last executing test programs:

3.149957641s ago: executing program 2 (id=1051):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x39}, 0x18)
mmap(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x0, 0x20132, 0xffffffffffffffff, 0x391e1000)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='kfree\x00', r1}, 0x18)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x800, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'\x00', 0x2})
ioctl$TUNSETTXFILTER(r2, 0x400454d1, &(0x7f0000000380)=ANY=[@ANYRESDEC])
unshare(0x62040200)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x180)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x4000)

2.85193409s ago: executing program 2 (id=1055):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x400})
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/partitions\x00', 0x0, 0x0)
syz_io_uring_setup(0x49d, &(0x7f0000000440)={0x0, 0x79ae, 0x8, 0x7ffd, 0x32c, 0x0, r1}, &(0x7f0000000680)=<r2=>0x0, &(0x7f0000000280))
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa4000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000200)='./file0\x00', 0x2008098, &(0x7f0000000100)=ANY=[@ANYRES16=r2], 0x1, 0x1e9, &(0x7f0000019300)="$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")
r4 = open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x2)
fallocate(r4, 0x0, 0x0, 0x1000f4)
sendfile(r4, r4, 0x0, 0x800000a1e)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r5, &(0x7f00000005c0)="f5", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0xfffffffc, @rand_addr=' \x01\x00'}, 0x1c)
shutdown(r5, 0x1)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r5, 0x84, 0x7c, &(0x7f00000002c0)={0x0, 0x0, 0x4}, 0x8)
r6 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r6, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r8 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019500)=""/102391, 0x18ff7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r7, 0x0, 0xf7}, 0x18)

2.335332211s ago: executing program 1 (id=1063):
creat(&(0x7f0000000240)='./bus\x00', 0x114)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x617a, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000200)='gtp\x00\xe4\xaa\xae\xdf~2\xa6X\x14\x92\xdarV\xf4U\xf7\xa2\xc3l\x1b@\xaf\xf9\xc9\xa9#\xf0S\xd9=q\xd6\x14\xedt\xc8!W\xe9@\xeb\x7f~\tB0EE\x9a:\xb7\xff\xc1\xfc\x9a\x1f\xf2\xfb\x19\xda#x\xc5F\x1c~\x8c\xe1\xdf\xdc\x01k\f\xde0~\x95\r\xa2\x80\b4M\x14\xe7\xd0\t`n!g\x14\xe6\xd1\xc2\xd3\x88\xf8cVtd\xbeY\xa5\xe7\x16sD\x96}7\n\x88e\x00\xf0\xff\xff\xf0\xcb\x94\xb4S\x00\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={r2, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x4, 0x600, 0x1}}, 0x20)
r3 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r3, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)="9f", 0x1}], 0x1}, 0x3e8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000014c0)=ANY=[@ANYBLOB="0a00000004000000040000000a00000040000000", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xd, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r4, @ANYBLOB="0000000000000000b708000000bc7a007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r5}, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r6 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r7 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r7, 0x402, 0x8000003d)
close_range(r6, r7, 0x0)
fcntl$lock(r1, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r1, 0x26, &(0x7f00000031c0)={0x1})

1.988470115s ago: executing program 2 (id=1066):
openat$urandom(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x13b}, 0x18)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
socket$netlink(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f3000000000080001400000000114000000020a09"], 0xd4}}, 0x8818)
write$binfmt_misc(r3, &(0x7f0000000000), 0xfffffecc)
splice(r2, 0x0, r4, 0x0, 0x4ffe6, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0x14, &(0x7f0000000380)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'ip6gre0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f00000003c0)="10", 0x1, 0x4000, &(0x7f0000000200)={0x11, 0xf7, r6, 0x1, 0x0, 0x6, @local}, 0x14)
socket(0x1, 0x803, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]})

1.601973713s ago: executing program 4 (id=1069):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x100000}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)

1.508838202s ago: executing program 4 (id=1070):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000340)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8041, 0x1c3)
pwrite64(r1, &(0x7f0000000140)="f6", 0xffffff07, 0x8000c61)

1.446066728s ago: executing program 1 (id=1072):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x400000, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
fsmount(0xffffffffffffffff, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x25dfdbff, {}, [@NHA_OIF={0x8, 0x5, r5}]}, 0x20}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@newnexthop={0x38, 0x68, 0x1, 0x100003, 0x7ffffffd, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x15}]}, @NHA_RES_GROUP={0xc, 0xc, 0x0, 0x1, [@NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x3fd4}]}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0x192}}, 0x20}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000180)={0x0, 0x2}, 0x8)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r8, 0x84, 0x6f, &(0x7f0000000300)={0x0, 0x10, &(0x7f0000000280)=[@in={0x2, 0x4e24, @private=0xa010100}]}, &(0x7f0000000080)=0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r9, @ANYBLOB="0000000000000000b703000000020000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r10}, 0x18)
open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r11=>0x0]}, &(0x7f0000000240)=0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r8, 0x84, 0x75, &(0x7f0000000000)={r11, 0x5}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000040)={r11, 0x401, 0xffff}, 0x8)
sendto$inet6(r1, &(0x7f0000000b80)="be", 0x1, 0x4008014, &(0x7f0000000000)={0xa, 0x4e22, 0x1, @dev={0xfe, 0x80, '\x00', 0x23}, 0x7}, 0x1c)
shutdown(r1, 0x1)

1.378172115s ago: executing program 3 (id=1075):
openat$urandom(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x13b}, 0x18)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$netlink(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f3000000000080001400000000114000000020a09"], 0xd4}}, 0x8818)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)={{0x14}, [@NFT_MSG_NEWRULE={0x38, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x60}}, 0x600c0)
bind$can_j1939(0xffffffffffffffff, &(0x7f0000000040)={0x1d, 0x0, 0x4, {0x0, 0xfe, 0x1}, 0xfe}, 0x3f)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x50, 0x1, 0x1, 0x201, 0x0, 0x0, {0xa, 0x0, 0x5}, [@CTA_TUPLE_REPLY={0x30, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @empty}}}]}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x2}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

1.251027697s ago: executing program 4 (id=1079):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000ff0f00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000007000000010001000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x95255000)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000280)=0x1)
ioctl$TCSETS(r3, 0x89f0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0xf, 0xc, 0x0, 0x0, 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
symlinkat(0x0, 0xffffffffffffff9c, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r4}, &(0x7f00000008c0), &(0x7f0000000880)=r5}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x0, 0x10)
finit_module(r6, 0x0, 0x7)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB="48000000100039042abd7000fddbdb25000003e4", @ANYRES32=0x0, @ANYBLOB="03000000c01006002800128008000100736974001c000280080003000a01010006000e00d304000006000d0007000000321fa1e1539086d1b3ac43dbc6d57b85f27482a1823cbf3803632285b1cf04e967a78e30f29fc96f3bd5e4d12576af1a383438248f7f995ccc7d4113905f715f08d908b13e6e4e305e3a6513db5ec3b9d3313fce9f690acdf11263e83c4cf25bd1b1634ce54475a2aeb3b7ab86c3067b136ce7a01e5debd8f252dcd3f820267acc0a2367d6b9247460f65da67e3d490741fc6cbe770917d99d8c957b6ba9c6ff22"], 0x48}, 0x1, 0x0, 0x0, 0x8080}, 0x4008040)

1.109231161s ago: executing program 2 (id=1082):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000ff0f00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000007000000010001000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x95255000)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000280)=0x1)
ioctl$TCSETS(r3, 0x89f0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0xf, 0xc, 0x0, 0x0, 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
symlinkat(0x0, 0xffffffffffffff9c, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r4}, &(0x7f00000008c0), &(0x7f0000000880)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB="48000000100039042abd7000fddbdb25000003e4", @ANYRES32=0x0, @ANYBLOB="03000000c01006002800128008000100736974001c000280080003000a01010006000e00d304000006000d0007000000321fa1e1539086d1b3ac43dbc6d57b85f27482a1823cbf3803632285b1cf04e967a78e30f29fc96f3bd5e4d12576af1a383438248f7f995ccc7d4113905f715f08d908b13e6e4e305e3a6513db5ec3b9d3313fce9f690acdf11263e83c4cf25bd1b1634ce54475a2aeb3b7ab86c3067b136ce7a01e5debd8f252dcd3f820267acc0a2367d6b9247460f65da67e3d490741fc6cbe770917d99d8c957b6ba9c6ff22"], 0x48}, 0x1, 0x0, 0x0, 0x8080}, 0x4008040)

797.359581ms ago: executing program 0 (id=1084):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff91)
ioctl$F2FS_IOC_SEC_TRIM_FILE(0xffffffffffffffff, 0x4018f514, 0x0)
semget$private(0x0, 0x4, 0x2)
ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000540))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000007000000010001004900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000180), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000000c0)={0x53, 0xfffffffe, 0x6, 0x2, @scatter={0x0, 0x40000, 0x0}, &(0x7f0000000080)="0000501effd4", 0x0, 0x800004, 0x10030, 0x1, 0x0})

795.442522ms ago: executing program 0 (id=1085):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)

723.625879ms ago: executing program 0 (id=1086):
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x7, 0x7, 0x0, 0x0, 0x0, 0x80000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

723.107249ms ago: executing program 0 (id=1087):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2, 0x3, 0xffffffff, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, 0x0, &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r3, 0x29, 0x39, 0x0, 0x0)

698.866201ms ago: executing program 0 (id=1088):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018160000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r3)
sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000ffdbdf25090000006400038008000100010000000800030004000000140002007665744e315f6d616376746170000000060004000200000008000500e0000000140002006970766c616e31"], 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000000c0), 0x5, 0x4dd, &(0x7f0000000c40)="$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")

663.013714ms ago: executing program 4 (id=1089):
io_pgetevents(0x0, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={[0xe]}, 0x8})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000cc0)=@delchain={0x134, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0x9}}, [@TCA_CHAIN={0x8, 0xb, 0xffffffff}, @filter_kind_options=@f_flower={{0xb}, {0x30, 0x2, [@TCA_FLOWER_KEY_FLAGS_MASK={0x8, 0x30, 0x5}, @TCA_FLOWER_KEY_ENC_IP_TOS={0x5, 0x50, 0x5}, @TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @dev={0xfe, 0x80, '\x00', 0x44}}, @TCA_FLOWER_KEY_MPLS_TTL={0x5}]}}, @filter_kind_options=@f_bpf={{0x8}, {0xc4, 0x2, [@TCA_BPF_ACT={0xc0, 0x1, [@m_connmark={0xbc, 0xa, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffffe, 0x9, 0x3, 0x3, 0x1}}}]}, {0x6f, 0x6, "7d1c2f218ab42f594fe5adbe85eea4a07891f03c95b96ccd9c2cc998aa5257967475522c2ef4397c75e5cd9a15b78828602efb5bb8d8f18605fd1d4ac132fc6229edf4a2184213ba5ea94b254ee4adfe495b418382819811503deec2cd166133b7f5ce1aede8154721099e"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1}}}}]}]}}]}, 0x134}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000040)={0x5, 0xfd, 0xffffffffffffffff, 0x5, 0x6, 0x8000000000000001, 0x81, 0x9}, &(0x7f0000000080)={0x8, 0x80, 0x1, 0x5, 0x8000000000000001, 0x2, 0x1b50, 0xf}, &(0x7f00000000c0)={0x4, 0x7, 0x3, 0x5, 0x7, 0x6, 0x8, 0x7}, &(0x7f0000000300)={<r1=>0x77359400}, &(0x7f0000000580)={&(0x7f0000000340)={[0x3]}, 0x8})
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})
syz_io_uring_setup(0x499, &(0x7f0000000400)={0x0, 0xd146, 0x0, 0xc, 0x288}, &(0x7f0000000100), 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r2, &(0x7f0000000340)=ANY=[], 0xff2e)
ioctl$TCXONC(r2, 0x540a, 0x2)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100))
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYRES64=r1], 0x50)
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
sendmsg$nl_route_sched(r3, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0x1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)
shutdown(0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00'}, 0x18)
creat(&(0x7f0000000080)='./file0/file1\x00', 0x90)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)

634.092567ms ago: executing program 0 (id=1090):
io_pgetevents(0x0, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={[0xe]}, 0x8})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000cc0)=@delchain={0x1a8, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0x9}}, [@TCA_CHAIN={0x8, 0xb, 0xffffffff}, @filter_kind_options=@f_flower={{0xb}, {0x38, 0x2, [@TCA_FLOWER_KEY_FLAGS_MASK={0x8, 0x30, 0x5}, @TCA_FLOWER_KEY_ENC_IP_TTL={0x5, 0x52, 0x6}, @TCA_FLOWER_KEY_ENC_IP_TOS={0x5, 0x50, 0x5}, @TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @dev={0xfe, 0x80, '\x00', 0x44}}, @TCA_FLOWER_KEY_MPLS_TTL={0x5}]}}, @filter_kind_options=@f_bpf={{0x8}, {0x130, 0x2, [@TCA_BPF_ACT={0x12c, 0x1, [@m_connmark={0x128, 0xa, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffffe, 0x9, 0x3, 0x3, 0x1}}}]}, {0xd9, 0x6, "7d1c2f218ab42f594fe5adbe85eea4a07891f03c95b96ccd9c2cc998aa5257967475522c2ef4397c75e5cd9a15b78828602efb5bb8d8f18605fd1d4ac132fc6229edf4a2184213ba5ea94b254ee4adfe495b418382819811503deec2cd166133b7f5ce1aede8154721099eb87bbdf128c2d67d606cc26e787ce45c03fde1ba3b27d5dee1efa3eda225021429dfdbc555fa38db8cd8c88f888028d9c70ef8a8946d40da5441a39a55b3cdb62b43c2b7bc5f44599e2dcc16b860d7dbe968ccddcc329a9015e939bf295f7d59358fe899de8e4daa595c"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1}}}}]}]}}]}, 0x1a8}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000040)={0x5, 0xfd, 0xffffffffffffffff, 0x5, 0x6, 0x8000000000000001, 0x81, 0x9}, &(0x7f0000000080)={0x8, 0x80, 0x1, 0x5, 0x8000000000000001, 0x2, 0x1b50, 0xf}, &(0x7f00000000c0)={0x4, 0x7, 0x3, 0x5, 0x7, 0x6, 0x8, 0x7}, &(0x7f0000000300)={<r1=>0x77359400}, &(0x7f0000000580)={&(0x7f0000000340)={[0x3]}, 0x8})
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})
syz_io_uring_setup(0x499, &(0x7f0000000400)={0x0, 0xd146, 0x0, 0xc, 0x288}, &(0x7f0000000100), 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r2, &(0x7f0000000340)=ANY=[], 0xff2e)
ioctl$TCXONC(r2, 0x540a, 0x2)
ioctl$TIOCSETD(r2, 0x5423, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYRES64=r1], 0x50)
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
sendmsg$nl_route_sched(r3, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0x1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)
shutdown(0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00'}, 0x18)
creat(&(0x7f0000000080)='./file0/file1\x00', 0x90)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)

587.268232ms ago: executing program 1 (id=1091):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff91)
ioctl$F2FS_IOC_SEC_TRIM_FILE(0xffffffffffffffff, 0x4018f514, 0x0)
semget$private(0x0, 0x4, 0x2)
ptrace$setregs(0xd, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, 0x0, 0x0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f00000000c0)={0x53, 0xfffffffe, 0x0, 0x2, @scatter={0x0, 0x40000, 0x0}, &(0x7f0000000080), 0x0, 0x800004, 0x10030, 0x1, 0x0})

515.025119ms ago: executing program 1 (id=1092):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='mm_migrate_pages\x00', r1, 0x0, 0x5}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)={0x18, r3, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r4, 0x1, 0x3f, &(0x7f0000000200), 0x4)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000640)='kfree\x00', r6, 0x0, 0x7fff}, 0x18)
r7 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r7, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$rds(r7, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x100000}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)

514.024719ms ago: executing program 3 (id=1093):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x200000}, 0x18)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000480)={0x0, 0xffffffffffffff3c, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r2, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x0)

386.239822ms ago: executing program 4 (id=1094):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000480)='kmem_cache_free\x00', r1}, 0x18)
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee1, 0x80, 0x2, 0x8b4}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000300)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r2, 0x0, 0x0, 0x64, 0x183000, 0x23456})
io_uring_enter(r2, 0x47f6, 0x0, 0x0, 0x0, 0x0)

341.493266ms ago: executing program 3 (id=1095):
r0 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB], 0x64}}, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x800448d2, &(0x7f0000000280))
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
sendfile(r3, r1, &(0x7f0000000200)=0xc17, 0x7f)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
keyctl$search(0xa, 0x0, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000100)={'syz', 0x0}, 0x0)
r4 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r4)
getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmmsg$inet(r0, &(0x7f0000000880)=[{{&(0x7f0000000580)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @empty, @multicast1}}}], 0x20}}], 0x1, 0x4880)

321.731818ms ago: executing program 1 (id=1096):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae000000"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000340)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8041, 0x1c3)
pwrite64(r1, &(0x7f0000000140)="f6", 0xffffff07, 0x8000c61)

217.487689ms ago: executing program 3 (id=1097):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b7000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f00000001c0)={'fscrypt:', @desc1}, &(0x7f0000000080)={0x0, "69dcaf20127e9a854528f45826cb35be51ca73845d177dd8dba7221daeccfda56b75cfe286fdd14cb5b11b1cab614fec2236da7d88ea0f0700", 0x3f}, 0x48, 0xfffffffffffffffe)

185.411102ms ago: executing program 3 (id=1098):
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x7, 0x7, 0x0, 0x0, 0x0, 0x80000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

162.182664ms ago: executing program 4 (id=1099):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f00000003c0)={[{@nombcache}, {@errors_remount}, {@noinit_itable}, {@bsdgroups}, {@bsdgroups}, {@dioread_lock}]}, 0x1, 0x783, &(0x7f0000001340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$binfmt_elf32(0xffffffffffffffff, 0x0, 0x58)
close(0xffffffffffffffff)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
fadvise64(r0, 0x7f, 0x1000000, 0x4)

114.650608ms ago: executing program 3 (id=1100):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000ff0f00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000007000000010001000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x95255000)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000280)=0x1)
ioctl$TCSETS(r3, 0x89f0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0xf, 0xc, 0x0, 0x0, 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
symlinkat(0x0, 0xffffffffffffff9c, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r4}, &(0x7f00000008c0), &(0x7f0000000880)=r5}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r6 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x0, 0x10)
finit_module(r6, 0x0, 0x7)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB="48000000100039042abd7000fddbdb25000003e4", @ANYRES32=0x0, @ANYBLOB="03000000c01006002800128008000100736974001c000280080003000a01010006000e00d304000006000d0007000000321fa1e1539086d1b3ac43dbc6d57b85f27482a1823cbf3803632285b1cf04e967a78e30f29fc96f3bd5e4d12576af1a383438248f7f995ccc7d4113905f715f08d908b13e6e4e305e3a6513db5ec3b9d3313fce9f690acdf11263e83c4cf25bd1b1634ce54475a2aeb3b7ab86c3067b136ce7a01e5debd8f252dcd3f820267acc0a2367d6b9247460f65da67e3d490741fc6cbe770917d99d8c957b6ba9c6ff22"], 0x48}, 0x1, 0x0, 0x0, 0x8080}, 0x4008040)

112.518598ms ago: executing program 2 (id=1101):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x39}, 0x18)
mmap(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x0, 0x20132, 0xffffffffffffffff, 0x391e1000)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x800, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'\x00', 0x2})
ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f0000000380)=ANY=[@ANYRESDEC])
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bridge0\x00'})

6.276819ms ago: executing program 1 (id=1102):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={0x0}}, 0x0)
bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfc, 0x400}, 0xc)
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=@newtfilter={0x70, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xa}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x40, 0x2, [@TCA_BASIC_EMATCHES={0x3c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{}, {0x0, 0x0, 0x1}}}, @TCF_EM_META={0x1c, 0x2, 0x0, 0x0, {{0x0, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc}, @TCA_EM_META_LVALUE={0x4}]}}]}]}]}}]}, 0x70}}, 0x0)

0s ago: executing program 2 (id=1103):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018160000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r2)
sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000ffdbdf25090000006400038008000100010000000800030004000000140002007665744e315f6d616376746170000000060004000200000008000500e0000000140002006970766c616e31"], 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

kernel console output (not intermixed with test programs):

 from 0 to 4096
[   41.903213][ T3580] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   41.922111][ T3580] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.967539][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.014897][ T3592] netlink: 32 bytes leftover after parsing attributes in process `syz.1.38'.
[   42.024123][ T3592] netlink: 8 bytes leftover after parsing attributes in process `syz.1.38'.
[   42.273618][ T3604] netlink: 60 bytes leftover after parsing attributes in process `syz.0.41'.
[   42.283547][ T3604] netlink: 60 bytes leftover after parsing attributes in process `syz.0.41'.
[   42.315613][ T3606] netlink: 12 bytes leftover after parsing attributes in process `syz.0.42'.
[   42.397288][ T3610] loop4: detected capacity change from 0 to 4096
[   42.405802][ T3610] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   42.426219][ T3610] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.513647][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.559428][ T3619] FAULT_INJECTION: forcing a failure.
[   42.559428][ T3619] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   42.572926][ T3619] CPU: 1 UID: 0 PID: 3619 Comm: syz.3.48 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   42.572954][ T3619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   42.572967][ T3619] Call Trace:
[   42.572972][ T3619]  <TASK>
[   42.572980][ T3619]  __dump_stack+0x1d/0x30
[   42.573007][ T3619]  dump_stack_lvl+0xe8/0x140
[   42.573032][ T3619]  dump_stack+0x15/0x1b
[   42.573053][ T3619]  should_fail_ex+0x265/0x280
[   42.573149][ T3619]  should_fail+0xb/0x20
[   42.573195][ T3621] loop4: detected capacity change from 0 to 2048
[   42.573253][ T3619]  should_fail_usercopy+0x1a/0x20
[   42.573336][ T3619]  _copy_from_user+0x1c/0xb0
[   42.573378][ T3619]  do_ipv6_setsockopt+0x124/0x2160
[   42.573415][ T3619]  ? kstrtoull+0x111/0x140
[   42.573471][ T3619]  ? __rcu_read_unlock+0x4f/0x70
[   42.573505][ T3619]  ? avc_has_perm_noaudit+0x1b1/0x200
[   42.573554][ T3619]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[   42.573612][ T3619]  ipv6_setsockopt+0x59/0x130
[   42.573644][ T3619]  tcp_setsockopt+0x95/0xb0
[   42.573685][ T3619]  sock_common_setsockopt+0x69/0x80
[   42.573729][ T3619]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   42.573758][ T3619]  __sys_setsockopt+0x184/0x200
[   42.573795][ T3619]  __x64_sys_setsockopt+0x64/0x80
[   42.573863][ T3619]  x64_sys_call+0x20ec/0x3000
[   42.573892][ T3619]  do_syscall_64+0xd2/0x200
[   42.573924][ T3619]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   42.574036][ T3619]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   42.574178][ T3619]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.574209][ T3619] RIP: 0033:0x7f46c672eec9
[   42.574237][ T3619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.574261][ T3619] RSP: 002b:00007f46c5197038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   42.574288][ T3619] RAX: ffffffffffffffda RBX: 00007f46c6985fa0 RCX: 00007f46c672eec9
[   42.574306][ T3619] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0000000000000006
[   42.574323][ T3619] RBP: 00007f46c5197090 R08: 0000000000000014 R09: 0000000000000000
[   42.574340][ T3619] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[   42.574358][ T3619] R13: 00007f46c6986038 R14: 00007f46c6985fa0 R15: 00007fff07be8f58
[   42.574391][ T3619]  </TASK>
[   42.815293][ T3621] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.845868][    C0] hrtimer: interrupt took 48592 ns
[   42.885373][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.905143][ T3638] netlink: 12 bytes leftover after parsing attributes in process `syz.2.54'.
[   43.097038][ T3649] x_tables: duplicate entry at hook 2
[   43.497951][ T3678] tipc: Can't bind to reserved service type 1
[   44.012225][   T29] kauditd_printk_skb: 933 callbacks suppressed
[   44.012324][   T29] audit: type=1326 audit(1760030357.298:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   44.041778][   T29] audit: type=1326 audit(1760030357.298:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   44.065173][   T29] audit: type=1326 audit(1760030357.298:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   44.088800][   T29] audit: type=1326 audit(1760030357.298:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   44.112406][   T29] audit: type=1326 audit(1760030357.298:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   44.135803][   T29] audit: type=1326 audit(1760030357.298:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   44.159500][   T29] audit: type=1326 audit(1760030357.298:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   44.182768][   T29] audit: type=1326 audit(1760030357.298:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   44.206215][   T29] audit: type=1326 audit(1760030357.298:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   44.229525][   T29] audit: type=1326 audit(1760030357.298:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3693 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   44.243350][ T3701] loop4: detected capacity change from 0 to 512
[   44.287599][ T3701] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   44.399596][ T3701] EXT4-fs (loop4): 1 orphan inode deleted
[   44.406054][ T3701] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.418618][ T1456] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 1
[   44.426542][ T3712] loop3: detected capacity change from 0 to 512
[   44.438794][ T3711] netlink: 24 bytes leftover after parsing attributes in process `syz.2.80'.
[   44.451096][ T3701] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.486362][ T3712] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.499018][ T3712] ext4 filesystem being mounted at /11/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.520419][ T3701] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.76: iget: bad i_size value: 360287970189639690
[   44.589635][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.674475][ T3723] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[   44.681051][ T3723] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   44.688896][ T3723] vhci_hcd vhci_hcd.0: Device attached
[   44.709334][ T3729] netlink: 4 bytes leftover after parsing attributes in process `syz.0.84'.
[   44.872441][   T10] vhci_hcd: vhci_device speed not set
[   44.885337][ T3736] x_tables: duplicate entry at hook 2
[   44.941955][   T10] usb 9-1: new full-speed USB device number 2 using vhci_hcd
[   45.077781][ T3754] loop2: detected capacity change from 0 to 512
[   45.133941][ T3754] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.94: bad orphan inode 11862016
[   45.157810][ T3754] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   45.182125][ T3754] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.202216][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.238281][ T3724] vhci_hcd: connection reset by peer
[   45.253194][   T31] vhci_hcd: stop threads
[   45.257534][   T31] vhci_hcd: release socket
[   45.262029][   T31] vhci_hcd: disconnect device
[   45.454997][ T3770] loop3: detected capacity change from 0 to 4096
[   45.466576][ T3771] loop1: detected capacity change from 0 to 4096
[   45.482544][ T3771] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   45.544943][ T3770] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   45.567103][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   45.610280][ T3771] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.626765][ T3770] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.999562][ T3788] FAULT_INJECTION: forcing a failure.
[   45.999562][ T3788] name failslab, interval 1, probability 0, space 0, times 0
[   46.012297][ T3788] CPU: 1 UID: 0 PID: 3788 Comm: syz.2.106 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   46.012378][ T3788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   46.012424][ T3788] Call Trace:
[   46.012431][ T3788]  <TASK>
[   46.012438][ T3788]  __dump_stack+0x1d/0x30
[   46.012542][ T3788]  dump_stack_lvl+0xe8/0x140
[   46.012565][ T3788]  dump_stack+0x15/0x1b
[   46.012587][ T3788]  should_fail_ex+0x265/0x280
[   46.012641][ T3788]  should_failslab+0x8c/0xb0
[   46.012730][ T3788]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   46.012815][ T3788]  ? __alloc_skb+0x101/0x320
[   46.012902][ T3788]  __alloc_skb+0x101/0x320
[   46.012945][ T3788]  ? audit_log_start+0x342/0x720
[   46.012978][ T3788]  audit_log_start+0x3a0/0x720
[   46.013003][ T3788]  ? kstrtouint+0x76/0xc0
[   46.013044][ T3788]  audit_seccomp+0x48/0x100
[   46.013115][ T3788]  ? __seccomp_filter+0x82d/0x1250
[   46.013141][ T3788]  __seccomp_filter+0x83e/0x1250
[   46.013167][ T3788]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   46.013201][ T3788]  ? vfs_write+0x7e8/0x960
[   46.013366][ T3788]  ? __rcu_read_unlock+0x4f/0x70
[   46.013398][ T3788]  ? __fget_files+0x184/0x1c0
[   46.013434][ T3788]  __secure_computing+0x82/0x150
[   46.013458][ T3788]  syscall_trace_enter+0xcf/0x1e0
[   46.013501][ T3788]  do_syscall_64+0xac/0x200
[   46.013531][ T3788]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   46.013608][ T3788]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   46.013724][ T3788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.013745][ T3788] RIP: 0033:0x7f421369eec9
[   46.013759][ T3788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.013779][ T3788] RSP: 002b:00007f4212107038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[   46.013803][ T3788] RAX: ffffffffffffffda RBX: 00007f42138f5fa0 RCX: 00007f421369eec9
[   46.013819][ T3788] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000003
[   46.013839][ T3788] RBP: 00007f4212107090 R08: 0000000000000000 R09: 0000000000000000
[   46.013854][ T3788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.013870][ T3788] R13: 00007f42138f6038 R14: 00007f42138f5fa0 R15: 00007ffe33bcf798
[   46.013898][ T3788]  </TASK>
[   46.495591][ T3767] syz.3.98 (3767) used greatest stack depth: 6120 bytes left
[   46.514355][ T3804] __nla_validate_parse: 2 callbacks suppressed
[   46.514374][ T3804] netlink: 64 bytes leftover after parsing attributes in process `syz.4.112'.
[   46.538756][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.556167][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.569624][ T3807] loop2: detected capacity change from 0 to 512
[   46.599245][ T3807] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.115: bad orphan inode 11862016
[   46.654871][ T3807] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   46.674974][ T3807] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.775550][ T3825] loop3: detected capacity change from 0 to 512
[   46.797499][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   46.862379][ T3825] EXT4-fs (loop3): 1 orphan inode deleted
[   46.868534][ T3825] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.896445][   T52] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:3: Failed to release dquot type 1
[   46.912614][ T3827] loop4: detected capacity change from 0 to 4096
[   46.912900][ T3835] loop2: detected capacity change from 0 to 128
[   46.943718][ T3827] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   46.970731][ T3825] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.058676][ T3827] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.149030][ T3848] x_tables: duplicate entry at hook 2
[   47.532266][ T3859] netlink: 4 bytes leftover after parsing attributes in process `syz.1.130'.
[   47.605225][ T3863] loop2: detected capacity change from 0 to 512
[   47.626250][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.636008][ T3863] /dev/loop2: Can't open blockdev
[   47.674585][ T3865] netlink: 4 bytes leftover after parsing attributes in process `syz.3.133'.
[   47.698440][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.725502][   T52] Bluetooth: hci0: Frame reassembly failed (-84)
[   47.740286][ T3868] netlink: 14 bytes leftover after parsing attributes in process `syz.2.136'.
[   47.764588][ T3868] hsr_slave_0: left promiscuous mode
[   47.782140][ T3868] hsr_slave_1: left promiscuous mode
[   47.999012][ T3882] loop1: detected capacity change from 0 to 4096
[   48.031735][ T3882] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   48.042999][ T3894] netlink: 4 bytes leftover after parsing attributes in process `syz.3.146'.
[   48.065586][ T3882] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.080411][ T3876] loop4: detected capacity change from 0 to 32768
[   48.088841][ T3897] netlink: 4 bytes leftover after parsing attributes in process `syz.4.134'.
[   48.112495][ T3624]  loop4: p1 p3 < >
[   48.136568][ T3876]  loop4: p1 p3 < >
[   48.376915][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   48.387556][ T3624] udevd[3624]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   48.404888][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   48.416112][ T3624] udevd[3624]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   48.546292][ T3910] netlink: 4 bytes leftover after parsing attributes in process `syz.3.150'.
[   48.596202][ T3912] loop3: detected capacity change from 0 to 128
[   48.702390][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.185747][   T29] kauditd_printk_skb: 636 callbacks suppressed
[   49.185762][   T29] audit: type=1400 audit(1760030362.498:1664): avc:  denied  { create } for  pid=3925 comm="syz.4.157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   49.231950][   T29] audit: type=1400 audit(1760030362.528:1665): avc:  denied  { write } for  pid=3925 comm="syz.4.157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   49.291454][ T3929] loop4: detected capacity change from 0 to 4096
[   49.325236][ T3929] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   49.383855][ T3929] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.433313][   T29] audit: type=1400 audit(1760030362.748:1666): avc:  denied  { unmount } for  pid=3318 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   49.505079][   T29] audit: type=1400 audit(1760030362.778:1667): avc:  denied  { mount } for  pid=3925 comm="syz.4.157" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   49.526900][   T29] audit: type=1400 audit(1760030362.788:1668): avc:  denied  { create } for  pid=3934 comm="syz.3.159" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   49.547274][   T29] audit: type=1326 audit(1760030362.788:1669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3934 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   49.570775][   T29] audit: type=1326 audit(1760030362.798:1670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3934 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   49.594438][   T29] audit: type=1326 audit(1760030362.798:1671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3934 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   49.617863][   T29] audit: type=1326 audit(1760030362.798:1672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3934 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   49.641256][   T29] audit: type=1326 audit(1760030362.808:1673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3934 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   49.717589][ T3939] netlink: 8 bytes leftover after parsing attributes in process `syz.3.161'.
[   49.726549][ T3939] netlink: 52 bytes leftover after parsing attributes in process `syz.3.161'.
[   49.752095][ T3535] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   49.755760][ T3870] Bluetooth: hci0: command 0x1003 tx timeout
[   49.994390][   T10] usb 9-1: enqueue for inactive port 0
[   50.005438][   T10] usb 9-1: enqueue for inactive port 0
[   50.046679][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.072531][   T10] vhci_hcd: vhci_device speed not set
[   50.128923][ T3960] loop4: detected capacity change from 0 to 128
[   50.218045][ T3966] netlink: 40 bytes leftover after parsing attributes in process `syz.4.170'.
[   50.266799][ T3972] loop4: detected capacity change from 0 to 128
[   50.470277][ T3981] loop4: detected capacity change from 0 to 4096
[   50.495812][ T3981] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   50.521092][ T3981] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.704670][ T3990] loop1: detected capacity change from 0 to 512
[   50.734174][ T3990] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.179: bad orphan inode 11862016
[   50.756553][ T3990] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   50.792693][ T3990] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.880194][ T3999] loop3: detected capacity change from 0 to 2048
[   50.888486][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   50.927030][ T3999] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.958562][ T3999] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.091952][ T4007] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.182: bg 0: block 345: padding at end of block bitmap is not set
[   51.189826][ T4007] EXT4-fs (loop3): Remounting filesystem read-only
[   51.322150][ T4021] SELinux:  Context system_u:object is not valid (left unmapped).
[   51.404612][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.523852][ T4038] loop4: detected capacity change from 0 to 512
[   51.583168][ T4038] EXT4-fs (loop4): 1 orphan inode deleted
[   51.589681][ T4038] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.603523][   T52] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:3: Failed to release dquot type 1
[   51.616571][ T4038] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.701680][ T4041] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.195: iget: bad i_size value: 360287970189639690
[   51.715367][ T4041] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.195: iget: bad i_size value: 360287970189639690
[   51.729791][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.166014][ T4058] x_tables: duplicate entry at hook 2
[   52.194421][ T4061] loop2: detected capacity change from 0 to 128
[   52.222767][ T4064] x_tables: duplicate entry at hook 2
[   52.259780][ T4066] loop2: detected capacity change from 0 to 512
[   52.283939][ T4066] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.206: bad orphan inode 11862016
[   52.296117][ T4066] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   52.309047][ T4066] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.344287][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   52.389918][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.402265][ T4076] __nla_validate_parse: 6 callbacks suppressed
[   52.402294][ T4076] netlink: 12 bytes leftover after parsing attributes in process `syz.2.210'.
[   52.419483][ T4078] loop1: detected capacity change from 0 to 128
[   52.905590][ T4108] loop4: detected capacity change from 0 to 4096
[   52.954783][ T4108] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   52.998191][ T4116] loop3: detected capacity change from 0 to 512
[   53.043537][ T4108] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.072337][ T4116] EXT4-fs (loop3): 1 orphan inode deleted
[   53.091794][ T4116] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.104417][ T1456] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 1
[   53.151276][ T4116] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.170613][ T4116] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.227: iget: bad i_size value: 360287970189639690
[   53.246367][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.287450][ T4132] FAULT_INJECTION: forcing a failure.
[   53.287450][ T4132] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.300666][ T4132] CPU: 1 UID: 0 PID: 4132 Comm: syz.3.232 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   53.300700][ T4132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   53.300717][ T4132] Call Trace:
[   53.300724][ T4132]  <TASK>
[   53.300733][ T4132]  __dump_stack+0x1d/0x30
[   53.300759][ T4132]  dump_stack_lvl+0xe8/0x140
[   53.300797][ T4132]  dump_stack+0x15/0x1b
[   53.300819][ T4132]  should_fail_ex+0x265/0x280
[   53.300869][ T4132]  should_fail+0xb/0x20
[   53.300973][ T4132]  should_fail_usercopy+0x1a/0x20
[   53.301055][ T4132]  strncpy_from_user+0x25/0x230
[   53.301092][ T4132]  ? _parse_integer+0x27/0x40
[   53.301134][ T4132]  bpf_raw_tp_link_attach+0x150/0x400
[   53.301167][ T4132]  ? kstrtouint+0x76/0xc0
[   53.301260][ T4132]  bpf_raw_tracepoint_open+0x164/0x2c0
[   53.301286][ T4132]  ? security_bpf+0x2b/0x90
[   53.301336][ T4132]  __sys_bpf+0x6ae/0x7c0
[   53.301375][ T4132]  __x64_sys_bpf+0x41/0x50
[   53.301404][ T4132]  x64_sys_call+0x2aee/0x3000
[   53.301452][ T4132]  do_syscall_64+0xd2/0x200
[   53.301474][ T4132]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   53.301560][ T4132]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   53.301581][ T4132]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.301614][ T4132] RIP: 0033:0x7f46c672eec9
[   53.301640][ T4132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.301727][ T4132] RSP: 002b:00007f46c5197038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   53.301746][ T4132] RAX: ffffffffffffffda RBX: 00007f46c6985fa0 RCX: 00007f46c672eec9
[   53.301797][ T4132] RDX: 0000000000000010 RSI: 0000200000000180 RDI: 0000000000000011
[   53.301813][ T4132] RBP: 00007f46c5197090 R08: 0000000000000000 R09: 0000000000000000
[   53.301828][ T4132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.301843][ T4132] R13: 00007f46c6986038 R14: 00007f46c6985fa0 R15: 00007fff07be8f58
[   53.301868][ T4132]  </TASK>
[   53.598448][ T4139] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   53.741823][ T4149] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=4149 comm=syz.3.238
[   53.788531][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.808813][ T4155] ip6erspan0: entered allmulticast mode
[   53.823846][ T4158] netlink: 12 bytes leftover after parsing attributes in process `syz.2.241'.
[   53.847872][ T4162] loop1: detected capacity change from 0 to 512
[   53.884903][ T4162] EXT4-fs (loop1): 1 orphan inode deleted
[   53.896976][ T4162] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.911591][ T4162] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.922471][   T60] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:4: Failed to release dquot type 1
[   53.922536][ T4170] loop4: detected capacity change from 0 to 512
[   53.941189][ T4162] EXT4-fs error (device loop1): ext4_lookup:1787: inode #15: comm syz.1.243: iget: bad i_size value: 360287970189639690
[   53.974838][ T4170] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.246: bad orphan inode 11862016
[   53.987978][ T4170] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   53.990765][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.002221][ T4170] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.115976][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   54.215340][   T29] kauditd_printk_skb: 2299 callbacks suppressed
[   54.215355][   T29] audit: type=1326 audit(1760030367.528:3970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4187 comm="syz.0.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   54.245111][   T29] audit: type=1326 audit(1760030367.528:3971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4187 comm="syz.0.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   54.268473][   T29] audit: type=1326 audit(1760030367.528:3972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4187 comm="syz.0.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   54.291926][   T29] audit: type=1326 audit(1760030367.528:3973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4187 comm="syz.0.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   54.315328][   T29] audit: type=1326 audit(1760030367.528:3974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4187 comm="syz.0.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   54.338696][   T29] audit: type=1326 audit(1760030367.528:3975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4187 comm="syz.0.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   54.367579][   T29] audit: type=1326 audit(1760030367.528:3976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4187 comm="syz.0.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   54.390972][   T29] audit: type=1326 audit(1760030367.528:3977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4187 comm="syz.0.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   54.414431][   T29] audit: type=1326 audit(1760030367.558:3978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4187 comm="syz.0.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   54.438178][   T29] audit: type=1326 audit(1760030367.558:3979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4187 comm="syz.0.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   54.462561][ T4193] netlink: 4 bytes leftover after parsing attributes in process `syz.0.253'.
[   54.463502][ T4195] FAULT_INJECTION: forcing a failure.
[   54.463502][ T4195] name failslab, interval 1, probability 0, space 0, times 0
[   54.484015][ T4195] CPU: 0 UID: 0 PID: 4195 Comm: syz.3.254 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   54.484050][ T4195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   54.484067][ T4195] Call Trace:
[   54.484074][ T4195]  <TASK>
[   54.484083][ T4195]  __dump_stack+0x1d/0x30
[   54.484107][ T4195]  dump_stack_lvl+0xe8/0x140
[   54.484135][ T4195]  dump_stack+0x15/0x1b
[   54.484151][ T4195]  should_fail_ex+0x265/0x280
[   54.484205][ T4195]  should_failslab+0x8c/0xb0
[   54.484232][ T4195]  kmem_cache_alloc_noprof+0x50/0x480
[   54.484258][ T4195]  ? security_inode_alloc+0x37/0x100
[   54.484305][ T4195]  security_inode_alloc+0x37/0x100
[   54.484368][ T4195]  inode_init_always_gfp+0x4b7/0x500
[   54.484396][ T4195]  alloc_inode+0x58/0x170
[   54.484484][ T4195]  create_pipe_files+0x41/0x440
[   54.484519][ T4195]  __do_pipe_flags+0x44/0x150
[   54.484558][ T4195]  do_pipe2+0x61/0x130
[   54.484648][ T4195]  ? ksys_write+0x192/0x1a0
[   54.484673][ T4195]  __x64_sys_pipe2+0x30/0x40
[   54.484697][ T4195]  x64_sys_call+0x2628/0x3000
[   54.484718][ T4195]  do_syscall_64+0xd2/0x200
[   54.484782][ T4195]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   54.484885][ T4195]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   54.484913][ T4195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.484938][ T4195] RIP: 0033:0x7f46c672eec9
[   54.484986][ T4195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.485062][ T4195] RSP: 002b:00007f46c5197038 EFLAGS: 00000246 ORIG_RAX: 0000000000000125
[   54.485082][ T4195] RAX: ffffffffffffffda RBX: 00007f46c6985fa0 RCX: 00007f46c672eec9
[   54.485094][ T4195] RDX: 0000000000000000 RSI: 0000000000080000 RDI: 0000200000001cc0
[   54.485106][ T4195] RBP: 00007f46c5197090 R08: 0000000000000000 R09: 0000000000000000
[   54.485118][ T4195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.485129][ T4195] R13: 00007f46c6986038 R14: 00007f46c6985fa0 R15: 00007fff07be8f58
[   54.485149][ T4195]  </TASK>
[   54.741665][ T4197] netlink: 96 bytes leftover after parsing attributes in process `syz.4.256'.
[   54.810777][ T4210] FAULT_INJECTION: forcing a failure.
[   54.810777][ T4210] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.824010][ T4210] CPU: 1 UID: 0 PID: 4210 Comm: syz.3.261 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   54.824043][ T4210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   54.824054][ T4210] Call Trace:
[   54.824059][ T4210]  <TASK>
[   54.824066][ T4210]  __dump_stack+0x1d/0x30
[   54.824085][ T4210]  dump_stack_lvl+0xe8/0x140
[   54.824103][ T4210]  dump_stack+0x15/0x1b
[   54.824194][ T4210]  should_fail_ex+0x265/0x280
[   54.824238][ T4210]  should_fail+0xb/0x20
[   54.824361][ T4210]  should_fail_usercopy+0x1a/0x20
[   54.824380][ T4210]  _copy_from_user+0x1c/0xb0
[   54.824403][ T4210]  ___sys_sendmsg+0xc1/0x1d0
[   54.824443][ T4210]  __x64_sys_sendmsg+0xd4/0x160
[   54.824492][ T4210]  x64_sys_call+0x191e/0x3000
[   54.824513][ T4210]  do_syscall_64+0xd2/0x200
[   54.824544][ T4210]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   54.824570][ T4210]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   54.824653][ T4210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.824673][ T4210] RIP: 0033:0x7f46c672eec9
[   54.824687][ T4210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.824703][ T4210] RSP: 002b:00007f46c5197038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   54.824720][ T4210] RAX: ffffffffffffffda RBX: 00007f46c6985fa0 RCX: 00007f46c672eec9
[   54.824778][ T4210] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000006
[   54.824789][ T4210] RBP: 00007f46c5197090 R08: 0000000000000000 R09: 0000000000000000
[   54.824800][ T4210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.824810][ T4210] R13: 00007f46c6986038 R14: 00007f46c6985fa0 R15: 00007fff07be8f58
[   54.824828][ T4210]  </TASK>
[   55.020611][ T4214] loop2: detected capacity change from 0 to 128
[   55.063565][ T4216] netlink: 4 bytes leftover after parsing attributes in process `syz.4.264'.
[   55.072731][ T4216] netlink: 12 bytes leftover after parsing attributes in process `syz.4.264'.
[   55.157955][ T4225] netlink: 4 bytes leftover after parsing attributes in process `syz.0.268'.
[   55.171043][ T4229] FAULT_INJECTION: forcing a failure.
[   55.171043][ T4229] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.184536][ T4229] CPU: 1 UID: 0 PID: 4229 Comm: syz.3.269 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   55.184613][ T4229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   55.184677][ T4229] Call Trace:
[   55.184685][ T4229]  <TASK>
[   55.184694][ T4229]  __dump_stack+0x1d/0x30
[   55.184792][ T4229]  dump_stack_lvl+0xe8/0x140
[   55.184815][ T4229]  dump_stack+0x15/0x1b
[   55.184838][ T4229]  should_fail_ex+0x265/0x280
[   55.184876][ T4229]  should_fail+0xb/0x20
[   55.184928][ T4229]  should_fail_usercopy+0x1a/0x20
[   55.184955][ T4229]  _copy_from_user+0x1c/0xb0
[   55.184988][ T4229]  ___sys_sendmsg+0xc1/0x1d0
[   55.185037][ T4229]  __x64_sys_sendmsg+0xd4/0x160
[   55.185073][ T4229]  x64_sys_call+0x191e/0x3000
[   55.185100][ T4229]  do_syscall_64+0xd2/0x200
[   55.185148][ T4229]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   55.185185][ T4229]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   55.185229][ T4229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.185257][ T4229] RIP: 0033:0x7f46c672eec9
[   55.185273][ T4229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.185297][ T4229] RSP: 002b:00007f46c5197038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   55.185320][ T4229] RAX: ffffffffffffffda RBX: 00007f46c6985fa0 RCX: 00007f46c672eec9
[   55.185354][ T4229] RDX: 0000000000000006 RSI: 0000200000000400 RDI: 0000000000000003
[   55.185366][ T4229] RBP: 00007f46c5197090 R08: 0000000000000000 R09: 0000000000000000
[   55.185377][ T4229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.185392][ T4229] R13: 00007f46c6986038 R14: 00007f46c6985fa0 R15: 00007fff07be8f58
[   55.185417][ T4229]  </TASK>
[   55.400406][ T4237] loop3: detected capacity change from 0 to 512
[   55.416768][ T4237] EXT4-fs (loop3): 1 orphan inode deleted
[   55.428067][ T4237] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.441058][ T1436] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:5: Failed to release dquot type 1
[   55.455365][ T4243] loop4: detected capacity change from 0 to 512
[   55.489206][ T4237] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.504159][ T4243] EXT4-fs (loop4): 1 orphan inode deleted
[   55.510414][ T4243] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.523027][ T1436] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:5: Failed to release dquot type 1
[   55.534884][ T4243] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.984667][ T4297] netlink: 4 bytes leftover after parsing attributes in process `syz.1.276'.
[   56.002359][ T4297] netlink: 12 bytes leftover after parsing attributes in process `syz.1.276'.
[   56.263228][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.298831][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.343843][ T4340] loop2: detected capacity change from 0 to 512
[   56.384467][ T4340] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   56.416773][ T4340] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   56.492509][ T4353] netlink: 4 bytes leftover after parsing attributes in process `syz.3.289'.
[   56.533387][ T4357] x_tables: duplicate entry at hook 2
[   56.543397][ T4359] netlink: 'syz.2.284': attribute type 4 has an invalid length.
[   56.611313][ T3320] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[   56.664697][ T4368] bridge_slave_0: left allmulticast mode
[   56.670520][ T4368] bridge_slave_0: left promiscuous mode
[   56.676478][ T4368] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.686704][ T4368] bridge_slave_1: left allmulticast mode
[   56.692532][ T4368] bridge_slave_1: left promiscuous mode
[   56.698355][ T4368] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.708003][ T4368] bond0: (slave bond_slave_0): Releasing backup interface
[   56.718471][ T4368] bond0: (slave bond_slave_1): Releasing backup interface
[   56.731495][ T4368] team0: Port device team_slave_0 removed
[   56.737514][ T4374] loop4: detected capacity change from 0 to 512
[   56.746294][ T4368] team0: Port device team_slave_1 removed
[   56.754096][ T4368] batman_adv: batadv0: Removing interface: batadv_slave_0
[   56.762336][ T4368] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   56.769770][ T4368] batman_adv: batadv0: Removing interface: batadv_slave_1
[   56.770099][ T4374] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.298: bad orphan inode 11862016
[   56.788026][ T4374] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   56.800675][ T4374] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.898621][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   57.101119][ T4400] loop2: detected capacity change from 0 to 512
[   57.115615][ T4400] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.310: bad orphan inode 11862016
[   57.134258][ T4400] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   57.179648][ T4408] loop1: detected capacity change from 0 to 512
[   57.189425][ T4400] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.213855][ T4408] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.313: bad orphan inode 11862016
[   57.239852][ T4408] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   57.256896][ T4408] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.364998][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   57.378113][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   57.453772][ T4428] __nla_validate_parse: 6 callbacks suppressed
[   57.453793][ T4428] netlink: 4 bytes leftover after parsing attributes in process `syz.4.319'.
[   57.495485][ T4428] netlink: 12 bytes leftover after parsing attributes in process `syz.4.319'.
[   57.530893][ T4434] loop3: detected capacity change from 0 to 512
[   57.544080][ T4434] EXT4-fs (loop3): 1 orphan inode deleted
[   57.557301][ T4434] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.575480][ T4434] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.586704][   T60] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:4: Failed to release dquot type 1
[   57.603116][ T4434] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.324: iget: bad i_size value: 360287970189639690
[   57.648925][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.672334][ T4445] netlink: 12 bytes leftover after parsing attributes in process `syz.3.326'.
[   57.729523][ T4451] loop4: detected capacity change from 0 to 512
[   57.747460][ T4455] FAULT_INJECTION: forcing a failure.
[   57.747460][ T4455] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.760657][ T4455] CPU: 0 UID: 0 PID: 4455 Comm: syz.3.326 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   57.760734][ T4455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   57.760747][ T4455] Call Trace:
[   57.760755][ T4455]  <TASK>
[   57.760773][ T4455]  __dump_stack+0x1d/0x30
[   57.760803][ T4455]  dump_stack_lvl+0xe8/0x140
[   57.760822][ T4455]  dump_stack+0x15/0x1b
[   57.760911][ T4455]  should_fail_ex+0x265/0x280
[   57.760958][ T4455]  should_fail+0xb/0x20
[   57.760997][ T4455]  should_fail_usercopy+0x1a/0x20
[   57.761034][ T4455]  _copy_from_user+0x1c/0xb0
[   57.761081][ T4455]  proc_ioctl_default+0x43/0xa0
[   57.761156][ T4455]  usbdev_ioctl+0xe8b/0x1700
[   57.761188][ T4455]  ? __pfx_usbdev_ioctl+0x10/0x10
[   57.761218][ T4455]  __se_sys_ioctl+0xcb/0x140
[   57.761264][ T4455]  __x64_sys_ioctl+0x43/0x50
[   57.761308][ T4455]  x64_sys_call+0x1816/0x3000
[   57.761347][ T4455]  do_syscall_64+0xd2/0x200
[   57.761375][ T4455]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   57.761412][ T4455]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   57.761441][ T4455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.761470][ T4455] RIP: 0033:0x7f46c672eec9
[   57.761530][ T4455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.761554][ T4455] RSP: 002b:00007f46c5176038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   57.761653][ T4455] RAX: ffffffffffffffda RBX: 00007f46c6986090 RCX: 00007f46c672eec9
[   57.761669][ T4455] RDX: 0000200000000200 RSI: 00000000c0105512 RDI: 0000000000000005
[   57.761681][ T4455] RBP: 00007f46c5176090 R08: 0000000000000000 R09: 0000000000000000
[   57.761696][ T4455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.761711][ T4455] R13: 00007f46c6986128 R14: 00007f46c6986090 R15: 00007fff07be8f58
[   57.761734][ T4455]  </TASK>
[   57.973663][ T4451] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.327: bad orphan inode 11862016
[   57.985283][ T4451] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   57.998085][ T4451] ext4 filesystem being mounted at /68/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.121855][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   58.155692][ T4474] netlink: 12 bytes leftover after parsing attributes in process `syz.3.332'.
[   58.318109][ T4495] netlink: 4 bytes leftover after parsing attributes in process `syz.3.342'.
[   58.332991][ T4494] loop4: detected capacity change from 0 to 512
[   58.390584][ T4498] netlink: 16 bytes leftover after parsing attributes in process `syz.1.343'.
[   58.436610][ T4494] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.341: bad orphan inode 11862016
[   58.475651][ T4494] ext4 filesystem being mounted at /73/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.615663][    T9] kernel read not supported for file /input/event1 (pid: 9 comm: kworker/0:0)
[   58.618806][ T4531] loop1: detected capacity change from 0 to 512
[   58.662203][ T4531] EXT4-fs (loop1): 1 orphan inode deleted
[   58.672527][ T4531] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.686031][ T1456] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 1
[   58.714866][ T4531] EXT4-fs error (device loop1): ext4_lookup:1787: inode #15: comm syz.1.354: iget: bad i_size value: 360287970189639690
[   59.065503][ T4564] loop3: detected capacity change from 0 to 512
[   59.084154][ T4564] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.365: bad orphan inode 11862016
[   59.096871][ T4564] ext4 filesystem being mounted at /74/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.222248][   T29] kauditd_printk_skb: 1782 callbacks suppressed
[   59.222267][   T29] audit: type=1326 audit(1760030372.528:5757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4570 comm="syz.3.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   59.252010][   T29] audit: type=1326 audit(1760030372.538:5758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4570 comm="syz.3.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   59.275590][   T29] audit: type=1326 audit(1760030372.538:5759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4570 comm="syz.3.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   59.299077][   T29] audit: type=1326 audit(1760030372.538:5760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4570 comm="syz.3.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   59.322352][   T29] audit: type=1326 audit(1760030372.538:5761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4570 comm="syz.3.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   59.345758][   T29] audit: type=1326 audit(1760030372.538:5762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4570 comm="syz.3.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   59.369135][   T29] audit: type=1326 audit(1760030372.538:5763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4570 comm="syz.3.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   59.392503][   T29] audit: type=1326 audit(1760030372.538:5764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4570 comm="syz.3.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   59.415854][   T29] audit: type=1326 audit(1760030372.538:5765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4570 comm="syz.3.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   59.439274][   T29] audit: type=1326 audit(1760030372.538:5766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4570 comm="syz.3.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   59.567028][ T4588] netlink: 4 bytes leftover after parsing attributes in process `syz.3.375'.
[   59.577506][ T4586] x_tables: duplicate entry at hook 2
[   59.780327][ T4607] ip6erspan0: entered allmulticast mode
[   59.850349][ T4615] netlink: 4 bytes leftover after parsing attributes in process `syz.3.387'.
[   59.879772][ T4619] x_tables: duplicate entry at hook 2
[   60.039940][ T4639] loop1: detected capacity change from 0 to 512
[   60.062953][ T4639] EXT4-fs warning (device loop1): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   60.169605][ T4650] netlink: 4 bytes leftover after parsing attributes in process `syz.3.400'.
[   60.205699][ T4652] x_tables: duplicate entry at hook 2
[   60.337404][ T4664] Driver unsupported XDP return value 0 on prog  (id 275) dev N/A, expect packet loss!
[   60.547296][ T4674] loop1: detected capacity change from 0 to 512
[   60.595621][ T4674] EXT4-fs (loop1): 1 orphan inode deleted
[   60.611201][ T4682] loop3: detected capacity change from 0 to 512
[   60.614864][ T4674] ext4 filesystem being mounted at /74/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.622241][ T1456] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 1
[   60.665151][ T4682] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   60.731432][ T4695] x_tables: duplicate entry at hook 2
[   61.011228][ T4708] netlink: 4 bytes leftover after parsing attributes in process `syz.3.421'.
[   61.044488][ T4712] loop4: detected capacity change from 0 to 512
[   61.056092][ T4712] EXT4-fs (loop4): orphan cleanup on readonly fs
[   61.063178][ T4712] EXT4-fs warning (device loop4): ext4_xattr_inode_get:560: inode #11: comm syz.4.422: EA inode hash validation failed
[   61.076100][ T4712] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   61.089258][ T4712] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #15: comm syz.4.422: corrupted inode contents
[   61.101391][ T4712] EXT4-fs error (device loop4): ext4_dirty_inode:6509: inode #15: comm syz.4.422: mark_inode_dirty error
[   61.113388][ T4712] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #15: comm syz.4.422: corrupted inode contents
[   61.131961][ T4712] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2996: inode #15: comm syz.4.422: mark_inode_dirty error
[   61.145303][ T4712] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2999: inode #15: comm syz.4.422: mark inode dirty (error -117)
[   61.159040][ T4712] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[   61.170489][ T4712] EXT4-fs (loop4): 1 orphan inode deleted
[   61.319396][ T4726] loop4: detected capacity change from 0 to 4096
[   61.329420][ T4726] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   61.475586][ T4732] x_tables: duplicate entry at hook 2
[   61.490062][ T4730] loop1: detected capacity change from 0 to 512
[   61.524569][ T4730] EXT4-fs (loop1): orphan cleanup on readonly fs
[   61.533084][ T4730] EXT4-fs warning (device loop1): ext4_xattr_inode_get:560: inode #11: comm syz.1.427: EA inode hash validation failed
[   61.562135][ T4730] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #15: comm syz.1.427: corrupted inode contents
[   61.580738][ T4730] EXT4-fs error (device loop1): ext4_dirty_inode:6509: inode #15: comm syz.1.427: mark_inode_dirty error
[   61.595005][ T4730] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #15: comm syz.1.427: corrupted inode contents
[   61.607312][ T4730] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2996: inode #15: comm syz.1.427: mark_inode_dirty error
[   61.619757][ T4730] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2999: inode #15: comm syz.1.427: mark inode dirty (error -117)
[   61.632440][ T4730] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117)
[   61.641590][ T4730] EXT4-fs (loop1): 1 orphan inode deleted
[   61.987723][ T4746] FAULT_INJECTION: forcing a failure.
[   61.987723][ T4746] name failslab, interval 1, probability 0, space 0, times 0
[   62.000464][ T4746] CPU: 0 UID: 0 PID: 4746 Comm: syz.1.433 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   62.000492][ T4746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   62.000506][ T4746] Call Trace:
[   62.000514][ T4746]  <TASK>
[   62.000563][ T4746]  __dump_stack+0x1d/0x30
[   62.000616][ T4746]  dump_stack_lvl+0xe8/0x140
[   62.000636][ T4746]  dump_stack+0x15/0x1b
[   62.000657][ T4746]  should_fail_ex+0x265/0x280
[   62.000702][ T4746]  ? __se_sys_memfd_create+0x1cc/0x590
[   62.000734][ T4746]  should_failslab+0x8c/0xb0
[   62.000767][ T4746]  __kmalloc_cache_noprof+0x4c/0x4a0
[   62.000799][ T4746]  ? fput+0x8f/0xc0
[   62.000862][ T4746]  __se_sys_memfd_create+0x1cc/0x590
[   62.000889][ T4746]  __x64_sys_memfd_create+0x31/0x40
[   62.000910][ T4746]  x64_sys_call+0x2ac2/0x3000
[   62.000954][ T4746]  do_syscall_64+0xd2/0x200
[   62.000983][ T4746]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   62.001089][ T4746]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   62.001118][ T4746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.001146][ T4746] RIP: 0033:0x7f6836c4eec9
[   62.001164][ T4746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.001182][ T4746] RSP: 002b:00007f68356b6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   62.001234][ T4746] RAX: ffffffffffffffda RBX: 000000000000046f RCX: 00007f6836c4eec9
[   62.001248][ T4746] RDX: 00007f68356b6ef0 RSI: 0000000000000000 RDI: 00007f6836cd2960
[   62.001261][ T4746] RBP: 0000200000001040 R08: 00007f68356b6bb7 R09: 00007f68356b6e40
[   62.001275][ T4746] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000001c0
[   62.001291][ T4746] R13: 00007f68356b6ef0 R14: 00007f68356b6eb0 R15: 0000200000000680
[   62.001318][ T4746]  </TASK>
[   62.315674][ T4757] loop1: detected capacity change from 0 to 512
[   62.319438][ T4759] x_tables: duplicate entry at hook 2
[   62.404755][ T4757] EXT4-fs (loop1): 1 orphan inode deleted
[   62.422148][   T60] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:4: Failed to release dquot type 1
[   62.433691][ T4757] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.480012][ T4770] loop3: detected capacity change from 0 to 1024
[   62.506361][ T4770] EXT4-fs: Ignoring removed orlov option
[   62.539582][ T4770] ext4 filesystem being mounted at /104/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.922510][ T4812] x_tables: duplicate entry at hook 2
[   62.966217][ T4818] loop4: detected capacity change from 0 to 512
[   62.981964][ T4816] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   62.988529][ T4816] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   62.996471][ T4816] vhci_hcd vhci_hcd.0: Device attached
[   63.026097][ T4818] EXT4-fs (loop4): 1 orphan inode deleted
[   63.034082][ T4818] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.042408][   T60] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:4: Failed to release dquot type 1
[   63.242170][ T1044] usb 7-1: new low-speed USB device number 2 using vhci_hcd
[   63.372163][ T4832] loop1: detected capacity change from 0 to 32768
[   63.412484][ T3624]  loop1: p1 p3 < >
[   63.422419][ T4832]  loop1: p1 p3 < >
[   63.442098][ T4832] netlink: 4 bytes leftover after parsing attributes in process `syz.1.460'.
[   63.623238][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   63.644825][ T3624] udevd[3624]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   63.794877][ T4819] vhci_hcd: connection reset by peer
[   63.800845][ T4857] netlink: 4 bytes leftover after parsing attributes in process `syz.1.470'.
[   63.800909][   T60] vhci_hcd: stop threads
[   63.800917][   T60] vhci_hcd: release socket
[   63.800928][   T60] vhci_hcd: disconnect device
[   63.948922][ T4870] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[   63.955608][ T4870] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   63.963061][ T4870] vhci_hcd vhci_hcd.0: Device attached
[   63.995549][ T4871] usbip_core: unknown command
[   64.000348][ T4871] vhci_hcd: unknown pdu 2844066640
[   64.005528][ T4871] usbip_core: unknown command
[   64.055787][   T52] vhci_hcd: stop threads
[   64.060075][   T52] vhci_hcd: release socket
[   64.061629][ T4873] loop2: detected capacity change from 0 to 4096
[   64.064537][   T52] vhci_hcd: disconnect device
[   64.105889][ T4873] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   64.134393][ T4867] ªªªªªª: renamed from vlan0 (while UP)
[   64.241199][   T29] kauditd_printk_skb: 1047 callbacks suppressed
[   64.241217][   T29] audit: type=1326 audit(1760030377.548:6809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.3.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   64.271073][   T29] audit: type=1326 audit(1760030377.558:6810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.3.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   64.294579][   T29] audit: type=1326 audit(1760030377.568:6811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.3.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   64.319645][   T29] audit: type=1326 audit(1760030377.578:6812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.3.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   64.343121][   T29] audit: type=1326 audit(1760030377.588:6813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.3.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   64.366435][   T29] audit: type=1326 audit(1760030377.598:6814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.3.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   64.389957][   T29] audit: type=1326 audit(1760030377.608:6815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.3.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   64.413388][   T29] audit: type=1326 audit(1760030377.618:6816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.3.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   64.737455][ T4909] loop4: detected capacity change from 0 to 512
[   64.787538][ T4909] EXT4-fs (loop4): 1 orphan inode deleted
[   64.794828][   T29] audit: type=1326 audit(1760030378.098:6817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4910 comm="syz.3.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   64.797629][ T4909] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.818209][   T29] audit: type=1326 audit(1760030378.098:6818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4910 comm="syz.3.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   64.852587][   T60] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:4: Failed to release dquot type 1
[   65.000214][ T4914] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.490: iget: bad i_size value: 360287970189639690
[   65.031845][ T4916] loop1: detected capacity change from 0 to 512
[   65.065221][ T4916] EXT4-fs (loop1): 1 orphan inode deleted
[   65.081566][ T4916] ext4 filesystem being mounted at /86/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.116383][ T4920] netlink: 40 bytes leftover after parsing attributes in process `syz.2.493'.
[   65.122033][ T3468] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:7: Failed to release dquot type 1
[   65.356790][ T4932] loop3: detected capacity change from 0 to 4096
[   65.370401][ T4932] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   65.617032][ T4936] netlink: 4 bytes leftover after parsing attributes in process `syz.4.499'.
[   65.660437][ T4940] netlink: 4 bytes leftover after parsing attributes in process `syz.4.501'.
[   65.670223][ T4940] netlink: 28 bytes leftover after parsing attributes in process `syz.4.501'.
[   65.734376][ T4948] x_tables: duplicate entry at hook 2
[   66.140230][ T4969] netlink: 4 bytes leftover after parsing attributes in process `syz.1.513'.
[   66.172592][ T4969] netlink: 28 bytes leftover after parsing attributes in process `syz.1.513'.
[   66.312297][ T4986] loop2: detected capacity change from 0 to 512
[   66.348636][ T4986] EXT4-fs (loop2): 1 orphan inode deleted
[   66.362102][   T60] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:4: Failed to release dquot type 1
[   66.408595][ T4986] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.495768][ T4978] loop4: detected capacity change from 0 to 4096
[   66.609256][ T4978] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   66.825313][ T5017] netlink: 4 bytes leftover after parsing attributes in process `syz.0.531'.
[   66.842307][ T5017] netlink: 28 bytes leftover after parsing attributes in process `syz.0.531'.
[   67.489653][ T5067] loop2: detected capacity change from 0 to 512
[   67.503855][ T5067] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.553: bad orphan inode 11862016
[   67.526815][ T5067] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.728283][ T5073] loop4: detected capacity change from 0 to 4096
[   67.767037][ T5073] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   67.781124][ T5078] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.790019][ T5078] batadv_slave_0: entered promiscuous mode
[   67.866301][ T5084] loop2: detected capacity change from 0 to 4096
[   67.879304][ T5084] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   68.313851][ T1044] usb 7-1: enqueue for inactive port 0
[   68.332124][ T1044] usb 7-1: enqueue for inactive port 0
[   68.412079][ T1044] vhci_hcd: vhci_device speed not set
[   68.806516][ T5130] __nla_validate_parse: 6 callbacks suppressed
[   68.806536][ T5130] netlink: 4 bytes leftover after parsing attributes in process `syz.2.574'.
[   69.243593][   T29] kauditd_printk_skb: 379 callbacks suppressed
[   69.243612][   T29] audit: type=1326 audit(1760030382.558:7195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5137 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4213695d67 code=0x7ffc0000
[   69.345015][   T29] audit: type=1326 audit(1760030382.558:7196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5137 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f421363af79 code=0x7ffc0000
[   69.367811][   T29] audit: type=1326 audit(1760030382.558:7197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5137 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f421369eec9 code=0x7ffc0000
[   69.390641][   T29] audit: type=1326 audit(1760030382.558:7198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5137 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4213695d67 code=0x7ffc0000
[   69.413552][   T29] audit: type=1326 audit(1760030382.558:7199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5137 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f421363af79 code=0x7ffc0000
[   69.437209][   T29] audit: type=1326 audit(1760030382.558:7200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5137 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f421369eec9 code=0x7ffc0000
[   69.460546][   T29] audit: type=1326 audit(1760030382.558:7201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5137 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4213695d67 code=0x7ffc0000
[   69.483404][   T29] audit: type=1326 audit(1760030382.558:7202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5137 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f421363af79 code=0x7ffc0000
[   69.506150][   T29] audit: type=1326 audit(1760030382.558:7203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5137 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f421369eec9 code=0x7ffc0000
[   69.528978][   T29] audit: type=1326 audit(1760030382.588:7204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5137 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4213695d67 code=0x7ffc0000
[   69.839875][ T5163] netlink: 4 bytes leftover after parsing attributes in process `syz.3.586'.
[   69.970912][ T5180] netlink: 12 bytes leftover after parsing attributes in process `syz.4.595'.
[   70.019307][ T5185] loop3: detected capacity change from 0 to 512
[   70.054599][ T5185] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.597: bad orphan inode 11862016
[   70.069391][ T5185] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.252488][ T5201] netlink: 4 bytes leftover after parsing attributes in process `syz.3.602'.
[   70.611950][ T5217] netlink: 12 bytes leftover after parsing attributes in process `syz.3.611'.
[   70.732916][ T5228] netlink: 4 bytes leftover after parsing attributes in process `syz.3.616'.
[   70.860111][ T5239] netlink: 4 bytes leftover after parsing attributes in process `syz.1.620'.
[   71.148946][ T5262] netlink: 4 bytes leftover after parsing attributes in process `syz.0.632'.
[   71.199803][ T5269] x_tables: duplicate entry at hook 2
[   71.748104][ T5309] loop3: detected capacity change from 0 to 4096
[   71.816672][ T5309] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   71.879096][ T5309] EXT4-fs mount: 44 callbacks suppressed
[   71.879116][ T5309] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.972979][ T5323] loop2: detected capacity change from 0 to 2048
[   72.011055][ T5323] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.058704][ T5323] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.077838][ T5332] netlink: 4 bytes leftover after parsing attributes in process `syz.4.658'.
[   72.117861][ T5332] netlink: 12 bytes leftover after parsing attributes in process `syz.4.658'.
[   72.185391][ T5334] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.655: bg 0: block 345: padding at end of block bitmap is not set
[   72.210305][ T5334] EXT4-fs (loop2): Remounting filesystem read-only
[   72.678841][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.009976][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.351792][ T5420] loop3: detected capacity change from 0 to 128
[   73.455051][ T5423] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[   73.461584][ T5423] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   73.469091][ T5423] vhci_hcd vhci_hcd.0: Device attached
[   73.476063][ T5425] usbip_core: unknown command
[   73.480748][ T5425] vhci_hcd: unknown pdu 2844066640
[   73.485927][ T5425] usbip_core: unknown command
[   73.490960][   T37] vhci_hcd: stop threads
[   73.495363][   T37] vhci_hcd: release socket
[   73.499821][   T37] vhci_hcd: disconnect device
[   73.952075][ T5441] __nla_validate_parse: 4 callbacks suppressed
[   73.952090][ T5441] netlink: 4 bytes leftover after parsing attributes in process `syz.0.702'.
[   73.968858][ T5441] netlink: 12 bytes leftover after parsing attributes in process `syz.0.702'.
[   74.259880][   T29] kauditd_printk_skb: 1006 callbacks suppressed
[   74.259893][   T29] audit: type=1326 audit(1760030387.568:8211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.0.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   74.289608][   T29] audit: type=1326 audit(1760030387.568:8212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.0.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   74.305267][ T5475] loop1: detected capacity change from 0 to 2048
[   74.313092][   T29] audit: type=1326 audit(1760030387.568:8213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.0.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   74.342776][   T29] audit: type=1326 audit(1760030387.568:8214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.0.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   74.366252][   T29] audit: type=1326 audit(1760030387.568:8215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.0.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   74.389678][   T29] audit: type=1326 audit(1760030387.568:8216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.0.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   74.423143][ T5475] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.436016][ T5477] loop3: detected capacity change from 0 to 4096
[   74.445386][ T5475] ext4 filesystem being mounted at /132/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.458107][ T5477] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   74.492406][   T29] audit: type=1326 audit(1760030387.698:8217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.0.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f391490eec9 code=0x7ffc0000
[   74.515839][   T29] audit: type=1326 audit(1760030387.698:8218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.0.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f391490ef03 code=0x7ffc0000
[   74.539038][   T29] audit: type=1326 audit(1760030387.698:8219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.0.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f391490d97f code=0x7ffc0000
[   74.562544][   T29] audit: type=1326 audit(1760030387.698:8220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5472 comm="syz.0.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f391490ef57 code=0x7ffc0000
[   74.587842][ T5477] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.610209][ T5482] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.717: bg 0: block 345: padding at end of block bitmap is not set
[   74.632504][ T5482] EXT4-fs (loop1): Remounting filesystem read-only
[   74.665268][ T3468] EXT4-fs (loop1): ext4_do_writepages: jbd2_start: 9216 pages, ino 15; err -30
[   74.697103][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.061747][ T5511] netlink: 4 bytes leftover after parsing attributes in process `syz.2.731'.
[   75.169862][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.891974][ T5579] x_tables: duplicate entry at hook 2
[   76.489123][ T5603] loop1: detected capacity change from 0 to 512
[   76.503674][ T5603] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.757: bad orphan inode 11862016
[   76.515593][ T5603] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   76.528545][ T5603] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.552682][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   76.708818][ T1436] Bluetooth: hci0: Frame reassembly failed (-84)
[   76.723320][ T5623] netlink: 14 bytes leftover after parsing attributes in process `syz.1.765'.
[   76.732723][ T5623] hsr_slave_0: left promiscuous mode
[   76.738959][ T5623] hsr_slave_1: left promiscuous mode
[   77.106233][ T5640] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   77.113903][ T5640] batadv_slave_0: entered promiscuous mode
[   77.139138][ T5642] netlink: 4 bytes leftover after parsing attributes in process `syz.0.774'.
[   77.242520][ T5650] netlink: 4 bytes leftover after parsing attributes in process `syz.0.778'.
[   77.279243][ T5658] loop4: detected capacity change from 0 to 128
[   77.547219][ T5679] netlink: 4 bytes leftover after parsing attributes in process `syz.2.789'.
[   77.619635][ T5687] x_tables: duplicate entry at hook 2
[   77.654011][ T5692] loop2: detected capacity change from 0 to 2048
[   77.673166][ T5692] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.685315][ T5692] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.759684][ T5700] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.794: bg 0: block 345: padding at end of block bitmap is not set
[   77.774742][ T5700] EXT4-fs (loop2): Remounting filesystem read-only
[   77.820372][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.937280][ T5707] loop3: detected capacity change from 0 to 4096
[   77.949844][ T5707] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   77.965723][ T5707] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.138712][ T5713] loop2: detected capacity change from 0 to 4096
[   78.149603][ T5713] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   78.164621][ T5713] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.413274][ T5724] x_tables: duplicate entry at hook 2
[   78.650225][ T5704] syz.3.799 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   78.664337][ T5704] CPU: 1 UID: 0 PID: 5704 Comm: syz.3.799 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   78.664441][ T5704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   78.664457][ T5704] Call Trace:
[   78.664466][ T5704]  <TASK>
[   78.664476][ T5704]  __dump_stack+0x1d/0x30
[   78.664508][ T5704]  dump_stack_lvl+0xe8/0x140
[   78.664535][ T5704]  dump_stack+0x15/0x1b
[   78.664619][ T5704]  dump_header+0x81/0x220
[   78.664655][ T5704]  oom_kill_process+0x342/0x400
[   78.664769][ T5704]  out_of_memory+0x979/0xb80
[   78.664813][ T5704]  try_charge_memcg+0x5e6/0x9e0
[   78.664944][ T5704]  obj_cgroup_charge_pages+0xa6/0x150
[   78.665051][ T5704]  __memcg_kmem_charge_page+0x9f/0x170
[   78.665095][ T5704]  __alloc_frozen_pages_noprof+0x188/0x360
[   78.665146][ T5704]  alloc_pages_mpol+0xb3/0x260
[   78.665272][ T5704]  ? alloc_pages_noprof+0x61/0x130
[   78.665300][ T5704]  alloc_pages_noprof+0x90/0x130
[   78.665326][ T5704]  __vmalloc_node_range_noprof+0x7a5/0xed0
[   78.665389][ T5704]  __kvmalloc_node_noprof+0x483/0x670
[   78.665490][ T5704]  ? ip_set_alloc+0x24/0x30
[   78.665522][ T5704]  ? ip_set_alloc+0x24/0x30
[   78.665595][ T5704]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   78.665637][ T5704]  ip_set_alloc+0x24/0x30
[   78.665665][ T5704]  hash_netiface_create+0x282/0x740
[   78.665808][ T5704]  ? __pfx_hash_netiface_create+0x10/0x10
[   78.665852][ T5704]  ip_set_create+0x3c9/0x970
[   78.665972][ T5704]  ? __nla_parse+0x40/0x60
[   78.666009][ T5704]  nfnetlink_rcv_msg+0x4c6/0x590
[   78.666069][ T5704]  netlink_rcv_skb+0x120/0x220
[   78.666096][ T5704]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   78.666167][ T5704]  nfnetlink_rcv+0x167/0x16c0
[   78.666194][ T5704]  ? kmem_cache_free+0xe4/0x3d0
[   78.666306][ T5704]  ? __kfree_skb+0x109/0x150
[   78.666330][ T5704]  ? nlmon_xmit+0x4f/0x60
[   78.666352][ T5704]  ? consume_skb+0x49/0x150
[   78.666408][ T5704]  ? nlmon_xmit+0x4f/0x60
[   78.666437][ T5704]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   78.666473][ T5704]  ? __dev_queue_xmit+0x1200/0x2000
[   78.666524][ T5704]  ? __dev_queue_xmit+0x182/0x2000
[   78.666563][ T5704]  ? ref_tracker_free+0x37d/0x3e0
[   78.666618][ T5704]  ? __netlink_deliver_tap+0x4dc/0x500
[   78.666734][ T5704]  netlink_unicast+0x5bd/0x690
[   78.666774][ T5704]  netlink_sendmsg+0x58b/0x6b0
[   78.666817][ T5704]  ? __pfx_netlink_sendmsg+0x10/0x10
[   78.666869][ T5704]  __sock_sendmsg+0x145/0x180
[   78.666942][ T5704]  ____sys_sendmsg+0x31e/0x4e0
[   78.667082][ T5704]  ___sys_sendmsg+0x17b/0x1d0
[   78.667135][ T5704]  __x64_sys_sendmsg+0xd4/0x160
[   78.667171][ T5704]  x64_sys_call+0x191e/0x3000
[   78.667201][ T5704]  do_syscall_64+0xd2/0x200
[   78.667261][ T5704]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   78.667350][ T5704]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   78.667376][ T5704]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.667468][ T5704] RIP: 0033:0x7f46c672eec9
[   78.667484][ T5704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.667502][ T5704] RSP: 002b:00007f46c5197038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.667526][ T5704] RAX: ffffffffffffffda RBX: 00007f46c6985fa0 RCX: 00007f46c672eec9
[   78.667543][ T5704] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 000000000000000a
[   78.667610][ T5704] RBP: 00007f46c67b1f91 R08: 0000000000000000 R09: 0000000000000000
[   78.667623][ T5704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   78.667635][ T5704] R13: 00007f46c6986038 R14: 00007f46c6985fa0 R15: 00007fff07be8f58
[   78.667656][ T5704]  </TASK>
[   78.667665][ T5704] memory: usage 307200kB, limit 307200kB, failcnt 542
[   78.711935][ T3870] Bluetooth: hci0: command 0x1003 tx timeout
[   78.716015][ T5704] memory+swap: usage 309432kB, limit 9007199254740988kB, failcnt 0
[   78.761995][ T3535] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   78.762861][ T5704] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[   79.047720][ T5704] Memory cgroup stats for /syz3:
[   79.048619][ T5704] cache 8192
[   79.056813][ T5704] rss 0
[   79.059572][ T5704] shmem 0
[   79.062530][ T5704] mapped_file 0
[   79.066002][ T5704] dirty 0
[   79.068945][ T5704] writeback 0
[   79.072250][ T5704] workingset_refault_anon 855
[   79.076944][ T5704] workingset_refault_file 3955
[   79.081711][ T5704] swap 2285568
[   79.085107][ T5704] swapcached 20480
[   79.088879][ T5704] pgpgin 43367
[   79.092311][ T5704] pgpgout 43360
[   79.095779][ T5704] pgfault 51664
[   79.099234][ T5704] pgmajfault 321
[   79.102943][ T5704] inactive_anon 20480
[   79.106955][ T5704] active_anon 0
[   79.110473][ T5704] inactive_file 0
[   79.114209][ T5704] active_file 8192
[   79.117939][ T5704] unevictable 0
[   79.121395][ T5704] hierarchical_memory_limit 314572800
[   79.126801][ T5704] hierarchical_memsw_limit 9223372036854771712
[   79.132978][ T5704] total_cache 8192
[   79.136690][ T5704] total_rss 0
[   79.139967][ T5704] total_shmem 0
[   79.143452][ T5704] total_mapped_file 0
[   79.147501][ T5704] total_dirty 0
[   79.151010][ T5704] total_writeback 0
[   79.154842][ T5704] total_workingset_refault_anon 855
[   79.160066][ T5704] total_workingset_refault_file 3955
[   79.165408][ T5704] total_swap 2285568
[   79.169341][ T5704] total_swapcached 20480
[   79.173642][ T5704] total_pgpgin 43367
[   79.177544][ T5704] total_pgpgout 43360
[   79.181602][ T5704] total_pgfault 51664
[   79.185624][ T5704] total_pgmajfault 321
[   79.189701][ T5704] total_inactive_anon 20480
[   79.194310][ T5704] total_active_anon 0
[   79.198298][ T5704] total_inactive_file 0
[   79.202545][ T5704] total_active_file 8192
[   79.206823][ T5704] total_unevictable 0
[   79.210814][ T5704] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.799,pid=5703,uid=0
[   79.225466][ T5704] Memory cgroup out of memory: Killed process 5703 (syz.3.799) total-vm:93956kB, anon-rss:1264kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   79.268926][   T29] kauditd_printk_skb: 1887 callbacks suppressed
[   79.268939][   T29] audit: type=1326 audit(1760030392.578:10108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5743 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4be1bf5d67 code=0x7ffc0000
[   79.298110][   T29] audit: type=1326 audit(1760030392.578:10109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5743 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4be1b9af79 code=0x7ffc0000
[   79.321145][   T29] audit: type=1326 audit(1760030392.578:10110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5743 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   79.401966][   T29] audit: type=1326 audit(1760030392.658:10111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5743 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4be1bf5d67 code=0x7ffc0000
[   79.424954][   T29] audit: type=1326 audit(1760030392.658:10112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5743 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4be1b9af79 code=0x7ffc0000
[   79.447869][   T29] audit: type=1326 audit(1760030392.658:10113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5743 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   79.468387][ T5753] loop1: detected capacity change from 0 to 1024
[   79.470779][   T29] audit: type=1326 audit(1760030392.658:10114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5743 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4be1bf5d67 code=0x7ffc0000
[   79.499816][   T29] audit: type=1326 audit(1760030392.658:10115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5743 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4be1b9af79 code=0x7ffc0000
[   79.522780][   T29] audit: type=1326 audit(1760030392.658:10116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5743 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   79.545639][   T29] audit: type=1326 audit(1760030392.668:10117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5743 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4be1bf5d67 code=0x7ffc0000
[   79.571605][ T5753] EXT4-fs: Ignoring removed orlov option
[   79.617213][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.628950][ T5761] netlink: 4 bytes leftover after parsing attributes in process `syz.4.824'.
[   79.656541][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.671006][ T5753] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   79.704709][ T5753] ext4 filesystem being mounted at /144/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.719013][ T5753] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   79.800983][ T5773] loop3: detected capacity change from 0 to 128
[   80.049658][ T5793] loop2: detected capacity change from 0 to 4096
[   80.115064][ T5793] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   80.167251][ T5793] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.617139][ T5782] syz.2.831 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   80.631221][ T5782] CPU: 1 UID: 0 PID: 5782 Comm: syz.2.831 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   80.631274][ T5782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   80.631291][ T5782] Call Trace:
[   80.631310][ T5782]  <TASK>
[   80.631320][ T5782]  __dump_stack+0x1d/0x30
[   80.631348][ T5782]  dump_stack_lvl+0xe8/0x140
[   80.631374][ T5782]  dump_stack+0x15/0x1b
[   80.631405][ T5782]  dump_header+0x81/0x220
[   80.631442][ T5782]  oom_kill_process+0x342/0x400
[   80.631562][ T5782]  out_of_memory+0x979/0xb80
[   80.631597][ T5782]  try_charge_memcg+0x5e6/0x9e0
[   80.631632][ T5782]  obj_cgroup_charge_pages+0xa6/0x150
[   80.631722][ T5782]  __memcg_kmem_charge_page+0x9f/0x170
[   80.631763][ T5782]  __alloc_frozen_pages_noprof+0x188/0x360
[   80.631815][ T5782]  alloc_pages_mpol+0xb3/0x260
[   80.631859][ T5782]  ? alloc_pages_noprof+0x61/0x130
[   80.631883][ T5782]  alloc_pages_noprof+0x90/0x130
[   80.631907][ T5782]  __vmalloc_node_range_noprof+0x7a5/0xed0
[   80.632019][ T5782]  __kvmalloc_node_noprof+0x483/0x670
[   80.632061][ T5782]  ? ip_set_alloc+0x24/0x30
[   80.632142][ T5782]  ? ip_set_alloc+0x24/0x30
[   80.632175][ T5782]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   80.632260][ T5782]  ip_set_alloc+0x24/0x30
[   80.632292][ T5782]  hash_netiface_create+0x282/0x740
[   80.632332][ T5782]  ? __pfx_hash_netiface_create+0x10/0x10
[   80.632370][ T5782]  ip_set_create+0x3c9/0x970
[   80.632436][ T5782]  ? __nla_parse+0x40/0x60
[   80.632614][ T5782]  nfnetlink_rcv_msg+0x4c6/0x590
[   80.632669][ T5782]  netlink_rcv_skb+0x120/0x220
[   80.632704][ T5782]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   80.632746][ T5782]  nfnetlink_rcv+0x167/0x16c0
[   80.632792][ T5782]  ? kmem_cache_free+0xe4/0x3d0
[   80.632935][ T5782]  ? __kfree_skb+0x109/0x150
[   80.633088][ T5782]  ? nlmon_xmit+0x4f/0x60
[   80.633112][ T5782]  ? consume_skb+0x49/0x150
[   80.633136][ T5782]  ? nlmon_xmit+0x4f/0x60
[   80.633220][ T5782]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   80.633254][ T5782]  ? __dev_queue_xmit+0x1200/0x2000
[   80.633381][ T5782]  ? __dev_queue_xmit+0x182/0x2000
[   80.633421][ T5782]  ? ref_tracker_free+0x37d/0x3e0
[   80.633472][ T5782]  ? __netlink_deliver_tap+0x4dc/0x500
[   80.633522][ T5782]  netlink_unicast+0x5bd/0x690
[   80.633567][ T5782]  netlink_sendmsg+0x58b/0x6b0
[   80.633606][ T5782]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.633645][ T5782]  __sock_sendmsg+0x145/0x180
[   80.633719][ T5782]  ____sys_sendmsg+0x31e/0x4e0
[   80.633779][ T5782]  ___sys_sendmsg+0x17b/0x1d0
[   80.633829][ T5782]  __x64_sys_sendmsg+0xd4/0x160
[   80.633948][ T5782]  x64_sys_call+0x191e/0x3000
[   80.633977][ T5782]  do_syscall_64+0xd2/0x200
[   80.634001][ T5782]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   80.634034][ T5782]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   80.634138][ T5782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.634225][ T5782] RIP: 0033:0x7f421369eec9
[   80.634245][ T5782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.634268][ T5782] RSP: 002b:00007f4212107038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.634315][ T5782] RAX: ffffffffffffffda RBX: 00007f42138f5fa0 RCX: 00007f421369eec9
[   80.634327][ T5782] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 000000000000000a
[   80.634343][ T5782] RBP: 00007f4213721f91 R08: 0000000000000000 R09: 0000000000000000
[   80.634382][ T5782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   80.634397][ T5782] R13: 00007f42138f6038 R14: 00007f42138f5fa0 R15: 00007ffe33bcf798
[   80.634424][ T5782]  </TASK>
[   80.978321][ T5782] memory: usage 307200kB, limit 307200kB, failcnt 456
[   80.985510][ T5782] memory+swap: usage 309424kB, limit 9007199254740988kB, failcnt 0
[   80.994045][ T5782] kmem: usage 307152kB, limit 9007199254740988kB, failcnt 0
[   81.001623][ T5782] Memory cgroup stats for /syz2:
[   81.029794][ T5822] x_tables: duplicate entry at hook 2
[   81.037005][ T5782] cache 20480
[   81.043586][ T5782] rss 4096
[   81.046623][ T5782] shmem 0
[   81.049604][ T5782] mapped_file 12288
[   81.053589][ T5782] dirty 0
[   81.056553][ T5782] writeback 8192
[   81.060109][ T5782] workingset_refault_anon 205
[   81.064945][ T5782] workingset_refault_file 1402
[   81.069998][ T5782] swap 2273280
[   81.073501][ T5782] swapcached 28672
[   81.077314][ T5782] pgpgin 37921
[   81.080888][ T5782] pgpgout 37909
[   81.084432][ T5782] pgfault 44048
[   81.087925][ T5782] pgmajfault 93
[   81.091395][ T5782] inactive_anon 12288
[   81.095411][ T5782] active_anon 16384
[   81.099259][ T5782] inactive_file 0
[   81.102931][ T5782] active_file 20480
[   81.106758][ T5782] unevictable 0
[   81.110280][ T5782] hierarchical_memory_limit 314572800
[   81.115704][ T5782] hierarchical_memsw_limit 9223372036854771712
[   81.122034][ T5782] total_cache 20480
[   81.125986][ T5782] total_rss 4096
[   81.129829][ T5782] total_shmem 0
[   81.133345][ T5782] total_mapped_file 12288
[   81.137687][ T5782] total_dirty 0
[   81.141168][ T5782] total_writeback 8192
[   81.145285][ T5782] total_workingset_refault_anon 205
[   81.150494][ T5782] total_workingset_refault_file 1402
[   81.155824][ T5782] total_swap 2273280
[   81.159769][ T5782] total_swapcached 28672
[   81.164098][ T5782] total_pgpgin 37921
[   81.168075][ T5782] total_pgpgout 37909
[   81.172167][ T5782] total_pgfault 44048
[   81.176165][ T5782] total_pgmajfault 93
[   81.180227][ T5782] total_inactive_anon 12288
[   81.184788][ T5782] total_active_anon 16384
[   81.189281][ T5782] total_inactive_file 0
[   81.193531][ T5782] total_active_file 20480
[   81.198075][ T5782] total_unevictable 0
[   81.202142][ T5782] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.831,pid=5781,uid=0
[   81.216669][ T5782] Memory cgroup out of memory: Killed process 5781 (syz.2.831) total-vm:93956kB, anon-rss:1264kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   81.433762][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.465132][ T5849] x_tables: duplicate entry at hook 2
[   81.474796][ T5845] x_tables: duplicate entry at hook 2
[   81.521079][   T52] Bluetooth: hci0: Frame reassembly failed (-84)
[   81.541370][ T5853] netlink: 14 bytes leftover after parsing attributes in process `syz.0.856'.
[   81.561638][ T5859] netlink: 4 bytes leftover after parsing attributes in process `syz.1.857'.
[   81.573602][ T5853] hsr_slave_0: left promiscuous mode
[   81.582519][ T5853] hsr_slave_1: left promiscuous mode
[   81.803384][ T5875] loop1: detected capacity change from 0 to 4096
[   81.810610][ T5875] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   81.870179][ T5875] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.436254][ T5896] loop4: detected capacity change from 0 to 128
[   82.473071][ T5898] netlink: 4 bytes leftover after parsing attributes in process `syz.2.871'.
[   82.693938][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.092758][ T5939] loop1: detected capacity change from 0 to 4096
[   83.109383][ T5939] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   83.141739][ T5939] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.592074][ T3870] Bluetooth: hci0: command 0x1003 tx timeout
[   83.598232][ T3535] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   84.251060][ T3468] Bluetooth: hci0: Frame reassembly failed (-84)
[   84.265354][ T5974] netlink: 14 bytes leftover after parsing attributes in process `syz.4.901'.
[   84.276074][ T5974] hsr_slave_0: left promiscuous mode
[   84.282169][ T5974] hsr_slave_1: left promiscuous mode
[   84.347895][ T5979] loop2: detected capacity change from 0 to 512
[   84.394093][ T5979] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.903: bad orphan inode 11862016
[   84.405624][ T5979] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   84.418538][ T5979] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.441907][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   84.475189][ T5985] netlink: 4 bytes leftover after parsing attributes in process `syz.2.905'.
[   84.542783][ T5989] loop2: detected capacity change from 0 to 2048
[   84.573704][ T5989] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.586515][ T5989] ext4 filesystem being mounted at /147/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.618470][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.667969][ T5992] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.907: bg 0: block 345: padding at end of block bitmap is not set
[   84.692683][ T5992] EXT4-fs (loop2): Remounting filesystem read-only
[   84.772560][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.785457][   T29] kauditd_printk_skb: 438 callbacks suppressed
[   84.785474][   T29] audit: type=1326 audit(1760030398.098:10556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   84.838209][   T29] audit: type=1326 audit(1760030398.098:10557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   84.861761][   T29] audit: type=1326 audit(1760030398.098:10558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   84.873410][ T6006] netlink: 4 bytes leftover after parsing attributes in process `syz.3.913'.
[   84.885280][   T29] audit: type=1326 audit(1760030398.098:10559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   84.917539][   T29] audit: type=1326 audit(1760030398.098:10560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   84.940961][   T29] audit: type=1326 audit(1760030398.098:10561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   84.964424][   T29] audit: type=1326 audit(1760030398.128:10562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   84.987863][   T29] audit: type=1326 audit(1760030398.128:10563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   84.993427][ T6008] loop1: detected capacity change from 0 to 512
[   85.011306][   T29] audit: type=1326 audit(1760030398.138:10564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   85.040780][   T29] audit: type=1326 audit(1760030398.138:10565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46c672eec9 code=0x7ffc0000
[   85.066089][ T6006] netlink: 28 bytes leftover after parsing attributes in process `syz.3.913'.
[   85.068109][ T6008] EXT4-fs (loop1): 1 orphan inode deleted
[   85.083177][ T6008] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.093209][ T3468] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:7: Failed to release dquot type 1
[   85.109142][ T6008] ext4 filesystem being mounted at /161/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.126389][ T6012] netlink: 14 bytes leftover after parsing attributes in process `syz.2.915'.
[   85.144272][ T6008] EXT4-fs error (device loop1): ext4_lookup:1787: inode #15: comm syz.1.914: iget: bad i_size value: 360287970189639690
[   85.169408][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.423207][ T6029] loop2: detected capacity change from 0 to 4096
[   85.460179][ T6029] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   85.507006][ T6029] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.687576][ T6044] loop3: detected capacity change from 0 to 512
[   85.706287][ T6044] EXT4-fs (loop3): 1 orphan inode deleted
[   85.712817][ T6044] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.725796][   T60] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:4: Failed to release dquot type 1
[   85.725891][ T6044] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.803316][ T6051] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.929: iget: bad i_size value: 360287970189639690
[   86.213056][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.222864][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.312095][ T3535] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   86.312166][ T3870] Bluetooth: hci0: command 0x1003 tx timeout
[   86.465974][ T6071] loop2: detected capacity change from 0 to 4096
[   86.478956][ T6072] loop4: detected capacity change from 0 to 4096
[   86.492612][ T6072] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   86.505693][ T6071] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   86.528463][ T6072] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.576096][ T6071] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.606282][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.619922][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.800665][ T6158] loop2: detected capacity change from 0 to 2048
[   87.834227][ T6158] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.846808][ T6158] ext4 filesystem being mounted at /153/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.921508][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.949672][ T6178] netlink: 14 bytes leftover after parsing attributes in process `syz.1.964'.
[   88.043128][ T6187] netlink: 4 bytes leftover after parsing attributes in process `syz.1.965'.
[   88.065054][ T6187] netlink: 28 bytes leftover after parsing attributes in process `syz.1.965'.
[   88.247187][ T6185] loop2: detected capacity change from 0 to 4096
[   88.318565][ T6185] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   88.348197][ T6185] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.374364][ T6217] loop4: detected capacity change from 0 to 512
[   88.414192][ T6217] EXT4-fs (loop4): 1 orphan inode deleted
[   88.432061][ T3468] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:7: Failed to release dquot type 1
[   88.452403][ T6217] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.497726][ T6217] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.597248][ T6225] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.972: iget: bad i_size value: 360287970189639690
[   88.951824][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.962450][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.995763][ T6233] netlink: 4 bytes leftover after parsing attributes in process `syz.4.977'.
[   89.014213][ T6233] netlink: 28 bytes leftover after parsing attributes in process `syz.4.977'.
[   89.382908][ T6264] netlink: 4 bytes leftover after parsing attributes in process `syz.1.990'.
[   89.392552][ T6264] netlink: 28 bytes leftover after parsing attributes in process `syz.1.990'.
[   90.034858][ T6277] loop3: detected capacity change from 0 to 512
[   90.093689][ T6277] EXT4-fs (loop3): 1 orphan inode deleted
[   90.099853][ T6277] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.112522][   T60] __quota_error: 1333 callbacks suppressed
[   90.112535][   T60] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   90.128278][   T60] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:4: Failed to release dquot type 1
[   90.144222][   T29] audit: type=1326 audit(1760030403.458:11896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6294 comm="syz.4.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   90.167819][   T29] audit: type=1326 audit(1760030403.458:11897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6294 comm="syz.4.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   90.226584][ T6277] ext4 filesystem being mounted at /214/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.277787][   T29] audit: type=1326 audit(1760030403.508:11898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6294 comm="syz.4.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   90.301383][   T29] audit: type=1326 audit(1760030403.508:11899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6294 comm="syz.4.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   90.325000][   T29] audit: type=1326 audit(1760030403.518:11900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6294 comm="syz.4.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   90.348566][   T29] audit: type=1326 audit(1760030403.518:11901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6294 comm="syz.4.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   90.350301][ T6306] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.996: iget: bad i_size value: 360287970189639690
[   90.372212][   T29] audit: type=1326 audit(1760030403.518:11902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6294 comm="syz.4.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   90.372248][   T29] audit: type=1326 audit(1760030403.518:11903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6294 comm="syz.4.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   90.372362][   T29] audit: type=1326 audit(1760030403.518:11904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6294 comm="syz.4.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f4be1bfeec9 code=0x7ffc0000
[   90.607343][ T6258] syz.0.988 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   90.621512][ T6258] CPU: 0 UID: 0 PID: 6258 Comm: syz.0.988 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   90.621541][ T6258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   90.621553][ T6258] Call Trace:
[   90.621561][ T6258]  <TASK>
[   90.621571][ T6258]  __dump_stack+0x1d/0x30
[   90.621598][ T6258]  dump_stack_lvl+0xe8/0x140
[   90.621649][ T6258]  dump_stack+0x15/0x1b
[   90.621671][ T6258]  dump_header+0x81/0x220
[   90.621738][ T6258]  oom_kill_process+0x342/0x400
[   90.621769][ T6258]  out_of_memory+0x979/0xb80
[   90.621847][ T6258]  try_charge_memcg+0x5e6/0x9e0
[   90.621891][ T6258]  obj_cgroup_charge_pages+0xa6/0x150
[   90.621938][ T6258]  __memcg_kmem_charge_page+0x9f/0x170
[   90.621988][ T6258]  __alloc_frozen_pages_noprof+0x188/0x360
[   90.622090][ T6258]  alloc_pages_mpol+0xb3/0x260
[   90.622141][ T6258]  alloc_pages_noprof+0x90/0x130
[   90.622168][ T6258]  __vmalloc_node_range_noprof+0x7a5/0xed0
[   90.622220][ T6258]  __kvmalloc_node_noprof+0x483/0x670
[   90.622331][ T6258]  ? ip_set_alloc+0x24/0x30
[   90.622357][ T6258]  ? ip_set_alloc+0x24/0x30
[   90.622381][ T6258]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   90.622424][ T6258]  ip_set_alloc+0x24/0x30
[   90.622498][ T6258]  hash_netiface_create+0x282/0x740
[   90.622531][ T6258]  ? __pfx_hash_netiface_create+0x10/0x10
[   90.622559][ T6258]  ip_set_create+0x3c9/0x970
[   90.622602][ T6258]  ? __nla_parse+0x40/0x60
[   90.622668][ T6258]  nfnetlink_rcv_msg+0x4c6/0x590
[   90.622721][ T6258]  netlink_rcv_skb+0x120/0x220
[   90.622753][ T6258]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   90.622788][ T6258]  nfnetlink_rcv+0x167/0x16c0
[   90.622878][ T6258]  ? kmem_cache_free+0xe4/0x3d0
[   90.622988][ T6258]  ? __kfree_skb+0x109/0x150
[   90.623015][ T6258]  ? nlmon_xmit+0x4f/0x60
[   90.623036][ T6258]  ? consume_skb+0x49/0x150
[   90.623062][ T6258]  ? nlmon_xmit+0x4f/0x60
[   90.623109][ T6258]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   90.623146][ T6258]  ? __dev_queue_xmit+0x1200/0x2000
[   90.623179][ T6258]  ? __dev_queue_xmit+0x182/0x2000
[   90.623278][ T6258]  ? ref_tracker_free+0x37d/0x3e0
[   90.623419][ T6258]  ? __netlink_deliver_tap+0x4dc/0x500
[   90.623458][ T6258]  netlink_unicast+0x5bd/0x690
[   90.623562][ T6258]  netlink_sendmsg+0x58b/0x6b0
[   90.623599][ T6258]  ? __pfx_netlink_sendmsg+0x10/0x10
[   90.623647][ T6258]  __sock_sendmsg+0x145/0x180
[   90.623671][ T6258]  ____sys_sendmsg+0x31e/0x4e0
[   90.623709][ T6258]  ___sys_sendmsg+0x17b/0x1d0
[   90.623798][ T6258]  __x64_sys_sendmsg+0xd4/0x160
[   90.623838][ T6258]  x64_sys_call+0x191e/0x3000
[   90.623864][ T6258]  do_syscall_64+0xd2/0x200
[   90.623965][ T6258]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   90.624061][ T6258]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   90.624093][ T6258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.624119][ T6258] RIP: 0033:0x7f391490eec9
[   90.624136][ T6258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.624157][ T6258] RSP: 002b:00007f391336f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   90.624217][ T6258] RAX: ffffffffffffffda RBX: 00007f3914b65fa0 RCX: 00007f391490eec9
[   90.624232][ T6258] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000009
[   90.624246][ T6258] RBP: 00007f3914991f91 R08: 0000000000000000 R09: 0000000000000000
[   90.624261][ T6258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   90.624275][ T6258] R13: 00007f3914b66038 R14: 00007f3914b65fa0 R15: 00007ffc2a321968
[   90.624298][ T6258]  </TASK>
[   90.962327][ T6258] memory: usage 307200kB, limit 307200kB, failcnt 3887
[   90.962653][ T6310] loop2: detected capacity change from 0 to 4096
[   90.969184][ T6258] memory+swap: usage 324316kB, limit 9007199254740988kB, failcnt 0
[   90.983492][ T6258] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   90.990793][ T6258] Memory cgroup stats for /syz0:
[   90.991010][ T6258] cache 0
[   90.998996][ T6258] rss 0
[   91.001800][ T6258] shmem 0
[   91.004856][ T6258] mapped_file 0
[   91.008325][ T6258] dirty 0
[   91.011292][ T6258] writeback 0
[   91.014642][ T6258] workingset_refault_anon 280
[   91.019334][ T6258] workingset_refault_file 1888
[   91.021065][ T6310] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   91.024142][ T6258] swap 17526784
[   91.024151][ T6258] swapcached 0
[   91.024159][ T6258] pgpgin 135861
[   91.024168][ T6258] pgpgout 135861
[   91.047405][ T6310] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.048176][ T6258] pgfault 113708
[   91.048187][ T6258] pgmajfault 167
[   91.067757][ T6258] inactive_anon 0
[   91.071418][ T6258] active_anon 0
[   91.074896][ T6258] inactive_file 0
[   91.078571][ T6258] active_file 0
[   91.082106][ T6258] unevictable 0
[   91.085618][ T6258] hierarchical_memory_limit 314572800
[   91.091070][ T6258] hierarchical_memsw_limit 9223372036854771712
[   91.097392][ T6258] total_cache 0
[   91.100922][ T6258] total_rss 0
[   91.104228][ T6258] total_shmem 0
[   91.107694][ T6258] total_mapped_file 0
[   91.111661][ T6258] total_dirty 0
[   91.115141][ T6258] total_writeback 0
[   91.118960][ T6258] total_workingset_refault_anon 280
[   91.124184][ T6258] total_workingset_refault_file 1888
[   91.129557][ T6258] total_swap 17526784
[   91.133556][ T6258] total_swapcached 0
[   91.137461][ T6258] total_pgpgin 135861
[   91.141460][ T6258] total_pgpgout 135861
[   91.145554][ T6258] total_pgfault 113708
[   91.149692][ T6258] total_pgmajfault 167
[   91.153822][ T6258] total_inactive_anon 0
[   91.157995][ T6258] total_active_anon 0
[   91.162009][ T6258] total_inactive_file 0
[   91.166209][ T6258] total_active_file 0
[   91.170195][ T6258] total_unevictable 0
[   91.174283][ T6258] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.988,pid=6257,uid=0
[   91.188839][ T6258] Memory cgroup out of memory: Killed process 6257 (syz.0.988) total-vm:94088kB, anon-rss:1264kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000
[   91.264645][ T6319] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1010'.
[   91.274382][ T6319] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1010'.
[   91.376391][ T6325] loop4: detected capacity change from 0 to 512
[   91.400306][ T6325] EXT4-fs (loop4): 1 orphan inode deleted
[   91.406632][ T6325] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.419372][   T52] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:3: Failed to release dquot type 1
[   91.431175][ T6325] ext4 filesystem being mounted at /239/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.510878][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.521553][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.862993][ T6357] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[   91.869554][ T6357] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   91.877016][ T6357] vhci_hcd vhci_hcd.0: Device attached
[   91.981314][ T6358] usbip_core: unknown command
[   91.986199][ T6358] vhci_hcd: unknown pdu 2844066640
[   91.991413][ T6358] usbip_core: unknown command
[   92.003898][ T1436] vhci_hcd: stop threads
[   92.008194][ T1436] vhci_hcd: release socket
[   92.012710][ T1436] vhci_hcd: disconnect device
[   92.018533][ T6344] ªªªªªª: renamed from vlan0 (while UP)
[   92.061929][ T3968] vhci_hcd: vhci_device speed not set
[   92.219778][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.260596][ T6405] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1022'.
[   92.277374][ T6405] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1022'.
[   92.589767][ T6433] loop1: detected capacity change from 0 to 4096
[   92.603783][ T6433] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   92.621573][ T6449] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1037'.
[   92.650314][ T6433] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.662826][ T6449] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1037'.
[   93.267879][ T6466] loop3: detected capacity change from 0 to 512
[   93.303617][ T6466] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.1044: bad orphan inode 11862016
[   93.322659][ T6466] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   93.344315][ T6466] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.373225][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   93.528574][   T60] kworker/u8:4 invoked oom-killer: gfp_mask=0x100c0a(GFP_NOIO|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_HARDWALL), order=0, oom_score_adj=0
[   93.542324][   T60] CPU: 0 UID: 0 PID: 60 Comm: kworker/u8:4 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   93.542372][   T60] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   93.542386][   T60] Workqueue: loop1 loop_rootcg_workfn
[   93.542436][   T60] Call Trace:
[   93.542442][   T60]  <TASK>
[   93.542452][   T60]  __dump_stack+0x1d/0x30
[   93.542470][   T60]  dump_stack_lvl+0xe8/0x140
[   93.542489][   T60]  dump_stack+0x15/0x1b
[   93.542568][   T60]  dump_header+0x81/0x220
[   93.542673][   T60]  oom_kill_process+0x342/0x400
[   93.542710][   T60]  out_of_memory+0x979/0xb80
[   93.542797][   T60]  try_charge_memcg+0x5e6/0x9e0
[   93.542827][   T60]  ? should_fail_ex+0x30/0x280
[   93.542892][   T60]  charge_memcg+0x51/0xc0
[   93.542912][   T60]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   93.542935][   T60]  __read_swap_cache_async+0x17b/0x2d0
[   93.543043][   T60]  swap_cluster_readahead+0x262/0x3c0
[   93.543093][   T60]  shmem_swapin_folio+0xa44/0x13f0
[   93.543287][   T60]  shmem_get_folio_gfp+0x26c/0xd60
[   93.543393][   T60]  shmem_write_begin+0xa8/0x190
[   93.543435][   T60]  generic_perform_write+0x184/0x490
[   93.543551][   T60]  shmem_file_write_iter+0xc5/0xf0
[   93.543578][   T60]  lo_rw_aio+0x69d/0x760
[   93.543624][   T60]  loop_process_work+0x52d/0xa60
[   93.543722][   T60]  ? __rcu_read_unlock+0x4f/0x70
[   93.543747][   T60]  ? __perf_event_task_sched_in+0xa5b/0xac0
[   93.543785][   T60]  ? perf_cgroup_switch+0x10c/0x480
[   93.543813][   T60]  ? update_load_avg+0x1da/0x820
[   93.543906][   T60]  ? __list_add_valid_or_report+0x38/0xe0
[   93.543935][   T60]  loop_rootcg_workfn+0x22/0x30
[   93.544028][   T60]  process_scheduled_works+0x4cb/0x9d0
[   93.544152][   T60]  worker_thread+0x582/0x770
[   93.544175][   T60]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[   93.544222][   T60]  kthread+0x486/0x510
[   93.544250][   T60]  ? finish_task_switch+0xad/0x2b0
[   93.544278][   T60]  ? __pfx_worker_thread+0x10/0x10
[   93.544334][   T60]  ? __pfx_kthread+0x10/0x10
[   93.544363][   T60]  ret_from_fork+0x122/0x1b0
[   93.544389][   T60]  ? __pfx_kthread+0x10/0x10
[   93.544413][   T60]  ret_from_fork_asm+0x1a/0x30
[   93.544499][   T60]  </TASK>
[   93.544507][   T60] memory: usage 307200kB, limit 307200kB, failcnt 723
[   93.649181][ T6476] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1048'.
[   93.654276][   T60] memory+swap: usage 309656kB, limit 9007199254740988kB, failcnt 0
[   93.654294][   T60] kmem: usage 305892kB, limit 9007199254740988kB, failcnt 0
[   93.654307][   T60] Memory cgroup stats for /syz1:
[   93.658714][   T60] cache 1323008
[   93.690357][ T6476] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1048'.
[   93.695510][   T60] rss 0
[   93.803576][   T60] shmem 0
[   93.806562][   T60] mapped_file 0
[   93.810024][   T60] dirty 4096
[   93.813276][   T60] writeback 1314816
[   93.817096][   T60] workingset_refault_anon 894
[   93.821776][   T60] workingset_refault_file 2137
[   93.826581][   T60] swap 2514944
[   93.829957][   T60] swapcached 12288
[   93.833700][   T60] pgpgin 49313
[   93.837080][   T60] pgpgout 48986
[   93.840542][   T60] pgfault 58106
[   93.844063][   T60] pgmajfault 142
[   93.847624][   T60] inactive_anon 0
[   93.851267][   T60] active_anon 12288
[   93.855113][   T60] inactive_file 1318912
[   93.859272][   T60] active_file 8192
[   93.863186][   T60] unevictable 0
[   93.866644][   T60] hierarchical_memory_limit 314572800
[   93.872044][   T60] hierarchical_memsw_limit 9223372036854771712
[   93.878220][   T60] total_cache 1323008
[   93.882227][   T60] total_rss 0
[   93.882239][   T60] total_shmem 0
[   93.882248][   T60] total_mapped_file 0
[   93.882257][   T60] total_dirty 4096
[   93.896725][   T60] total_writeback 1314816
[   93.901112][   T60] total_workingset_refault_anon 894
[   93.906367][   T60] total_workingset_refault_file 2137
[   93.911737][   T60] total_swap 2514944
[   93.915677][   T60] total_swapcached 12288
[   93.919935][   T60] total_pgpgin 49313
[   93.923902][   T60] total_pgpgout 48986
[   93.927893][   T60] total_pgfault 58106
[   93.931902][   T60] total_pgmajfault 142
[   93.935981][   T60] total_inactive_anon 0
[   93.940170][   T60] total_active_anon 12288
[   93.944537][   T60] total_inactive_file 1318912
[   93.949238][   T60] total_active_file 8192
[   93.953510][   T60] total_unevictable 0
[   93.957492][   T60] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1027,pid=6424,uid=0
[   93.972253][   T60] Memory cgroup out of memory: Killed process 6424 (syz.1.1027) total-vm:94088kB, anon-rss:1264kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   94.035126][ T6491] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1054'.
[   94.070968][ T6491] IPVS: Error connecting to the multicast addr
[   94.084497][ T6493] loop2: detected capacity change from 0 to 128
[   94.095164][ T6491] loop4: detected capacity change from 0 to 512
[   94.113101][ T6491] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.1054: bg 0: block 5: invalid block bitmap
[   94.142206][ T6491] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   94.161121][ T6491] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1054: invalid indirect mapped block 3 (level 2)
[   94.178958][ T6491] EXT4-fs (loop4): 2 truncates cleaned up
[   94.188530][ T6491] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.217359][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.274470][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.424781][ T6510] loop1: detected capacity change from 0 to 2048
[   94.444229][ T6510] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.456491][ T6510] ext4 filesystem being mounted at /190/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.478063][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.122693][   T29] kauditd_printk_skb: 1178 callbacks suppressed
[   95.122711][   T29] audit: type=1326 audit(1760030408.438:13082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6501 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4be1bf5d67 code=0x7ffc0000
[   95.153996][   T29] audit: type=1326 audit(1760030408.438:13083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6515 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6836c45d67 code=0x7ffc0000
[   95.176969][   T29] audit: type=1326 audit(1760030408.438:13084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6515 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6836beaf79 code=0x7ffc0000
[   95.199950][   T29] audit: type=1326 audit(1760030408.438:13085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6515 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f6836c4eec9 code=0x7ffc0000
[   95.222845][   T29] audit: type=1326 audit(1760030408.438:13086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6515 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6836c45d67 code=0x7ffc0000
[   95.246001][   T29] audit: type=1326 audit(1760030408.438:13087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6515 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6836beaf79 code=0x7ffc0000
[   95.268846][   T29] audit: type=1326 audit(1760030408.438:13088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6515 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f6836c4eec9 code=0x7ffc0000
[   95.268911][   T29] audit: type=1326 audit(1760030408.438:13089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6515 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6836c45d67 code=0x7ffc0000
[   95.268940][   T29] audit: type=1326 audit(1760030408.438:13090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6515 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6836beaf79 code=0x7ffc0000
[   95.268973][   T29] audit: type=1326 audit(1760030408.438:13091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6515 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f6836c4eec9 code=0x7ffc0000
[   96.233800][ T6667] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1088'.
[   96.243021][ T6667] IPVS: Error connecting to the multicast addr
[   96.792669][ T6718] loop4: detected capacity change from 0 to 2048
[   96.843675][ T6718] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.871948][ T6718] ext4 filesystem being mounted at /258/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.945211][ T6735] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1103'.
[   96.982452][ T6735] IPVS: Error connecting to the multicast addr
[   96.992774][ T6739] ==================================================================
[   97.000878][ T6739] BUG: KCSAN: data-race in __xa_set_mark / xas_find_marked
[   97.008117][ T6739] 
[   97.010455][ T6739] read-write to 0xffff888106f876b0 of 8 bytes by task 6718 on cpu 0:
[   97.018525][ T6739]  __xa_set_mark+0xd2/0x1a0
[   97.023066][ T6739]  __folio_mark_dirty+0x384/0x4a0
[   97.028125][ T6739]  mark_buffer_dirty+0x11e/0x210
[   97.033093][ T6739]  folio_zero_new_buffers+0x28c/0x2e0
[   97.038491][ T6739]  block_write_end+0x200/0x210
[   97.043275][ T6739]  ext4_da_write_end+0x1d3/0x800
[   97.048256][ T6739]  generic_perform_write+0x312/0x490
[   97.053591][ T6739]  ext4_buffered_write_iter+0x1ee/0x3c0
[   97.059260][ T6739]  ext4_file_write_iter+0x387/0xf60
[   97.064484][ T6739]  vfs_write+0x52a/0x960
[   97.068747][ T6739]  ksys_write+0xda/0x1a0
[   97.073012][ T6739]  __x64_sys_write+0x40/0x50
[   97.077626][ T6739]  x64_sys_call+0x2802/0x3000
[   97.082318][ T6739]  do_syscall_64+0xd2/0x200
[   97.086831][ T6739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.092749][ T6739] 
[   97.095075][ T6739] read to 0xffff888106f876b0 of 8 bytes by task 6739 on cpu 1:
[   97.102623][ T6739]  xas_find_marked+0x218/0x620
[   97.107399][ T6739]  find_get_entry+0x5d/0x380
[   97.112005][ T6739]  filemap_get_folios_tag+0x13b/0x210
[   97.117404][ T6739]  mpage_prepare_extent_to_map+0x320/0xc00
[   97.123230][ T6739]  ext4_do_writepages+0xa05/0x2750
[   97.128360][ T6739]  ext4_writepages+0x176/0x300
[   97.133131][ T6739]  do_writepages+0x1c3/0x310
[   97.137729][ T6739]  __filemap_fdatawrite_range+0xfb/0x140
[   97.143545][ T6739]  generic_fadvise+0x312/0x430
[   97.148327][ T6739]  __x64_sys_fadvise64+0xcb/0x110
[   97.153370][ T6739]  x64_sys_call+0x29c5/0x3000
[   97.158051][ T6739]  do_syscall_64+0xd2/0x200
[   97.162569][ T6739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.168471][ T6739] 
[   97.170794][ T6739] value changed: 0x00ffffffffffffff -> 0x03ffffffffffffff
[   97.177899][ T6739] 
[   97.180225][ T6739] Reported by Kernel Concurrency Sanitizer on:
[   97.186373][ T6739] CPU: 1 UID: 0 PID: 6739 Comm: syz.4.1099 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   97.196096][ T6739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   97.206253][ T6739] ==================================================================
[   97.271395][ T6744] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1102'.
[   97.300378][ T6744] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1102'.
[   97.329804][ T6739] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1099: bg 0: block 345: padding at end of block bitmap is not set
[   97.352598][ T6739] EXT4-fs (loop4): Remounting filesystem read-only
[   97.507135][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.