.477702][T16995] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4759'.
[  320.487880][   T29] audit: type=1400 audit(2000000210.080:15908): avc:  denied  { ioctl } for  pid=16980 comm="syz.1.4755" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  320.516705][T16993] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.529570][T16993] ext4 filesystem being mounted at /319/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  320.557314][   T29] audit: type=1326 audit(2000000210.150:15909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17000 comm="syz.2.4761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  320.581486][   T29] audit: type=1326 audit(2000000210.150:15910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17000 comm="syz.2.4761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  320.605117][   T29] audit: type=1326 audit(2000000210.150:15911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17000 comm="syz.2.4761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  320.628886][   T29] audit: type=1326 audit(2000000210.150:15912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17000 comm="syz.2.4761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  320.652654][   T29] audit: type=1326 audit(2000000210.170:15913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17000 comm="syz.2.4761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd45927eec9 code=0x7ffc0000
[  320.691022][   T29] audit: type=1400 audit(2000000210.280:15914): avc:  denied  { bind } for  pid=17003 comm="syz.2.4762" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  320.749993][T17006] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4763'.
[  320.924172][T17015] loop3: detected capacity change from 0 to 512
[  320.931103][T17015] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  320.942793][T17015] EXT4-fs (loop3): 1 truncate cleaned up
[  320.948866][T17015] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  321.085462][   T29] audit: type=1326 audit(2000000210.680:15915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17018 comm="syz.1.4768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4610eec9 code=0x7ffc0000
[  321.128335][T17017] netlink: 'syz.3.4766': attribute type 10 has an invalid length.
[  321.137514][T17017] bond0: (slave dummy0): Releasing backup interface
[  321.146187][T17017] team0: Port device dummy0 added
[  321.153158][T17017] netlink: 'syz.3.4766': attribute type 10 has an invalid length.
[  321.163135][T17017] team0: Port device dummy0 removed
[  321.170017][T17017] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  321.264413][T17023] FAULT_INJECTION: forcing a failure.
[  321.264413][T17023] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  321.277841][T17023] CPU: 1 UID: 0 PID: 17023 Comm: syz.0.4769 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  321.277884][T17023] Tainted: [W]=WARN
[  321.277894][T17023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  321.277948][T17023] Call Trace:
[  321.277958][T17023]  <TASK>
[  321.277968][T17023]  __dump_stack+0x1d/0x30
[  321.278013][T17023]  dump_stack_lvl+0xe8/0x140
[  321.278033][T17023]  dump_stack+0x15/0x1b
[  321.278052][T17023]  should_fail_ex+0x265/0x280
[  321.278119][T17023]  should_fail+0xb/0x20
[  321.278142][T17023]  should_fail_usercopy+0x1a/0x20
[  321.278240][T17023]  _copy_to_user+0x20/0xa0
[  321.278331][T17023]  simple_read_from_buffer+0xb5/0x130
[  321.278362][T17023]  proc_fail_nth_read+0x10e/0x150
[  321.278392][T17023]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  321.278507][T17023]  vfs_read+0x1a5/0x770
[  321.278540][T17023]  ? __rcu_read_unlock+0x4f/0x70
[  321.278570][T17023]  ? __fget_files+0x184/0x1c0
[  321.278698][T17023]  ksys_read+0xda/0x1a0
[  321.278730][T17023]  __x64_sys_read+0x40/0x50
[  321.278755][T17023]  x64_sys_call+0x27bc/0x2ff0
[  321.278783][T17023]  do_syscall_64+0xd2/0x200
[  321.278872][T17023]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  321.278899][T17023]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  321.278999][T17023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.279029][T17023] RIP: 0033:0x7faf7357d8dc
[  321.279050][T17023] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  321.279071][T17023] RSP: 002b:00007faf71fe7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  321.279091][T17023] RAX: ffffffffffffffda RBX: 00007faf737d5fa0 RCX: 00007faf7357d8dc
[  321.279150][T17023] RDX: 000000000000000f RSI: 00007faf71fe70a0 RDI: 0000000000000004
[  321.279164][T17023] RBP: 00007faf71fe7090 R08: 0000000000000000 R09: 0000000000000000
[  321.279178][T17023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.279218][T17023] R13: 00007faf737d6038 R14: 00007faf737d5fa0 R15: 00007fffe0617818
[  321.279237][T17023]  </TASK>
[  321.528845][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.639017][T17035] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4775'.
[  321.665276][T17044] FAULT_INJECTION: forcing a failure.
[  321.665276][T17044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  321.678545][T17044] CPU: 0 UID: 0 PID: 17044 Comm: syz.0.4778 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  321.678595][T17044] Tainted: [W]=WARN
[  321.678603][T17044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  321.678618][T17044] Call Trace:
[  321.678678][T17044]  <TASK>
[  321.678687][T17044]  __dump_stack+0x1d/0x30
[  321.678712][T17044]  dump_stack_lvl+0xe8/0x140
[  321.678735][T17044]  dump_stack+0x15/0x1b
[  321.678753][T17044]  should_fail_ex+0x265/0x280
[  321.678805][T17044]  should_fail+0xb/0x20
[  321.678831][T17044]  should_fail_usercopy+0x1a/0x20
[  321.678863][T17044]  _copy_from_user+0x1c/0xb0
[  321.678982][T17044]  __sys_bpf+0x178/0x7b0
[  321.679028][T17044]  __x64_sys_bpf+0x41/0x50
[  321.679065][T17044]  x64_sys_call+0x2aea/0x2ff0
[  321.679091][T17044]  do_syscall_64+0xd2/0x200
[  321.679146][T17044]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  321.679178][T17044]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  321.679229][T17044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.679252][T17044] RIP: 0033:0x7faf7357eec9
[  321.679268][T17044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.679289][T17044] RSP: 002b:00007faf71fe7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  321.679313][T17044] RAX: ffffffffffffffda RBX: 00007faf737d5fa0 RCX: 00007faf7357eec9
[  321.679368][T17044] RDX: 0000000000000020 RSI: 0000200000000740 RDI: 0000000000000002
[  321.679385][T17044] RBP: 00007faf71fe7090 R08: 0000000000000000 R09: 0000000000000000
[  321.679401][T17044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.679416][T17044] R13: 00007faf737d6038 R14: 00007faf737d5fa0 R15: 00007fffe0617818
[  321.679441][T17044]  </TASK>
[  321.862262][T17042] loop1: detected capacity change from 0 to 512
[  321.869239][T17042] EXT4-fs: Ignoring removed bh option
[  321.920754][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.937931][T17042] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.000327][T17042] ext4 filesystem being mounted at /413/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  322.010826][T17051] loop3: detected capacity change from 0 to 512
[  322.025693][T17051] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.039971][T17051] ext4 filesystem being mounted at /293/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  322.054489][T17057] FAULT_INJECTION: forcing a failure.
[  322.054489][T17057] name failslab, interval 1, probability 0, space 0, times 0
[  322.067249][T17057] CPU: 0 UID: 0 PID: 17057 Comm: syz.2.4782 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  322.067290][T17057] Tainted: [W]=WARN
[  322.067299][T17057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  322.067316][T17057] Call Trace:
[  322.067374][T17057]  <TASK>
[  322.067384][T17057]  __dump_stack+0x1d/0x30
[  322.067418][T17057]  dump_stack_lvl+0xe8/0x140
[  322.067443][T17057]  dump_stack+0x15/0x1b
[  322.067465][T17057]  should_fail_ex+0x265/0x280
[  322.067529][T17057]  should_failslab+0x8c/0xb0
[  322.067562][T17057]  kmem_cache_alloc_node_noprof+0x57/0x320
[  322.067601][T17057]  ? __alloc_skb+0x101/0x320
[  322.067627][T17057]  __alloc_skb+0x101/0x320
[  322.067685][T17057]  inet_netconf_notify_devconf+0x173/0x230
[  322.067734][T17057]  inetdev_event+0x743/0xc10
[  322.067820][T17057]  ? __pfx_ib_netdevice_event+0x10/0x10
[  322.067848][T17057]  ? ib_netdevice_event+0x186/0x5f0
[  322.067872][T17057]  ? __pfx_arp_netdev_event+0x10/0x10
[  322.067900][T17057]  ? __pfx_inetdev_event+0x10/0x10
[  322.067920][T17057]  raw_notifier_call_chain+0x6c/0x1b0
[  322.068019][T17057]  ? call_netdevice_notifiers_info+0x9c/0x100
[  322.068059][T17057]  call_netdevice_notifiers_info+0xae/0x100
[  322.068141][T17057]  unregister_netdevice_many_notify+0xda9/0x15d0
[  322.068186][T17057]  unregister_netdevice_queue+0x1f5/0x220
[  322.068269][T17057]  unregister_netdev+0xb3/0xe0
[  322.068295][T17057]  slip_close+0xe4/0x100
[  322.068315][T17057]  ? __pfx_slip_hangup+0x10/0x10
[  322.068387][T17057]  slip_hangup+0x15/0x20
[  322.068430][T17057]  tty_ldisc_hangup+0x132/0x370
[  322.068451][T17057]  __tty_hangup+0x3c2/0x540
[  322.068552][T17057]  tty_ioctl+0x601/0xb80
[  322.068577][T17057]  ? __pfx_tty_ioctl+0x10/0x10
[  322.068603][T17057]  __se_sys_ioctl+0xce/0x140
[  322.068628][T17057]  __x64_sys_ioctl+0x43/0x50
[  322.068647][T17057]  x64_sys_call+0x1816/0x2ff0
[  322.068668][T17057]  do_syscall_64+0xd2/0x200
[  322.068864][T17057]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  322.068896][T17057]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  322.068936][T17057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.068958][T17057] RIP: 0033:0x7fd45927eec9
[  322.069047][T17057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.069071][T17057] RSP: 002b:00007fd457ce7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  322.069096][T17057] RAX: ffffffffffffffda RBX: 00007fd4594d5fa0 RCX: 00007fd45927eec9
[  322.069113][T17057] RDX: 0000000000000002 RSI: 0000000000005437 RDI: 0000000000000003
[  322.069169][T17057] RBP: 00007fd457ce7090 R08: 0000000000000000 R09: 0000000000000000
[  322.069185][T17057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  322.069201][T17057] R13: 00007fd4594d6038 R14: 00007fd4594d5fa0 R15: 00007ffd092bbc88
[  322.069225][T17057]  </TASK>
[  322.073664][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.376969][T17064] loop1: detected capacity change from 0 to 512
[  322.395072][T17064] EXT4-fs (loop1): too many log groups per flexible block group
[  322.403023][T17064] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  322.410240][T17064] EXT4-fs (loop1): mount failed
[  322.587790][T17094] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  322.595715][T17094] SELinux: failed to load policy
[  322.610354][T17096] loop4: detected capacity change from 0 to 512
[  322.624627][T17096] EXT4-fs (loop4): too many log groups per flexible block group
[  322.632481][T17096] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  322.644055][T17096] EXT4-fs (loop4): mount failed
[  322.779582][T17108] lo speed is unknown, defaulting to 1000
[  322.805453][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.874954][T17118] loop4: detected capacity change from 0 to 512
[  322.881960][T17118] EXT4-fs: Ignoring removed nobh option
[  322.893839][T17118] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -13
[  322.914590][T17118] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.4806: attempt to clear invalid blocks 2 len 1
[  322.924689][T17125] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  322.938935][T17125] SELinux: failed to load policy
[  322.950674][T17118] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  322.966239][T17118] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4806: invalid indirect mapped block 1819239214 (level 0)
[  322.980648][T17118] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.4806: invalid indirect mapped block 1819239214 (level 1)
[  322.997491][T17118] EXT4-fs (loop4): 1 truncate cleaned up
[  323.014588][T17118] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  323.036312][T17118] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.4806: corrupted in-inode xattr: e_value out of bounds
[  323.068990][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.116556][T17139] random: crng reseeded on system resumption
[  323.200268][T17146] loop3: detected capacity change from 0 to 1024
[  323.248409][T17146] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.264027][T17157] random: crng reseeded on system resumption
[  323.264935][T17146] ext4 filesystem being mounted at /301/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  323.295757][T17146] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 1: comm syz.3.4818: lblock 1 mapped to illegal pblock 1 (length 15)
[  323.306812][T17142] lo speed is unknown, defaulting to 1000
[  323.311538][T17146] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  323.328248][T17146] EXT4-fs (loop3): This should not happen!! Data will be lost
[  323.328248][T17146] 
[  323.349597][T17163] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4822'.
[  323.353482][T17161] Restarting kernel threads ...
[  323.372815][T17161] Done restarting kernel threads.
[  323.417106][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.455534][T17173] loop3: detected capacity change from 0 to 512
[  323.470833][T17165] loop1: detected capacity change from 0 to 512
[  323.481463][T17173] EXT4-fs (loop3): too many log groups per flexible block group
[  323.489328][T17173] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  323.499177][T17165] EXT4-fs warning (device loop1): ext4_xattr_inode_get:542: inode #11: comm syz.1.4825: ea_inode file size=0 entry size=6
[  323.569540][T17165] EXT4-fs (loop1): 1 orphan inode deleted
[  323.575428][T17173] EXT4-fs (loop3): mount failed
[  323.578035][T17165] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.707407][T17180] netlink: 'syz.2.4826': attribute type 10 has an invalid length.
[  323.717437][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.727144][T17180] .`: (slave dummy0): Releasing backup interface
[  323.782147][T17201] loop3: detected capacity change from 0 to 764
[  323.793917][T17201] SELinux: security_context_str_to_sid () failed with errno=-22
[  323.883586][T17207] netlink: 60 bytes leftover after parsing attributes in process `syz.0.4834'.
[  323.886294][T17208] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4835'.
[  323.892657][T17207] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4834'.
[  324.048380][T17213] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  324.056339][T17213] SELinux: failed to load policy
[  324.063774][T17211] lo speed is unknown, defaulting to 1000
[  324.228455][T17226] netlink: 'syz.4.4842': attribute type 5 has an invalid length.
[  324.239666][T17226] loop4: detected capacity change from 0 to 512
[  324.249647][T17226] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  324.261356][T17226] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it
[  324.271500][T17226] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.4842: Corrupt directory, running e2fsck is recommended
[  324.286457][T17226] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  324.295555][T17226] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.4842: corrupted in-inode xattr: invalid ea_ino
[  324.311452][T17226] EXT4-fs (loop4): Remounting filesystem read-only
[  324.332885][T17226] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.374519][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.411786][T17243] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  324.419813][T17243] SELinux: failed to load policy
[  324.661186][T17254] netlink: 'syz.3.4855': attribute type 21 has an invalid length.
[  324.736613][T17264] loop3: detected capacity change from 0 to 512
[  324.753489][T17264] EXT4-fs (loop3): too many log groups per flexible block group
[  324.761406][T17264] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  324.770920][T17264] EXT4-fs (loop3): mount failed
[  324.885980][T17279] netlink: 'syz.1.4865': attribute type 10 has an invalid length.
[  324.894101][T17279] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4865'.
[  324.904574][T17279] team0: Port device geneve1 added
[  324.910118][ T3732] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  324.914089][T17280] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4865'.
[  324.921598][ T3732] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  324.928334][T17281] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4865'.
[  324.952509][ T3732] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  324.960927][ T3732] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  325.113469][T17288] lo speed is unknown, defaulting to 1000
[  325.178859][T17297] pimreg: entered allmulticast mode
[  325.187466][T17297] pimreg: left allmulticast mode
[  325.289679][T17310] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  325.321878][T17310] SELinux: failed to load policy
[  325.410711][T17319] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  325.442793][T17321] FAULT_INJECTION: forcing a failure.
[  325.442793][T17321] name failslab, interval 1, probability 0, space 0, times 0
[  325.455522][T17321] CPU: 1 UID: 0 PID: 17321 Comm: syz.2.4881 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  325.455635][T17321] Tainted: [W]=WARN
[  325.455645][T17321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  325.455662][T17321] Call Trace:
[  325.455671][T17321]  <TASK>
[  325.455681][T17321]  __dump_stack+0x1d/0x30
[  325.455706][T17321]  dump_stack_lvl+0xe8/0x140
[  325.455729][T17321]  dump_stack+0x15/0x1b
[  325.455770][T17321]  should_fail_ex+0x265/0x280
[  325.455800][T17321]  ? snd_timer_instance_new+0x31/0x160
[  325.455838][T17321]  should_failslab+0x8c/0xb0
[  325.455872][T17321]  __kmalloc_cache_noprof+0x4c/0x320
[  325.455925][T17321]  snd_timer_instance_new+0x31/0x160
[  325.455955][T17321]  snd_seq_timer_open+0x12b/0x360
[  325.455983][T17321]  ? snd_timer_instance_free+0x5f/0x70
[  325.456087][T17321]  ? kfree+0xd9/0x320
[  325.456128][T17321]  snd_seq_queue_timer_open+0xaf/0x120
[  325.456167][T17321]  snd_seq_ioctl_set_queue_timer+0x14b/0x170
[  325.456207][T17321]  snd_seq_ioctl+0x17d/0x2e0
[  325.456242][T17321]  ? __pfx_snd_seq_ioctl+0x10/0x10
[  325.456292][T17321]  __se_sys_ioctl+0xce/0x140
[  325.456318][T17321]  __x64_sys_ioctl+0x43/0x50
[  325.456337][T17321]  x64_sys_call+0x1816/0x2ff0
[  325.456359][T17321]  do_syscall_64+0xd2/0x200
[  325.456472][T17321]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  325.456506][T17321]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  325.456588][T17321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.456653][T17321] RIP: 0033:0x7fd45927eec9
[  325.456674][T17321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  325.456704][T17321] RSP: 002b:00007fd457ce7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  325.456728][T17321] RAX: ffffffffffffffda RBX: 00007fd4594d5fa0 RCX: 00007fd45927eec9
[  325.456741][T17321] RDX: 0000200000000400 RSI: 0000000040605346 RDI: 0000000000000003
[  325.456753][T17321] RBP: 00007fd457ce7090 R08: 0000000000000000 R09: 0000000000000000
[  325.456768][T17321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  325.456780][T17321] R13: 00007fd4594d6038 R14: 00007fd4594d5fa0 R15: 00007ffd092bbc88
[  325.456849][T17321]  </TASK>
[  325.712563][T17324] ALSA: seq fatal error: cannot create timer (-19)
[  325.854065][T17336] loop3: detected capacity change from 0 to 512
[  325.868318][T17336] EXT4-fs: Ignoring removed bh option
[  325.889071][T17330] lo speed is unknown, defaulting to 1000
[  325.896622][T17336] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.919117][T17336] ext4 filesystem being mounted at /323/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  326.074242][T17351] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  326.084689][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.097951][T17351] SELinux: failed to load policy
[  326.138883][   T29] kauditd_printk_skb: 278 callbacks suppressed
[  326.138898][   T29] audit: type=1326 audit(2000000215.730:16194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17353 comm="syz.3.4891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  326.185688][   T29] audit: type=1326 audit(2000000215.760:16195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17353 comm="syz.3.4891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  326.209783][   T29] audit: type=1326 audit(2000000215.760:16196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17353 comm="syz.3.4891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  326.233707][   T29] audit: type=1326 audit(2000000215.760:16197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17353 comm="syz.3.4891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  326.257597][   T29] audit: type=1326 audit(2000000215.760:16198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17353 comm="syz.3.4891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  326.281506][   T29] audit: type=1326 audit(2000000215.760:16199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17353 comm="syz.3.4891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  326.305327][   T29] audit: type=1326 audit(2000000215.760:16200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17353 comm="syz.3.4891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  326.329541][   T29] audit: type=1326 audit(2000000215.760:16201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17353 comm="syz.3.4891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  326.353249][   T29] audit: type=1326 audit(2000000215.760:16202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17353 comm="syz.3.4891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  326.377154][   T29] audit: type=1326 audit(2000000215.760:16203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17353 comm="syz.3.4891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  326.407454][T17362] pimreg: entered allmulticast mode
[  326.418232][T17365] pimreg: left allmulticast mode
[  326.568805][T17377] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4899'.
[  326.658925][T17379] loop4: detected capacity change from 0 to 512
[  326.682819][T17379] EXT4-fs: Ignoring removed bh option
[  326.714770][T17379] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.729702][T17379] ext4 filesystem being mounted at /342/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  326.765980][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.018551][T17405] loop3: detected capacity change from 0 to 8192
[  327.060840][T17405] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4910'.
[  327.088008][T17415] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4912'.
[  327.136137][T17418] loop3: detected capacity change from 0 to 512
[  327.156543][T17418] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  327.169608][T17418] ext4 filesystem being mounted at /332/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  327.245783][T17428] random: crng reseeded on system resumption
[  327.317325][T17429] Restarting kernel threads ...
[  327.322606][T17429] Done restarting kernel threads.
[  327.805498][T17441] netlink: 'syz.0.4922': attribute type 10 has an invalid length.
[  327.814126][T17441] bond0: (slave dummy0): Releasing backup interface
[  327.822729][T17441] team0: Port device dummy0 added
[  327.830375][T17441] netlink: 'syz.0.4922': attribute type 10 has an invalid length.
[  327.843135][T17441] team0: Port device dummy0 removed
[  327.850025][T17441] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  327.868957][T17444] lo speed is unknown, defaulting to 1000
[  327.974649][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.996843][T17447] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  328.486902][T17458] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4926'.
[  328.611829][T17461] loop4: detected capacity change from 0 to 512
[  328.618463][T17461] EXT4-fs: Ignoring removed bh option
[  328.634639][T17461] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  328.649784][T17461] ext4 filesystem being mounted at /346/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  328.754559][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.807405][T17469] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4929'.
[  329.037598][T17490] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[  329.525725][T17507] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4944'.
[  329.883729][T17521] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  329.891744][T17521] SELinux: failed to load policy
[  330.069233][T17523] lo speed is unknown, defaulting to 1000
[  330.380376][T17537] lo speed is unknown, defaulting to 1000
[  330.527183][T17549] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4955'.
[  330.539380][T17548] pimreg: entered allmulticast mode
[  330.568430][T17548] pimreg: left allmulticast mode
[  330.615205][T17554] syz!: rxe_newlink: already configured on team_slave_0
[  330.670135][T17558] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  330.678859][T17558] SELinux: failed to load policy
[  330.805796][T17573] netlink: 9 bytes leftover after parsing attributes in process `syz.3.4966'.
[  330.817554][T17573] gretap0: entered promiscuous mode
[  330.824750][T17573] netlink: 5 bytes leftover after parsing attributes in process `syz.3.4966'.
[  330.835737][T17573] 0ªî{X¹¦: renamed from gretap0
[  330.842733][T17573] 0ªî{X¹¦: left promiscuous mode
[  330.847910][T17573] 0ªî{X¹¦: entered allmulticast mode
[  330.860842][T17573] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  330.898300][T17577] netlink: 'syz.1.4969': attribute type 4 has an invalid length.
[  330.912531][T17577] FAULT_INJECTION: forcing a failure.
[  330.912531][T17577] name failslab, interval 1, probability 0, space 0, times 0
[  330.925441][T17577] CPU: 0 UID: 0 PID: 17577 Comm: syz.1.4969 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  330.925489][T17577] Tainted: [W]=WARN
[  330.925497][T17577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  330.925510][T17577] Call Trace:
[  330.925552][T17577]  <TASK>
[  330.925634][T17577]  __dump_stack+0x1d/0x30
[  330.925658][T17577]  dump_stack_lvl+0xe8/0x140
[  330.925683][T17577]  dump_stack+0x15/0x1b
[  330.925753][T17577]  should_fail_ex+0x265/0x280
[  330.925786][T17577]  should_failslab+0x8c/0xb0
[  330.925819][T17577]  kmem_cache_alloc_node_noprof+0x57/0x320
[  330.925906][T17577]  ? __alloc_skb+0x101/0x320
[  330.925928][T17577]  __alloc_skb+0x101/0x320
[  330.925949][T17577]  netlink_ack+0xfd/0x500
[  330.925974][T17577]  ? avc_has_perm_noaudit+0x1b1/0x200
[  330.926014][T17577]  netlink_rcv_skb+0x192/0x220
[  330.926042][T17577]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  330.926096][T17577]  rtnetlink_rcv+0x1c/0x30
[  330.926124][T17577]  netlink_unicast+0x5bd/0x690
[  330.926146][T17577]  netlink_sendmsg+0x58b/0x6b0
[  330.926173][T17577]  ? __pfx_netlink_sendmsg+0x10/0x10
[  330.926201][T17577]  __sock_sendmsg+0x145/0x180
[  330.926256][T17577]  ____sys_sendmsg+0x31e/0x4e0
[  330.926325][T17577]  ___sys_sendmsg+0x17b/0x1d0
[  330.926367][T17577]  __x64_sys_sendmsg+0xd4/0x160
[  330.926461][T17577]  x64_sys_call+0x191e/0x2ff0
[  330.926543][T17577]  do_syscall_64+0xd2/0x200
[  330.926583][T17577]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  330.926670][T17577]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  330.926708][T17577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.926737][T17577] RIP: 0033:0x7faf4610eec9
[  330.926758][T17577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.926782][T17577] RSP: 002b:00007faf44b77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  330.926849][T17577] RAX: ffffffffffffffda RBX: 00007faf46365fa0 RCX: 00007faf4610eec9
[  330.926866][T17577] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[  330.926883][T17577] RBP: 00007faf44b77090 R08: 0000000000000000 R09: 0000000000000000
[  330.926900][T17577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.926916][T17577] R13: 00007faf46366038 R14: 00007faf46365fa0 R15: 00007ffe22040b48
[  330.926942][T17577]  </TASK>
[  331.214261][T17585] pimreg: entered allmulticast mode
[  331.221569][T17585] pimreg: left allmulticast mode
[  331.238841][   T29] kauditd_printk_skb: 171 callbacks suppressed
[  331.238861][   T29] audit: type=1326 audit(2000000220.829:16375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17564 comm="syz.0.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  331.314960][   T29] audit: type=1326 audit(2000000220.829:16376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17564 comm="syz.0.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  331.425090][   T29] audit: type=1400 audit(2000000221.019:16377): avc:  denied  { write } for  pid=17582 comm="syz.3.4971" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  331.445520][   T29] audit: type=1400 audit(2000000221.019:16378): avc:  denied  { nlmsg_write } for  pid=17582 comm="syz.3.4971" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  331.472883][T17597] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4976'.
[  331.539860][   T29] audit: type=1400 audit(2000000221.129:16379): avc:  denied  { write } for  pid=17582 comm="syz.3.4971" name="001" dev="devtmpfs" ino=171 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  331.673534][T17583] lo speed is unknown, defaulting to 1000
[  331.735997][T17613] __nla_validate_parse: 1 callbacks suppressed
[  331.736019][T17613] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4982'.
[  331.768436][T17613] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4982'.
[  331.811648][T17613] netlink: 5 bytes leftover after parsing attributes in process `syz.2.4982'.
[  331.851005][T17613] 0ªX¹¦D: renamed from gretap0
[  331.866597][   T29] audit: type=1326 audit(2000000221.459:16380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17621 comm="syz.0.4986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  331.890598][   T29] audit: type=1326 audit(2000000221.459:16381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17621 comm="syz.0.4986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  331.914768][   T29] audit: type=1326 audit(2000000221.459:16382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17621 comm="syz.0.4986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  331.938596][   T29] audit: type=1326 audit(2000000221.459:16383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17621 comm="syz.0.4986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  331.962794][   T29] audit: type=1326 audit(2000000221.459:16384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17621 comm="syz.0.4986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  332.057998][T17613] 0ªX¹¦D: entered allmulticast mode
[  332.083132][T17613] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[  332.301180][ T3710] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  332.321015][ T3710] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  332.371460][ T3710] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  332.418032][ T3710] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  332.753794][T17661] FAULT_INJECTION: forcing a failure.
[  332.753794][T17661] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  332.767180][T17661] CPU: 1 UID: 0 PID: 17661 Comm: syz.0.4997 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  332.767223][T17661] Tainted: [W]=WARN
[  332.767232][T17661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  332.767280][T17661] Call Trace:
[  332.767288][T17661]  <TASK>
[  332.767297][T17661]  __dump_stack+0x1d/0x30
[  332.767319][T17661]  dump_stack_lvl+0xe8/0x140
[  332.767342][T17661]  dump_stack+0x15/0x1b
[  332.767364][T17661]  should_fail_ex+0x265/0x280
[  332.767395][T17661]  should_fail+0xb/0x20
[  332.767436][T17661]  should_fail_usercopy+0x1a/0x20
[  332.767471][T17661]  _copy_from_user+0x1c/0xb0
[  332.767506][T17661]  get_nodes+0x1d9/0x290
[  332.767528][T17661]  __se_sys_mbind+0x108/0xac0
[  332.767572][T17661]  ? vfs_write+0x7e8/0x960
[  332.767604][T17661]  ? __fget_files+0x184/0x1c0
[  332.767695][T17661]  ? fput+0x8f/0xc0
[  332.767729][T17661]  __x64_sys_mbind+0x78/0x90
[  332.767767][T17661]  x64_sys_call+0x2932/0x2ff0
[  332.767795][T17661]  do_syscall_64+0xd2/0x200
[  332.767891][T17661]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  332.767925][T17661]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  332.767958][T17661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.767988][T17661] RIP: 0033:0x7faf7357eec9
[  332.768008][T17661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  332.768121][T17661] RSP: 002b:00007faf71fe7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  332.768147][T17661] RAX: ffffffffffffffda RBX: 00007faf737d5fa0 RCX: 00007faf7357eec9
[  332.768165][T17661] RDX: 0000000000008003 RSI: 0000000000002000 RDI: 00002000001e7000
[  332.768215][T17661] RBP: 00007faf71fe7090 R08: 0000000000000003 R09: 0000000000000002
[  332.768276][T17661] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  332.768291][T17661] R13: 00007faf737d6038 R14: 00007faf737d5fa0 R15: 00007fffe0617818
[  332.768418][T17661]  </TASK>
[  333.172174][T17674] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5004'.
[  333.210017][T17677] loop1: detected capacity change from 0 to 512
[  333.221217][T17677] EXT4-fs warning (device loop1): ext4_xattr_inode_get:542: inode #11: comm syz.1.5007: ea_inode file size=0 entry size=6
[  333.236857][T17677] EXT4-fs (loop1): 1 orphan inode deleted
[  333.243175][T17677] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  333.311015][T17686] loop3: detected capacity change from 0 to 1024
[  333.324231][T17686] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  333.340643][T17686] ext4 filesystem being mounted at /352/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  333.354034][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.357490][T17686] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 1: comm syz.3.5009: lblock 1 mapped to illegal pblock 1 (length 15)
[  333.378304][T17686] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  333.391044][T17686] EXT4-fs (loop3): This should not happen!! Data will be lost
[  333.391044][T17686] 
[  333.431838][T12531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.457701][T17693] mmap: syz.1.5011 (17693) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  333.492751][T17699] random: crng reseeded on system resumption
[  333.605275][T17704] loop3: detected capacity change from 0 to 1024
[  333.612339][T17704] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  333.727807][T17715] loop4: detected capacity change from 0 to 512
[  333.736834][T17715] EXT4-fs warning (device loop4): ext4_xattr_inode_get:542: inode #11: comm syz.4.5020: ea_inode file size=0 entry size=6
[  333.751708][T17715] EXT4-fs (loop4): 1 orphan inode deleted
[  333.758142][T17715] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  333.790297][T17718] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5018'.
[  333.888632][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.089778][T17739] loop4: detected capacity change from 0 to 512
[  334.120149][T17739] EXT4-fs: Ignoring removed bh option
[  334.146845][T17739] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.202209][T17739] ext4 filesystem being mounted at /366/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  334.270684][T17742] lo speed is unknown, defaulting to 1000
[  334.335093][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.395424][T17756] loop1: detected capacity change from 0 to 512
[  334.407434][T17763] netlink: 'syz.3.5039': attribute type 21 has an invalid length.
[  334.415388][T17763] netlink: 128 bytes leftover after parsing attributes in process `syz.3.5039'.
[  334.427469][T17756] EXT4-fs warning (device loop1): ext4_xattr_inode_get:542: inode #11: comm syz.1.5037: ea_inode file size=0 entry size=6
[  334.470976][T17763] netlink: 'syz.3.5039': attribute type 6 has an invalid length.
[  334.472747][T17756] EXT4-fs (loop1): 1 orphan inode deleted
[  334.479017][T17763] netlink: 3 bytes leftover after parsing attributes in process `syz.3.5039'.
[  334.492929][T17756] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  334.621089][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.664052][T17773] lo speed is unknown, defaulting to 1000
[  334.725079][T17776] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5040'.
[  335.037275][T17815] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  335.065694][T17815] SELinux: failed to load policy
[  335.125979][T17804] lo speed is unknown, defaulting to 1000
[  335.186729][T17824] loop3: detected capacity change from 0 to 512
[  335.233264][T17828] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  335.237715][T17824] EXT4-fs: Ignoring removed bh option
[  335.241223][T17828] SELinux: failed to load policy
[  335.266262][T17829] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5057'.
[  335.325369][T17824] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  335.373796][T17838] loop1: detected capacity change from 0 to 512
[  335.407554][T17838] EXT4-fs: Ignoring removed bh option
[  335.420693][T17824] ext4 filesystem being mounted at /365/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  335.444368][T17838] ext4 filesystem being mounted at /463/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  335.574407][T17852] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  335.586790][T17852] SELinux: failed to load policy
[  335.663678][T17867] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5070'.
[  335.677571][T17866] loop3: detected capacity change from 0 to 512
[  335.693811][T17866] EXT4-fs (loop3): too many log groups per flexible block group
[  335.701675][T17866] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  335.708623][T17866] EXT4-fs (loop3): mount failed
[  335.964589][T17891] loop3: detected capacity change from 0 to 512
[  335.980824][T17891] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  336.009001][T17891] EXT4-fs (loop3): 1 truncate cleaned up
[  336.242745][T17904] netlink: 'syz.3.5084': attribute type 10 has an invalid length.
[  336.251388][T17904] bond0: (slave dummy0): Releasing backup interface
[  336.260442][T17904] team0: Port device dummy0 added
[  336.268700][T17904] netlink: 'syz.3.5084': attribute type 10 has an invalid length.
[  336.278575][T17904] team0: Port device dummy0 removed
[  336.286102][T17904] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  336.656554][   T29] kauditd_printk_skb: 320 callbacks suppressed
[  336.656618][   T29] audit: type=1326 audit(2000000226.249:16705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17901 comm="syz.1.5089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4610eec9 code=0x7ffc0000
[  336.691719][   T29] audit: type=1326 audit(2000000226.249:16706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17901 comm="syz.1.5089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4610eec9 code=0x7ffc0000
[  336.715540][   T29] audit: type=1326 audit(2000000226.259:16707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17901 comm="syz.1.5089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7faf4610eec9 code=0x7ffc0000
[  336.739212][   T29] audit: type=1326 audit(2000000226.259:16708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17901 comm="syz.1.5089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4610eec9 code=0x7ffc0000
[  336.762902][   T29] audit: type=1326 audit(2000000226.259:16709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17901 comm="syz.1.5089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7faf4610eec9 code=0x7ffc0000
[  336.778675][T17902] __nla_validate_parse: 1 callbacks suppressed
[  336.778697][T17902] netlink: 348 bytes leftover after parsing attributes in process `syz.1.5089'.
[  336.786706][   T29] audit: type=1326 audit(2000000226.259:16710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17901 comm="syz.1.5089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4610eec9 code=0x7ffc0000
[  336.826028][   T29] audit: type=1326 audit(2000000226.259:16711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17901 comm="syz.1.5089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7faf4610eec9 code=0x7ffc0000
[  336.849560][   T29] audit: type=1326 audit(2000000226.289:16712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17901 comm="syz.1.5089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4610eec9 code=0x7ffc0000
[  336.873733][   T29] audit: type=1326 audit(2000000226.289:16713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17901 comm="syz.1.5089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4610eec9 code=0x7ffc0000
[  336.897643][   T29] audit: type=1326 audit(2000000226.289:16714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17901 comm="syz.1.5089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7faf4610eec9 code=0x7ffc0000
[  337.004033][T17923] 9pnet_fd: Insufficient options for proto=fd
[  337.012511][T17928] bridge: RTM_NEWNEIGH with invalid ether address
[  337.216808][T17951] loop3: detected capacity change from 0 to 512
[  337.223821][T17951] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  337.376646][T17951] EXT4-fs (loop3): 1 truncate cleaned up
[  337.713855][T17959] netlink: 'syz.3.5104': attribute type 10 has an invalid length.
[  337.767076][T17960] netlink: 'syz.3.5104': attribute type 10 has an invalid length.
[  338.173649][T17959] bond0: (slave dummy0): Releasing backup interface
[  338.206990][T17959] team0: Port device dummy0 added
[  338.216853][T17960] team0: Port device dummy0 removed
[  338.224105][T17960] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  338.722070][T17982] loop4: detected capacity change from 0 to 512
[  338.742902][T17982] EXT4-fs: Ignoring removed bh option
[  338.777423][T17982] ext4 filesystem being mounted at /387/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  338.939084][T17988] loop1: detected capacity change from 0 to 512
[  338.965642][T17988] EXT4-fs (loop1): too many log groups per flexible block group
[  338.973640][T17988] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  338.980740][T17988] EXT4-fs (loop1): mount failed
[  339.160097][T17995] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  339.191538][T18000] random: crng reseeded on system resumption
[  339.200885][T17996] loop3: detected capacity change from 0 to 1024
[  339.222555][T17996] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  339.243907][T17996] FAULT_INJECTION: forcing a failure.
[  339.243907][T17996] name failslab, interval 1, probability 0, space 0, times 0
[  339.243934][T18003] loop1: detected capacity change from 0 to 512
[  339.263144][T17996] CPU: 0 UID: 0 PID: 17996 Comm: syz.3.5107 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  339.263200][T17996] Tainted: [W]=WARN
[  339.263207][T17996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  339.263221][T17996] Call Trace:
[  339.263228][T17996]  <TASK>
[  339.263237][T17996]  __dump_stack+0x1d/0x30
[  339.263260][T17996]  dump_stack_lvl+0xe8/0x140
[  339.263279][T17996]  dump_stack+0x15/0x1b
[  339.263359][T17996]  should_fail_ex+0x265/0x280
[  339.263392][T17996]  should_failslab+0x8c/0xb0
[  339.263420][T17996]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  339.263468][T17996]  ? sidtab_sid2str_get+0xa0/0x130
[  339.263499][T17996]  kmemdup_noprof+0x2b/0x70
[  339.263579][T17996]  sidtab_sid2str_get+0xa0/0x130
[  339.263610][T17996]  security_sid_to_context_core+0x1eb/0x2e0
[  339.263641][T17996]  security_sid_to_context+0x27/0x40
[  339.263671][T17996]  selinux_lsmprop_to_secctx+0x67/0xf0
[  339.263695][T17996]  security_lsmprop_to_secctx+0x43/0x80
[  339.263765][T17996]  audit_log_task_context+0x77/0x190
[  339.263803][T17996]  audit_log_task+0xf4/0x250
[  339.263948][T17996]  audit_seccomp+0x61/0x100
[  339.263982][T17996]  ? __seccomp_filter+0x68c/0x10d0
[  339.264009][T17996]  __seccomp_filter+0x69d/0x10d0
[  339.264068][T18003] EXT4-fs (loop1): too many log groups per flexible block group
[  339.264103][T17996]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  339.264170][T17996]  ? vfs_write+0x7e8/0x960
[  339.264213][T17996]  __secure_computing+0x82/0x150
[  339.264311][T17996]  syscall_trace_enter+0xcf/0x1e0
[  339.264348][T17996]  do_syscall_64+0xac/0x200
[  339.264379][T17996]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  339.264483][T17996]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  339.264526][T17996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.264559][T17996] RIP: 0033:0x7fcb628beec9
[  339.264581][T17996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  339.264608][T17996] RSP: 002b:00007fcb61327038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  339.264704][T17996] RAX: ffffffffffffffda RBX: 00007fcb62b15fa0 RCX: 00007fcb628beec9
[  339.264732][T17996] RDX: 0000200000000040 RSI: 00002000000000c0 RDI: 0000200000000080
[  339.264750][T17996] RBP: 00007fcb61327090 R08: 0000000000000000 R09: 0000000000000000
[  339.264769][T17996] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000001
[  339.264787][T17996] R13: 00007fcb62b16038 R14: 00007fcb62b15fa0 R15: 00007ffec5843b68
[  339.264815][T17996]  </TASK>
[  339.297173][T18008] Restarting kernel threads ...
[  339.300605][T18003] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  339.307597][T18008] Done restarting kernel threads.
[  339.309553][T18003] EXT4-fs (loop1): mount failed
[  339.537456][T18009] netlink: 'syz.2.5117': attribute type 10 has an invalid length.
[  339.546049][T18009] netlink: 'syz.2.5117': attribute type 10 has an invalid length.
[  339.556261][T18009] .`: (slave dummy0): Enslaving as an active interface with an up link
[  339.695603][T18012] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5121'.
[  339.891623][T18024] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  339.899703][T18024] SELinux: failed to load policy
[  340.318259][T18066] loop4: detected capacity change from 0 to 512
[  340.328540][T18066] EXT4-fs warning (device loop4): ext4_xattr_inode_get:542: inode #11: comm syz.4.5145: ea_inode file size=0 entry size=6
[  340.341702][T18066] EXT4-fs (loop4): 1 orphan inode deleted
[  340.445791][T18078] netlink: 'syz.2.5142': attribute type 10 has an invalid length.
[  340.455203][T18078] .`: (slave dummy0): Releasing backup interface
[  340.465479][T18078] netlink: 'syz.2.5142': attribute type 10 has an invalid length.
[  340.475698][T18078] .`: (slave dummy0): Enslaving as an active interface with an up link
[  340.698268][T18084] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5149'.
[  340.859671][T18094] loop3: detected capacity change from 0 to 512
[  340.873821][T18094] EXT4-fs (loop3): too many log groups per flexible block group
[  340.881786][T18094] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  340.890500][T18094] EXT4-fs (loop3): mount failed
[  340.933691][T18103] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  340.941582][T18103] SELinux: failed to load policy
[  341.220513][T18111] lo speed is unknown, defaulting to 1000
[  341.243255][T18127] pimreg: entered allmulticast mode
[  341.275448][T18127] pimreg: left allmulticast mode
[  341.369757][T18134] loop1: detected capacity change from 0 to 512
[  341.392954][T18134] EXT4-fs (loop1): too many log groups per flexible block group
[  341.400850][T18134] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  341.416260][T18139] syz!: rxe_newlink: already configured on team_slave_0
[  341.429609][T18134] EXT4-fs (loop1): mount failed
[  341.559513][T18147] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  341.567199][T18144] loop1: detected capacity change from 0 to 512
[  341.585591][T18144] EXT4-fs warning (device loop1): ext4_xattr_inode_get:542: inode #11: comm syz.1.5173: ea_inode file size=0 entry size=6
[  341.604978][T18144] EXT4-fs (loop1): 1 orphan inode deleted
[  341.699342][T18156] loop1: detected capacity change from 0 to 512
[  341.716441][   T29] kauditd_printk_skb: 345 callbacks suppressed
[  341.716458][   T29] audit: type=1326 audit(2000000231.309:17059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18159 comm="syz.0.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  341.749473][T18156] EXT4-fs (loop1): too many log groups per flexible block group
[  341.754023][   T29] audit: type=1326 audit(2000000231.309:17060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18159 comm="syz.0.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  341.757543][T18156] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  341.781103][   T29] audit: type=1326 audit(2000000231.309:17061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18159 comm="syz.0.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  341.811948][   T29] audit: type=1326 audit(2000000231.309:17062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18159 comm="syz.0.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  341.835647][   T29] audit: type=1326 audit(2000000231.319:17063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18159 comm="syz.0.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7357eec9 code=0x7ffc0000
[  341.859448][T18156] EXT4-fs (loop1): mount failed
[  341.859846][   T29] audit: type=1326 audit(2000000231.409:17064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18163 comm="syz.3.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  341.888308][   T29] audit: type=1326 audit(2000000231.409:17065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18163 comm="syz.3.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  341.911962][   T29] audit: type=1326 audit(2000000231.409:17066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18163 comm="syz.3.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  341.935779][   T29] audit: type=1326 audit(2000000231.409:17067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18163 comm="syz.3.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  341.959423][   T29] audit: type=1326 audit(2000000231.409:17068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18163 comm="syz.3.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb628beec9 code=0x7ffc0000
[  342.021773][T18170] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5182'.
[  342.041966][T18170] netlink: 'syz.1.5182': attribute type 10 has an invalid length.
[  342.049913][T18170] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5182'.
[  342.059827][T18170] veth1_vlan: left promiscuous mode
[  342.066727][T18170] batman_adv: batadv0: Adding interface: veth1_vlan
[  342.073516][T18170] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  342.099602][T18170] batman_adv: batadv0: Interface activated: veth1_vlan
[  342.221194][T18190] FAULT_INJECTION: forcing a failure.
[  342.221194][T18190] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  342.234751][T18190] CPU: 0 UID: 0 PID: 18190 Comm: syz.3.5192 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  342.234860][T18190] Tainted: [W]=WARN
[  342.234868][T18190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  342.234880][T18190] Call Trace:
[  342.234888][T18190]  <TASK>
[  342.234898][T18190]  __dump_stack+0x1d/0x30
[  342.234925][T18190]  dump_stack_lvl+0xe8/0x140
[  342.235021][T18190]  dump_stack+0x15/0x1b
[  342.235044][T18190]  should_fail_ex+0x265/0x280
[  342.235075][T18190]  should_fail+0xb/0x20
[  342.235172][T18190]  should_fail_usercopy+0x1a/0x20
[  342.235207][T18190]  _copy_from_user+0x1c/0xb0
[  342.235251][T18190]  sg_write+0x610/0x750
[  342.235297][T18190]  ? __pfx_sg_write+0x10/0x10
[  342.235320][T18190]  vfs_write+0x266/0x960
[  342.235350][T18190]  ? __rcu_read_unlock+0x4f/0x70
[  342.235380][T18190]  ? __fget_files+0x184/0x1c0
[  342.235498][T18190]  ksys_write+0xda/0x1a0
[  342.235530][T18190]  __x64_sys_write+0x40/0x50
[  342.235560][T18190]  x64_sys_call+0x27fe/0x2ff0
[  342.235589][T18190]  do_syscall_64+0xd2/0x200
[  342.235704][T18190]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  342.235750][T18190]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  342.235797][T18190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.235821][T18190] RIP: 0033:0x7fcb628beec9
[  342.235838][T18190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.235860][T18190] RSP: 002b:00007fcb61327038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  342.235955][T18190] RAX: ffffffffffffffda RBX: 00007fcb62b15fa0 RCX: 00007fcb628beec9
[  342.235969][T18190] RDX: 0000000000000038 RSI: 0000200000000040 RDI: 0000000000000007
[  342.235985][T18190] RBP: 00007fcb61327090 R08: 0000000000000000 R09: 0000000000000000
[  342.236002][T18190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.236018][T18190] R13: 00007fcb62b16038 R14: 00007fcb62b15fa0 R15: 00007ffec5843b68
[  342.236042][T18190]  </TASK>
[  342.505195][T18201] loop3: detected capacity change from 0 to 512
[  342.567414][T18201] EXT4-fs (loop3): too many log groups per flexible block group
[  342.575214][T18201] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  342.582516][T18201] EXT4-fs (loop3): mount failed
[  342.643289][T18215] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  342.652331][T18219] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  342.700956][T18221] syz!: rxe_newlink: already configured on team_slave_0
[  342.716192][T18222] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5203'.
[  342.732139][T18225] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5206'.
[  342.744242][T18225] FAULT_INJECTION: forcing a failure.
[  342.744242][T18225] name failslab, interval 1, probability 0, space 0, times 0
[  342.757192][T18225] CPU: 0 UID: 0 PID: 18225 Comm: syz.1.5206 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  342.757226][T18225] Tainted: [W]=WARN
[  342.757233][T18225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  342.757246][T18225] Call Trace:
[  342.757254][T18225]  <TASK>
[  342.757311][T18225]  __dump_stack+0x1d/0x30
[  342.757339][T18225]  dump_stack_lvl+0xe8/0x140
[  342.757365][T18225]  dump_stack+0x15/0x1b
[  342.757431][T18225]  should_fail_ex+0x265/0x280
[  342.757454][T18225]  should_failslab+0x8c/0xb0
[  342.757477][T18225]  kmem_cache_alloc_node_noprof+0x57/0x320
[  342.757505][T18225]  ? __alloc_skb+0x101/0x320
[  342.757586][T18225]  __alloc_skb+0x101/0x320
[  342.757615][T18225]  netlink_alloc_large_skb+0xba/0xf0
[  342.757642][T18225]  netlink_sendmsg+0x3cf/0x6b0
[  342.757701][T18225]  ? __pfx_netlink_sendmsg+0x10/0x10
[  342.757723][T18225]  __sock_sendmsg+0x145/0x180
[  342.757823][T18225]  ____sys_sendmsg+0x31e/0x4e0
[  342.757918][T18225]  ___sys_sendmsg+0x17b/0x1d0
[  342.757974][T18225]  __x64_sys_sendmsg+0xd4/0x160
[  342.757999][T18225]  x64_sys_call+0x191e/0x2ff0
[  342.758019][T18225]  do_syscall_64+0xd2/0x200
[  342.758081][T18225]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  342.758111][T18225]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  342.758137][T18225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.758172][T18225] RIP: 0033:0x7faf4610eec9
[  342.758186][T18225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.758203][T18225] RSP: 002b:00007faf44b77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  342.758219][T18225] RAX: ffffffffffffffda RBX: 00007faf46365fa0 RCX: 00007faf4610eec9
[  342.758231][T18225] RDX: 00000000240000c0 RSI: 0000200000000140 RDI: 0000000000000004
[  342.758242][T18225] RBP: 00007faf44b77090 R08: 0000000000000000 R09: 0000000000000000
[  342.758252][T18225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.758325][T18225] R13: 00007faf46366038 R14: 00007faf46365fa0 R15: 00007ffe22040b48
[  342.758344][T18225]  </TASK>
[  343.271679][T18243] loop1: detected capacity change from 0 to 512
[  343.281385][T18243] EXT4-fs warning (device loop1): ext4_xattr_inode_get:542: inode #11: comm syz.1.5214: ea_inode file size=0 entry size=6
[  343.294865][T18243] EXT4-fs (loop1): 1 orphan inode deleted
[  343.301251][T18243] EXT4-fs mount: 13 callbacks suppressed
[  343.301271][T18243] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  343.426014][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.458754][T18264] netlink: 'syz.3.5222': attribute type 1 has an invalid length.
[  343.510073][T18268] loop4: detected capacity change from 0 to 1024
[  343.521890][T18268] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  343.542893][T18268] netlink: 'syz.4.5223': attribute type 1 has an invalid length.
[  343.599047][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.691915][T18285] loop4: detected capacity change from 0 to 512
[  343.717435][T18285] EXT4-fs warning (device loop4): ext4_xattr_inode_get:542: inode #11: comm syz.4.5231: ea_inode file size=0 entry size=6
[  343.742677][T18285] EXT4-fs (loop4): 1 orphan inode deleted
[  343.749011][T18285] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  343.863390][T12361] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.011028][T18307] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  344.249403][T18310] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  344.257190][T18310] SELinux: failed to load policy
[  344.611825][T18339] FAULT_INJECTION: forcing a failure.
[  344.611825][T18339] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  344.625203][T18339] CPU: 0 UID: 0 PID: 18339 Comm: syz.3.5250 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  344.625245][T18339] Tainted: [W]=WARN
[  344.625255][T18339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  344.625272][T18339] Call Trace:
[  344.625281][T18339]  <TASK>
[  344.625354][T18339]  __dump_stack+0x1d/0x30
[  344.625468][T18339]  dump_stack_lvl+0xe8/0x140
[  344.625494][T18339]  dump_stack+0x15/0x1b
[  344.625515][T18339]  should_fail_ex+0x265/0x280
[  344.625576][T18339]  should_fail+0xb/0x20
[  344.625603][T18339]  should_fail_usercopy+0x1a/0x20
[  344.625637][T18339]  _copy_from_user+0x1c/0xb0
[  344.625678][T18339]  get_timespec64+0x4c/0x100
[  344.625705][T18339]  __x64_sys_recvmmsg+0xa3/0x170
[  344.625811][T18339]  x64_sys_call+0x27a6/0x2ff0
[  344.625839][T18339]  do_syscall_64+0xd2/0x200
[  344.625878][T18339]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  344.625951][T18339]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  344.625989][T18339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.626016][T18339] RIP: 0033:0x7fcb628beec9
[  344.626035][T18339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.626123][T18339] RSP: 002b:00007fcb61327038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  344.626169][T18339] RAX: ffffffffffffffda RBX: 00007fcb62b15fa0 RCX: 00007fcb628beec9
[  344.626184][T18339] RDX: 04000000000003b4 RSI: 00002000000037c0 RDI: 0000000000000003
[  344.626197][T18339] RBP: 00007fcb61327090 R08: 0000200000003700 R09: 0000000000000000
[  344.626210][T18339] R10: 0000000002040000 R11: 0000000000000246 R12: 0000000000000001
[  344.626223][T18339] R13: 00007fcb62b16038 R14: 00007fcb62b15fa0 R15: 00007ffec5843b68
[  344.626286][T18339]  </TASK>
[  344.967740][T18367] netlink: 'syz.2.5262': attribute type 30 has an invalid length.
[  345.054922][T18376] pim6reg: entered allmulticast mode
[  345.062144][T18376] pim6reg: left allmulticast mode
[  345.159678][T18371] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  345.168812][T18371] netlink: 'syz.4.5263': attribute type 10 has an invalid length.
[  345.181765][T18371] team0: Device hsr_slave_0 failed to register rx_handler
[  345.196588][T18383] syz!: rxe_newlink: already configured on team_slave_0
[  345.210454][T18371] loop4: detected capacity change from 0 to 512
[  345.217850][T18371] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  345.229111][T18371] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.5263: invalid block
[  345.241559][T18371] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5263: invalid indirect mapped block 4294967295 (level 1)
[  345.255999][T18371] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5263: invalid indirect mapped block 4294967295 (level 1)
[  345.272845][T18371] EXT4-fs (loop4): 2 truncates cleaned up
[  345.279285][T18371] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.293995][T18371] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.356176][T18389] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  345.438709][T18396] FAULT_INJECTION: forcing a failure.
[  345.438709][T18396] name failslab, interval 1, probability 0, space 0, times 0
[  345.451491][T18396] CPU: 1 UID: 0 PID: 18396 Comm: syz.0.5271 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  345.451608][T18396] Tainted: [W]=WARN
[  345.451618][T18396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  345.451635][T18396] Call Trace:
[  345.451643][T18396]  <TASK>
[  345.451654][T18396]  __dump_stack+0x1d/0x30
[  345.451722][T18396]  dump_stack_lvl+0xe8/0x140
[  345.451748][T18396]  dump_stack+0x15/0x1b
[  345.451769][T18396]  should_fail_ex+0x265/0x280
[  345.451802][T18396]  should_failslab+0x8c/0xb0
[  345.451841][T18396]  __kmalloc_noprof+0xa5/0x3e0
[  345.451901][T18396]  ? bpf_test_init+0xa9/0x160
[  345.451929][T18396]  bpf_test_init+0xa9/0x160
[  345.451955][T18396]  bpf_prog_test_run_skb+0x144/0xbd0
[  345.452073][T18396]  ? __rcu_read_unlock+0x4f/0x70
[  345.452102][T18396]  ? __fget_files+0x184/0x1c0
[  345.452132][T18396]  ? __rcu_read_unlock+0x4f/0x70
[  345.452285][T18396]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  345.452311][T18396]  bpf_prog_test_run+0x22a/0x390
[  345.452354][T18396]  __sys_bpf+0x4b9/0x7b0
[  345.452399][T18396]  __x64_sys_bpf+0x41/0x50
[  345.452479][T18396]  x64_sys_call+0x2aea/0x2ff0
[  345.452502][T18396]  do_syscall_64+0xd2/0x200
[  345.452537][T18396]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  345.452569][T18396]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  345.452665][T18396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.452689][T18396] RIP: 0033:0x7faf7357eec9
[  345.452705][T18396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.452766][T18396] RSP: 002b:00007faf71fe7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  345.452786][T18396] RAX: ffffffffffffffda RBX: 00007faf737d5fa0 RCX: 00007faf7357eec9
[  345.452799][T18396] RDX: 0000000000000050 RSI: 0000200000000340 RDI: 000000000000000a
[  345.452813][T18396] RBP: 00007faf71fe7090 R08: 0000000000000000 R09: 0000000000000000
[  345.452826][T18396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.452840][T18396] R13: 00007faf737d6038 R14: 00007faf737d5fa0 R15: 00007fffe0617818
[  345.452935][T18396]  </TASK>
[  345.707931][T18404] FAULT_INJECTION: forcing a failure.
[  345.707931][T18404] name failslab, interval 1, probability 0, space 0, times 0
[  345.720756][T18404] CPU: 1 UID: 0 PID: 18404 Comm: syz.1.5275 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  345.720794][T18404] Tainted: [W]=WARN
[  345.720804][T18404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  345.720821][T18404] Call Trace:
[  345.720830][T18404]  <TASK>
[  345.720841][T18404]  __dump_stack+0x1d/0x30
[  345.720865][T18404]  dump_stack_lvl+0xe8/0x140
[  345.720917][T18404]  dump_stack+0x15/0x1b
[  345.720939][T18404]  should_fail_ex+0x265/0x280
[  345.720976][T18404]  should_failslab+0x8c/0xb0
[  345.721004][T18404]  kmem_cache_alloc_node_noprof+0x57/0x320
[  345.721035][T18404]  ? __alloc_skb+0x101/0x320
[  345.721135][T18404]  __alloc_skb+0x101/0x320
[  345.721197][T18404]  netlink_alloc_large_skb+0xba/0xf0
[  345.721266][T18404]  netlink_sendmsg+0x3cf/0x6b0
[  345.721306][T18404]  ? __pfx_netlink_sendmsg+0x10/0x10
[  345.721338][T18404]  __sock_sendmsg+0x145/0x180
[  345.721381][T18404]  ____sys_sendmsg+0x31e/0x4e0
[  345.721413][T18404]  ___sys_sendmsg+0x17b/0x1d0
[  345.721463][T18404]  __x64_sys_sendmsg+0xd4/0x160
[  345.721499][T18404]  x64_sys_call+0x191e/0x2ff0
[  345.721521][T18404]  do_syscall_64+0xd2/0x200
[  345.721599][T18404]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  345.721712][T18404]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  345.721803][T18404]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.721829][T18404] RIP: 0033:0x7faf4610eec9
[  345.721847][T18404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.721866][T18404] RSP: 002b:00007faf44b77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  345.721885][T18404] RAX: ffffffffffffffda RBX: 00007faf46365fa0 RCX: 00007faf4610eec9
[  345.721898][T18404] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000003
[  345.721926][T18404] RBP: 00007faf44b77090 R08: 0000000000000000 R09: 0000000000000000
[  345.721943][T18404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.721959][T18404] R13: 00007faf46366038 R14: 00007faf46365fa0 R15: 00007ffe22040b48
[  345.721985][T18404]  </TASK>
[  345.752098][T18405] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5274'.
[  346.029311][T18419] random: crng reseeded on system resumption
[  346.091681][T18424] loop1: detected capacity change from 0 to 512
[  346.102285][T18425] Restarting kernel threads ...
[  346.107643][T18425] Done restarting kernel threads.
[  346.115608][T18424] EXT4-fs (loop1): too many log groups per flexible block group
[  346.123672][T18424] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  346.130497][T18424] EXT4-fs (loop1): mount failed
[  346.225604][T18442] netlink: 260 bytes leftover after parsing attributes in process `syz.1.5288'.
[  346.235856][T18440] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  346.245741][T18442] loop1: detected capacity change from 0 to 1024
[  346.252372][T18442] EXT4-fs: Ignoring removed orlov option
[  346.258780][T18440] SELinux: failed to load policy
[  346.280302][T18442] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.297606][T18429] lo speed is unknown, defaulting to 1000
[  346.361294][T18451] syz!: rxe_newlink: already configured on team_slave_0
[  346.386140][T18448] ªªªªªªÿÿòÿÿÿòÿÿ: renamed from wg2
[  346.462662][T18442] ==================================================================
[  346.470808][T18442] BUG: KCSAN: data-race in filemap_read / filemap_read
[  346.477702][T18442] 
[  346.480055][T18442] write to 0xffff8881037c2ca8 of 8 bytes by task 18450 on cpu 0:
[  346.487802][T18442]  filemap_read+0x974/0xa00
[  346.492336][T18442]  generic_file_read_iter+0x79/0x330
[  346.497678][T18442]  ext4_file_read_iter+0x1cc/0x290
[  346.502941][T18442]  copy_splice_read+0x43f/0x660
[  346.507828][T18442]  splice_direct_to_actor+0x290/0x680
[  346.513237][T18442]  do_splice_direct+0xda/0x150
[  346.518116][T18442]  do_sendfile+0x380/0x650
[  346.522838][T18442]  __x64_sys_sendfile64+0x105/0x150
[  346.528112][T18442]  x64_sys_call+0x2bb0/0x2ff0
[  346.532826][T18442]  do_syscall_64+0xd2/0x200
[  346.537373][T18442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.543304][T18442] 
[  346.545647][T18442] read to 0xffff8881037c2ca8 of 8 bytes by task 18442 on cpu 1:
[  346.553387][T18442]  filemap_read+0x6f/0xa00
[  346.557836][T18442]  generic_file_read_iter+0x79/0x330
[  346.563158][T18442]  ext4_file_read_iter+0x1cc/0x290
[  346.568318][T18442]  copy_splice_read+0x43f/0x660
[  346.573212][T18442]  splice_direct_to_actor+0x290/0x680
[  346.578636][T18442]  do_splice_direct+0xda/0x150
[  346.583447][T18442]  do_sendfile+0x380/0x650
[  346.587988][T18442]  __x64_sys_sendfile64+0x105/0x150
[  346.593306][T18442]  x64_sys_call+0x2bb0/0x2ff0
[  346.598176][T18442]  do_syscall_64+0xd2/0x200
[  346.602728][T18442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.608659][T18442] 
[  346.610993][T18442] value changed: 0x000000000000020b -> 0x000000000000020c
[  346.618131][T18442] 
[  346.620490][T18442] Reported by Kernel Concurrency Sanitizer on:
[  346.627090][T18442] CPU: 1 UID: 0 PID: 18442 Comm: syz.1.5288 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  346.638564][T18442] Tainted: [W]=WARN
[  346.642457][T18442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  346.652610][T18442] ==================================================================
[  346.699475][T11210] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz-executor: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  346.718825][T11210] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz-executor: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  346.746442][T11210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.999444][ T3734] bridge_slave_1: left allmulticast mode
[  347.005376][ T3734] bridge_slave_1: left promiscuous mode
[  347.011266][ T3734] bridge0: port 2(bridge_slave_1) entered disabled state
[  347.021533][ T3734] bridge_slave_0: left allmulticast mode
[  347.027551][ T3734] bridge_slave_0: left promiscuous mode
[  347.033243][ T3734] bridge0: port 1(bridge_slave_0) entered disabled state
[  347.061678][ T3734] team0: Port device geneve1 removed
[  347.096004][ T3734] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  347.105765][ T3734] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  347.117154][ T3734] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  347.125885][ T3734] bond0 (unregistering): Released all slaves
[  347.137362][ T3734] bond1 (unregistering): Released all slaves
[  347.146257][ T3734] bond2 (unregistering): Released all slaves
[  347.203475][ T3734] tipc: Disabling bearer <udp:syz2>
[  347.208795][ T3734] tipc: Left network mode
[  347.240342][ T3734] hsr_slave_0: left promiscuous mode
[  347.246358][ T3734] hsr_slave_1: left promiscuous mode
[  347.252024][ T3734] batman_adv: batadv0: Removing interface: batadv_slave_0
[  347.263352][ T3734] batman_adv: batadv0: Removing interface: batadv_slave_1
[  347.270861][ T3734] batman_adv: batadv0: Removing interface: veth1_vlan
[  347.311343][ T3734] team0 (unregistering): Port device team_slave_1 removed