last executing test programs:

3.686957059s ago: executing program 1 (id=2947):
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/ipv6_route\x00')
pread64(r0, &(0x7f0000000300)=""/170, 0xaa, 0x20000000000004)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000008c0)={r0, &(0x7f0000000740)="68985cbea27631e903ac43107f3414f027c552d2611dc947ef6ad514210f2f033b2b3937140b8cc6569f316fa8bd4dd7e5fdc7ff5791024d2e9e06b76aafbeda8862f7b48c8f8f91089813371b46da247b6ad62a11727f146e6e7b10656aacb59335f23da693b49463c06599234f35dbefa984ad891760c1d7b67db2ee53331cff93b03e445bb24f6c35cf675634f7b02620560f8648ac41e749ed32e5ceb80aff0356edf3244d7422ff4d928e54be7e9e7934e51af4010252b0cd9075f62ff209e0bd6a9fc069da2af41f8c448912d63503290a96ca", &(0x7f0000000840)=""/73}, 0x20)
ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000680))
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x400000000010, 0x3, 0x0)
getpeername$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000180)=0x14)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f00000003c0)={'syztnl0\x00', 0x0, 0x2b, 0x6, 0x4, 0x3, 0x2, @mcast2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8, 0x40, 0x10000, 0x1}})
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x200000000000006}, 0x18)
kexec_load(0x3e0000000000, 0x0, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = gettid()
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r4, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r4, 0x4040534e, &(0x7f00000000c0)={0x31, @tick=0x40, 0x4, {0x0, 0x2}, 0xa, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x4058534c, &(0x7f0000000040)={0x7, 0x7, 0x6, 0x2, 0x3, 0x824b})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r4, 0x80045300, 0x0)
tkill(r3, 0x7)
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @ipv4=@multicast2}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid}]}]}, 0x28}}, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000080)=@sr0, 0x0, &(0x7f00000001c0)='./file0\x00')
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r5)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_open_dev$loop(&(0x7f0000000080), 0x9, 0x1)
setsockopt$inet6_opts(r1, 0x29, 0x0, &(0x7f00000006c0)=@dstopts={0x32, 0x9, '\x00', [@pad1, @generic={0x7, 0x38, "bf8d0bdb6d89cc340e7971de4cc0b602300a09c6006a4e541c49603fe4e5b2716030ccfec6c9f12de6599142528a4f5c137a7a6a3b5f80bb"}, @hao={0xc9, 0x10, @private1}]}, 0x58)

3.012369052s ago: executing program 1 (id=2955):
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/ipv6_route\x00')
pread64(r0, &(0x7f0000000300)=""/170, 0xaa, 0x20000000000004)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000008c0)={r0, &(0x7f0000000740)="68985cbea27631e903ac43107f3414f027c552d2611dc947ef6ad514210f2f033b2b3937140b8cc6569f316fa8bd4dd7e5fdc7ff5791024d2e9e06b76aafbeda8862f7b48c8f8f91089813371b46da247b6ad62a11727f146e6e7b10656aacb59335f23da693b49463c06599234f35dbefa984ad891760c1d7b67db2ee53331cff93b03e445bb24f6c35cf675634f7b02620560f8648ac41e749ed32e5ceb80aff0356edf3244d7422ff4d928e54be7e9e7934e51af4010252b0cd9075f62ff209e0bd6a9fc069da2af41f8c448912d63503290a96ca", &(0x7f0000000840)=""/73}, 0x20)
ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000680))
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x400000000010, 0x3, 0x0)
getpeername$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000180)=0x14)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f00000003c0)={'syztnl0\x00', 0x0, 0x2b, 0x6, 0x4, 0x3, 0x2, @mcast2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8, 0x40, 0x10000, 0x1}})
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x200000000000006}, 0x18)
kexec_load(0x3e0000000000, 0x0, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = gettid()
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r4, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r4, 0x4040534e, &(0x7f00000000c0)={0x31, @tick=0x40, 0x4, {0x0, 0x2}, 0xa, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x4058534c, &(0x7f0000000040)={0x7, 0x7, 0x6, 0x2, 0x3, 0x824b})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r4, 0x80045300, 0x0)
tkill(r3, 0x7)
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @ipv4=@multicast2}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid}]}]}, 0x28}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r5)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_open_dev$loop(0x0, 0x9, 0x1)
setsockopt$inet6_opts(r1, 0x29, 0x0, &(0x7f00000006c0)=@dstopts={0x32, 0xa, '\x00', [@pad1, @generic={0x7, 0x3f, "bf8d0bdb6d89cc340e7971de4cc0b602300a09c6006a4e541c49603fe4e5b2716030ccfec6c9f12de6599142528a4f5c137a7a6a3b5f80bb91b60a1437e3fc"}, @hao={0xc9, 0x10, @private1}]}, 0x60)

2.925791674s ago: executing program 2 (id=2956):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000340)='percpu_alloc_percpu\x00', r5}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r7}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x4, 0xfff, 0x6}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r2}, &(0x7f0000000300)=0x8000000, &(0x7f0000001c40)=r3}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r8}, 0x10)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
fcntl$lock(r9, 0x26, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7ffc1ffb}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x20000023893)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)

2.831158875s ago: executing program 2 (id=2958):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0e0000000400000008000000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000300)={0x0, &(0x7f0000000080)})
open(0x0, 0x145142, 0x44)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000001440), 0x2, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000000140))
timer_settime(0x0, 0x0, 0x0, 0x0)
readv(r2, &(0x7f0000000300)=[{&(0x7f0000000380)=""/4096, 0x1000}], 0x1)

2.796157646s ago: executing program 0 (id=2960):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0xa00, 0xb)
r3 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000000140)={r2, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "280991800000598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f000000155cc30cf11d0bc000", [0x4, 0x40000000000000]}}) (fail_nth: 1)

2.711648338s ago: executing program 0 (id=2962):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x7fff}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYRESHEX], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000200)='sched_switch\x00', r3}, 0x18)
syz_usb_connect(0x3, 0x1c, 0x0, 0x0)
r4 = socket(0x1d, 0x2, 0x6)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0600000004000000080000000a00000000000000", @ANYRES32, @ANYBLOB='\a\b\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000580)={0x3, &(0x7f0000000380)=[{0x8, 0x2, 0x9, 0x6}, {0x6, 0xff, 0xf9, 0x779}, {0xb, 0x3, 0xe1, 0x8}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8}}, 0x0, 0x100, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x8, 0x8, 0x1b}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xaaf}, 0x94)
r7 = socket$netlink(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)=ANY=[@ANYBLOB="34010000", @ANYRES16=r8, @ANYBLOB="010000000000fbdbdf25250000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vxcan0\x00'})
sendmsg$NFT_MSG_GETOBJ(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x100}, 0x1, 0x0, 0x0, 0xc4}, 0x20004009)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1}, &(0x7f0000000200), &(0x7f0000000240)=r2}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000300000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a390000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400037461700000000800014000000005"], 0xe8}, 0x1, 0x0, 0x0, 0x40048000}, 0x0)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000024c0)=ANY=[@ANYBLOB="600400"], 0x460}, 0x1, 0x0, 0x0, 0x4000000}, 0x40000)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)

2.707782767s ago: executing program 1 (id=2963):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0)
getsockname$packet(r3, &(0x7f00000000c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000940)=@newqdisc={0x78, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0xffe0}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x4c, 0x2, [@TCA_TBF_RATE64={0xc, 0x4, 0x4e1e2563543d84f9}, @TCA_TBF_PBURST={0x8, 0x7, 0x1fc0}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x0, 0x0, 0xffff}, {0x0, 0x0, 0x0, 0x8, 0x2, 0x3}, 0x4000, 0x81}}, @TCA_TBF_PRATE64={0xc, 0x5, 0xcb59372f370e8465}]}}]}, 0x78}}, 0x4000080)

2.636049239s ago: executing program 1 (id=2964):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x7fff}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYRESHEX], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000200)='sched_switch\x00', r3}, 0x18)
syz_usb_connect(0x3, 0x1c, 0x0, 0x0)
r4 = socket(0x1d, 0x2, 0x6)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0600000004000000080000000a00000000000000", @ANYRES32, @ANYBLOB='\a\b\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000580)={0x3, &(0x7f0000000380)=[{0x8, 0x2, 0x9, 0x6}, {0x6, 0xff, 0xf9, 0x779}, {0xb, 0x3, 0xe1, 0x8}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8}}, 0x0, 0x100, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x8, 0x8, 0x1b}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xaaf}, 0x94)
r7 = socket$netlink(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)=ANY=[@ANYBLOB="34010000", @ANYRES16=r8, @ANYBLOB="010000000000fbdbdf25250000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vxcan0\x00'})
sendmsg$NFT_MSG_GETOBJ(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x100}, 0x1, 0x0, 0x0, 0xc4}, 0x20004009)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1}, &(0x7f0000000200), &(0x7f0000000240)=r2}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000300000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a390000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400037461700000000800014000000005"], 0xe8}, 0x1, 0x0, 0x0, 0x40048000}, 0x0)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000024c0)=ANY=[@ANYBLOB="600400"], 0x460}, 0x1, 0x0, 0x0, 0x4000000}, 0x40000)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)

2.396676154s ago: executing program 4 (id=2969):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000700000002000000040000", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000008018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000faffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bind$tipc(r1, &(0x7f0000000600)=@id={0x1e, 0x3, 0x1, {0x4e22, 0x4}}, 0x10)
socket$nl_rdma(0x10, 0x3, 0x14)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x10)
r6 = fsopen(&(0x7f0000000300)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x680041, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000280)={'veth1_to_bond\x00', 0x1000})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

2.134395339s ago: executing program 0 (id=2970):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000580)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = io_uring_setup(0x194e, &(0x7f0000000a80)={0x0, 0xd3d5, 0x80, 0x5, 0x2e4})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="120000000300000004000000020000"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r4}, &(0x7f0000000040), &(0x7f0000000140)=r3}, 0x20)
close_range(r2, 0xffffffffffffffff, 0x0)

2.109522269s ago: executing program 0 (id=2971):
sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98,\xc8\x18E/\x8c\x1a\xe3\xbd')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r4, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {r5}}, './file0\x00'})
creat(0x0, 0x8)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_usbip_server_init(0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
prctl$PR_SET_NAME(0xf, &(0x7f0000000200)='gtp\x00\xe4\xaa\xae\xdf~2\xa6X\x14\x92\xdarV\xf4U\xf7\xa2\xc3l\x1b@\xaf\xf9\xc9\xa9#\xf0S\xd9=q\xd6\x14\xedt\xc8!W\xe9@\xeb\x7f~\tB0EE\x9a:\xb7\xff\xc1\xfc\x9a\x1f\xf2\xfb\x19\xda#x\xc5F\x1c~\x8c\xe1\xdf\xdc\x01k\f\xde0~\x95\r\xa2\x80\b4M\x14\xe7\xd0\t`n!g\x14\xe6\xd1\xc2\xd3\x88\xf8cVtd\xbeY\xa5\xe7\x16sD\x96}7\n\x88e\x00\xf0\xff\xff\xf0\xcb\x94\xb4S\x00\x00')
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBTYPE(r6, 0x4b52, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff5c)
syncfs(0xffffffffffffffff)
syz_usbip_server_init(0x0)
syz_usbip_server_init(0x3)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)

1.603394389s ago: executing program 2 (id=2972):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000001640)=ANY=[@ANYBLOB="00020201"], 0x18)

1.595238549s ago: executing program 1 (id=2973):
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/ipv6_route\x00')
pread64(r0, &(0x7f0000000300)=""/170, 0xaa, 0x20000000000004)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000008c0)={r0, &(0x7f0000000740)="68985cbea27631e903ac43107f3414f027c552d2611dc947ef6ad514210f2f033b2b3937140b8cc6569f316fa8bd4dd7e5fdc7ff5791024d2e9e06b76aafbeda8862f7b48c8f8f91089813371b46da247b6ad62a11727f146e6e7b10656aacb59335f23da693b49463c06599234f35dbefa984ad891760c1d7b67db2ee53331cff93b03e445bb24f6c35cf675634f7b02620560f8648ac41e749ed32e5ceb80aff0356edf3244d7422ff4d928e54be7e9e7934e51af4010252b0cd9075f62ff209e0bd6a9fc069da2af41f8c448912d63503290a96ca", &(0x7f0000000840)=""/73}, 0x20)
ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000680))
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x400000000010, 0x3, 0x0)
getpeername$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000180)=0x14)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f00000003c0)={'syztnl0\x00', 0x0, 0x2b, 0x6, 0x4, 0x3, 0x2, @mcast2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8, 0x40, 0x10000, 0x1}})
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x200000000000006}, 0x18)
kexec_load(0x3e0000000000, 0x0, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = gettid()
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r4, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r4, 0x4040534e, &(0x7f00000000c0)={0x31, @tick=0x40, 0x4, {0x0, 0x2}, 0xa, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x4058534c, &(0x7f0000000040)={0x7, 0x7, 0x6, 0x2, 0x3, 0x824b})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r4, 0x80045300, 0x0)
tkill(r3, 0x7)
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @ipv4=@multicast2}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid}]}]}, 0x28}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r5)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_open_dev$loop(0x0, 0x9, 0x1)
setsockopt$inet6_opts(r1, 0x29, 0x0, &(0x7f00000006c0)=@dstopts={0x32, 0xa, '\x00', [@pad1, @generic={0x7, 0x3f, "bf8d0bdb6d89cc340e7971de4cc0b602300a09c6006a4e541c49603fe4e5b2716030ccfec6c9f12de6599142528a4f5c137a7a6a3b5f80bb91b60a1437e3fc"}, @hao={0xc9, 0x10, @private1}]}, 0x60)

1.439333602s ago: executing program 2 (id=2976):
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x25, 0x8, @void}, 0x10)
socket$kcm(0x11, 0xa, 0x300)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4001, 0x0, @loopback}, 0x1c)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYRES8=r0], 0x20}, 0x1, 0x0, 0x0, 0x40004}, 0x48010)
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4e20, @remote}, 0x10, 0x0}, 0x3000d041)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000280)=[{&(0x7f00000005c0)="580000001400192340834b80040d8c560a06ffffff7f000000000000000058000b480400945f64009400050038925a01000000800000008004000000ff0109000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1)

1.224257276s ago: executing program 1 (id=2978):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x30}}, 0x20004040)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000000)={[], [{@smackfshat={'smackfshat', 0x3d, 'ext5\x00'}}, {@flag='dirsync'}, {@subj_role={'subj_role', 0x3d, '(/'}}]}, 0x1, 0x597, &(0x7f0000000680)="$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")
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000440), r3)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000940)={'team0\x00', <r5=>0x0})
sendmsg$TEAM_CMD_PORT_LIST_GET(r3, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000c40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="39052bbd7000fddbdf250300000008000100", @ANYRES32=r5], 0x20}, 0x1, 0x0, 0x0, 0x20040840}, 0xc840)
syz_open_dev$sg(0x0, 0x0, 0x8002)
r6 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r6, &(0x7f0000000040), 0x10)
listen(r6, 0x0)
r7 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r7, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(r7, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)="1b", 0x1}], 0x1}}], 0x1, 0x4000890)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r8 = accept4$unix(r6, 0x0, 0x0, 0x0)
recvfrom$unix(r8, &(0x7f0000001680)=""/256, 0x100, 0x1120, 0x0, 0x0)

1.085932189s ago: executing program 4 (id=2980):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x7fff}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYRESHEX], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000200)='sched_switch\x00', r3}, 0x18)
syz_usb_connect(0x3, 0x1c, 0x0, 0x0)
r4 = socket(0x1d, 0x2, 0x6)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0600000004000000080000000a00000000000000", @ANYRES32, @ANYBLOB='\a\b\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000580)={0x3, &(0x7f0000000380)=[{0x8, 0x2, 0x9, 0x6}, {0x6, 0xff, 0xf9, 0x779}, {0xb, 0x3, 0xe1, 0x8}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8}}, 0x0, 0x100, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x8, 0x8, 0x1b}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xaaf}, 0x94)
r7 = socket$netlink(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)=ANY=[@ANYBLOB="34010000", @ANYRES16=r8, @ANYBLOB="010000000000fbdbdf25250000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vxcan0\x00'})
sendmsg$NFT_MSG_GETOBJ(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x100}, 0x1, 0x0, 0x0, 0xc4}, 0x20004009)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1}, &(0x7f0000000200), &(0x7f0000000240)=r2}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000300000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a390000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400037461700000000800014000000005"], 0xe8}, 0x1, 0x0, 0x0, 0x40048000}, 0x0)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000024c0)=ANY=[@ANYBLOB="600400"], 0x460}, 0x1, 0x0, 0x0, 0x4000000}, 0x40000)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)

1.05916034s ago: executing program 3 (id=2981):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000400)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x1b32, 0x4)
r1 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)
ioctl$TCFLSH(r1, 0x540b, 0x0)
sendto$inet(r0, &(0x7f0000000540)='v', 0x1, 0x4040, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000006340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001900)=""/140, 0x8c}, 0x5}], 0x1, 0x40012022, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x88000040}, 0xc, &(0x7f00000000c0)={&(0x7f0000000580)=@ipv6_delroute={0x7ac, 0x19, 0x10, 0x70bd2d, 0x25dfdbfd, {0xa, 0x0, 0x14, 0x2, 0x853bbd8a3a048daf, 0x3, 0xc8, 0x8, 0x2900}, [@RTA_ENCAP={0x788, 0x16, 0x0, 0x1, @SEG6_IPTUNNEL_SRH={0x784, 0x1, {{0x2, {0xb3, 0x2, 0x4, 0x1, 0x2, 0x40, 0x6, [@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}}, [@private1, @mcast2, @remote, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @remote, @dev={0xfe, 0x80, '\x00', 0x12}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @empty, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev={0xfe, 0x80, '\x00', 0x43}, @dev={0xfe, 0x80, '\x00', 0x26}, @private1, @ipv4={'\x00', '\xff\xff', @broadcast}, @private2, @private2={0xfc, 0x2, '\x00', 0x1}, @empty, @dev={0xfe, 0x80, '\x00', 0x33}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private0={0xfc, 0x0, '\x00', 0x1}, @mcast2, @local, @mcast1, @empty, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, @remote, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, @ipv4={'\x00', '\xff\xff', @loopback}, @mcast1, @private0, @rand_addr=' \x01\x00', @mcast2, @dev={0xfe, 0x80, '\x00', 0x29}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @rand_addr=' \x01\x00', @empty, @rand_addr=' \x01\x00', @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @remote, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0={0xfc, 0x0, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x41}, @remote, @dev={0xfe, 0x80, '\x00', 0x43}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @rand_addr=' \x01\x00', @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1, @private0, @private2, @empty, @local, @empty, @dev={0xfe, 0x80, '\x00', 0x1b}, @local, @loopback, @mcast1, @remote, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @dev={0xfe, 0x80, '\x00', 0x1b}, @private2, @dev={0xfe, 0x80, '\x00', 0x20}, @loopback, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast1, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x40}}, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @loopback, @private0, @local, @private0, @loopback, @private2={0xfc, 0x2, '\x00', 0x1}, @local, @mcast1, @mcast2, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}, @private2, @mcast2, @rand_addr=' \x01\x00', @mcast2, @rand_addr=' \x01\x00', @ipv4={'\x00', '\xff\xff', @remote}, @mcast2, @dev={0xfe, 0x80, '\x00', 0x18}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private0, @remote, @mcast1, @loopback, @mcast1, @ipv4={'\x00', '\xff\xff', @multicast2}, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast1, @private0={0xfc, 0x0, '\x00', 0x3}, @local, @loopback, @local, @dev={0xfe, 0x80, '\x00', 0x40}, @remote, @dev={0xfe, 0x80, '\x00', 0x26}, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, @dev={0xfe, 0x80, '\x00', 0x27}, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev={0xfe, 0x80, '\x00', 0x3f}, @mcast2, @loopback, @private0={0xfc, 0x0, '\x00', 0x1}]}}}, @RTA_MARK={0x8, 0x10, 0x7}]}, 0x7ac}, 0x1, 0x0, 0x0, 0x10}, 0x40)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r1, 0x40047211, &(0x7f0000000140)=0x1)

1.01676571s ago: executing program 3 (id=2982):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0x3}, 0x18)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = io_uring_setup(0x9, &(0x7f0000000040)={0x0, 0x20c8a1, 0x1c881, 0x8, 0xd1})
r3 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x7, 0x20002f7})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl2\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x5c8c, 0x0, @empty, @mcast1, 0x80, 0x0, 0x0, 0x20000000}})
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x2d, 0x0, 0x1f, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)
rt_sigqueueinfo(0x0, 0x38, &(0x7f0000000240)={0x20, 0x4})
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)

987.760541ms ago: executing program 3 (id=2983):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x2, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000010c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x18)
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000100)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)
recvfrom(r1, &(0x7f0000004000)=""/4112, 0xfffffffffffffedc, 0x2080, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r8}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r9}, 0x10)
setitimer(0x0, 0x0, 0x0)
r10 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_IPV6_RTHDR(r10, 0x29, 0x39, &(0x7f0000001640)=ANY=[@ANYBLOB="00020201"], 0x18)

929.905572ms ago: executing program 3 (id=2984):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYRESHEX=0x0, @ANYRESHEX=0x0], 0x48)
socket(0x10, 0x3, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000300)={0x0, &(0x7f0000000080)})
open(0x0, 0x145142, 0x44)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000001440), 0x2, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000140))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
readv(r1, &(0x7f0000000300)=[{&(0x7f0000000380)=""/4096, 0x1000}], 0x1)

719.543086ms ago: executing program 0 (id=2985):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0b00000008000000070000000900000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000ff0f00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
ioctl$EVIOCGRAB(r2, 0x40044590, &(0x7f0000000200)=0x7ffffffc)
ioctl$EVIOCGRAB(r2, 0x40044590, 0x0)
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x200000a)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000009c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="a0000000", @ANYRES16=0x0, @ANYBLOB="00022abd7000ffdbdf250c00000008000380040001000c0001800800030003000000300001801400020076657468305f766c616e00000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000300010000004400018018000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000300000000001400020076657468305f6d6163767461700000001400020076657468305f6d61637674617000000004000380"], 0xa0}, 0x1, 0x0, 0x0, 0x20000040}, 0x4001)
getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x30, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x4004743d, 0x110e22fff6)
epoll_create1(0x80000)
getrandom(0x0, 0x0, 0x2)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000380)=0x2)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r3, &(0x7f0000000040), 0x10)
sendmsg(r3, &(0x7f0000000380)={&(0x7f0000000080)=@l2tp6={0x1d, 0x0, 0x2000000, @ipv4}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000100)="751edb18dbf46e8f09d97e5bbd402d11fea33f21e2", 0x15}, {&(0x7f00000001c0)="da", 0x1}, {&(0x7f0000000240)="6d5f67af894fc09d550067b675507cd5556770418b1b34525a6becaa1a13b103508a04d5cd215b761cd584cddde2539d4d275745d349805bf16f7bd8010d7104086c0e743d76d4de754ad1714e562adea566098cbd4bb4b351de0ed58f1361f6920b4598be11b9f546e6ba23ba5075072ef9d7362c255f7797866066f2697c324aa5dc055389df4d7725ef8f4e391c9bcbc80b7a9397f3f484ddc09076e854b1ee0569277a48abb91df8c3d57555dd4ed07a395e7c78444c971401bb04a219d661d01158a497c68330c7a8878ad272b2fd9915717c58efd568017a16947f3145cc2d", 0x22}], 0x3}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r6, &(0x7f0000000580)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x9, @dev={0xfe, 0x80, '\x00', 0xe}, 0x5}, 0x1c, &(0x7f0000000b40)=[{&(0x7f0000000340)="f2", 0x1}], 0x1}}], 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x48)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETVESABLANK(r7, 0x560e, &(0x7f0000000140))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

617.879678ms ago: executing program 0 (id=2986):
syz_io_uring_setup(0x7b, &(0x7f00000000c0)={0x0, 0x3bd2, 0x8, 0x0, 0x318}, &(0x7f00000005c0)=<r0=>0x0, &(0x7f0000000300)=<r1=>0x0)
r2 = socket$inet6(0xa, 0x1, 0x0)
r3 = io_uring_setup(0x288e, 0x0)
r4 = syz_io_uring_setup(0x8d2, &(0x7f0000000340)={0x0, 0xf96d, 0x3010, 0x4, 0xee, 0x0, r3}, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r2, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000800)=ANY=[], 0xe8}, 0x0, 0x24040092})
io_uring_enter(r4, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
syz_io_uring_submit(r0, r1, &(0x7f0000000600)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r5, 0x0, &(0x7f0000001180)={&(0x7f00000003c0)=@caif, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000440)="e995b33052b5c9ca12232318ad2f89bce61d1f0d36840f328e48180834effa915847a6659167ad9035ead8cd16c6b440cd87d986b8c23c6d9b455b0bd5b5d7cb6ba00f24056fc840a4bfebe4a4af2069f963298da9a9798505ed63fdadf57d51e88675ec921e36c5534346cbf58b640fa00321b809f864f9b65b875972220e119cb69290630217da5208783ec909fbb972bb88ca9d4d93f06259d93b7bf84c97902afb1733fe717a7446e26753fe025f771d45cbcdb17a8452ffe865e5a27115ac7fae014ae92c8cfac1b4b7d7547396", 0xd0}, {&(0x7f0000000540)="f689d9652c78791fa6a5f3ae7ec766356f242a61bb08189fa011a2b8f916b52d234dbfd6845236daafd421a82f188f", 0x2f}, {&(0x7f00000007c0)="ea2d9b8fce595c9dc6253f2556e6104c85e61b05208bdcd2b31a9062d91a463a587983d76837e7bdb39b911184b3f8401800403bdf62925799281de24157540ded2804f0141bb035c4aef1dae7686d08ce8c05b184fc05f9a442cb2989d6dad846f05958d6474c2d042e7009ea8581083834ca1a1129c6888c5f358c1aab97e1ca2402d3e03e4a72f4a0b2e3a43477678e885ea172d402590c08f6745af942ec8db47c9782c05059e6ffbab535c5c7e26d77657d3b755f76ab96a2e7b8d1112e40270dabf50678988005c0519d50e4a5288933dc199b205600b21c29c2c306db220be963c45fd21afa", 0xe9}, {&(0x7f00000008c0)="66f40ea3466fd78b393980345d6fb9a8899d0f206d22d6b8a95889a3a78f0163bc77f26f72a86f2ca72af06a1cc3f25930f10f79e0c3125d902f231cec5ce66bb754f901bc64113d003f97987f81ac458ebd37b29f5f9cd04886f28ae59e47898cafe82b336a25c7b7a24460459498878e17bb22d2989f29d49caa35f4369a13cfee684285d7264331a45d13e244fbf7e3713d4445a5d010751cfe7b5f58cad69b3eb006a90bc8c2bec5e3fa925d9a160d31dd21e0148d4b047081f8d75ef17de9478b60225307c0dd4eb6dcbef5a0bdd7eecebf47662ec10495e88184bc325979483413461b7a162333cf82933a777bd968ed313818eb8cb6", 0xf9}, {&(0x7f00000011c0)="a298434724daf7044d9c7f30452bb3d11c5a4e", 0x13}, {&(0x7f00000009c0)="749e1e22a6721b39568ae8f94cf91d986c6030dd163e37e6623a8b645e1ae73f56d6d727bbe422e288267ae8de0d3c8b7d37d516ca6b234da127782463786d2adda0503a5178986273b20af68924b1d3aaf75b133314b7d6f42f99d358cef9f32013400b8684baee6d9e644009ed9ec0b4b16f5e4f8498732d1629c1bc08af8e7b186210af735580abdcb1564485e1af73077397a37c3a0c2df04c9e2faefcdcdd6ffaa7a98438817e7a3aabaee6c512470a6a263aa3877a54c41fd1517cabde072a7bbb0a2eff8a4358f606f412813feaca1d74e1ba48", 0xd7}, {&(0x7f0000000ac0)="29fe3848ef5b556ea5c322461d1baf51", 0x10}], 0x7, &(0x7f0000001200)=ANY=[@ANYBLOB="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"/1765], 0x5f8}, 0x0, 0x20000400, 0x1})
io_setup(0x8, &(0x7f00000002c0))
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000080000000000000004850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r7, 0x4b47, &(0x7f0000000280)={0x5, 0xfe, 0x8006})
symlinkat(0x0, 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0xfffff6ea, 0x0, 0x0, 0x3})
ioctl$SCSI_IOCTL_GET_PCI(0xffffffffffffffff, 0x5393, &(0x7f0000000000))
socket$inet6_sctp(0xa, 0x801, 0x84)
r8 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
read$ptp(r8, 0x0, 0x0)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x4}, &(0x7f0000bbdffc)=<r9=>0x0)
timer_settime(r9, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mount(0x0, 0x0, 0x0, 0xf1dfa42737cfc8f0, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r10, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x87)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r11}, 0x18)
socket$inet_sctp(0x2, 0x5, 0x84)

583.924909ms ago: executing program 2 (id=2987):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="3207000000ed771b1a7ed728f767906c159997bc6364dc3216b14754944a3e37d34cd15a8c5be94ccdcdc2fa1fe85c4200"/72], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r2, 0x2007ffc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000008000000000000000018110000", @ANYRES32=r3], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000940)={{r3}, &(0x7f00000008c0), &(0x7f0000000900)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r4}, 0x10)
sendfile(r2, r2, 0x0, 0x800000009)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'veth0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
bind$packet(r5, &(0x7f0000000040)={0x11, 0x1, r6, 0x1, 0x9}, 0x14)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r8}, 0x10)
r9 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000540)={0x124, r9, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x60, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x8000}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x4000000}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x6}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x5}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x8}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x7}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x6}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40}]}, @IPVS_CMD_ATTR_DEST={0x58, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e21}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast1}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xa3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x73ef}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x9}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x2}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x1}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xf}]}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x9}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x5}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_DEST={0x2c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x7}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xfffffe00}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}]}]}, 0x124}, 0x1, 0x0, 0x0, 0x30000854}, 0x800)
sendmsg$IPVS_CMD_SET_DEST(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x20, r9, 0x20, 0x70bd2d, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x3}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4005}, 0x20040804)
mount$9p_tcp(0x0, 0x0, 0x0, 0x8010, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=@getchain={0x2c, 0x11, 0x1, 0xfffffffe, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {0x2, 0xa}, {0xd, 0xc}, {0x8}}, [{0x8, 0xb, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20048054)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000003c0)={{r0}, &(0x7f0000000280), &(0x7f0000000380)='%pB    \x00'}, 0x20)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r10}, 0x10)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001", 0x3, 0xfffffffffffffffd)

561.897149ms ago: executing program 4 (id=2988):
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/ipv6_route\x00')
pread64(r0, &(0x7f0000000300)=""/170, 0xaa, 0x20000000000004)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000008c0)={r0, &(0x7f0000000740)="68985cbea27631e903ac43107f3414f027c552d2611dc947ef6ad514210f2f033b2b3937140b8cc6569f316fa8bd4dd7e5fdc7ff5791024d2e9e06b76aafbeda8862f7b48c8f8f91089813371b46da247b6ad62a11727f146e6e7b10656aacb59335f23da693b49463c06599234f35dbefa984ad891760c1d7b67db2ee53331cff93b03e445bb24f6c35cf675634f7b02620560f8648ac41e749ed32e5ceb80aff0356edf3244d7422ff4d928e54be7e9e7934e51af4010252b0cd9075f62ff209e0bd6a9fc069da2af41f8c448912d63503290a96ca", &(0x7f0000000840)=""/73}, 0x20)
ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000680))
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x400000000010, 0x3, 0x0)
getpeername$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000180)=0x14)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f00000003c0)={'syztnl0\x00', 0x0, 0x2b, 0x6, 0x4, 0x3, 0x2, @mcast2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8, 0x40, 0x10000, 0x1}})
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x200000000000006}, 0x18)
kexec_load(0x3e0000000000, 0x0, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = gettid()
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r4, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r4, 0x4040534e, &(0x7f00000000c0)={0x31, @tick=0x40, 0x4, {0x0, 0x2}, 0xa, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x4058534c, &(0x7f0000000040)={0x7, 0x7, 0x6, 0x2, 0x3, 0x824b})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r4, 0x80045300, 0x0)
tkill(r3, 0x7)
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @ipv4=@multicast2}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid}]}]}, 0x28}}, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000080)=@sr0, 0x0, &(0x7f00000001c0)='./file0\x00')
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r5)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_open_dev$loop(&(0x7f0000000080), 0x9, 0x1)
setsockopt$inet6_opts(r1, 0x29, 0x0, &(0x7f00000006c0)=@dstopts={0x32, 0xa, '\x00', [@pad1, @generic={0x7, 0x3e, "bf8d0bdb6d89cc340e7971de4cc0b602300a09c6006a4e541c49603fe4e5b2716030ccfec6c9f12de6599142528a4f5c137a7a6a3b5f80bb91b60a1437e3"}, @hao={0xc9, 0x10, @private1}]}, 0x60)

434.517341ms ago: executing program 2 (id=2989):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000700000002000000040000000500", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000008018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000faffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bind$tipc(r1, &(0x7f0000000600)=@id={0x1e, 0x3, 0x1, {0x4e22, 0x4}}, 0x10)
socket$nl_rdma(0x10, 0x3, 0x14)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x10)
r6 = fsopen(&(0x7f0000000300)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x680041, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000280)={'veth1_to_bond\x00', 0x1000})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

305.437884ms ago: executing program 4 (id=2990):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000540)='kfree\x00', r2}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8943, &(0x7f0000000100)={'macvtap0\x00', @random="b40007350060"})

274.007834ms ago: executing program 4 (id=2991):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYRES64], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000b7000000000000009500"/40], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
munmap(&(0x7f0000001000/0x2000)=nil, 0x2000)
r2 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r2, &(0x7f0000000140)={'full'}, 0xfffffdef)

242.654435ms ago: executing program 4 (id=2992):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000202070250000000000202d437b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x10a900, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2})
ioctl$TUNSETPERSIST(r1, 0x400454c9, 0x1)
ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x1)
ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000008c0)='sys_enter\x00', r0}, 0x10)
get_robust_list(0x0, &(0x7f0000001480)=0x0, &(0x7f00000014c0))
r2 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10)
pause()
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r3, &(0x7f0000000140), 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
r5 = dup(r4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
r6 = socket$caif_stream(0x25, 0x1, 0x1)
ioctl$LOOP_CHANGE_FD(r5, 0x4c06, r6)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r7)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
pipe2$9p(&(0x7f0000000500), 0x4000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r8}, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r7)
sendmsg$NL80211_CMD_GET_REG(r7, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)=ANY=[@ANYBLOB="88000000", @ANYRES16=r9, @ANYBLOB="080027bd7000fedbdf251f000000080001007b00ffff0700210062620000640022803c00008008000500060000000800060002000000080006000000009ba400070011b272630800020002000000080006000e0000000800010004000000240000800800020001fcffff080005000100000008000400030000000800050007000000"], 0x88}, 0x1, 0x0, 0x0, 0x48081}, 0x8000)
socket$nl_netfilter(0x10, 0x3, 0xc)
r10 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r11=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)

53.672399ms ago: executing program 3 (id=2993):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYRES64], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000b7000000000000009500"/40], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
munmap(&(0x7f0000001000/0x2000)=nil, 0x2000)
r2 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r2, &(0x7f0000000140)={'full'}, 0xfffffdef)

0s ago: executing program 3 (id=2994):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x4}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f00000100000012000000", @ANYRES32, @ANYBLOB="00000f0000000100000000010000000000000020", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r6, 0x0, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f00000002c0)={{{@in=@broadcast, @in=@multicast1, 0xffff, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x2, 0x0, 0x3}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0xffffffff}}, 0xe8)
sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000280), 0xfd, r2}, 0x38)
socket$packet(0x11, 0x2, 0x300)
r9 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r9, 0x8946, &(0x7f0000000100)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_ringparam={0x33, 0x0, 0xed9d, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x401}})
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}}, 0x0)

kernel console output (not intermixed with test programs):

38'.
[  211.850539][T10111] loop2: detected capacity change from 0 to 764
[  211.859385][T10111] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  211.879442][T10095] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  211.967730][T10115] netlink: 'syz.2.2344': attribute type 1 has an invalid length.
[  212.339070][T10125] loop2: detected capacity change from 0 to 1024
[  212.362231][T10125] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  212.373161][T10125] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  212.584124][T10125] JBD2: no valid journal superblock found
[  212.589943][T10125] EXT4-fs (loop2): Could not load journal inode
[  212.604527][T10132] loop3: detected capacity change from 0 to 764
[  212.662015][T10132] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  212.952495][T10141] loop2: detected capacity change from 0 to 1024
[  213.027387][T10141] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.082604][T10150] netlink: 'syz.4.2356': attribute type 1 has an invalid length.
[  213.108097][T10141] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2354: Allocating blocks 449-513 which overlap fs metadata
[  213.165114][T10140] EXT4-fs (loop2): pa ffff888106e845b0: logic 48, phys. 177, len 21
[  213.173223][T10140] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  213.287924][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.664401][T10190] netlink: 'syz.1.2368': attribute type 1 has an invalid length.
[  214.028838][T10210] lo speed is unknown, defaulting to 1000
[  214.036445][T10206] SELinux: security policydb version 18 (MLS) not backwards compatible
[  214.045037][T10210] lo speed is unknown, defaulting to 1000
[  214.057308][T10210] lo speed is unknown, defaulting to 1000
[  214.065141][T10206] SELinux: failed to load policy
[  214.074550][T10210] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  214.099473][T10210] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  214.146578][T10210] lo speed is unknown, defaulting to 1000
[  214.154107][T10210] lo speed is unknown, defaulting to 1000
[  214.166619][T10210] lo speed is unknown, defaulting to 1000
[  214.183284][T10210] lo speed is unknown, defaulting to 1000
[  214.196255][T10210] lo speed is unknown, defaulting to 1000
[  214.392195][T10222] loop3: detected capacity change from 0 to 1024
[  214.416080][T10222] ext4: Unknown parameter 'smackfshat'
[  214.524698][T10227] loop3: detected capacity change from 0 to 1024
[  214.550128][T10227] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  214.675588][T10227] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2383: Invalid block bitmap block 0 in block_group 0
[  214.700550][T10227] EXT4-fs error (device loop3): ext4_acquire_dquot:6943: comm syz.3.2383: Failed to acquire dquot type 0
[  214.737807][T10227] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2383: Freeing blocks not in datazone - block = 0, count = 4096
[  214.751955][T10227] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2383: Invalid inode bitmap blk 0 in block_group 0
[  214.764861][ T4008] EXT4-fs error (device loop3): ext4_release_dquot:6979: comm kworker/u8:27: Failed to release dquot type 0
[  214.797578][T10227] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  214.809407][T10227] EXT4-fs (loop3): 1 orphan inode deleted
[  214.815596][T10227] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  214.846847][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.076618][T10244] usb usb8: usbfs: process 10244 (syz.2.2385) did not claim interface 0 before use
[  215.242322][T10243] loop3: detected capacity change from 0 to 1024
[  215.282271][T10249] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2390'.
[  215.297133][T10243] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  215.332242][T10243] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2388: Invalid block bitmap block 0 in block_group 0
[  215.420580][T10243] EXT4-fs error (device loop3): ext4_acquire_dquot:6943: comm syz.3.2388: Failed to acquire dquot type 0
[  215.449625][T10243] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2388: Freeing blocks not in datazone - block = 0, count = 4096
[  215.463220][T10243] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2388: Invalid inode bitmap blk 0 in block_group 0
[  215.475802][ T3433] EXT4-fs error (device loop3): ext4_release_dquot:6979: comm kworker/u8:7: Failed to release dquot type 0
[  215.487725][T10243] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  215.496429][T10243] EXT4-fs (loop3): 1 orphan inode deleted
[  215.506164][T10243] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.590318][T10258] loop2: detected capacity change from 0 to 1024
[  215.597136][T10258] ext4: Unknown parameter 'smackfshat'
[  215.653615][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.707075][T10271] loop3: detected capacity change from 0 to 1024
[  215.744591][T10275] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2400'.
[  215.776980][T10271] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.789804][T10271] ext4 filesystem being mounted at /498/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.874000][T10266] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2396'.
[  216.022596][T10287] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.549560][T10287] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.578990][T10287] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.628619][T10287] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.723617][ T4008] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  216.743314][ T4008] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  216.796190][T10297] netlink: 'syz.2.2403': attribute type 3 has an invalid length.
[  216.816842][   T29] kauditd_printk_skb: 300 callbacks suppressed
[  216.816858][   T29] audit: type=1400 audit(1759391763.601:7750): avc:  denied  { associate } for  pid=10296 comm="syz.2.2403" name="syz2" dev="cgroup2" ino=77 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:fsadm_exec_t:s0"
[  216.865008][ T4008] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  216.873262][ T4008] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  216.912490][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.007107][T10300] usb usb8: usbfs: process 10300 (syz.0.2404) did not claim interface 0 before use
[  217.048234][T10302] loop2: detected capacity change from 0 to 1024
[  217.069259][T10302] ext4: Unknown parameter 'smackfshat'
[  217.423023][   T29] audit: type=1326 audit(1759391764.011:7751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10303 comm="syz.2.2407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  217.446670][   T29] audit: type=1326 audit(1759391764.011:7752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10303 comm="syz.2.2407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  217.470328][   T29] audit: type=1326 audit(1759391764.011:7753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10303 comm="syz.2.2407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  217.493794][   T29] audit: type=1326 audit(1759391764.011:7754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10303 comm="syz.2.2407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  217.517403][   T29] audit: type=1326 audit(1759391764.011:7755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10303 comm="syz.2.2407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  217.776734][T10320] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2412'.
[  218.165359][T10329] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  218.212979][T10329] loop4: detected capacity change from 0 to 1024
[  218.221141][T10329] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  218.263541][T10329] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.2415: Invalid block bitmap block 0 in block_group 0
[  218.282390][T10329] Quota error (device loop4): write_blk: dquota write failed
[  218.289964][T10329] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  218.300007][T10329] EXT4-fs error (device loop4): ext4_acquire_dquot:6943: comm syz.4.2415: Failed to acquire dquot type 0
[  218.303042][   T29] audit: type=1326 audit(1759391765.081:7756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10336 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  218.334977][   T29] audit: type=1326 audit(1759391765.091:7757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10336 comm="syz.2.2418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  218.335398][T10329] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.2415: Freeing blocks not in datazone - block = 0, count = 4096
[  218.373003][T10329] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.2415: Invalid inode bitmap blk 0 in block_group 0
[  218.385925][ T3539] EXT4-fs error (device loop4): ext4_release_dquot:6979: comm kworker/u8:18: Failed to release dquot type 0
[  218.388881][T10329] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  218.406394][T10329] EXT4-fs (loop4): 1 orphan inode deleted
[  218.412679][T10329] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.446820][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.476566][T10343] loop4: detected capacity change from 0 to 1024
[  218.524465][T10343] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  218.570101][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.588082][T10352] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2423'.
[  218.667395][T10354] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2424'.
[  218.676527][T10354] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2424'.
[  218.994778][T10362] loop3: detected capacity change from 0 to 764
[  219.002825][T10362] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  219.038679][T10365] loop4: detected capacity change from 0 to 1024
[  219.076949][T10365] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  219.127339][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.154653][T10370] netlink: 'syz.1.2429': attribute type 3 has an invalid length.
[  219.168912][T10373] loop4: detected capacity change from 0 to 512
[  219.168956][T10370] IPv6: Can't replace route, no match found
[  219.194616][T10375] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  219.207034][T10375] loop3: detected capacity change from 0 to 1024
[  219.214356][T10375] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  219.227787][T10375] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2431: Invalid block bitmap block 0 in block_group 0
[  219.242112][T10375] EXT4-fs error (device loop3): ext4_acquire_dquot:6943: comm syz.3.2431: Failed to acquire dquot type 0
[  219.253949][T10375] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2431: Freeing blocks not in datazone - block = 0, count = 4096
[  219.278304][T10375] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2431: Invalid inode bitmap blk 0 in block_group 0
[  219.295897][ T3534] EXT4-fs error (device loop3): ext4_release_dquot:6979: comm kworker/u8:16: Failed to release dquot type 0
[  219.309120][T10375] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  219.337341][T10375] EXT4-fs (loop3): 1 orphan inode deleted
[  219.346870][T10375] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.433509][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.480535][T10395] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2437'.
[  219.814528][T10404] loop3: detected capacity change from 0 to 764
[  219.823428][T10404] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  219.928791][T10408] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2443'.
[  220.159389][T10417] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2448'.
[  220.206880][T10419] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  220.230835][T10419] loop3: detected capacity change from 0 to 1024
[  220.249402][T10419] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  220.269666][T10419] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2447: Invalid block bitmap block 0 in block_group 0
[  220.284177][T10419] EXT4-fs error (device loop3): ext4_acquire_dquot:6943: comm syz.3.2447: Failed to acquire dquot type 0
[  220.296237][T10419] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2447: Freeing blocks not in datazone - block = 0, count = 4096
[  220.316181][T10419] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2447: Invalid inode bitmap blk 0 in block_group 0
[  220.339048][T10419] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  220.344092][ T3539] EXT4-fs error (device loop3): ext4_release_dquot:6979: comm kworker/u8:18: Failed to release dquot type 0
[  220.359685][T10419] EXT4-fs (loop3): 1 orphan inode deleted
[  220.368179][T10434] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2454'.
[  220.383425][T10419] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  220.478893][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.499813][T10445] lo speed is unknown, defaulting to 1000
[  220.527649][T10449] FAULT_INJECTION: forcing a failure.
[  220.527649][T10449] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  220.540794][T10449] CPU: 1 UID: 0 PID: 10449 Comm: syz.0.2458 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  220.540829][T10449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  220.540846][T10449] Call Trace:
[  220.540854][T10449]  <TASK>
[  220.540863][T10449]  __dump_stack+0x1d/0x30
[  220.540895][T10449]  dump_stack_lvl+0xe8/0x140
[  220.540988][T10449]  dump_stack+0x15/0x1b
[  220.541010][T10449]  should_fail_ex+0x265/0x280
[  220.541041][T10449]  should_fail+0xb/0x20
[  220.541080][T10449]  should_fail_usercopy+0x1a/0x20
[  220.541112][T10449]  _copy_from_iter+0xd2/0xe80
[  220.541154][T10449]  ? __build_skb_around+0x1a0/0x200
[  220.541184][T10449]  ? __alloc_skb+0x223/0x320
[  220.541261][T10449]  netlink_sendmsg+0x471/0x6b0
[  220.541295][T10449]  ? __pfx_netlink_sendmsg+0x10/0x10
[  220.541321][T10449]  __sock_sendmsg+0x145/0x180
[  220.541353][T10449]  ____sys_sendmsg+0x31e/0x4e0
[  220.541403][T10449]  ___sys_sendmsg+0x17b/0x1d0
[  220.541448][T10449]  __x64_sys_sendmsg+0xd4/0x160
[  220.541506][T10449]  x64_sys_call+0x191e/0x3000
[  220.541534][T10449]  do_syscall_64+0xd2/0x200
[  220.541567][T10449]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  220.541619][T10449]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  220.541698][T10449]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.541780][T10449] RIP: 0033:0x7fea6d48eec9
[  220.541801][T10449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.541826][T10449] RSP: 002b:00007fea6bece038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  220.541851][T10449] RAX: ffffffffffffffda RBX: 00007fea6d6e6090 RCX: 00007fea6d48eec9
[  220.541868][T10449] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000004
[  220.541918][T10449] RBP: 00007fea6bece090 R08: 0000000000000000 R09: 0000000000000000
[  220.541965][T10449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  220.541981][T10449] R13: 00007fea6d6e6128 R14: 00007fea6d6e6090 R15: 00007fff0c8f53f8
[  220.542008][T10449]  </TASK>
[  220.766875][T10443] ���������������: renamed from wg2
[  220.944736][T10457] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2462'.
[  221.752496][T10481] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2470'.
[  221.778208][T10487] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2472'.
[  221.856870][   T29] kauditd_printk_skb: 334 callbacks suppressed
[  221.856889][   T29] audit: type=1326 audit(1759391768.641:8085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10493 comm="syz.1.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  221.895937][   T29] audit: type=1326 audit(1759391768.641:8086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10493 comm="syz.1.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  221.919610][   T29] audit: type=1326 audit(1759391768.641:8087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10493 comm="syz.1.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  221.943445][   T29] audit: type=1326 audit(1759391768.641:8088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10493 comm="syz.1.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  221.967058][   T29] audit: type=1326 audit(1759391768.641:8089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10493 comm="syz.1.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  221.991350][   T29] audit: type=1326 audit(1759391768.641:8090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10493 comm="syz.1.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fbeca33ef03 code=0x7ffc0000
[  222.014866][   T29] audit: type=1326 audit(1759391768.641:8091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10493 comm="syz.1.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fbeca33d97f code=0x7ffc0000
[  222.038267][   T29] audit: type=1326 audit(1759391768.641:8092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10493 comm="syz.1.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fbeca33ef57 code=0x7ffc0000
[  222.061855][   T29] audit: type=1326 audit(1759391768.641:8093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10493 comm="syz.1.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbeca33d710 code=0x7ffc0000
[  222.085544][   T29] audit: type=1326 audit(1759391768.641:8094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10493 comm="syz.1.2475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fbeca33db2a code=0x7ffc0000
[  222.132695][T10495] bridge0: port 3(bond0) entered blocking state
[  222.139173][T10495] bridge0: port 3(bond0) entered disabled state
[  222.152524][T10495] bond0: entered allmulticast mode
[  222.157799][T10495] bond_slave_0: entered allmulticast mode
[  222.163566][T10495] bond_slave_1: entered allmulticast mode
[  222.169685][T10495] dummy0: entered allmulticast mode
[  222.176589][T10495] bond0: entered promiscuous mode
[  222.181776][T10495] bond_slave_0: entered promiscuous mode
[  222.187605][T10495] bond_slave_1: entered promiscuous mode
[  222.194187][T10495] dummy0: entered promiscuous mode
[  222.214893][T10495] bridge0: port 3(bond0) entered blocking state
[  222.221253][T10495] bridge0: port 3(bond0) entered forwarding state
[  222.293884][T10501] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2478'.
[  222.302958][T10501] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2478'.
[  222.374768][T10508] macvtap0: refused to change device tx_queue_len
[  222.425360][T10513] loop4: detected capacity change from 0 to 1024
[  222.571591][T10513] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.766654][T10519] bridge_slave_1: left allmulticast mode
[  222.772966][T10519] bridge_slave_1: left promiscuous mode
[  222.781961][T10519] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.923961][T10519] bridge_slave_0: left allmulticast mode
[  222.930020][T10519] bridge_slave_0: left promiscuous mode
[  222.936869][T10519] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.961359][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.186439][T10541] loop2: detected capacity change from 0 to 764
[  223.197689][T10541] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  223.210890][T10545] macvtap0: refused to change device tx_queue_len
[  223.218897][T10528] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2486'.
[  223.218917][T10528] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2486'.
[  223.343297][T10559] loop3: detected capacity change from 0 to 1024
[  223.367068][T10559] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.424736][T10574] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2503'.
[  223.441666][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.543471][T10579] FAULT_INJECTION: forcing a failure.
[  223.543471][T10579] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  223.556618][T10579] CPU: 0 UID: 0 PID: 10579 Comm: syz.3.2504 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  223.556662][T10579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  223.556742][T10579] Call Trace:
[  223.556751][T10579]  <TASK>
[  223.556759][T10579]  __dump_stack+0x1d/0x30
[  223.556781][T10579]  dump_stack_lvl+0xe8/0x140
[  223.556803][T10579]  dump_stack+0x15/0x1b
[  223.556823][T10579]  should_fail_ex+0x265/0x280
[  223.556922][T10579]  should_fail+0xb/0x20
[  223.556960][T10579]  should_fail_usercopy+0x1a/0x20
[  223.556992][T10579]  _copy_from_user+0x1c/0xb0
[  223.557119][T10579]  kstrtouint_from_user+0x69/0xf0
[  223.557150][T10579]  ? 0xffffffff81000000
[  223.557176][T10579]  ? selinux_file_permission+0x1e4/0x320
[  223.557248][T10579]  proc_fail_nth_write+0x50/0x160
[  223.557278][T10579]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  223.557309][T10579]  vfs_write+0x266/0x960
[  223.557340][T10579]  ? vfs_read+0x4e6/0x770
[  223.557450][T10579]  ? __rcu_read_unlock+0x4f/0x70
[  223.557474][T10579]  ? __fget_files+0x184/0x1c0
[  223.557545][T10579]  ksys_write+0xda/0x1a0
[  223.557589][T10579]  __x64_sys_write+0x40/0x50
[  223.557632][T10579]  x64_sys_call+0x2802/0x3000
[  223.557666][T10579]  do_syscall_64+0xd2/0x200
[  223.557834][T10579]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  223.557871][T10579]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  223.557901][T10579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.557948][T10579] RIP: 0033:0x7f515690d97f
[  223.557967][T10579] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  223.557986][T10579] RSP: 002b:00007f515536f030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  223.558008][T10579] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f515690d97f
[  223.558066][T10579] RDX: 0000000000000001 RSI: 00007f515536f0a0 RDI: 0000000000000003
[  223.558083][T10579] RBP: 00007f515536f090 R08: 0000000000000000 R09: 0000000000000000
[  223.558096][T10579] R10: 0000000000000004 R11: 0000000000000293 R12: 0000000000000001
[  223.558127][T10579] R13: 00007f5156b66038 R14: 00007f5156b65fa0 R15: 00007ffcd5389598
[  223.558153][T10579]  </TASK>
[  223.839086][T10591] macvtap0: refused to change device tx_queue_len
[  224.221222][T10603] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2510'.
[  224.479538][T10611] loop2: detected capacity change from 0 to 1024
[  224.643584][T10611] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.691254][T10624] macvtap0: refused to change device tx_queue_len
[  224.787743][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.875567][T10627] loop3: detected capacity change from 0 to 1024
[  224.925804][T10627] ext4: Unknown parameter 'smackfshat'
[  225.014221][T10629] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  225.096900][T10629] loop4: detected capacity change from 0 to 1024
[  225.139617][T10629] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  225.227827][T10629] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.2521: Invalid block bitmap block 0 in block_group 0
[  225.256172][T10629] EXT4-fs error (device loop4): ext4_acquire_dquot:6943: comm syz.4.2521: Failed to acquire dquot type 0
[  225.293418][T10629] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.2521: Freeing blocks not in datazone - block = 0, count = 4096
[  225.317250][T10629] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.2521: Invalid inode bitmap blk 0 in block_group 0
[  225.332134][T10629] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  225.347157][ T3534] EXT4-fs error (device loop4): ext4_release_dquot:6979: comm kworker/u8:16: Failed to release dquot type 0
[  225.381330][T10629] EXT4-fs (loop4): 1 orphan inode deleted
[  225.406533][T10629] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.446003][T10641] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  225.499837][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.519148][T10645] __nla_validate_parse: 1 callbacks suppressed
[  225.519166][T10645] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2525'.
[  225.534435][T10645] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2525'.
[  225.605880][T10657] macvtap0: refused to change device tx_queue_len
[  226.327766][T10674] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  226.339913][T10674] loop3: detected capacity change from 0 to 1024
[  226.347165][T10674] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  226.359273][T10674] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2538: Invalid block bitmap block 0 in block_group 0
[  226.373211][T10674] EXT4-fs error (device loop3): ext4_acquire_dquot:6943: comm syz.3.2538: Failed to acquire dquot type 0
[  226.384885][T10674] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2538: Freeing blocks not in datazone - block = 0, count = 4096
[  226.405364][T10674] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2538: Invalid inode bitmap blk 0 in block_group 0
[  226.418392][T10674] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  226.427311][T10674] EXT4-fs (loop3): 1 orphan inode deleted
[  226.433590][T10674] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.450259][ T3534] EXT4-fs error (device loop3): ext4_release_dquot:6979: comm kworker/u8:16: Failed to release dquot type 0
[  226.474072][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.581606][T10689] macvtap0: refused to change device tx_queue_len
[  228.316976][   T29] kauditd_printk_skb: 158 callbacks suppressed
[  228.317008][   T29] audit: type=1326 audit(1759391775.101:8247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10730 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  228.348406][   T29] audit: type=1326 audit(1759391775.101:8248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10730 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  228.372116][   T29] audit: type=1326 audit(1759391775.101:8249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10730 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  228.440483][   T29] audit: type=1326 audit(1759391775.221:8250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10730 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  228.464115][   T29] audit: type=1326 audit(1759391775.221:8251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10730 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  228.487680][   T29] audit: type=1326 audit(1759391775.221:8252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10730 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  228.645843][   T29] audit: type=1326 audit(1759391775.301:8253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10730 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  228.669476][   T29] audit: type=1326 audit(1759391775.301:8254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10730 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  228.693240][   T29] audit: type=1326 audit(1759391775.301:8255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10730 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  228.717067][   T29] audit: type=1326 audit(1759391775.301:8256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10730 comm="syz.0.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  228.781333][T10752] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2568'.
[  229.676802][T10765] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  229.688305][T10765] loop3: detected capacity change from 0 to 1024
[  229.695356][T10765] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  229.717455][T10765] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2573: Invalid block bitmap block 0 in block_group 0
[  229.745049][T10769] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  229.757046][T10769] loop2: detected capacity change from 0 to 1024
[  229.764266][T10769] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  229.780607][T10765] EXT4-fs error (device loop3): ext4_acquire_dquot:6943: comm syz.3.2573: Failed to acquire dquot type 0
[  229.821832][T10765] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2573: Freeing blocks not in datazone - block = 0, count = 4096
[  229.836646][T10769] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2575: Invalid block bitmap block 0 in block_group 0
[  229.850580][T10765] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2573: Invalid inode bitmap blk 0 in block_group 0
[  229.863647][T10769] EXT4-fs error (device loop2): ext4_acquire_dquot:6943: comm syz.2.2575: Failed to acquire dquot type 0
[  229.881315][ T3539] EXT4-fs error (device loop3): ext4_release_dquot:6979: comm kworker/u8:18: Failed to release dquot type 0
[  229.903536][T10769] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.2575: Freeing blocks not in datazone - block = 0, count = 4096
[  229.917256][T10765] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  229.933940][T10765] EXT4-fs (loop3): 1 orphan inode deleted
[  229.941671][T10769] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.2575: Invalid inode bitmap blk 0 in block_group 0
[  229.957031][ T3534] EXT4-fs error (device loop2): ext4_release_dquot:6979: comm kworker/u8:16: Failed to release dquot type 0
[  229.965248][T10765] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.981207][T10769] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  230.000045][T10769] EXT4-fs (loop2): 1 orphan inode deleted
[  230.010258][T10769] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.046619][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.093482][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.142673][T10780] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2579'.
[  231.467193][T10807] usb usb8: usbfs: process 10807 (syz.1.2588) did not claim interface 0 before use
[  231.701182][T10815] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2592'.
[  231.745205][T10816] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  231.794444][T10816] loop3: detected capacity change from 0 to 1024
[  231.821981][T10816] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  231.858101][T10816] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2589: Invalid block bitmap block 0 in block_group 0
[  231.858324][T10816] EXT4-fs error (device loop3): ext4_acquire_dquot:6943: comm syz.3.2589: Failed to acquire dquot type 0
[  231.858583][T10816] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2589: Freeing blocks not in datazone - block = 0, count = 4096
[  231.858796][T10816] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2589: Invalid inode bitmap blk 0 in block_group 0
[  231.858921][T10816] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  231.859024][T10816] EXT4-fs (loop3): 1 orphan inode deleted
[  231.859520][T10816] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.885755][ T3534] EXT4-fs error (device loop3): ext4_release_dquot:6979: comm kworker/u8:16: Failed to release dquot type 0
[  231.922405][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.021130][T10822] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2595'.
[  232.030204][T10822] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2595'.
[  232.372671][T10842] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2600'.
[  232.381742][T10842] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2600'.
[  232.849634][T10851] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2603'.
[  233.695649][T10856] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2604'.
[  233.907390][T10860] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  233.940514][T10860] loop3: detected capacity change from 0 to 1024
[  233.949748][   T29] kauditd_printk_skb: 84 callbacks suppressed
[  233.949835][   T29] audit: type=1326 audit(1759391780.731:8332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10868 comm="syz.4.2609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98073eec9 code=0x7ffc0000
[  233.952190][T10869] lo speed is unknown, defaulting to 1000
[  233.956237][   T29] audit: type=1326 audit(1759391780.741:8333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10868 comm="syz.4.2609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa98073eec9 code=0x7ffc0000
[  234.015891][T10860] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  234.034640][   T29] audit: type=1326 audit(1759391780.791:8334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10868 comm="syz.4.2609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98073eec9 code=0x7ffc0000
[  234.058258][   T29] audit: type=1326 audit(1759391780.791:8335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10868 comm="syz.4.2609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98073eec9 code=0x7ffc0000
[  234.081918][   T29] audit: type=1326 audit(1759391780.791:8336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10868 comm="syz.4.2609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7fa98073eec9 code=0x7ffc0000
[  234.105353][   T29] audit: type=1326 audit(1759391780.791:8337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10868 comm="syz.4.2609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa98073eec9 code=0x7ffc0000
[  234.144311][T10860] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2606: Invalid block bitmap block 0 in block_group 0
[  234.158795][T10860] Quota error (device loop3): write_blk: dquota write failed
[  234.166348][T10860] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  234.178350][T10860] EXT4-fs error (device loop3): ext4_acquire_dquot:6943: comm syz.3.2606: Failed to acquire dquot type 0
[  234.190169][T10860] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2606: Freeing blocks not in datazone - block = 0, count = 4096
[  234.206231][T10860] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2606: Invalid inode bitmap blk 0 in block_group 0
[  234.219063][ T4033] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-7
[  234.221589][T10860] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  234.228176][ T4033] EXT4-fs error (device loop3): ext4_release_dquot:6979: comm kworker/u8:49: Failed to release dquot type 0
[  234.237214][T10860] EXT4-fs (loop3): 1 orphan inode deleted
[  234.257106][T10860] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.286769][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.516498][T10881] usb usb8: usbfs: process 10881 (syz.1.2615) did not claim interface 0 before use
[  235.314964][T10905] loop3: detected capacity change from 0 to 1024
[  235.413937][T10905] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  235.468030][T10907] loop2: detected capacity change from 0 to 1024
[  235.475897][T10907] ext4: Unknown parameter 'smackfshat'
[  235.485237][   T29] audit: type=1326 audit(1759391782.261:8338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10903 comm="syz.3.2625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515690eec9 code=0x7ffc0000
[  235.523794][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.604642][T10923] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2631'.
[  235.671323][T10923] team0 (unregistering): Port device team_slave_0 removed
[  235.694568][T10926] loop2: detected capacity change from 0 to 256
[  235.757900][T10923] team0 (unregistering): Port device team_slave_1 removed
[  236.122637][T10943] loop4: detected capacity change from 0 to 1024
[  236.141999][T10943] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.166751][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.467955][T10955] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2643'.
[  237.017603][T10972] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2650'.
[  237.561864][T10996] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2657'.
[  237.571051][T10996] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2657'.
[  237.614731][T10995] macvtap0: refused to change device tx_queue_len
[  237.810044][T11005] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2662'.
[  237.846944][T11007] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  237.859224][T11007] loop4: detected capacity change from 0 to 1024
[  237.866302][T11007] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  238.347551][T11007] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.2664: Invalid block bitmap block 0 in block_group 0
[  238.375845][T11007] EXT4-fs error (device loop4): ext4_acquire_dquot:6943: comm syz.4.2664: Failed to acquire dquot type 0
[  238.387465][T11007] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.2664: Freeing blocks not in datazone - block = 0, count = 4096
[  238.406281][T11007] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.2664: Invalid inode bitmap blk 0 in block_group 0
[  238.425802][ T3433] EXT4-fs error (device loop4): ext4_release_dquot:6979: comm kworker/u8:7: Failed to release dquot type 0
[  238.439480][T11007] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  238.465982][T11007] EXT4-fs (loop4): 1 orphan inode deleted
[  238.472144][T11007] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.520739][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.785316][T11021] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2669'.
[  238.794385][T11021] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2669'.
[  238.814853][T11033] loop4: detected capacity change from 0 to 1024
[  238.852269][T11033] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.897930][T11033] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2672: Allocating blocks 449-513 which overlap fs metadata
[  238.996697][T11032] EXT4-fs (loop4): pa ffff888106e84700: logic 48, phys. 177, len 21
[  239.005044][T11032] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  239.083083][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.094633][   T29] kauditd_printk_skb: 77 callbacks suppressed
[  239.094647][   T29] audit: type=1326 audit(1759391785.881:8413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.2.2674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  239.096036][T11043] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2674'.
[  239.100963][   T29] audit: type=1326 audit(1759391785.881:8414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.2.2674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  239.124380][T11043] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2674'.
[  239.133279][   T29] audit: type=1326 audit(1759391785.881:8415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.2.2674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  239.189193][   T29] audit: type=1326 audit(1759391785.881:8416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.2.2674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  239.212696][   T29] audit: type=1326 audit(1759391785.881:8417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.2.2674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  239.236161][   T29] audit: type=1326 audit(1759391785.881:8418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.2.2674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  239.259707][   T29] audit: type=1326 audit(1759391785.881:8419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.2.2674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  239.283291][   T29] audit: type=1326 audit(1759391785.881:8420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.2.2674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  239.306894][   T29] audit: type=1326 audit(1759391785.881:8421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.2.2674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  239.330425][   T29] audit: type=1326 audit(1759391785.881:8422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.2.2674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3583f5eec9 code=0x7ffc0000
[  239.389687][T11046] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2675'.
[  239.483647][T11053] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  239.495484][T11053] loop2: detected capacity change from 0 to 1024
[  239.502556][T11053] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  239.514281][T11053] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2678: Invalid block bitmap block 0 in block_group 0
[  239.528221][T11053] EXT4-fs error (device loop2): ext4_acquire_dquot:6943: comm syz.2.2678: Failed to acquire dquot type 0
[  239.541575][T11053] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.2678: Freeing blocks not in datazone - block = 0, count = 4096
[  239.555168][T11053] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.2678: Invalid inode bitmap blk 0 in block_group 0
[  239.567998][ T3534] EXT4-fs error (device loop2): ext4_release_dquot:6979: comm kworker/u8:16: Failed to release dquot type 0
[  239.588635][T11053] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  239.601371][T11053] EXT4-fs (loop2): 1 orphan inode deleted
[  239.611705][T11053] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  239.706468][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.816321][T11070] block device autoloading is deprecated and will be removed.
[  240.040033][T11086] loop2: detected capacity change from 0 to 1024
[  240.046716][T11081] macvtap0: refused to change device tx_queue_len
[  240.056485][T11086] ext4: Unknown parameter 'smackfshat'
[  240.083087][T11090] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2688'.
[  240.199122][T11102] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  240.230218][T11102] loop2: detected capacity change from 0 to 1024
[  240.237255][T11102] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  240.271905][T11102] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2693: Invalid block bitmap block 0 in block_group 0
[  240.285959][T11102] EXT4-fs error (device loop2): ext4_acquire_dquot:6943: comm syz.2.2693: Failed to acquire dquot type 0
[  240.302068][T11102] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.2693: Freeing blocks not in datazone - block = 0, count = 4096
[  240.315931][T11102] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.2693: Invalid inode bitmap blk 0 in block_group 0
[  240.335896][ T3539] EXT4-fs error (device loop2): ext4_release_dquot:6979: comm kworker/u8:18: Failed to release dquot type 0
[  240.352464][T11102] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  240.381703][T11102] EXT4-fs (loop2): 1 orphan inode deleted
[  240.396456][T11102] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.468197][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.980117][T11123] macvtap0: refused to change device tx_queue_len
[  242.154009][T11171] __nla_validate_parse: 3 callbacks suppressed
[  242.154024][T11171] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2716'.
[  242.751987][T11168] program syz.2.2714 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  243.336924][T11209] tmpfs: Bad value for 'mpol'
[  243.361601][T11209] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2728'.
[  244.133995][T11234] SELinux: failed to load policy
[  244.177286][   T29] kauditd_printk_skb: 80 callbacks suppressed
[  244.177304][   T29] audit: type=1326 audit(1759391790.961:8497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.1.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  244.243459][   T29] audit: type=1326 audit(1759391790.961:8498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.1.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  244.267181][   T29] audit: type=1326 audit(1759391790.961:8499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.1.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  244.290762][   T29] audit: type=1326 audit(1759391790.961:8500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.1.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  244.314299][   T29] audit: type=1326 audit(1759391790.961:8501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.1.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  244.337905][   T29] audit: type=1326 audit(1759391790.961:8502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.1.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  244.356104][T11243] FAULT_INJECTION: forcing a failure.
[  244.356104][T11243] name failslab, interval 1, probability 0, space 0, times 0
[  244.361491][   T29] audit: type=1326 audit(1759391790.961:8503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.1.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  244.374204][T11243] CPU: 1 UID: 0 PID: 11243 Comm: syz.1.2739 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  244.374290][T11243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  244.374308][T11243] Call Trace:
[  244.374319][T11243]  <TASK>
[  244.374330][T11243]  __dump_stack+0x1d/0x30
[  244.374360][T11243]  dump_stack_lvl+0xe8/0x140
[  244.374457][T11243]  dump_stack+0x15/0x1b
[  244.374491][T11243]  should_fail_ex+0x265/0x280
[  244.374523][T11243]  should_failslab+0x8c/0xb0
[  244.374550][T11243]  __kmalloc_cache_node_noprof+0x54/0x320
[  244.374587][T11243]  ? __get_vm_area_node+0x106/0x1d0
[  244.374693][T11243]  __get_vm_area_node+0x106/0x1d0
[  244.374731][T11243]  __vmalloc_node_range_noprof+0x273/0xe00
[  244.374770][T11243]  ? sel_write_load+0x158/0x380
[  244.374798][T11243]  ? mntput+0x4b/0x80
[  244.374846][T11243]  ? __rcu_read_unlock+0x4f/0x70
[  244.374896][T11243]  ? sel_write_load+0x158/0x380
[  244.374924][T11243]  vmalloc_noprof+0x82/0xc0
[  244.374960][T11243]  ? sel_write_load+0x158/0x380
[  244.374988][T11243]  sel_write_load+0x158/0x380
[  244.375020][T11243]  vfs_writev+0x406/0x8b0
[  244.375052][T11243]  ? __pfx_sel_write_load+0x10/0x10
[  244.375163][T11243]  ? mutex_lock+0xd/0x30
[  244.375213][T11243]  do_writev+0xe7/0x210
[  244.375247][T11243]  __x64_sys_writev+0x45/0x50
[  244.375275][T11243]  x64_sys_call+0x1e9a/0x3000
[  244.375342][T11243]  do_syscall_64+0xd2/0x200
[  244.375396][T11243]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  244.375498][T11243]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  244.375560][T11243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.375591][T11243] RIP: 0033:0x7fbeca33eec9
[  244.375613][T11243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.375701][T11243] RSP: 002b:00007fbec8da7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  244.375729][T11243] RAX: ffffffffffffffda RBX: 00007fbeca595fa0 RCX: 00007fbeca33eec9
[  244.375749][T11243] RDX: 0000000000000001 RSI: 0000200000000500 RDI: 0000000000000003
[  244.375775][T11243] RBP: 00007fbec8da7090 R08: 0000000000000000 R09: 0000000000000000
[  244.375792][T11243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  244.375822][T11243] R13: 00007fbeca596038 R14: 00007fbeca595fa0 R15: 00007ffea1a77df8
[  244.375850][T11243]  </TASK>
[  244.375884][T11243] syz.1.2739: vmalloc error: size 2, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null)
[  244.398147][   T29] audit: type=1326 audit(1759391790.961:8504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.1.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  244.407933][T11243] ,cpuset=
[  244.418031][   T29] audit: type=1326 audit(1759391790.961:8505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.1.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  244.421286][T11243] /,mems_allowed=0
[  244.424222][   T29] audit: type=1326 audit(1759391790.961:8506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11231 comm="syz.1.2735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  244.428560][T11243] 
[  244.428572][T11243] CPU: 1 UID: 0 PID: 11243 Comm: syz.1.2739 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  244.428647][T11243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  244.428666][T11243] Call Trace:
[  244.428677][T11243]  <TASK>
[  244.428687][T11243]  __dump_stack+0x1d/0x30
[  244.428718][T11243]  dump_stack_lvl+0xe8/0x140
[  244.428811][T11243]  dump_stack+0x15/0x1b
[  244.428836][T11243]  warn_alloc+0x12b/0x1a0
[  244.428880][T11243]  __vmalloc_node_range_noprof+0x297/0xe00
[  244.428992][T11243]  ? mntput+0x4b/0x80
[  244.429031][T11243]  ? __rcu_read_unlock+0x4f/0x70
[  244.429082][T11243]  ? sel_write_load+0x158/0x380
[  244.429110][T11243]  vmalloc_noprof+0x82/0xc0
[  244.429183][T11243]  ? sel_write_load+0x158/0x380
[  244.429211][T11243]  sel_write_load+0x158/0x380
[  244.429241][T11243]  vfs_writev+0x406/0x8b0
[  244.429316][T11243]  ? __pfx_sel_write_load+0x10/0x10
[  244.429434][T11243]  ? mutex_lock+0xd/0x30
[  244.429471][T11243]  do_writev+0xe7/0x210
[  244.429504][T11243]  __x64_sys_writev+0x45/0x50
[  244.429532][T11243]  x64_sys_call+0x1e9a/0x3000
[  244.429600][T11243]  do_syscall_64+0xd2/0x200
[  244.429704][T11243]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  244.429741][T11243]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  244.429777][T11243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.429813][T11243] RIP: 0033:0x7fbeca33eec9
[  244.429857][T11243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.429883][T11243] RSP: 002b:00007fbec8da7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  244.429986][T11243] RAX: ffffffffffffffda RBX: 00007fbeca595fa0 RCX: 00007fbeca33eec9
[  244.430004][T11243] RDX: 0000000000000001 RSI: 0000200000000500 RDI: 0000000000000003
[  244.430019][T11243] RBP: 00007fbec8da7090 R08: 0000000000000000 R09: 0000000000000000
[  244.430036][T11243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  244.430056][T11243] R13: 00007fbeca596038 R14: 00007fbeca595fa0 R15: 00007ffea1a77df8
[  244.430083][T11243]  </TASK>
[  244.430104][T11243] Mem-Info:
[  244.924376][T11243] active_anon:46223 inactive_anon:2 isolated_anon:0
[  244.924376][T11243]  active_file:26938 inactive_file:2327 isolated_file:0
[  244.924376][T11243]  unevictable:0 dirty:168 writeback:0
[  244.924376][T11243]  slab_reclaimable:3376 slab_unreclaimable:17389
[  244.924376][T11243]  mapped:37165 shmem:42760 pagetables:1020
[  244.924376][T11243]  sec_pagetables:0 bounce:0
[  244.924376][T11243]  kernel_misc_reclaimable:0
[  244.924376][T11243]  free:1816816 free_pcp:23511 free_cma:0
[  244.969802][T11243] Node 0 active_anon:185704kB inactive_anon:8kB active_file:107752kB inactive_file:9308kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:149356kB dirty:672kB writeback:0kB shmem:171852kB kernel_stack:5328kB pagetables:4080kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  244.997426][T11243] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  245.026219][T11243] lowmem_reserve[]: 0 2883 7862 7862
[  245.031605][T11243] Node 0 DMA32 free:2949212kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2952744kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:0kB free_cma:0kB
[  245.061751][T11243] lowmem_reserve[]: 0 0 4978 4978
[  245.066979][T11243] Node 0 Normal free:4302692kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:181180kB inactive_anon:8kB active_file:107752kB inactive_file:9308kB unevictable:0kB writepending:672kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:94372kB local_pcp:59392kB free_cma:0kB
[  245.099043][T11243] lowmem_reserve[]: 0 0 0 0
[  245.103643][T11243] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  245.116445][T11243] Node 0 DMA32: 3*4kB (M) 4*8kB (M) 5*16kB (M) 3*32kB (M) 2*64kB (M) 4*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949212kB
[  245.132622][T11243] Node 0 Normal: 914*4kB (UME) 749*8kB (UME) 396*16kB (UME) 467*32kB (UME) 340*64kB (UME) 107*128kB (UME) 62*256kB (UM) 45*512kB (UME) 35*1024kB (UME) 0*2048kB 1016*4096kB (M) = 4302672kB
[  245.151590][T11243] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  245.161183][T11243] 71095 total pagecache pages
[  245.165935][T11243] 5 pages in swap cache
[  245.170098][T11243] Free swap  = 124124kB
[  245.174264][T11243] Total swap = 124996kB
[  245.178485][T11243] 2097051 pages RAM
[  245.182301][T11243] 0 pages HighMem/MovableOnly
[  245.187033][T11243] 80465 pages reserved
[  245.247208][T11253] loop0: detected capacity change from 0 to 1024
[  245.253968][T11253] ext4: Unknown parameter 'smackfshat'
[  245.263499][T11253] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2743'.
[  245.307249][T11261] loop4: detected capacity change from 0 to 1024
[  245.314039][T11261] ext4: Unknown parameter 'smackfshat'
[  245.585987][T11278] FAULT_INJECTION: forcing a failure.
[  245.585987][T11278] name failslab, interval 1, probability 0, space 0, times 0
[  245.598673][T11278] CPU: 0 UID: 0 PID: 11278 Comm: syz.0.2752 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  245.598711][T11278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  245.598735][T11278] Call Trace:
[  245.598744][T11278]  <TASK>
[  245.598786][T11278]  __dump_stack+0x1d/0x30
[  245.598808][T11278]  dump_stack_lvl+0xe8/0x140
[  245.598827][T11278]  dump_stack+0x15/0x1b
[  245.598919][T11278]  should_fail_ex+0x265/0x280
[  245.598947][T11278]  should_failslab+0x8c/0xb0
[  245.598973][T11278]  kmem_cache_alloc_noprof+0x50/0x310
[  245.599004][T11278]  ? getname_flags+0x80/0x3b0
[  245.599095][T11278]  getname_flags+0x80/0x3b0
[  245.599123][T11278]  user_path_at+0x28/0x130
[  245.599160][T11278]  __se_sys_pivot_root+0xd0/0x710
[  245.599192][T11278]  __x64_sys_pivot_root+0x31/0x40
[  245.599253][T11278]  x64_sys_call+0x144/0x3000
[  245.599278][T11278]  do_syscall_64+0xd2/0x200
[  245.599344][T11278]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  245.599430][T11278]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  245.599471][T11278]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.599501][T11278] RIP: 0033:0x7fea6d48eec9
[  245.599521][T11278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.599546][T11278] RSP: 002b:00007fea6beef038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[  245.599646][T11278] RAX: ffffffffffffffda RBX: 00007fea6d6e5fa0 RCX: 00007fea6d48eec9
[  245.599663][T11278] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000001500
[  245.599726][T11278] RBP: 00007fea6beef090 R08: 0000000000000000 R09: 0000000000000000
[  245.599743][T11278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.599773][T11278] R13: 00007fea6d6e6038 R14: 00007fea6d6e5fa0 R15: 00007fff0c8f53f8
[  245.599799][T11278]  </TASK>
[  245.938185][T11273] loop4: detected capacity change from 0 to 256
[  245.958165][T11273] FAT-fs (loop4): bogus number of FAT sectors
[  245.964614][T11273] FAT-fs (loop4): Can't find a valid FAT filesystem
[  246.560835][T11283] loop4: detected capacity change from 0 to 4096
[  246.599083][T11283] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  246.625398][T11283] geneve0: entered allmulticast mode
[  246.756163][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.800108][T11303] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2761'.
[  246.984762][T11306] loop4: detected capacity change from 0 to 256
[  247.000089][T11306] FAT-fs (loop4): bogus number of FAT sectors
[  247.006859][T11306] FAT-fs (loop4): Can't find a valid FAT filesystem
[  247.489102][T11319] loop3: detected capacity change from 0 to 1024
[  247.506721][T11319] ext4: Unknown parameter 'smackfshat'
[  247.540314][T11321] loop0: detected capacity change from 0 to 1024
[  247.580415][T11321] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  247.759374][T11328] FAULT_INJECTION: forcing a failure.
[  247.759374][T11328] name failslab, interval 1, probability 0, space 0, times 0
[  247.772102][T11328] CPU: 0 UID: 0 PID: 11328 Comm: syz.2.2769 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  247.772173][T11328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  247.772187][T11328] Call Trace:
[  247.772194][T11328]  <TASK>
[  247.772202][T11328]  __dump_stack+0x1d/0x30
[  247.772228][T11328]  dump_stack_lvl+0xe8/0x140
[  247.772254][T11328]  dump_stack+0x15/0x1b
[  247.772276][T11328]  should_fail_ex+0x265/0x280
[  247.772334][T11328]  should_failslab+0x8c/0xb0
[  247.772354][T11328]  __kmalloc_noprof+0xa5/0x3e0
[  247.772411][T11328]  ? security_prepare_creds+0x52/0x120
[  247.772457][T11328]  security_prepare_creds+0x52/0x120
[  247.772536][T11328]  prepare_creds+0x34a/0x4c0
[  247.772563][T11328]  copy_creds+0x8f/0x3f0
[  247.772675][T11328]  copy_process+0x658/0x2000
[  247.772710][T11328]  ? kstrtouint+0x76/0xc0
[  247.772759][T11328]  ? __rcu_read_unlock+0x4f/0x70
[  247.772795][T11328]  kernel_clone+0x16c/0x5c0
[  247.772832][T11328]  ? vfs_write+0x7e8/0x960
[  247.772877][T11328]  __x64_sys_clone+0xe6/0x120
[  247.772967][T11328]  x64_sys_call+0x119c/0x3000
[  247.772998][T11328]  do_syscall_64+0xd2/0x200
[  247.773038][T11328]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  247.773082][T11328]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  247.773122][T11328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.773187][T11328] RIP: 0033:0x7f3583f5eec9
[  247.773207][T11328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.773231][T11328] RSP: 002b:00007f35829befe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  247.773251][T11328] RAX: ffffffffffffffda RBX: 00007f35841b5fa0 RCX: 00007f3583f5eec9
[  247.773263][T11328] RDX: 0000000000000000 RSI: 0000000000009000 RDI: 0000000004021400
[  247.773286][T11328] RBP: 00007f35829bf090 R08: 0000000000000000 R09: 0000000000000000
[  247.773300][T11328] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  247.773316][T11328] R13: 00007f35841b6038 R14: 00007f35841b5fa0 R15: 00007ffcb8f54d98
[  247.773343][T11328]  </TASK>
[  248.047232][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  248.135123][T11333] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  248.159054][T11333] loop2: detected capacity change from 0 to 1024
[  248.199242][T11333] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  248.212589][T11337] 9pnet_fd: Insufficient options for proto=fd
[  248.228005][T11333] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2772: Invalid block bitmap block 0 in block_group 0
[  248.266394][T11333] EXT4-fs error (device loop2): ext4_acquire_dquot:6943: comm syz.2.2772: Failed to acquire dquot type 0
[  248.286203][T11333] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.2772: Freeing blocks not in datazone - block = 0, count = 4096
[  248.299828][T11333] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.2772: Invalid inode bitmap blk 0 in block_group 0
[  248.313726][ T3534] EXT4-fs error (device loop2): ext4_release_dquot:6979: comm kworker/u8:16: Failed to release dquot type 0
[  248.349866][T11333] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  248.377101][T11333] EXT4-fs (loop2): 1 orphan inode deleted
[  248.399126][T11333] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  248.490086][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  248.517607][T11341] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2773'.
[  248.632067][T11353] loop2: detected capacity change from 0 to 1024
[  248.638909][T11353] ext4: Unknown parameter 'smackfshat'
[  248.687580][T11357] FAULT_INJECTION: forcing a failure.
[  248.687580][T11357] name failslab, interval 1, probability 0, space 0, times 0
[  248.700390][T11357] CPU: 0 UID: 0 PID: 11357 Comm: syz.2.2779 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  248.700474][T11357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  248.700497][T11357] Call Trace:
[  248.700506][T11357]  <TASK>
[  248.700517][T11357]  __dump_stack+0x1d/0x30
[  248.700539][T11357]  dump_stack_lvl+0xe8/0x140
[  248.700558][T11357]  dump_stack+0x15/0x1b
[  248.700612][T11357]  should_fail_ex+0x265/0x280
[  248.700636][T11357]  should_failslab+0x8c/0xb0
[  248.700655][T11357]  __kmalloc_noprof+0xa5/0x3e0
[  248.700685][T11357]  ? ip_options_get+0x52/0x350
[  248.700736][T11357]  ip_options_get+0x52/0x350
[  248.700772][T11357]  ? tcp_release_cb+0xf1/0x370
[  248.700798][T11357]  do_ip_setsockopt+0x19d4/0x2240
[  248.700830][T11357]  ip_setsockopt+0x58/0x110
[  248.700858][T11357]  tcp_setsockopt+0x95/0xb0
[  248.700908][T11357]  sock_common_setsockopt+0x69/0x80
[  248.700953][T11357]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  248.700998][T11357]  __sys_setsockopt+0x184/0x200
[  248.701031][T11357]  __x64_sys_setsockopt+0x64/0x80
[  248.701070][T11357]  x64_sys_call+0x20ec/0x3000
[  248.701097][T11357]  do_syscall_64+0xd2/0x200
[  248.701139][T11357]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  248.701238][T11357]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  248.701276][T11357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.701379][T11357] RIP: 0033:0x7f3583f5eec9
[  248.701399][T11357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.701424][T11357] RSP: 002b:00007f35829bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  248.701449][T11357] RAX: ffffffffffffffda RBX: 00007f35841b5fa0 RCX: 00007f3583f5eec9
[  248.701467][T11357] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003
[  248.701483][T11357] RBP: 00007f35829bf090 R08: 0000000000000000 R09: 0000000000000000
[  248.701506][T11357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  248.701553][T11357] R13: 00007f35841b6038 R14: 00007f35841b5fa0 R15: 00007ffcb8f54d98
[  248.701580][T11357]  </TASK>
[  249.027381][T11364] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=11364 comm=syz.0.2782
[  249.067451][T11369] loop2: detected capacity change from 0 to 1024
[  249.089569][T11371] loop3: detected capacity change from 0 to 512
[  249.097663][T11369] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  249.142390][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.155608][T11376] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2786'.
[  249.211125][T11383] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2789'.
[  249.217885][   T29] kauditd_printk_skb: 112 callbacks suppressed
[  249.217905][   T29] audit: type=1400 audit(1759391796.001:8616): avc:  denied  { listen } for  pid=11363 comm="syz.0.2782" lport=50270 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  249.247943][T11374] sctp: [Deprecated]: syz.0.2782 (pid 11374) Use of int in max_burst socket option deprecated.
[  249.247943][T11374] Use struct sctp_assoc_value instead
[  249.265963][T11383] team0 (unregistering): Port device team_slave_0 removed
[  249.275715][   T29] audit: type=1400 audit(1759391796.031:8617): avc:  denied  { accept } for  pid=11363 comm="syz.0.2782" lport=50270 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  249.277940][T11383] team0 (unregistering): Port device team_slave_1 removed
[  249.296383][   T29] audit: type=1400 audit(1759391796.031:8618): avc:  denied  { setopt } for  pid=11363 comm="syz.0.2782" lport=50270 faddr=10.1.1.0 fport=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  249.364957][T11386] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2790'.
[  249.381691][T11386] 8021q: adding VLAN 0 to HW filter on device bond2
[  249.402672][   T29] audit: type=1400 audit(1759391796.181:8619): avc:  denied  { read } for  pid=11385 comm="syz.1.2790" name="usbmon2" dev="devtmpfs" ino=148 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  249.426304][   T29] audit: type=1400 audit(1759391796.181:8620): avc:  denied  { open } for  pid=11385 comm="syz.1.2790" path="/dev/usbmon2" dev="devtmpfs" ino=148 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  249.655620][T11398] loop3: detected capacity change from 0 to 128
[  249.691978][   T29] audit: type=1326 audit(1759391796.251:8621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.2791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515690eec9 code=0x7ffc0000
[  249.715777][   T29] audit: type=1326 audit(1759391796.251:8622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.2791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515690eec9 code=0x7ffc0000
[  249.739537][   T29] audit: type=1326 audit(1759391796.251:8623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.2791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f515690eec9 code=0x7ffc0000
[  249.763113][   T29] audit: type=1326 audit(1759391796.251:8624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.2791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515690eec9 code=0x7ffc0000
[  249.786786][   T29] audit: type=1326 audit(1759391796.251:8625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.2791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515690eec9 code=0x7ffc0000
[  249.978925][T11412] netlink: 'syz.3.2799': attribute type 15 has an invalid length.
[  250.024866][T11410] loop0: detected capacity change from 0 to 1024
[  250.091324][T11415] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2798'.
[  250.118833][T11410] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.158138][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.217849][T11426] loop4: detected capacity change from 0 to 1024
[  250.227821][T11426] ext4: Unknown parameter 'smackfshat'
[  250.283149][T11432] FAULT_INJECTION: forcing a failure.
[  250.283149][T11432] name failslab, interval 1, probability 0, space 0, times 0
[  250.295989][T11432] CPU: 0 UID: 0 PID: 11432 Comm: syz.1.2806 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  250.296049][T11432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  250.296062][T11432] Call Trace:
[  250.296068][T11432]  <TASK>
[  250.296074][T11432]  __dump_stack+0x1d/0x30
[  250.296115][T11432]  dump_stack_lvl+0xe8/0x140
[  250.296140][T11432]  dump_stack+0x15/0x1b
[  250.296212][T11432]  should_fail_ex+0x265/0x280
[  250.296285][T11432]  should_failslab+0x8c/0xb0
[  250.296310][T11432]  __kmalloc_noprof+0xa5/0x3e0
[  250.296335][T11432]  ? ip_options_get+0x52/0x350
[  250.296367][T11432]  ip_options_get+0x52/0x350
[  250.296412][T11432]  ? tcp_release_cb+0xf1/0x370
[  250.296456][T11432]  do_ip_setsockopt+0x19d4/0x2240
[  250.296551][T11432]  ip_setsockopt+0x58/0x110
[  250.296572][T11432]  tcp_setsockopt+0x95/0xb0
[  250.296604][T11432]  sock_common_setsockopt+0x69/0x80
[  250.296646][T11432]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  250.296699][T11432]  __sys_setsockopt+0x184/0x200
[  250.296724][T11432]  __x64_sys_setsockopt+0x64/0x80
[  250.296751][T11432]  x64_sys_call+0x20ec/0x3000
[  250.296774][T11432]  do_syscall_64+0xd2/0x200
[  250.296833][T11432]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  250.296922][T11432]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  250.296953][T11432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.296981][T11432] RIP: 0033:0x7fbeca33eec9
[  250.297001][T11432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.297025][T11432] RSP: 002b:00007fbec8da7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  250.297129][T11432] RAX: ffffffffffffffda RBX: 00007fbeca595fa0 RCX: 00007fbeca33eec9
[  250.297147][T11432] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003
[  250.297163][T11432] RBP: 00007fbec8da7090 R08: 0000000000000000 R09: 0000000000000000
[  250.297179][T11432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  250.297213][T11432] R13: 00007fbeca596038 R14: 00007fbeca595fa0 R15: 00007ffea1a77df8
[  250.297239][T11432]  </TASK>
[  250.585165][T11434] SELinux:  Context system_u:object is not valid (left unmapped).
[  250.650937][T11428] loop0: detected capacity change from 0 to 256
[  250.671423][T11428] FAT-fs (loop0): bogus number of FAT sectors
[  250.678209][T11428] FAT-fs (loop0): Can't find a valid FAT filesystem
[  250.711136][T11445] FAULT_INJECTION: forcing a failure.
[  250.711136][T11445] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  250.724327][T11445] CPU: 0 UID: 0 PID: 11445 Comm: syz.4.2810 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  250.724460][T11445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  250.724475][T11445] Call Trace:
[  250.724482][T11445]  <TASK>
[  250.724491][T11445]  __dump_stack+0x1d/0x30
[  250.724517][T11445]  dump_stack_lvl+0xe8/0x140
[  250.724566][T11445]  dump_stack+0x15/0x1b
[  250.724583][T11445]  should_fail_ex+0x265/0x280
[  250.724612][T11445]  should_fail+0xb/0x20
[  250.724685][T11445]  should_fail_usercopy+0x1a/0x20
[  250.724715][T11445]  _copy_from_user+0x1c/0xb0
[  250.724752][T11445]  xsk_setsockopt+0x308/0x640
[  250.724797][T11445]  ? __pfx_xsk_setsockopt+0x10/0x10
[  250.724880][T11445]  __sys_setsockopt+0x184/0x200
[  250.724912][T11445]  __x64_sys_setsockopt+0x64/0x80
[  250.724956][T11445]  x64_sys_call+0x20ec/0x3000
[  250.724982][T11445]  do_syscall_64+0xd2/0x200
[  250.725022][T11445]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  250.725101][T11445]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  250.725135][T11445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.725162][T11445] RIP: 0033:0x7fa98073eec9
[  250.725187][T11445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.725211][T11445] RSP: 002b:00007fa97f19f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  250.725299][T11445] RAX: ffffffffffffffda RBX: 00007fa980995fa0 RCX: 00007fa98073eec9
[  250.725315][T11445] RDX: 0000000000000004 RSI: 000000000000011b RDI: 0000000000000004
[  250.725327][T11445] RBP: 00007fa97f19f090 R08: 0000000000000020 R09: 0000000000000000
[  250.725340][T11445] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[  250.725351][T11445] R13: 00007fa980996038 R14: 00007fa980995fa0 R15: 00007ffd4dea9fa8
[  250.725370][T11445]  </TASK>
[  251.039447][T11451] geneve0: entered allmulticast mode
[  251.123432][T11461] lo speed is unknown, defaulting to 1000
[  251.136749][T11463] loop2: detected capacity change from 0 to 1024
[  251.137134][T11463] ext4: Unknown parameter 'smackfshat'
[  251.146869][T11464] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2814'.
[  251.146890][T11464] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2814'.
[  251.146905][T11464] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2814'.
[  251.212894][T11475] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2820'.
[  251.480062][T11481] tc_dump_action: action bad kind
[  251.523456][T11481] infiniband syz!: set active
[  251.523476][T11481] infiniband syz!: added team_slave_0
[  251.538902][T11481] RDS/IB: syz!: added
[  251.538964][T11481] smc: adding ib device syz! with port count 1
[  251.539025][T11481] smc:    ib device syz! port 1 has pnetid 
[  252.158412][T11495] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2826'.
[  252.196943][T11497] netlink: 'syz.2.2827': attribute type 8 has an invalid length.
[  252.238061][T11499] loop2: detected capacity change from 0 to 1024
[  252.244869][T11499] ext4: Unknown parameter 'smackfshat'
[  252.325021][T11503] IPVS: set_ctl: invalid protocol: 44 127.0.0.1:20003
[  252.350982][T11503] loop2: detected capacity change from 0 to 1024
[  252.382772][T11503] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  252.403284][T11492] loop4: detected capacity change from 0 to 256
[  252.419561][T11503] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2829: Invalid block bitmap block 0 in block_group 0
[  252.440756][T11503] EXT4-fs error (device loop2): ext4_acquire_dquot:6943: comm syz.2.2829: Failed to acquire dquot type 0
[  252.452432][T11503] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.2829: Freeing blocks not in datazone - block = 0, count = 4096
[  252.474239][T11503] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.2829: Invalid inode bitmap blk 0 in block_group 0
[  252.487317][T11492] FAT-fs (loop4): bogus number of FAT sectors
[  252.493978][T11492] FAT-fs (loop4): Can't find a valid FAT filesystem
[  252.501264][T11503] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  252.510270][T11503] EXT4-fs (loop2): 1 orphan inode deleted
[  252.516601][T11503] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.538756][ T4008] EXT4-fs error (device loop2): ext4_release_dquot:6979: comm kworker/u8:27: Failed to release dquot type 0
[  252.568255][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.995526][T11529] loop2: detected capacity change from 0 to 1024
[  253.026735][T11529] ext4: Unknown parameter 'smackfshat'
[  253.126367][T11535] loop4: detected capacity change from 0 to 1024
[  253.146360][T11535] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  253.161471][T11535] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2840: bg 0: block 10: padding at end of block bitmap is not set
[  253.176509][T11535] EXT4-fs error (device loop4): ext4_acquire_dquot:6943: comm syz.4.2840: Failed to acquire dquot type 0
[  253.188702][T11535] EXT4-fs error (device loop4): ext4_acquire_dquot:6943: comm syz.4.2840: Failed to acquire dquot type 0
[  253.200561][T11535] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.2840: Freeing blocks not in datazone - block = 0, count = 4096
[  253.214528][T11535] EXT4-fs error (device loop4): ext4_acquire_dquot:6943: comm syz.4.2840: Failed to acquire dquot type 0
[  253.226251][T11535] EXT4-fs (loop4): 1 orphan inode deleted
[  253.232661][T11535] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  253.781625][T11568] loop0: detected capacity change from 0 to 256
[  253.809456][T11568] FAT-fs (loop0): bogus number of FAT sectors
[  253.816203][T11568] FAT-fs (loop0): Can't find a valid FAT filesystem
[  253.941981][T11535] syz.4.2840 (11535) used greatest stack depth: 8800 bytes left
[  253.955851][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.015518][T11570] loop4: detected capacity change from 0 to 1024
[  254.039009][T11570] ext4: Unknown parameter 'smackfshat'
[  255.402466][   T29] kauditd_printk_skb: 65 callbacks suppressed
[  255.402484][   T29] audit: type=1326 audit(1759391802.111:8679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11584 comm="syz.1.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  255.432310][   T29] audit: type=1326 audit(1759391802.111:8680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11584 comm="syz.1.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  255.459160][   T29] audit: type=1326 audit(1759391802.111:8681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11584 comm="syz.1.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  255.482608][   T29] audit: type=1326 audit(1759391802.111:8682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11584 comm="syz.1.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  255.506205][   T29] audit: type=1326 audit(1759391802.121:8683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11586 comm="syz.0.2857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  255.529966][   T29] audit: type=1326 audit(1759391802.121:8684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11586 comm="syz.0.2857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  255.553616][   T29] audit: type=1326 audit(1759391802.121:8685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11586 comm="syz.0.2857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  255.579722][   T29] audit: type=1326 audit(1759391802.271:8686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11586 comm="syz.0.2857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  255.603275][   T29] audit: type=1326 audit(1759391802.271:8687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11586 comm="syz.0.2857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  255.626928][   T29] audit: type=1326 audit(1759391802.271:8688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11586 comm="syz.0.2857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6d48eec9 code=0x7ffc0000
[  255.739193][T11598] loop3: detected capacity change from 0 to 1024
[  255.746603][T11598] ext4: Unknown parameter 'smackfshat'
[  255.763523][T11596] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  255.772186][T11596] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  256.530828][T11626] loop2: detected capacity change from 0 to 1024
[  256.547327][T11626] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.573038][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.907535][T11637] loop0: detected capacity change from 0 to 1024
[  256.922279][T11637] ext4: Unknown parameter 'smackfshat'
[  257.082560][T11643] __nla_validate_parse: 1 callbacks suppressed
[  257.082576][T11643] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2877'.
[  257.097894][T11643] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2877'.
[  257.111019][T11643] bridge0: entered promiscuous mode
[  257.117639][T11643] batadv_slave_1: entered promiscuous mode
[  257.123826][T11643] debugfs: 'hsr0' already exists in 'hsr'
[  257.129603][T11643] Cannot create hsr debugfs directory
[  257.203797][T11648] loop3: detected capacity change from 0 to 1024
[  257.271489][T11648] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.392211][T11648] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2878: Allocating blocks 449-513 which overlap fs metadata
[  257.586045][T11646] EXT4-fs (loop3): pa ffff888106e84770: logic 48, phys. 177, len 21
[  257.594147][T11646] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  257.617006][T11667] lo speed is unknown, defaulting to 1000
[  257.719548][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.748201][T11670] loop4: detected capacity change from 0 to 1024
[  257.773937][T11670] ext4: Unknown parameter 'smackfshat'
[  257.968757][T11680] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2888'.
[  258.185839][T11689] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  258.192478][T11689] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  258.199928][T11689] vhci_hcd vhci_hcd.0: Device attached
[  258.216793][T11689] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  258.245773][T11689] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(9)
[  258.252358][T11689] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  258.259852][T11689] vhci_hcd vhci_hcd.0: Device attached
[  258.355715][T11699] vhci_hcd vhci_hcd.0: pdev(4) rhport(3) sockfd(14)
[  258.362454][T11699] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  258.370207][T11699] vhci_hcd vhci_hcd.0: Device attached
[  258.415864][T11702] vhci_hcd vhci_hcd.0: pdev(4) rhport(4) sockfd(17)
[  258.422522][T11702] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  258.430303][T11702] vhci_hcd vhci_hcd.0: Device attached
[  258.465271][T11699] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  258.538232][T11711] loop0: detected capacity change from 0 to 1024
[  258.545515][T11711] ext4: Unknown parameter 'smackfshat'
[  258.740059][T11731] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2900'.
[  258.758668][T11731] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2900'.
[  258.774274][T11720] lo speed is unknown, defaulting to 1000
[  258.826244][T11737] lo speed is unknown, defaulting to 1000
[  258.866670][T11742] FAULT_INJECTION: forcing a failure.
[  258.866670][T11742] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  258.880111][T11742] CPU: 1 UID: 0 PID: 11742 Comm: syz.2.2901 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  258.880147][T11742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  258.880163][T11742] Call Trace:
[  258.880171][T11742]  <TASK>
[  258.880179][T11742]  __dump_stack+0x1d/0x30
[  258.880201][T11742]  dump_stack_lvl+0xe8/0x140
[  258.880299][T11742]  dump_stack+0x15/0x1b
[  258.880321][T11742]  should_fail_ex+0x265/0x280
[  258.880348][T11742]  should_fail+0xb/0x20
[  258.880371][T11742]  should_fail_usercopy+0x1a/0x20
[  258.880463][T11742]  _copy_from_user+0x1c/0xb0
[  258.880499][T11742]  ____sys_sendmsg+0x1c5/0x4e0
[  258.880537][T11742]  ___sys_sendmsg+0x17b/0x1d0
[  258.880581][T11742]  __sys_sendmmsg+0x178/0x300
[  258.880623][T11742]  __x64_sys_sendmmsg+0x57/0x70
[  258.880656][T11742]  x64_sys_call+0x1c4a/0x3000
[  258.880724][T11742]  do_syscall_64+0xd2/0x200
[  258.880840][T11742]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  258.880949][T11742]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  258.880980][T11742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.881063][T11742] RIP: 0033:0x7f3583f5eec9
[  258.881081][T11742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.881105][T11742] RSP: 002b:00007f358299e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  258.881126][T11742] RAX: ffffffffffffffda RBX: 00007f35841b6090 RCX: 00007f3583f5eec9
[  258.881142][T11742] RDX: 0000000000000001 RSI: 00002000000032c0 RDI: 0000000000000005
[  258.881174][T11742] RBP: 00007f358299e090 R08: 0000000000000000 R09: 0000000000000000
[  258.881190][T11742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  258.881206][T11742] R13: 00007f35841b6128 R14: 00007f35841b6090 R15: 00007ffcb8f54d98
[  258.881229][T11742]  </TASK>
[  259.069415][T11703] vhci_hcd: connection closed
[  259.069681][T11700] vhci_hcd: connection closed
[  259.077686][T11692] vhci_hcd: connection closed
[  259.082791][T11694] vhci_hcd: connection closed
[  259.091324][ T3532] vhci_hcd: stop threads
[  259.096546][T11720] chnl_net:caif_netlink_parms(): no params data found
[  259.100481][ T3532] vhci_hcd: release socket
[  259.111670][ T3532] vhci_hcd: disconnect device
[  259.132453][ T3532] vhci_hcd: stop threads
[  259.137095][ T3532] vhci_hcd: release socket
[  259.141626][ T3532] vhci_hcd: disconnect device
[  259.147549][ T3532] vhci_hcd: stop threads
[  259.151814][ T3532] vhci_hcd: release socket
[  259.156285][ T3532] vhci_hcd: disconnect device
[  259.162229][ T3532] vhci_hcd: stop threads
[  259.166525][ T3532] vhci_hcd: release socket
[  259.171181][ T3532] vhci_hcd: disconnect device
[  259.211900][T11720] bridge0: port 1(bridge_slave_0) entered blocking state
[  259.219136][T11720] bridge0: port 1(bridge_slave_0) entered disabled state
[  259.233005][T11720] bridge_slave_0: entered allmulticast mode
[  259.242123][T11720] bridge_slave_0: entered promiscuous mode
[  259.276186][T11720] bridge0: port 2(bridge_slave_1) entered blocking state
[  259.283349][T11720] bridge0: port 2(bridge_slave_1) entered disabled state
[  259.298086][T11720] bridge_slave_1: entered allmulticast mode
[  259.304920][T11720] bridge_slave_1: entered promiscuous mode
[  259.325864][T11720] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  259.337264][T11720] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  259.364712][T11720] team0: Port device team_slave_0 added
[  259.371781][T11720] team0: Port device team_slave_1 added
[  259.407135][T11720] batman_adv: batadv0: Adding interface: batadv_slave_0
[  259.414156][T11720] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.441016][T11720] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  259.453406][T11720] batman_adv: batadv0: Adding interface: batadv_slave_1
[  259.460565][T11720] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.486842][T11720] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  259.519717][T11720] hsr_slave_0: entered promiscuous mode
[  259.526168][T11720] hsr_slave_1: entered promiscuous mode
[  259.532275][T11720] debugfs: 'hsr0' already exists in 'hsr'
[  259.538062][T11720] Cannot create hsr debugfs directory
[  259.610726][T11720] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.680744][T11720] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.750755][T11773] FAULT_INJECTION: forcing a failure.
[  259.750755][T11773] name failslab, interval 1, probability 0, space 0, times 0
[  259.763484][T11773] CPU: 1 UID: 0 PID: 11773 Comm: syz.0.2912 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  259.763563][T11773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  259.763576][T11773] Call Trace:
[  259.763581][T11773]  <TASK>
[  259.763589][T11773]  __dump_stack+0x1d/0x30
[  259.763611][T11773]  dump_stack_lvl+0xe8/0x140
[  259.763635][T11773]  dump_stack+0x15/0x1b
[  259.763719][T11773]  should_fail_ex+0x265/0x280
[  259.763741][T11773]  should_failslab+0x8c/0xb0
[  259.763766][T11773]  kmem_cache_alloc_node_noprof+0x57/0x320
[  259.763789][T11773]  ? __alloc_skb+0x101/0x320
[  259.763870][T11773]  __alloc_skb+0x101/0x320
[  259.763956][T11773]  netlink_alloc_large_skb+0xba/0xf0
[  259.763975][T11773]  netlink_sendmsg+0x3cf/0x6b0
[  259.764000][T11773]  ? __pfx_netlink_sendmsg+0x10/0x10
[  259.764022][T11773]  __sock_sendmsg+0x145/0x180
[  259.764092][T11773]  ____sys_sendmsg+0x31e/0x4e0
[  259.764117][T11773]  ___sys_sendmsg+0x17b/0x1d0
[  259.764222][T11773]  __x64_sys_sendmsg+0xd4/0x160
[  259.764289][T11773]  x64_sys_call+0x191e/0x3000
[  259.764401][T11773]  do_syscall_64+0xd2/0x200
[  259.764430][T11773]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  259.764453][T11773]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  259.764479][T11773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.764570][T11773] RIP: 0033:0x7fea6d48eec9
[  259.764583][T11773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.764599][T11773] RSP: 002b:00007fea6beef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  259.764614][T11773] RAX: ffffffffffffffda RBX: 00007fea6d6e5fa0 RCX: 00007fea6d48eec9
[  259.764625][T11773] RDX: 0000000000000004 RSI: 00002000000000c0 RDI: 0000000000000003
[  259.764697][T11773] RBP: 00007fea6beef090 R08: 0000000000000000 R09: 0000000000000000
[  259.764776][T11773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  259.764859][T11773] R13: 00007fea6d6e6038 R14: 00007fea6d6e5fa0 R15: 00007fff0c8f53f8
[  259.764876][T11773]  </TASK>
[  259.766053][T11720] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.983278][T11777] loop0: detected capacity change from 0 to 512
[  260.087986][T11720] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  260.176842][T11720] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  260.194194][T11720] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  260.203952][T11720] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  260.214495][T11720] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  260.229105][T11791] loop2: detected capacity change from 0 to 1024
[  260.236165][T11791] ext4: Unknown parameter 'smackfshat'
[  260.242733][T11787] loop0: detected capacity change from 0 to 1024
[  260.259764][T11787] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  260.304107][T11720] 8021q: adding VLAN 0 to HW filter on device bond0
[  260.318330][T11720] 8021q: adding VLAN 0 to HW filter on device team0
[  260.328162][ T6610] bridge0: port 1(bridge_slave_0) entered blocking state
[  260.335269][ T6610] bridge0: port 1(bridge_slave_0) entered forwarding state
[  260.353972][T11720] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  260.364586][T11720] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  260.438311][ T6610] bridge0: port 2(bridge_slave_1) entered blocking state
[  260.445686][ T6610] bridge0: port 2(bridge_slave_1) entered forwarding state
[  260.458610][T11787] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.2917: Allocating blocks 449-513 which overlap fs metadata
[  260.498329][   T29] kauditd_printk_skb: 277 callbacks suppressed
[  260.498346][   T29] audit: type=1326 audit(1759391807.281:8966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.1.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  260.531642][T11786] EXT4-fs (loop0): pa ffff888106dd49a0: logic 48, phys. 177, len 21
[  260.540240][T11786] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  260.558404][T11795] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2920'.
[  260.567660][T11795] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2920'.
[  260.585072][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.586208][   T29] audit: type=1326 audit(1759391807.341:8967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.1.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  260.617763][   T29] audit: type=1326 audit(1759391807.341:8968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.1.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  260.641315][   T29] audit: type=1326 audit(1759391807.341:8969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.1.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  260.653444][T11720] 8021q: adding VLAN 0 to HW filter on device batadv0
[  260.664978][   T29] audit: type=1326 audit(1759391807.341:8970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.1.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  260.695242][   T29] audit: type=1326 audit(1759391807.341:8971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.1.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  260.718907][   T29] audit: type=1326 audit(1759391807.341:8972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.1.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  260.742417][   T29] audit: type=1326 audit(1759391807.341:8973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.1.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  260.757061][T11720] veth0_vlan: entered promiscuous mode
[  260.766017][   T29] audit: type=1326 audit(1759391807.341:8974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.1.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  260.775804][T11720] veth1_vlan: entered promiscuous mode
[  260.795059][   T29] audit: type=1326 audit(1759391807.341:8975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11792 comm="syz.1.2920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fbeca33eec9 code=0x7ffc0000
[  260.815118][T11720] veth0_macvtap: entered promiscuous mode
[  260.832295][T11720] veth1_macvtap: entered promiscuous mode
[  260.857662][T11720] batman_adv: batadv0: Interface activated: batadv_slave_0
[  260.861248][T11827] loop4: detected capacity change from 0 to 512
[  260.877096][T11720] batman_adv: batadv0: Interface activated: batadv_slave_1
[  260.892972][ T6610] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  260.910408][ T6610] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  260.940154][ T6610] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  260.963837][ T6610] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  260.972686][T11837] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2899'.
[  261.085378][T11846] loop3: detected capacity change from 0 to 1024
[  261.092718][T11846] ext4: Unknown parameter 'smackfshat'
[  261.145320][T11852] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2932'.
[  261.161987][T11854] loop3: detected capacity change from 0 to 1024
[  261.208371][T11854] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.223710][T11864] SELinux:  policydb version -299076691 does not match my version range 15-35
[  261.238516][T11864] SELinux: failed to load policy
[  261.277096][T11854] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2933: Allocating blocks 449-513 which overlap fs metadata
[  261.339757][T11874] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2939'.
[  261.379883][T11878] loop2: detected capacity change from 0 to 512
[  261.391065][T11878] EXT4-fs: Ignoring removed orlov option
[  261.429539][T11878] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  261.446673][T11882] loop0: detected capacity change from 0 to 1024
[  261.453360][T11878] ext4 filesystem being mounted at /584/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  261.464745][T11882] ext4: Unknown parameter 'smackfshat'
[  261.479197][T11878] netlink: 'syz.2.2941': attribute type 10 has an invalid length.
[  261.535205][T11878] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.2941: corrupted xattr block 19: overlapping e_value 
[  261.553549][T11878] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  261.570045][T11878] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.2941: corrupted xattr block 19: overlapping e_value 
[  261.584426][T11878] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  261.600381][T11887] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.2941: corrupted xattr block 19: overlapping e_value 
[  261.614736][T11878] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.2941: corrupted xattr block 19: overlapping e_value 
[  261.630251][T11887] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  261.639726][T11878] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  261.645792][T11887] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.2941: corrupted xattr block 19: overlapping e_value 
[  261.695977][T11887] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  261.704982][T11887] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.2941: corrupted xattr block 19: overlapping e_value 
[  261.736007][T11887] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.2941: corrupted xattr block 19: overlapping e_value 
[  261.756007][T11887] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  261.775754][T11887] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  261.861850][T11893] netlink: 'syz.0.2945': attribute type 30 has an invalid length.
[  261.885055][ T4008] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  261.898268][ T4008] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  261.907215][ T4008] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  261.918089][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.926345][ T4008] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  261.957934][T11897] FAULT_INJECTION: forcing a failure.
[  261.957934][T11897] name failslab, interval 1, probability 0, space 0, times 0
[  261.970853][T11897] CPU: 1 UID: 0 PID: 11897 Comm: syz.0.2948 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  261.970915][T11897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  261.970932][T11897] Call Trace:
[  261.970941][T11897]  <TASK>
[  261.970951][T11897]  __dump_stack+0x1d/0x30
[  261.970978][T11897]  dump_stack_lvl+0xe8/0x140
[  261.971004][T11897]  dump_stack+0x15/0x1b
[  261.971025][T11897]  should_fail_ex+0x265/0x280
[  261.971119][T11897]  should_failslab+0x8c/0xb0
[  261.971214][T11897]  __kmalloc_node_noprof+0xa9/0x410
[  261.971244][T11897]  ? __vmalloc_node_range_noprof+0x3f9/0xe00
[  261.971359][T11897]  __vmalloc_node_range_noprof+0x3f9/0xe00
[  261.971397][T11897]  ? sel_write_load+0x158/0x380
[  261.971425][T11897]  vmalloc_noprof+0x82/0xc0
[  261.971453][T11897]  ? sel_write_load+0x158/0x380
[  261.971481][T11897]  sel_write_load+0x158/0x380
[  261.971515][T11897]  ? __pfx_sel_write_load+0x10/0x10
[  261.971541][T11897]  vfs_write+0x266/0x960
[  261.971580][T11897]  ? __rcu_read_unlock+0x4f/0x70
[  261.971610][T11897]  ? __fget_files+0x184/0x1c0
[  261.971648][T11897]  ksys_write+0xda/0x1a0
[  261.971686][T11897]  __x64_sys_write+0x40/0x50
[  261.971727][T11897]  x64_sys_call+0x2802/0x3000
[  261.971819][T11897]  do_syscall_64+0xd2/0x200
[  261.971869][T11897]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  261.971895][T11897]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  261.971981][T11897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.972010][T11897] RIP: 0033:0x7fea6d48eec9
[  261.972066][T11897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  261.972090][T11897] RSP: 002b:00007fea6beef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  261.972114][T11897] RAX: ffffffffffffffda RBX: 00007fea6d6e5fa0 RCX: 00007fea6d48eec9
[  261.972128][T11897] RDX: 0000000000000021 RSI: 0000200000000000 RDI: 0000000000000005
[  261.972142][T11897] RBP: 00007fea6beef090 R08: 0000000000000000 R09: 0000000000000000
[  261.972169][T11897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  261.972185][T11897] R13: 00007fea6d6e6038 R14: 00007fea6d6e5fa0 R15: 00007fff0c8f53f8
[  261.972211][T11897]  </TASK>
[  261.972220][T11897] syz.0.2948: vmalloc error: size 4096, failed to allocated page array size 8, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0
[  262.205470][T11897] CPU: 1 UID: 0 PID: 11897 Comm: syz.0.2948 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  262.205505][T11897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  262.205522][T11897] Call Trace:
[  262.205530][T11897]  <TASK>
[  262.205541][T11897]  __dump_stack+0x1d/0x30
[  262.205625][T11897]  dump_stack_lvl+0xe8/0x140
[  262.205655][T11897]  dump_stack+0x15/0x1b
[  262.205677][T11897]  warn_alloc+0x12b/0x1a0
[  262.205735][T11897]  __vmalloc_node_range_noprof+0x497/0xe00
[  262.205789][T11897]  ? sel_write_load+0x158/0x380
[  262.205814][T11897]  vmalloc_noprof+0x82/0xc0
[  262.205851][T11897]  ? sel_write_load+0x158/0x380
[  262.205871][T11897]  sel_write_load+0x158/0x380
[  262.205895][T11897]  ? __pfx_sel_write_load+0x10/0x10
[  262.205943][T11897]  vfs_write+0x266/0x960
[  262.205982][T11897]  ? __rcu_read_unlock+0x4f/0x70
[  262.206013][T11897]  ? __fget_files+0x184/0x1c0
[  262.206042][T11897]  ksys_write+0xda/0x1a0
[  262.206164][T11897]  __x64_sys_write+0x40/0x50
[  262.206205][T11897]  x64_sys_call+0x2802/0x3000
[  262.206233][T11897]  do_syscall_64+0xd2/0x200
[  262.206331][T11897]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  262.206368][T11897]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  262.206426][T11897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.206452][T11897] RIP: 0033:0x7fea6d48eec9
[  262.206471][T11897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.206541][T11897] RSP: 002b:00007fea6beef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  262.206563][T11897] RAX: ffffffffffffffda RBX: 00007fea6d6e5fa0 RCX: 00007fea6d48eec9
[  262.206576][T11897] RDX: 0000000000000021 RSI: 0000200000000000 RDI: 0000000000000005
[  262.206588][T11897] RBP: 00007fea6beef090 R08: 0000000000000000 R09: 0000000000000000
[  262.206601][T11897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.206670][T11897] R13: 00007fea6d6e6038 R14: 00007fea6d6e5fa0 R15: 00007fff0c8f53f8
[  262.206693][T11897]  </TASK>
[  262.405207][T11897] Mem-Info:
[  262.408456][T11897] active_anon:41719 inactive_anon:5 isolated_anon:0
[  262.408456][T11897]  active_file:26938 inactive_file:2379 isolated_file:0
[  262.408456][T11897]  unevictable:0 dirty:325 writeback:0
[  262.408456][T11897]  slab_reclaimable:3504 slab_unreclaimable:19619
[  262.408456][T11897]  mapped:34092 shmem:37839 pagetables:1174
[  262.408456][T11897]  sec_pagetables:0 bounce:0
[  262.408456][T11897]  kernel_misc_reclaimable:0
[  262.408456][T11897]  free:1832091 free_pcp:10733 free_cma:0
[  262.453671][T11897] Node 0 active_anon:166876kB inactive_anon:20kB active_file:107752kB inactive_file:9516kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:136368kB dirty:1300kB writeback:0kB shmem:151356kB kernel_stack:5584kB pagetables:4696kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  262.461387][T11913] loop2: detected capacity change from 0 to 1024
[  262.481436][T11897] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  262.491680][T11913] ext4: Unknown parameter 'smackfshat'
[  262.516303][T11897] lowmem_reserve[]: 0 2883 7862 7862
[  262.516423][T11897] Node 0 DMA32 free:2949212kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2952744kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:0kB free_cma:0kB
[  262.557746][T11897] lowmem_reserve[]: 0 0 4978 4978
[  262.562917][T11897] Node 0 Normal free:4363792kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:166876kB inactive_anon:20kB active_file:107752kB inactive_file:9516kB unevictable:0kB writepending:1300kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:39420kB local_pcp:7300kB free_cma:0kB
[  262.573221][T11913] __nla_validate_parse: 3 callbacks suppressed
[  262.573243][T11913] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2954'.
[  262.595628][T11897] lowmem_reserve[]: 0 0 0 0
[  262.615502][T11897] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  262.628742][T11853] EXT4-fs (loop3): pa ffff888106dd4a10: logic 48, phys. 177, len 21
[  262.628910][T11897] Node 0 DMA32: 3*4kB 
[  262.636810][T11853] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, 
[  262.636820][T11897] (M) 
[  262.636833][T11853] free 0, pa_free 4
[  262.640890][T11897] 4*8kB (M) 5*16kB (M) 3*32kB (M) 2*64kB (M) 4*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949212kB
[  262.669822][T11897] Node 0 Normal: 96*4kB (UME) 30*8kB (UM) 84*16kB (UM) 271*32kB (UM) 450*64kB (UME) 246*128kB (UM) 141*256kB (UME) 80*512kB (UM) 59*1024kB (UME) 7*2048kB (UM) 1011*4096kB (M) = 4363792kB
[  262.688637][T11897] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  262.698071][T11897] 67125 total pagecache pages
[  262.702943][T11897] 5 pages in swap cache
[  262.707199][T11897] Free swap  = 124828kB
[  262.711365][T11897] Total swap = 124996kB
[  262.715682][T11897] 2097051 pages RAM
[  262.719539][T11897] 0 pages HighMem/MovableOnly
[  262.724243][T11897] 80465 pages reserved
[  262.772858][T11925] loop9: detected capacity change from 0 to 7
[  262.779249][T11925] Buffer I/O error on dev loop9, logical block 0, async page read
[  262.789231][T11925] Buffer I/O error on dev loop9, logical block 0, async page read
[  262.797250][T11925]  loop9: unable to read partition table
[  262.803345][T11925] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  262.803345][T11925] 
) failed (rc=-5)
[  262.838440][T11932] FAULT_INJECTION: forcing a failure.
[  262.838440][T11932] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  262.844914][T11934] loop4: detected capacity change from 0 to 1024
[  262.851700][T11932] CPU: 0 UID: 0 PID: 11932 Comm: syz.0.2960 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  262.851734][T11932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  262.851752][T11932] Call Trace:
[  262.851762][T11932]  <TASK>
[  262.851774][T11932]  __dump_stack+0x1d/0x30
[  262.851806][T11932]  dump_stack_lvl+0xe8/0x140
[  262.851905][T11932]  dump_stack+0x15/0x1b
[  262.851929][T11932]  should_fail_ex+0x265/0x280
[  262.851964][T11932]  should_fail+0xb/0x20
[  262.851991][T11932]  should_fail_usercopy+0x1a/0x20
[  262.852024][T11932]  _copy_from_user+0x1c/0xb0
[  262.852087][T11932]  lo_ioctl+0x383/0x12b0
[  262.852112][T11932]  ? avc_has_extended_perms+0x73d/0x940
[  262.852196][T11932]  ? blkdev_common_ioctl+0xad6/0x1ad0
[  262.852294][T11932]  ? do_vfs_ioctl+0x866/0xe10
[  262.852346][T11932]  ? selinux_file_ioctl+0x308/0x3a0
[  262.852470][T11932]  ? __pfx_lo_ioctl+0x10/0x10
[  262.852496][T11932]  ? __pfx_blkdev_ioctl+0x10/0x10
[  262.852527][T11932]  blkdev_ioctl+0x34f/0x440
[  262.852560][T11932]  __se_sys_ioctl+0xcb/0x140
[  262.852628][T11932]  __x64_sys_ioctl+0x43/0x50
[  262.852668][T11932]  x64_sys_call+0x1816/0x3000
[  262.852772][T11932]  do_syscall_64+0xd2/0x200
[  262.852818][T11932]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  262.852880][T11932]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  262.852963][T11932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.852994][T11932] RIP: 0033:0x7fea6d48eec9
[  262.853017][T11932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.853116][T11932] RSP: 002b:00007fea6beef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  262.853143][T11932] RAX: ffffffffffffffda RBX: 00007fea6d6e5fa0 RCX: 00007fea6d48eec9
[  262.853161][T11932] RDX: 0000200000000140 RSI: 0000000000004c0a RDI: 0000000000000007
[  262.853181][T11932] RBP: 00007fea6beef090 R08: 0000000000000000 R09: 0000000000000000
[  262.853199][T11932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.853217][T11932] R13: 00007fea6d6e6038 R14: 00007fea6d6e5fa0 R15: 00007fff0c8f53f8
[  262.853246][T11932]  </TASK>
[  262.928938][T11939] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2963'.
[  262.948205][T11934] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  263.091091][T11720] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.118885][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.148552][T11953] loop4: detected capacity change from 0 to 1024
[  263.155296][T11953] ext4: Unknown parameter 'smackfshat'
[  263.163517][T11953] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2966'.
[  263.192897][T11955] loop4: detected capacity change from 0 to 1024
[  263.207327][T11955] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  263.232739][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.651931][T11967] lo speed is unknown, defaulting to 1000
[  263.876216][T11967] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  263.882836][T11967] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  263.890352][T11967] vhci_hcd vhci_hcd.0: Device attached
[  263.906199][T11967] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  263.919413][T11967] vhci_hcd vhci_hcd.0: pdev(0) rhport(2) sockfd(13)
[  263.926113][T11967] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  263.933722][T11967] vhci_hcd vhci_hcd.0: Device attached
[  264.095720][   T10] vhci_hcd: vhci_device speed not set
[  264.171829][T11980] loop3: detected capacity change from 0 to 1024
[  264.178999][   T10] usb 1-1: new low-speed USB device number 4 using vhci_hcd
[  264.199286][T11980] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  264.229072][T11980] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.2975: Allocating blocks 449-513 which overlap fs metadata
[  264.265717][T11979] EXT4-fs (loop3): pa ffff888106e84690: logic 48, phys. 177, len 21
[  264.273857][T11979] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  264.297522][T11720] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.389881][T11997] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2977'.
[  264.395249][T11969] vhci_hcd: connection reset by peer
[  264.398991][T11997] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2977'.
[  264.404494][T11971] vhci_hcd: connection closed
[  264.415167][ T3532] vhci_hcd: stop threads
[  264.424303][ T3532] vhci_hcd: release socket
[  264.427821][T11996] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2978'.
[  264.428771][ T3532] vhci_hcd: disconnect device
[  264.446184][ T3532] vhci_hcd: stop threads
[  264.450516][ T3532] vhci_hcd: release socket
[  264.455045][ T3532] vhci_hcd: disconnect device
[  264.657094][T12001] lo speed is unknown, defaulting to 1000
[  264.742374][T12001] chnl_net:caif_netlink_parms(): no params data found
[  264.778250][T12001] bridge0: port 1(bridge_slave_0) entered blocking state
[  264.785349][T12001] bridge0: port 1(bridge_slave_0) entered disabled state
[  264.793645][T12001] bridge_slave_0: entered allmulticast mode
[  264.800102][T12001] bridge_slave_0: entered promiscuous mode
[  264.806925][T12001] bridge0: port 2(bridge_slave_1) entered blocking state
[  264.813976][T12001] bridge0: port 2(bridge_slave_1) entered disabled state
[  264.821233][T12001] bridge_slave_1: entered allmulticast mode
[  264.827970][T12001] bridge_slave_1: entered promiscuous mode
[  264.845123][T12001] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  264.855558][T12001] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  264.876710][T12001] team0: Port device team_slave_0 added
[  264.883428][T12001] team0: Port device team_slave_1 added
[  264.906247][T12001] batman_adv: batadv0: Adding interface: batadv_slave_0
[  264.913694][T12001] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  264.939684][T12001] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  264.951161][T12001] batman_adv: batadv0: Adding interface: batadv_slave_1
[  264.958177][T12001] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  264.984208][T12001] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  265.004717][T12001] hsr_slave_0: entered promiscuous mode
[  265.011321][T12001] hsr_slave_1: entered promiscuous mode
[  265.018081][T12001] debugfs: 'hsr0' already exists in 'hsr'
[  265.023870][T12001] Cannot create hsr debugfs directory
[  265.055895][T12029] loop2: detected capacity change from 0 to 1024
[  265.084220][T12029] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  265.111776][T12001] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.116982][T12029] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2987: Allocating blocks 449-513 which overlap fs metadata
[  265.156934][T12028] EXT4-fs (loop2): pa ffff888106e84770: logic 48, phys. 177, len 21
[  265.164981][T12028] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  265.177400][T12001] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.195280][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.228134][T12001] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.297652][T12001] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.335245][T12045] macvtap0: refused to change device tx_queue_len
[  265.404137][T12001] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  265.413970][T12001] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  265.423657][T12049] tap0: tun_chr_ioctl cmd 1074025675
[  265.429034][T12049] tap0: persist enabled
[  265.433517][T12001] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  265.443666][T12049] tap0: tun_chr_ioctl cmd 1074025675
[  265.449095][T12049] tap0: persist enabled
[  265.454154][T12001] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  265.481673][T12001] bridge0: port 2(bridge_slave_1) entered blocking state
[  265.488876][T12001] bridge0: port 2(bridge_slave_1) entered forwarding state
[  265.496253][T12001] bridge0: port 1(bridge_slave_0) entered blocking state
[  265.503336][T12001] bridge0: port 1(bridge_slave_0) entered forwarding state
[  265.518828][   T29] kauditd_printk_skb: 179 callbacks suppressed
[  265.518842][   T29] audit: type=1400 audit(1759391812.301:9155): avc:  denied  { create } for  pid=12048 comm="syz.4.2992" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  265.541867][T12001] 8021q: adding VLAN 0 to HW filter on device bond0
[  265.557315][T12001] 8021q: adding VLAN 0 to HW filter on device team0
[  265.567529][ T6610] bridge0: port 1(bridge_slave_0) entered disabled state
[  265.576898][ T6610] bridge0: port 2(bridge_slave_1) entered disabled state
[  265.640678][   T29] audit: type=1400 audit(1759391812.421:9156): avc:  denied  { module_request } for  pid=12061 comm="syz.3.2994" kmod="crypto-digest_null" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  265.718111][T12043] ==================================================================
[  265.726254][T12043] BUG: KCSAN: data-race in __htab_map_lookup_elem / bpf_lru_pop_free
[  265.734370][T12043] 
[  265.736765][T12043] write to 0xffff888119af5968 of 4 bytes by task 12068 on cpu 0:
[  265.744502][T12043]  bpf_lru_pop_free+0xbea/0xcc0
[  265.749409][T12043]  __htab_lru_percpu_map_update_elem+0xea/0x600
[  265.755690][T12043]  bpf_percpu_hash_update+0x61/0xa0
[  265.760929][T12043]  bpf_map_update_value+0x36b/0x570
[  265.766166][T12043]  generic_map_update_batch+0x3f5/0x540
[  265.771757][T12043]  bpf_map_do_batch+0x25c/0x380
[  265.776642][T12043]  __sys_bpf+0x5f8/0x7c0
[  265.778343][T12075] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2994'.
[  265.780916][T12043]  __x64_sys_bpf+0x41/0x50
[  265.794206][T12043]  x64_sys_call+0x2aee/0x3000
[  265.798923][T12043]  do_syscall_64+0xd2/0x200
[  265.803469][T12043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.804415][T12075] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2994'.
[  265.809400][T12043] 
[  265.809410][T12043] read to 0xffff888119af5968 of 4 bytes by task 12043 on cpu 1:
[  265.809431][T12043]  __htab_map_lookup_elem+0xab/0x150
[  265.809453][T12043]  htab_lru_percpu_map_lookup_elem+0x20/0xb0
[  265.809475][T12043]  bpf_prog_1908f35e458ae2da+0x48/0x50
[  265.809493][T12043]  bpf_trace_run2+0x104/0x1c0
[  265.849737][T12043]  __traceiter_kfree+0x2b/0x50
[  265.854540][T12043]  kfree+0x27b/0x320
[  265.858474][T12043]  ___sys_recvmsg+0x135/0x370
[  265.863199][T12043]  do_recvmmsg+0x1ef/0x540
[  265.867660][T12043]  __x64_sys_recvmmsg+0xe5/0x170
[  265.872633][T12043]  x64_sys_call+0x27aa/0x3000
[  265.877332][T12043]  do_syscall_64+0xd2/0x200
[  265.881888][T12043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.887815][T12043] 
[  265.890167][T12043] value changed: 0xa252055f -> 0xe74a89e3
[  265.895906][T12043] 
[  265.898254][T12043] Reported by Kernel Concurrency Sanitizer on:
[  265.904423][T12043] CPU: 1 UID: 0 PID: 12043 Comm: syz.2.2989 Not tainted syzkaller #0 PREEMPT(voluntary) 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  265.914257][T12043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  265.924332][T12043] ==================================================================
[  265.937156][   T29] audit: type=1400 audit(1759391812.711:9157): avc:  denied  { write } for  pid=3284 comm="syz-executor" path="pipe:[2594]" dev="pipefs" ino=2594 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  266.011515][   T29] audit: type=1400 audit(1759391812.741:9158): avc:  denied  { recv } for  pid=3284 comm="syz-executor" saddr=10.128.0.163 src=42118 daddr=10.128.1.253 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  266.090381][ T4008] bridge0: port 1(bridge_slave_0) entered blocking state
[  266.097507][ T4008] bridge0: port 1(bridge_slave_0) entered forwarding state
[  266.155841][T12068] netdevsim netdevsim3: Direct firmware load for �� failed with error -2
[  266.268329][ T4008] bridge0: port 2(bridge_slave_1) entered blocking state
[  266.275451][ T4008] bridge0: port 2(bridge_slave_1) entered forwarding state
[  266.387660][ T3554] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  266.467560][ T3554] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  266.527170][ T3554] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  266.577105][ T3554] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  266.837762][ T3554] $H� (unregistering): (slave bond_slave_0): Releasing backup interface
[  266.847019][ T3554] bond_slave_0: left promiscuous mode
[  266.853209][ T3554] $H� (unregistering): (slave bond_slave_1): Releasing backup interface
[  266.862127][ T3554] bond_slave_1: left promiscuous mode
[  266.868019][ T3554] $H� (unregistering): Released all slaves
[  266.928899][ T3554] hsr_slave_0: left promiscuous mode
[  266.934541][ T3554] hsr_slave_1: left promiscuous mode
[  266.963939][ T3554] team0 (unregistering): Port device team_slave_1 removed
[  266.973377][ T3554] team0 (unregistering): Port device team_slave_0 removed
[  267.308411][ T3554] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.356824][ T3554] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.417038][ T3554] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.476980][ T3554] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.550408][ T3554] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.587226][ T3554] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.637427][ T3554] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.687177][ T3554] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.741471][ T3554] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.808109][ T3554] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.848290][ T3554] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.888749][ T3554] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.959119][ T3554] bridge0: port 2(bridge_slave_1) entered disabled state
[  267.967108][ T3554] bridge_slave_0: left allmulticast mode
[  267.972750][ T3554] bridge_slave_0: left promiscuous mode
[  267.978507][ T3554] bridge0: port 1(bridge_slave_0) entered disabled state
[  267.989047][ T3554] bridge0: port 3(vlan0) entered disabled state
[  267.996100][ T3554] bridge_slave_1: left allmulticast mode
[  268.001738][ T3554] bridge_slave_1: left promiscuous mode
[  268.007448][ T3554] bridge0: port 2(bridge_slave_1) entered disabled state
[  268.015202][ T3554] bridge_slave_0: left allmulticast mode
[  268.020892][ T3554] bridge_slave_0: left promiscuous mode
[  268.026606][ T3554] bridge0: port 1(bridge_slave_0) entered disabled state
[  268.036239][ T3554] bridge_slave_1: left allmulticast mode
[  268.041878][ T3554] bridge_slave_1: left promiscuous mode
[  268.047580][ T3554] bridge0: port 2(bridge_slave_1) entered disabled state
[  268.055478][ T3554] bridge_slave_0: left allmulticast mode
[  268.061229][ T3554] bridge_slave_0: left promiscuous mode
[  268.066918][ T3554] bridge0: port 1(bridge_slave_0) entered disabled state
[  268.357893][ T3554] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  268.367756][ T3554] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  268.377316][ T3554] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  268.387135][ T3554] bond0 (unregistering): Released all slaves
[  268.597819][ T3554] $H� (unregistering): (slave bond_slave_0): Releasing backup interface
[  268.606607][ T3554] bond_slave_0: left promiscuous mode
[  268.612956][ T3554] $H� (unregistering): (slave bond_slave_1): Releasing backup interface
[  268.621818][ T3554] bond_slave_1: left promiscuous mode
[  268.627942][ T3554] $H� (unregistering): Released all slaves
[  268.697863][ T3554] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  268.707924][ T3554] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  268.717481][ T3554] bond0 (unregistering): Released all slaves
[  268.769473][ T3554] tipc: Disabling bearer <udp:�>
[  268.774452][ T3554] tipc: Left network mode
[  268.824202][ T3554] hsr_slave_0: left promiscuous mode
[  268.830267][ T3554] hsr_slave_1: left promiscuous mode
[  268.838905][ T3554] hsr_slave_0: left promiscuous mode
[  268.844649][ T3554] hsr_slave_1: left promiscuous mode
[  268.851924][ T3554] hsr_slave_0: left promiscuous mode
[  268.857886][ T3554] hsr_slave_1: left promiscuous mode
[  268.863423][ T3554] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  268.870835][ T3554] batman_adv: batadv0: Removing interface: batadv_slave_0
[  268.878417][ T3554] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  268.885929][ T3554] batman_adv: batadv0: Removing interface: batadv_slave_1
[  268.898482][ T3554] veth1_macvtap: left promiscuous mode
[  268.903970][ T3554] veth0_macvtap: left promiscuous mode
[  268.910080][ T3554] veth1_macvtap: left promiscuous mode
[  268.915608][ T3554] veth0_macvtap: left promiscuous mode
[  268.921206][ T3554] veth1_vlan: left promiscuous mode
[  268.927365][ T3554] veth1_macvtap: left promiscuous mode
[  268.932900][ T3554] veth0_macvtap: left promiscuous mode
[  268.938474][ T3554] veth1_vlan: left promiscuous mode
[  268.943683][ T3554] veth0_vlan: left promiscuous mode
[  269.085440][ T3554] team0 (unregistering): Port device team_slave_1 removed
[  269.095634][ T3554] team0 (unregistering): Port device team_slave_0 removed
[  269.145547][ T3554] team0 (unregistering): Port device team_slave_1 removed
[  269.154776][ T3554] team0 (unregistering): Port device team_slave_0 removed
[  269.266163][   T10] usb 1-1: enqueue for inactive port 0
[  269.271731][   T10] usb 1-1: enqueue for inactive port 0
[  269.345795][   T10] vhci_hcd: vhci_device speed not set
[  269.979530][ T3554] bridge_slave_1: left allmulticast mode
[  269.985241][ T3554] bridge_slave_1: left promiscuous mode
[  269.991027][ T3554] bridge0: port 2(bridge_slave_1) entered disabled state
[  269.998901][ T3554] bridge_slave_0: left allmulticast mode
[  270.004615][ T3554] bridge_slave_0: left promiscuous mode
[  270.010288][ T3554] bridge0: port 1(bridge_slave_0) entered disabled state
[  270.069537][ T3554] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  270.079521][ T3554] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  270.088935][ T3554] bond0 (unregistering): Released all slaves
[  270.155330][ T3554] hsr_slave_0: left promiscuous mode
[  270.161118][ T3554] hsr_slave_1: left promiscuous mode
[  270.166837][ T3554] batman_adv: batadv0: Removing interface: batadv_slave_0
[  270.174250][ T3554] batman_adv: batadv0: Removing interface: batadv_slave_1
[  270.214843][ T3554] team0 (unregistering): Port device team_slave_1 removed
[  270.224581][ T3554] team0 (unregistering): Port device team_slave_0 removed