last executing test programs:

10.691949728s ago: executing program 1 (id=1808):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000740)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x4}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x22eab4885749f94f}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x50}, 0x1, 0x0, 0x0, 0x24000040}, 0x80)

10.56032102s ago: executing program 1 (id=1810):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)

9.671327903s ago: executing program 1 (id=1818):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000002000000b705000008000000850000006900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000400)={r1, 0x0, 0x0}, 0x10)

9.305537959s ago: executing program 1 (id=1824):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x2200054, &(0x7f0000000000), 0x1, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
syz_clone3(&(0x7f0000000300)={0x136820100, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, 0x0}, 0x58)

8.531713021s ago: executing program 1 (id=1835):
getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$unix(0x1, 0x5, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x3, 0x0, @remote}, 0x1c)
sendmmsg$unix(r3, 0x0, 0x0, 0x4008890)

8.320588084s ago: executing program 1 (id=1837):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000380001072abd70800000000005"], 0x14}, 0x1, 0x0, 0x0, 0x10004891}, 0x10)

8.320240024s ago: executing program 32 (id=1837):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000380001072abd70800000000005"], 0x14}, 0x1, 0x0, 0x0, 0x10004891}, 0x10)

4.785108398s ago: executing program 0 (id=1876):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x1c}}, 0x20000086)
bind$can_j1939(r1, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000000)=0x1, 0x4)
sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)=[{0x0}], 0x1}, 0x4048081)
setsockopt$SO_J1939_FILTER(r1, 0x6b, 0x1, &(0x7f0000000100)=[{0x2, 0x3, {0x1, 0xff, 0x3}, {0x1, 0xff, 0x2}, 0xff, 0x2}], 0x20)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x74, 0x0, {0xfffd, 0xffeb}, {0x1, 0x1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4012}, 0x850)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)

3.812888702s ago: executing program 0 (id=1884):
prctl$PR_SET_NAME(0xf, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x8040, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x4, 0x0, 0x0, "ff00f7000000000000000000af88008300"})
r1 = syz_open_pts(r0, 0x141601)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
write(r1, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000080)={0x8, 0x20000000, 0xfffffffc, 0x7fffffd, 0x5, "682341f2fd71a6a76177920ea7e60c0ac7a4a5"})

2.67230324s ago: executing program 0 (id=1893):
connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000040))
syz_open_dev$usbmon(&(0x7f00000005c0), 0x9, 0x1cd002)

2.551963631s ago: executing program 5 (id=1896):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_genetlink_get_family_id$devlink(&(0x7f0000001ac0), 0xffffffffffffffff)

2.076097499s ago: executing program 2 (id=1898):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
ioctl$int_in(r0, 0x5452, &(0x7f0000000080)=0x1)
sendto$inet6(r0, 0x0, 0x0, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x396, @empty}, 0x1c)

1.934703031s ago: executing program 2 (id=1901):
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000380)={[{@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x7}}, {@dioread_nolock}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7fffffff}}]}, 0x3, 0x4de, &(0x7f0000000c40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r0, 0x0, 0x5b0)

1.807708813s ago: executing program 0 (id=1904):
r0 = socket(0x840000000002, 0x3, 0xff)
io_setup(0x4, &(0x7f0000000100)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0xfffc, r0, 0x0, 0x0, 0x0, 0x0, 0x2}])
sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f00000001c0)={0x2, 0x0, @remote}, 0x10, &(0x7f00000002c0)=[{&(0x7f0000000240)="a905000000007464000100000000000000e5c06417e436a106993e1e5ad8311dabcd25ca", 0x2c}], 0x1}}], 0x1, 0x40000)

1.748416544s ago: executing program 2 (id=1906):
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0xfffffffd)
execve(&(0x7f0000000000)='./file2\x00', 0x0, 0x0)
r2 = openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = add_key$user(&(0x7f0000000000), &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000080)="01", 0x1, 0xffffffffffffffff)
r4 = add_key$user(&(0x7f0000000040), &(0x7f0000001180)={'syz', 0x3}, &(0x7f00000000c0)="2538a31458875a3834", 0x9, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000001340)={r3, 0x0, r4}, &(0x7f0000000180)=""/4093, 0xffd, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x0, 0x5, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x34f0a87871305eb2}, 0x9c)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000001580)={0x0, @in={{0x2, 0x0, @empty}}}, &(0x7f0000000540)=0x9c)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={<r6=>0xffffffffffffffff})
close_range(r6, r6, 0x2)
r7 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000001200)={'gre0\x00', @link_local})
bind$netlink(r1, 0x0, 0x0)
fchdir(r2)
fcntl$getownex(r0, 0x10, &(0x7f0000000300)={0x0, <r8=>0x0})
syz_open_procfs(r8, &(0x7f0000000340)='ns\x00')
mount(&(0x7f0000000000), &(0x7f0000000280)='./cgroup\x00', 0x0, 0x75809, 0x0)

1.736010364s ago: executing program 3 (id=1908):
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r2, 0x0)
connect$unix(r1, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r2, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

1.715013435s ago: executing program 0 (id=1909):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x66960000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
clock_gettime(0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
gettid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r3, &(0x7f0000000440), 0x6f5, 0x2, &(0x7f0000000480)={0x77359400})
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)

1.532572557s ago: executing program 5 (id=1910):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000a80)={{0x2, 0xffff, @private=0xa010100}, {0x0, @local}, 0x0, {0x2, 0x4e23, @multicast1}, 'wg1\x00'})
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r2, &(0x7f0000000040)=[{&(0x7f0000000340)=""/240, 0xf0}], 0x1, 0x2, 0xffffffff)

1.36715498s ago: executing program 2 (id=1911):
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2b, 0x0, 0x0)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x2d}, 0x4e20, 0x3, 'wrr\x00', 0x1, 0x2, 0x6e}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r5, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'lc\x00', 0x7, 0x5, 0x77}, {@private=0xa010101, 0x4e23, 0x1, 0xcd, 0x12d5f, 0x3}}, 0x44)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, 0x0, &(0x7f0000000040))
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, 0x0, 0x0)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r6, 0x0, 0x487, &(0x7f0000000580)={{0x84, @loopback, 0x4e24, 0x3, 'rr\x00', 0x2, 0x4, 0x7e}, {@private=0xa010102, 0x4e23, 0x10000, 0x1000, 0x80012d5a, 0x12d5c}}, 0x44)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="0c000000fe0001"], 0x408100)

1.31257137s ago: executing program 5 (id=1912):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r1 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x9, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
mq_open(&(0x7f0000000780)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\x00\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x1, 0x136, 0x0)
sched_setaffinity(0x0, 0x3, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)

751.539269ms ago: executing program 0 (id=1914):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet6(0xa, 0x2, 0x0)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0)

700.62871ms ago: executing program 3 (id=1916):
syz_io_uring_setup(0x10c, &(0x7f00000000c0)={0x0, 0x8006d89, 0x400, 0x2, 0x66}, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000002100010000000000000000000a000000000000000000000008001b"], 0x24}}, 0x0)

657.039531ms ago: executing program 3 (id=1917):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_int(r0, 0x84, 0x71, 0x0, 0x0)

596.915941ms ago: executing program 3 (id=1919):
syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000200)={0xf, {"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", 0x1000}}, 0x1006)

484.553173ms ago: executing program 3 (id=1920):
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_procfs(0x0, &(0x7f0000000140)='net/bnep\x00')
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x2, 0x0, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0xffffffd}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=@newqdisc={0x54, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x24, 0x2, [@TCA_CAKE_OVERHEAD={0x8, 0x6, 0xd2}, @TCA_CAKE_FLOW_MODE={0x8, 0x5, 0x1}, @TCA_CAKE_NAT={0x8, 0xb, 0x1}, @TCA_CAKE_FLOW_MODE={0x8}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x3, 0x7, @loopback, 0x800000}, 0x1c)

456.038023ms ago: executing program 4 (id=1921):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000800), 0x40901)
write$qrtrtun(r0, 0x0, 0x0)

381.811685ms ago: executing program 2 (id=1922):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000a80)={{0x2, 0xffff, @private=0xa010100}, {0x0, @local}, 0x0, {0x2, 0x4e23, @multicast1}, 'wg1\x00'})
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r2, &(0x7f0000000040)=[{&(0x7f0000000340)=""/240, 0xf0}], 0x1, 0x2, 0xffffffff)

252.544366ms ago: executing program 4 (id=1923):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x65)
connect$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xb}, 0x20)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20)

236.280857ms ago: executing program 3 (id=1924):
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f00000004c0)='./file0\x00', 0x80c406, &(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYRESHEX], 0xff, 0x2b1, &(0x7f0000000100)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = io_uring_setup(0xf08, &(0x7f00000008c0)={0x0, 0x56bc, 0x800, 0x20014, 0x3})
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x20, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r4, &(0x7f0000000f80)=""/4096, 0x1000)

172.556488ms ago: executing program 5 (id=1925):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad433ec50000000f00008095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="2c00000013000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="00000000000000000c001a800800058004000880"], 0x2c}}, 0x0)

171.968418ms ago: executing program 4 (id=1926):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000680)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000b00)=@newqdisc={0x48, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x7, 0x8000}}]}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000540)=@newtfilter={0x4c, 0x2c, 0x52f, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, r1, {0x0, 0x4}, {}, {0x8, 0xe}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xf1, 0x4, 0x4}]}}, @TCA_BPF_FLAGS={0x8, 0x8, 0x1}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4c8d0}, 0x14)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

151.546438ms ago: executing program 5 (id=1927):
r0 = socket$inet(0x2, 0x1, 0x100)
setsockopt$sock_int(r0, 0x1, 0x4a, &(0x7f0000000180)=0x6, 0x61)

138.884888ms ago: executing program 4 (id=1928):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, 0x0, &(0x7f0000002e40))

60.573889ms ago: executing program 5 (id=1929):
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000001300)='/proc/timer_list\x00', 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
pipe2$9p(&(0x7f0000000240), 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r0], 0x64}}, 0x0)

60.4381ms ago: executing program 4 (id=1930):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001040)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f00000001c0)={0x30, r0, 0x1, 0x70bd22, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x14, 0x11d, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xf0}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}]}]}, 0x30}}, 0x0)

3.646131ms ago: executing program 2 (id=1931):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r1, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=r1], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0xffffffffffffffdb, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=@newtfilter={0x64, 0x28, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {}, {0x9, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x34, 0x2, [@TCA_CGROUP_ACT={0x30, 0x1, [@m_ct={0x2c, 0x11, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x2}}}}]}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x810}, 0x40040c4)

0s ago: executing program 4 (id=1932):
syz_open_dev$usbmon(&(0x7f00000003c0), 0x5, 0x258680)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xc2354000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r4, 0xfffffffd, 0x0, 0x30, 0x0, @in6={0x1b, 0x0, 0x40000007, @loopback={0x700}}, @ib={0x1b, 0x0, 0x0, {"00fb0700000000f3ff000000009a00"}, 0x4, 0x2, 0x2}}}, 0x118)
write$RDMA_USER_CM_CMD_LISTEN(r3, 0x0, 0x0)
close(r3)
setuid(0xee01)
syz_io_uring_setup(0x109, 0x0, 0x0, &(0x7f0000000080))
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x33, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x1d, 0x2, 0x106)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x191002, 0x0)

kernel console output (not intermixed with test programs):

entered allmulticast mode
[  138.524644][ T7960] Alternate GPT is invalid, using primary GPT.
[  138.531151][ T7960]  loop3: p2 p3 p7
[  138.537915][ T7957] macsec1: left allmulticast mode
[  138.543141][ T7957] bridge0: left allmulticast mode
[  138.581349][ T7957] bridge0: left promiscuous mode
[  138.670075][ T7960] loop3: detected capacity change from 0 to 1024
[  138.695098][ T7960] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  138.705044][ T7960] EXT4-fs (loop3): group descriptors corrupted!
[  138.799900][ T3752] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  138.806397][ T7989] 9pnet_fd: Insufficient options for proto=fd
[  138.862637][ T7993] FAULT_INJECTION: forcing a failure.
[  138.862637][ T7993] name failslab, interval 1, probability 0, space 0, times 0
[  138.875334][ T7993] CPU: 0 UID: 0 PID: 7993 Comm: syz.3.1354 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[  138.875412][ T7993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  138.875423][ T7993] Call Trace:
[  138.875429][ T7993]  <TASK>
[  138.875435][ T7993]  __dump_stack+0x1d/0x30
[  138.875455][ T7993]  dump_stack_lvl+0xe8/0x140
[  138.875475][ T7993]  dump_stack+0x15/0x1b
[  138.875491][ T7993]  should_fail_ex+0x265/0x280
[  138.875537][ T7993]  ? ip_ra_control+0xd6/0x2c0
[  138.875560][ T7993]  should_failslab+0x8c/0xb0
[  138.875581][ T7993]  __kmalloc_cache_noprof+0x4c/0x320
[  138.875620][ T7993]  ? __pfx_mrtsock_destruct+0x10/0x10
[  138.875637][ T7993]  ip_ra_control+0xd6/0x2c0
[  138.875657][ T7993]  ? __pfx_mrtsock_destruct+0x10/0x10
[  138.875674][ T7993]  ip_mroute_setsockopt+0x32b/0x960
[  138.875705][ T7993]  do_ip_setsockopt+0xcea/0x2240
[  138.875764][ T7993]  ip_setsockopt+0x58/0x110
[  138.875785][ T7993]  raw_setsockopt+0xbd/0x150
[  138.875814][ T7993]  sock_common_setsockopt+0x69/0x80
[  138.875867][ T7993]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  138.875948][ T7993]  __sys_setsockopt+0x184/0x200
[  138.875978][ T7993]  __x64_sys_setsockopt+0x64/0x80
[  138.876076][ T7993]  x64_sys_call+0x2bd5/0x2fb0
[  138.876115][ T7993]  do_syscall_64+0xd2/0x200
[  138.876133][ T7993]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  138.876156][ T7993]  ? clear_bhb_loop+0x40/0x90
[  138.876174][ T7993]  ? clear_bhb_loop+0x40/0x90
[  138.876199][ T7993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.876240][ T7993] RIP: 0033:0x7f4862fce929
[  138.876256][ T7993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.876271][ T7993] RSP: 002b:00007f4861637038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  138.876287][ T7993] RAX: ffffffffffffffda RBX: 00007f48631f5fa0 RCX: 00007f4862fce929
[  138.876298][ T7993] RDX: 00000000000000c8 RSI: 0000000000000000 RDI: 0000000000000003
[  138.876375][ T7993] RBP: 00007f4861637090 R08: 0000000000000004 R09: 0000000000000000
[  138.876465][ T7993] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[  138.876475][ T7993] R13: 0000000000000000 R14: 00007f48631f5fa0 R15: 00007ffc950d5828
[  138.876491][ T7993]  </TASK>
[  139.158085][ T8001] SELinux: failed to load policy
[  139.218470][ T8012] syz.3.1361: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  139.233062][ T8012] CPU: 1 UID: 0 PID: 8012 Comm: syz.3.1361 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[  139.233092][ T8012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  139.233105][ T8012] Call Trace:
[  139.233111][ T8012]  <TASK>
[  139.233119][ T8012]  __dump_stack+0x1d/0x30
[  139.233137][ T8012]  dump_stack_lvl+0xe8/0x140
[  139.233187][ T8012]  dump_stack+0x15/0x1b
[  139.233204][ T8012]  warn_alloc+0x12b/0x1a0
[  139.233234][ T8012]  ? audit_log_end+0x1d7/0x1f0
[  139.233255][ T8012]  ? audit_log_end+0x1d7/0x1f0
[  139.233342][ T8012]  __vmalloc_node_range_noprof+0x9c/0xe00
[  139.233373][ T8012]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  139.233468][ T8012]  ? __rcu_read_unlock+0x4f/0x70
[  139.233488][ T8012]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  139.233541][ T8012]  ? perf_cgroup_switch+0x138/0x480
[  139.233587][ T8012]  ? update_load_avg+0x1da/0x820
[  139.233612][ T8012]  ? __list_add_valid_or_report+0x38/0xe0
[  139.233700][ T8012]  ? should_fail_ex+0x30/0x280
[  139.233740][ T8012]  ? xskq_create+0x36/0xe0
[  139.233764][ T8012]  vmalloc_user_noprof+0x7d/0xb0
[  139.233912][ T8012]  ? xskq_create+0x80/0xe0
[  139.233951][ T8012]  xskq_create+0x80/0xe0
[  139.234012][ T8012]  xsk_init_queue+0x95/0xf0
[  139.234065][ T8012]  xsk_setsockopt+0x35c/0x510
[  139.234086][ T8012]  ? __pfx_xsk_setsockopt+0x10/0x10
[  139.234106][ T8012]  __sys_setsockopt+0x184/0x200
[  139.234165][ T8012]  __x64_sys_setsockopt+0x64/0x80
[  139.234245][ T8012]  x64_sys_call+0x2bd5/0x2fb0
[  139.234268][ T8012]  do_syscall_64+0xd2/0x200
[  139.234287][ T8012]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  139.234311][ T8012]  ? clear_bhb_loop+0x40/0x90
[  139.234356][ T8012]  ? clear_bhb_loop+0x40/0x90
[  139.234379][ T8012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.234475][ T8012] RIP: 0033:0x7f4862fce929
[  139.234489][ T8012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.234505][ T8012] RSP: 002b:00007f4861637038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  139.234521][ T8012] RAX: ffffffffffffffda RBX: 00007f48631f5fa0 RCX: 00007f4862fce929
[  139.234534][ T8012] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000004
[  139.234547][ T8012] RBP: 00007f4863050b39 R08: 0000000000000004 R09: 0000000000000000
[  139.234563][ T8012] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  139.234583][ T8012] R13: 0000000000000000 R14: 00007f48631f5fa0 R15: 00007ffc950d5828
[  139.234599][ T8012]  </TASK>
[  139.234606][ T8012] Mem-Info:
[  139.474329][ T8025] loop3: detected capacity change from 0 to 512
[  139.479895][ T8012] active_anon:7055 inactive_anon:32 isolated_anon:0
[  139.479895][ T8012]  active_file:6067 inactive_file:5113 isolated_file:0
[  139.479895][ T8012]  unevictable:0 dirty:255 writeback:0
[  139.479895][ T8012]  slab_reclaimable:2984 slab_unreclaimable:13817
[  139.479895][ T8012]  mapped:29270 shmem:199 pagetables:1187
[  139.479895][ T8012]  sec_pagetables:0 bounce:0
[  139.479895][ T8012]  kernel_misc_reclaimable:0
[  139.479895][ T8012]  free:1755693 free_pcp:78690 free_cma:0
[  139.537193][ T8012] Node 0 active_anon:28220kB inactive_anon:128kB active_file:24268kB inactive_file:20452kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:117080kB dirty:1020kB writeback:0kB shmem:796kB writeback_tmp:0kB kernel_stack:3360kB pagetables:4748kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  139.566356][ T8012] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  139.595005][ T8012] lowmem_reserve[]: 0 2882 7860 7860
[  139.600501][ T8012] Node 0 DMA32 free:2947724kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951352kB mlocked:0kB bounce:0kB free_pcp:3628kB local_pcp:3528kB free_cma:0kB
[  139.630803][ T8012] lowmem_reserve[]: 0 0 4978 4978
[  139.635926][ T8012] Node 0 Normal free:4084092kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:28212kB inactive_anon:240kB active_file:24268kB inactive_file:20340kB unevictable:0kB writepending:1084kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:314076kB local_pcp:122572kB free_cma:0kB
[  139.668424][ T8012] lowmem_reserve[]: 0 0 0 0
[  139.673165][ T8012] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  139.686038][ T8012] Node 0 DMA32: 3*4kB (M) 2*8kB (M) 3*16kB (M) 2*32kB (M) 4*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947724kB
[  139.702308][ T8012] Node 0 Normal: 802*4kB (UE) 601*8kB (UME) 386*16kB (UME) 359*32kB (UME) 177*64kB (UME) 124*128kB (UME) 248*256kB (UME) 169*512kB (UM) 222*1024kB (UME) 10*2048kB (UME) 887*4096kB (UM) = 4083856kB
[  139.721755][ T8012] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  139.731078][ T8012] 8501 total pagecache pages
[  139.735671][ T8012] 0 pages in swap cache
[  139.739845][ T8012] Free swap  = 124996kB
[  139.743998][ T8012] Total swap = 124996kB
[  139.748171][ T8012] 2097051 pages RAM
[  139.751967][ T8012] 0 pages HighMem/MovableOnly
[  139.756742][ T8012] 80813 pages reserved
[  139.790066][ T8025] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.805587][ T8027] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1365'.
[  139.816028][ T8025] ext4 filesystem being mounted at /290/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.930339][ T8019] mmap: syz.3.1361 (8019) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  139.980007][ T8042] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1369'.
[  140.003254][ T8042] batadv1: entered promiscuous mode
[  140.008531][ T8042] batadv1: entered allmulticast mode
[  140.031028][   T51] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  140.166138][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.365602][ T8049] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1372'.
[  140.374638][ T8049] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1372'.
[  140.383705][ T8049] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1372'.
[  140.399604][ T8049] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1372'.
[  140.416644][ T8063] bridge0: entered promiscuous mode
[  140.422111][ T8063] macsec1: entered promiscuous mode
[  140.448250][ T8063] bridge0: port 3(macsec1) entered blocking state
[  140.454729][ T8063] bridge0: port 3(macsec1) entered disabled state
[  140.461864][ T8063] macsec1: entered allmulticast mode
[  140.467223][ T8063] bridge0: entered allmulticast mode
[  140.481707][ T8063] macsec1: left allmulticast mode
[  140.486802][ T8063] bridge0: left allmulticast mode
[  140.495321][ T8064] hub 8-0:1.0: USB hub found
[  140.500019][ T8064] hub 8-0:1.0: 8 ports detected
[  140.509201][ T8064] SELinux: syz.3.1370 (8064) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  140.547584][ T8063] bridge0: left promiscuous mode
[  140.615864][ T8063] 9pnet_fd: Insufficient options for proto=fd
[  140.639096][ T8071] 9pnet: Could not find request transport: f
[  141.135821][ T8106] loop4: detected capacity change from 0 to 1024
[  141.185614][ T8106] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.360666][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.888291][   T31] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  141.970605][ T8137] 9pnet: Could not find request transport: f
[  142.687081][ T8147] loop2: detected capacity change from 0 to 1024
[  142.720439][ T8147] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.840873][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.945311][ T8160] bridge0: entered promiscuous mode
[  142.976959][ T8160] macsec1: entered promiscuous mode
[  143.009270][ T8160] bridge0: port 3(macsec1) entered blocking state
[  143.015862][ T8160] bridge0: port 3(macsec1) entered disabled state
[  143.048485][ T8160] macsec1: entered allmulticast mode
[  143.053870][ T8160] bridge0: entered allmulticast mode
[  143.083865][ T8160] macsec1: left allmulticast mode
[  143.088986][ T8160] bridge0: left allmulticast mode
[  143.138171][   T29] kauditd_printk_skb: 306 callbacks suppressed
[  143.138183][   T29] audit: type=1326 audit(1751571868.574:14782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8159 comm="syz.4.1404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e7cae929 code=0x7ffc0000
[  143.227076][   T29] audit: type=1326 audit(1751571868.604:14783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8159 comm="syz.4.1404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19e7cae929 code=0x7ffc0000
[  143.250755][   T29] audit: type=1326 audit(1751571868.604:14784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8159 comm="syz.4.1404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e7cae929 code=0x7ffc0000
[  143.274372][   T29] audit: type=1326 audit(1751571868.604:14785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8159 comm="syz.4.1404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e7cae929 code=0x7ffc0000
[  143.298053][   T29] audit: type=1326 audit(1751571868.614:14786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8159 comm="syz.4.1404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19e7cae929 code=0x7ffc0000
[  143.321525][   T29] audit: type=1326 audit(1751571868.614:14787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8159 comm="syz.4.1404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e7cae929 code=0x7ffc0000
[  143.345058][   T29] audit: type=1326 audit(1751571868.614:14788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8159 comm="syz.4.1404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19e7cae929 code=0x7ffc0000
[  143.383970][ T8163] 9pnet_fd: Insufficient options for proto=fd
[  143.500059][ T8160] bridge0: left promiscuous mode
[  143.583530][   T29] audit: type=1326 audit(1751571869.014:14789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8159 comm="syz.4.1404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e7cae929 code=0x7ffc0000
[  143.632800][   T29] audit: type=1326 audit(1751571869.014:14790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8159 comm="syz.4.1404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e7cae929 code=0x7ffc0000
[  143.656567][   T29] audit: type=1326 audit(1751571869.044:14791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8157 comm="syz.2.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7cb62e929 code=0x7ffc0000
[  143.684241][ T8173] bridge0: entered promiscuous mode
[  143.695751][ T8173] macsec1: entered promiscuous mode
[  143.707463][ T8173] bridge0: port 3(macsec1) entered blocking state
[  143.714064][ T8173] bridge0: port 3(macsec1) entered disabled state
[  143.741042][ T8173] macsec1: entered allmulticast mode
[  143.746434][ T8173] bridge0: entered allmulticast mode
[  143.761049][ T8176] loop3: detected capacity change from 0 to 512
[  143.767765][ T8176] EXT4-fs: Ignoring removed nomblk_io_submit option
[  143.774697][ T8173] macsec1: left allmulticast mode
[  143.779846][ T8173] bridge0: left allmulticast mode
[  143.801832][ T8176] EXT4-fs: Ignoring removed mblk_io_submit option
[  143.813592][ T8173] bridge0: left promiscuous mode
[  143.821796][ T8185] 9pnet_fd: Insufficient options for proto=fd
[  143.830120][ T8185] loop1: detected capacity change from 0 to 128
[  143.836793][ T8176] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  143.848623][ T8187] netlink: 'syz.2.1411': attribute type 4 has an invalid length.
[  143.849629][ T8176] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  143.874954][ T8185] EXT4-fs: Ignoring removed nobh option
[  143.890140][ T8194] loop2: detected capacity change from 0 to 1024
[  143.897293][ T8176] EXT4-fs (loop3): 1 truncate cleaned up
[  143.903790][ T8176] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.917512][ T8185] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  143.938533][ T8185] ext4 filesystem being mounted at /266/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  143.949062][   T31] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  143.968436][ T8194] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.972206][ T8185] __nla_validate_parse: 11 callbacks suppressed
[  143.972220][ T8185] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1410'.
[  144.022883][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.039349][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.086377][ T8203] loop2: detected capacity change from 0 to 512
[  144.121046][ T8203] binfmt_misc: register: failed to install interpreter file ./file2
[  144.146137][ T8203] loop2: detected capacity change from 0 to 1024
[  144.153539][ T8205] loop3: detected capacity change from 0 to 512
[  144.157377][ T8203] ext4: Bad value for 'min_batch_time'
[  144.186569][ T8205] binfmt_misc: register: failed to install interpreter file ./file2
[  144.215168][ T8207] loop2: detected capacity change from 0 to 2048
[  144.221632][ T8205] loop3: detected capacity change from 0 to 1024
[  144.238215][ T8205] ext4: Bad value for 'min_batch_time'
[  144.244395][ T8207] EXT4-fs (loop2): failed to initialize system zone (-117)
[  144.251897][ T8207] EXT4-fs (loop2): mount failed
[  144.561621][ T8229] bridge0: entered promiscuous mode
[  144.585301][ T8229] macsec1: entered promiscuous mode
[  144.611519][ T8229] bridge0: port 3(macsec1) entered blocking state
[  144.618174][ T8229] bridge0: port 3(macsec1) entered disabled state
[  144.701946][ T8229] macsec1: entered allmulticast mode
[  144.707370][ T8229] bridge0: entered allmulticast mode
[  144.764616][ T8229] macsec1: left allmulticast mode
[  144.769913][ T8229] bridge0: left allmulticast mode
[  144.835052][ T8231] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  144.875755][ T8229] bridge0: left promiscuous mode
[  144.980285][ T8238] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  145.059499][ T8231] 9pnet_fd: Insufficient options for proto=fd
[  145.158516][ T8244] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1425'.
[  145.167596][ T8244] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1425'.
[  145.176625][ T8244] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1425'.
[  145.190281][ T8244] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1425'.
[  145.190929][ T3306] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  145.248603][ T8252] FAULT_INJECTION: forcing a failure.
[  145.248603][ T8252] name failslab, interval 1, probability 0, space 0, times 0
[  145.249049][ T8251] 9pnet_fd: Insufficient options for proto=fd
[  145.261235][ T8252] CPU: 1 UID: 0 PID: 8252 Comm: syz.3.1428 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[  145.261267][ T8252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  145.261277][ T8252] Call Trace:
[  145.261283][ T8252]  <TASK>
[  145.261290][ T8252]  __dump_stack+0x1d/0x30
[  145.261312][ T8252]  dump_stack_lvl+0xe8/0x140
[  145.261332][ T8252]  dump_stack+0x15/0x1b
[  145.261418][ T8252]  should_fail_ex+0x265/0x280
[  145.261467][ T8252]  ? ip_ra_control+0xd6/0x2c0
[  145.261590][ T8252]  should_failslab+0x8c/0xb0
[  145.261612][ T8252]  __kmalloc_cache_noprof+0x4c/0x320
[  145.261638][ T8252]  ? __pfx_mrtsock_destruct+0x10/0x10
[  145.261658][ T8252]  ip_ra_control+0xd6/0x2c0
[  145.261728][ T8252]  ? __pfx_mrtsock_destruct+0x10/0x10
[  145.261747][ T8252]  ip_mroute_setsockopt+0x32b/0x960
[  145.261772][ T8252]  do_ip_setsockopt+0xcea/0x2240
[  145.261801][ T8252]  ip_setsockopt+0x58/0x110
[  145.261902][ T8252]  raw_setsockopt+0xbd/0x150
[  145.261973][ T8252]  sock_common_setsockopt+0x69/0x80
[  145.261997][ T8252]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  145.262021][ T8252]  __sys_setsockopt+0x184/0x200
[  145.262052][ T8252]  __x64_sys_setsockopt+0x64/0x80
[  145.262105][ T8252]  x64_sys_call+0x2bd5/0x2fb0
[  145.262125][ T8252]  do_syscall_64+0xd2/0x200
[  145.262142][ T8252]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  145.262205][ T8252]  ? clear_bhb_loop+0x40/0x90
[  145.262229][ T8252]  ? clear_bhb_loop+0x40/0x90
[  145.262249][ T8252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.262268][ T8252] RIP: 0033:0x7f4862fce929
[  145.262283][ T8252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.262333][ T8252] RSP: 002b:00007f4861637038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  145.262400][ T8252] RAX: ffffffffffffffda RBX: 00007f48631f5fa0 RCX: 00007f4862fce929
[  145.262412][ T8252] RDX: 00000000000000c8 RSI: 0000000000000000 RDI: 0000000000000004
[  145.262424][ T8252] RBP: 00007f4861637090 R08: 0000000000000004 R09: 0000000000000000
[  145.262436][ T8252] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[  145.262448][ T8252] R13: 0000000000000000 R14: 00007f48631f5fa0 R15: 00007ffc950d5828
[  145.262466][ T8252]  </TASK>
[  145.390829][ T8246] loop4: detected capacity change from 0 to 512
[  145.404439][ T8261] loop1: detected capacity change from 0 to 128
[  145.441340][ T8246] EXT4-fs: dax option not supported
[  145.468186][ T8261] EXT4-fs: Ignoring removed nobh option
[  145.506886][ T8246] netlink: 'syz.4.1427': attribute type 1 has an invalid length.
[  145.521589][ T8246] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1427'.
[  145.560825][ T8261] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  145.568888][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.574142][ T8269] loop2: detected capacity change from 0 to 2048
[  145.580270][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.594041][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.597169][ T8261] ext4 filesystem being mounted at /267/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  145.606549][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.619119][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.626497][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.633914][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.641342][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.643953][ T8269] EXT4-fs (loop2): failed to initialize system zone (-117)
[  145.648871][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.648893][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.648912][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.648930][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.648951][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.677483][ T8269] EXT4-fs (loop2): mount failed
[  145.678368][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.708713][ T8274] SELinux:  Context system_u:object_r:utempter_exec_t:s0 is not valid (left unmapped).
[  145.722651][ T8251] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1426'.
[  145.731878][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.739314][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.746710][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.754138][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.761667][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.769078][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.776463][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.783858][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.791299][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.798694][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.798738][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.798805][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.798845][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.798867][ T3517] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  145.848914][ T8276] loop2: detected capacity change from 0 to 512
[  145.855555][ T3517] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v8.00 Device [syz1] on syz0
[  145.856604][ T3306] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  145.884565][ T8276] binfmt_misc: register: failed to install interpreter file ./file2
[  145.920880][ T8276] loop2: detected capacity change from 0 to 1024
[  145.956760][ T8277] fido_id[8277]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  145.957184][ T8276] ext4: Bad value for 'min_batch_time'
[  146.015027][ T8287] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1440'.
[  146.061908][ T8287] batadv1: entered promiscuous mode
[  146.067265][ T8287] batadv1: entered allmulticast mode
[  146.148269][ T8246] loop4: detected capacity change from 0 to 1024
[  146.158154][ T8246] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  146.169074][ T8246] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  146.183118][ T8246] JBD2: no valid journal superblock found
[  146.188957][ T8246] EXT4-fs (loop4): Could not load journal inode
[  146.234365][ T8305] bond0: entered promiscuous mode
[  146.239530][ T8305] bond0: entered allmulticast mode
[  146.261236][ T8305] 8021q: adding VLAN 0 to HW filter on device bond0
[  146.289438][ T8305] bond0 (unregistering): Released all slaves
[  146.326454][ T8301] bond1: entered promiscuous mode
[  146.331589][ T8301] bond1: entered allmulticast mode
[  146.344224][ T8301] 8021q: adding VLAN 0 to HW filter on device bond1
[  146.360301][ T8305] loop2: detected capacity change from 0 to 1024
[  146.415904][ T8322] loop0: detected capacity change from 0 to 1024
[  146.451353][ T8301] bond1 (unregistering): Released all slaves
[  146.480399][ T8324] loop4: detected capacity change from 0 to 512
[  146.489366][ T8324] binfmt_misc: register: failed to install interpreter file ./file2
[  146.512539][ T8324] loop4: detected capacity change from 0 to 1024
[  146.531352][ T8324] ext4: Bad value for 'min_batch_time'
[  146.588409][ T8328] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1453'.
[  146.658098][ T8328] x_tables: ip_tables: udp match: only valid for protocol 17
[  147.001389][ T8348] bridge0: entered promiscuous mode
[  147.018448][ T8348] macsec1: entered promiscuous mode
[  147.024543][ T8348] bridge0: port 3(macsec1) entered blocking state
[  147.031297][ T8348] bridge0: port 3(macsec1) entered disabled state
[  147.038781][ T8348] macsec1: entered allmulticast mode
[  147.044237][ T8348] bridge0: entered allmulticast mode
[  147.058734][ T8348] macsec1: left allmulticast mode
[  147.063884][ T8348] bridge0: left allmulticast mode
[  147.073469][ T8348] bridge0: left promiscuous mode
[  147.104428][ T8350] netlink: 'syz.0.1458': attribute type 4 has an invalid length.
[  147.200982][ T4511] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  147.289412][ T8368] loop1: detected capacity change from 0 to 2048
[  147.369892][ T8368] EXT4-fs (loop1): failed to initialize system zone (-117)
[  147.429654][ T8368] EXT4-fs (loop1): mount failed
[  147.522833][ T8380] netlink: 148 bytes leftover after parsing attributes in process `syz.1.1468'.
[  147.532139][ T8380] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  147.669447][ T8389] loop1: detected capacity change from 0 to 2048
[  147.694017][ T8389] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.710541][ T8389] EXT4-fs (loop1): shut down requested (0)
[  147.717326][ T8389] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  147.726394][ T8389] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  147.736090][ T8389] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  147.744931][ T8389] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  147.754549][ T8389] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  147.764992][ T8389] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  147.774623][ T8389] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  147.859182][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.024603][ T8413] 9pnet: Could not find request transport: f
[  148.099912][ T8423] loop1: detected capacity change from 0 to 2048
[  148.107533][ T8426] netlink: 'syz.4.1485': attribute type 4 has an invalid length.
[  148.174271][ T8423] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.193915][ T8423] EXT4-fs (loop1): shut down requested (0)
[  148.210835][ T8423] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  148.219828][ T8423] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  148.228976][ T8423] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  148.237798][ T8423] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  148.246638][ T8423] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  148.255630][ T8423] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  148.264476][ T8423] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  148.284684][   T29] kauditd_printk_skb: 5427 callbacks suppressed
[  148.284697][   T29] audit: type=1326 audit(1751571873.714:20213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8441 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4862fce929 code=0x7ffc0000
[  148.314596][   T29] audit: type=1326 audit(1751571873.714:20214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8441 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4862fce929 code=0x7ffc0000
[  148.340181][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.378827][   T29] audit: type=1326 audit(1751571873.714:20215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8441 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4862fce929 code=0x7ffc0000
[  148.402406][   T29] audit: type=1326 audit(1751571873.714:20216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8441 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4862fce929 code=0x7ffc0000
[  148.425894][   T29] audit: type=1326 audit(1751571873.714:20217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8441 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4862fce929 code=0x7ffc0000
[  148.449508][   T29] audit: type=1326 audit(1751571873.714:20218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8441 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4862fce929 code=0x7ffc0000
[  148.473285][   T29] audit: type=1326 audit(1751571873.714:20219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8443 comm="syz.4.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e7cae929 code=0x7ffc0000
[  148.496795][   T29] audit: type=1326 audit(1751571873.714:20220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8443 comm="syz.4.1491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e7cae929 code=0x7ffc0000
[  148.520306][   T29] audit: type=1326 audit(1751571873.714:20221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8441 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f4862fce929 code=0x7ffc0000
[  148.543822][   T29] audit: type=1326 audit(1751571873.714:20222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8441 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4862fce929 code=0x7ffc0000
[  148.572783][ T8454] openvswitch: netlink: Message has 6 unknown bytes.
[  148.611424][ T8459] x_tables: ip_tables: udp match: only valid for protocol 17
[  148.716046][ T8457] netlink: 'syz.3.1497': attribute type 4 has an invalid length.
[  148.822093][ T8475] loop0: detected capacity change from 0 to 2048
[  148.863877][ T8475] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.878445][ T8481] loop4: detected capacity change from 0 to 1024
[  148.896700][ T8475] EXT4-fs (loop0): shut down requested (0)
[  148.910678][ T8481] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.925100][ T8475] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  148.933948][ T8475] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  148.952970][ T8475] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  148.968125][ T8475] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  148.977456][ T8475] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  148.986376][ T8475] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  148.995408][ T8475] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  148.996342][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.034442][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.063354][ T8490] __nla_validate_parse: 12 callbacks suppressed
[  149.063369][ T8490] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1509'.
[  149.101153][ T8490] batadv1: entered promiscuous mode
[  149.106441][ T8490] batadv1: entered allmulticast mode
[  149.130217][ T8496] bridge0: entered promiscuous mode
[  149.136662][ T8496] bridge0: port 3(macsec1) entered blocking state
[  149.143357][ T8496] bridge0: port 3(macsec1) entered disabled state
[  149.150369][ T8496] macsec1: entered allmulticast mode
[  149.155732][ T8496] bridge0: entered allmulticast mode
[  149.169793][ T8499] 9pnet_fd: Insufficient options for proto=fd
[  149.169995][ T8496] macsec1: left allmulticast mode
[  149.180942][ T8496] bridge0: left allmulticast mode
[  149.181055][ T8499] loop2: detected capacity change from 0 to 128
[  149.192482][ T8496] bridge0: left promiscuous mode
[  149.207270][ T8499] EXT4-fs: Ignoring removed nobh option
[  149.220237][ T8501] openvswitch: netlink: Message has 6 unknown bytes.
[  149.234400][ T8499] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  149.246920][ T8499] ext4 filesystem being mounted at /318/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  149.262626][ T8499] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1512'.
[  149.375355][ T8518] loop3: detected capacity change from 0 to 1024
[  149.386697][ T8515] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1518'.
[  149.395754][ T8515] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1518'.
[  149.404799][ T8515] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1518'.
[  149.416717][ T3305] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  149.417022][ T8518] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.429689][ T8515] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1518'.
[  149.479523][ T8529] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1523'.
[  149.491389][ T8529] batadv1: entered promiscuous mode
[  149.496602][ T8529] batadv1: entered allmulticast mode
[  149.514568][ T8530] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1521'.
[  149.575655][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.586975][ T8530] loop2: detected capacity change from 0 to 2048
[  149.610753][ T8530] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.638597][ T8542] bridge0: entered promiscuous mode
[  149.645102][ T8542] bridge0: port 3(macsec1) entered blocking state
[  149.651617][ T8542] bridge0: port 3(macsec1) entered disabled state
[  149.659334][ T8530] EXT4-fs (loop2): shut down requested (0)
[  149.669856][ T8538] syz.3.1526: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  149.684459][ T8538] CPU: 0 UID: 0 PID: 8538 Comm: syz.3.1526 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[  149.684543][ T8538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  149.684556][ T8538] Call Trace:
[  149.684563][ T8538]  <TASK>
[  149.684571][ T8538]  __dump_stack+0x1d/0x30
[  149.684594][ T8538]  dump_stack_lvl+0xe8/0x140
[  149.684614][ T8538]  dump_stack+0x15/0x1b
[  149.684643][ T8538]  warn_alloc+0x12b/0x1a0
[  149.684674][ T8538]  ? update_curr+0x27f/0x320
[  149.684745][ T8538]  __vmalloc_node_range_noprof+0x9c/0xe00
[  149.684778][ T8538]  ? probe_sched_wakeup+0x85/0xa0
[  149.684805][ T8538]  ? ttwu_do_activate+0x1cf/0x210
[  149.684883][ T8538]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  149.684909][ T8538]  ? __rcu_read_unlock+0x4f/0x70
[  149.684938][ T8538]  ? avc_has_perm_noaudit+0x1b1/0x200
[  149.685018][ T8538]  ? should_fail_ex+0x30/0x280
[  149.685049][ T8538]  ? xskq_create+0x36/0xe0
[  149.685073][ T8538]  vmalloc_user_noprof+0x7d/0xb0
[  149.685130][ T8538]  ? xskq_create+0x80/0xe0
[  149.685152][ T8538]  xskq_create+0x80/0xe0
[  149.685175][ T8538]  xsk_init_queue+0x95/0xf0
[  149.685260][ T8538]  xsk_setsockopt+0x35c/0x510
[  149.685287][ T8538]  ? __pfx_xsk_setsockopt+0x10/0x10
[  149.685309][ T8538]  __sys_setsockopt+0x184/0x200
[  149.685343][ T8538]  __x64_sys_setsockopt+0x64/0x80
[  149.685449][ T8538]  x64_sys_call+0x2bd5/0x2fb0
[  149.685469][ T8538]  do_syscall_64+0xd2/0x200
[  149.685508][ T8538]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  149.685565][ T8538]  ? clear_bhb_loop+0x40/0x90
[  149.685586][ T8538]  ? clear_bhb_loop+0x40/0x90
[  149.685608][ T8538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.685628][ T8538] RIP: 0033:0x7f4862fce929
[  149.685710][ T8538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.685728][ T8538] RSP: 002b:00007f4861637038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  149.685747][ T8538] RAX: ffffffffffffffda RBX: 00007f48631f5fa0 RCX: 00007f4862fce929
[  149.685760][ T8538] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000004
[  149.685772][ T8538] RBP: 00007f4863050b39 R08: 0000000000000004 R09: 0000000000000000
[  149.685782][ T8538] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  149.685792][ T8538] R13: 0000000000000000 R14: 00007f48631f5fa0 R15: 00007ffc950d5828
[  149.685807][ T8538]  </TASK>
[  149.685871][ T8538] Mem-Info:
[  149.801654][ T8542] macsec1: entered allmulticast mode
[  149.805701][ T8538] active_anon:7267 inactive_anon:32 isolated_anon:0
[  149.805701][ T8538]  active_file:5952 inactive_file:2249 isolated_file:0
[  149.805701][ T8538]  unevictable:0 dirty:87 writeback:0
[  149.805701][ T8538]  slab_reclaimable:2989 slab_unreclaimable:13746
[  149.805701][ T8538]  mapped:31265 shmem:420 pagetables:1077
[  149.805701][ T8538]  sec_pagetables:0 bounce:0
[  149.805701][ T8538]  kernel_misc_reclaimable:0
[  149.805701][ T8538]  free:1823113 free_pcp:72314 free_cma:0
[  149.810612][ T8542] bridge0: entered allmulticast mode
[  149.815601][ T8538] Node 0 active_anon:29068kB inactive_anon:128kB active_file:23808kB inactive_file:8996kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:125060kB dirty:348kB writeback:0kB shmem:1680kB writeback_tmp:0kB kernel_stack:3376kB pagetables:4308kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  150.009221][ T8538] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  150.037929][ T8538] lowmem_reserve[]: 0 2882 7860 7860
[  150.043270][ T8538] Node 0 DMA32 free:2947724kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951352kB mlocked:0kB bounce:0kB free_pcp:3628kB local_pcp:100kB free_cma:0kB
[  150.073543][ T8538] lowmem_reserve[]: 0 0 4978 4978
[  150.078639][ T8538] Node 0 Normal free:4377044kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:29300kB inactive_anon:128kB active_file:35176kB inactive_file:8996kB unevictable:0kB writepending:348kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:209720kB local_pcp:101224kB free_cma:0kB
[  150.105688][ T8549] loop3: detected capacity change from 0 to 512
[  150.110866][ T8538] lowmem_reserve[]: 0 0 0 0
[  150.121715][ T8538] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  150.134432][ T8538] Node 0 DMA32: 3*4kB (M) 2*8kB (M) 3*16kB (M) 2*32kB (M) 4*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947724kB
[  150.150716][ T8538] Node 0 Normal: 571*4kB (UE) 583*8kB (UME) 775*16kB (UME) 818*32kB (UME) 635*64kB (UME) 460*128kB (UME) 307*256kB (UME) 230*512kB (UM) 217*1024kB (UME) 94*2048kB (UME) 884*4096kB (UM) = 4376980kB
[  150.170284][ T8538] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  150.179601][ T8538] 8679 total pagecache pages
[  150.184183][ T8538] 4 pages in swap cache
[  150.188347][ T8538] Free swap  = 124988kB
[  150.192497][ T8538] Total swap = 124996kB
[  150.196641][ T8538] 2097051 pages RAM
[  150.200454][ T8538] 0 pages HighMem/MovableOnly
[  150.205209][ T8538] 80813 pages reserved
[  150.208752][ T8540] 9pnet: Could not find request transport: f
[  150.215421][ T8542] macsec1: left allmulticast mode
[  150.220635][ T8542] bridge0: left allmulticast mode
[  150.227467][ T8542] bridge0: left promiscuous mode
[  150.242660][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.254005][ T8549] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.281209][ T8549] ext4 filesystem being mounted at /318/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.322006][ T8557] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1528'.
[  150.368711][ T8523] syz.4.1522 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=1000
[  150.383306][ T8523] CPU: 0 UID: 0 PID: 8523 Comm: syz.4.1522 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[  150.383337][ T8523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  150.383350][ T8523] Call Trace:
[  150.383357][ T8523]  <TASK>
[  150.383436][ T8523]  __dump_stack+0x1d/0x30
[  150.383455][ T8523]  dump_stack_lvl+0xe8/0x140
[  150.383508][ T8523]  dump_stack+0x15/0x1b
[  150.383561][ T8523]  dump_header+0x81/0x220
[  150.383719][ T8523]  oom_kill_process+0x334/0x3f0
[  150.383748][ T8523]  out_of_memory+0x979/0xb80
[  150.383777][ T8523]  try_charge_memcg+0x5e6/0x9e0
[  150.383844][ T8523]  obj_cgroup_charge_pages+0xa6/0x150
[  150.383870][ T8523]  __memcg_kmem_charge_page+0x9f/0x170
[  150.383939][ T8523]  __alloc_frozen_pages_noprof+0x188/0x360
[  150.383969][ T8523]  alloc_pages_mpol+0xb3/0x250
[  150.384002][ T8523]  alloc_pages_noprof+0x90/0x130
[  150.384111][ T8523]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  150.384160][ T8523]  __kvmalloc_node_noprof+0x30f/0x4e0
[  150.384187][ T8523]  ? ip_set_alloc+0x1f/0x30
[  150.384215][ T8523]  ? ip_set_alloc+0x1f/0x30
[  150.384310][ T8523]  ? __kmalloc_cache_noprof+0x189/0x320
[  150.384335][ T8523]  ip_set_alloc+0x1f/0x30
[  150.384412][ T8523]  hash_netiface_create+0x282/0x740
[  150.384519][ T8523]  ? __pfx_hash_netiface_create+0x10/0x10
[  150.384563][ T8523]  ip_set_create+0x3c9/0x960
[  150.384627][ T8523]  ? __nla_parse+0x40/0x60
[  150.384645][ T8523]  nfnetlink_rcv_msg+0x4c6/0x590
[  150.384681][ T8523]  ? selinux_capable+0x1f9/0x270
[  150.384766][ T8523]  netlink_rcv_skb+0x120/0x220
[  150.384799][ T8523]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  150.384869][ T8523]  nfnetlink_rcv+0x16b/0x1690
[  150.384894][ T8523]  ? __kfree_skb+0x109/0x150
[  150.384918][ T8523]  ? nlmon_xmit+0x4f/0x60
[  150.384941][ T8523]  ? consume_skb+0x49/0x150
[  150.384989][ T8523]  ? nlmon_xmit+0x4f/0x60
[  150.385091][ T8523]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  150.385132][ T8523]  ? __dev_queue_xmit+0x11c0/0x1fb0
[  150.385163][ T8523]  ? __dev_queue_xmit+0x182/0x1fb0
[  150.385241][ T8523]  ? trace_event_reg+0xdc/0x170
[  150.385322][ T8523]  ? ref_tracker_free+0x37d/0x3e0
[  150.385429][ T8523]  ? __netlink_deliver_tap+0x4dc/0x500
[  150.385564][ T8523]  netlink_unicast+0x5a1/0x670
[  150.385597][ T8523]  netlink_sendmsg+0x58b/0x6b0
[  150.385652][ T8523]  ? __pfx_netlink_sendmsg+0x10/0x10
[  150.385668][ T8523]  __sock_sendmsg+0x145/0x180
[  150.385694][ T8523]  ____sys_sendmsg+0x31e/0x4e0
[  150.385803][ T8523]  ___sys_sendmsg+0x17b/0x1d0
[  150.385891][ T8523]  __x64_sys_sendmsg+0xd4/0x160
[  150.385922][ T8523]  x64_sys_call+0x2999/0x2fb0
[  150.385955][ T8523]  do_syscall_64+0xd2/0x200
[  150.385974][ T8523]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  150.386012][ T8523]  ? clear_bhb_loop+0x40/0x90
[  150.386129][ T8523]  ? clear_bhb_loop+0x40/0x90
[  150.386148][ T8523]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.386166][ T8523] RIP: 0033:0x7f19e7cae929
[  150.386179][ T8523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.386201][ T8523] RSP: 002b:00007f19e6317038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  150.386222][ T8523] RAX: ffffffffffffffda RBX: 00007f19e7ed5fa0 RCX: 00007f19e7cae929
[  150.386236][ T8523] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000005
[  150.386249][ T8523] RBP: 00007f19e7d30b39 R08: 0000000000000000 R09: 0000000000000000
[  150.386262][ T8523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  150.386274][ T8523] R13: 0000000000000000 R14: 00007f19e7ed5fa0 R15: 00007ffff9430c58
[  150.386291][ T8523]  </TASK>
[  150.386299][ T8523] memory: usage 307200kB, limit 307200kB, failcnt 2270
[  150.455602][ T8557] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1528'.
[  150.457787][ T8523] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  150.499141][ T8562] 9pnet_fd: Insufficient options for proto=fd
[  150.503434][ T8523] kmem: usage 295240kB, limit 9007199254740988kB, failcnt 0
[  150.511681][ T8562] loop0: detected capacity change from 0 to 128
[  150.514352][ T8523] Memory cgroup stats for /syz4
[  150.519433][ T8562] EXT4-fs: Ignoring removed nobh option
[  150.523337][ T8523] :
[  150.555477][ T8562] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  150.574151][ T8523] cache 270336
[  150.590860][ T8562] ext4 filesystem being mounted at /305/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  150.591626][ T8523] rss 11976704
[  150.603946][ T8565] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  150.606560][ T8523] shmem 0
[  150.606569][ T8523] mapped_file 139264
[  150.606623][ T8523] dirty 36864
[  150.606629][ T8523] writeback 0
[  150.606706][ T8523] workingset_refault_anon 348
[  150.606714][ T8523] workingset_refault_file 1129
[  150.606721][ T8523] swap 0
[  150.769276][ T3752] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  150.773930][ T8523] swapcached 0
[  150.872905][ T8523] pgpgin 142496
[  150.872915][ T8523] pgpgout 139506
[  150.879921][ T8523] pgfault 143120
[  150.883443][ T8523] pgmajfault 247
[  150.886963][ T8523] inactive_anon 40960
[  150.891010][ T8523] active_anon 180224
[  150.894878][ T8523] inactive_file 0
[  150.898510][ T8523] active_file 12025856
[  150.902683][ T8523] unevictable 0
[  150.906237][ T8523] hierarchical_memory_limit 314572800
[  150.911612][ T8523] hierarchical_memsw_limit 9223372036854771712
[  150.917737][ T8523] total_cache 270336
[  150.921646][ T8523] total_rss 11976704
[  150.925514][ T8523] total_shmem 0
[  150.929033][ T8523] total_mapped_file 139264
[  150.933431][ T8523] total_dirty 36864
[  150.937238][ T8523] total_writeback 0
[  150.941058][ T8523] total_workingset_refault_anon 348
[  150.946242][ T8523] total_workingset_refault_file 1129
[  150.951606][ T8523] total_swap 0
[  150.954954][ T8523] total_swapcached 0
[  150.958913][ T8523] total_pgpgin 142496
[  150.962893][ T8523] total_pgpgout 139506
[  150.966935][ T8523] total_pgfault 143120
[  150.971002][ T8523] total_pgmajfault 247
[  150.975077][ T8523] total_inactive_anon 40960
[  150.979565][ T8523] total_active_anon 180224
[  150.983978][ T8523] total_inactive_file 0
[  150.988129][ T8523] total_active_file 12025856
[  150.992723][ T8523] total_unevictable 0
[  150.996677][ T8523] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1522,pid=8522,uid=0
[  151.011421][ T8523] Memory cgroup out of memory: Killed process 8523 (syz.4.1522) total-vm:102356kB, anon-rss:12584kB, file-rss:30376kB, shmem-rss:0kB, UID:0 pgtables:164kB oom_score_adj:1000
[  151.276122][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.299104][ T3304] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  151.532573][ T8581] loop4: detected capacity change from 0 to 2048
[  151.560372][ T8581] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.587139][ T8587] loop2: detected capacity change from 0 to 512
[  151.595582][ T8581] EXT4-fs (loop4): shut down requested (0)
[  151.602214][ T8581] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  151.623340][ T8581] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  151.636898][ T8587] binfmt_misc: register: failed to install interpreter file ./file2
[  151.665440][ T8587] loop2: detected capacity change from 0 to 1024
[  151.676023][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.686209][ T8587] ext4: Bad value for 'min_batch_time'
[  152.136352][ T8595] loop0: detected capacity change from 0 to 1024
[  152.166933][ T8597] loop4: detected capacity change from 0 to 2048
[  152.181758][ T8599] batadv0: entered promiscuous mode
[  152.186999][ T8599] batadv0: entered allmulticast mode
[  152.216160][ T8597] EXT4-fs (loop4): failed to initialize system zone (-117)
[  152.225283][ T8597] EXT4-fs (loop4): mount failed
[  152.230661][ T8595] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.285161][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.296121][ T8610] x_tables: ip_tables: udp match: only valid for protocol 17
[  152.341736][ T8617] 9pnet: Could not find request transport: f
[  152.363057][ T8614] loop1: detected capacity change from 0 to 512
[  152.380346][ T8614] binfmt_misc: register: failed to install interpreter file ./file2
[  152.397738][ T8614] loop1: detected capacity change from 0 to 1024
[  152.411844][ T8614] ext4: Bad value for 'min_batch_time'
[  152.441509][ T8627] loop0: detected capacity change from 0 to 512
[  152.460810][ T8627] binfmt_misc: register: failed to install interpreter file ./file2
[  152.516126][ T8629] loop4: detected capacity change from 0 to 512
[  152.524598][ T8629] binfmt_misc: register: failed to install interpreter file ./file2
[  152.549283][ T8627] loop0: detected capacity change from 0 to 1024
[  152.557648][ T8627] ext4: Bad value for 'min_batch_time'
[  152.569310][ T4504] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  152.601693][ T8640] 9pnet_fd: Insufficient options for proto=fd
[  152.617258][ T8642] loop1: detected capacity change from 0 to 1024
[  152.650664][ T8640] loop4: detected capacity change from 0 to 128
[  152.657388][ T8640] EXT4-fs: Ignoring removed nobh option
[  152.667433][ T8640] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  152.684269][ T8640] ext4 filesystem being mounted at /295/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  153.276786][ T8659] loop0: detected capacity change from 0 to 512
[  153.289224][ T8659] binfmt_misc: register: failed to install interpreter file ./file2
[  153.357941][ T8659] loop0: detected capacity change from 0 to 1024
[  153.367426][ T8659] ext4: Bad value for 'min_batch_time'
[  153.447548][ T8661] 9pnet: Could not find request transport: f
[  153.477259][ T8664] bridge0: entered promiscuous mode
[  153.482799][ T8664] macsec1: entered promiscuous mode
[  153.491414][ T8664] bridge0: port 3(macsec1) entered blocking state
[  153.497859][ T8664] bridge0: port 3(macsec1) entered disabled state
[  153.506090][ T8664] macsec1: entered allmulticast mode
[  153.511554][ T8664] bridge0: entered allmulticast mode
[  153.518114][ T8664] macsec1: left allmulticast mode
[  153.523278][ T8664] bridge0: left allmulticast mode
[  153.532660][ T8664] bridge0: left promiscuous mode
[  153.540002][   T29] kauditd_printk_skb: 238 callbacks suppressed
[  153.540014][   T29] audit: type=1326 audit(1751571878.974:20461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8663 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c6ece929 code=0x7ffc0000
[  153.573481][   T29] audit: type=1326 audit(1751571879.004:20462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8663 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c6ece929 code=0x7ffc0000
[  153.596995][   T29] audit: type=1326 audit(1751571879.004:20463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8663 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53c6ece929 code=0x7ffc0000
[  153.620517][   T29] audit: type=1326 audit(1751571879.004:20464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8663 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c6ece929 code=0x7ffc0000
[  153.644132][   T29] audit: type=1326 audit(1751571879.004:20465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8663 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c6ece929 code=0x7ffc0000
[  153.667713][   T29] audit: type=1326 audit(1751571879.004:20466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8663 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53c6ece929 code=0x7ffc0000
[  153.691261][   T29] audit: type=1326 audit(1751571879.004:20467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8663 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c6ece929 code=0x7ffc0000
[  153.714761][   T29] audit: type=1326 audit(1751571879.004:20468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8663 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c6ece929 code=0x7ffc0000
[  153.738277][   T29] audit: type=1326 audit(1751571879.004:20469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8663 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53c6ece929 code=0x7ffc0000
[  153.761845][   T29] audit: type=1326 audit(1751571879.004:20470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8663 comm="syz.0.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c6ece929 code=0x7ffc0000
[  153.816674][ T3752] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  153.845081][ T8671] openvswitch: netlink: Message has 6 unknown bytes.
[  154.093847][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.101313][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.108771][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.116360][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.123764][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.131231][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.138696][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.146097][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.153616][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.161028][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.168478][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.175869][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.183387][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.184162][ T8676] bond0: entered promiscuous mode
[  154.190779][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.190802][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.195851][ T8676] bond0: entered allmulticast mode
[  154.213009][ T8676] 8021q: adding VLAN 0 to HW filter on device bond0
[  154.215760][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.229864][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.237258][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.237493][ T8685] loop2: detected capacity change from 0 to 1024
[  154.244645][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.244668][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.244690][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.273235][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.280855][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.288545][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.295927][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.303335][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.310850][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.318239][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.325665][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.333095][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.340606][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.348266][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.355644][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.363067][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.370469][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.378535][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.386008][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.393416][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.400872][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.408288][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.415727][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.423186][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.430654][ T3517] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.439013][ T3517] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v8.00 Device [syz1] on syz0
[  154.441893][ T8688] __nla_validate_parse: 24 callbacks suppressed
[  154.441908][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1566'.
[  154.463886][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1566'.
[  154.487548][ T8676] bond0 (unregistering): Released all slaves
[  154.521775][ T8695] fido_id[8695]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  154.549703][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1566'.
[  154.558765][ T8699] 9pnet: Could not find request transport: f
[  154.593784][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1566'.
[  154.602907][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1566'.
[  154.617269][ T8705] loop2: detected capacity change from 0 to 1024
[  154.632354][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1566'.
[  154.656183][ T8707] 9pnet_fd: Insufficient options for proto=fd
[  154.657145][ T8707] loop3: detected capacity change from 0 to 128
[  154.664216][ T8707] EXT4-fs: Ignoring removed nobh option
[  154.696505][ T8707] ext4 filesystem being mounted at /326/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  154.698120][ T8707] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1574'.
[  154.711818][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1566'.
[  154.750674][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1566'.
[  154.818363][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1566'.
[  154.927281][ T8726] netlink: 'syz.1.1578': attribute type 4 has an invalid length.
[  155.024795][ T8738] bond0: entered promiscuous mode
[  155.029911][ T8738] bond0: entered allmulticast mode
[  155.035299][ T8738] 8021q: adding VLAN 0 to HW filter on device bond0
[  155.088453][ T8741] 9pnet: Could not find request transport: f
[  155.113457][ T8738] bond0 (unregistering): Released all slaves
[  155.144786][ T8747] loop1: detected capacity change from 0 to 1024
[  155.214207][ T8745] loop2: detected capacity change from 0 to 1024
[  155.291739][ T8752] netlink: 'syz.1.1587': attribute type 4 has an invalid length.
[  155.354807][ T8758] loop1: detected capacity change from 0 to 512
[  155.368524][ T8758] journal_path: Lookup failure for './file0/../file0'
[  155.375390][ T8758] EXT4-fs: error: could not find journal device path
[  155.420588][ T8758] loop1: detected capacity change from 0 to 1024
[  155.450518][ T8768] openvswitch: netlink: Message has 6 unknown bytes.
[  155.612715][ T8778] x_tables: ip_tables: udp match: only valid for protocol 17
[  155.687781][ T8784] loop0: detected capacity change from 0 to 2048
[  155.723190][ T8784] EXT4-fs (loop0): shut down requested (0)
[  155.738249][ T8784] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  155.748287][ T8784] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  155.758974][ T8784] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  155.768493][ T8784] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  155.777440][ T8784] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  155.790753][ T8784] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  155.799722][ T8784] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  155.820547][ T8795] x_tables: ip_tables: udp match: only valid for protocol 17
[  155.863814][ T8801] random: crng reseeded on system resumption
[  155.871700][ T8801] FAULT_INJECTION: forcing a failure.
[  155.871700][ T8801] name failslab, interval 1, probability 0, space 0, times 0
[  155.884371][ T8801] CPU: 0 UID: 0 PID: 8801 Comm: syz.0.1603 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[  155.884398][ T8801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.884410][ T8801] Call Trace:
[  155.884415][ T8801]  <TASK>
[  155.884421][ T8801]  __dump_stack+0x1d/0x30
[  155.884439][ T8801]  dump_stack_lvl+0xe8/0x140
[  155.884461][ T8801]  dump_stack+0x15/0x1b
[  155.884477][ T8801]  should_fail_ex+0x265/0x280
[  155.884501][ T8801]  ? alloc_pipe_info+0xae/0x350
[  155.884521][ T8801]  should_failslab+0x8c/0xb0
[  155.884615][ T8801]  __kmalloc_cache_noprof+0x4c/0x320
[  155.884643][ T8801]  alloc_pipe_info+0xae/0x350
[  155.884687][ T8801]  splice_direct_to_actor+0x592/0x680
[  155.884712][ T8801]  ? kstrtouint_from_user+0x9f/0xf0
[  155.884759][ T8801]  ? __pfx_direct_splice_actor+0x10/0x10
[  155.884829][ T8801]  ? __rcu_read_unlock+0x4f/0x70
[  155.884912][ T8801]  ? get_pid_task+0x96/0xd0
[  155.884927][ T8801]  ? avc_policy_seqno+0x15/0x30
[  155.884989][ T8801]  ? selinux_file_permission+0x1e4/0x320
[  155.885024][ T8801]  do_splice_direct+0xda/0x150
[  155.885052][ T8801]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  155.885148][ T8801]  do_sendfile+0x380/0x650
[  155.885170][ T8801]  __x64_sys_sendfile64+0x105/0x150
[  155.885193][ T8801]  x64_sys_call+0xb39/0x2fb0
[  155.885217][ T8801]  do_syscall_64+0xd2/0x200
[  155.885231][ T8801]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  155.885256][ T8801]  ? clear_bhb_loop+0x40/0x90
[  155.885276][ T8801]  ? clear_bhb_loop+0x40/0x90
[  155.885393][ T8801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.885414][ T8801] RIP: 0033:0x7f53c6ece929
[  155.885470][ T8801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.885488][ T8801] RSP: 002b:00007f53c5537038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  155.885512][ T8801] RAX: ffffffffffffffda RBX: 00007f53c70f5fa0 RCX: 00007f53c6ece929
[  155.885524][ T8801] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008
[  155.885536][ T8801] RBP: 00007f53c5537090 R08: 0000000000000000 R09: 0000000000000000
[  155.885548][ T8801] R10: 000000000000000b R11: 0000000000000246 R12: 0000000000000001
[  155.885608][ T8801] R13: 0000000000000000 R14: 00007f53c70f5fa0 R15: 00007fff0810bf28
[  155.885626][ T8801]  </TASK>
[  155.895031][ T8806] batadv1: entered promiscuous mode
[  156.123499][ T8806] batadv1: entered allmulticast mode
[  156.152894][ T8817] loop4: detected capacity change from 0 to 1024
[  156.198693][ T8822] bond0: entered promiscuous mode
[  156.203822][ T8822] bond0: entered allmulticast mode
[  156.209227][ T8822] 8021q: adding VLAN 0 to HW filter on device bond0
[  156.223636][ T8822] bond0 (unregistering): Released all slaves
[  156.251772][ T8828] loop4: detected capacity change from 0 to 2048
[  156.272267][ T8829] loop2: detected capacity change from 0 to 1024
[  156.286855][ T8831] 9pnet_fd: Insufficient options for proto=fd
[  156.301978][ T8831] loop0: detected capacity change from 0 to 128
[  156.311206][ T8828] EXT4-fs (loop4): shut down requested (0)
[  156.317792][ T8831] EXT4-fs: Ignoring removed nobh option
[  156.325943][ T8828] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  156.335347][ T8828] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  156.347451][ T8828] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  156.348983][ T8831] ext4 filesystem being mounted at /320/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  156.359208][ T8828] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  156.375871][ T8828] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  156.384671][ T8828] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  156.393665][ T8828] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  156.431426][ T8845] FAULT_INJECTION: forcing a failure.
[  156.431426][ T8845] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  156.444566][ T8845] CPU: 1 UID: 0 PID: 8845 Comm: syz.2.1617 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[  156.444592][ T8845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.444613][ T8845] Call Trace:
[  156.444619][ T8845]  <TASK>
[  156.444625][ T8845]  __dump_stack+0x1d/0x30
[  156.444644][ T8845]  dump_stack_lvl+0xe8/0x140
[  156.444720][ T8845]  dump_stack+0x15/0x1b
[  156.444733][ T8845]  should_fail_ex+0x265/0x280
[  156.444758][ T8845]  should_fail+0xb/0x20
[  156.444850][ T8845]  should_fail_usercopy+0x1a/0x20
[  156.444928][ T8845]  strncpy_from_user+0x25/0x230
[  156.444950][ T8845]  ? kmem_cache_alloc_noprof+0x186/0x310
[  156.444975][ T8845]  ? getname_flags+0x80/0x3b0
[  156.445046][ T8845]  getname_flags+0xae/0x3b0
[  156.445064][ T8845]  __se_sys_newlstat+0x4b/0x280
[  156.445090][ T8845]  ? fput+0x8f/0xc0
[  156.445109][ T8845]  ? ksys_write+0x192/0x1a0
[  156.445216][ T8845]  __x64_sys_newlstat+0x31/0x40
[  156.445240][ T8845]  x64_sys_call+0x1c47/0x2fb0
[  156.445259][ T8845]  do_syscall_64+0xd2/0x200
[  156.445323][ T8845]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  156.445344][ T8845]  ? clear_bhb_loop+0x40/0x90
[  156.445361][ T8845]  ? clear_bhb_loop+0x40/0x90
[  156.445378][ T8845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.445395][ T8845] RIP: 0033:0x7fc7cb62e929
[  156.445470][ T8845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.445487][ T8845] RSP: 002b:00007fc7c9c97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000006
[  156.445503][ T8845] RAX: ffffffffffffffda RBX: 00007fc7cb855fa0 RCX: 00007fc7cb62e929
[  156.445591][ T8845] RDX: 0000000000000000 RSI: 00002000000009c0 RDI: 0000200000000980
[  156.445603][ T8845] RBP: 00007fc7c9c97090 R08: 0000000000000000 R09: 0000000000000000
[  156.445615][ T8845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.445651][ T8845] R13: 0000000000000000 R14: 00007fc7cb855fa0 R15: 00007ffc40f20cd8
[  156.445666][ T8845]  </TASK>
[  156.971612][ T8861] loop0: detected capacity change from 0 to 1024
[  157.264352][ T8869] loop1: detected capacity change from 0 to 512
[  157.336008][ T8872] loop0: detected capacity change from 0 to 2048
[  157.348983][ T8873] bond1: entered promiscuous mode
[  157.354086][ T8873] bond1: entered allmulticast mode
[  157.393349][ T8869] ext4 filesystem being mounted at /318/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.422707][ T8872] EXT4-fs (loop0): shut down requested (0)
[  157.429544][ T8873] 8021q: adding VLAN 0 to HW filter on device bond1
[  157.461860][ T8872] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  157.480733][ T8873] bond1 (unregistering): Released all slaves
[  157.497768][ T8872] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  157.509818][ T8884] EXT4-fs error (device loop1): ext4_lookup:1787: inode #12: comm syz.1.1627: iget: bad i_size value: 2533274857506816
[  157.529874][ T8883] x_tables: ip_tables: udp match: only valid for protocol 17
[  157.542461][ T8885] loop3: detected capacity change from 0 to 1024
[  157.600392][ T3304] EXT4-fs unmount: 23 callbacks suppressed
[  157.600461][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.740198][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.813714][ T8900] loop0: detected capacity change from 0 to 512
[  157.821437][ T8900] binfmt_misc: register: failed to install interpreter file ./file2
[  157.844911][ T8900] loop0: detected capacity change from 0 to 1024
[  157.852236][ T8900] ext4: Bad value for 'min_batch_time'
[  158.116250][ T8925] bond0: entered promiscuous mode
[  158.121516][ T8925] bond0: entered allmulticast mode
[  158.136876][ T8925] 8021q: adding VLAN 0 to HW filter on device bond0
[  158.165917][ T8925] bond0 (unregistering): Released all slaves
[  158.180928][ T8932] loop2: detected capacity change from 0 to 1024
[  158.900380][ T8959] 9pnet: Could not find request transport: f
[  159.096577][ T8965] openvswitch: netlink: Message has 6 unknown bytes.
[  159.119339][   T29] kauditd_printk_skb: 582 callbacks suppressed
[  159.119407][   T29] audit: type=1326 audit(1751571884.554:21053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8968 comm="syz.1.1659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7239e929 code=0x7ffc0000
[  159.149108][   T29] audit: type=1326 audit(1751571884.554:21054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8968 comm="syz.1.1659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7239e929 code=0x7ffc0000
[  159.207999][   T29] audit: type=1326 audit(1751571884.604:21055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8968 comm="syz.1.1659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab7239e929 code=0x7ffc0000
[  159.231576][   T29] audit: type=1326 audit(1751571884.604:21056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8968 comm="syz.1.1659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7239e929 code=0x7ffc0000
[  159.255266][   T29] audit: type=1326 audit(1751571884.604:21057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8968 comm="syz.1.1659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7239e929 code=0x7ffc0000
[  159.316952][   T29] audit: type=1326 audit(1751571884.704:21058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8968 comm="syz.1.1659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab7239e929 code=0x7ffc0000
[  159.340587][   T29] audit: type=1326 audit(1751571884.714:21059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8968 comm="syz.1.1659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7239e929 code=0x7ffc0000
[  159.364084][   T29] audit: type=1326 audit(1751571884.714:21060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8968 comm="syz.1.1659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7239e929 code=0x7ffc0000
[  159.387635][   T29] audit: type=1326 audit(1751571884.714:21061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8968 comm="syz.1.1659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab7239e929 code=0x7ffc0000
[  159.436737][ T8980] netlink: 'syz.3.1663': attribute type 4 has an invalid length.
[  159.497254][   T29] audit: type=1326 audit(1751571884.904:21062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8968 comm="syz.1.1659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7239e929 code=0x7ffc0000
[  159.515730][ T8982] loop0: detected capacity change from 0 to 512
[  159.530536][ T8986] __nla_validate_parse: 33 callbacks suppressed
[  159.530549][ T8986] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1665'.
[  159.545770][ T8986] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1665'.
[  159.554742][ T8986] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1665'.
[  159.614286][ T8982] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.646422][ T8982] ext4 filesystem being mounted at /335/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.756013][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.763560][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.771098][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.778537][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.785926][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.793427][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.800872][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.808281][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.815651][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.823042][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.830455][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.837856][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.845364][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.852820][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.860257][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.867660][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.875050][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.882451][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.889867][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.897258][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.904673][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.912082][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.919520][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.926944][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.934356][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.941831][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.949251][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.956630][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.964032][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.971440][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.978854][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.986236][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  159.993637][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  160.001187][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  160.008581][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  160.015957][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  160.023352][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  160.030789][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  160.038226][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  160.045612][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  160.053010][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  160.060400][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  160.067873][ T3393] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  160.078588][ T3393] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v8.00 Device [syz1] on syz0
[  160.142730][ T9007] fido_id[9007]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  160.312791][ T9020] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1675'.
[  160.321793][ T9020] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1675'.
[  160.330775][ T9020] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1675'.
[  160.626640][ T8982] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.689030][ T9030] loop0: detected capacity change from 0 to 1024
[  160.740427][ T9036] bridge0: entered promiscuous mode
[  160.745760][ T9036] macsec1: entered promiscuous mode
[  160.765834][ T9036] bridge0: port 3(macsec1) entered blocking state
[  160.772360][ T9036] bridge0: port 3(macsec1) entered disabled state
[  160.784288][ T9036] macsec1: entered allmulticast mode
[  160.789688][ T9036] bridge0: entered allmulticast mode
[  160.795985][ T9036] macsec1: left allmulticast mode
[  160.801236][ T9036] bridge0: left allmulticast mode
[  160.807917][ T9036] bridge0: left promiscuous mode
[  160.874468][  T168] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  160.927648][ T9052] loop1: detected capacity change from 0 to 2048
[  160.942020][ T9052] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[  160.961055][ T9052] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  161.033540][ T9052] infiniband syz2: set down
[  161.038113][ T9052] infiniband syz2: added veth0_to_bond
[  161.053233][ T9052] RDS/IB: syz2: added
[  161.057288][ T9052] smc: adding ib device syz2 with port count 1
[  161.063498][ T9052] smc:    ib device syz2 port 1 has pnetid 
[  161.115940][ T9055] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1688'.
[  161.230211][ T9056] loop3: detected capacity change from 0 to 2048
[  161.250112][ T9056] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.273134][ T9056] EXT4-fs (loop3): shut down requested (0)
[  161.299862][ T9056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  161.312528][ T9056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  161.329891][ T9056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  161.338794][ T9056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  161.347691][ T9056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  161.356749][ T9056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  161.363953][ T9067] warn_alloc: 1 callbacks suppressed
[  161.363966][ T9067] syz.1.1692: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  161.365631][ T9056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  161.370855][ T9067] ,cpuset=/,mems_allowed=0
[  161.396436][ T9067] CPU: 1 UID: 0 PID: 9067 Comm: syz.1.1692 Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[  161.396461][ T9067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  161.396471][ T9067] Call Trace:
[  161.396493][ T9067]  <TASK>
[  161.396501][ T9067]  __dump_stack+0x1d/0x30
[  161.396520][ T9067]  dump_stack_lvl+0xe8/0x140
[  161.396582][ T9067]  dump_stack+0x15/0x1b
[  161.396595][ T9067]  warn_alloc+0x12b/0x1a0
[  161.396622][ T9067]  __vmalloc_node_range_noprof+0x9c/0xe00
[  161.396649][ T9067]  ? probe_sched_wakeup+0x85/0xa0
[  161.396746][ T9067]  ? ttwu_do_activate+0x1cf/0x210
[  161.396769][ T9067]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  161.396788][ T9067]  ? __rcu_read_unlock+0x4f/0x70
[  161.396831][ T9067]  ? avc_has_perm_noaudit+0x1b1/0x200
[  161.396924][ T9067]  ? should_fail_ex+0x30/0x280
[  161.396945][ T9067]  ? xskq_create+0x36/0xe0
[  161.396963][ T9067]  vmalloc_user_noprof+0x7d/0xb0
[  161.396991][ T9067]  ? xskq_create+0x80/0xe0
[  161.397007][ T9067]  xskq_create+0x80/0xe0
[  161.397023][ T9067]  xsk_init_queue+0x95/0xf0
[  161.397075][ T9067]  xsk_setsockopt+0x35c/0x510
[  161.397091][ T9067]  ? __pfx_xsk_setsockopt+0x10/0x10
[  161.397106][ T9067]  __sys_setsockopt+0x184/0x200
[  161.397138][ T9067]  __x64_sys_setsockopt+0x64/0x80
[  161.397212][ T9067]  x64_sys_call+0x2bd5/0x2fb0
[  161.397229][ T9067]  do_syscall_64+0xd2/0x200
[  161.397243][ T9067]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  161.397263][ T9067]  ? clear_bhb_loop+0x40/0x90
[  161.397280][ T9067]  ? clear_bhb_loop+0x40/0x90
[  161.397361][ T9067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.397377][ T9067] RIP: 0033:0x7fab7239e929
[  161.397390][ T9067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.397404][ T9067] RSP: 002b:00007fab70a07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  161.397418][ T9067] RAX: ffffffffffffffda RBX: 00007fab725c5fa0 RCX: 00007fab7239e929
[  161.397475][ T9067] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000004
[  161.397484][ T9067] RBP: 00007fab72420b39 R08: 0000000000000004 R09: 0000000000000000
[  161.397494][ T9067] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  161.397504][ T9067] R13: 0000000000000000 R14: 00007fab725c5fa0 R15: 00007fff975c8308
[  161.397563][ T9067]  </TASK>
[  161.397577][ T9067] Mem-Info:
[  161.629856][ T9075] loop1: detected capacity change from 0 to 512
[  161.632863][ T9067] active_anon:7360 inactive_anon:42 isolated_anon:0
[  161.632863][ T9067]  active_file:6117 inactive_file:2294 isolated_file:0
[  161.632863][ T9067]  unevictable:0 dirty:132 writeback:0
[  161.632863][ T9067]  slab_reclaimable:2995 slab_unreclaimable:14817
[  161.632863][ T9067]  mapped:29326 shmem:512 pagetables:1342
[  161.632863][ T9067]  sec_pagetables:0 bounce:0
[  161.632863][ T9067]  kernel_misc_reclaimable:0
[  161.632863][ T9067]  free:1698738 free_pcp:128671 free_cma:0
[  161.684203][ T9067] Node 0 active_anon:29440kB inactive_anon:168kB active_file:24468kB inactive_file:9176kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:117304kB dirty:528kB writeback:0kB shmem:2048kB writeback_tmp:0kB kernel_stack:3456kB pagetables:5368kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  161.713095][ T9067] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  161.741690][ T9067] lowmem_reserve[]: 0 2882 7860 7860
[  161.747100][ T9067] Node 0 DMA32 free:2947724kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951352kB mlocked:0kB bounce:0kB free_pcp:3628kB local_pcp:3528kB free_cma:0kB
[  161.777532][ T9067] lowmem_reserve[]: 0 0 4978 4978
[  161.782598][ T9067] Node 0 Normal free:3831868kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:29440kB inactive_anon:168kB active_file:24468kB inactive_file:9176kB unevictable:0kB writepending:508kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:511076kB local_pcp:262844kB free_cma:0kB
[  161.814854][ T9067] lowmem_reserve[]: 0 0 0 0
[  161.819412][ T9067] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  161.832252][ T9067] Node 0 DMA32: 3*4kB (M) 2*8kB (M) 3*16kB (M) 2*32kB (M) 4*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947724kB
[  161.848417][ T9067] Node 0 Normal: 1058*4kB (UME) 1136*8kB (UME) 712*16kB (UME) 792*32kB (UME) 629*64kB (UME) 403*128kB (UME) 292*256kB (UME) 182*512kB (UM) 56*1024kB (UME) 5*2048kB (UME) 843*4096kB (UM) = 3830344kB
[  161.868008][ T9067] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  161.877582][ T9067] 8853 total pagecache pages
[  161.882181][ T9067] 29 pages in swap cache
[  161.886462][ T9067] Free swap  = 124788kB
[  161.890674][ T9067] Total swap = 124996kB
[  161.894824][ T9067] 2097051 pages RAM
[  161.898742][ T9067] 0 pages HighMem/MovableOnly
[  161.903415][ T9067] 80813 pages reserved
[  161.976273][ T9080] bridge0: entered promiscuous mode
[  161.982654][ T9080] macsec1: entered promiscuous mode
[  161.992020][ T9080] bridge0: port 3(macsec1) entered blocking state
[  161.993222][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.998494][ T9080] bridge0: port 3(macsec1) entered disabled state
[  162.016413][ T9080] macsec1: entered allmulticast mode
[  162.016704][ T9075] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.021741][ T9080] bridge0: entered allmulticast mode
[  162.039807][ T9080] macsec1: left allmulticast mode
[  162.044857][ T9080] bridge0: left allmulticast mode
[  162.058076][ T9075] ext4 filesystem being mounted at /329/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.084020][ T9080] bridge0: left promiscuous mode
[  162.137559][  T168] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  162.301750][ T9107] 9pnet_fd: Insufficient options for proto=fd
[  162.308938][ T9107] loop3: detected capacity change from 0 to 128
[  162.318471][ T9107] EXT4-fs: Ignoring removed nobh option
[  162.332410][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.342931][ T9107] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  162.359032][ T9107] ext4 filesystem being mounted at /352/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  162.462093][ T9120] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1707'.
[  162.477005][ T3313] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  162.506797][ T9123] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1708'.
[  162.516481][ T9123] x_tables: ip_tables: udp match: only valid for protocol 17
[  162.554004][ T9126] loop1: detected capacity change from 0 to 2048
[  162.581625][ T9126] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.620156][ T9136] loop3: detected capacity change from 0 to 512
[  162.628925][ T9126] EXT4-fs (loop1): shut down requested (0)
[  162.636283][ T9126] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  162.646149][ T9126] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  162.656060][ T9136] binfmt_misc: register: failed to install interpreter file ./file2
[  162.668288][ T9126] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  162.679163][ T9126] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  162.688576][ T9126] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  162.697528][ T9126] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  162.720743][ T9126] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  162.859348][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.887451][ T9149] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1719'.
[  163.203459][ T1810] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  163.258228][ T9169] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  163.311824][ T9187] 9pnet: Could not find request transport: f
[  163.381624][ T9197] loop3: detected capacity change from 0 to 2048
[  163.403978][ T9195] syz_tun: entered allmulticast mode
[  163.414453][ T9197] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.509007][ T9195] syz_tun: left allmulticast mode
[  163.529311][ T9197] EXT4-fs (loop3): shut down requested (0)
[  163.586227][ T9207] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  163.763947][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.797674][ T9222] loop2: detected capacity change from 0 to 512
[  163.822835][ T9221] bridge0: entered promiscuous mode
[  163.870667][ T9221] macsec1: entered promiscuous mode
[  163.889830][ T9222] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.916399][ T9221] bridge0: port 3(macsec1) entered blocking state
[  163.922946][ T9221] bridge0: port 3(macsec1) entered disabled state
[  163.972306][ T9222] ext4 filesystem being mounted at /364/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.983394][ T9221] macsec1: entered allmulticast mode
[  163.988788][ T9221] bridge0: entered allmulticast mode
[  163.995147][ T9221] macsec1: left allmulticast mode
[  164.000238][ T9221] bridge0: left allmulticast mode
[  164.017786][ T9221] bridge0: left promiscuous mode
[  164.029863][ T9236] loop0: detected capacity change from 0 to 1024
[  164.038127][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.069957][ T9236] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.086620][ T9240] x_tables: ip_tables: udp match: only valid for protocol 17
[  164.112063][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.131829][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.139373][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.146777][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.154827][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.162247][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.169746][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.177127][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.184563][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.191972][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.199396][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.206799][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.214221][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.221631][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.229056][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.239954][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.247361][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.254784][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.262304][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.262327][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.262348][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.262367][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.262386][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.262405][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.262477][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.262497][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.262517][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.262538][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.262559][ T3363] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  164.282144][ T3363] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v8.00 Device [syz1] on syz0
[  164.318221][ T9253] loop2: detected capacity change from 0 to 512
[  164.376106][ T9257] loop3: detected capacity change from 0 to 2048
[  164.411438][ T9257] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.425222][ T9253] binfmt_misc: register: failed to install interpreter file ./file2
[  164.438255][ T9257] EXT4-fs (loop3): shut down requested (0)
[  164.444316][ T9253] loop2: detected capacity change from 0 to 1024
[  164.450817][ T9260] loop4: detected capacity change from 0 to 512
[  164.460311][ T9253] ext4: Bad value for 'min_batch_time'
[  164.466183][ T9257] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  164.477371][ T9257] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  164.492595][ T9257] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  164.502246][ T9257] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  164.519945][ T9260] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.527430][ T9257] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  164.547069][ T9270] netlink: 'syz.0.1753': attribute type 4 has an invalid length.
[  164.549708][ T9257] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  164.560637][ T9260] ext4 filesystem being mounted at /332/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.564506][ T9257] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  164.626223][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.645026][ T9277] __nla_validate_parse: 18 callbacks suppressed
[  164.645058][ T9277] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1755'.
[  164.660297][ T9277] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1755'.
[  164.674524][ T9260] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.684357][ T9277] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1755'.
[  164.716209][   T29] kauditd_printk_skb: 1036 callbacks suppressed
[  164.716223][   T29] audit: type=1326 audit(1751571890.144:22099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9276 comm="syz.2.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7cb62e929 code=0x7ffc0000
[  164.746092][   T29] audit: type=1326 audit(1751571890.144:22100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9276 comm="syz.2.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7cb62e929 code=0x7ffc0000
[  164.774916][ T9277] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1755'.
[  164.783868][ T9277] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1755'.
[  164.846545][ T9296] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1756'.
[  164.856514][ T9277] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1755'.
[  164.953890][   T29] audit: type=1326 audit(1751571890.204:22101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9284 comm="syz.3.1756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4862fce929 code=0x7ffc0000
[  164.977506][   T29] audit: type=1326 audit(1751571890.204:22102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9276 comm="syz.2.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7fc7cb62e929 code=0x7ffc0000
[  164.999569][ T9277] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1755'.
[  165.001138][   T29] audit: type=1326 audit(1751571890.204:22103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9276 comm="syz.2.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7cb62e929 code=0x7ffc0000
[  165.009858][ T9277] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1755'.
[  165.033370][   T29] audit: type=1326 audit(1751571890.204:22104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9276 comm="syz.2.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7cb62e929 code=0x7ffc0000
[  165.065822][   T29] audit: type=1326 audit(1751571890.214:22105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9276 comm="syz.2.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc7cb62e929 code=0x7ffc0000
[  165.065984][   T29] audit: type=1326 audit(1751571890.214:22106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9276 comm="syz.2.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7cb62e929 code=0x7ffc0000
[  165.066019][   T29] audit: type=1326 audit(1751571890.214:22107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9276 comm="syz.2.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7cb62e929 code=0x7ffc0000
[  165.066060][   T29] audit: type=1326 audit(1751571890.224:22108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9284 comm="syz.3.1756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4862fce929 code=0x7ffc0000
[  165.141363][ T9305] loop0: detected capacity change from 0 to 512
[  165.148528][ T9305] binfmt_misc: register: failed to install interpreter file ./file2
[  165.256347][ T9277] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1755'.
[  165.293270][ T9307] loop0: detected capacity change from 0 to 1024
[  165.349153][ T9307] ext4: Bad value for 'min_batch_time'
[  165.513038][ T9313] loop4: detected capacity change from 0 to 512
[  165.531170][ T9313] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.545966][ T9316] loop2: detected capacity change from 0 to 2048
[  165.553629][ T9313] ext4 filesystem being mounted at /335/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.575095][ T9322] netlink: 'syz.0.1768': attribute type 4 has an invalid length.
[  165.598101][ T9313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.622413][ T9316] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.643018][ T9316] EXT4-fs (loop2): shut down requested (0)
[  165.649834][ T9316] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  165.651127][ T9329] bridge0: entered promiscuous mode
[  165.666276][ T9329] bridge0: port 3(macsec1) entered blocking state
[  165.672794][ T9329] bridge0: port 3(macsec1) entered disabled state
[  165.679379][ T9316] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  165.688444][ T9316] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  165.697361][ T9316] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  165.705704][ T9329] macsec1: entered allmulticast mode
[  165.706555][ T9316] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  165.711543][ T9329] bridge0: entered allmulticast mode
[  165.721163][ T9316] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  165.734782][ T9316] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  165.750506][ T9337] loop4: detected capacity change from 0 to 1024
[  165.757054][ T9329] macsec1: left allmulticast mode
[  165.762111][ T9329] bridge0: left allmulticast mode
[  165.773363][ T9329] bridge0: left promiscuous mode
[  165.796310][ T9337] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.810226][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.831774][ T9341] openvswitch: netlink: Message has 6 unknown bytes.
[  165.839677][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.914710][ T9347] x_tables: ip_tables: udp match: only valid for protocol 17
[  166.004112][ T9355] batadv1: entered promiscuous mode
[  166.009420][ T9355] batadv1: entered allmulticast mode
[  166.041648][ T9359] x_tables: ip_tables: udp match: only valid for protocol 17
[  166.265032][ T9368] netlink: 'syz.2.1781': attribute type 4 has an invalid length.
[  166.503359][ T9378] openvswitch: netlink: Message has 6 unknown bytes.
[  166.511651][ T9376] loop0: detected capacity change from 0 to 2048
[  166.729322][ T9376] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.799401][ T9376] EXT4-fs (loop0): shut down requested (0)
[  166.809430][ T9376] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  166.822584][ T9388] x_tables: ip_tables: udp match: only valid for protocol 17
[  166.834520][ T9376] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  166.912803][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.931504][ T9395] batadv1: entered promiscuous mode
[  166.936801][ T9395] batadv1: entered allmulticast mode
[  166.956496][ T9397] x_tables: ip_tables: udp match: only valid for protocol 17
[  166.975359][ T9402] x_tables: ip_tables: udp match: only valid for protocol 17
[  167.044358][ T9412] 9pnet_fd: Insufficient options for proto=fd
[  167.064753][ T9412] loop3: detected capacity change from 0 to 128
[  167.076585][ T9412] EXT4-fs: Ignoring removed nobh option
[  167.139004][ T9412] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  167.169446][ T9412] ext4 filesystem being mounted at /372/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  167.304930][ T3313] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  167.366855][ T9425] loop1: detected capacity change from 0 to 512
[  167.582046][ T9425] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.594784][ T9425] ext4 filesystem being mounted at /348/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.645402][ T9425] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 3: comm syz.1.1803: path /348/file1: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  167.672549][ T9425] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 4: comm syz.1.1803: path /348/file1: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=11, rec_len=10454, size=2048 fake=1
[  167.698103][ T9425] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 12: comm syz.1.1803: path /348/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  167.720144][ T9425] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 13: comm syz.1.1803: path /348/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  167.743272][ T9425] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 14: comm syz.1.1803: path /348/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  167.765076][ T9425] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 15: comm syz.1.1803: path /348/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  167.793455][ T9425] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 16: comm syz.1.1803: path /348/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  167.822988][ T9425] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 17: comm syz.1.1803: path /348/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  167.855724][ T9425] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #2: block 18: comm syz.1.1803: lblock 23 mapped to illegal pblock 18 (length 1)
[  167.871174][ T9425] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 19: comm syz.1.1803: path /348/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  167.951026][ T9437] macsec0: entered promiscuous mode
[  167.956470][ T9437] macsec0: entered allmulticast mode
[  167.961823][ T9437] veth1_macvtap: entered allmulticast mode
[  167.976260][ T9439] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  167.987875][ T9439] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  168.064801][ T9443] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  168.094986][ T9443] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  168.241766][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.127915][ T9466] loop4: detected capacity change from 0 to 512
[  169.162820][ T9466] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.326040][ T9466] ext4 filesystem being mounted at /344/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  169.369396][ T9482] loop3: detected capacity change from 0 to 256
[  169.378258][ T9482] FAT-fs (loop3): Directory bread(block 1285) failed
[  169.391240][ T9482] FAT-fs (loop3): Directory bread(block 1285) failed
[  169.478243][ T9482] FAT-fs (loop3): Directory bread(block 1285) failed
[  169.491310][ T9482] FAT-fs (loop3): Directory bread(block 1285) failed
[  169.509979][ T9488] FAT-fs (loop3): Directory bread(block 1285) failed
[  169.516863][ T9488] FAT-fs (loop3): Directory bread(block 1285) failed
[  169.523753][ T9488] FAT-fs (loop3): Directory bread(block 1285) failed
[  169.530862][ T9482] FAT-fs (loop3): Directory bread(block 1285) failed
[  169.537763][ T9482] FAT-fs (loop3): Directory bread(block 1285) failed
[  169.539569][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.544740][ T9482] FAT-fs (loop3): Directory bread(block 1285) failed
[  169.594088][ T9491] loop1: detected capacity change from 0 to 128
[  169.614858][ T9495] tipc: Started in network mode
[  169.619888][ T9495] tipc: Node identity 7f000001, cluster identity 4711
[  169.637593][ T9495] tipc: Enabled bearer <udp:syz2>, priority 10
[  169.646698][ T9495] tipc: Enabled bearer <eth:team0>, priority 0
[  169.667071][ T9491] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  169.689204][ T9491] ext4 filesystem being mounted at /352/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  169.779732][ T9511] loop3: detected capacity change from 0 to 128
[  170.133238][   T29] kauditd_printk_skb: 664 callbacks suppressed
[  170.133251][   T29] audit: type=1400 audit(1751571895.564:22773): avc:  denied  { create } for  pid=9490 comm="syz.1.1824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  170.269660][ T9521] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  170.305936][ T9523] __nla_validate_parse: 20 callbacks suppressed
[  170.305949][ T9523] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1834'.
[  170.349223][ T9521] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  170.363913][   T29] audit: type=1400 audit(1751571895.604:22774): avc:  denied  { sys_admin } for  pid=9490 comm="syz.1.1824" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  170.483296][   T29] audit: type=1400 audit(1751571895.824:22775): avc:  denied  { remove_name } for  pid=3306 comm="syz-executor" name="lost+found" dev="loop1" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  170.486139][ T9518] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  170.506645][   T29] audit: type=1400 audit(1751571895.824:22776): avc:  denied  { rmdir } for  pid=3306 comm="syz-executor" name="lost+found" dev="loop1" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  170.744179][ T9531] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1839'.
[  170.753264][   T36] tipc: Node number set to 2130706433
[  170.791836][ T3517] IPVS: starting estimator thread 0...
[  170.879286][ T9533] IPVS: using max 2736 ests per chain, 136800 per kthread
[  170.934709][   T29] audit: type=1400 audit(1751571896.054:22777): avc:  denied  { mounton } for  pid=9528 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  170.964123][   T29] audit: type=1400 audit(1751571896.394:22778): avc:  denied  { search } for  pid=3034 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  170.985606][   T29] audit: type=1400 audit(1751571896.394:22779): avc:  denied  { search } for  pid=3034 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  171.007277][   T29] audit: type=1400 audit(1751571896.394:22780): avc:  denied  { search } for  pid=3034 comm="dhcpcd" name="data" dev="tmpfs" ino=13 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  171.029429][   T29] audit: type=1400 audit(1751571896.394:22781): avc:  denied  { read } for  pid=3034 comm="dhcpcd" name="n27" dev="tmpfs" ino=12845 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  171.051404][   T29] audit: type=1400 audit(1751571896.394:22782): avc:  denied  { open } for  pid=3034 comm="dhcpcd" path="/run/udev/data/n27" dev="tmpfs" ino=12845 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  171.063890][ T9528] lo speed is unknown, defaulting to 1000
[  171.100120][ T4511] bridge_slave_1: left allmulticast mode
[  171.105812][ T4511] bridge_slave_1: left promiscuous mode
[  171.111634][ T4511] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.140510][ T9550] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1843'.
[  171.246302][ T4511] bridge_slave_0: left allmulticast mode
[  171.252016][ T4511] bridge_slave_0: left promiscuous mode
[  171.257729][ T4511] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.430989][ T4511] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  171.463770][ T4511] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  171.656663][ T4511] bond0 (unregistering): Released all slaves
[  171.823159][ T4511] batman_adv: batadv0: Removing interface: batadv_slave_0
[  171.839374][ T4511] batman_adv: batadv0: Removing interface: batadv_slave_1
[  171.914044][ T4511] team0 (unregistering): Port device team_slave_1 removed
[  171.934218][ T4511] team0 (unregistering): Port device team_slave_0 removed
[  171.951556][   T51] smc: removing ib device syz2
[  172.169734][ T9613] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  172.211674][ T9613] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  172.294203][ T9528] chnl_net:caif_netlink_parms(): no params data found
[  172.307438][ T9619] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  172.326133][ T9619] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  172.747956][ T9629] netlink: 65055 bytes leftover after parsing attributes in process `syz.2.1853'.
[  172.785948][ T9528] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.793070][ T9528] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.810899][ T9528] bridge_slave_0: entered allmulticast mode
[  172.817394][ T9528] bridge_slave_0: entered promiscuous mode
[  172.826968][ T9528] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.834099][ T9528] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.842042][ T9528] bridge_slave_1: entered allmulticast mode
[  172.848640][ T9528] bridge_slave_1: entered promiscuous mode
[  172.881782][ T9528] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  172.892699][ T9528] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  172.932621][ T9639] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  172.941619][ T9639] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  172.951795][ T9528] team0: Port device team_slave_0 added
[  172.959405][ T9528] team0: Port device team_slave_1 added
[  173.324919][ T9528] batman_adv: batadv0: Adding interface: batadv_slave_0
[  173.331949][ T9528] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.357917][ T9528] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  173.394273][ T9528] batman_adv: batadv0: Adding interface: batadv_slave_1
[  173.401361][ T9528] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.427334][ T9528] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  173.469505][ T9528] hsr_slave_0: entered promiscuous mode
[  173.480285][ T9528] hsr_slave_1: entered promiscuous mode
[  173.608809][ T9528] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  173.628245][ T9528] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  173.697520][ T9528] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  173.720472][ T9528] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  173.779244][ T9528] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.786331][ T9528] bridge0: port 2(bridge_slave_1) entered forwarding state
[  173.793656][ T9528] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.800724][ T9528] bridge0: port 1(bridge_slave_0) entered forwarding state
[  173.883878][ T9777] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1871'.
[  173.909311][ T9528] 8021q: adding VLAN 0 to HW filter on device bond0
[  173.919895][ T9528] 8021q: adding VLAN 0 to HW filter on device team0
[  174.030606][ T9795] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1874'.
[  174.367429][ T9528] 8021q: adding VLAN 0 to HW filter on device batadv0
[  174.436127][ T9812] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1876'.
[  175.176692][   T29] kauditd_printk_skb: 19 callbacks suppressed
[  175.176706][   T29] audit: type=1400 audit(1751571900.604:22802): avc:  denied  { read write } for  pid=9841 comm="syz.4.1886" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  175.207614][   T29] audit: type=1400 audit(1751571900.604:22803): avc:  denied  { open } for  pid=9841 comm="syz.4.1886" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  175.209110][ T9842] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  175.242871][   T36] IPVS: starting estimator thread 0...
[  175.338171][ T9845] IPVS: using max 2544 ests per chain, 127200 per kthread
[  175.342704][ T9528] veth0_vlan: entered promiscuous mode
[  175.372667][ T9528] veth1_vlan: entered promiscuous mode
[  175.380381][ T9843] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1885'.
[  175.443391][ T9528] veth0_macvtap: entered promiscuous mode
[  175.473964][ T9528] veth1_macvtap: entered promiscuous mode
[  175.503668][ T9528] batman_adv: batadv0: Interface activated: batadv_slave_0
[  175.529461][   T29] audit: type=1400 audit(1751571900.964:22804): avc:  denied  { name_bind } for  pid=9866 comm="syz.4.1889" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  175.532001][ T9528] batman_adv: batadv0: Interface activated: batadv_slave_1
[  175.576544][ T9528] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  175.585354][ T9528] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  175.594118][ T9528] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  175.602819][ T9528] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  175.662745][ T9884] loop3: detected capacity change from 0 to 512
[  175.690897][   T29] audit: type=1400 audit(1751571901.124:22805): avc:  denied  { mounton } for  pid=9528 comm="syz-executor" path="/root/syzkaller.cyEc9G/syz-tmp" dev="sda1" ino=2047 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  175.715390][   T29] audit: type=1400 audit(1751571901.124:22806): avc:  denied  { mount } for  pid=9528 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  175.963378][ T9884] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.015346][ T9894] tipc: Started in network mode
[  176.020297][ T9894] tipc: Node identity ce4c7476a28, cluster identity 4711
[  176.027348][ T9894] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  176.058676][ T9884] ext4 filesystem being mounted at /396/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  176.077940][   T29] audit: type=1400 audit(1751571901.124:22807): avc:  denied  { mount } for  pid=9528 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  176.100032][   T29] audit: type=1400 audit(1751571901.124:22808): avc:  denied  { mounton } for  pid=9528 comm="syz-executor" path="/root/syzkaller.cyEc9G/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  176.126964][   T29] audit: type=1400 audit(1751571901.124:22809): avc:  denied  { mounton } for  pid=9528 comm="syz-executor" path="/root/syzkaller.cyEc9G/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=21785 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  176.127323][ T9894] syzkaller0: entered promiscuous mode
[  176.154844][   T29] audit: type=1400 audit(1751571901.164:22810): avc:  denied  { mounton } for  pid=9528 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  176.154923][   T29] audit: type=1400 audit(1751571901.174:22811): avc:  denied  { mount } for  pid=9528 comm="syz-executor" name="/" dev="gadgetfs" ino=4184 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  176.206261][ T9894] syzkaller0: entered allmulticast mode
[  176.298305][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.313940][ T9894] tipc: Resetting bearer <eth:syzkaller0>
[  176.320754][ T9892] tipc: Resetting bearer <eth:syzkaller0>
[  176.352911][ T9892] tipc: Disabling bearer <eth:syzkaller0>
[  176.366342][ T9921] loop3: detected capacity change from 0 to 128
[  176.762482][ T9926] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  176.820009][ T9921] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  176.932227][ T9921] ext4 filesystem being mounted at /397/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  176.984750][ T9943] loop2: detected capacity change from 0 to 512
[  176.992583][ T9943] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  177.002820][ T9943] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.1901: invalid indirect mapped block 4294967295 (level 1)
[  177.034752][ T9943] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.1901: invalid indirect mapped block 4294967295 (level 1)
[  177.049379][ T9943] EXT4-fs (loop2): 2 truncates cleaned up
[  177.049711][ T3313] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  177.055704][ T9943] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.107884][ T9943] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.1901: bg 0: block 5: invalid block bitmap
[  177.143138][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.158040][ T9957] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1907'.
[  178.016668][ T9981] xt_CT: No such helper "pptp"
[  178.184577][ T9988] loop4: detected capacity change from 0 to 128
[  178.211965][ T9988] EXT4-fs: test_dummy_encryption option not supported
[  178.322340][ T9996] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1918'.
[  178.480099][T10001] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  178.750499][T10013] loop3: detected capacity change from 0 to 128
[  178.852332][T10023] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1929'.
[  178.881609][T10023] vlan2: entered promiscuous mode
[  178.886693][T10023] bridge0: entered promiscuous mode
[  178.935931][T10030] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1931'.
[  178.952840][ T3295] ==================================================================
[  178.960935][ T3295] BUG: KCSAN: data-race in fill_mg_cmtime / shmem_symlink
[  178.968039][ T3295] 
[  178.970346][ T3295] write to 0xffff8881041ca9a4 of 4 bytes by task 3754 on cpu 0:
[  178.977968][ T3295]  shmem_symlink+0x387/0x3d0
[  178.982559][ T3295]  vfs_symlink+0xd1/0x1e0
[  178.986893][ T3295]  do_symlinkat+0xc7/0x3c0
[  178.991309][ T3295]  __x64_sys_symlink+0x50/0x60
[  178.996074][ T3295]  x64_sys_call+0x2d8d/0x2fb0
[  179.000739][ T3295]  do_syscall_64+0xd2/0x200
[  179.005227][ T3295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.011109][ T3295] 
[  179.013419][ T3295] read to 0xffff8881041ca9a4 of 4 bytes by task 3295 on cpu 1:
[  179.020945][ T3295]  fill_mg_cmtime+0x5b/0x260
[  179.025524][ T3295]  generic_fillattr+0x24a/0x340
[  179.030448][ T3295]  shmem_getattr+0x181/0x200
[  179.035025][ T3295]  vfs_getattr_nosec+0x143/0x1e0
[  179.039952][ T3295]  vfs_statx+0x113/0x390
[  179.044182][ T3295]  vfs_fstatat+0x115/0x170
[  179.048590][ T3295]  __se_sys_newfstatat+0x55/0x260
[  179.053602][ T3295]  __x64_sys_newfstatat+0x55/0x70
[  179.058620][ T3295]  x64_sys_call+0x2c22/0x2fb0
[  179.063282][ T3295]  do_syscall_64+0xd2/0x200
[  179.067770][ T3295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.073653][ T3295] 
[  179.075960][ T3295] value changed: 0x16f23053 -> 0x17810b8a
[  179.081659][ T3295] 
[  179.083963][ T3295] Reported by Kernel Concurrency Sanitizer on:
[  179.090096][ T3295] CPU: 1 UID: 0 PID: 3295 Comm: udevd Not tainted 6.16.0-rc4-syzkaller-00108-g17bbde2e1716 #0 PREEMPT(voluntary) 
[  179.102058][ T3295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  179.112109][ T3295] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  179.671008][   T51] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.730321][   T51] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.780079][   T51] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.840880][   T51] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.892917][   T51] bridge_slave_1: left allmulticast mode
[  179.898862][   T51] bridge_slave_1: left promiscuous mode
[  179.904520][   T51] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.912375][   T51] bridge_slave_0: left allmulticast mode
[  179.918043][   T51] bridge_slave_0: left promiscuous mode
[  179.923704][   T51] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.029940][   T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  180.039394][   T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  180.048771][   T51] bond0 (unregistering): Released all slaves
[  180.109072][   T51] tipc: Disabling bearer <udp:syz2>
[  180.114325][   T51] tipc: Disabling bearer <eth:team0>
[  180.119957][   T51] tipc: Left network mode
[  180.127192][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  180.134755][   T51] batman_adv: batadv0: Removing interface: batadv_slave_0
[  180.143124][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  180.150729][   T51] batman_adv: batadv0: Removing interface: batadv_slave_1
[  180.160218][   T51] veth1_macvtap: left promiscuous mode
[  180.165783][   T51] veth0_macvtap: left promiscuous mode
[  180.171446][   T51] veth1_vlan: left promiscuous mode
[  180.176682][   T51] veth0_vlan: left promiscuous mode
[  180.223485][   T51] team0 (unregistering): Port device team_slave_1 removed
[  180.232356][   T51] team0 (unregistering): Port device team_slave_0 removed
[  180.491304][   T51] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.541813][   T51] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.590680][   T51] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.660423][   T51] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.710350][   T51] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.750743][   T51] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.801022][   T51] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.870645][   T51] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.929619][   T51] bridge_slave_1: left allmulticast mode
[  180.935313][   T51] bridge_slave_1: left promiscuous mode
[  180.941078][   T51] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.949988][   T51] bridge_slave_0: left allmulticast mode
[  180.955683][   T51] bridge_slave_0: left promiscuous mode
[  180.961436][   T51] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.970746][   T51] bridge_slave_1: left allmulticast mode
[  180.976402][   T51] bridge_slave_1: left promiscuous mode
[  180.982218][   T51] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.990592][   T51] bridge_slave_0: left allmulticast mode
[  180.996266][   T51] bridge_slave_0: left promiscuous mode
[  181.001987][   T51] bridge0: port 1(bridge_slave_0) entered disabled state
[  181.129807][   T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  181.139261][   T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  181.148787][   T51] bond0 (unregistering): Released all slaves
[  181.229961][   T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  181.239353][   T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  181.248554][   T51] bond0 (unregistering): Released all slaves
[  181.293333][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  181.300802][   T51] batman_adv: batadv0: Removing interface: batadv_slave_0
[  181.309700][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  181.317129][   T51] batman_adv: batadv0: Removing interface: batadv_slave_1
[  181.326912][   T51] hsr_slave_0: left promiscuous mode
[  181.333249][   T51] hsr_slave_1: left promiscuous mode
[  181.340129][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  181.347531][   T51] batman_adv: batadv0: Removing interface: batadv_slave_0
[  181.355867][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  181.363328][   T51] batman_adv: batadv0: Removing interface: batadv_slave_1
[  181.374788][   T51] veth1_macvtap: left promiscuous mode
[  181.380318][   T51] veth0_macvtap: left promiscuous mode
[  181.385808][   T51] veth1_vlan: left promiscuous mode
[  181.391014][   T51] veth0_vlan: left promiscuous mode
[  181.396598][   T51] veth1_macvtap: left promiscuous mode
[  181.402108][   T51] veth0_macvtap: left promiscuous mode
[  181.407635][   T51] veth1_vlan: left promiscuous mode
[  181.412983][   T51] veth0_vlan: left promiscuous mode
[  181.487042][   T51] team0 (unregistering): Port device team_slave_1 removed
[  181.496191][   T51] team0 (unregistering): Port device team_slave_0 removed
[  181.544508][   T51] team0 (unregistering): Port device team_slave_1 removed
[  181.554219][   T51] team0 (unregistering): Port device team_slave_0 removed
[  181.972012][   T51] IPVS: stop unused estimator thread 0...