last executing test programs:

1.333026523s ago: executing program 0 (id=1374):
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000680)=ANY=[@ANYBLOB='hide,dmode=0x0000000000000009,session=0x0000000000000023,utf8,map=acorn,check=strict,mode=0x00000000000000c9,cruft,map=off,check=strict,overriderockperm,block=0x0000000000000200,cruft,nocompress,cruft,session=0x000000000000002e,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c7362736563746f723d3068303032fed83030332c000000000000000000"], 0x1, 0xa2f, &(0x7f00000018c0)="$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")
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000b40)=[{0x0}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x40100, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)

1.290289825s ago: executing program 2 (id=1375):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB='8\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)
writev(r0, &(0x7f0000000100)=[{&(0x7f00000001c0)="89e7ee2c78dad9b4b473fec988cae2c6ed03a8018cc85639900b740c7d1b1403", 0x20}, {&(0x7f00000008c0)="20dcaa96d13d91a2053264f8f93d6c", 0xf}], 0x2)

1.237212838s ago: executing program 0 (id=1376):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x1000000009, 0x640b9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x8, 0x3fff8000}, 0xa00, 0x81, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@private2={0xfc, 0x2, '\x00', 0x1}, 0x800, 0x0, 0x1, 0x1}, 0x20)
sendmsg$inet6(r0, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e23, 0x80000, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="120000000000000001000000", @ANYRES16=r0], 0x18}, 0x40c0)

1.198386921s ago: executing program 0 (id=1378):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000006000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc3c0000000c0a01010000000f000000000a0000060900020073797a31000000000900010073797a3100000000100003800c000080080003400000000214000000110001"], 0xa0}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, 0x0, 0x400c040)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r1, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000640)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2804c044}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x100000001}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
clock_adjtime(0x0, 0x0)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000380), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_FLUSH(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[@ANYBLOB="c4000000", @ANYRES16=r3, @ANYBLOB="0100000000000000000011"], 0xc4}}, 0x4008800)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, r2, 0x26}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000000)={0x4, 0x5, 0x8001, 0x2, 0x2, 0x101, 0x1000, 0x7}, &(0x7f0000000080)=0x20)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)=ANY=[], 0x0, 0x0)

1.173553282s ago: executing program 1 (id=1379):
r0 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000002e40)=ANY=[@ANYBLOB="00020201"], 0x18)
connect$inet6(r0, 0x0, 0x0)
sendto$l2tp6(r0, &(0x7f0000000340)="a2dd694004b5235a3cc4f4d8acf29c4d7660f7fae5fa71ac014f0f0e5f0d09308cd61c1a9077f74b", 0x28, 0x800, 0x0, 0x0)

1.138925834s ago: executing program 1 (id=1380):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affff020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b040000000000000000020000002400048020000180070001006374000014000280080002400000000f08000140000000020900010073797a30000000000900020073797a320000000014000000110001"], 0x78}}, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0xb, @empty}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@empty}, {@in6=@private2, 0x0, 0x32}, @in=@broadcast, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_auth={0x48, 0x1, {{'digest_null\x00'}}}]}, 0x138}}, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x39}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty, 0xfffffffe}}, 0x80000, 0x0, 0x0, 0x0, 0xb3550aa4ba878396}, 0x9c)

1.138319954s ago: executing program 2 (id=1381):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x2, 0xf4039, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x147b7e, 0x0, @perf_config_ext={0x1, 0xf60e}, 0x9092, 0x0, 0x43a1bd76, 0x2, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x4000000000, 0xffffffffffffffff, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/29], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f00005fd000/0x4000)=nil, 0x4000, 0x0, 0x5, 0x20000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

1.095461497s ago: executing program 4 (id=1382):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = mq_open(&(0x7f0000000080)='eth0\x00#~\x02\x00\x00\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfd\x05\x00\x00\x00\x00\x00\x80\x00\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94uu_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18A\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x05\x00\x00\x000\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xce\x00\x00\x00\xe8\vq+\xbb\xc7\xaf\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x120, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0xffff, 0xb7, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040), 0x1e)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_128={{0x303}, "2d432d74c04f228a", "d71d9a1e03558545115509e1c34caab9", "018000", "5e33931677e0f2d7"}, 0x28)
sendto$inet6(r1, 0x0, 0x0, 0x8000, 0x0, 0x0)
mq_timedsend(r0, &(0x7f0000000600)="6d12483bb95dab4da2bccb9a5c51f7769b4aa2ed6f00bcfff2058843f7de72fa8f9dd7572991db9f2968c67d150dbd80321f91c14a7705c3d6e2292f74d074e24cdfdc28da61b60db4ac67a81c04430dd72555dcebe8193594b8fe29718d5781fe3f418379dab48089b86edc4facdbc388e30fdfabe867722b348dcfbff8f7745bb98584b3384eb1b1c541d05427c4e5c33b3692ebf599d4a179bcd27271d55e4a38ac7be3cae3e85eddbdcf574ac462df22b6b2242245f32d5826de908a96ea66331cad4d0ff094f552e118ee643f2f12f854c32d4e548bd82a69c4102bc516a41a52436f6dfd80133de801fdc8e75276c631f041d86269f2ba0791e8119868816c1fe9c78654919d6dcce67a5f32b77575867f43f76e99108bf9ee3fd550cc18f8bee8505da7ea8fe0a3a9e40c01be1d39435821c5f52cf39a7d5558f278b01be298e5460d3ebf011345ed0030603f767fe44876fdf1cb172a4cbfb2f7784ac61c4786a147b6d446eaf46d5b26c6b85580ba4913fc12a443d8dcf05d08513ae01a7f489826fdc8bff83c1708ebbc060aa72d25e6ce21521799bd37c34fdad973fd7e17070b7783bf341fc079c6b0c9811388430c84540d8d544d1887b73e3a9d2625358be4b09128ee7f8d2dacf2d9704b9143c0341568d1e39429e1d442d21878c87271e66651e12d077b8dd49c0bf285097e261a5116b91036368265c1c5b74353bb42ff4936e27a20c48dea290685b09c2e5baa29dbeb790969f793692fb112c973329236f30bd29c39ee6104e1e0ccd1f855e5837d156c83834661a2aa8929ad78c025413179d880ee905d0b1ee1c9c3eacb63ac807a6ce73d492502ce52beba9ea5214a9387e2c5a810a96e14956809b6865e46a9d9ce2deb4cce2155562dd7e3daef9b3c0c0a55f1fe1a89835971dbc9c09ee9d4abe827b0e87dcd08e5e7cf08869cdcd6fe7f42d93c075db2fec9d96aff21410c3cbd5d904ed147af08c297011ec105dec6fb319cc5637ac71dac05d01ef356dcc6b6bd3f8625204d92f6d0447c0ee5c72d13b4e951a5ba060d4e0ab4680bba08ca9e0079ed6332e6449e01ec480903b0f377e08e8146c8a1e86df678dd88f3768e0958b04f24d58f39a15ee93e4b3e1e2dcd91f8cd36c37b2806d5f7c1871d0e1d7496ac64b377a8fb32104166536597bbfd6d814b2eb41970ba1aef50238e34ec8069690029c58c8a01b28b711ff44aed4652629c7cdc7843d83efe9514bb5b1f80d1047e6075870c53505a142e48d6897d7811f84d8c3e8f9985f9a9d01c8fd68960aee376caa465f25622d7ff5deae8f0d628e048bc4387ca3046067768f3014a3ef4d1b55123ce45507ab1b6f587f6302bb9b715899d2fc20cabfd306549b6a2ec8ea5169e5be19cf59ef71cbb16d402cdc62a422b2bf5c01bb6139e60fd61ea4b77382c7e2e038c6511bfe08f7a3cea5e793f9e2cb4facce20e719d179104418f6745bf8065c70da3815c8e1a1b650d96865c41fd45dbcae51e1d54b41002c2f673cd1008dbf3f17847dd28d8fe3c24ef238000be692e05b0365cb7691fa8f134efe70df46b5cc4765def995971ae0c45f653292f4a3c26300e359afbe0c4f7b049f505ab8e8a0d4c7090cc07c62dbcb9bf6682425553de4ca63f98ac5d420d01bf729bf815683d11451eea0295675778f00bef94ac6e29dd2285847fd857cf2d204de3170e024169d568500befd5c6f34e9d3fcae78bd8fcd6d8f85fcf56241c7787d86bdfca06a6e69b996d72530c94eaa82e99f8ccbd66b53ce0f066fffcb3b643f84a1112c4c8a153ef745f7da3c4887f95de7df8dcf6653200eccb389a7aad4a874d347791cd00cf767bdd8d36de55cbc0879e11cddec175b36be0d1224d1dab7d8f8f3bab0f622d031be123b6ab48188716162afea5e0529830a39c3c9edc86b3e6020830f2f94060685d96887fb536afaedcd9523c53e5e210e87a07bc941b29b968ec9b0f6e5a74b929ad56ef7e80b981d39460040df8aedb253bc4681e72de2b3e886320b2f9a52f675bb08e4dee27b468d0822d6269ad1eee16d1c1781ad17b1fae21b44e427ace6d1fa932ca9c295c5ae74140ffea23ac2b70a6ca71af12c6d63adc32110521cee84dce3514c51417fa794fff4fb7b72844fbb3ba786173d3ffea23e03eb49acbd957d52494ffff3cd2dc420ace19bbe375aabb97953dd1b8adc24856a81b2888e2fb635332c2d4257cf6833ccb3135c0327f79c4846b691b693b066cd5de30ca40e29fe8775fd6a8844f566223008d017ccb6f2ee47496b61aa2900f64c1e2136c8dfbb6dd7ab368e0cfeb3e639657f16d9f26f0c575b61476ea7cd499e2fffe75f6118d19d6186e9433d1b92dc30e84bceba4c9bd8e889575c50da8e236d0ad184a2ae7e91e31485a44389a7c6a63c4d7588fa0755ae292102c46df1cfcc21eccfa5bc815a2491cb845de2feae93d5a9365cff327d048b7e66733b1d1cbf1eadae7296631f3f1681ab5878272a9b17e11f64e8ea8afbd297f388b951e39b94d909c74a4c667f6204128c84566c2347222a984f67177160e3f144518721f25aab93c9d0a34d407b84485bf1f2fa07af7de0617dbda0b2eb3ef839d6ad8649fa7133e14646cb30462e827a1bba8b6cf97c93c95552c70aae8ba4918f8b51275ed7e1f90f7ae7a5313aff699f54265adad4b0608a90165c8e7df729ceb0eda12357ea37e7bbb86fc542544c93d494d4edfd098432e389666a8a93f4333e630deefa87397ece144a59fbf736aeefb7b66744954e8076e9d0534508a3631dbdcd2c15b5fd844d62409bf6c63699ac5ff0cab98d4b7f0e33e5cb20853554c895ea26607e9554d74e1511c4c476c41aa7fa717259e5048d80f1f30f07dd5397c17d818dac1849b7ccf6425fa0265edfecb58a763615dedbe98e215ce63dd1688e191a191ccdb4e939bd370f68054440296cb511b5f070fb9479bdef321b7d124506f6345ac3c2ca0ef22292d3f83ec21908de3a3c7f98cc5e086034d0b08df704382a8ee9f6129542cac7dc5fd54e71270f5ea9739b625347f3200d6f74d41106aed8fa8af5a3a6cd58a44de62af681d449a44b5f86702e625a1658f2bb09e1c7a178ec27081bb8e0f3febf700a1663374325bbb17a17c6178fbc0424f83cfafdd8ed301450bc6822105e6033bc999c833ce3f60814f9db98c3880aae837027cc4fd82a1aa61d1c7fbacf0e5da0c820f97e35f52abb212dcfd77c7e159ef4f777a2cbf61508539660a577974291852a3dfdcb0706961faf65f62745240e281e9c1ea25a2bf29729008b59b5bac92c8ffc53b240761c0021edb53bad82a322510f480a53945c63803abb0b5947aa32a7ad5cf8059933ae4dc5d18a261b8d4a126dadd1d7f186cc0f3bc00c82c15516ea2a4b5a5517395d2a16a3beb920b16c706381bae273443ebfa3c37778596177de18a62cb96c08a35459a897ac87bcd87cdbcecae83c95cd4b5eb878a8d31e75955eb11e0cb58c6ad2b39f8f9350ff95778a961b07b4b0e4ff6b58caab6db44c6345c8ad9da0aef0c2b4a09e459a027d774da684ce2defd0b23b6e15ec573268050cba4cd1be4d899672ea3562f280df3b3ee878bd2e9989357829c363b4b47eacadeee76144957f4d76c3ea703aa5bf32f75a0370f49ae371f001eced8bbdaa781f66c83f959af0cb0ecbabeeeb0f91c26a22b430d5cae34e470f79f01446cdca5b70ba6448a8d9e4722dba03369b3204253eea942de2fb7b4408212a4c6a5d36c7e82417edd052a59d6d1ce2b0a2bd94f334647712cc2296e75db316be650195dd28a360e2e44fd32951b2b983d673bce51eea778d2ed2a2468c3b6b94b67ee175aa08f757d5522b43cefd5969511579cd79300802c811adad7b6bdf789f70bc76e94f8ea317043cf29b562a2041c553122ec338834455be1b68fe7470808451b0e1f1d444ae1e430c51c718a751142fa675a663e9d9f66a8a6199b56d18e4167e54942a37366fa0b5242de86bf1af6c758b2f0bb1f0fda16dc5241e3cc442326fdb501b95fe768c45781c8b60fbe576c7e790e2d5a2a76085cdca098fb3209b30a017eefbf6f8b315b38d8f8f194e456d1776cf6c9c4f4a99e9b50ca4bbc57ff1f035f13a3d8261617b5d55387488f9456a32400a84f95320e722c7abed22b9f8b574da8322fe104c12fb35c9d0c600dde78c47cd46647a8e24aafa53c68e2119ed1473bb3b7c9873d0a256e8eec8dc9f57820a7e23d49deb4041beae704b3fb527ce57316ff238515c248c80d51fd44e31dbb2d2e1d6b8007a03bf9b981fee094ee82f413698af66a3057621490d60207bca2e7a11e96cfb850a9a371ce672d0c4826be044acaa0a0a04fab4f2807eac896c48db2c35caf97fdf8bacb854f5351328cfbab2c3b251fc0abe20ba4b8fe8f4a98dfb76a0b1ea6b6463bdd900e23114c94f205f492a4acb30cc8a6efe6f73a96d3688853c60dce92732440db5ec245478bb64ebe9b60e7469ffb253febcda05613a8c1dbf72634e68d912e2fc98501d99c7dafb50081edcc60dc74daf9cecbcf65aa57661451fc6131f8c879b2181984bc4e0973ad6984837e19595caa35ff4713266b6a6c090a50afeb1461590c4c36f7fead0c9620af82302616c154e74199ee11353f6e9861472e2f1826afd0ce1a2ce9712b50019b32397960f54f4fce3c6655e13d8ef3ba20eaa3ca03a831a39732203dc3d2d3bf8de63fb4c96b3ec10cc852401f25a2575e98d9a25bf0767fc180f6fef5928565fa9ffdd620b6713f85bbc140060df1b50607b4eb51c0c71dac8ee2c19b9bd03b1840bb4d1f8a767d788a31926c9c39be4709dd57e856cb417d3947ce825f194fac18323f36a3b7743603abc628d477b3292a6b3f4965e882a110728f2a9f4fa8fd9d9d50859c48fe0f07f6a826bd5c5d8d645c0f7d8d03cf49be2419e2986f8ad55a228cacd0838f867a8612fd1c4b04d54dc9d5b05cc9395f5bb7fe918083bedfa33734a3f6afaf70379f4d423fa592dcfdeef84161df3f8f42204116442fc815a3cb3c79348d489296014fb8d4334c4ad776e14207ed2115781a0caac4cbfddf8f788f58cd9da9c33f145d87a187d7db78ce4368c5bdbba67fde5264a53a65a027a52aa09fd4943aeeae146a769a26a0f3597fd5004b60c179ce2bcafc78220d691c44c153c883bf942f01586b5321e4bbb28ab44d97bea3368f7c5d0c3dda0ef359065fd31f62060beb0b2a31f7164867e4b78f89f5ea0131aed7014ef3385f0b350ff847f4321b81c7dc9a484605ee397a2d5ea8ad9593020cea3acb6a106a560b4bf675c89aa3b14678dfef6602fdfa9afeeb6f16cb1b3cc944ad5d0492a3d07308c07dfc204c071d92f6b8b5694c70d166fe29f7894ceee7554dc32c71f3b971c8f20f2cafa4399a8755684090f90e6b45ee924d1205e0a075fd2259b6ca6430d28c780735353be38578b3cf1badcba4dae86419d4a0c1ec21f4a7510a08018e90974f0757aab8b51dc0fc068193d040cbd9706eeec02360da646b11cc5f1a544ecf24ce87c7165a0cb9bdb6990db03320ecf2f65fb6dfd1f3d32b2ae10723707cf5f30ea387f677aea100649c72e795b5f7d652e0e2fd0ae19eaf96f1b6453d056e01c97aa5c271b5e5f303fa4013f686cfbf64a1c1fe4263786b835e46a98699b8d5262520c4947987748ab21a48aef3", 0xfd1, 0x6, 0x0)
mq_timedreceive(r0, &(0x7f000001a600)=""/102385, 0x18ff1, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x4000400)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
fcntl$setownex(r3, 0xf, &(0x7f0000000080)={0x3})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f0000001600)={0xc64, r4, 0x10, 0x70bd2a, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_TIMEOUT={0x8, 0x110, 0x7618}, @NL80211_ATTR_PEER_MEASUREMENTS={0xb84, 0x111, 0x0, 0x1, {0xb80, 0x5, 0x0, 0x1, [{0x1bc, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_REQ={0x44, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x2c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x230}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1464}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x4}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1872}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x128, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xb0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x13}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x38f5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x17}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0x104, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x100, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3c}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x19}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}]}]}]}]}, {0x3bc, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_CHAN={0x34, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x81}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x37}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xa2}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_REQ={0x2f8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0xa8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x18}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7fff}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x7c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfb}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xcc, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6b}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfff}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xb8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x18}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x24, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x6}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x16}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfffffffb}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x2c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2e}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6b55}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}]}, {0x208, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_CHAN={0x44, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x12}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14b4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x15e0}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xcf}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x19c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xc4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xfb}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xf9}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1d}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x19}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x100}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x78, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}]}]}]}, {0x2f8, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x80, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x74, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x100}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x24, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xc}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x20}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x78, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x6c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8000}]}, @NL80211_PMSR_TYPE_FTM={0x4c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xfe}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x1c4, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x10c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1e}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x74, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}]}}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_PEER_MEASUREMENTS={0xb8, 0x111, 0x0, 0x1, {0xb4, 0x5, 0x0, 0x1, [{0xa0, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x70, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1e}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x17}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x2c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x11}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x242}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}]}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}]}]}}]}, 0xc64}, 0x1, 0x0, 0x0, 0x20004844}, 0x20002800)
connect$pptp(r3, &(0x7f0000000280)={0x18, 0x2, {0x2, @local}}, 0x1e)
syz_emit_ethernet(0x6a, &(0x7f00000004c0)={@link_local, @link_local, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x3, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @multicast1}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x6558, 0x0, 0x0, [0x0]}, {0x0, 0x0, 0x0, 0x0, 0x11, 0x0, 0x800, [0x3]}, {}, {0xdd86, 0x88be, 0x0, {{0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5}}}}}}}}, 0x0)

1.094668837s ago: executing program 4 (id=1383):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={&(0x7f0000000100), 0x3}, 0x10f40b, 0x9, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800000, 0xfffffffffffffffb}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = syz_open_procfs(0x0, &(0x7f0000001200)='attr\x00')
getdents64(r2, &(0x7f0000002440)=""/181, 0xb5)

929.360886ms ago: executing program 4 (id=1385):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000040)={0x0, 0x0, 0x7})
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="580000001200050929bd7000fddbdf25180904fe4e224e24faffffff240900002402000008000000fdffffff010000000100000002000080", @ANYRES32=0x0, @ANYBLOB="00000100ff0f000006000800ffffffff090001"], 0x58}, 0x1, 0x0, 0x0, 0x2000051}, 0x800) (fail_nth: 2)

873.636289ms ago: executing program 3 (id=1386):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(0x0, r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
write$nci(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="710308"], 0x61)

872.93378ms ago: executing program 3 (id=1387):
r0 = socket$rxrpc(0x21, 0x2, 0xa)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x8) (async)
r1 = syz_socket_connect_nvme_tcp()
sendto$inet_nvme_pdu(r1, &(0x7f0000000240)=@data_h2c={{0x6, 0x9, 0x18, 0x57, 0x1}, 0x4, 0x3, 0x0, 0x853, "d87054af"}, 0x80, 0x0, 0x0, 0x0) (async, rerun: 64)
poll(&(0x7f0000000340)=[{r0, 0x2}, {r0, 0x200}], 0x2, 0x7f) (async, rerun: 64)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000200), 0x4) (async)
syz_io_uring_setup(0x6440, &(0x7f0000000080)={0x0, 0x0, 0x10100}, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) (async)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet_udplite(0x2, 0x2, 0x88) (async, rerun: 64)
r2 = socket$can_bcm(0x1d, 0x2, 0x2) (async, rerun: 64)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0xa, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="8500000800000000070000000000000095000000000300000767672a39668c826a9f7a4aeeb8cffd43634b3188b7311d93b44a2df956f9bfa0f2481b22e488ed335ca7bc8f8b8efbef5da9db69cc5779e1ca2d51bdc61011ffdb232975df5c80c3f94c2e7402702cb37e2d1873a233ed1fb6e64ddc313ed1b60c6206fa18dbb3c0c66fb03269a67f8d3d5627a2277f04f56e501969b2c4a8bc6fa4370b46446216038f262590262bbb5c3ca0f46c091d2de8644c6d8add7aab3902ec352b68fea9873b37ae1dbddce1ffa91c1fa98c8efc80f61046f2a7"], &(0x7f0000014ff5)='GPL\x00', 0x2, 0x1000, &(0x7f0000014000)=""/4096, 0x0, 0x0, '\x00', 0x0, @fallback, r3, 0x9, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) (async)
connect$can_bcm(r2, &(0x7f00000000c0), 0x10) (async)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x8020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYRES16=r2], 0x448}}, 0x0) (async)
sendmsg$can_bcm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="050000000808"], 0x80}}, 0x0) (async, rerun: 32)
sendmmsg$inet(r2, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="050000007402b8f4191db62b", 0xc}, {&(0x7f0000000440)="9f336d70bf41f19e47e98b4015e3b0384d86a1ceb4e530554ebc8154bf392bcf9ce0b09f879bd7aaf9d086e3", 0x2c}], 0x2}}, {{0x0, 0x0, &(0x7f0000000100), 0x2}}], 0x40000000000003a, 0x0) (rerun: 32)

872.60042ms ago: executing program 4 (id=1388):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x1000000009, 0x640b9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x8, 0x3fff8000}, 0xa00, 0x81, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@private2={0xfc, 0x2, '\x00', 0x1}, 0x800, 0x0, 0x1, 0x1}, 0x20)
sendmsg$inet6(r0, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e23, 0x80000, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="120000000000000001000000", @ANYRES16=r0], 0x18}, 0x40c0)

689.94594ms ago: executing program 3 (id=1389):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = getpid()
ptrace$setsig(0x4203, r1, 0x1, &(0x7f00000007c0)={0x800001a, 0x5, 0x1})
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
mremap(&(0x7f0000001000/0x8000)=nil, 0x8000, 0x4000, 0x3, &(0x7f0000001000/0x4000)=nil)
getsockopt$IPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x43, &(0x7f0000000040)={'IDLETIMER\x00'}, &(0x7f0000000100)=0x1e)
r4 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_pidfd_open(r4, 0x0)
socket$netlink(0x10, 0x3, 0x5)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000d40)=ANY=[@ANYBLOB="6000000010000104a0518fd50000000000000000", @ANYRES32=0x0, @ANYBLOB="096b0200000000002c00128009000100626f6e64000000001c00028006001900ff0300000800090001000000080007000000000014003500626f"], 0x60}, 0x1, 0x0, 0x0, 0x20004040}, 0x4000054)
r6 = socket(0x10, 0x80000, 0x10000)
sendmmsg(r6, &(0x7f0000000000), 0x4000000000001f2, 0x0)
setns(r5, 0x24020000)
open_tree(0xffffffffffffffff, &(0x7f00000001c0)='./mnt\x00', 0x81901)
sendmsg$IPSET_CMD_RENAME(r0, 0x0, 0x4000044)
timer_create(0x2, 0x0, &(0x7f0000044000)=<r7=>0x0)
r8 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setpgid(r8, r8)
setpgid(0x0, r8)
wait4(r8, 0x0, 0x2, 0x0)
setpgid(0x0, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_gettime(r7, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x480, &(0x7f0000000080)={[{@data_err_ignore}]}, 0x0, 0x236, &(0x7f0000000300)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000021000000000000000000000085000000750000"], 0x0}, 0x94)
unshare(0x26020480)

615.598395ms ago: executing program 4 (id=1390):
r0 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000002e40)=ANY=[@ANYBLOB="00020201"], 0x18)
connect$inet6(r0, 0x0, 0x0)
sendto$l2tp6(r0, &(0x7f0000000340)="a2dd694004b5235a3cc4f4d8acf29c4d7660f7fae5fa71ac014f0f0e5f0d09308cd61c1a9077f74b", 0x28, 0x800, 0x0, 0x0)

549.448459ms ago: executing program 4 (id=1391):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = getpid()
ptrace$setsig(0x4203, r1, 0x1, &(0x7f00000007c0)={0x800001a, 0x5, 0x1})
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
mremap(&(0x7f0000001000/0x8000)=nil, 0x8000, 0x4000, 0x3, &(0x7f0000001000/0x4000)=nil)
getsockopt$IPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x43, &(0x7f0000000040)={'IDLETIMER\x00'}, &(0x7f0000000100)=0x1e)
r4 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_pidfd_open(r4, 0x0)
socket$netlink(0x10, 0x3, 0x5)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000d40)=ANY=[@ANYBLOB="6000000010000104a0518fd50000000000000000", @ANYRES32=0x0, @ANYBLOB="096b0200000000002c00128009000100626f6e64000000001c00028006001900ff0300000800090001000000080007000000000014003500626f"], 0x60}, 0x1, 0x0, 0x0, 0x20004040}, 0x4000054)
r6 = socket(0x10, 0x80000, 0x10000)
sendmmsg(r6, &(0x7f0000000000), 0x4000000000001f2, 0x0)
setns(r5, 0x24020000)
open_tree(0xffffffffffffffff, &(0x7f00000001c0)='./mnt\x00', 0x81901)
sendmsg$IPSET_CMD_RENAME(r0, 0x0, 0x4000044)
timer_create(0x2, 0x0, &(0x7f0000044000)=<r7=>0x0)
r8 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setpgid(r8, r8)
setpgid(0x0, r8)
wait4(r8, 0x0, 0x2, 0x0)
setpgid(0x0, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_gettime(r7, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x480, &(0x7f0000000080)={[{@data_err_ignore}]}, 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000021000000000000000000000085000000"], 0x0}, 0x94)
unshare(0x26020480)

518.65693ms ago: executing program 2 (id=1392):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB='8\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)
writev(r0, &(0x7f0000000100)=[{&(0x7f00000001c0)="89e7ee2c78dad9b4b473fec988cae2c6ed03a8018cc85639900b740c7d1b1403", 0x20}, {&(0x7f00000008c0)="20dcaa96d13d91a2053264f8f93d6c", 0xf}], 0x2)

377.150738ms ago: executing program 2 (id=1393):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x14, 0x0, 0x800, 0x70bd28, 0x25dfdbfe, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x840}, 0x40040)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(0x3)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000040c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x2004c015}, 0x40)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000008}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = inotify_init1(0x0)
inotify_rm_watch(r2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r3, 0x6, 0x21, &(0x7f0000000280)="dc8daf8d760c0b8caa98fa19c6a35a18883775d272c579ff33a6effc0c49320f", 0x20)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
writev(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000080)="aefdda9d240103005a90f57f02703aeff0f64eb9ee07962c220852f426072a00"/42, 0x2a}], 0x1)

318.850202ms ago: executing program 3 (id=1394):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x4010}, 0x4000)
perf_event_open(&(0x7f0000004cc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4044d, 0x6, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaf1d, 0x1, @perf_bp={0x0, 0x1}, 0x100410, 0x200, 0x2, 0x7, 0x9, 0xd, 0xf18, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r2 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r1)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000680)=ANY=[@ANYBLOB="4400000010000304000000000000000000007400fe28d28692ce18b33e0ba4f6a8a266cee67aa950542f552b7c77deb4dd45ca217372d572af2ae5b53d5568080d933a3c578d099c31c1a05e8758caff7c0cba95dbb77c47c9ebdfff5275882272b8b5cd63d34ed15a7564c45cc36266ec450d4dba3379656cac5fc524a7cd06cb8cf3962e7fada569796238442aa16ee7d2813ba690ed29540a325caa07cc59569dc115f5cdfd4ac27053b6237c211d9fa94e164b3bc06f04e5", @ANYRES8, @ANYBLOB="0000000000000000240012800b000100627269646765000014000280060027000000000005002d"], 0x44}, 0x1, 0x0, 0x0, 0x40800}, 0x0)

251.170276ms ago: executing program 2 (id=1395):
sendmsg$OSF_MSG_REMOVE(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000008c0)={0x4bc, 0x1, 0x5, 0x301, 0x0, 0x0, {0xa, 0x0, 0xa}, [{{0x254, 0x1, {{0x1, 0x1}, 0x4, 0x8, 0x9, 0x7965, 0xf, 'syz0\x00', "dc9446f9640955fe7b2d1ed5c5f34fa6e42e3293dd4c81786ab6e7b9456411f4", "ed550ac5197ae294deef00eaa36b7c7c7407c790b925d65140bff1dfe7c7e408", [{0x8, 0x3, {0x0, 0x2}}, {0x3, 0x2, {0x3, 0x887}}, {0x215e, 0xa, {0x1, 0x2}}, {0x7f, 0x164, {0x1, 0x6}}, {0x0, 0x1000, {0x1, 0x4}}, {0x9, 0x1ff, {0x0, 0x3}}, {0xf, 0x9, {0x2, 0x3540000}}, {0x6, 0x7, {0x2, 0x9}}, {0x4eb, 0x8, {0x0, 0xfffffff7}}, {0x3, 0x2, {0x3, 0x6}}, {0x81, 0x6, {0x0, 0x3}}, {0x3, 0xe98d, {0x0, 0x5}}, {0x9, 0x6, {0x3, 0x2}}, {0xffff, 0x4, {0x1, 0xda5}}, {0x9, 0x6, {0x3, 0x4281}}, {0x6, 0x163, {0x1, 0x6}}, {0xb0c, 0x7fff, {0x0, 0xe}}, {0x0, 0x1e, {0x0, 0xfff}}, {0x3, 0xf395, {0x3, 0x400}}, {0x1ff, 0xa625, {0x1, 0x7}}, {0x1000, 0x9, {0x0, 0x848}}, {0x10, 0x4, {0x0, 0x4}}, {0x3, 0x6, {0x3, 0x7}}, {0xe7dc, 0x9, {0x2, 0xb}}, {0x1, 0x6, {0x0, 0x5}}, {0x1d12, 0x10, {0x1, 0x81}}, {0x3, 0x0, {0x3, 0x6}}, {0x8, 0x961, {0x2, 0x6e90}}, {0x0, 0x95c0, {0x2, 0x10000000}}, {0x1, 0xca25, {0x0, 0x6}}, {0x10, 0x1000, {0x2, 0x80000000}}, {0x7, 0x3, {0x0, 0x101}}, {0xa9, 0x9, {0x3, 0x5}}, {0x4, 0x0, {0x0, 0xfffffffb}}, {0x1, 0x0, {0x3, 0x3}}, {0x2, 0x1, {0x0, 0xf}}, {0x5, 0x1, {0x3, 0x10000}}, {0x8c95, 0x7, {0x0, 0x7}}, {0xafef, 0x6, {0x2, 0xd}}, {0x7, 0xd, {0x1, 0x4}}]}}}, {{0x254, 0x1, {{0x1, 0x10001}, 0xf7, 0xf, 0x8, 0x0, 0xf, 'syz0\x00', "5098a65a975fd4133a63c7f0e941b9c57603c3f2f20f810f532c3f9c500849f9", "b82fef45560ec21c3b48ecbd4728b1c143d9e3f1b4a42f268ae07c0848ec4ba1", [{0x5, 0x7fff, {0x3, 0x7}}, {0x8, 0x5, {0x2, 0x3e}}, {0xf, 0x81, {0x2, 0x1}}, {0xb, 0x80, {0x3, 0x2}}, {0x6d2, 0xb8, {0x3, 0x8}}, {0x2, 0xc12, {0x2, 0x4}}, {0xc, 0xffff, {0x2, 0x7}}, {0x7fff, 0x10, {0x0, 0xffff7fff}}, {0x0, 0x6, {0x1, 0x1}}, {0xfff8, 0x5, {0x2, 0x4}}, {0x8, 0xd1, {0x0, 0x6}}, {0x400, 0x4, {0x1, 0xfffffffb}}, {0xb33, 0x2, {0x1, 0x7fffffff}}, {0x40, 0x349a, {0x2, 0x9}}, {0xac01, 0x5, {0x3, 0xc6e}}, {0x1, 0x3, {0x3, 0x80000001}}, {0x39, 0x5, {0x2, 0x63}}, {0x8, 0xfff7, {0x0, 0x9}}, {0x4, 0xd, {0x0, 0x73}}, {0x5, 0xe56, {0x3, 0x5}}, {0x4, 0x6, {0x0, 0x496c128d}}, {0x8b7, 0x1f7, {0x1, 0x1}}, {0x7, 0x6, {0xff9afaa6e292170e, 0x9}}, {0x8, 0x7, {0x0, 0x8}}, {0x4, 0x3, {0x1, 0x7f058e4b}}, {0x6, 0x8, {0x5, 0x8}}, {0x7, 0xfffd, {0x0, 0x3}}, {0x4, 0x5, {0x2, 0x1}}, {0xe3, 0x6, {0x0, 0x7f}}, {0xb65e, 0x0, {0x3, 0x8}}, {0x0, 0x4, {0x2, 0x5}}, {0x5, 0xf323, {0x2, 0xf}}, {0x9, 0x40, {0x1, 0x9}}, {0x1000, 0x3, {0x1, 0xd0}}, {0x7, 0xfffd, {0x2, 0x8}}, {0x5, 0x29, {0x2, 0x9}}, {0x401, 0x6, {0x3, 0x1}}, {0x3, 0x7ff, {0x1, 0x9}}, {0x8, 0x1, {0x2, 0x52}}, {0x2, 0x8, {0x1, 0xffff}}]}}}]}, 0x4bc}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x22, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1f0519, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, @perf_config_ext={0x9, 0x7}, 0xec25, 0x4085, 0xb, 0x4, 0x2, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffefffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bond0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x401, 0x20000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004885}, 0x4054)
r2 = socket$kcm(0x10, 0x3, 0x10)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x80000)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_START(r3, 0x54a0)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r3, 0x54a2)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803002f000b12d25a80648c2594f90124fc60100c034002000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
ioctl$sock_SIOCBRDELBR(r2, 0x89a1, &(0x7f00000000c0)='caif0\x00')

250.323186ms ago: executing program 3 (id=1396):
socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'lo\x00', <r0=>0x0})
r1 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=@gettclass={0x24, 0x2a, 0x20, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r0, {0x7ff8, 0xe}, {0xd, 0xb}, {0xb, 0x10}}}, 0x24}, 0x1, 0x0, 0x0, 0x810}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r2, {0xf, 0xfff2}, {}, {0x8, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x4000)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

233.974267ms ago: executing program 1 (id=1397):
ioctl$SNDRV_TIMER_IOCTL_TREAD64(0xffffffffffffffff, 0x400454a4, &(0x7f0000000000)) (async)
socket(0x2b, 0x5, 0x4000004)

233.097117ms ago: executing program 0 (id=1398):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, 0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32], 0x1c}}, 0x0)
write$nci(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="710308"], 0x61)

203.751009ms ago: executing program 3 (id=1399):
r0 = socket$netlink(0x10, 0x3, 0x0)
io_setup(0x4082, &(0x7f0000000380)=<r1=>0x0) (async)
r2 = syz_io_uring_setup(0x100293f, &(0x7f0000001400)={0x0, 0x2000004, 0x10, 0xfffffffc, 0x13b}, &(0x7f0000000080), &(0x7f00000014c0))
io_cancel(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x6, 0x2, r2, 0x0, 0x0, 0x8, 0x0, 0x3}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0) (async)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) (async)
readv(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000180)=""/128, 0x80}, {&(0x7f0000000400)=""/187, 0xbb}], 0x2)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="40000000030101040000000000000000020000002c00018014000180080001"], 0x40}}, 0x0)
r5 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x8)
fchdir(r6) (async, rerun: 64)
setsockopt$packet_drop_memb(r6, 0x107, 0x2, &(0x7f0000000280)={r3, 0x1, 0x6, @remote}, 0x10) (rerun: 64)
r7 = socket$netlink(0x10, 0x3, 0x4) (async)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000780), r0)
getsockopt$PNPIPE_IFINDEX(r6, 0x113, 0x2, &(0x7f0000000980), &(0x7f00000009c0)=0x4) (async, rerun: 32)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r7, &(0x7f00000008c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1ed954617519afd8}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)=ANY=[@ANYBLOB="23eb0a00", @ANYRES16=r8, @ANYBLOB="10002abd7000fbdbdf2516000000050004000000000005000400010000000500040001000000"], 0x2c}}, 0x40) (async, rerun: 32)
ioctl$sock_inet6_SIOCSIFADDR(r6, 0x8916, &(0x7f0000000240)={@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x63, r3}) (async, rerun: 32)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r3, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0) (rerun: 32)
r9 = socket(0x10, 0x3, 0x0)
r10 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r10, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c) (async)
shutdown(r10, 0x1) (async)
getsockopt$inet_sctp6_SCTP_MAXSEG(r10, 0x84, 0xd, &(0x7f0000000440), &(0x7f0000000480)=0x4) (async)
sendto$inet6(r10, &(0x7f0000000900)="0f1503d55986382a", 0x8, 0x810, &(0x7f0000000940)={0xa, 0x6, 0x400, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c) (async)
sendmsg$nl_route(r9, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newlink={0x20, 0x10, 0x403, 0x0, 0xfffffffc, {0x0, 0x0, 0x0, r3, 0xff7f}}, 0x20}}, 0x0) (async)
r11 = socket(0x1, 0x803, 0x0)
getsockname$packet(r11, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newlink={0x2ac, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x12}, [@IFLA_VFINFO_LIST={0x278, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_SPOOFCHK={0xc, 0x4, {0x9, 0x1}}]}, {0x1c, 0x1, 0x0, 0x1, [@IFLA_VF_RSS_QUERY_EN={0xc, 0x7, {0x5, 0x5}}, @IFLA_VF_SPOOFCHK={0xc, 0x4, {0x5, 0x9}}]}, {0x28, 0x1, 0x0, 0x1, [@IFLA_VF_TRUST={0xc, 0x9, {0x4, 0x4b}}, @IFLA_VF_LINK_STATE={0xc, 0x5, {0xb63, 0x2}}, @IFLA_VF_TRUST={0xc, 0x9, {0x7, 0x9}}]}, {0x78, 0x1, 0x0, 0x1, [@IFLA_VF_RATE={0x10, 0x6, {0x41, 0x0, 0x8000}}, @IFLA_VF_MAC={0x28, 0x1, {0x7, @broadcast}}, @IFLA_VF_IB_PORT_GUID={0x14, 0xb, {0xfff, 0x52d44e6d}}, @IFLA_VF_TRUST={0xc, 0x9, {0x7, 0x5}}, @IFLA_VF_SPOOFCHK={0xc, 0x4, {0x3, 0xf}}, @IFLA_VF_RATE={0x10, 0x6, {0x7fffffff, 0x3, 0x4}}]}, {0x54, 0x1, 0x0, 0x1, [@IFLA_VF_IB_NODE_GUID={0x14, 0xa, {0x1, 0xfffffffffffffffc}}, @IFLA_VF_TX_RATE={0xc, 0x3, {0x5, 0xe9d}}, @IFLA_VF_IB_NODE_GUID={0x14, 0xa, {0xd7cf}}, @IFLA_VF_RSS_QUERY_EN={0xc, 0x7, {0xf48}}, @IFLA_VF_VLAN={0x10, 0x2, {0x2, 0x2ab, 0x5b5}}]}, {0x10, 0x1, 0x0, 0x1, [@IFLA_VF_TX_RATE={0xc, 0x3, {0x1, 0x1}}]}, {0x5c, 0x1, 0x0, 0x1, [@IFLA_VF_TRUST={0xc, 0x9, {0xb, 0x1}}, @IFLA_VF_VLAN_LIST={0x2c, 0xc, 0x0, 0x1, [{0x14, 0x1, {0x9, 0x501, 0x400, 0x88a8}}, {0x14, 0x1, {0x7fffffff, 0xb00, 0x7, 0x8100}}]}, @IFLA_VF_IB_NODE_GUID={0x14, 0xa, {0xde, 0x8}}, @IFLA_VF_TX_RATE={0xc, 0x3, {0xc723, 0xfffffff7}}]}, {0xe8, 0x1, 0x0, 0x1, [@IFLA_VF_TX_RATE={0xc, 0x3, {0x5, 0x200}}, @IFLA_VF_VLAN_LIST={0x90, 0xc, 0x0, 0x1, [{0x14, 0x1, {0x6, 0x194, 0x3866, 0x8100}}, {0x14, 0x1, {0x27e, 0x836, 0x1, 0x88a8}}, {0x14, 0x1, {0x4815, 0x93f, 0x6, 0x88a8}}, {0x14, 0x1, {0x8f, 0xdb3, 0x3ff, 0x88a8}}, {0x14, 0x1, {0x82, 0x3ca, 0x7, 0x88a8}}, {0x14, 0x1, {0x9, 0x30f, 0xfffff952, 0x88a8}}, {0x14, 0x1, {0xfffffbff, 0xe94, 0x81, 0x88a8}}]}, @IFLA_VF_VLAN={0x10, 0x2, {0x4c9, 0xf8e, 0xfffffffb}}, @IFLA_VF_IB_NODE_GUID={0x14, 0xa, {0x2, 0x10001}}, @IFLA_VF_TX_RATE={0xc, 0x3, {0x9, 0x8907}}, @IFLA_VF_SPOOFCHK={0xc, 0x4, {0x0, 0x6}}, @IFLA_VF_TX_RATE={0xc, 0x3, {0xb, 0x7}}]}]}, @IFLA_IFNAME={0x14, 0x3, 'bridge_slave_1\x00'}]}, 0x2ac}}, 0x0)

153.479452ms ago: executing program 1 (id=1400):
socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=@newlink={0x48, 0x10, 0x1, 0x70bda9, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2180, 0x10000}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FLAGS={0x8, 0x3, 0x6}]}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x1c740}, @IFLA_IFNAME={0x14, 0x3, 'veth0\x00'}]}, 0x48}}, 0x0)
eventfd2(0x3, 0x80000)
r0 = syz_io_uring_setup(0x5281, 0x0, &(0x7f0000000dc0)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x3000000, 0x13, r3, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0xa0001)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r4, 0xc0a85322, &(0x7f0000000040))
io_uring_enter(r0, 0x847ba, 0x0, 0xe, 0x0, 0x0)

153.017422ms ago: executing program 2 (id=1401):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x759, &(0x7f00000006c0)={[{@nogrpid}, {@bh}, {@discard}, {@errors_remount}, {@nolazytime, 0x0}, {@noauto_da_alloc}, {@noload}, {@journal_checksum}, {@mblk_io_submit}, {@i_version}, {@usrjquota}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@norecovery}, {@nobarrier}, {@data_writeback}, {@resgid}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'noblock\xa7\x0f\x9e\x03\xfe\x10\xa4\xe7y'}}, {@context={'context', 0x3d, 'user_u'}}], 0x2c}, 0x2, 0x505, &(0x7f0000001c80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1a1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, 0x0)

152.444072ms ago: executing program 0 (id=1402):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0xfffffffffffffd58, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, &(0x7f00000000c0)='\x00', 0x0, 0x2}, 0x48)

94.492815ms ago: executing program 0 (id=1403):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r1 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\x00'/557, 0x1)
pwritev(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80000)
write$binfmt_aout(r2, &(0x7f0000000ac0)={{0x0, 0x6, 0x30, 0xac, 0x4b, 0x9, 0x26c, 0x2}, "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", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x1920)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
sendfile(r0, r0, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000280)={0x0, {}, 0x0, {}, 0x4000005, 0x0, 0xffffffff, 0x18, "28f5c9ea1f0197000011ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba76634793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d54100", "07a9400978042a8bfe1406584ae7df4af14e1df82d00", [0x7d, 0xd]})
syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382) (async)
memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\x00'/557, 0x1) (async)
pwritev(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0) (async)
pipe2(&(0x7f0000000000), 0x80000) (async)
write$binfmt_aout(r2, &(0x7f0000000ac0)={{0x0, 0x6, 0x30, 0xac, 0x4b, 0x9, 0x26c, 0x2}, "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", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x1920) (async)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) (async)
sendfile(r0, r0, 0x0, 0x24002de8) (async)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000280)={0x0, {}, 0x0, {}, 0x4000005, 0x0, 0xffffffff, 0x18, "28f5c9ea1f0197000011ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba76634793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d54100", "07a9400978042a8bfe1406584ae7df4af14e1df82d00", [0x7d, 0xd]}) (async)

94.055025ms ago: executing program 1 (id=1404):
socket$packet(0x11, 0x2, 0x300)
syz_emit_ethernet(0x42, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="6800000010000100"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000480012800e000100697036677265746170000000340002800800", @ANYRES32, @ANYBLOB="14000600fe800000000000000000000000000015140007"], 0x68}, 0x1, 0x0, 0x0, 0x810}, 0x140)
sendto$packet(r0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @random="ad446050e878"}, 0x14)

0s ago: executing program 1 (id=1405):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x14, 0x0, 0x800, 0x70bd28, 0x25dfdbfe, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x840}, 0x40040)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(0x3)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000040c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x2004c015}, 0x40)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000008}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = inotify_init1(0x0)
inotify_rm_watch(r2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r3, 0x6, 0x21, &(0x7f0000000280)="dc8daf8d760c0b8caa98fa19c6a35a18883775d272c579ff33a6effc0c49320f", 0x20)
r4 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x802)
writev(r4, &(0x7f0000000300)=[{&(0x7f0000000080)="aefdda9d240103005a90f57f02703aeff0f64eb9ee07962c220852f426072a00"/42, 0x2a}], 0x1)

kernel console output (not intermixed with test programs):

181][ T5333] RIP: 0033:0x7f1b97d8acb9
[   61.190197][ T5333] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   61.190215][ T5333] RSP: 002b:00007f1b967e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   61.190237][ T5333] RAX: ffffffffffffffda RBX: 00007f1b98005fa0 RCX: 00007f1b97d8acb9
[   61.190260][ T5333] RDX: 0000200000000200 RSI: 000000000000890b RDI: 0000000000000003
[   61.190275][ T5333] RBP: 00007f1b967e7090 R08: 0000000000000000 R09: 0000000000000000
[   61.190290][ T5333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.190305][ T5333] R13: 00007f1b98006038 R14: 00007f1b98005fa0 R15: 00007ffe7b3adad8
[   61.190325][ T5333]  </TASK>
[   61.614541][ T5351] loop0: detected capacity change from 0 to 1024
[   61.632625][ T5351] EXT4-fs: Ignoring removed nobh option
[   61.652146][ T5351] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   61.660995][ T5351] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   61.670862][ T5351] EXT4-fs (loop0): filesystem has both journal inode and journal device!
[   61.714464][ T5357] loop1: detected capacity change from 0 to 1024
[   61.867241][   T29] kauditd_printk_skb: 321 callbacks suppressed
[   61.867257][   T29] audit: type=1400 audit(1769352294.904:3786): avc:  denied  { block_suspend } for  pid=5365 comm="syz.0.637" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   61.900995][ T5366] __nla_validate_parse: 11 callbacks suppressed
[   61.901014][ T5366] netlink: 76 bytes leftover after parsing attributes in process `syz.0.637'.
[   61.924704][ T5382] FAULT_INJECTION: forcing a failure.
[   61.924704][ T5382] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.938004][ T5382] CPU: 0 UID: 0 PID: 5382 Comm: syz.3.643 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   61.938034][ T5382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   61.938047][ T5382] Call Trace:
[   61.938054][ T5382]  <TASK>
[   61.938061][ T5382]  __dump_stack+0x1d/0x30
[   61.938084][ T5382]  dump_stack_lvl+0x95/0xd0
[   61.938106][ T5382]  dump_stack+0x15/0x1b
[   61.938179][ T5382]  should_fail_ex+0x263/0x280
[   61.938199][ T5382]  should_fail+0xb/0x20
[   61.938216][ T5382]  should_fail_usercopy+0x1a/0x20
[   61.938290][ T5382]  _copy_from_user+0x1c/0xb0
[   61.938324][ T5382]  __x64_sys_timer_create+0x7c/0xe0
[   61.938375][ T5382]  x64_sys_call+0x29c8/0x3000
[   61.938461][ T5382]  do_syscall_64+0xc0/0x2a0
[   61.938486][ T5382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.938509][ T5382] RIP: 0033:0x7f17d944acb9
[   61.938527][ T5382] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   61.938606][ T5382] RSP: 002b:00007f17d7ea7028 EFLAGS: 00000246 ORIG_RAX: 00000000000000de
[   61.938625][ T5382] RAX: ffffffffffffffda RBX: 00007f17d96c5fa0 RCX: 00007f17d944acb9
[   61.938640][ T5382] RDX: 0000000000000000 RSI: 0000200000533fa0 RDI: 0000000000000000
[   61.938680][ T5382] RBP: 00007f17d7ea7090 R08: 0000000000000000 R09: 0000000000000000
[   61.938692][ T5382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.938731][ T5382] R13: 00007f17d96c6038 R14: 00007f17d96c5fa0 R15: 00007ffc5898cfa8
[   61.938750][ T5382]  </TASK>
[   62.118599][ T5385] loop3: detected capacity change from 0 to 512
[   62.125223][ T5385] EXT4-fs: Ignoring removed nobh option
[   62.165822][ T5385] ext4 filesystem being mounted at /125/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.179633][ T5391] loop1: detected capacity change from 0 to 1024
[   62.318183][ T5401] loop0: detected capacity change from 0 to 1024
[   62.479029][   T29] audit: type=1326 audit(1769352295.418:3787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5403 comm="syz.1.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   62.502383][   T29] audit: type=1326 audit(1769352295.418:3788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5403 comm="syz.1.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   62.525696][   T29] audit: type=1326 audit(1769352295.418:3789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5403 comm="syz.1.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   62.549037][   T29] audit: type=1326 audit(1769352295.418:3790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5403 comm="syz.1.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   62.572226][   T29] audit: type=1326 audit(1769352295.418:3791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5403 comm="syz.1.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   62.586833][ T5406] netlink: 48 bytes leftover after parsing attributes in process `syz.4.647'.
[   62.595628][   T29] audit: type=1326 audit(1769352295.418:3792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5403 comm="syz.1.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   62.627704][   T29] audit: type=1326 audit(1769352295.418:3793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5403 comm="syz.1.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   62.651017][   T29] audit: type=1326 audit(1769352295.418:3794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5403 comm="syz.1.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   62.669968][ T5402] netlink: 29 bytes leftover after parsing attributes in process `syz.4.647'.
[   62.674445][   T29] audit: type=1326 audit(1769352295.418:3795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5403 comm="syz.1.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   62.882097][ T5409] team0 (unregistering): Port device team_slave_0 removed
[   63.020444][ T5405] loop4: detected capacity change from 0 to 4096
[   63.025999][ T5409] team0 (unregistering): Port device team_slave_1 removed
[   63.044457][ T5405] EXT4-fs: Ignoring removed bh option
[   63.049886][ T5405] EXT4-fs: Ignoring removed mblk_io_submit option
[   63.103769][ T5423] loop3: detected capacity change from 0 to 512
[   63.113584][ T5423] EXT4-fs: Ignoring removed nobh option
[   63.241379][ T5423] ext4 filesystem being mounted at /126/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.260404][ T5429] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   63.343058][ T5429] EXT4-fs (loop4): orphan cleanup on readonly fs
[   63.350244][ T5429] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   63.364844][ T5429] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   63.371434][ T5429] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.657: bad orphan inode 768
[   63.383532][ T5423] veth0: entered promiscuous mode
[   63.423429][ T5422] veth0: left promiscuous mode
[   63.490340][ T5445] EXT4-fs error (device loop2): ext4_iget_extra_inode:5073: inode #15: comm syz.2.660: corrupted in-inode xattr: e_value size too large
[   63.516975][ T5445] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.660: couldn't read orphan inode 15 (err -117)
[   63.535790][ T5445] 9p: Bad value for 'rfdno'
[   63.629480][ T5455] EXT4-fs: Ignoring removed i_version option
[   63.667895][ T5462] EXT4-fs: Ignoring removed nobh option
[   63.670915][ T5455] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[   63.777349][ T5462] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   63.800405][ T5462] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   63.831806][ T5462] EXT4-fs (loop2): filesystem has both journal inode and journal device!
[   63.898698][ T5455] xt_hashlimit: size too large, truncated to 1048576
[   63.942031][ T5465] EXT4-fs: Ignoring removed nobh option
[   64.042904][ T5463] netlink: 48 bytes leftover after parsing attributes in process `syz.4.668'.
[   64.055755][ T5471] netlink: 12 bytes leftover after parsing attributes in process `syz.0.669'.
[   64.080414][ T5463] netlink: 29 bytes leftover after parsing attributes in process `syz.4.668'.
[   64.105291][ T5463] EXT4-fs: Ignoring removed bh option
[   64.110762][ T5463] EXT4-fs: Ignoring removed mblk_io_submit option
[   64.186011][ T5465] EXT4-fs (loop1): orphan cleanup on readonly fs
[   64.197195][ T5468] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.219359][ T5465] EXT4-fs warning (device loop1): ext4_xattr_inode_get:546: inode #11: comm syz.1.666: ea_inode file size=4 entry size=6
[   64.253779][ T5476] EXT4-fs: Ignoring removed nobh option
[   64.291207][ T5478] tipc: Started in network mode
[   64.291174][ T5465] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2858: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   64.296198][ T5478] tipc: Node identity 821303e54166, cluster identity 4711
[   64.316511][ T5478] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   64.323500][ T5476] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   64.333405][ T5476] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   64.358136][ T5465] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #15: comm syz.1.666: corrupted inode contents
[   64.377618][ T5476] EXT4-fs (loop3): filesystem has both journal inode and journal device!
[   64.386167][ T5465] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #15: comm syz.1.666: mark_inode_dirty error
[   64.439432][ T5465] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #15: comm syz.1.666: corrupted inode contents
[   64.455449][ T5477] tipc: Disabling bearer <eth:syzkaller0>
[   64.503149][ T5465] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3001: inode #15: comm syz.1.666: mark_inode_dirty error
[   64.515992][ T5465] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3004: inode #15: comm syz.1.666: mark inode dirty (error -117)
[   64.529166][ T5465] EXT4-fs warning (device loop1): ext4_evict_inode:273: xattr delete (err -117)
[   64.538599][ T5465] EXT4-fs (loop1): 1 orphan inode deleted
[   64.620840][ T5490] netlink: 8 bytes leftover after parsing attributes in process `syz.3.677'.
[   64.771902][ T5490] netlink: 284 bytes leftover after parsing attributes in process `syz.3.677'.
[   64.808329][ T5506] EXT4-fs: Ignoring removed nobh option
[   64.841392][ T5506] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   64.860920][ T5512] netlink: 'syz.3.683': attribute type 1 has an invalid length.
[   64.908200][ T5506] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   64.933589][ T5506] EXT4-fs (loop0): filesystem has both journal inode and journal device!
[   65.000537][ T5517] EXT4-fs error (device loop3): ext4_iget_extra_inode:5073: inode #15: comm syz.3.685: corrupted in-inode xattr: e_value size too large
[   65.071180][ T5517] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.685: couldn't read orphan inode 15 (err -117)
[   65.157084][ T5517] 9p: Bad value for 'rfdno'
[   65.166516][ T5526] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   65.171481][ T5527] netlink: 20 bytes leftover after parsing attributes in process `syz.0.689'.
[   65.184650][ T5526] EXT4-fs (loop4): orphan cleanup on readonly fs
[   65.224849][ T5526] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   65.239519][ T5526] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   65.246157][ T5526] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.688: bad orphan inode 768
[   66.647579][ T5580] netlink: 48 bytes leftover after parsing attributes in process `syz.0.701'.
[   66.665572][ T5582] set_capacity_and_notify: 18 callbacks suppressed
[   66.665589][ T5582] loop2: detected capacity change from 0 to 512
[   66.716209][ T5580] loop0: detected capacity change from 0 to 4096
[   66.730536][ T5582] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   66.743711][ T5582] EXT4-fs (loop2): orphan cleanup on readonly fs
[   66.754463][ T5582] EXT4-fs warning (device loop2): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   66.769081][ T5582] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   66.769101][ T5582] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.706: bad orphan inode 768
[   66.771593][ T5580] EXT4-fs: Ignoring removed bh option
[   66.771636][ T5580] EXT4-fs: Ignoring removed mblk_io_submit option
[   66.782579][ T5582] EXT4-fs mount: 169 callbacks suppressed
[   66.782597][ T5582] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   66.913131][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.942746][ T5580] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.978387][ T5590] netlink: 'syz.4.709': attribute type 1 has an invalid length.
[   67.231033][   T29] kauditd_printk_skb: 310 callbacks suppressed
[   67.231050][   T29] audit: type=1326 audit(1769352299.890:4106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5608 comm="syz.4.714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   67.260697][   T29] audit: type=1326 audit(1769352299.890:4107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5608 comm="syz.4.714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   67.284126][   T29] audit: type=1326 audit(1769352299.890:4108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5608 comm="syz.4.714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   67.307468][   T29] audit: type=1326 audit(1769352299.890:4109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5608 comm="syz.4.714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   67.330622][   T29] audit: type=1326 audit(1769352299.890:4110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5608 comm="syz.4.714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   67.354020][   T29] audit: type=1326 audit(1769352299.890:4111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5608 comm="syz.4.714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   67.377248][   T29] audit: type=1326 audit(1769352299.890:4112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5608 comm="syz.4.714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   67.400822][   T29] audit: type=1326 audit(1769352299.890:4113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5608 comm="syz.4.714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   67.424360][   T29] audit: type=1326 audit(1769352299.890:4114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5608 comm="syz.4.714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   67.447815][   T29] audit: type=1326 audit(1769352299.890:4115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5608 comm="syz.4.714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   67.503335][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.570117][ T5613] loop0: detected capacity change from 0 to 512
[   68.044848][ T5630] loop2: detected capacity change from 0 to 164
[   68.248306][ T5644] __nla_validate_parse: 2 callbacks suppressed
[   68.248332][ T5644] netlink: 44 bytes leftover after parsing attributes in process `syz.2.725'.
[   68.277432][ T5646] loop3: detected capacity change from 0 to 512
[   68.313209][ T5646] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   68.323653][ T5646] EXT4-fs (loop3): orphan cleanup on readonly fs
[   68.330392][ T5646] EXT4-fs warning (device loop3): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   68.345256][ T5646] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   68.351873][ T5646] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.726: bad orphan inode 768
[   68.363462][ T5646] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   68.542421][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.558892][ T5671] loop4: detected capacity change from 0 to 1024
[   68.572906][ T5671] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.608993][ T3331] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.719269][ T5691] loop1: detected capacity change from 0 to 512
[   68.738645][ T5691] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   68.785509][ T5691] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #3: comm syz.1.738: corrupted inode contents
[   68.812729][ T5705] loop4: detected capacity change from 0 to 1024
[   68.836356][ T5691] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #3: comm syz.1.738: mark_inode_dirty error
[   68.849467][ T5705] EXT4-fs: Ignoring removed nobh option
[   68.877408][ T5705] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   68.886233][ T5705] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   68.910808][ T5691] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #3: comm syz.1.738: corrupted inode contents
[   68.913989][ T5705] EXT4-fs (loop4): filesystem has both journal inode and journal device!
[   68.931364][ T5691] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #3: comm syz.1.738: mark_inode_dirty error
[   68.944778][ T5710] loop3: detected capacity change from 0 to 512
[   68.952514][ T5691] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.738: Failed to acquire dquot type 0
[   68.964846][ T5710] EXT4-fs error (device loop3): ext4_iget_extra_inode:5073: inode #15: comm syz.3.743: corrupted in-inode xattr: e_value size too large
[   68.979812][ T5691] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.738: corrupted inode contents
[   68.992394][ T5691] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #16: comm syz.1.738: mark_inode_dirty error
[   69.004454][ T5710] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.743: couldn't read orphan inode 15 (err -117)
[   69.004941][ T5691] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.738: corrupted inode contents
[   69.028850][ T5691] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm syz.1.738: mark_inode_dirty error
[   69.040466][ T5691] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.738: corrupted inode contents
[   69.041468][ T5710] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.053816][ T5691] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem
[   69.076840][ T5691] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.738: corrupted inode contents
[   69.089317][ T5691] EXT4-fs error (device loop1): ext4_truncate:4635: inode #16: comm syz.1.738: mark_inode_dirty error
[   69.090250][ T5710] 9p: Bad value for 'wfdno'
[   69.100667][ T5691] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem
[   69.114356][ T5691] EXT4-fs (loop1): 1 truncate cleaned up
[   69.120560][ T5691] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.134202][ T5691] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.149590][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.190322][ T5724] netlink: 16 bytes leftover after parsing attributes in process `syz.4.747'.
[   69.201826][ T5691] syz.1.738 (5691) used greatest stack depth: 9680 bytes left
[   69.224167][ T3322] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.368666][ T5746] loop4: detected capacity change from 0 to 1024
[   69.375829][ T5746] EXT4-fs: Ignoring removed nobh option
[   69.382775][ T5746] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   69.391842][ T5746] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   69.401780][ T5746] EXT4-fs (loop4): filesystem has both journal inode and journal device!
[   69.442751][ T5749] EXT4-fs error (device loop0): ext4_iget_extra_inode:5073: inode #15: comm syz.0.755: corrupted in-inode xattr: e_value size too large
[   69.457167][ T5749] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.755: couldn't read orphan inode 15 (err -117)
[   69.469673][ T5749] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.472012][ T5749] 9p: Bad value for 'wfdno'
[   69.485292][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.521179][ T5754] netlink: 16 bytes leftover after parsing attributes in process `syz.3.758'.
[   69.530804][ T5752] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.585528][ T3331] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.800644][ T5780] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e018, mo2=0002]
[   69.821581][ T5780] System zones: 1-12
[   69.846490][ T5780] EXT4-fs warning (device loop3): ext4_xattr_inode_get:546: inode #11: comm syz.3.765: ea_inode file size=0 entry size=6
[   69.877761][ T5785] EXT4-fs: Ignoring removed orlov option
[   69.883558][ T5785] EXT4-fs: Ignoring removed i_version option
[   69.889548][ T5785] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.911462][ T5780] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2858: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   69.924997][ T5780] ------------[ cut here ]------------
[   69.930458][ T5780] EA inode 11 i_nlink=2
[   69.930473][ T5780] WARNING: fs/ext4/xattr.c:1059 at ext4_xattr_inode_update_ref+0x313/0x350, CPU#1: syz.3.765/5780
[   69.945353][ T5780] Modules linked in:
[   69.949327][ T5780] CPU: 1 UID: 0 PID: 5780 Comm: syz.3.765 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   69.959030][ T5780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   69.969187][ T5780] RIP: 0010:ext4_xattr_inode_update_ref+0x332/0x350
[   69.975953][ T5780] Code: f4 cd 9b ff 4c 8d 2d 1d 9a 3f 05 49 8d 7e 40 e8 c4 7f b7 ff 49 8b 6e 40 4c 89 e7 e8 f8 7a b7 ff 41 8b 56 48 4c 89 ef 48 89 ee <67> 48 0f b9 3a e9 02 ff ff ff e8 2f 4c c5 03 66 66 66 66 66 66 2e
[   69.987028][ T5785] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   69.995772][ T5780] RSP: 0018:ffffc900115df778 EFLAGS: 00010246
[   70.003705][ T5785] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e118, mo2=0002]
[   70.009863][ T5780] RAX: ffff88811bbe6d90 RBX: ffff88811b427688 RCX: ffffffff81bc76d8
[   70.018778][ T5785] EXT4-fs (loop2): orphan cleanup on readonly fs
[   70.025865][ T5780] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff86fc10e0
[   70.032472][ T5785] EXT4-fs warning (device loop2): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   70.040181][ T5780] RBP: 000000000000000b R08: 000188811b42763b R09: 0000000000000000
[   70.054860][ T5785] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   70.062829][ T5780] R10: ffffc900115df6a8 R11: 0001c900115df6a8 R12: ffff88811b427638
[   70.077471][ T5780] R13: ffffffff86fc10e0 R14: ffff88811b4275f0 R15: 0000000000000001
[   70.085620][ T5780] FS:  00007f17d7e866c0(0000) GS:ffff8882aec7c000(0000) knlGS:0000000000000000
[   70.094859][ T5780] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   70.094883][ T5780] CR2: 0000001b34898000 CR3: 0000000136706000 CR4: 00000000003506f0
[   70.103865][ T5785] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.767: bg 0: block 40: padding at end of block bitmap is not set
[   70.109501][ T5780] DR0: fffffffffffffffe DR1: 0000000000000000 DR2: 0000000000000000
[   70.109519][ T5780] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[   70.109533][ T5780] Call Trace:
[   70.124013][ T5785] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6689: Corrupt filesystem
[   70.131572][ T5780]  <TASK>
[   70.131589][ T5780]  ext4_xattr_inode_dec_ref_all+0x57c/0x880
[   70.154647][ T5785] EXT4-fs (loop2): 1 truncate cleaned up
[   70.160431][ T5780]  ? errseq_check+0x2c/0x50
[   70.166516][ T5785] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.170495][ T5780]  ext4_xattr_delete_inode+0x6c1/0x7a0
[   70.188341][ T5780]  ? ext4_truncate+0x92b/0xad0
[   70.193176][ T5780]  ext4_evict_inode+0xa1f/0xd40
[   70.198053][ T5780]  ? __pfx_ext4_evict_inode+0x10/0x10
[   70.198482][ T5785] EXT4-fs (loop2): shut down requested (1)
[   70.203552][ T5780]  evict+0x2af/0x510
[   70.203587][ T5780]  ? __ext4_msg+0x1aa/0x1c0
[   70.203612][ T5780]  iput+0x4b9/0x650
[   70.211883][ T5785] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   70.213458][ T5780]  ext4_process_orphan+0x1a9/0x1c0
[   70.217946][ T5785] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   70.221730][ T5780]  ext4_orphan_cleanup+0x6a8/0xa00
[   70.221823][ T5780]  ext4_fill_super+0x3476/0x3800
[   70.237290][ T5785] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   70.244421][ T5780]  ? set_blocksize+0x1a3/0x310
[   70.268137][ T5780]  ? setup_bdev_super+0x30e/0x370
[   70.273271][ T5780]  ? __pfx_ext4_fill_super+0x10/0x10
[   70.278729][ T5780]  get_tree_bdev_flags+0x291/0x300
[   70.283877][ T5780]  ? __pfx_ext4_fill_super+0x10/0x10
[   70.289235][ T5780]  get_tree_bdev+0x1f/0x30
[   70.293754][ T5780]  ext4_get_tree+0x1c/0x30
[   70.298171][ T5780]  vfs_get_tree+0x57/0x1d0
[   70.302866][ T5780]  do_new_mount+0x288/0x700
[   70.307411][ T5780]  path_mount+0x4c0/0xb90
[   70.311914][ T5780]  ? user_path_at+0xbf/0x130
[   70.316759][ T5780]  __se_sys_mount+0x28c/0x2e0
[   70.321662][ T5780]  __x64_sys_mount+0x67/0x80
[   70.326401][ T5780]  x64_sys_call+0x2cca/0x3000
[   70.331170][ T5780]  do_syscall_64+0xc0/0x2a0
[   70.335785][ T5780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.341841][ T5780] RIP: 0033:0x7f17d944bf4a
[   70.346860][ T5780] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   70.366717][ T5780] RSP: 002b:00007f17d7e85e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   70.375342][ T5780] RAX: ffffffffffffffda RBX: 00007f17d7e85ee0 RCX: 00007f17d944bf4a
[   70.383488][ T5780] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f17d7e85ea0
[   70.391506][ T5780] RBP: 0000200000000180 R08: 00007f17d7e85ee0 R09: 0000000000800700
[   70.399513][ T5780] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[   70.407897][ T5780] R13: 00007f17d7e85ea0 R14: 000000000000046c R15: 0000200000000000
[   70.416191][ T5780]  </TASK>
[   70.419266][ T5780] ---[ end trace 0000000000000000 ]---
[   70.425183][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.434389][ T5780] EXT4-fs (loop3): 1 orphan inode deleted
[   70.440855][ T5780] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.465058][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.466722][ T5790] EXT4-fs: Ignoring removed nobh option
[   70.481660][ T5790] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   70.491500][ T5790] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   70.502079][ T5790] EXT4-fs (loop2): filesystem has both journal inode and journal device!
[   70.532325][ T5792] vhci_hcd vhci_hcd.0: default hub control req: 8010 vfffd i0007 l0
[   70.541685][ T5792] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   70.557517][ T5792] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   70.578576][ T5794] net_ratelimit: 11 callbacks suppressed
[   70.578594][ T5794] openvswitch: netlink: Missing key (keys=40, expected=200000)
[   70.656531][ T5797] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.751068][ T3322] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.762544][ T5817] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   70.772782][ T5817] EXT4-fs (loop2): orphan cleanup on readonly fs
[   70.782516][ T5817] EXT4-fs warning (device loop2): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   70.797193][ T5817] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   70.803874][ T5817] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.779: bad orphan inode 768
[   70.814836][ T5817] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.852427][ T5824] EXT4-fs: Ignoring removed nobh option
[   70.858506][ T5824] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   70.867351][ T5824] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   70.877124][ T5824] EXT4-fs (loop1): filesystem has both journal inode and journal device!
[   70.913871][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.107335][ T5848] EXT4-fs: Ignoring removed nobh option
[   71.113993][ T5848] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   71.123142][ T5848] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   71.133107][ T5848] EXT4-fs (loop1): filesystem has both journal inode and journal device!
[   71.196429][ T5852] EXT4-fs: Ignoring removed nobh option
[   71.222917][ T5852] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.235853][ T5852] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.435034][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.472298][ T5863] 9p: Could not find request transport: fd0x0000000000000005
[   71.493921][ T5869] netlink: 12 bytes leftover after parsing attributes in process `syz.1.799'.
[   71.515234][ T5865] lo speed is unknown, defaulting to 1000
[   71.533412][ T5813] FAULT_INJECTION: forcing a failure.
[   71.533412][ T5813] name fail_futex, interval 1, probability 0, space 0, times 1
[   71.546401][ T5813] CPU: 0 UID: 0 PID: 5813 Comm: syz.0.774 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   71.546449][ T5813] Tainted: [W]=WARN
[   71.546504][ T5813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   71.546538][ T5813] Call Trace:
[   71.546545][ T5813]  <TASK>
[   71.546553][ T5813]  __dump_stack+0x1d/0x30
[   71.546610][ T5813]  dump_stack_lvl+0x95/0xd0
[   71.546635][ T5813]  dump_stack+0x15/0x1b
[   71.546695][ T5813]  should_fail_ex+0x263/0x280
[   71.546719][ T5813]  should_fail+0xb/0x20
[   71.546817][ T5813]  get_futex_key+0x5b7/0xbe0
[   71.546849][ T5813]  futex_wake+0x84/0x380
[   71.546882][ T5813]  ? perf_lock_task_context+0x260/0x2d0
[   71.546913][ T5813]  do_futex+0x323/0x380
[   71.546944][ T5813]  mm_release+0xa1/0x190
[   71.546991][ T5813]  exit_mm_release+0x25/0x30
[   71.547026][ T5813]  exit_mm+0x37/0x180
[   71.547105][ T5813]  do_exit+0x3fa/0x1590
[   71.547130][ T5813]  ? tcp_recvmsg+0x19b/0x460
[   71.547157][ T5813]  do_group_exit+0xfe/0x140
[   71.547241][ T5813]  ? get_signal+0xe47/0xf60
[   71.547270][ T5813]  get_signal+0xe4f/0xf60
[   71.547302][ T5813]  ? __sys_recvfrom+0x1d4/0x200
[   71.547330][ T5813]  arch_do_signal_or_restart+0x96/0x450
[   71.547364][ T5813]  exit_to_user_mode_loop+0x6a/0x6f0
[   71.547394][ T5813]  ? __x64_sys_recvfrom+0x76/0x90
[   71.547419][ T5813]  do_syscall_64+0x1d3/0x2a0
[   71.547479][ T5813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.547502][ T5813] RIP: 0033:0x7f1b97d8acb9
[   71.547519][ T5813] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   71.547536][ T5813] RSP: 002b:00007f1b967c6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002d
[   71.547577][ T5813] RAX: fffffffffffffe00 RBX: 00007f1b98006090 RCX: 00007f1b97d8acb9
[   71.547593][ T5813] RDX: 00000000168f6f3d RSI: 0000200000000480 RDI: 0000000000000003
[   71.547608][ T5813] RBP: 00007f1b967c6090 R08: 0000000000000000 R09: fffffffffffffecb
[   71.547624][ T5813] R10: 0000000000000734 R11: 0000000000000246 R12: 0000000000000001
[   71.547638][ T5813] R13: 00007f1b98006128 R14: 00007f1b98006090 R15: 00007ffe7b3adad8
[   71.547659][ T5813]  </TASK>
[   71.590636][ T5872] netlink: 48 bytes leftover after parsing attributes in process `syz.1.800'.
[   71.682233][ T5876] netlink: 1 bytes leftover after parsing attributes in process `syz.1.800'.
[   71.852631][ T5893] EXT4-fs: Ignoring removed nobh option
[   71.859054][ T5893] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   71.883028][ T5893] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   71.892727][ T5893] EXT4-fs (loop4): filesystem has both journal inode and journal device!
[   71.923569][ T5897] EXT4-fs: Ignoring removed nobh option
[   71.931703][ T5897] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   71.960174][ T5897] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   71.978637][ T5897] EXT4-fs (loop2): filesystem has both journal inode and journal device!
[   72.031585][ T5906] set_capacity_and_notify: 15 callbacks suppressed
[   72.031602][ T5906] loop4: detected capacity change from 0 to 512
[   72.051384][ T5906] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.810: corrupted in-inode xattr: e_value size too large
[   72.097795][ T5906] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.810: couldn't read orphan inode 15 (err -117)
[   72.120497][ T5909] netlink: 36 bytes leftover after parsing attributes in process `syz.2.811'.
[   72.132591][ T5906] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.148099][ T5906] 9p: Bad value for 'wfdno'
[   72.163447][ T3331] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.202813][ T5913] loop2: detected capacity change from 0 to 1024
[   72.210047][ T5913] EXT4-fs: Ignoring removed orlov option
[   72.244745][ T5913] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.298233][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.311398][ T5921] netlink: 4 bytes leftover after parsing attributes in process `syz.4.815'.
[   72.331336][ T5923] vhci_hcd vhci_hcd.0: default hub control req: 8010 vfffd i0007 l0
[   72.347025][ T5923] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   72.437786][ T5935] netlink: 12 bytes leftover after parsing attributes in process `syz.4.820'.
[   72.481508][ T5937] loop4: detected capacity change from 0 to 256
[   72.504812][ T5937] FAT-fs (loop4): Directory bread(block 64) failed
[   72.511491][ T5937] FAT-fs (loop4): Directory bread(block 65) failed
[   72.518422][ T5937] FAT-fs (loop4): Directory bread(block 66) failed
[   72.525154][ T5937] FAT-fs (loop4): Directory bread(block 67) failed
[   72.532861][ T5937] FAT-fs (loop4): Directory bread(block 68) failed
[   72.543825][ T5937] FAT-fs (loop4): Directory bread(block 69) failed
[   72.543845][ T5934] netlink: 48 bytes leftover after parsing attributes in process `syz.2.818'.
[   72.553230][ T5937] FAT-fs (loop4): Directory bread(block 70) failed
[   72.570092][ T5937] FAT-fs (loop4): Directory bread(block 71) failed
[   72.579243][ T5934] loop2: detected capacity change from 0 to 4096
[   72.581779][ T5937] FAT-fs (loop4): Directory bread(block 72) failed
[   72.588310][ T5934] EXT4-fs: Ignoring removed bh option
[   72.596641][ T5937] FAT-fs (loop4): Directory bread(block 73) failed
[   72.598773][ T5934] EXT4-fs: Ignoring removed mblk_io_submit option
[   72.633752][ T5934] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.730110][   T29] kauditd_printk_skb: 831 callbacks suppressed
[   72.730127][   T29] audit: type=1326 audit(1769352305.063:4944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5943 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   72.799331][   T29] audit: type=1326 audit(1769352305.063:4945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5943 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   72.826824][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.839791][ T5957] loop3: detected capacity change from 0 to 512
[   72.845618][ T5959] loop4: detected capacity change from 0 to 512
[   72.850769][ T5957] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   72.866632][ T5957] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.830: inode has both inline data and extents flags
[   72.868693][ T5959] EXT4-fs: Ignoring removed nobh option
[   72.883388][ T5957] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.830: couldn't read orphan inode 15 (err -117)
[   72.898925][ T5957] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.920636][ T5959] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.931329][ T5957] EXT4-fs error (device loop3): ext4_check_all_de:659: inode #12: block 7: comm syz.3.830: bad entry in directory: directory entry overrun - offset=16, inode=2085390, rec_len=1024, size=124 fake=0
[   72.933973][ T5959] ext4 filesystem being mounted at /183/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.953846][   T29] audit: type=1400 audit(1769352305.241:4946): avc:  denied  { rename } for  pid=5956 comm="syz.3.830" name="file0" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   73.005220][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.074102][ T5970] loop2: detected capacity change from 0 to 512
[   73.088163][ T5970] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[   73.108495][ T5970] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #13: comm syz.2.832: iget: bad i_size value: 12154757448730
[   73.135485][ T5970] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.832: couldn't read orphan inode 13 (err -117)
[   73.148292][ T5970] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.189591][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.250132][ T5985] netlink: zone id is out of range
[   73.255412][ T5985] netlink: zone id is out of range
[   73.260715][ T5985] netlink: zone id is out of range
[   73.265876][ T5985] netlink: zone id is out of range
[   73.271092][ T5985] netlink: zone id is out of range
[   73.271410][ T5987] loop3: detected capacity change from 0 to 512
[   73.276204][ T5985] netlink: zone id is out of range
[   73.276215][ T5985] netlink: zone id is out of range
[   73.276222][ T5985] netlink: zone id is out of range
[   73.297866][ T5985] netlink: zone id is out of range
[   73.301255][ T5987] EXT4-fs error (device loop3): ext4_iget_extra_inode:5073: inode #15: comm syz.3.837: corrupted in-inode xattr: e_value size too large
[   73.325096][ T5987] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.837: couldn't read orphan inode 15 (err -117)
[   73.339529][ T5987] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.355463][ T5987] 9p: Bad value for 'wfdno'
[   73.363182][ T5985] netlink: 'syz.2.836': attribute type 1 has an invalid length.
[   73.376167][ T3331] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.391634][ T5985] bond1 (unregistering): Released all slaves
[   73.402329][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.429148][ T5996] netlink: 'syz.2.836': attribute type 1 has an invalid length.
[   73.436992][ T5996] netlink: 'syz.2.836': attribute type 2 has an invalid length.
[   73.488974][ T6002] vhci_hcd vhci_hcd.0: default hub control req: 8010 vfffd i0007 l0
[   73.516167][ T6002] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   73.553498][   T29] audit: type=1326 audit(1769352305.830:4947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6005 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b74beacb9 code=0x7ffc0000
[   73.577019][   T29] audit: type=1326 audit(1769352305.830:4948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6005 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b74beacb9 code=0x7ffc0000
[   73.588334][ T6007] -1: renamed from syzkaller0
[   73.600608][   T29] audit: type=1326 audit(1769352305.830:4949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6005 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7b74beacb9 code=0x7ffc0000
[   73.600661][   T29] audit: type=1326 audit(1769352305.830:4950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6005 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b74beacb9 code=0x7ffc0000
[   73.600685][   T29] audit: type=1326 audit(1769352305.830:4951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6005 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7b74beacb9 code=0x7ffc0000
[   73.600708][   T29] audit: type=1326 audit(1769352305.830:4952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6005 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b74beacb9 code=0x7ffc0000
[   73.698660][   T29] audit: type=1326 audit(1769352305.830:4953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6005 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f7b74beacb9 code=0x7ffc0000
[   73.767777][ T6013] __nla_validate_parse: 1 callbacks suppressed
[   73.767793][ T6013] netlink: 14 bytes leftover after parsing attributes in process `syz.0.845'.
[   73.808176][ T6012] netlink: 14 bytes leftover after parsing attributes in process `syz.0.845'.
[   73.871318][ T6018] loop3: detected capacity change from 0 to 8192
[   73.923099][ T6018] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   73.960634][ T6028] Invalid ELF header len 2
[   73.975968][ T6030] Invalid ELF header len 2
[   74.017264][ T6032] loop3: detected capacity change from 0 to 512
[   74.084997][ T6035] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #3: comm syz.0.852: corrupted inode contents
[   74.131004][ T6039] netlink: 36 bytes leftover after parsing attributes in process `syz.2.853'.
[   74.160281][ T6035] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #3: comm syz.0.852: mark_inode_dirty error
[   74.175162][ T6032] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #3: comm syz.3.851: corrupted inode contents
[   74.184410][ T6035] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #3: comm syz.0.852: corrupted inode contents
[   74.199271][ T6035] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.852: mark_inode_dirty error
[   74.205044][ T6032] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #3: comm syz.3.851: mark_inode_dirty error
[   74.222632][ T6035] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.852: Failed to acquire dquot type 0
[   74.234489][ T6032] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #3: comm syz.3.851: corrupted inode contents
[   74.247090][ T6035] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #16: comm syz.0.852: corrupted inode contents
[   74.259312][ T6032] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.851: mark_inode_dirty error
[   74.271253][ T6035] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #16: comm syz.0.852: mark_inode_dirty error
[   74.283215][ T6032] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.851: Failed to acquire dquot type 0
[   74.294911][ T6035] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #16: comm syz.0.852: corrupted inode contents
[   74.310139][ T6032] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #16: comm syz.3.851: corrupted inode contents
[   74.322258][ T6035] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.852: mark_inode_dirty error
[   74.334307][ T6035] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #16: comm syz.0.852: corrupted inode contents
[   74.346516][ T6032] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #16: comm syz.3.851: mark_inode_dirty error
[   74.360957][ T6032] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #16: comm syz.3.851: corrupted inode contents
[   74.373213][ T6035] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[   74.381886][ T6035] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #16: comm syz.0.852: corrupted inode contents
[   74.417184][ T6032] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.851: mark_inode_dirty error
[   74.430559][ T6035] EXT4-fs error (device loop0): ext4_truncate:4635: inode #16: comm syz.0.852: mark_inode_dirty error
[   74.446519][ T6032] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #16: comm syz.3.851: corrupted inode contents
[   74.470465][ T6035] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[   74.481477][ T6032] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[   74.500073][ T6035] EXT4-fs (loop0): 1 truncate cleaned up
[   74.506266][ T6035] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.530080][ T6032] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #16: comm syz.3.851: corrupted inode contents
[   74.561598][ T6032] EXT4-fs error (device loop3): ext4_truncate:4635: inode #16: comm syz.3.851: mark_inode_dirty error
[   74.572925][ T6035] ext4 filesystem being mounted at /163/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.597356][ T6032] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[   74.617019][ T6032] EXT4-fs (loop3): 1 truncate cleaned up
[   74.639918][ T6035] EXT4-fs: Ignoring removed orlov option
[   74.657603][ T6032] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.673792][ T6035] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[   74.683332][ T6035] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   74.705475][ T6032] ext4 filesystem being mounted at /165/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.730094][ T6052] syzkaller0: entered promiscuous mode
[   74.735713][ T6052] syzkaller0: entered allmulticast mode
[   74.760313][ T6035] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   74.778643][ T6032] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   74.824656][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.851843][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.852022][ T6055] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   74.879022][ T6060] ipt_ECN: cannot use operation on non-tcp rule
[   74.892181][ T6057] netlink: 'syz.4.860': attribute type 6 has an invalid length.
[   74.900030][ T6057] netlink: 56 bytes leftover after parsing attributes in process `syz.4.860'.
[   74.961193][ T6057] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   74.969738][ T6057] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.040819][ T6066] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   75.058075][ T6066] EXT4-fs (loop0): orphan cleanup on readonly fs
[   75.069565][ T6066] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.863: Allocating blocks 41-42 which overlap fs metadata
[   75.087259][ T6066] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.863: Allocating blocks 41-42 which overlap fs metadata
[   75.109423][ T6066] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.863: Failed to acquire dquot type 1
[   75.121636][ T6066] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[   75.145261][ T6066] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.863: corrupted inode contents
[   75.167793][ T6066] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #12: comm syz.0.863: mark_inode_dirty error
[   75.186259][ T6066] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.863: corrupted inode contents
[   75.201501][ T6066] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.863: mark_inode_dirty error
[   75.213091][ T6066] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.863: corrupted inode contents
[   75.225165][ T6066] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[   75.234011][ T6066] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #12: comm syz.0.863: corrupted inode contents
[   75.246769][ T6066] EXT4-fs error (device loop0): ext4_truncate:4635: inode #12: comm syz.0.863: mark_inode_dirty error
[   75.258405][ T6066] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[   75.269640][ T6066] EXT4-fs (loop0): 1 truncate cleaned up
[   75.275904][ T6066] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.291223][ T6066] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.355374][ T6073] netlink: 36 bytes leftover after parsing attributes in process `syz.2.864'.
[   75.521331][ T6085] Illegal XDP return value 4292448696 on prog  (id 159) dev N/A, expect packet loss!
[   75.798757][ T6100] syzkaller0: entered promiscuous mode
[   75.804334][ T6100] syzkaller0: entered allmulticast mode
[   76.262665][ T6085] netlink: 16 bytes leftover after parsing attributes in process `syz.1.867'.
[   76.482273][ T6115] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   76.513151][ T6123] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.541034][ T6115] EXT4-fs (loop4): orphan cleanup on readonly fs
[   76.565136][ T6115] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.877: Allocating blocks 41-42 which overlap fs metadata
[   76.596121][ T6115] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4215: comm syz.4.877: Allocating blocks 41-42 which overlap fs metadata
[   76.605666][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.614120][ T6115] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.877: Failed to acquire dquot type 1
[   76.633877][ T6115] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[   76.650692][ T6115] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.877: corrupted inode contents
[   76.664137][ T6115] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #12: comm syz.4.877: mark_inode_dirty error
[   76.692597][ T6115] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.877: corrupted inode contents
[   76.706775][ T6115] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.877: mark_inode_dirty error
[   76.731607][ T6150] lo speed is unknown, defaulting to 1000
[   76.766855][ T6115] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.877: corrupted inode contents
[   76.786759][ T6155] ip6erspan0: entered allmulticast mode
[   76.799717][ T6115] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[   76.818420][ T6115] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.877: corrupted inode contents
[   76.834807][ T6115] EXT4-fs error (device loop4): ext4_truncate:4635: inode #12: comm syz.4.877: mark_inode_dirty error
[   76.851441][ T6115] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[   76.878091][ T6115] EXT4-fs (loop4): 1 truncate cleaned up
[   76.891321][ T6115] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   76.928369][ T6115] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.030138][ T6170] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   77.074174][ T6174] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.094621][ T6170] EXT4-fs (loop0): orphan cleanup on readonly fs
[   77.103856][ T6170] EXT4-fs warning (device loop0): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   77.118718][ T6170] EXT4-fs (loop0): Cannot turn on quotas: error -22
[   77.125542][ T6170] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.894: bad orphan inode 768
[   77.139196][ T6170] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   77.206306][ T3331] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.290573][ T6179] netlink: 48 bytes leftover after parsing attributes in process `syz.2.893'.
[   77.326928][ T6179] EXT4-fs: Ignoring removed bh option
[   77.332398][ T6179] EXT4-fs: Ignoring removed mblk_io_submit option
[   77.362114][ T6179] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.415691][ T6188] set_capacity_and_notify: 8 callbacks suppressed
[   77.415709][ T6188] loop4: detected capacity change from 0 to 512
[   77.455706][ T6188] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.488212][ T6188] ext4 filesystem being mounted at /197/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.532043][ T3331] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.582520][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.619645][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.711472][ T6210] loop2: detected capacity change from 0 to 1764
[   77.722033][ T6212] netlink: 8 bytes leftover after parsing attributes in process `syz.4.907'.
[   77.730898][ T6212] netlink: 8 bytes leftover after parsing attributes in process `syz.4.907'.
[   77.813874][ T6226] netlink: 176 bytes leftover after parsing attributes in process `syz.4.907'.
[   78.040232][ T6242] geneve2: entered promiscuous mode
[   78.054312][ T6242] bond1: option lp_interval: invalid value (0)
[   78.060618][ T6242] bond1: option lp_interval: allowed values 1 - 2147483647
[   78.068839][ T6242] bond1 (unregistering): Released all slaves
[   78.271040][ T6247] loop3: detected capacity change from 0 to 1024
[   78.277894][ T6247] EXT4-fs: Ignoring removed nobh option
[   78.284058][ T6247] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   78.293095][ T6247] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   78.302894][ T6247] EXT4-fs (loop3): filesystem has both journal inode and journal device!
[   78.368744][ T6253] loop3: detected capacity change from 0 to 1764
[   78.766154][   T29] kauditd_printk_skb: 297 callbacks suppressed
[   78.766171][   T29] audit: type=1326 audit(1769352310.714:5239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6263 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   78.807112][   T29] audit: type=1326 audit(1769352310.714:5240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6263 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   78.830890][   T29] audit: type=1326 audit(1769352310.714:5241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6263 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   78.854322][   T29] audit: type=1326 audit(1769352310.714:5242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6263 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   78.877875][   T29] audit: type=1326 audit(1769352310.714:5243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6263 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   78.901420][   T29] audit: type=1326 audit(1769352310.714:5244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6263 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f520f31acb9 code=0x7ffc0000
[   78.951005][ T6278] loop0: detected capacity change from 0 to 1024
[   78.957785][ T6278] EXT4-fs: Ignoring removed nobh option
[   78.967753][ T6278] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   78.989273][ T6278] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   79.006319][ T6278] EXT4-fs (loop0): filesystem has both journal inode and journal device!
[   79.081069][   T29] audit: type=1400 audit(1769352311.004:5245): avc:  denied  { map } for  pid=6274 comm="syz.3.928" path="/dev/vcsa" dev="devtmpfs" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[   79.092093][ T6283] loop0: detected capacity change from 0 to 1764
[   79.120330][ T6285] raw_sendmsg: syz.1.932 forgot to set AF_INET. Fix it!
[   79.159566][ T6287] __nla_validate_parse: 2 callbacks suppressed
[   79.159582][ T6287] netlink: 72 bytes leftover after parsing attributes in process `syz.1.933'.
[   79.167322][   T29] audit: type=1326 audit(1769352311.041:5246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6284 comm="syz.1.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   79.198190][   T29] audit: type=1326 audit(1769352311.041:5247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6284 comm="syz.1.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   79.221566][   T29] audit: type=1326 audit(1769352311.041:5248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6284 comm="syz.1.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   79.420027][ T6301] loop0: detected capacity change from 0 to 1024
[   79.450391][ T6301] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.643583][ T6305] netlink: 8 bytes leftover after parsing attributes in process `syz.2.937'.
[   79.652453][ T6305] netlink: 8 bytes leftover after parsing attributes in process `syz.2.937'.
[   80.218770][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.322390][ T6330] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[   80.346022][ T6330] netlink: 120 bytes leftover after parsing attributes in process `syz.3.947'.
[   80.447683][ T6342] loop3: detected capacity change from 0 to 2048
[   80.461805][ T6331] netlink: 48 bytes leftover after parsing attributes in process `syz.0.942'.
[   80.476572][ T6342] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.515367][ T6331] loop0: detected capacity change from 0 to 4096
[   80.523834][ T6331] EXT4-fs: Ignoring removed bh option
[   80.529379][ T6331] EXT4-fs: Ignoring removed mblk_io_submit option
[   80.557154][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.567526][ T6331] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.699821][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.809451][ T6365] loop4: detected capacity change from 0 to 1764
[   80.863938][ T6352] netlink: 'syz.2.953': attribute type 10 has an invalid length.
[   80.936839][ T6376] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   80.946909][ T6376] EXT4-fs (loop3): orphan cleanup on readonly fs
[   80.953351][ T6376] EXT4-fs warning (device loop3): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   80.967957][ T6376] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   80.974649][ T6376] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.959: bad orphan inode 768
[   81.102971][ T6385] EXT4-fs: Ignoring removed orlov option
[   81.112260][ T6385] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.963: corrupted in-inode xattr: bad e_name length
[   81.126251][ T6385] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.963: couldn't read orphan inode 15 (err -117)
[   81.155522][ T6388] EXT4-fs: Ignoring removed nobh option
[   81.162302][ T6388] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   81.172072][ T6388] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   81.181786][ T6388] EXT4-fs (loop3): filesystem has both journal inode and journal device!
[   81.292545][ T6405] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   81.299544][ T6407] netlink: 52 bytes leftover after parsing attributes in process `syz.3.972'.
[   81.302390][ T6405] EXT4-fs (loop4): orphan cleanup on readonly fs
[   81.316636][ T6405] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   81.331332][ T6405] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   81.337933][ T6405] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.971: bad orphan inode 768
[   81.488221][ T6423] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   81.490691][ T6421] netlink: 140 bytes leftover after parsing attributes in process `syz.1.978'.
[   81.503816][ T6423] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   81.517286][ T6423] EXT4-fs (loop4): invalid journal inode
[   81.523193][ T6423] EXT4-fs (loop4): can't get journal size
[   81.530039][ T6423] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 17104912: comm syz.4.979: lblock 2 mapped to illegal pblock 17104912 (length 1)
[   81.549259][ T6423] EXT4-fs (loop4): Remounting filesystem read-only
[   81.556203][ T6423] EXT4-fs (loop4): failed to initialize system zone (-117)
[   81.563638][ T6423] EXT4-fs (loop4): mount failed
[   81.653053][ T6433] netlink: 52 bytes leftover after parsing attributes in process `syz.4.983'.
[   81.733696][ T6437] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   81.769235][ T6437] EXT4-fs (loop0): orphan cleanup on readonly fs
[   81.794550][ T6437] EXT4-fs warning (device loop0): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   81.809310][ T6437] EXT4-fs (loop0): Cannot turn on quotas: error -22
[   81.816041][ T6437] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.985: bad orphan inode 768
[   81.832113][ T6441] netlink: 36 bytes leftover after parsing attributes in process `syz.2.987'.
[   81.947060][ T6450] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6450 comm=syz.2.989
[   81.996337][ T6447] ext4 filesystem being mounted at /221/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   82.026003][ T6447] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.988: Failed to acquire dquot type 0
[   82.076416][ T3439] nci: nci_add_new_protocol: the target found does not have the desired protocol
[   82.284361][ T6486] netlink: 'syz.1.992': attribute type 21 has an invalid length.
[   82.292256][ T6486] netlink: 'syz.1.992': attribute type 4 has an invalid length.
[   82.383295][ T6497] ext4: Unknown parameter 'smackfshat'
[   82.429752][ T6506] FAULT_INJECTION: forcing a failure.
[   82.429752][ T6506] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.443543][ T6506] CPU: 1 UID: 0 PID: 6506 Comm: syz.3.994 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   82.443616][ T6506] Tainted: [W]=WARN
[   82.443624][ T6506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   82.443637][ T6506] Call Trace:
[   82.443645][ T6506]  <TASK>
[   82.443653][ T6506]  __dump_stack+0x1d/0x30
[   82.443681][ T6506]  dump_stack_lvl+0x95/0xd0
[   82.443704][ T6506]  dump_stack+0x15/0x1b
[   82.443817][ T6506]  should_fail_ex+0x263/0x280
[   82.443840][ T6506]  should_fail+0xb/0x20
[   82.443926][ T6506]  should_fail_usercopy+0x1a/0x20
[   82.443950][ T6506]  _copy_to_user+0x20/0xa0
[   82.443976][ T6506]  simple_read_from_buffer+0xb5/0x130
[   82.444010][ T6506]  proc_fail_nth_read+0x10e/0x150
[   82.444133][ T6506]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   82.444162][ T6506]  vfs_read+0x1ab/0x7f0
[   82.444194][ T6506]  ? __rcu_read_unlock+0x4e/0x70
[   82.444213][ T6506]  ? __fget_files+0x184/0x1c0
[   82.444292][ T6506]  ? mutex_lock+0x57/0x90
[   82.444315][ T6506]  ksys_read+0xdc/0x1a0
[   82.444350][ T6506]  __x64_sys_read+0x40/0x50
[   82.444386][ T6506]  x64_sys_call+0x2889/0x3000
[   82.444495][ T6506]  do_syscall_64+0xc0/0x2a0
[   82.444526][ T6506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.444551][ T6506] RIP: 0033:0x7f17d940b58e
[   82.444567][ T6506] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   82.444588][ T6506] RSP: 002b:00007f17d7ea6fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   82.444684][ T6506] RAX: ffffffffffffffda RBX: 00007f17d7ea76c0 RCX: 00007f17d940b58e
[   82.444700][ T6506] RDX: 000000000000000f RSI: 00007f17d7ea70a0 RDI: 0000000000000006
[   82.444723][ T6506] RBP: 00007f17d7ea7090 R08: 0000000000000000 R09: 0000000000000000
[   82.444738][ T6506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.444752][ T6506] R13: 00007f17d96c6038 R14: 00007f17d96c5fa0 R15: 00007ffc5898cfa8
[   82.444773][ T6506]  </TASK>
[   82.948422][ T6583] set_capacity_and_notify: 9 callbacks suppressed
[   82.948443][ T6583] loop0: detected capacity change from 0 to 512
[   82.984623][ T6586] loop4: detected capacity change from 0 to 256
[   83.049345][ T6598] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1006'.
[   83.109157][ T6605] loop4: detected capacity change from 0 to 1764
[   83.216071][ T6601] loop0: detected capacity change from 0 to 4096
[   83.234813][ T6601] EXT4-fs: Ignoring removed bh option
[   83.240296][ T6601] EXT4-fs: Ignoring removed mblk_io_submit option
[   83.404532][ T6622] loop3: detected capacity change from 0 to 128
[   83.509735][ T6627] loop3: detected capacity change from 0 to 512
[   83.538335][ T6627] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   83.551316][ T6627] EXT4-fs (loop3): orphan cleanup on readonly fs
[   83.557961][ T6627] EXT4-fs warning (device loop3): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   83.572574][ T6627] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   83.579231][ T6627] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.1014: bad orphan inode 768
[   83.642782][ T6640] syzkaller0: entered promiscuous mode
[   83.648302][ T6640] syzkaller0: entered allmulticast mode
[   83.657650][ T6636] loop4: detected capacity change from 0 to 1764
[   83.700578][ T6646] loop3: detected capacity change from 0 to 1024
[   83.709095][ T6646] EXT4-fs: Ignoring removed nobh option
[   83.716927][ T6646] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   83.741813][ T6646] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   83.751578][ T6646] EXT4-fs (loop3): filesystem has both journal inode and journal device!
[   83.837935][ T6666] loop3: detected capacity change from 0 to 512
[   83.841869][ T6668] syzkaller0: entered promiscuous mode
[   83.849802][ T6668] syzkaller0: entered allmulticast mode
[   83.868435][ T6666] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   83.886520][ T6666] EXT4-fs (loop3): orphan cleanup on readonly fs
[   83.893161][ T6666] EXT4-fs warning (device loop3): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   83.907846][ T6666] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   83.907941][ T6668] loop4: detected capacity change from 0 to 512
[   83.914515][ T6666] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.1030: bad orphan inode 768
[   83.939325][ T6668] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   83.950821][ T6668] EXT4-fs (loop4): orphan cleanup on readonly fs
[   83.957662][ T6668] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   83.972282][ T6668] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   83.978880][ T6668] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.1029: bad orphan inode 768
[   84.091247][ T6683] pimreg: entered allmulticast mode
[   84.147338][   T29] kauditd_printk_skb: 1029 callbacks suppressed
[   84.147353][   T29] audit: type=1326 audit(82.206:6276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6690 comm="syz.3.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d944acb9 code=0x7ffc0000
[   84.194194][ T6693] pimreg: left allmulticast mode
[   84.204705][   T29] audit: type=1326 audit(82.253:6277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6692 comm="syz.1.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   84.227750][   T29] audit: type=1326 audit(82.253:6278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6692 comm="syz.1.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   84.250797][   T29] audit: type=1326 audit(82.253:6279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6692 comm="syz.1.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   84.273617][   T29] audit: type=1326 audit(82.253:6280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6692 comm="syz.1.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   84.296466][   T29] audit: type=1326 audit(82.253:6281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6692 comm="syz.1.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   84.319212][   T29] audit: type=1326 audit(82.253:6282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6692 comm="syz.1.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f755d50b58e code=0x7ffc0000
[   84.341981][   T29] audit: type=1326 audit(82.253:6283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6692 comm="syz.1.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f755d50b58e code=0x7ffc0000
[   84.365369][   T29] audit: type=1326 audit(82.253:6284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6692 comm="syz.1.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   84.388202][   T29] audit: type=1326 audit(82.253:6285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6692 comm="syz.1.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7f755d54acb9 code=0x7ffc0000
[   84.412631][ T6697] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   84.424683][ T6697] EXT4-fs (loop3): 1 truncate cleaned up
[   84.425282][ T6689] lo speed is unknown, defaulting to 1000
[   84.558517][ T6713] netlink: 'syz.2.1047': attribute type 2 has an invalid length.
[   84.676578][ T6721] __nla_validate_parse: 10 callbacks suppressed
[   84.676595][ T6721] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1050'.
[   84.696851][ T6721] net_ratelimit: 25 callbacks suppressed
[   84.696867][ T6721] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   84.969595][ T6742] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1057'.
[   84.978578][ T6743] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1058'.
[   84.981933][ T6745] netlink: 'syz.3.1059': attribute type 10 has an invalid length.
[   85.020337][ T6745] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   85.087582][ T6748] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   85.114794][ T6748] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #11: comm syz.4.1058: iget: bogus i_mode (1)
[   85.142077][ T6754] FAULT_INJECTION: forcing a failure.
[   85.142077][ T6754] name failslab, interval 1, probability 0, space 0, times 0
[   85.154861][ T6754] CPU: 1 UID: 0 PID: 6754 Comm: syz.0.1062 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   85.154895][ T6754] Tainted: [W]=WARN
[   85.154937][ T6754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   85.154952][ T6754] Call Trace:
[   85.154961][ T6754]  <TASK>
[   85.154968][ T6754]  __dump_stack+0x1d/0x30
[   85.155065][ T6754]  dump_stack_lvl+0x95/0xd0
[   85.155086][ T6754]  dump_stack+0x15/0x1b
[   85.155108][ T6754]  should_fail_ex+0x263/0x280
[   85.155212][ T6754]  should_failslab+0x8c/0xb0
[   85.155237][ T6754]  kmem_cache_alloc_node_noprof+0x6a/0x4a0
[   85.155261][ T6754]  ? __alloc_skb+0x2f0/0x4b0
[   85.155284][ T6754]  __alloc_skb+0x2f0/0x4b0
[   85.155327][ T6754]  ? __alloc_skb+0x219/0x4b0
[   85.155344][ T6754]  audit_log_start+0x3aa/0x730
[   85.155428][ T6754]  ? kstrtouint+0x76/0xc0
[   85.155464][ T6754]  audit_seccomp+0x47/0x100
[   85.155495][ T6754]  ? __seccomp_filter+0x8db/0x1350
[   85.155525][ T6754]  __seccomp_filter+0x8ec/0x1350
[   85.155577][ T6754]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   85.155636][ T6754]  ? vfs_write+0x86e/0x9f0
[   85.155677][ T6754]  __secure_computing+0x81/0x150
[   85.155703][ T6754]  syscall_trace_enter+0xce/0x1e0
[   85.155744][ T6754]  do_syscall_64+0x9a/0x2a0
[   85.155775][ T6754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.155801][ T6754] RIP: 0033:0x7f1b97d8acb9
[   85.155820][ T6754] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   85.155912][ T6754] RSP: 002b:00007f1b967e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   85.155936][ T6754] RAX: ffffffffffffffda RBX: 00007f1b98005fa0 RCX: 00007f1b97d8acb9
[   85.156013][ T6754] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffffff
[   85.156026][ T6754] RBP: 00007f1b967e7090 R08: 0000000000000000 R09: 0000000000000000
[   85.156038][ T6754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.156051][ T6754] R13: 00007f1b98006038 R14: 00007f1b98005fa0 R15: 00007ffe7b3adad8
[   85.156108][ T6754]  </TASK>
[   85.156278][ T6748] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1058: couldn't read orphan inode 11 (err -117)
[   85.688217][ T6791] FAT-fs (loop2): bogus number of directory entries (390)
[   85.695472][ T6791] FAT-fs (loop2): Can't find a valid FAT filesystem
[   85.776807][ T6805] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1079'.
[   85.971796][ T6818] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1083'.
[   86.087350][ T3304]  loop2: p1 p2 p3 p4
[   86.091459][ T3304] loop2: p1 size 196608 extends beyond EOD, truncated
[   86.130937][ T3304] loop2: p2 start 164919041 is beyond EOD, truncated
[   86.137373][ T6743] syz.4.1058 (6743) used greatest stack depth: 6840 bytes left
[   86.137692][ T3304] loop2: p3 size 66846464 extends beyond EOD, truncated
[   86.181465][ T6833] syzkaller0: entered promiscuous mode
[   86.187365][ T6833] syzkaller0: entered allmulticast mode
[   86.196454][ T3304] loop2: p4 size 37048832 extends beyond EOD, truncated
[   86.250945][ T6816]  loop2: p1 p2 p3 p4
[   86.262688][ T6816] loop2: p1 size 196608 extends beyond EOD, truncated
[   86.268222][ T6842] sch_tbf: peakrate 2 is lower than or equals to rate 5 !
[   86.287355][ T6816] loop2: p2 start 164919041 is beyond EOD, truncated
[   86.294147][ T6816] loop2: p3 size 66846464 extends beyond EOD, truncated
[   86.327325][ T6816] loop2: p4 size 37048832 extends beyond EOD, truncated
[   86.470931][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   86.471376][ T3637] udevd[3637]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   86.493564][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   86.504307][ T2964] hid_parser_main: 2 callbacks suppressed
[   86.504322][ T2964] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   86.540678][ T2964] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   86.574616][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   86.575190][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   86.595850][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   86.657695][ T6842] lo speed is unknown, defaulting to 1000
[   86.909213][ T6877] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6877 comm=syz.1.1103
[   87.144410][ T6889] netlink: 'syz.2.1110': attribute type 1 has an invalid length.
[   87.244381][ T6905] FAULT_INJECTION: forcing a failure.
[   87.244381][ T6905] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   87.258266][ T6905] CPU: 0 UID: 0 PID: 6905 Comm: syz.0.1114 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   87.258376][ T6905] Tainted: [W]=WARN
[   87.258383][ T6905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   87.258397][ T6905] Call Trace:
[   87.258404][ T6905]  <TASK>
[   87.258412][ T6905]  __dump_stack+0x1d/0x30
[   87.258439][ T6905]  dump_stack_lvl+0x95/0xd0
[   87.258477][ T6905]  dump_stack+0x15/0x1b
[   87.258496][ T6905]  should_fail_ex+0x263/0x280
[   87.258515][ T6905]  should_fail+0xb/0x20
[   87.258554][ T6905]  should_fail_usercopy+0x1a/0x20
[   87.258579][ T6905]  _copy_from_user+0x1c/0xb0
[   87.258608][ T6905]  do_tcp_setsockopt+0x432/0x1630
[   87.258634][ T6905]  ? selinux_socket_setsockopt+0x1ce/0x200
[   87.258689][ T6905]  tcp_setsockopt+0x51/0xb0
[   87.258715][ T6905]  sock_common_setsockopt+0x69/0x80
[   87.258745][ T6905]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   87.258847][ T6905]  __sys_setsockopt+0x184/0x200
[   87.258869][ T6905]  __x64_sys_setsockopt+0x64/0x80
[   87.258889][ T6905]  x64_sys_call+0x21d5/0x3000
[   87.258912][ T6905]  do_syscall_64+0xc0/0x2a0
[   87.258942][ T6905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.259037][ T6905] RIP: 0033:0x7f1b97d8acb9
[   87.259055][ T6905] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   87.259094][ T6905] RSP: 002b:00007f1b967e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   87.259118][ T6905] RAX: ffffffffffffffda RBX: 00007f1b98005fa0 RCX: 00007f1b97d8acb9
[   87.259135][ T6905] RDX: 000000000000000e RSI: 0000000000000006 RDI: 0000000000000003
[   87.259149][ T6905] RBP: 00007f1b967e7090 R08: 00000000000000d8 R09: 0000000000000000
[   87.259226][ T6905] R10: 0000200000000440 R11: 0000000000000246 R12: 0000000000000001
[   87.259239][ T6905] R13: 00007f1b98006038 R14: 00007f1b98005fa0 R15: 00007ffe7b3adad8
[   87.259256][ T6905]  </TASK>
[   87.535087][ T6907] netlink: 196 bytes leftover after parsing attributes in process `syz.3.1115'.
[   87.544687][ T3397] IPVS: starting estimator thread 0...
[   87.549826][ T6910] lo speed is unknown, defaulting to 1000
[   87.603640][ T6913] syzkaller0: entered promiscuous mode
[   87.609178][ T6913] syzkaller0: entered allmulticast mode
[   87.634454][ T6918] Symlink component flag not implemented
[   87.640272][ T6918] Symlink component flag not implemented
[   87.647812][ T6918] Symlink component flag not implemented (129)
[   87.654060][ T6918] Symlink component flag not implemented (6)
[   87.660131][ T6911] IPVS: using max 2544 ests per chain, 127200 per kthread
[   88.155104][ T6957] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[   88.187241][ T6959] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1133'.
[   88.264553][ T6959] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1133'.
[   88.300615][ T6966] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1135'.
[   88.428175][ T6978] SELinux:  Context system_u:object_r:mqueue_spool_t:s0 is not valid (left unmapped).
[   88.464931][ T6982] set_capacity_and_notify: 9 callbacks suppressed
[   88.464949][ T6982] loop2: detected capacity change from 0 to 512
[   88.489497][ T6978] x_tables: ip_tables: osf match: used from hooks POSTROUTING, but only valid from PREROUTING/INPUT/FORWARD
[   88.556776][ T6982] EXT4-fs: Ignoring removed nobh option
[   88.628765][ T6993] loop4: detected capacity change from 0 to 512
[   88.699714][ T6993] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   88.740184][ T6993] EXT4-fs (loop4): orphan cleanup on readonly fs
[   88.746604][ T6993] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   88.761290][ T6993] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   88.768108][ T6993] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.1144: bad orphan inode 768
[   88.855255][ T7016] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1149'.
[   89.098643][ T7034] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   89.105909][ T7034] IPv6: NLM_F_CREATE should be set when creating new route
[   89.113145][ T7034] IPv6: NLM_F_CREATE should be set when creating new route
[   89.574690][   T29] kauditd_printk_skb: 561 callbacks suppressed
[   89.574708][   T29] audit: type=1400 audit(87.286:6845): avc:  denied  { write } for  pid=7017 comm="syz.2.1154" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   90.235275][   T29] audit: type=1400 audit(87.884:6846): avc:  denied  { write } for  pid=7073 comm="syz.0.1168" name="tcp6" dev="proc" ino=4026532459 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   90.345889][   T29] audit: type=1400 audit(88.006:6847): avc:  denied  { create } for  pid=7076 comm="syz.3.1169" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   90.364956][   T29] audit: type=1400 audit(88.006:6848): avc:  denied  { mounton } for  pid=7076 comm="syz.3.1169" path="/247/file0" dev="tmpfs" ino=1335 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   90.427584][ T7082] __nla_validate_parse: 3 callbacks suppressed
[   90.427602][ T7082] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1169'.
[   90.442887][ T7082] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1169'.
[   90.451595][ T7075] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1168'.
[   90.470307][   T29] audit: type=1400 audit(88.053:6849): avc:  denied  { write } for  pid=7078 comm="syz.4.1170" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[   90.477830][ T7075] netlink: 29 bytes leftover after parsing attributes in process `syz.0.1168'.
[   90.488703][   T29] audit: type=1400 audit(88.071:6850): avc:  denied  { ioctl } for  pid=7076 comm="syz.3.1169" path="socket:[15032]" dev="sockfs" ino=15032 ioctlcmd=0x3309 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   90.504925][ T7082] gretap0: entered promiscuous mode
[   90.552060][   T29] audit: type=1400 audit(88.137:6851): avc:  denied  { create } for  pid=7078 comm="syz.4.1170" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   90.596235][ T7081] loop0: detected capacity change from 0 to 4096
[   90.602709][ T7082] gretap0: left promiscuous mode
[   90.609139][   T29] audit: type=1400 audit(88.249:6852): avc:  denied  { write } for  pid=7083 comm="syz.4.1171" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   90.622619][ T7081] EXT4-fs: Ignoring removed bh option
[   90.633348][ T7081] EXT4-fs: Ignoring removed mblk_io_submit option
[   90.665159][ T7085] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1171'.
[   90.750452][   T29] audit: type=1400 audit(88.380:6853): avc:  denied  { read append open } for  pid=7073 comm="syz.0.1168" path="/218/file3/memory.events.local" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   90.866375][ T7089] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   91.098221][ T3397] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   91.108322][ T3397] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   91.314071][   T29] audit: type=1400 audit(88.904:6854): avc:  denied  { accept } for  pid=7103 comm="syz.2.1178" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[   91.375336][ T7107] FAULT_INJECTION: forcing a failure.
[   91.375336][ T7107] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   91.388596][ T7107] CPU: 0 UID: 0 PID: 7107 Comm: syz.2.1180 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   91.388635][ T7107] Tainted: [W]=WARN
[   91.388644][ T7107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   91.388658][ T7107] Call Trace:
[   91.388666][ T7107]  <TASK>
[   91.388712][ T7107]  __dump_stack+0x1d/0x30
[   91.388796][ T7107]  dump_stack_lvl+0x95/0xd0
[   91.388882][ T7107]  dump_stack+0x15/0x1b
[   91.388906][ T7107]  should_fail_ex+0x263/0x280
[   91.388925][ T7107]  should_fail+0xb/0x20
[   91.388942][ T7107]  should_fail_usercopy+0x1a/0x20
[   91.388966][ T7107]  _copy_from_user+0x1c/0xb0
[   91.388999][ T7107]  ___sys_sendmsg+0xc1/0x1e0
[   91.389037][ T7107]  __x64_sys_sendmsg+0xd4/0x160
[   91.389105][ T7107]  x64_sys_call+0x17ba/0x3000
[   91.389134][ T7107]  do_syscall_64+0xc0/0x2a0
[   91.389167][ T7107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.389271][ T7107] RIP: 0033:0x7f7b74beacb9
[   91.389290][ T7107] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   91.389312][ T7107] RSP: 002b:00007f7b73647028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   91.389334][ T7107] RAX: ffffffffffffffda RBX: 00007f7b74e65fa0 RCX: 00007f7b74beacb9
[   91.389348][ T7107] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004
[   91.389360][ T7107] RBP: 00007f7b73647090 R08: 0000000000000000 R09: 0000000000000000
[   91.389378][ T7107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.389390][ T7107] R13: 00007f7b74e66038 R14: 00007f7b74e65fa0 R15: 00007ffd2fb17698
[   91.389455][ T7107]  </TASK>
[   91.703316][ T7112] loop4: detected capacity change from 0 to 4096
[   91.884474][ T7120] loop2: detected capacity change from 0 to 128
[   91.901280][ T7120] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   91.955900][ T7120] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   92.009941][ T7130] IPv6: NLM_F_CREATE should be specified when creating new route
[   92.037158][ T7126] xt_hashlimit: max too large, truncated to 1048576
[   92.048599][ T7126] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1185'.
[   92.192461][ T7133] bridge_slave_0: left allmulticast mode
[   92.198496][ T7133] bridge_slave_0: left promiscuous mode
[   92.204612][ T7133] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.253496][ T7133] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1190'.
[   92.287239][ T7133] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1190'.
[   92.405937][   T42] Bluetooth: hci0: Frame reassembly failed (-84)
[   92.415106][ T7146] loop2: detected capacity change from 0 to 512
[   92.422080][ T7146] EXT4-fs: Ignoring removed bh option
[   92.431541][ T7146] journal_path: Non-blockdev passed as './file1'
[   92.437941][ T7146] EXT4-fs: error: could not find journal device path
[   93.185148][ T7208] netlink: 'syz.2.1216': attribute type 1 has an invalid length.
[   93.191670][ T7209] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1216'.
[   93.206828][ T7208] 8021q: adding VLAN 0 to HW filter on device bond1
[   93.214669][ T7208] netlink: 'syz.2.1216': attribute type 1 has an invalid length.
[   93.220384][ T7210] bond1: (slave geneve2): making interface the new active one
[   93.231598][ T7210] bond1: (slave geneve2): Enslaving as an active interface with an up link
[   93.240586][ T7208] netlink: 'syz.2.1216': attribute type 1 has an invalid length.
[   93.248479][ T7208] netlink: 'syz.2.1216': attribute type 1 has an invalid length.
[   93.257265][ T7208] netlink: 'syz.2.1216': attribute type 1 has an invalid length.
[   93.265081][ T7208] netlink: 'syz.2.1216': attribute type 1 has an invalid length.
[   93.273246][ T7208] netlink: 'syz.2.1216': attribute type 1 has an invalid length.
[   93.281164][ T7208] netlink: 'syz.2.1216': attribute type 1 has an invalid length.
[   93.289446][ T7208] netlink: 'syz.2.1216': attribute type 1 has an invalid length.
[   93.297534][ T7208] netlink: 'syz.2.1216': attribute type 1 has an invalid length.
[   93.340484][ T7213] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1217'.
[   93.474570][ T7237] loop2: detected capacity change from 0 to 1764
[   93.549458][ T7241] loop0: detected capacity change from 0 to 512
[   93.563303][ T7241] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   93.583411][ T7241] EXT4-fs (loop0): orphan cleanup on readonly fs
[   93.589874][ T7241] EXT4-fs warning (device loop0): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   93.604443][ T7241] EXT4-fs (loop0): Cannot turn on quotas: error -22
[   93.611029][ T7241] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.1227: bad orphan inode 768
[   93.745003][ T3397] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.789831][ T3397] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   93.850091][ T7260] FAULT_INJECTION: forcing a failure.
[   93.850091][ T7260] name failslab, interval 1, probability 0, space 0, times 0
[   93.862833][ T7260] CPU: 0 UID: 0 PID: 7260 Comm: syz.2.1232 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   93.862866][ T7260] Tainted: [W]=WARN
[   93.862903][ T7260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   93.862917][ T7260] Call Trace:
[   93.862924][ T7260]  <TASK>
[   93.862931][ T7260]  __dump_stack+0x1d/0x30
[   93.862988][ T7260]  dump_stack_lvl+0x95/0xd0
[   93.863023][ T7260]  dump_stack+0x15/0x1b
[   93.863067][ T7260]  should_fail_ex+0x263/0x280
[   93.863111][ T7260]  should_failslab+0x8c/0xb0
[   93.863187][ T7260]  __kmalloc_node_track_caller_noprof+0xb8/0x590
[   93.863212][ T7260]  ? sidtab_sid2str_get+0xa0/0x130
[   93.863240][ T7260]  kmemdup_noprof+0x2b/0x70
[   93.863371][ T7260]  sidtab_sid2str_get+0xa0/0x130
[   93.863405][ T7260]  security_sid_to_context_core+0x1eb/0x2e0
[   93.863440][ T7260]  security_sid_to_context+0x27/0x40
[   93.863519][ T7260]  selinux_lsmprop_to_secctx+0x67/0xf0
[   93.863701][ T7260]  security_lsmprop_to_secctx+0x1a3/0x1c0
[   93.863724][ T7260]  audit_log_subj_ctx+0xa4/0x3e0
[   93.863748][ T7260]  ? skb_put+0xa9/0xf0
[   93.863771][ T7260]  audit_log_task_context+0x48/0x70
[   93.863819][ T7260]  audit_log_task+0xf3/0x250
[   93.863957][ T7260]  ? kstrtouint+0x76/0xc0
[   93.863992][ T7260]  audit_seccomp+0x60/0x100
[   93.864072][ T7260]  ? __seccomp_filter+0x8db/0x1350
[   93.864101][ T7260]  __seccomp_filter+0x8ec/0x1350
[   93.864132][ T7260]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   93.864211][ T7260]  ? vfs_write+0x86e/0x9f0
[   93.864259][ T7260]  ? __rcu_read_unlock+0x4e/0x70
[   93.864278][ T7260]  ? __fget_files+0x184/0x1c0
[   93.864303][ T7260]  __secure_computing+0x81/0x150
[   93.864344][ T7260]  syscall_trace_enter+0xce/0x1e0
[   93.864377][ T7260]  do_syscall_64+0x9a/0x2a0
[   93.864409][ T7260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.864475][ T7260] RIP: 0033:0x7f7b74beacb9
[   93.864494][ T7260] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   93.864572][ T7260] RSP: 002b:00007f7b73647028 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   93.864595][ T7260] RAX: ffffffffffffffda RBX: 00007f7b74e65fa0 RCX: 00007f7b74beacb9
[   93.864611][ T7260] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   93.864696][ T7260] RBP: 00007f7b73647090 R08: 0000000000000001 R09: 0000000000000000
[   93.864712][ T7260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.864726][ T7260] R13: 00007f7b74e66038 R14: 00007f7b74e65fa0 R15: 00007ffd2fb17698
[   93.864745][ T7260]  </TASK>
[   93.872719][ T7255] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7255 comm=syz.1.1231
[   94.208771][ T7266] FAULT_INJECTION: forcing a failure.
[   94.208771][ T7266] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.221880][ T7266] CPU: 1 UID: 0 PID: 7266 Comm: syz.2.1233 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   94.221917][ T7266] Tainted: [W]=WARN
[   94.221969][ T7266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   94.221984][ T7266] Call Trace:
[   94.221991][ T7266]  <TASK>
[   94.221999][ T7266]  __dump_stack+0x1d/0x30
[   94.222026][ T7266]  dump_stack_lvl+0x95/0xd0
[   94.222051][ T7266]  dump_stack+0x15/0x1b
[   94.222125][ T7266]  should_fail_ex+0x263/0x280
[   94.222190][ T7266]  should_fail+0xb/0x20
[   94.222206][ T7266]  should_fail_usercopy+0x1a/0x20
[   94.222229][ T7266]  _copy_from_user+0x1c/0xb0
[   94.222302][ T7266]  sk_setsockopt+0x1fa/0x2140
[   94.222329][ T7266]  sock_setsockopt+0x40/0x50
[   94.222353][ T7266]  __sys_setsockopt+0x13a/0x200
[   94.222414][ T7266]  __x64_sys_setsockopt+0x64/0x80
[   94.222446][ T7266]  x64_sys_call+0x21d5/0x3000
[   94.222474][ T7266]  do_syscall_64+0xc0/0x2a0
[   94.222507][ T7266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.222531][ T7266] RIP: 0033:0x7f7b74beacb9
[   94.222547][ T7266] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   94.222630][ T7266] RSP: 002b:00007f7b73647028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   94.222654][ T7266] RAX: ffffffffffffffda RBX: 00007f7b74e65fa0 RCX: 00007f7b74beacb9
[   94.222671][ T7266] RDX: 000000000000002f RSI: 0000000000000001 RDI: 0000000000000003
[   94.222685][ T7266] RBP: 00007f7b73647090 R08: 0000000000000004 R09: 0000000000000000
[   94.222697][ T7266] R10: 00002000000005c0 R11: 0000000000000246 R12: 0000000000000001
[   94.222745][ T7266] R13: 00007f7b74e66038 R14: 00007f7b74e65fa0 R15: 00007ffd2fb17698
[   94.222767][ T7266]  </TASK>
[   94.490844][ T7273] loop2: detected capacity change from 0 to 256
[   94.564765][ T3531] Bluetooth: hci0: command 0x1003 tx timeout
[   94.570867][ T5116] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   94.678510][ T7283] loop2: detected capacity change from 0 to 512
[   94.725730][ T7283] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   94.761435][ T7283] EXT4-fs (loop2): orphan cleanup on readonly fs
[   94.788908][ T7283] EXT4-fs warning (device loop2): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[   94.803606][ T7283] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   94.810250][ T7283] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.1239: bad orphan inode 768
[   94.866745][ T7295] bond1: option packets_per_slave: mode dependency failed, not supported in mode broadcast(3)
[   94.899311][ T7295] bond1 (unregistering): Released all slaves
[   94.960789][   T29] kauditd_printk_skb: 227 callbacks suppressed
[   94.960805][   T29] audit: type=1326 audit(92.318:7081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7281 comm="syz.2.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f7b74beacb9 code=0x7ffc0000
[   95.024436][   T29] audit: type=1400 audit(92.356:7082): avc:  denied  { connect } for  pid=7301 comm="syz.1.1243" lport=20001 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   95.044526][   T29] audit: type=1400 audit(92.356:7083): avc:  denied  { name_connect } for  pid=7301 comm="syz.1.1243" dest=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   95.066446][   T29] audit: type=1400 audit(92.365:7084): avc:  denied  { unmount } for  pid=3317 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   95.121472][   T29] audit: type=1400 audit(92.430:7085): avc:  denied  { egress } for  pid=22 comm="ksoftirqd/1" saddr=fe80::1b daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[   95.144496][   T29] audit: type=1400 audit(92.430:7086): avc:  denied  { sendto } for  pid=22 comm="ksoftirqd/1" saddr=fe80::1b daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[   95.167488][   T29] audit: type=1400 audit(92.430:7087): avc:  denied  { setopt } for  pid=7301 comm="syz.1.1243" laddr=::ffff:172.20.20.57 lport=20001 faddr=::ffff:172.20.20.57 fport=20001 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   95.192929][   T29] audit: type=1400 audit(92.458:7088): avc:  denied  { ioctl } for  pid=7313 comm="syz.2.1249" path="socket:[15863]" dev="sockfs" ino=15863 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   95.226053][ T7308] loop4: detected capacity change from 0 to 4096
[   95.248721][ T7308] EXT4-fs: Ignoring removed bh option
[   95.254280][ T7308] EXT4-fs: Ignoring removed mblk_io_submit option
[   95.281310][   T29] audit: type=1400 audit(92.486:7089): avc:  denied  { sys_module } for  pid=7313 comm="syz.2.1249" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   95.301904][   T29] audit: type=1400 audit(92.496:7090): avc:  denied  { write } for  pid=7299 comm="syz.4.1247" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   95.382342][    T9] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   95.391943][    T9] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   95.508108][ T7343] loop0: detected capacity change from 0 to 1024
[   95.839510][ T7362] __nla_validate_parse: 9 callbacks suppressed
[   95.839530][ T7362] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1263'.
[   95.854707][ T7362] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1263'.
[   96.218508][ T7375] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1268'.
[   96.262146][ T7377] loop2: detected capacity change from 0 to 1024
[   96.433651][ T7386] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1270'.
[   96.443226][ T7386] netlink: 29 bytes leftover after parsing attributes in process `syz.2.1270'.
[   96.472676][ T7386] loop2: detected capacity change from 0 to 4096
[   96.479670][ T7386] EXT4-fs: Ignoring removed bh option
[   96.485089][ T7386] EXT4-fs: Ignoring removed mblk_io_submit option
[   96.539219][ T7391] loop4: detected capacity change from 0 to 512
[   96.546306][ T7391] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   96.555987][ T7391] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0102]
[   96.585067][ T7391] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.1272: corrupted in-inode xattr: e_value size too large
[   96.615871][ T7391] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1272: couldn't read orphan inode 15 (err -117)
[   96.663839][ T7391] FAULT_INJECTION: forcing a failure.
[   96.663839][ T7391] name failslab, interval 1, probability 0, space 0, times 0
[   96.676578][ T7391] CPU: 1 UID: 0 PID: 7391 Comm: syz.4.1272 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   96.676651][ T7391] Tainted: [W]=WARN
[   96.676658][ T7391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   96.676719][ T7391] Call Trace:
[   96.676728][ T7391]  <TASK>
[   96.676736][ T7391]  __dump_stack+0x1d/0x30
[   96.676797][ T7391]  dump_stack_lvl+0x95/0xd0
[   96.676822][ T7391]  dump_stack+0x15/0x1b
[   96.676842][ T7391]  should_fail_ex+0x263/0x280
[   96.676941][ T7391]  should_failslab+0x8c/0xb0
[   96.676961][ T7391]  __kmalloc_noprof+0xb8/0x580
[   96.676981][ T7391]  ? ext4_htree_store_dirent+0x52/0x2e0
[   96.677014][ T7391]  ext4_htree_store_dirent+0x52/0x2e0
[   96.677041][ T7391]  htree_dirblock_to_tree+0x49f/0x620
[   96.677153][ T7391]  ext4_htree_fill_tree+0x458/0xa60
[   96.677175][ T7391]  ? terminate_walk+0x1e6/0x210
[   96.677203][ T7391]  ? path_openat+0x1e8e/0x23c0
[   96.677238][ T7391]  ? inode_query_iversion+0xb9/0x110
[   96.677260][ T7391]  ext4_readdir+0x18e7/0x1f40
[   96.677285][ T7391]  ? get_pid_task+0x96/0xd0
[   96.677318][ T7391]  ? proc_fail_nth_write+0x13b/0x160
[   96.677499][ T7391]  ? avc_policy_seqno+0x15/0x30
[   96.677538][ T7391]  ? selinux_file_permission+0x1e1/0x320
[   96.677583][ T7391]  iterate_dir+0x114/0x330
[   96.677680][ T7391]  __se_sys_getdents64+0xd2/0x230
[   96.677716][ T7391]  ? __pfx_filldir64+0x10/0x10
[   96.677746][ T7391]  __x64_sys_getdents64+0x43/0x50
[   96.677781][ T7391]  x64_sys_call+0x2f27/0x3000
[   96.677822][ T7391]  do_syscall_64+0xc0/0x2a0
[   96.677921][ T7391]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.677946][ T7391] RIP: 0033:0x7f520f31acb9
[   96.677965][ T7391] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   96.677987][ T7391] RSP: 002b:00007f520dd77028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   96.678058][ T7391] RAX: ffffffffffffffda RBX: 00007f520f595fa0 RCX: 00007f520f31acb9
[   96.678072][ T7391] RDX: 00000000000000db RSI: 0000200000001400 RDI: 0000000000000005
[   96.678132][ T7391] RBP: 00007f520dd77090 R08: 0000000000000000 R09: 0000000000000000
[   96.678144][ T7391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.678156][ T7391] R13: 00007f520f596038 R14: 00007f520f595fa0 R15: 00007ffec1f83db8
[   96.678177][ T7391]  </TASK>
[   96.735613][ T7403] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1276'.
[   96.883843][ T7413] loop4: detected capacity change from 0 to 512
[   96.884188][ T7413] EXT4-fs: Ignoring removed bh option
[   96.888125][ T7413] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   96.894178][ T7413] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e842e028, mo2=0002]
[   96.894210][ T7413] System zones: 1-12
[   96.894281][ T7413] EXT4-fs (loop4): orphan cleanup on readonly fs
[   96.894531][ T7413] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1281: invalid indirect mapped block 1023 (level 0)
[   96.894710][ T7413] EXT4-fs (loop4): Remounting filesystem read-only
[   96.894788][ T7413] EXT4-fs (loop4): 1 truncate cleaned up
[   96.895662][ T7413] capability: warning: `syz.4.1281' uses 32-bit capabilities (legacy support in use)
[   96.919781][ T7418] loop4: detected capacity change from 0 to 512
[   96.986455][ T7422] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1282'.
[   96.994446][ T7424] netlink: 4124 bytes leftover after parsing attributes in process `syz.1.1284'.
[   96.997370][ T7418] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1283'.
[   97.159575][ T7426] __find_get_block_slow() failed. block=144115188075855872, b_blocknr=0, b_state=0x00000019, b_size=2048, device loop4 blocksize: 2048
[   97.259483][ T7426] grow_buffers: requested out-of-range block 144115188075855872 for device loop4
[   97.268658][ T7426] EXT4-fs warning (device loop4): ext4_resize_fs:2019: can't read last block, resize aborted
[   97.323024][ T7442] FAULT_INJECTION: forcing a failure.
[   97.323024][ T7442] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.336208][ T7442] CPU: 1 UID: 0 PID: 7442 Comm: syz.2.1291 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   97.336246][ T7442] Tainted: [W]=WARN
[   97.336252][ T7442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   97.336264][ T7442] Call Trace:
[   97.336272][ T7442]  <TASK>
[   97.336279][ T7442]  __dump_stack+0x1d/0x30
[   97.336353][ T7442]  dump_stack_lvl+0x95/0xd0
[   97.336374][ T7442]  dump_stack+0x15/0x1b
[   97.336392][ T7442]  should_fail_ex+0x263/0x280
[   97.336492][ T7442]  should_fail+0xb/0x20
[   97.336509][ T7442]  should_fail_usercopy+0x1a/0x20
[   97.336614][ T7442]  _copy_to_user+0x20/0xa0
[   97.336638][ T7442]  simple_read_from_buffer+0xb5/0x130
[   97.336670][ T7442]  proc_fail_nth_read+0x10e/0x150
[   97.336751][ T7442]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   97.336776][ T7442]  vfs_read+0x1ab/0x7f0
[   97.336809][ T7442]  ksys_read+0xdc/0x1a0
[   97.336892][ T7442]  __x64_sys_read+0x40/0x50
[   97.336990][ T7442]  x64_sys_call+0x2889/0x3000
[   97.337013][ T7442]  do_syscall_64+0xc0/0x2a0
[   97.337040][ T7442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.337060][ T7442] RIP: 0033:0x7f7b74bab58e
[   97.337075][ T7442] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   97.337159][ T7442] RSP: 002b:00007f7b73646fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   97.337178][ T7442] RAX: ffffffffffffffda RBX: 00007f7b736476c0 RCX: 00007f7b74bab58e
[   97.337192][ T7442] RDX: 000000000000000f RSI: 00007f7b736470a0 RDI: 0000000000000004
[   97.337204][ T7442] RBP: 00007f7b73647090 R08: 0000000000000000 R09: 0000000000000000
[   97.337359][ T7442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.337371][ T7442] R13: 00007f7b74e66038 R14: 00007f7b74e65fa0 R15: 00007ffd2fb17698
[   97.337389][ T7442]  </TASK>
[   97.339382][ T7438] IPv6: NLM_F_CREATE should be specified when creating new route
[   97.614134][ T7452] loop4: detected capacity change from 0 to 512
[   97.622218][ T7452] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   97.630202][ T7452] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e128, mo2=0002]
[   97.655928][ T7452] System zones: 0-1, 15-15, 18-18, 34-34
[   97.661787][ T7452] EXT4-fs (loop4): orphan cleanup on readonly fs
[   97.699415][ T7452] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   97.713997][ T7452] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   97.724791][ T7458] FAULT_INJECTION: forcing a failure.
[   97.724791][ T7458] name failslab, interval 1, probability 0, space 0, times 0
[   97.737635][ T7458] CPU: 1 UID: 0 PID: 7458 Comm: syz.0.1298 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   97.737671][ T7458] Tainted: [W]=WARN
[   97.737678][ T7458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   97.737709][ T7458] Call Trace:
[   97.737788][ T7458]  <TASK>
[   97.737796][ T7458]  __dump_stack+0x1d/0x30
[   97.737824][ T7458]  dump_stack_lvl+0x95/0xd0
[   97.737909][ T7458]  dump_stack+0x15/0x1b
[   97.737966][ T7458]  should_fail_ex+0x263/0x280
[   97.737988][ T7458]  should_failslab+0x8c/0xb0
[   97.738012][ T7458]  kmem_cache_alloc_noprof+0x68/0x490
[   97.738032][ T7458]  ? audit_log_start+0x34c/0x730
[   97.738065][ T7458]  audit_log_start+0x34c/0x730
[   97.738083][ T7458]  ? kstrtouint+0x76/0xc0
[   97.738116][ T7458]  audit_seccomp+0x47/0x100
[   97.738176][ T7458]  ? __seccomp_filter+0x8db/0x1350
[   97.738240][ T7458]  __seccomp_filter+0x8ec/0x1350
[   97.738297][ T7458]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   97.738366][ T7458]  ? vfs_write+0x86e/0x9f0
[   97.738398][ T7458]  ? __rcu_read_unlock+0x4e/0x70
[   97.738463][ T7458]  ? __fget_files+0x184/0x1c0
[   97.738491][ T7458]  __secure_computing+0x81/0x150
[   97.738520][ T7458]  syscall_trace_enter+0xce/0x1e0
[   97.738546][ T7458]  do_syscall_64+0x9a/0x2a0
[   97.738577][ T7458]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.738603][ T7458] RIP: 0033:0x7f1b97d8acb9
[   97.738670][ T7458] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   97.738736][ T7458] RSP: 002b:00007f1b967e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[   97.738760][ T7458] RAX: ffffffffffffffda RBX: 00007f1b98005fa0 RCX: 00007f1b97d8acb9
[   97.738776][ T7458] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   97.738791][ T7458] RBP: 00007f1b967e7090 R08: 0000000000000000 R09: 0000000000000000
[   97.738806][ T7458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.738819][ T7458] R13: 00007f1b98006038 R14: 00007f1b98005fa0 R15: 00007ffe7b3adad8
[   97.738839][ T7458]  </TASK>
[   97.964251][ T7452] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1296: bg 0: block 40: padding at end of block bitmap is not set
[   97.980592][ T7452] EXT4-fs (loop4): Remounting filesystem read-only
[   98.004301][ T7452] EXT4-fs (loop4): 1 truncate cleaned up
[   98.104352][ T7452] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1296'.
[   98.352206][ T7484] EXT4-fs: Ignoring removed bh option
[   98.357717][ T7484] EXT4-fs: Ignoring removed mblk_io_submit option
[   98.467331][ T7495] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #4: comm syz.2.1310: corrupted inode contents
[   98.501814][ T7495] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #4: comm syz.2.1310: mark_inode_dirty error
[   98.513702][ T7495] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #4: comm syz.2.1310: corrupted inode contents
[   98.525731][ T7495] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #4: comm syz.2.1310: mark_inode_dirty error
[   98.538094][ T7495] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.1310: Failed to acquire dquot type 1
[   98.538228][ T7502] delete_channel: no stack
[   99.063005][ T7528] lo speed is unknown, defaulting to 1000
[   99.258429][ T7547] validate_nla: 56 callbacks suppressed
[   99.258592][ T7547] netlink: 'syz.1.1324': attribute type 4 has an invalid length.
[   99.357050][ T7542] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.364308][ T7542] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.411287][ T7542] batman_adv: batadv0: Interface deactivated: dummy0
[   99.530252][ T7542] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   99.586039][ T7542] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   99.766298][ T3439] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   99.785698][ T7566] lo speed is unknown, defaulting to 1000
[   99.791695][ T3439] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   99.811625][ T3439] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   99.830106][ T3439] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  100.310736][ T7593] set_capacity_and_notify: 3 callbacks suppressed
[  100.310753][ T7593] loop4: detected capacity change from 0 to 764
[  100.324638][ T7593] rock: directory entry would overflow storage
[  100.330935][ T7593] rock: sig=0x5245, size=8, remaining=5
[  100.337247][   T29] kauditd_printk_skb: 155 callbacks suppressed
[  100.337264][   T29] audit: type=1400 audit(97.341:7240): avc:  denied  { mount } for  pid=7590 comm="syz.4.1334" name="/" dev="loop4" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  100.460428][   T29] audit: type=1400 audit(97.463:7241): avc:  denied  { associate } for  pid=7585 comm="syz.1.1332" name="core" scontext=root:object_r:etc_runtime_t tcontext=system_u:object_r:root_t tclass=filesystem permissive=1
[  100.494566][   T29] audit: type=1326 audit(97.491:7242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7596 comm="syz.3.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d944acb9 code=0x7ffc0000
[  100.517369][   T29] audit: type=1326 audit(97.491:7243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7596 comm="syz.3.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f17d940b58e code=0x7ffc0000
[  100.540172][   T29] audit: type=1326 audit(97.491:7244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7596 comm="syz.3.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f17d940b58e code=0x7ffc0000
[  100.563283][   T29] audit: type=1326 audit(97.491:7245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7596 comm="syz.3.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d944acb9 code=0x7ffc0000
[  100.586159][   T29] audit: type=1326 audit(97.491:7246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7596 comm="syz.3.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7f17d944acb9 code=0x7ffc0000
[  100.608943][   T29] audit: type=1326 audit(97.491:7247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7596 comm="syz.3.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d944acb9 code=0x7ffc0000
[  100.631687][   T29] audit: type=1326 audit(97.491:7248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7596 comm="syz.3.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17d944acb9 code=0x7ffc0000
[  100.876225][ T7605] loop0: detected capacity change from 0 to 4096
[  100.919905][ T7605] EXT4-fs: Ignoring removed bh option
[  100.925424][ T7605] EXT4-fs: Ignoring removed mblk_io_submit option
[  100.966493][   T29] audit: type=1400 audit(97.931:7249): avc:  denied  { unmount } for  pid=3331 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  101.031697][ T7605] EXT4-fs mount: 66 callbacks suppressed
[  101.031714][ T7605] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.149114][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.280782][ T7616] loop4: detected capacity change from 0 to 4096
[  101.320025][ T7616] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.382053][ T3331] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.818130][ T7639] loop0: detected capacity change from 0 to 1024
[  101.861338][ T7639] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.878118][ T7653] __nla_validate_parse: 8 callbacks suppressed
[  101.878134][ T7653] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1355'.
[  101.892791][ T7651] loop4: detected capacity change from 0 to 4096
[  101.906795][ T7642] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1352'.
[  101.961436][ T7651] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.984933][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.025944][ T7657] loop2: detected capacity change from 0 to 1024
[  102.053609][ T3331] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.054103][ T7657] EXT4-fs: Ignoring removed oldalloc option
[  102.068704][ T7657] EXT4-fs: Ignoring removed bh option
[  102.068808][ T7659] loop0: detected capacity change from 0 to 4096
[  102.090431][ T7659] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.124210][ T7657] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.153455][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.181953][ T7671] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  102.213026][ T7674] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1357'.
[  102.222288][ T7673] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1358'.
[  102.258145][ T7672] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1360'.
[  102.926540][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.964424][ T7681] loop2: detected capacity change from 0 to 1764
[  103.014872][ T7684] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1364'.
[  103.052144][ T7690] loop2: detected capacity change from 0 to 1024
[  103.080519][ T7690] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.133434][ T7699] loop4: detected capacity change from 0 to 4096
[  103.148066][ T7699] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.180953][ T7705] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1370'.
[  103.195153][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.207759][ T3331] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.232825][ T7705] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1370'.
[  103.248431][ T7708] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  103.301349][ T7708] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  103.347768][ T7708] x_tables: duplicate underflow at hook 3
[  103.351168][ T7716] lo speed is unknown, defaulting to 1000
[  103.392271][   T31] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  103.540995][ T7737] netlink: 176 bytes leftover after parsing attributes in process `syz.0.1378'.
[  103.747269][ T7747] FAULT_INJECTION: forcing a failure.
[  103.747269][ T7747] name failslab, interval 1, probability 0, space 0, times 0
[  103.760092][ T7747] CPU: 1 UID: 0 PID: 7747 Comm: syz.4.1385 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  103.760138][ T7747] Tainted: [W]=WARN
[  103.760146][ T7747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  103.760158][ T7747] Call Trace:
[  103.760165][ T7747]  <TASK>
[  103.760173][ T7747]  __dump_stack+0x1d/0x30
[  103.760196][ T7747]  dump_stack_lvl+0x95/0xd0
[  103.760256][ T7747]  dump_stack+0x15/0x1b
[  103.760274][ T7747]  should_fail_ex+0x263/0x280
[  103.760296][ T7747]  should_failslab+0x8c/0xb0
[  103.760318][ T7747]  kmem_cache_alloc_node_noprof+0x6a/0x4a0
[  103.760402][ T7747]  ? __alloc_skb+0x2f0/0x4b0
[  103.760425][ T7747]  __alloc_skb+0x2f0/0x4b0
[  103.760444][ T7747]  ? __alloc_skb+0x219/0x4b0
[  103.760472][ T7747]  netlink_alloc_large_skb+0xbf/0xf0
[  103.760538][ T7747]  netlink_sendmsg+0x40c/0x6f0
[  103.760578][ T7747]  ? __pfx_netlink_sendmsg+0x10/0x10
[  103.760605][ T7747]  __sock_sendmsg+0x145/0x170
[  103.760635][ T7747]  ____sys_sendmsg+0x31e/0x4a0
[  103.760713][ T7747]  ___sys_sendmsg+0x195/0x1e0
[  103.760745][ T7747]  __x64_sys_sendmsg+0xd4/0x160
[  103.760775][ T7747]  x64_sys_call+0x17ba/0x3000
[  103.760842][ T7747]  do_syscall_64+0xc0/0x2a0
[  103.760906][ T7747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.760931][ T7747] RIP: 0033:0x7f520f31acb9
[  103.760949][ T7747] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  103.760969][ T7747] RSP: 002b:00007f520dd77028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  103.761048][ T7747] RAX: ffffffffffffffda RBX: 00007f520f595fa0 RCX: 00007f520f31acb9
[  103.761091][ T7747] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  103.761107][ T7747] RBP: 00007f520dd77090 R08: 0000000000000000 R09: 0000000000000000
[  103.761123][ T7747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.761137][ T7747] R13: 00007f520f596038 R14: 00007f520f595fa0 R15: 00007ffec1f83db8
[  103.761158][ T7747]  </TASK>
[  104.363858][ T7775] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1394'.
[  104.427619][ T7778] netlink: 'syz.2.1395': attribute type 3 has an invalid length.
[  104.435504][ T7778] netlink: 'syz.2.1395': attribute type 8 has an invalid length.
[  104.502164][ T7795] EXT4-fs: Ignoring removed bh option
[  104.512757][ T7796] netlink: 'syz.3.1399': attribute type 1 has an invalid length.
[  104.537262][ T7796] netlink: 'syz.3.1399': attribute type 1 has an invalid length.
[  104.545358][ T7795] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  104.550127][ T7796] netlink: 'syz.3.1399': attribute type 1 has an invalid length.
[  104.571382][ T7795] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e842e028, mo2=0002]
[  104.579349][ T7795] System zones: 1-12
[  104.583965][ T7792] sctp: [Deprecated]: syz.3.1399 (pid 7792) Use of int in maxseg socket option.
[  104.583965][ T7792] Use struct sctp_assoc_value instead
[  104.614054][ T7795] EXT4-fs (loop2): orphan cleanup on readonly fs
[  104.620548][ T7795] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.1401: invalid indirect mapped block 1023 (level 0)
[  104.646192][ T7795] EXT4-fs (loop2): Remounting filesystem read-only
[  104.674335][ T3304] ==================================================================
[  104.682451][ T3304] BUG: KCSAN: data-race in __lru_add_drain_all / folio_add_lru
[  104.690011][ T3304] 
[  104.692355][ T3304] read-write to 0xffff888237d26468 of 1 bytes by task 7759 on cpu 1:
[  104.700416][ T3304]  folio_add_lru+0xa4/0x1e0
[  104.704936][ T3304]  filemap_add_folio+0x267/0x350
[  104.709884][ T3304]  __filemap_get_folio_mpol+0x326/0x680
[  104.715435][ T3304]  simple_write_begin+0x48/0x370
[  104.720392][ T3304]  generic_perform_write+0x183/0x490
[  104.725685][ T3304]  __generic_file_write_iter+0x9e/0x120
[  104.731266][ T3304]  generic_file_write_iter+0x8d/0x310
[  104.736663][ T3304]  __kernel_write_iter+0x319/0x590
[  104.741795][ T3304]  dump_user_range+0x63e/0x8f0
[  104.746570][ T3304]  elf_core_dump+0x21a2/0x2330
[  104.751328][ T3304]  coredump_write+0xacf/0xdf0
[  104.755997][ T3304]  vfs_coredump+0x26bc/0x3120
[  104.760671][ T3304]  get_signal+0xd7b/0xf60
[  104.764995][ T3304]  arch_do_signal_or_restart+0x96/0x450
[  104.770532][ T3304]  irqentry_exit+0xf7/0x510
[  104.775041][ T3304]  asm_exc_page_fault+0x26/0x30
[  104.779922][ T3304] 
[  104.782251][ T3304] read to 0xffff888237d26468 of 1 bytes by task 3304 on cpu 0:
[  104.789791][ T3304]  __lru_add_drain_all+0x17e/0x450
[  104.794908][ T3304]  lru_add_drain_all+0x10/0x20
[  104.799673][ T3304]  invalidate_bdev+0x47/0x70
[  104.804269][ T3304]  bdev_disk_changed+0xeb/0xcb0
[  104.809121][ T3304]  blkdev_get_whole+0x1f5/0x2d0
[  104.813966][ T3304]  bdev_open+0x280/0x7e0
[  104.818193][ T3304]  blkdev_open+0x259/0x290
[  104.822599][ T3304]  do_dentry_open+0x54b/0xa60
[  104.827303][ T3304]  vfs_open+0x37/0x1e0
[  104.831383][ T3304]  path_openat+0x1de9/0x23c0
[  104.835969][ T3304]  do_filp_open+0x15d/0x280
[  104.840466][ T3304]  do_sys_openat2+0xa6/0x150
[  104.845050][ T3304]  __x64_sys_openat+0xf2/0x120
[  104.849806][ T3304]  x64_sys_call+0x2b07/0x3000
[  104.854487][ T3304]  do_syscall_64+0xc0/0x2a0
[  104.858983][ T3304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.864870][ T3304] 
[  104.867180][ T3304] value changed: 0x09 -> 0x0a
[  104.871840][ T3304] 
[  104.874148][ T3304] Reported by Kernel Concurrency Sanitizer on:
[  104.880283][ T3304] CPU: 0 UID: 0 PID: 3304 Comm: udevd Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  104.891130][ T3304] Tainted: [W]=WARN
[  104.894918][ T3304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  104.904959][ T3304] ==================================================================
[  104.913458][ T7796] netlink: 'syz.3.1399': attribute type 1 has an invalid length.
[  104.925651][ T7795] EXT4-fs (loop2): 1 truncate cleaned up
[  104.931730][ T7795] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  104.989316][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007.