last executing test programs:

36.463092362s ago: executing program 0 (id=292):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f00000040c0)={0x0, 0x80, 0x8, 0x97, 0xfc, 0x5, 0x0, 0x100000000, 0x98021, 0xc, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_config_ext={0x0, 0x10}, 0xb000, 0x1, 0xfffffffa, 0x1, 0x7, 0x8001, 0x8945, 0x0, 0x1, 0x0, 0x4}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x100040, 0x4, &(0x7f0000006680))
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000, 0x7, &(0x7f0000ffd000/0x3000)=nil)
syz_open_dev$usbmon(&(0x7f0000000040), 0x22a7, 0x20001)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x1, 0x571, &(0x7f0000000780)="$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")
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x55, 0x1, 0x0, 0x0, 0x0, 0x3ff, 0x10000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x1, @perf_bp={0x0, 0x2}, 0x10005, 0x1, 0xfffffc03, 0x3, 0x3, 0x80000000, 0x5, 0x0, 0x0, 0x0, 0x10000000002009}, 0x0, 0xffe0000000000001, 0xffffffffffffffff, 0x9)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101842, 0x250b0822979e7305)

35.847884139s ago: executing program 0 (id=301):
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x5, 0x5, &(0x7f0000000180)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000540))

35.682827688s ago: executing program 0 (id=304):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0xff, 0x0, 0x0, 0x9, 0x640b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={&(0x7f0000000380), 0x2}, 0x0, 0xa, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
r2 = socket(0x1d, 0x2, 0x6)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/tcp\x00')
pread64(r3, &(0x7f00000000c0)=""/102, 0x66, 0x12f)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'team0\x00', 0x200})
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r4=>0x0})
ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f0000000340))
bind$can_j1939(r2, &(0x7f0000000040)={0x1d, r4, 0x8000000000000003}, 0x18)
sendmsg$can_j1939(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)="cc8f", 0x2}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000000)={0x2001}, 0x10)
r6 = socket(0x1e, 0x4, 0x0)
sendmsg$tipc(r6, &(0x7f0000000100)={&(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x3, {0x1, 0x1, 0x2}}, 0x10, 0x0}, 0x4800)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='gid_map\x00')
preadv(r7, &(0x7f0000000400)=[{&(0x7f0000000040)=""/236, 0xec}], 0x1, 0x3, 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
r8 = syz_io_uring_setup(0x31c5, &(0x7f0000000140)={0x0, 0xd73c, 0x1, 0x0, 0x0, 0x0, r7}, &(0x7f00000001c0), &(0x7f00000003c0))
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r9, &(0x7f0000001240)=[{&(0x7f0000000a40), 0x17b}, {&(0x7f0000001740)="9b5937bbf46a0a752f10243253d99fbb3227121bb4836b8073322d1ac20976026ad7649ec309fb239ebb9c2cd94e3c0a9d3ae6ba455d59f9121db45c1e3f9819cdbc953deaafd98b8131db4b498bc0addfc7e4ee821a6bcee9b07b6b4c5e8997f930a6f3fd18d2eb7de5346e9a72baa07d1096a2cf190170c4afda7fa59bd94e11bb77019f82de797869753f2b1bebfed1fdbd0f1edc487e9bf6bb46a696fd31f957a4b9069df7026a6d091626387f9b551cdb820d568a83df198b9c4ec31516929c32f9294778c656d42591359cf5057865524d34723463a5eeff4a8d73cf4855269f931281e4a72770858c1e321e454d4de06b2689ce63ab625583cec82ce42ccfd6ddc1e2c266d34016d508ef38bfc5f89cce170e9cb662c1884499a82524ac9cd366da3dbd9a03bef7381dae4008ec14a7181d8f6ba4497cedfe80907720ed4fe71ea378264b431e483bc1dd1b782d9dcd4bb3b26fe5341098692102ffff4f19699d25da82320bfa0debb44622328b452c505d20e8f46bc73f", 0x17b}, {&(0x7f0000000500)="2a6dfe6b588f0649b7c62468b77834dbabbd4b954da4", 0x16}, {&(0x7f0000001640)="acf5964b4d2aba2c68c363b6bc49a8c7becac3bbb7dfcc8b79d6d4f52be12eeb2b79d208ff301d18aa1e5b70729f3b4aa941103981c5f58d8d4971d20b6aa6c7bc3d371b296f014d7bec9aed7f966e46d306d93dabbef889580d6d6e78ba9c72b644dfe391899db31310e59eb3e734ccda545701b2fc7dbb748af3f4f2f22510c8965985c95e73ec6c46ac80a4a74288351133b2890706681f10d66dec0d89e27fdd35fe7ddfe33b4a8d99acecc1586f6d1d257e22e1bf7e390d6d4dbe967e616ccaba4ce0491838ad8469dbfe3c4280330a5c7fc0192c113affde67d5805e2181281f44c32efa30", 0xe8}, {&(0x7f0000000d00)="35b67d93a84d33eb70ff581e3a9d9d0da6dc5d9e513fd7f0d6a7e1a170a9fd02e1e8ab7be3d54f2942d30bb052ff1db99d44bbba505f4ec35bbda360e6b433a93f22eaa64d7024893d4a99395bd583c81e435a0b3c52004bf44246828d6b76a7bdae3a6cfbb9fb", 0x67}, {&(0x7f0000000d80)="3737510ba7998eb0a92eb479b9ac482e6adde06f82a7ed40961de2f2044db9ddc090c9ad2b99c28af1c0147e8302afcf6fdcf929bec6a1a7739a151623ff9e7b9f32748cb18596b18766bb9ec5d09bce07fd8016aeef37d95a4474f8c7a9299958fe", 0x62}, {0x0}, {&(0x7f0000000c00)="41c7c229ebe174b727f00ec3f1d02a27c4bab19ef5ff046bb5aaec1fa8b6d8b49c4ca80426f1d27aaa0a3a5f74b020a430b1cc1f485e8c9013fdfe42f6f11c3e2686e59c5a7738096c5826f4443b74e6640b8b42e5b049f8dd9b7ef8aca94c0a7f7553c48bca6b78498c8f52bea41749243422a96cabd158f601376639e11bd9acdcca6296ab8f4212d1c47c37329f2aa90197826b918c914e4d11f8a79eaaddf1", 0xa1}, {&(0x7f0000001040)="02e5570de9bd58f3ae924514eb95d3085d5b4ffc3ad1b8cdf7f7086f87dfad4ff604ecaacc625a44eea266710d093ac57e807436b57559bc78129208b4f028c7e81351dfef9e381d85c5d7f74e505af08f656fc416ece1fe515b610553eae1493e", 0x61}], 0x9)
syz_io_uring_setup(0x263f, &(0x7f0000000840)={0x0, 0xb8da, 0x186a, 0x0, 0x0, 0x0, r8}, 0x0, 0x0)
syz_io_uring_setup(0x3c5f, &(0x7f0000000240)={0x0, 0x20, 0x27, 0x2, 0x0, 0x0, r8}, &(0x7f00000002c0), &(0x7f0000000300))
copy_file_range(r8, &(0x7f00000004c0)=0x3ff, r9, &(0x7f0000000580)=0x7, 0x6, 0x0)
close(0xffffffffffffffff)
r10 = socket$unix(0x1, 0x5, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040), 0x200000, &(0x7f0000000100)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r10}})
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)

35.336903358s ago: executing program 0 (id=313):
r0 = perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1e0411, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfefffffe, 0x1, @perf_bp={0x0, 0x1}, 0x6025, 0x4005, 0xb, 0x3, 0x80, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='mounts\x00')
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x9, &(0x7f0000000000)={[{@barrier}, {@jqfmt_vfsv0}, {@abort}, {}, {@noquota}, {@usrjquota, 0x2e}], [], 0x2e}, 0x6, 0x48d, &(0x7f0000000980)="$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")
r2 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, 0x0, 0x0)
preadv(r1, &(0x7f00000001c0)=[{&(0x7f00000039c0)=""/4088, 0xff8}], 0x1, 0x15f, 0x0)
statx(0xffffffffffffffff, 0x0, 0x6000, 0x6, 0x0)
unshare(0x2040400)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_pidfd_open(r3, 0x0)
ioctl$FS_IOC_GETVERSION(r4, 0x80087601, &(0x7f0000000340))
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f0000000780)=[{0x200000000006, 0xf, 0x6, 0x7ffc1ffb}]})
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup(r5)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x880b4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xc, 0x6}, 0x120, 0x10000, 0x4, 0x6, 0x8, 0x20007, 0xb, 0x0, 0x0, 0x0, 0x20000007}, 0x0, 0xffbfffffffffffff, r0, 0x9)

34.880966865s ago: executing program 0 (id=320):
r0 = socket(0x1e, 0x1, 0x200)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f00000001c0)={0x3, {{0xa, 0x4e24, 0x2, @mcast1, 0xff7ffffd}}, {{0xa, 0x4e08, 0x4a3, @local, 0x4f1}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f00000004c0)={0x3, {{0xa, 0x4e22, 0xc, @mcast1, 0xfffffffa}}, 0x0, 0x1, [{{0xa, 0x8001, 0x6, @loopback, 0x30000}}]}, 0x110)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000180)={0x0, {{0xa, 0x4e22, 0x6ef, @mcast1, 0x3}}, {{0xa, 0x4e24, 0x40008, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xfffffe00}}}, 0x108)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000d40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x340800, &(0x7f0000000a80)={[], [{@euid_lt}, {@euid_gt}]}, 0x1, 0x512, &(0x7f0000000380)="$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")
r2 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r2, &(0x7f0000000400), 0x10)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r7, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x18}}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="01000000000000002800128009000100766c616e000000001800028006000100000000000c0002000c0000000d00000008000500", @ANYRES64=r1, @ANYRESDEC=r5, @ANYRES64=r6], 0x50}, 0x1, 0x0, 0x0, 0x4000081}, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c0000001000010001000000ffdbdf2500000000", @ANYRES32=r8, @ANYBLOB="850b01000098040300000000aaaaaaaaaaaa0000"], 0x2c}, 0x1, 0x0, 0x0, 0x90}, 0x0)
setns(r4, 0x24020000)
mount(0x0, &(0x7f0000000140)='.\x00', 0x0, 0x11020, 0x0)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f00000000c0), 0xf00)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0)
openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r7, 0x89f1, &(0x7f0000000000)={'gre0\x00', &(0x7f00000001c0)=@ethtool_cmd={0x9, 0x100008, 0x0, 0x0, 0x3, 0x6, 0x3, 0xfc, 0x9d, 0x1, 0x0, 0x1, 0x1, 0xfb, 0x0, 0xfffffefd, [0x0, 0x2]}})
syz_emit_ethernet(0x7a, &(0x7f0000000280)=ANY=[], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r9, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000002000000000000210d0000aaa8fa017242ba9380d440fe0000000000002900000002000000", 0xfe60)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)

34.61986275s ago: executing program 0 (id=327):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0xb, 0x8, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f0000000280)=r1}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000440)={r3, &(0x7f00000002c0)="e60759a024119a6faa", 0x0}, 0x20)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x1bba00, 0x0)
ioctl$TUNSETSTEERINGEBPF(r4, 0x800454e0, &(0x7f0000000200)=r0)
r5 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800000, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
r7 = accept(r5, 0x0, &(0x7f0000000040))
connect$can_bcm(r7, &(0x7f0000000080), 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r8 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
close(r8)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r9, &(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10)
ioctl$int_in(r9, 0x5452, &(0x7f0000000100)=0x597)
connect$inet(r9, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)

34.563374533s ago: executing program 32 (id=327):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0xb, 0x8, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f0000000280)=r1}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000440)={r3, &(0x7f00000002c0)="e60759a024119a6faa", 0x0}, 0x20)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x1bba00, 0x0)
ioctl$TUNSETSTEERINGEBPF(r4, 0x800454e0, &(0x7f0000000200)=r0)
r5 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800000, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
r7 = accept(r5, 0x0, &(0x7f0000000040))
connect$can_bcm(r7, &(0x7f0000000080), 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r8 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
close(r8)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r9, &(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10)
ioctl$int_in(r9, 0x5452, &(0x7f0000000100)=0x597)
connect$inet(r9, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)

3.536861633s ago: executing program 2 (id=979):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
flistxattr(r0, &(0x7f0000000280)=""/183, 0xb7)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
bind$netlink(r5, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc)
getsockname$packet(r5, &(0x7f0000000600)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r4, &(0x7f0000024c80)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000024d40)=ANY=[@ANYBLOB="4400000010000d042abd7000077bf70000000000", @ANYRES32=r6, @ANYBLOB="01000000000000002400128009000100626f6e6400000000140002800500010006"], 0x44}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x1, 0x803, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000e00)=ANY=[@ANYBLOB="44000000100001042abd70000000000000000000", @ANYRES32=r3, @ANYBLOB="0028000000000000140012800c0001006d6163766c616e00", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r9], 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r10 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x404c080)
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
ioctl$sock_SIOCBRDELBR(r11, 0x89a2, &(0x7f0000000000)='bridge0\x00')
r12 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r12, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a31000000000800410072786500"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000)
listen(r1, 0x4)

2.922771949s ago: executing program 2 (id=985):
r0 = socket(0x10, 0x2, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000002000), 0xd, 0x20041)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x1000007f, 0x80, &(0x7f0000000000)={0x5f}, 0x8, 0x0, 0x8, 0x0, 0x1, 0x68b, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r1, 0x4004550d, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000001800)={'syz_tun\x00', &(0x7f0000000300)=@ethtool_link_settings={0x12, 0x6, 0x1, 0x0, 0x40, 0x2, 0x3, 0x3, 0x1, 0x4, [0x8, 0x40, 0x1, 0x4, 0x1, 0xfa, 0x6, 0x4eff01e0]}})
sendmsg$AUDIT_GET_FEATURE(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x3fb, 0x800, 0x70bd29, 0x25dfdbfe, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40040}, 0x4044)

2.791765177s ago: executing program 2 (id=987):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x4616, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x3, 0xb, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x1294, 0x2, 0x5})
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file1\x00', 0x0, &(0x7f0000000000), 0xfe, 0x250, &(0x7f0000000300)="$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")
r1 = open(&(0x7f0000000000)='./file1\x00', 0x143142, 0x80)
fadvise64(r1, 0x80000001, 0x80000221, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mount$tmpfs(0x0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000f80), 0xc00, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind', '=relative', @val={0x3a, [0xa]}}}}]})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r2)
sendmsg$nl_generic(r2, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x20, 0x10, 0xf21, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0)
mq_getsetattr(r0, &(0x7f0000000000)={0x800, 0x4, 0x9, 0x9a}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000013c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'macsec0\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=r4, @ANYBLOB="00000000000000001c0012800b0001006d616373656300000c00028006000f"], 0x3c}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9}, 0x0)
r6 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r6, &(0x7f0000000380)={0xc, 0x8, 0x144, {&(0x7f0000001140)}}, 0x10)

1.992549343s ago: executing program 1 (id=1003):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r0 = socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
close(r1)
socket$can_bcm(0x1d, 0x2, 0x2)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f00000000c0)=0x2009, 0x4)
sendmmsg$inet(r2, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
unshare(0x24020400)
r4 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7f, 0x2, @perf_config_ext={0x800000, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300), 0x84, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
bind$packet(r7, &(0x7f0000000d00)={0x11, 0xf8, r8, 0x1, 0x0, 0x6, @multicast}, 0x14)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r8, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r9, 0x4)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000780)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
mbind(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4003, &(0x7f0000000c00)=0xc, 0x6, 0x2)

1.920730367s ago: executing program 3 (id=1006):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0xe, 0x4}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0xb, 0x1, {0x0, 0xb, 0x5}}}}]}, 0x40}}, 0x4000010)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x9, 0xf84b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x2, @perf_bp={0x0}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x200003, 0x6, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
socket$xdp(0x2c, 0x3, 0x0)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x3, 0x0, 0x1, 0x800}, 0x0, &(0x7f0000000240)={0x1f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x1, 0x571, &(0x7f0000000780)="$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")
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, 0x0, 0x0}, 0x20)
r2 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r3 = openat$binfmt(0xffffffffffffff9c, r2, 0x42, 0x1ff)
write$binfmt_script(r3, &(0x7f0000000080)={'#! ', './file1', [{}]}, 0x2)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x55, 0x1, 0x0, 0x0, 0x0, 0x3ff, 0x10000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x1, @perf_bp={0x0, 0x2}, 0x10005, 0x1, 0xfffffc03, 0x3, 0x3, 0x80000000, 0x5, 0x0, 0x0, 0x0, 0x10000000002009}, 0x0, 0xffe0000000000001, 0xffffffffffffffff, 0x9)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101842, 0x250b0822979e7305)

1.839909212s ago: executing program 2 (id=1008):
r0 = perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x27, 0x1, 0x1, 0x0, 0x0, 0x8, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x8201, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xc, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="180000007f00000000000000f1ffffff911185000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r1 = fsopen(&(0x7f0000000240)='ramfs\x00', 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r3, &(0x7f00000000c0), 0x10)
r4 = dup3(r3, r2, 0x0)
sendmsg$can_bcm(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x4640}, 0x2}, 0x2c004000)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
getpgrp(0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$dupfd(r5, 0x406, r1)
writev(r0, 0x0, 0x0)
fcntl$dupfd(r0, 0x406, r0)
brk(0x9)
r6 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x1954, 0x0, 0x4, 0xce}, &(0x7f0000000300)=<r7=>0x0, &(0x7f0000000580)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000740)=@IORING_OP_TIMEOUT={0xb, 0x49, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r6, 0x6e2, 0x3900, 0x3, 0x0, 0x0)
add_key$keyring(&(0x7f0000000380), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
clock_nanosleep(0x2, 0x1000000, &(0x7f0000000040)={0x77359400}, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

1.596105637s ago: executing program 5 (id=1010):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x9}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000340)={{0x80, 0x1}, 'port0\x00', 0x100, 0x131845, 0x0, 0x0, 0x7, 0x0, 0x100000, 0x0, 0x1})
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80, 0x82}, 'port0\x00', 0x25, 0x60041, 0x8000, 0xfffffffe, 0x9, 0x0, 0x5, 0x0, 0x7, 0x9})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000200)={{0x80, 0x4}, 'port1\x00', 0x89, 0x0, 0x0, 0xfffffeff, 0x0, 0x0, 0x200000, 0x0, 0x4875c99660ff2b28})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x8, 0xf9, 0x7ffc1ffb}]})
getpgid(0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
pause()

1.540526489s ago: executing program 4 (id=1011):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f00000003c0)) (fail_nth: 2)

1.501448872s ago: executing program 3 (id=1012):
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000000100)=0x401, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0xfffffffe, @empty, 0x5e}, 0x1c)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x3)
bind$inet6(r1, &(0x7f0000000080)={0xa, 0x14e22, 0xfffffff8, @ipv4}, 0x1c)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r4, 0xa7ba)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r6, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r7, 0x0)
r8 = socket$netlink(0x10, 0x3, 0xb)
writev(r8, &(0x7f00000000c0)=[{&(0x7f0000000200)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00')
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180000002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000004c0)={r9, 0x3, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x44)
r10 = socket$inet6(0xa, 0x1, 0x8010000000000084)
sendto$inet6(r10, &(0x7f0000000100)="15", 0x1, 0x1, &(0x7f0000000140)={0xa, 0x4e23, 0x7ff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3}, 0x1c)
sendmsg$inet6(r10, &(0x7f0000000380)={&(0x7f0000000180)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c, &(0x7f0000000340)=[{&(0x7f0000000480)='y', 0x1}], 0x1}, 0x0)
shutdown(r10, 0x1)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r10, 0x84, 0x9, &(0x7f00000003c0)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}, 0x0, 0x0, 0x4}, &(0x7f0000000080)=0x9c)
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)

1.275600115s ago: executing program 4 (id=1013):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@msize={'msize', 0x3d, 0xd00200}}, {@version_9p2000}], [], 0x6b}})

1.246972607s ago: executing program 1 (id=1014):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r2, 0x84, 0x7f, 0x0, &(0x7f0000000000))
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, 0x0, 0x60)
setsockopt$inet_int(r0, 0x0, 0x18, &(0x7f0000000100)=0x2, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)

1.215884369s ago: executing program 1 (id=1015):
pause()

1.207062059s ago: executing program 4 (id=1016):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x10)

1.123798274s ago: executing program 4 (id=1017):
r0 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={<r1=>0x0}, &(0x7f00000000c0)=0xc)
r2 = syz_open_procfs(0x0, &(0x7f0000002340)='fdinfo\x00')
getdents(r2, &(0x7f0000000240)=""/4096, 0x1000)
getdents(r2, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3d, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x2, 0x0, 0x7ffffdbd}]})
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0xb8, 0x5, 0x9, 0x0, 0x0, 0xe, 0x8000, 0x8, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x4, 0x2, @perf_bp={&(0x7f0000000000), 0x9}, 0x800, 0xfffffffffffffff2, 0xff, 0x0, 0x7f, 0x2, 0x40, 0x0, 0x9, 0x0, 0x8}, r1, 0xf, r2, 0x3)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bond0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000005e000100"/20, @ANYRES32=r3, @ANYRES8=r0], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r4 = syz_clone(0x400100, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x1, r4, 0x0, 0x40000004, &(0x7f00000006c0))
set_mempolicy(0x8000, &(0x7f0000000300)=0x4, 0x7)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

979.839103ms ago: executing program 4 (id=1018):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x4616, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x3, 0xb, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x1294, 0x2, 0x5})
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file1\x00', 0x0, &(0x7f0000000000), 0xfe, 0x250, &(0x7f0000000300)="$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")
r1 = open(&(0x7f0000000000)='./file1\x00', 0x143142, 0x80)
fadvise64(r1, 0x80000001, 0x80000221, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mount$tmpfs(0x0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000f80), 0xc00, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind', '=relative', @val={0x3a, [0xa]}}}}]})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r2)
sendmsg$nl_generic(r2, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x20, 0x10, 0xf21, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0)
mq_getsetattr(r0, &(0x7f0000000000)={0x800, 0x4, 0x9, 0x9a}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000013c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'macsec0\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=r4, @ANYBLOB="00000000000000001c0012800b0001006d616373656300000c00028006000f"], 0x3c}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9}, 0x0)
r6 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r6, &(0x7f0000000380)={0xc, 0x8, 0x144, {&(0x7f0000001140)}}, 0x10)

841.212561ms ago: executing program 2 (id=1019):
gettid()
r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_devices(r0, 0x0, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x6, 0x0, 0x0, 0x0, 0x9, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x1, @perf_bp={0x0, 0x8}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x3, 0x1, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="24000000190001000000", @ANYRES64], 0x24}}, 0x4000000)
r1 = socket(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f0000000000), 0x4000000000001f2, 0x0)

803.699733ms ago: executing program 2 (id=1020):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_config_ext={0x100000001, 0xdd5}, 0x0, 0x0, 0x10000, 0x2, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f0000000200)=0x7dffeffc)
r1 = socket$caif_stream(0x25, 0x1, 0x0)
recvmsg(r1, &(0x7f0000000700)={0x0, 0x0, 0x0}, 0x40000160)
close(0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x3fffffffc, 0xffffffffffffffff}, 0x102802, 0x0, 0x0, 0x3, 0xfff, 0x8001, 0x7fff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r2 = open$dir(&(0x7f00000002c0)='./bus\x00', 0xb00, 0x142)
r3 = syz_create_resource$binfmt(&(0x7f0000000300)='./file0\x00')
execveat$binfmt(r2, r3, &(0x7f0000000680)={[&(0x7f0000000340)='*%$^#-\x00', &(0x7f0000000380)='/dev/full\x00', &(0x7f0000000400)='\x8c+]*/[.{^\x00', &(0x7f0000000440)='/dev/ttyS3\x00', 0x0, &(0x7f0000000500)='\x00', &(0x7f0000000540)='&[+@\x00', &(0x7f0000000580)='[\x00', &(0x7f0000000640)='\xb6%\x00']}, &(0x7f0000000840)={[&(0x7f0000000740)='/dev/ttyS3\x00', &(0x7f0000000780)='\x00', &(0x7f00000007c0)='/dev/input/event#\x00', &(0x7f0000000800)='vfat\x00']}, 0x100)
lsm_get_self_attr(0x64, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x26a200, 0x59)
fstatfs(r4, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r4, 0x800c6613, &(0x7f0000000880)=@v2={0x2, @adiantum, 0x3, '\x00', @a})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x20, 0x0, 0x301, 0x70bd26, 0x25dfdbfb, {0x1c}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x90}, 0x40400c6)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x11)
openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x200080, 0x0)
r6 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000180)=0xb)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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")
r7 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x57e00}], 0x2, 0x1200, 0x41001, 0x3)
write$P9_RAUTH(r7, &(0x7f0000000040)={0x14, 0x67, 0x1, {0x40, 0x3, 0x3}}, 0x14)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x881}, 0x83992ac82ebb50da)

709.972858ms ago: executing program 5 (id=1021):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0xff, 0x0, 0x0, 0x9, 0x640b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={&(0x7f0000000380), 0x2}, 0x0, 0xa, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
r2 = socket(0x1d, 0x2, 0x6)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/tcp\x00')
pread64(r3, &(0x7f00000000c0)=""/102, 0x66, 0x12f)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'team0\x00', 0x200})
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r4=>0x0})
bind$can_j1939(r2, &(0x7f0000000040)={0x1d, r4, 0x8000000000000003}, 0x18)
sendmsg$can_j1939(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)="cc8f", 0x2}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000000)={0x2001}, 0x10)
r6 = socket(0x1e, 0x4, 0x0)
sendmsg$tipc(r6, &(0x7f0000000100)={&(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x3, {0x1, 0x1, 0x2}}, 0x10, 0x0}, 0x4800)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='gid_map\x00')
preadv(r7, &(0x7f0000000400)=[{&(0x7f0000000040)=""/236, 0xec}], 0x1, 0x3, 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
r8 = syz_io_uring_setup(0x31c5, &(0x7f0000000140)={0x0, 0xd73c, 0x1, 0x0, 0x0, 0x0, r7}, &(0x7f00000001c0), &(0x7f00000003c0))
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r9, &(0x7f0000001240)=[{&(0x7f0000000a40), 0x17b}, {&(0x7f0000001740)="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", 0x17b}, {&(0x7f0000000500)="2a6dfe6b588f0649b7c62468b77834dbabbd4b954da4", 0x16}, {&(0x7f0000001640)="acf5964b4d2aba2c68c363b6bc49a8c7becac3bbb7dfcc8b79d6d4f52be12eeb2b79d208ff301d18aa1e5b70729f3b4aa941103981c5f58d8d4971d20b6aa6c7bc3d371b296f014d7bec9aed7f966e46d306d93dabbef889580d6d6e78ba9c72b644dfe391899db31310e59eb3e734ccda545701b2fc7dbb748af3f4f2f22510c8965985c95e73ec6c46ac80a4a74288351133b2890706681f10d66dec0d89e27fdd35fe7ddfe33b4a8d99acecc1586f6d1d257e22e1bf7e390d6d4dbe967e616ccaba4ce0491838ad8469dbfe3c4280330a5c7fc0192c113affde67d5805e2181281f44c32efa30", 0xe8}, {&(0x7f0000000d00)="35b67d93a84d33eb70ff581e3a9d9d0da6dc5d9e513fd7f0d6a7e1a170a9fd02e1e8ab7be3d54f2942d30bb052ff1db99d44bbba505f4ec35bbda360e6b433a93f22eaa64d7024893d4a99395bd583c81e435a0b3c52004bf44246828d6b76a7bdae3a6cfbb9fb", 0x67}, {&(0x7f0000000d80)="3737510ba7998eb0a92eb479b9ac482e6adde06f82a7ed40961de2f2044db9ddc090c9ad2b99c28af1c0147e8302afcf6fdcf929bec6a1a7739a151623ff9e7b9f32748cb18596b18766bb9ec5d09bce07fd8016aeef37d95a4474f8c7a9299958fe", 0x62}, {0x0}, {&(0x7f0000000c00)="41c7c229ebe174b727f00ec3f1d02a27c4bab19ef5ff046bb5aaec1fa8b6d8b49c4ca80426f1d27aaa0a3a5f74b020a430b1cc1f485e8c9013fdfe42f6f11c3e2686e59c5a7738096c5826f4443b74e6640b8b42e5b049f8dd9b7ef8aca94c0a7f7553c48bca6b78498c8f52bea41749243422a96cabd158f601376639e11bd9acdcca6296ab8f4212d1c47c37329f2aa90197826b918c914e4d11f8a79eaaddf1", 0xa1}, {&(0x7f0000001040)="02e5570de9bd58f3ae924514eb95d3085d5b4ffc3ad1b8cdf7f7086f87dfad4ff604ecaacc625a44eea266710d093ac57e807436b57559bc78129208b4f028c7e81351dfef9e381d85c5d7f74e505af08f656fc416ece1fe515b610553eae1493e", 0x61}], 0x9)
syz_io_uring_setup(0x263f, &(0x7f0000000840)={0x0, 0xb8da, 0x186a, 0x0, 0x0, 0x0, r8}, 0x0, 0x0)
syz_io_uring_setup(0x3c5f, &(0x7f0000000240)={0x0, 0x20, 0x27, 0x2, 0x0, 0x0, r8}, &(0x7f00000002c0), &(0x7f0000000300))
copy_file_range(r8, &(0x7f00000004c0)=0x3ff, r9, &(0x7f0000000580)=0x7, 0x6, 0x0)
r10 = creat(&(0x7f0000000200)='./file1\x00', 0x12e)
close(r10)
r11 = socket$unix(0x1, 0x5, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040), 0x200000, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r10}, 0x2c, {'wfdno', 0x3d, r11}})
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)

582.793065ms ago: executing program 5 (id=1022):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@msize={'msize', 0x3d, 0xd00200}}, {@version_9p2000}], [], 0x6b}}) (fail_nth: 2)

295.930152ms ago: executing program 1 (id=1023):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x10000800)

295.754162ms ago: executing program 5 (id=1024):
syz_mount_image$msdos(&(0x7f0000000540), &(0x7f0000000580)='./file0\x00', 0x10040, &(0x7f00000005c0), 0x1, 0x52e, &(0x7f0000000600)="$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")

295.101392ms ago: executing program 3 (id=1025):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x4004010}, 0x50)

275.223944ms ago: executing program 1 (id=1026):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x0, 0x307, &(0x7f0000000200)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = socket$packet(0x11, 0x3, 0x300)
getsockopt$packet_int(r0, 0x107, 0x14, 0x0, &(0x7f00000004c0))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="dfffffff", @ANYRES16=r2, @ANYBLOB="010027bd7000000000001a000000"], 0x34}, 0x1, 0x0, 0x0, 0x4000800}, 0x40000)
futex(&(0x7f0000000080), 0x5, 0x0, 0x0, &(0x7f0000000100), 0x90000002)

240.138696ms ago: executing program 3 (id=1027):
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f00000000c0)=0x400003)
ioctl$PPPIOCSMAXCID(r2, 0x40047451, &(0x7f0000000200)=0x8)
ioctl$PPPIOCSFLAGS1(r2, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r2, &(0x7f00000002c0)=[{&(0x7f0000000300)='\x00!', 0x2}], 0x1, 0x7, 0x1)

131.796812ms ago: executing program 5 (id=1028):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f0000000300)={'sit0\x00', &(0x7f00000002c0)={@empty, @private=0xa010102, 0x5, 0x8}})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'lo\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x20, 0x14, 0x503, 0x0, 0x0, {0x2, 0x18, 0x0, 0x0, r3}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'lo\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=@ipv4_newaddr={0x34, 0x14, 0x503, 0x800000, 0x25dfdbff, {0x2, 0x18, 0x20, 0xff, r6}, [@IFA_LOCAL={0x8, 0x2, @loopback}, @IFA_LABEL={0x14, 0x3, 'dvmrp0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0xc090}, 0x20008840)
ioctl$sock_inet_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000180)={'lo\x00', {0x2, 0x4e21, @empty=0x7f000000}})
r7 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x248, 0x0, 0x11, 0x148, 0xe0, 0x0, 0x1b0, 0x2a8, 0x2a8, 0x1b0, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x8800, 0xc0, 0xe0, 0x0, {}, [@common=@inet=@set4={{0x50}, {{0x0, 0x3}, {{0x8000000000007}, 0x6}, {{0x4}, 0x1}}}]}, @unspec=@NOTRACK={0x20}}, {{@ip={@multicast2, @remote, 0x0, 0x0, 'vlan0\x00', 'macvlan1\x00', {}, {0xff}, 0xff}, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x7, 0x1, 0x4, 0x6], 0x2, 0x3}, {0x0, [0x4, 0x1, 0x3, 0x3, 0x0, 0x4], 0x3, 0x4}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a8)

131.552872ms ago: executing program 1 (id=1029):
r0 = perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x27, 0x1, 0x1, 0x0, 0x0, 0x8, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x8201, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xc, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="180000007f00000000000000f1ffffff911185000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r1 = fsopen(&(0x7f0000000240)='ramfs\x00', 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r3, &(0x7f00000000c0), 0x10)
r4 = dup3(r3, r2, 0x0)
sendmsg$can_bcm(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x4640}, 0x2}, 0x2c004000)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
getpgrp(0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$dupfd(r5, 0x406, r1)
writev(r0, 0x0, 0x0)
fcntl$dupfd(r0, 0x406, r0)
brk(0x9)
r6 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x1954, 0x0, 0x4, 0xce}, &(0x7f0000000300)=<r7=>0x0, &(0x7f0000000580)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000740)=@IORING_OP_TIMEOUT={0xb, 0x49, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r6, 0x6e2, 0x3900, 0x3, 0x0, 0x0)
add_key$keyring(&(0x7f0000000380), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
clock_nanosleep(0x2, 0x1000000, &(0x7f0000000040)={0x77359400}, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

75.456075ms ago: executing program 3 (id=1030):
gettid()
r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_devices(r0, 0x0, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x6, 0x0, 0x0, 0x0, 0x9, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x1, @perf_bp={0x0, 0x8}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x3, 0x1, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="24000000190001000000", @ANYRES64], 0x24}}, 0x4000000)
r1 = socket(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f0000000000), 0x4000000000001f2, 0x0)

74.949605ms ago: executing program 5 (id=1031):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x2, 0xf4039, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x147b7e, 0x0, @perf_bp={0x0, 0x6}, 0x9092, 0x0, 0x43a1bd76, 0x9, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x4000000000, 0xffffffffffffffff, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="61154f000000000061136c0000000000bfa000000000000014000000ee0016055e03010000000000160500000001000069163e0000000000bf07000000000000260507000fff07206706000020000000140600000ee60060bf500000000000002f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05002000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe0185473d51b546cad3f1d5ace0600006e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc0da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e0dee5eb106774a8f3e6916dfec88158f0200000000c8fb730a5c1bf2b2bb71a629361997a75fd552bdc206438b8ef4901fd03c16dfda44e2a2235c8ac86d8a297dff0445a15f21dce431e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076eb685d00c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932fb3bba54b3a6aa57f1ad2e99e0e67ab9ff16d20000009f0f53acbb40b4f8e2738270001562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000000000000000004000bc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc47287cd31cc43010000007b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3c40dfd1970a55c22fe3a5ac000000000000000000000000000000c1eb2d91fb79ea00000000815266b2c9e1bfadc7498e9dda5d000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eba9000000000000003cc3aa39ee4b1386bab561cda886fa642994cacd473b543ccb5f0d7b63924f17c67b13631822a11dc3c693962895496d4f6e9cc54db6c7205a6b26f92121ef53e553acdf42068fff496d2da7d6327f31d7c8cc5d325c5379b0363ce8bd1f61b007e1ff5f1be1969a1ba791ad46d800000000c7f26a0337302f3b41eae59809fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b3042065acaa10856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710eec53f1b11cced7bc3c8da0c44d2fbf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db80300c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d999d788535a4d3114dbc7e2bf2402a75fd7a55733360040855ed5d1c0d634fc5fb38f8709d87b27f8a5d9121fdc058447b728f134f72062fc4b1ca0780b1a7af137ff7b4ff139604faf0453b65586f65c7943d56b52f06c870edf0c5d744b5272b44c23480b2bdbff947c4dfa108cbb88202eeb81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2cc17dc4a29b9cba8ded5de8206c812439ab129ae818837ee1562078fc524b3baf49a0be9bb7d958d5e87c6c09bf71a894bad62934782cc308e936d7637e07c4a2a3bc87b0da20000d9ef418cf19e7a8c4c328be0ce91798adc2dca871073f6bd61940aabc86b94f8cbde4d47060400e722a6a2af483ad0d3415ed0f9db009acaba9eaea93f811d434e00000000000000000000d154672fea96aedf346279ec00000000000000000000d535d41b0067f01e2e54b9154d876020b669640ead4ca44631fadf7c4ac39a1b331dbdcd52b36df021b731ef1f92330d347f88ced5c1aaadbcdd8d2257e3a9a7c7494fadf9be36f7a2334ee6e9446fa1fd486f85d672a77dc5bd21463994d49f12016305a1e394d292b66840fe32b40ad665d241a8b8a32b3100450c32832789aa8a096f41201b585cd76631c88cf958e9e9047f5af1730c5e83db12460a0768fd4b62be6c41eed307048bac8d1f7f164574241e06027654b248dcc38749eee0c1ee7c61b3f6411a559c3d45637b11e440ed5a99109b8e71d28c3d677af5f0499c6d3fc6a129775056958c9df824ebe5fa9fb306b24a8a8334910627d03efe69d4b61c4345f048c5da8aca16cea848fa77d2507c920a6bd654b00e07789382ed902c80deeff2fd5c78f42e4353e5360c3e55962efd1331e6736eaf4ee27736fa54803ee8ec1a15266ffcd8b30368740b584c2559e691e542cab3d49db327db62328f159d1e0900b3e23e84dedcd1377aa15dbeab7db181bd66980c3557c7d9f7377fcb6023accb5c368a121acf70e5f4c3f2a0ea07011c7149ea979cab2ee65cf7ffa29152b7a8fed89575e6e6fd77d4d9463d21775abac886ee6a1f2d7d8523840438a73d6307a87e2f525867fc3af7ab74520a773ae26bae74cdd405a211e8833e1ba523cde51d04a7ca6732"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x26, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7fffffff}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000640)={r1, 0xe0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f00000001c0)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, &(0x7f0000000240)=[0x0, 0x0], &(0x7f00000002c0)=[0x0], <r2=>0x0, 0x90, &(0x7f0000000300)=[{}, {}], 0x10, 0x10, &(0x7f0000000340), &(0x7f0000000380), 0x8, 0xed, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r4, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x19, &(0x7f0000000140)=0x400030, 0x4)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x32, &(0x7f00000006c0)={@broadcast, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x6, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)
socket(0x10, 0x803, 0x0)
r5 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
io_setup(0x7d, &(0x7f0000000600)=<r6=>0x0)
syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000000)='./file1\x00', 0xa0000c, &(0x7f0000000980)=ANY=[], 0x5, 0x818, &(0x7f00000013c0)="$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")
r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r7, &(0x7f0000000400)=""/230, 0xe6)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000007c0)=ANY=[@ANYBLOB="3c0000001000030428b570000000000000000000211950ae68b03ece20c3052839ee2e7d1528f35b987a0e72c4ac1575d7f0af87476a536da5bf4e19607e7be5157a0c113f1f399c7a52008263ebe0d4eac2a2ec10ccfdcac11b2336e6d2fc45af50aa5d011886777244aa3bdd86ef09fd870b772b58018d05416aa0cefd1cd9741be4c76ad19523bdfcbd259542065097553f62a529ece9759c56aeab8cca6525d6e8687912547fdf2936478e2435d67007ebb82ca2d58ba428a2ee1cbe9eba953672928795a5d03f", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b0001006c6f7770616e00000400028008000500", @ANYRES32=0x0, @ANYBLOB], 0x3c}, 0x1, 0xba01, 0x0, 0x4004}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001180)=ANY=[@ANYBLOB="400000001000030400000000fedbdf2500000300", @ANYRES32=0x0, @ANYBLOB="201000000000000020001280080001006774700014000280050005000000000008005f9ac170228811d50300c5ce0000b5ff7ce95287e597583bcb33d04dda41eba786022af57319106553fae4cc5e11ecb9def55c442354191c9a0fada8b451c384f7b5e78570a2a0c8afbaf7fb9033e9357a067ded90ad845d817c5941380c58116bbef9c58cf14d4c8c3338c4094a377c7b55ba6f831fa6957c1c8d5f0a8f0755e8d693312e8091e7639f88187819377ddca3"], 0x40}, 0x1, 0x0, 0x0, 0x40001}, 0x40080)
io_submit(r6, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x0, r5, &(0x7f0000000000)="96", 0x1, 0x0, 0x0, 0x0, r5}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff}])
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0xff, 0x0, 0x0, 0x0, 0x7, 0x4a604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0xc162, 0x10000, 0x0, 0x6, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$tipc(&(0x7f0000001ec0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x30, r11, 0x1, 0x70bd25, 0x0, {{}, {}, {0x14, 0x19, {0x80000000, 0xfffffff9, 0x1, 0x5}}}}, 0x30}, 0x1, 0x0, 0x0, 0x20040803}, 0x20000000)
fcntl$getownex(r3, 0x10, &(0x7f0000000040))
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
getsockopt$inet6_mptcp_buf(r5, 0x11c, 0x4, &(0x7f00000005c0)=""/39, &(0x7f0000000680)=0x27)
sendmsg$DEVLINK_CMD_RATE_DEL(r12, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)={0x14, r13, 0x1, 0x0, 0x25dfdbfd, {0x54}}, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x8000)

72.809025ms ago: executing program 4 (id=1032):
ioctl$IOC_PR_RELEASE(0xffffffffffffffff, 0x401070ca, &(0x7f00000007c0)={0x3, 0xd})
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000680)='/sys/power/disk', 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x10, &(0x7f0000000000), 0x1, 0x4e9, &(0x7f00000000c0)="$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")
io_setup(0x20, &(0x7f0000001140)=<r1=>0x0)
r2 = socket(0xa, 0x5, 0x0)
getsockopt$inet_sctp_SCTP_NODELAY(r2, 0x84, 0x3, &(0x7f0000000080), &(0x7f0000000140)=0x4)
io_submit(r1, 0x4, &(0x7f0000000880)=[&(0x7f0000002040)={0xf, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f00000005c0)="fc", 0x1, 0x2}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x8, 0x40b, r0, &(0x7f0000000600)="9f52562408e2a2e2c0c826ba0a54b65b3e1bd3346199ece5119c04a0df943f0bd9bc22f91aac40cbe4f5a05176047bbed74e3318a709c4d370d974558cb059e665d326bd58cffa2a96d2509ff1f59e7531dddf00aaae9097b4aaec35cd1d12fc6fe186d00906faa10000890c0b", 0x6d, 0x8, 0x0, 0x1, r0}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x3, 0x3, r0, &(0x7f0000000700)="cbbfa1b03e6ec516c3d56ebd8d37c260fcbd16b26219449a84b05e94d4483dddb600a597f626be515bbfad5cc02df18fb1c3d676b06f3a6f6945d31109152e1c6e81d5819ec5d39a099374900a1c334026984a3ffb1dbfca9ac6b3002d85d0e4892603e96a13615e267707f166", 0x6d, 0x7, 0x0, 0x3, r0}, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x7, 0x37a5, r0, &(0x7f00000008c0)="6455abe5cd2d40c428730afcc78de1c5b2aa7af8c5967badebbef21749ab929f363ceaec40660ba54f670dc0af637bae46a430b7cbb0155e1765f22e0b492cc5f9d6a70ed9258b6990ca3b58edfdf70ce0e264a8042815fcf96069e63afcb8d20b9526f4e88e18b68ab775a5de4f07878a5c72fae955aba8f7501c568008151d", 0x80, 0x3, 0x0, 0x0, r0}])

0s ago: executing program 3 (id=1033):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x9}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000340)={{0x80, 0x1}, 'port0\x00', 0x100, 0x131845, 0x0, 0x0, 0x7, 0x0, 0x100000, 0x0, 0x1})
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80, 0x82}, 'port0\x00', 0x25, 0x60041, 0x8000, 0xfffffffe, 0x9, 0x0, 0x5, 0x0, 0x7, 0x9})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000200)={{0x80, 0x4}, 'port1\x00', 0x89, 0x0, 0x0, 0xfffffeff, 0x0, 0x0, 0x200000, 0x0, 0x4875c99660ff2b28})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x8, 0xf9, 0x7ffc1ffb}]})
getpgid(0x0)
pause()

kernel console output (not intermixed with test programs):

nk: failed to add syz_tun
[   52.378301][ T3327] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   52.392860][ T4089] loop3: detected capacity change from 0 to 764
[   52.417423][ T4089] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   52.464572][ T4099] loop2: detected capacity change from 0 to 128
[   52.479361][ T4099] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   52.505804][ T4099] ext4 filesystem being mounted at /44/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   52.553920][ T4105] loop1: detected capacity change from 0 to 256
[   52.571422][ T4107] 9p: Bad value for 'rfdno'
[   52.729315][ T4112] 9p: Bad value for 'wfdno'
[   52.911580][ T4129] netlink: 'syz.1.213': attribute type 27 has an invalid length.
[   52.959089][ T4132] loop1: detected capacity change from 0 to 764
[   52.977525][ T4132] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   53.048737][ T4139] loop3: detected capacity change from 0 to 256
[   53.222360][ T4152] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.253582][ T4152] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.267220][ T4152] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   53.282372][ T4152] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.223: Failed to acquire dquot type 0
[   53.315349][ T3323] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   53.347594][ T4164] netlink: 44 bytes leftover after parsing attributes in process `syz.3.226'.
[   53.356566][ T4164] netlink: 16 bytes leftover after parsing attributes in process `syz.3.226'.
[   53.421475][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.431717][ T4174] capability: warning: `syz.3.230' uses 32-bit capabilities (legacy support in use)
[   53.458043][ T4170] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   53.466948][ T4174] program syz.3.230 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   53.628893][ T4185] netlink: 36 bytes leftover after parsing attributes in process `syz.2.235'.
[   53.667651][ T4184] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.687965][ T4184] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.728892][ T4184] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   53.768633][ T4184] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.234: Failed to acquire dquot type 0
[   53.860066][ T4201] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.873288][ T4201] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.902272][ T4201] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   53.922550][ T4201] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.240: Failed to acquire dquot type 0
[   54.055054][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.146050][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.199963][ T4224] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   54.213228][ T4224] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   54.222365][ T4224] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   54.234400][ T4224] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   54.281226][ T4224] System zones: 0-2, 18-18, 34-35
[   54.316609][ T4224] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   54.386540][ T4224] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[   54.411085][ T4235] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=104 sclass=netlink_audit_socket pid=4235 comm=syz.1.252
[   54.424186][ T4224] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   54.439761][ T4224] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   54.453479][ T4224] EXT4-fs error (device loop4): ext4_generic_delete_entry:2666: inode #2: block 3: comm syz.4.249: bad entry in directory: inode out of bounds - offset=24, inode=134217739, rec_len=20, size=2048 fake=0
[   54.512147][ T4224] EXT4-fs error (device loop4) in ext4_delete_entry:2737: Corrupt filesystem
[   54.527463][ T4245] bond1: option mode: unable to set because the bond device has slaves
[   54.537275][ T4245] rdma_rxe: rxe_newlink: failed to add syz_tun
[   54.650476][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.889590][ T4269] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   55.058208][ T4275] netlink: 'syz.2.270': attribute type 2 has an invalid length.
[   55.066013][ T4275] netlink: 'syz.2.270': attribute type 1 has an invalid length.
[   55.177129][ T4275] netlink: 'syz.2.270': attribute type 10 has an invalid length.
[   55.400278][ T4269] team0: No ports can be present during mode change
[   55.437406][   T31] bond1: (slave bond0): link status definitely down, disabling slave
[   55.459764][   T31] bond1: now running without any active interface!
[   55.512459][ T4315] FAULT_INJECTION: forcing a failure.
[   55.512459][ T4315] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.525945][ T4315] CPU: 1 UID: 0 PID: 4315 Comm: syz.2.283 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   55.526043][ T4315] Tainted: [W]=WARN
[   55.526052][ T4315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   55.526069][ T4315] Call Trace:
[   55.526078][ T4315]  <TASK>
[   55.526089][ T4315]  __dump_stack+0x1d/0x30
[   55.526120][ T4315]  dump_stack_lvl+0x95/0xd0
[   55.526174][ T4315]  dump_stack+0x15/0x1b
[   55.526275][ T4315]  should_fail_ex+0x263/0x280
[   55.526302][ T4315]  should_fail+0xb/0x20
[   55.526325][ T4315]  should_fail_usercopy+0x1a/0x20
[   55.526354][ T4315]  _copy_from_user+0x1c/0xb0
[   55.526382][ T4315]  get_user_ifreq+0x52/0x110
[   55.526439][ T4315]  ieee802154_sock_ioctl+0x71/0x250
[   55.526487][ T4315]  sock_do_ioctl+0x73/0x230
[   55.526573][ T4315]  sock_ioctl+0x41b/0x610
[   55.526600][ T4315]  ? mutex_lock+0x57/0x90
[   55.526622][ T4315]  ? __pfx_sock_ioctl+0x10/0x10
[   55.526650][ T4315]  __se_sys_ioctl+0xce/0x140
[   55.526747][ T4315]  __x64_sys_ioctl+0x43/0x50
[   55.526778][ T4315]  x64_sys_call+0x14b0/0x3000
[   55.526812][ T4315]  do_syscall_64+0xc0/0x2a0
[   55.526841][ T4315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.526879][ T4315] RIP: 0033:0x7fe31994acb9
[   55.526901][ T4315] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   55.526920][ T4315] RSP: 002b:00007fe3183a7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   55.526941][ T4315] RAX: ffffffffffffffda RBX: 00007fe319bc5fa0 RCX: 00007fe31994acb9
[   55.526960][ T4315] RDX: 0000200000000cc0 RSI: 0000000000008916 RDI: 0000000000000004
[   55.526976][ T4315] RBP: 00007fe3183a7090 R08: 0000000000000000 R09: 0000000000000000
[   55.527062][ T4315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.527076][ T4315] R13: 00007fe319bc6038 R14: 00007fe319bc5fa0 R15: 00007ffc83875888
[   55.527098][ T4315]  </TASK>
[   55.796413][ T4321] EXT4-fs: Ignoring removed oldalloc option
[   55.832943][ T4326] 9p: Bad value for 'rfdno'
[   55.912975][ T4321] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c028, mo2=0002]
[   55.937137][ T4321] System zones: 0-7
[   55.943678][ T4321] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.975762][ T4321] EXT4-fs error (device loop3): ext4_ext_precache:632: inode #2: comm syz.3.285: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[   56.015068][   T29] kauditd_printk_skb: 503 callbacks suppressed
[   56.015084][   T29] audit: type=1326 audit(1769066217.545:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4339 comm="syz.4.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   56.022203][ T4335] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.056867][   T29] audit: type=1326 audit(1769066217.545:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4339 comm="syz.4.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   56.081536][   T29] audit: type=1326 audit(1769066217.545:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4339 comm="syz.4.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   56.121462][ T4335] ext4 filesystem being mounted at /43/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   56.142965][   T29] audit: type=1326 audit(1769066217.675:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4339 comm="syz.4.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   56.177225][   T29] audit: type=1326 audit(1769066217.675:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4339 comm="syz.4.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   56.201544][ T4321] EXT4-fs (loop3): Remounting filesystem read-only
[   56.216657][   T29] audit: type=1400 audit(1769066217.745:1259): avc:  denied  { name_bind } for  pid=4346 comm="syz.1.294" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   56.247043][   T29] audit: type=1400 audit(1769066217.745:1260): avc:  denied  { node_bind } for  pid=4346 comm="syz.1.294" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   56.288675][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.300317][   T29] audit: type=1400 audit(1769066217.815:1261): avc:  denied  { bind } for  pid=4350 comm="syz.4.295" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   56.347915][ T4357] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #2: comm syz.0.292: corrupted inode contents
[   56.362436][   T29] audit: type=1326 audit(1769066217.895:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4355 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   56.390256][ T4356] set_capacity_and_notify: 10 callbacks suppressed
[   56.390275][ T4356] loop4: detected capacity change from 0 to 512
[   56.405546][ T4357] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #2: comm syz.0.292: mark_inode_dirty error
[   56.419374][   T29] audit: type=1326 audit(1769066217.915:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4355 comm="syz.4.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   56.444269][ T4357] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #2: comm syz.0.292: corrupted inode contents
[   56.458614][ T4357] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.292: mark_inode_dirty error
[   56.472567][ T4356] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.485634][ T4356] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.501834][ T4356] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   56.516522][ T4356] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.299: Failed to acquire dquot type 0
[   56.545973][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.611924][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.623294][ T4362] loop2: detected capacity change from 0 to 256
[   56.646606][ T4366] netlink: 'syz.3.297': attribute type 2 has an invalid length.
[   56.654486][ T4366] netlink: 'syz.3.297': attribute type 1 has an invalid length.
[   56.671464][ T4364] 9p: Bad value for 'rfdno'
[   56.711025][ T4366] loop3: detected capacity change from 0 to 512
[   56.793752][ T4374] __nla_validate_parse: 17 callbacks suppressed
[   56.793774][ T4374] netlink: 8 bytes leftover after parsing attributes in process `syz.3.297'.
[   56.872218][ T4376] ieee802154 phy0 wpan0: encryption failed: -22
[   57.048662][ T4392] loop3: detected capacity change from 0 to 764
[   57.079963][ T4396] loop0: detected capacity change from 0 to 512
[   57.087806][ T4392] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   57.089679][ T4396] EXT4-fs (loop0): orphan cleanup on readonly fs
[   57.102331][ T4396] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[   57.127461][ T4396] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[   57.142536][ T4396] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.313: attempt to clear invalid blocks 2 len 1
[   57.156172][ T4396] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.313: invalid indirect mapped block 1819239214 (level 0)
[   57.173018][ T4396] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.313: invalid indirect mapped block 1819239214 (level 1)
[   57.240957][ T4396] EXT4-fs (loop0): 1 truncate cleaned up
[   57.262859][ T4396] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   57.285268][ T4405] netlink: 36 bytes leftover after parsing attributes in process `syz.3.316'.
[   57.295098][ T4405] netlink: 8 bytes leftover after parsing attributes in process `syz.3.316'.
[   57.304857][ T4405] netlink: 4 bytes leftover after parsing attributes in process `syz.3.316'.
[   57.316197][ T4396] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[   57.326130][ T4396] EXT4-fs error (device loop0): __ext4_remount:6789: comm syz.0.313: Abort forced by user
[   57.372545][ T4396] EXT4-fs (loop0): Remounting filesystem read-only
[   57.379204][ T4396] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   57.403176][ T4413] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.407565][ T4413] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   57.457417][   T31] bond1: (slave bond0): link status definitely up, 20000 Mbps full duplex
[   57.457450][   T31] bond1: (slave bond0): making interface the new active one
[   57.458920][   T31] bond1: active interface up!
[   57.471871][ T4413] can: request_module (can-proto-0) failed.
[   57.563061][ T4416] syz_tun (unregistering): left allmulticast mode
[   57.569639][ T4416] syz_tun (unregistering): left promiscuous mode
[   57.576180][ T4416] bridge0: port 3(syz_tun) entered disabled state
[   57.707569][ T4430] loop2: detected capacity change from 0 to 2048
[   57.714442][ T4430] EXT4-fs: Ignoring removed oldalloc option
[   57.739497][ T4430] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c028, mo2=0002]
[   57.754519][ T4430] System zones: 0-7
[   57.759741][ T4416] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.777633][ T4430] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.797945][ T4430] EXT4-fs error (device loop2): ext4_ext_precache:632: inode #2: comm syz.2.325: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[   57.829097][ T4430] EXT4-fs (loop2): Remounting filesystem read-only
[   57.919411][   T37] bridge_slave_1: left allmulticast mode
[   57.925158][   T37] bridge_slave_1: left promiscuous mode
[   57.931032][   T37] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.956192][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.982507][   T37] bridge_slave_0: left allmulticast mode
[   57.988282][   T37] bridge_slave_0: left promiscuous mode
[   57.994125][   T37] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.033126][ T4443] sg_write: data in/out 49276/1 bytes for SCSI command 0x6-- guessing data in;
[   58.033126][ T4443]    program syz.2.330 not setting count and/or reply_len properly
[   58.061096][ T4450] netlink: 8 bytes leftover after parsing attributes in process `syz.1.332'.
[   58.142928][ T4463] netlink: 8 bytes leftover after parsing attributes in process `syz.1.332'.
[   58.151862][ T4463] netlink: 4 bytes leftover after parsing attributes in process `syz.1.332'.
[   58.171224][ T4460] loop4: detected capacity change from 0 to 512
[   58.179813][ T4462] loop2: detected capacity change from 0 to 764
[   58.186504][   T37] bond1 (unregistering): (slave bond0): Releasing active interface
[   58.207400][   T37] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   58.216472][ T4462] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   58.239784][ T4460] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.264817][   T37] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   58.311138][   T37] bond0 (unregistering): Released all slaves
[   58.327782][ T4470] loop3: detected capacity change from 0 to 512
[   58.344590][ T4460] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.358996][   T37] bond1 (unregistering): Released all slaves
[   58.383514][ T4470] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.406110][ T4460] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   58.427110][ T4450] bond1: option mode: unable to set because the bond device is up
[   58.435277][ T4474] syz1: rxe_newlink: already configured on syz_tun
[   58.457177][ T4470] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.483758][ T4460] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.335: Failed to acquire dquot type 0
[   58.492455][ T4463] 8021q: adding VLAN 0 to HW filter on device bond0
[   58.495880][   T12] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28
[   58.521899][ T4470] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   58.535787][   T12] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28
[   58.555020][ T4470] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.336: Failed to acquire dquot type 0
[   58.569664][ T4463] bond1: (slave bond0): making interface the new active one
[   58.579907][ T4463] bond1: (slave bond0): Enslaving as an active interface with an up link
[   58.589322][   T12] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28
[   58.630062][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.652596][   T12] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28
[   58.665090][   T37] hsr_slave_0: left promiscuous mode
[   58.672434][   T37] hsr_slave_1: left promiscuous mode
[   58.673174][   T12] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28
[   58.688433][   T12] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28
[   58.707487][   T37] batman_adv: batadv0: Removing interface: batadv_slave_0
[   58.730936][   T37] batman_adv: batadv0: Removing interface: batadv_slave_1
[   58.799536][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.821673][ T4498] netlink: 80 bytes leftover after parsing attributes in process `syz.3.342'.
[   58.845598][ T4502] netlink: 8 bytes leftover after parsing attributes in process `syz.4.339'.
[   58.896887][   T37] team0 (unregistering): Port device team_slave_1 removed
[   58.915394][   T37] team0 (unregistering): Port device team_slave_0 removed
[   58.937470][ T4510] netlink: 8 bytes leftover after parsing attributes in process `syz.4.339'.
[   58.972245][ T4502] bond1: option mode: unable to set because the bond device has slaves
[   58.988474][ T4510] rdma_rxe: rxe_newlink: failed to add syz_tun
[   59.010122][ T4513] loop2: detected capacity change from 0 to 256
[   59.048831][ T4513] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   59.091971][ T3831] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4
[   59.099908][ T3831] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2
[   59.113137][ T4523] netlink: 'syz.1.346': attribute type 2 has an invalid length.
[   59.120938][ T4523] netlink: 'syz.1.346': attribute type 1 has an invalid length.
[   59.136921][ T3831] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x3
[   59.170715][ T3831] hid-generic 0000:3000000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   59.263155][ T4437] chnl_net:caif_netlink_parms(): no params data found
[   59.302764][ T4530] fido_id[4530]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   59.348618][ T4544] EXT4-fs: Ignoring removed oldalloc option
[   59.370876][ T4544] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c028, mo2=0002]
[   59.387029][ T4544] System zones: 0-7
[   59.409191][ T4544] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.431676][ T4437] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.438837][ T4437] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.446200][ T4437] bridge_slave_0: entered allmulticast mode
[   59.453253][ T4437] bridge_slave_0: entered promiscuous mode
[   59.461826][ T4437] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.469139][ T4437] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.478770][ T4437] bridge_slave_1: entered allmulticast mode
[   59.486296][ T4437] bridge_slave_1: entered promiscuous mode
[   59.506709][ T4544] EXT4-fs error (device loop1): ext4_ext_precache:632: inode #2: comm syz.1.351: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[   59.542880][ T4561] bond1: option mode: unable to set because the bond device has slaves
[   59.555383][ T4437] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.588478][ T4437] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.604599][ T4566] netlink: 'syz.3.356': attribute type 10 has an invalid length.
[   59.628222][ T4544] EXT4-fs (loop1): Remounting filesystem read-only
[   59.637522][ T4566] bridge0: port 3(syz_tun) entered disabled state
[   59.644059][ T4566] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.651390][ T4566] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.674923][ T4570] netlink: 'syz.2.357': attribute type 2 has an invalid length.
[   59.682871][ T4570] netlink: 'syz.2.357': attribute type 1 has an invalid length.
[   59.694045][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.717410][ T4566] rdma_rxe: rxe_newlink: failed to add syz_tun
[   59.744081][ T4573] netlink: 'syz.1.358': attribute type 27 has an invalid length.
[   59.770645][ T4437] team0: Port device team_slave_0 added
[   59.803487][ T4437] team0: Port device team_slave_1 added
[   59.811162][ T4575] netlink: 'syz.2.359': attribute type 27 has an invalid length.
[   59.834761][ T4578] netlink: 'syz.3.360': attribute type 2 has an invalid length.
[   59.842516][ T4578] netlink: 'syz.3.360': attribute type 1 has an invalid length.
[   59.862425][ T4437] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.869489][ T4437] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   59.895613][ T4437] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.932890][ T4437] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.940099][ T4437] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   59.966541][ T4437] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   60.069054][ T4437] hsr_slave_0: entered promiscuous mode
[   60.075309][ T4437] hsr_slave_1: entered promiscuous mode
[   60.093035][ T4437] debugfs: 'hsr0' already exists in 'hsr'
[   60.098912][ T4437] Cannot create hsr debugfs directory
[   60.108227][ T4601] netlink: 'syz.1.364': attribute type 27 has an invalid length.
[   60.259753][ T4613] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   60.390640][ T4625] ext4 filesystem being mounted at /100/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   60.413166][ T4437] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   60.428446][ T4437] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   60.441884][ T4437] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   60.451042][ T4633] bond1: option mode: unable to set because the bond device has slaves
[   60.459546][ T4437] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   60.494284][ T4625] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #2: comm syz.3.372: corrupted inode contents
[   60.507789][ T4633] syz1: rxe_newlink: already configured on syz_tun
[   60.546056][ T4437] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.571248][ T4625] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #2: comm syz.3.372: mark_inode_dirty error
[   60.583132][   T93] bond1: (slave bond0): link status definitely down, disabling slave
[   60.607019][   T93] bond1: now running without any active interface!
[   60.622459][ T4437] 8021q: adding VLAN 0 to HW filter on device team0
[   60.630194][ T4625] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #2: comm syz.3.372: corrupted inode contents
[   60.665610][ T4625] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.372: mark_inode_dirty error
[   60.666458][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.684323][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.745645][  T922] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.752863][  T922] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.943983][ T4664] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   60.955864][ T4437] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.985085][ T4666] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.009922][ T4666] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   61.050345][ T4666] __quota_error: 534 callbacks suppressed
[   61.050421][ T4666] Quota error (device loop3): write_blk: dquota write failed
[   61.063787][ T4666] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[   61.073798][ T4666] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.384: Failed to acquire dquot type 0
[   61.112485][   T29] audit: type=1400 audit(1769066222.645:1792): avc:  denied  { create } for  pid=4681 comm="syz.4.387" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   61.143771][   T29] audit: type=1400 audit(1769066222.675:1793): avc:  denied  { write } for  pid=4681 comm="syz.4.387" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   61.163175][   T29] audit: type=1326 audit(1769066222.675:1794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4665 comm="syz.3.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1acdacb9 code=0x7ffc0000
[   61.186643][   T29] audit: type=1326 audit(1769066222.675:1795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4665 comm="syz.3.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1acdacb9 code=0x7ffc0000
[   61.344519][ T4437] veth0_vlan: entered promiscuous mode
[   61.371896][ T4437] veth1_vlan: entered promiscuous mode
[   61.381441][   T29] audit: type=1400 audit(1769066222.915:1796): avc:  denied  { ioctl } for  pid=4698 comm="syz.4.391" path="socket:[9492]" dev="sockfs" ino=9492 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   61.401076][ T4437] veth0_macvtap: entered promiscuous mode
[   61.449977][ T4703] batman_adv: batadv0: Adding interface: veth1_vlan
[   61.456661][ T4703] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   61.491506][   T29] audit: type=1326 audit(1769066223.025:1797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4704 comm="syz.1.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe4ecfacb9 code=0x7ffc0000
[   61.509620][ T4703] batman_adv: batadv0: Interface activated: veth1_vlan
[   61.515089][   T29] audit: type=1326 audit(1769066223.025:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4704 comm="syz.1.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe4ecfacb9 code=0x7ffc0000
[   61.545367][   T29] audit: type=1326 audit(1769066223.025:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4704 comm="syz.1.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe4ecfacb9 code=0x7ffc0000
[   61.554552][ T4437] veth1_macvtap: entered promiscuous mode
[   61.584196][ T4437] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.594509][ T4437] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.616881][ T4567] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.641087][ T4567] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.658975][ T4567] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.677544][ T4567] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.771460][ T4721] bridge0: port 3(syz_tun) entered blocking state
[   61.778125][ T4721] bridge0: port 3(syz_tun) entered disabled state
[   61.795075][ T4721] syz_tun: entered allmulticast mode
[   61.802516][ T4721] syz_tun: entered promiscuous mode
[   61.822372][ T4725] 9p: Bad value for 'rfdno'
[   61.826441][ T4721] bridge0: port 3(syz_tun) entered blocking state
[   61.833465][ T4721] bridge0: port 3(syz_tun) entered forwarding state
[   61.848630][ T4723] set_capacity_and_notify: 9 callbacks suppressed
[   61.848650][ T4723] loop1: detected capacity change from 0 to 512
[   61.881530][ T4723] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.904874][ T4723] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   61.933339][ T4730] loop3: detected capacity change from 0 to 512
[   61.941556][ T4723] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.398: Failed to acquire dquot type 0
[   61.971966][ T4730] ext4 filesystem being mounted at /107/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   61.998856][ T4730] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #2: comm syz.3.400: corrupted inode contents
[   62.011571][ T4730] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #2: comm syz.3.400: mark_inode_dirty error
[   62.044028][ T4730] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #2: comm syz.3.400: corrupted inode contents
[   62.081885][ T4730] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.400: mark_inode_dirty error
[   62.133701][ T4749] __nla_validate_parse: 20 callbacks suppressed
[   62.133717][ T4749] netlink: 16 bytes leftover after parsing attributes in process `syz.1.405'.
[   62.174795][ T4749] loop1: detected capacity change from 0 to 512
[   62.238239][ T4749] netlink: 40 bytes leftover after parsing attributes in process `syz.1.405'.
[   62.239058][ T4752] netlink: 80 bytes leftover after parsing attributes in process `syz.3.407'.
[   62.249629][ T4749] batman_adv: batadv0: Adding interface: veth1_vlan
[   62.263473][ T4749] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   62.299230][ T4749] batman_adv: batadv0: Interface activated: veth1_vlan
[   62.378328][ T4759] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   62.385811][ T4759] vhci_hcd vhci_hcd.2: invalid port number 96
[   62.392044][ T4759] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[   62.420840][ T4768] loop2: detected capacity change from 0 to 512
[   62.453210][ T4763] loop3: detected capacity change from 0 to 256
[   62.488661][ T4768] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.549406][ T4765] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   62.564796][ T4765] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.411: Failed to acquire dquot type 0
[   62.622265][ T4784] loop1: detected capacity change from 0 to 512
[   62.631428][ T4782] geneve2: entered promiscuous mode
[   62.636696][ T4782] geneve2: entered allmulticast mode
[   62.671111][ T4784] ext4 filesystem being mounted at /73/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   62.693970][ T4789] loop5: detected capacity change from 0 to 512
[   62.706649][ T4789] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   62.718158][ T4784] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.418: corrupted inode contents
[   62.737443][ T4793] FAULT_INJECTION: forcing a failure.
[   62.737443][ T4793] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.750616][ T4793] CPU: 1 UID: 0 PID: 4793 Comm: syz.3.421 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   62.750696][ T4793] Tainted: [W]=WARN
[   62.750706][ T4793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   62.750722][ T4793] Call Trace:
[   62.750731][ T4793]  <TASK>
[   62.750742][ T4793]  __dump_stack+0x1d/0x30
[   62.750773][ T4793]  dump_stack_lvl+0x95/0xd0
[   62.750798][ T4793]  dump_stack+0x15/0x1b
[   62.750890][ T4793]  should_fail_ex+0x263/0x280
[   62.750918][ T4793]  should_fail+0xb/0x20
[   62.750937][ T4793]  should_fail_usercopy+0x1a/0x20
[   62.750961][ T4793]  _copy_from_user+0x1c/0xb0
[   62.750997][ T4793]  io_register_files_update+0x59/0x110
[   62.751028][ T4793]  __se_sys_io_uring_register+0xc72/0xf30
[   62.751060][ T4793]  ? fput+0x8f/0xc0
[   62.751094][ T4793]  ? ksys_write+0x194/0x1a0
[   62.751213][ T4793]  __x64_sys_io_uring_register+0x55/0x70
[   62.751245][ T4793]  x64_sys_call+0x27ad/0x3000
[   62.751277][ T4793]  do_syscall_64+0xc0/0x2a0
[   62.751315][ T4793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.751396][ T4793] RIP: 0033:0x7f7b1acdacb9
[   62.751416][ T4793] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   62.751451][ T4793] RSP: 002b:00007f7b19737028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   62.751474][ T4793] RAX: ffffffffffffffda RBX: 00007f7b1af55fa0 RCX: 00007f7b1acdacb9
[   62.751488][ T4793] RDX: 00002000000000c0 RSI: 0000000000000006 RDI: 0000000000000003
[   62.751506][ T4793] RBP: 00007f7b19737090 R08: 0000000000000000 R09: 0000000000000000
[   62.751518][ T4793] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   62.751534][ T4793] R13: 00007f7b1af56038 R14: 00007f7b1af55fa0 R15: 00007ffc640106f8
[   62.751633][ T4793]  </TASK>
[   62.799052][ T4784] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #2: comm syz.1.418: mark_inode_dirty error
[   62.862044][ T4789] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   62.867390][ T4784] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #2: comm syz.1.418: corrupted inode contents
[   62.979573][ T4784] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.418: mark_inode_dirty error
[   63.169820][ T4814] loop5: detected capacity change from 0 to 256
[   63.286481][ T4821] netlink: 16 bytes leftover after parsing attributes in process `syz.4.432'.
[   63.302097][ T4821] loop4: detected capacity change from 0 to 512
[   63.313187][ T4821] netlink: 8 bytes leftover after parsing attributes in process `syz.4.432'.
[   63.375521][ T4832] netlink: 8 bytes leftover after parsing attributes in process `syz.5.436'.
[   63.391096][ T4832] 8021q: adding VLAN 0 to HW filter on device bond1
[   63.408267][ T4832] netlink: 8 bytes leftover after parsing attributes in process `syz.5.436'.
[   63.417163][ T4832] netlink: 4 bytes leftover after parsing attributes in process `syz.5.436'.
[   63.427742][ T4832] 8021q: adding VLAN 0 to HW filter on device bond0
[   63.437437][ T4832] bond1: (slave bond0): making interface the new active one
[   63.447291][ T4832] bond1: (slave bond0): Enslaving as an active interface with an up link
[   63.463772][ T4832] bridge0: port 3(syz_tun) entered disabled state
[   63.470360][ T4832] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.477691][ T4832] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.488108][ T4832] bridge0: port 3(syz_tun) entered blocking state
[   63.494724][ T4832] bridge0: port 3(syz_tun) entered forwarding state
[   63.501667][ T4832] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.508824][ T4832] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.516265][ T4832] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.523588][ T4832] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.533496][ T4832] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   63.549182][ T4832] rdma_rxe: rxe_newlink: failed to add syz_tun
[   63.664738][ T4842] netlink: 8 bytes leftover after parsing attributes in process `syz.5.440'.
[   63.674444][ T4842] bond1: option mode: unable to set because the bond device has slaves
[   63.684210][ T4842] netlink: 8 bytes leftover after parsing attributes in process `syz.5.440'.
[   63.699259][ T4842] bridge0: port 3(syz_tun) entered disabled state
[   63.705901][ T4842] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.713103][ T4842] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.724305][ T4842] rdma_rxe: rxe_newlink: failed to add syz_tun
[   63.737369][ T1610] bond1: (slave bond0): link status definitely down, disabling slave
[   63.745641][ T1610] bond1: now running without any active interface!
[   63.904085][ T4849] loop5: detected capacity change from 0 to 2048
[   64.096807][ T4879] FAULT_INJECTION: forcing a failure.
[   64.096807][ T4879] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.110570][ T4879] CPU: 1 UID: 0 PID: 4879 Comm: syz.4.453 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   64.110616][ T4879] Tainted: [W]=WARN
[   64.110624][ T4879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   64.110638][ T4879] Call Trace:
[   64.110645][ T4879]  <TASK>
[   64.110683][ T4879]  __dump_stack+0x1d/0x30
[   64.110710][ T4879]  dump_stack_lvl+0x95/0xd0
[   64.110734][ T4879]  dump_stack+0x15/0x1b
[   64.110831][ T4879]  should_fail_ex+0x263/0x280
[   64.110854][ T4879]  should_fail+0xb/0x20
[   64.110882][ T4879]  should_fail_usercopy+0x1a/0x20
[   64.110906][ T4879]  strncpy_from_user+0x27/0x250
[   64.110940][ T4879]  getname_flags+0xad/0x3b0
[   64.111037][ T4879]  vfs_fstatat+0x43/0x170
[   64.111063][ T4879]  __se_sys_newfstatat+0x55/0x3e0
[   64.111095][ T4879]  ? __fget_files+0x184/0x1c0
[   64.111156][ T4879]  ? mutex_lock+0x57/0x90
[   64.111177][ T4879]  ? mutex_unlock+0x4e/0x90
[   64.111197][ T4879]  ? fput+0x8f/0xc0
[   64.111223][ T4879]  ? ksys_write+0x194/0x1a0
[   64.111243][ T4879]  __x64_sys_newfstatat+0x55/0x70
[   64.111313][ T4879]  x64_sys_call+0x111f/0x3000
[   64.111340][ T4879]  do_syscall_64+0xc0/0x2a0
[   64.111420][ T4879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.111537][ T4879] RIP: 0033:0x7f5bf201acb9
[   64.111554][ T4879] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   64.111573][ T4879] RSP: 002b:00007f5bf0a77028 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[   64.111594][ T4879] RAX: ffffffffffffffda RBX: 00007f5bf2295fa0 RCX: 00007f5bf201acb9
[   64.111609][ T4879] RDX: 0000000000000000 RSI: 00002000000044c0 RDI: ffffffffffffff9c
[   64.111623][ T4879] RBP: 00007f5bf0a77090 R08: 0000000000000000 R09: 0000000000000000
[   64.111697][ T4879] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000001
[   64.111710][ T4879] R13: 00007f5bf2296038 R14: 00007f5bf2295fa0 R15: 00007ffd093cc7d8
[   64.111730][ T4879]  </TASK>
[   64.455821][ T4898] validate_nla: 11 callbacks suppressed
[   64.455836][ T4898] netlink: 'syz.2.462': attribute type 27 has an invalid length.
[   64.541378][ T4907] sctp: [Deprecated]: syz.2.465 (pid 4907) Use of int in max_burst socket option.
[   64.541378][ T4907] Use struct sctp_assoc_value instead
[   64.566416][ T4908] sctp: [Deprecated]: syz.2.465 (pid 4908) Use of int in max_burst socket option.
[   64.566416][ T4908] Use struct sctp_assoc_value instead
[   64.586585][ T4911] netlink: 'syz.5.466': attribute type 2 has an invalid length.
[   64.594455][ T4911] netlink: 'syz.5.466': attribute type 1 has an invalid length.
[   64.614745][ T4911] netlink: 'syz.5.466': attribute type 10 has an invalid length.
[   64.639807][ T4911] batman_adv: batadv0: Adding interface: veth1_vlan
[   64.646567][ T4911] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   64.680766][ T4911] batman_adv: batadv0: Interface activated: veth1_vlan
[   64.898221][ T4927] netlink: 'syz.5.473': attribute type 2 has an invalid length.
[   64.906058][ T4927] netlink: 'syz.5.473': attribute type 1 has an invalid length.
[   64.998843][ T4935] bond1: option mode: unable to set because the bond device has slaves
[   65.022964][ T4935] syz1: rxe_newlink: already configured on syz_tun
[   65.086292][ T4939] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.192692][ T4953] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[   65.301695][ T4961] netlink: 'syz.1.486': attribute type 2 has an invalid length.
[   65.304348][ T4959] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.309565][ T4961] netlink: 'syz.1.486': attribute type 1 has an invalid length.
[   65.423017][ T4972] program syz.2.491 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   65.672409][ T4986] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   65.827238][ T4988] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   66.057549][   T29] kauditd_printk_skb: 510 callbacks suppressed
[   66.057566][   T29] audit: type=1326 audit(1769066227.585:2306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4980 comm="syz.4.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   66.108727][   T29] audit: type=1326 audit(1769066227.595:2307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4980 comm="syz.4.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   66.132673][   T29] audit: type=1326 audit(1769066227.595:2308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4980 comm="syz.4.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   66.156277][   T29] audit: type=1326 audit(1769066227.595:2309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4980 comm="syz.4.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   66.179676][   T29] audit: type=1326 audit(1769066227.595:2310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4980 comm="syz.4.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   66.203394][   T29] audit: type=1326 audit(1769066227.595:2311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4980 comm="syz.4.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   66.227155][   T29] audit: type=1326 audit(1769066227.595:2312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4980 comm="syz.4.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   66.250845][   T29] audit: type=1326 audit(1769066227.595:2313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4980 comm="syz.4.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   66.255778][ T5000] netlink: 'syz.1.500': attribute type 2 has an invalid length.
[   66.274253][   T29] audit: type=1326 audit(1769066227.595:2314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4980 comm="syz.4.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   66.274293][   T29] audit: type=1326 audit(1769066227.595:2315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4980 comm="syz.4.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   66.281996][ T5000] netlink: 'syz.1.500': attribute type 1 has an invalid length.
[   66.549514][ T5007] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.567005][ T5007] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   66.581920][ T5007] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.504: Failed to acquire dquot type 0
[   66.662390][ T5021] process 'syz.5.506' launched './file0' with NULL argv: empty string added
[   66.796388][ T5028] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[   66.887412][ T4991] bond1: (slave bond0): link status definitely down, disabling slave
[   66.907052][ T4991] bond1: now running without any active interface!
[   66.929588][ T5040] set_capacity_and_notify: 7 callbacks suppressed
[   66.929607][ T5040] loop5: detected capacity change from 0 to 512
[   66.952379][ T5040] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.966840][ T5040] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   66.982720][ T5040] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.513: Failed to acquire dquot type 0
[   67.173577][ T5047] loop5: detected capacity change from 0 to 256
[   67.390053][ T5056] __nla_validate_parse: 28 callbacks suppressed
[   67.390071][ T5056] netlink: 80 bytes leftover after parsing attributes in process `syz.1.519'.
[   67.483476][ T5069] loop1: detected capacity change from 0 to 2048
[   67.490665][ T5069] EXT4-fs: Ignoring removed oldalloc option
[   67.537013][ T5069] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c028, mo2=0002]
[   67.544734][ T5076] loop5: detected capacity change from 0 to 256
[   67.545296][ T5069] System zones: 0-7
[   67.565032][ T5069] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.524: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   67.582586][ T5069] EXT4-fs (loop1): Remounting filesystem read-only
[   67.652577][ T5084] netlink: 24 bytes leftover after parsing attributes in process `syz.1.529'.
[   67.663257][ T5084] kernel profiling enabled (shift: 6)
[   67.708185][ T5093] netlink: 16 bytes leftover after parsing attributes in process `syz.5.532'.
[   67.718074][ T5093] netlink: 8 bytes leftover after parsing attributes in process `syz.5.532'.
[   67.810237][ T5099] netlink: 10 bytes leftover after parsing attributes in process `syz.1.535'.
[   67.998059][ T5105] netlink: 24 bytes leftover after parsing attributes in process `syz.5.538'.
[   68.007853][ T5105] bond0: invalid ARP target 0.0.0.0 specified for addition
[   68.015118][ T5105] bond0: option arp_ip_target: invalid value (0)
[   68.025190][ T5105] loop5: detected capacity change from 0 to 512
[   68.033921][ T5105] EXT4-fs warning (device loop5): read_mmp_block:111: Error -117 while reading MMP block 12
[   68.321591][ T5107] loop5: detected capacity change from 0 to 1024
[   68.328557][ T5107] EXT4-fs: Ignoring removed orlov option
[   68.339820][ T5107] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #4: comm syz.5.539: pblk 98 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[   68.358206][ T5107] EXT4-fs error (device loop5): ext4_quota_enable:7180: comm syz.5.539: Bad quota inode: 4, type: 1
[   68.369738][ T5107] EXT4-fs warning (device loop5): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   68.384951][ T5107] EXT4-fs (loop5): mount failed
[   68.550646][ T5122] netlink: 16 bytes leftover after parsing attributes in process `syz.5.544'.
[   68.561421][ T5122] netlink: 8 bytes leftover after parsing attributes in process `syz.5.544'.
[   68.645046][ T5131] loop3: detected capacity change from 0 to 2048
[   68.672452][ T5137] netlink: 8 bytes leftover after parsing attributes in process `syz.5.550'.
[   68.690042][ T5131] ext4 filesystem being mounted at /123/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.701076][ T5137] bond1: option mode: unable to set because the bond device has slaves
[   68.717700][ T5137] netlink: 8 bytes leftover after parsing attributes in process `syz.5.550'.
[   68.728111][ T5137] rdma_rxe: rxe_newlink: failed to add syz_tun
[   69.110203][ T5165] FAULT_INJECTION: forcing a failure.
[   69.110203][ T5165] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   69.123450][ T5165] CPU: 1 UID: 0 PID: 5165 Comm: syz.1.561 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   69.123479][ T5165] Tainted: [W]=WARN
[   69.123485][ T5165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   69.123541][ T5165] Call Trace:
[   69.123548][ T5165]  <TASK>
[   69.123555][ T5165]  __dump_stack+0x1d/0x30
[   69.123578][ T5165]  dump_stack_lvl+0x95/0xd0
[   69.123614][ T5165]  dump_stack+0x15/0x1b
[   69.123634][ T5165]  should_fail_ex+0x263/0x280
[   69.123680][ T5165]  should_fail+0xb/0x20
[   69.123696][ T5165]  should_fail_usercopy+0x1a/0x20
[   69.123716][ T5165]  _copy_from_iter+0xcf/0xea0
[   69.123778][ T5165]  ? __alloc_skb+0x397/0x4b0
[   69.123917][ T5165]  ? __alloc_skb+0x219/0x4b0
[   69.123936][ T5165]  netlink_sendmsg+0x4ae/0x6f0
[   69.123963][ T5165]  ? __pfx_netlink_sendmsg+0x10/0x10
[   69.124039][ T5165]  __sock_sendmsg+0x145/0x170
[   69.124067][ T5165]  ____sys_sendmsg+0x31e/0x4a0
[   69.124090][ T5165]  ___sys_sendmsg+0x195/0x1e0
[   69.124122][ T5165]  __x64_sys_sendmsg+0xd4/0x160
[   69.124176][ T5165]  x64_sys_call+0x17ba/0x3000
[   69.124244][ T5165]  do_syscall_64+0xc0/0x2a0
[   69.124269][ T5165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.124382][ T5165] RIP: 0033:0x7fbe4ecfacb9
[   69.124407][ T5165] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   69.124460][ T5165] RSP: 002b:00007fbe4d757028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   69.124496][ T5165] RAX: ffffffffffffffda RBX: 00007fbe4ef75fa0 RCX: 00007fbe4ecfacb9
[   69.124509][ T5165] RDX: 0000000000000080 RSI: 0000200000000100 RDI: 0000000000000003
[   69.124521][ T5165] RBP: 00007fbe4d757090 R08: 0000000000000000 R09: 0000000000000000
[   69.124532][ T5165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.124549][ T5165] R13: 00007fbe4ef76038 R14: 00007fbe4ef75fa0 R15: 00007ffeb408b608
[   69.124566][ T5165]  </TASK>
[   69.677136][ T5185] FAULT_INJECTION: forcing a failure.
[   69.677136][ T5185] name failslab, interval 1, probability 0, space 0, times 0
[   69.689976][ T5185] CPU: 1 UID: 0 PID: 5185 Comm: syz.1.568 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   69.690056][ T5185] Tainted: [W]=WARN
[   69.690066][ T5185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   69.690083][ T5185] Call Trace:
[   69.690092][ T5185]  <TASK>
[   69.690102][ T5185]  __dump_stack+0x1d/0x30
[   69.690151][ T5185]  dump_stack_lvl+0x95/0xd0
[   69.690179][ T5185]  dump_stack+0x15/0x1b
[   69.690205][ T5185]  should_fail_ex+0x263/0x280
[   69.690234][ T5185]  should_failslab+0x8c/0xb0
[   69.690340][ T5185]  __kmalloc_cache_noprof+0x64/0x4a0
[   69.690370][ T5185]  ? kobject_uevent_env+0x1c0/0x570
[   69.690414][ T5185]  kobject_uevent_env+0x1c0/0x570
[   69.690490][ T5185]  kobject_uevent+0x1d/0x30
[   69.690590][ T5185]  lo_ioctl+0xe3d/0x13a0
[   69.690621][ T5185]  ? blkdev_common_ioctl+0xbf0/0x20b0
[   69.690731][ T5185]  ? do_vfs_ioctl+0x84f/0xe70
[   69.690765][ T5185]  ? selinux_file_ioctl+0x323/0x3b0
[   69.690797][ T5185]  ? __pfx_lo_ioctl+0x10/0x10
[   69.690814][ T5185]  ? __pfx_blkdev_ioctl+0x10/0x10
[   69.690895][ T5185]  blkdev_ioctl+0x387/0x460
[   69.690999][ T5185]  ? __pfx_blkdev_ioctl+0x10/0x10
[   69.691035][ T5185]  __se_sys_ioctl+0xce/0x140
[   69.691071][ T5185]  __x64_sys_ioctl+0x43/0x50
[   69.691125][ T5185]  x64_sys_call+0x14b0/0x3000
[   69.691152][ T5185]  do_syscall_64+0xc0/0x2a0
[   69.691187][ T5185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.691210][ T5185] RIP: 0033:0x7fbe4ecfacb9
[   69.691226][ T5185] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   69.691294][ T5185] RSP: 002b:00007fbe4d757028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   69.691315][ T5185] RAX: ffffffffffffffda RBX: 00007fbe4ef75fa0 RCX: 00007fbe4ecfacb9
[   69.691330][ T5185] RDX: 0000000000000004 RSI: 0000000000004c06 RDI: 0000000000000003
[   69.691405][ T5185] RBP: 00007fbe4d757090 R08: 0000000000000000 R09: 0000000000000000
[   69.691418][ T5185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.691431][ T5185] R13: 00007fbe4ef76038 R14: 00007fbe4ef75fa0 R15: 00007ffeb408b608
[   69.691451][ T5185]  </TASK>
[   70.069901][ T5213] validate_nla: 7 callbacks suppressed
[   70.069920][ T5213] netlink: 'syz.2.575': attribute type 1 has an invalid length.
[   70.089624][ T5213] bond2: entered promiscuous mode
[   70.100697][ T5213] 8021q: adding VLAN 0 to HW filter on device bond2
[   70.119464][ T5213] bond2: (slave bridge1): making interface the new active one
[   70.127188][ T5213] bridge1: entered promiscuous mode
[   70.139810][ T5213] bridge1: left promiscuous mode
[   70.302081][ T5237] loop1: detected capacity change from 0 to 128
[   70.322138][ T5237] ext4 filesystem being mounted at /112/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   70.571534][ T5263] loop2: detected capacity change from 0 to 256
[   70.657583][ T5273] program syz.1.597 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   70.716494][ T5283] Driver unsupported XDP return value 0 on prog  (id 122) dev N/A, expect packet loss!
[   70.795772][ T5292] FAULT_INJECTION: forcing a failure.
[   70.795772][ T5292] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.808987][ T5292] CPU: 1 UID: 0 PID: 5292 Comm: syz.1.605 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   70.809090][ T5292] Tainted: [W]=WARN
[   70.809097][ T5292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   70.809110][ T5292] Call Trace:
[   70.809148][ T5292]  <TASK>
[   70.809158][ T5292]  __dump_stack+0x1d/0x30
[   70.809190][ T5292]  dump_stack_lvl+0x95/0xd0
[   70.809218][ T5292]  dump_stack+0x15/0x1b
[   70.809284][ T5292]  should_fail_ex+0x263/0x280
[   70.809310][ T5292]  should_fail+0xb/0x20
[   70.809358][ T5292]  should_fail_usercopy+0x1a/0x20
[   70.809395][ T5292]  _copy_to_user+0x20/0xa0
[   70.809428][ T5292]  simple_read_from_buffer+0xb5/0x130
[   70.809475][ T5292]  proc_fail_nth_read+0x10e/0x150
[   70.809583][ T5292]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   70.809678][ T5292]  vfs_read+0x1ab/0x7f0
[   70.809757][ T5292]  ? __rcu_read_unlock+0x4e/0x70
[   70.809796][ T5292]  ? __fget_files+0x184/0x1c0
[   70.809824][ T5292]  ? mutex_lock+0x57/0x90
[   70.809852][ T5292]  ksys_read+0xdc/0x1a0
[   70.809896][ T5292]  __x64_sys_read+0x40/0x50
[   70.810015][ T5292]  x64_sys_call+0x2889/0x3000
[   70.810048][ T5292]  do_syscall_64+0xc0/0x2a0
[   70.810085][ T5292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.810188][ T5292] RIP: 0033:0x7fbe4ecbb58e
[   70.810210][ T5292] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   70.810233][ T5292] RSP: 002b:00007fbe4d756fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   70.810258][ T5292] RAX: ffffffffffffffda RBX: 00007fbe4d7576c0 RCX: 00007fbe4ecbb58e
[   70.810277][ T5292] RDX: 000000000000000f RSI: 00007fbe4d7570a0 RDI: 0000000000000004
[   70.810334][ T5292] RBP: 00007fbe4d757090 R08: 0000000000000000 R09: 0000000000000000
[   70.810351][ T5292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.810368][ T5292] R13: 00007fbe4ef76038 R14: 00007fbe4ef75fa0 R15: 00007ffeb408b608
[   70.810448][ T5292]  </TASK>
[   70.875183][ T5294] netlink: 'syz.2.606': attribute type 27 has an invalid length.
[   70.903639][ T5295] macvlan2: entered promiscuous mode
[   71.075563][ T5295] dummy0: entered promiscuous mode
[   71.081231][ T5295] macvlan2: entered allmulticast mode
[   71.139339][ T5295] dummy0: entered allmulticast mode
[   71.367546][ T5318] netlink: 'syz.1.610': attribute type 27 has an invalid length.
[   71.584230][ T5336] program syz.4.617 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   71.600254][   T29] kauditd_printk_skb: 396 callbacks suppressed
[   71.600272][   T29] audit: type=1326 audit(1769066233.135:2708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5340 comm="syz.3.619" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7b1acdacb9 code=0x0
[   71.733799][   T29] audit: type=1400 audit(1769066233.195:2709): avc:  denied  { ioctl } for  pid=5346 comm="syz.5.620" path="socket:[11652]" dev="sockfs" ino=11652 ioctlcmd=0x8910 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   71.759648][   T29] audit: type=1400 audit(1769066233.195:2710): avc:  denied  { write } for  pid=5346 comm="syz.5.620" name="hwrng" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[   71.782994][   T29] audit: type=1400 audit(1769066233.225:2711): avc:  denied  { write } for  pid=5346 comm="syz.5.620" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   71.802190][ T5358] netlink: 'syz.4.622': attribute type 2 has an invalid length.
[   71.810561][ T5358] netlink: 'syz.4.622': attribute type 1 has an invalid length.
[   71.864208][ T5360] netlink: 'syz.2.623': attribute type 27 has an invalid length.
[   71.920790][ T5358] loop4: detected capacity change from 0 to 512
[   71.971611][ T5369] netlink: 'syz.2.625': attribute type 2 has an invalid length.
[   71.979445][ T5369] netlink: 'syz.2.625': attribute type 1 has an invalid length.
[   72.013811][ T5369] loop2: detected capacity change from 0 to 512
[   72.308373][ T5388] xt_limit: Overflow, try lower: 268435456/134217728
[   72.412046][ T5397] netlink: 'syz.2.634': attribute type 2 has an invalid length.
[   72.419979][ T5397] netlink: 'syz.2.634': attribute type 1 has an invalid length.
[   72.427730][ T5397] __nla_validate_parse: 10 callbacks suppressed
[   72.427746][ T5397] netlink: 16 bytes leftover after parsing attributes in process `syz.2.634'.
[   72.507869][ T5402] loop4: detected capacity change from 0 to 512
[   72.514407][   T29] audit: type=1326 audit(1769066234.035:2712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.4.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   72.538073][   T29] audit: type=1326 audit(1769066234.035:2713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.4.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   72.561915][   T29] audit: type=1326 audit(1769066234.035:2714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.4.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   72.585722][   T29] audit: type=1326 audit(1769066234.035:2715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.4.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   72.609177][   T29] audit: type=1326 audit(1769066234.035:2716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.4.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5bf201aa22 code=0x7ffc0000
[   72.632575][   T29] audit: type=1326 audit(1769066234.035:2717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.4.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5bf1fdb58e code=0x7ffc0000
[   72.669288][ T5397] loop2: detected capacity change from 0 to 512
[   72.730599][ T5402] EXT4-fs mount: 30 callbacks suppressed
[   72.730623][ T5402] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.829553][ T5418] netlink: 8 bytes leftover after parsing attributes in process `syz.2.638'.
[   72.899477][ T5402] ext4 filesystem being mounted at /113/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.927504][ T5418] bond1: option mode: unable to set because the bond device has slaves
[   72.941418][ T5418] netlink: 8 bytes leftover after parsing attributes in process `syz.2.638'.
[   72.950306][ T5418] netlink: 4 bytes leftover after parsing attributes in process `syz.2.638'.
[   72.979788][ T5402] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   73.002637][ T5423] bridge0: port 3(syz_tun) entered disabled state
[   73.009230][ T5423] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.016524][ T5423] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.041068][ T5423] bridge0: port 3(syz_tun) entered blocking state
[   73.047625][ T5423] bridge0: port 3(syz_tun) entered forwarding state
[   73.054491][ T5423] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.061616][ T5423] bridge0: port 2(bridge_slave_1) entered forwarding state
[   73.069032][ T5423] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.076189][ T5423] bridge0: port 1(bridge_slave_0) entered forwarding state
[   73.087965][ T5402] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.636: Failed to acquire dquot type 0
[   73.103069][ T5423] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   73.128959][ T5418] rdma_rxe: rxe_newlink: failed to add syz_tun
[   73.219907][ T5411] infiniband !yz!: set active
[   73.224676][ T5411] infiniband !yz!: added team_slave_0
[   73.265476][ T5411] RDS/IB: !yz!: added
[   73.327058][ T5411] smc: adding ib device !yz! with port count 1
[   73.333464][ T5411] smc:    ib device !yz! port 1 has no pnetid
[   73.341558][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.363007][ T5434] sctp: [Deprecated]: syz.2.641 (pid 5434) Use of int in maxseg socket option.
[   73.363007][ T5434] Use struct sctp_assoc_value instead
[   73.514176][ T5434] sctp: [Deprecated]: syz.2.641 (pid 5434) Use of int in max_burst socket option.
[   73.514176][ T5434] Use struct sctp_assoc_value instead
[   73.620551][ T5441] netlink: 36 bytes leftover after parsing attributes in process `syz.1.643'.
[   73.630158][ T5441] netlink: 8 bytes leftover after parsing attributes in process `syz.1.643'.
[   73.639077][ T5441] netlink: 4 bytes leftover after parsing attributes in process `syz.1.643'.
[   73.688980][ T5449] loop5: detected capacity change from 0 to 256
[   73.830050][ T5456] capability: warning: `syz.5.648' uses deprecated v2 capabilities in a way that may be insecure
[   74.074317][ T5471] netlink: 8 bytes leftover after parsing attributes in process `syz.5.655'.
[   74.085049][ T5474] netlink: 16 bytes leftover after parsing attributes in process `syz.4.654'.
[   74.103476][ T5474] loop4: detected capacity change from 0 to 128
[   74.388544][ T5496] netlink: 16 bytes leftover after parsing attributes in process `syz.4.663'.
[   74.618872][ T5514] bond1: option mode: unable to set because the bond device has slaves
[   74.696359][ T5519] loop5: detected capacity change from 0 to 256
[   74.762473][ T5524] program syz.4.675 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   74.860936][ T5537] FAULT_INJECTION: forcing a failure.
[   74.860936][ T5537] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   74.874845][ T5537] CPU: 0 UID: 0 PID: 5537 Comm: syz.5.680 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   74.874947][ T5537] Tainted: [W]=WARN
[   74.874998][ T5537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   74.875012][ T5537] Call Trace:
[   74.875018][ T5537]  <TASK>
[   74.875026][ T5537]  __dump_stack+0x1d/0x30
[   74.875057][ T5537]  dump_stack_lvl+0x95/0xd0
[   74.875117][ T5537]  dump_stack+0x15/0x1b
[   74.875137][ T5537]  should_fail_ex+0x263/0x280
[   74.875158][ T5537]  should_fail_alloc_page+0xf2/0x100
[   74.875186][ T5537]  __alloc_frozen_pages_noprof+0x108/0x350
[   74.875228][ T5537]  alloc_pages_mpol+0xb3/0x260
[   74.875308][ T5537]  alloc_pages_noprof+0x8f/0x130
[   74.875346][ T5537]  __pud_alloc+0x47/0x4a0
[   74.875385][ T5537]  handle_mm_fault+0x1d62/0x3030
[   74.875446][ T5537]  ? mt_find+0x291/0x3b0
[   74.875497][ T5537]  do_user_addr_fault+0x3fd/0x1050
[   74.875534][ T5537]  ? __rcu_read_unlock+0x4e/0x70
[   74.875561][ T5537]  exc_page_fault+0x62/0xa0
[   74.875589][ T5537]  asm_exc_page_fault+0x26/0x30
[   74.875688][ T5537] RIP: 0010:strncpy_from_user+0xa4/0x250
[   74.875721][ T5537] Code: 93 5a ff 49 83 ff 07 0f 86 85 00 00 00 48 c7 04 24 00 00 00 00 4c 89 64 24 10 48 8b 6c 24 08 4c 89 7c 24 18 4d 89 fd 4d 89 e6 <4d> 8b 24 24 48 b8 ff fe fe fe fe fe fe fe 4d 8d 3c 04 4c 89 e3 48
[   74.875739][ T5537] RSP: 0018:ffffc9001185fc80 EFLAGS: 00050212
[   74.875758][ T5537] RAX: ffffffff81fda5ed RBX: ffff8881042b3000 RCX: ffff88810a0bc200
[   74.875811][ T5537] RDX: 0000000000000000 RSI: 0000000000000fe0 RDI: 0000000000000007
[   74.875825][ T5537] RBP: ffff8881042b3020 R08: 00018881042b3007 R09: 0000000000000000
[   74.875838][ T5537] R10: ffff8881042b3000 R11: 0001c9001185fd40 R12: 00002000000044c0
[   74.875856][ T5537] R13: 0000000000000fe0 R14: 00002000000044c0 R15: 0000000000000fe0
[   74.875872][ T5537]  ? strncpy_from_user+0x7d/0x250
[   74.875917][ T5537]  getname_flags+0xad/0x3b0
[   74.875948][ T5537]  vfs_fstatat+0x43/0x170
[   74.876010][ T5537]  __se_sys_newfstatat+0x55/0x3e0
[   74.876049][ T5537]  ? __fget_files+0x184/0x1c0
[   74.876073][ T5537]  ? mutex_lock+0x57/0x90
[   74.876096][ T5537]  ? mutex_unlock+0x4e/0x90
[   74.876120][ T5537]  ? fput+0x8f/0xc0
[   74.876217][ T5537]  ? ksys_write+0x194/0x1a0
[   74.876241][ T5537]  __x64_sys_newfstatat+0x55/0x70
[   74.876275][ T5537]  x64_sys_call+0x111f/0x3000
[   74.876309][ T5537]  do_syscall_64+0xc0/0x2a0
[   74.876423][ T5537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.876475][ T5537] RIP: 0033:0x7ff3e374acb9
[   74.876491][ T5537] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   74.876516][ T5537] RSP: 002b:00007ff3e21a7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[   74.876543][ T5537] RAX: ffffffffffffffda RBX: 00007ff3e39c5fa0 RCX: 00007ff3e374acb9
[   74.876561][ T5537] RDX: 0000000000000000 RSI: 00002000000044c0 RDI: ffffffffffffff9c
[   74.876579][ T5537] RBP: 00007ff3e21a7090 R08: 0000000000000000 R09: 0000000000000000
[   74.876595][ T5537] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000001
[   74.876617][ T5537] R13: 00007ff3e39c6038 R14: 00007ff3e39c5fa0 R15: 00007fffb90e96f8
[   74.876718][ T5537]  </TASK>
[   75.320425][ T5551] validate_nla: 5 callbacks suppressed
[   75.320443][ T5551] netlink: 'syz.5.685': attribute type 2 has an invalid length.
[   75.333763][ T5551] netlink: 'syz.5.685': attribute type 1 has an invalid length.
[   75.444803][ T5558] bond1: option mode: unable to set because the bond device has slaves
[   75.478976][ T5563] netlink: 'syz.5.689': attribute type 2 has an invalid length.
[   75.486816][ T5563] netlink: 'syz.5.689': attribute type 1 has an invalid length.
[   75.495747][ T5564] netlink: 'syz.1.687': attribute type 10 has an invalid length.
[   75.503731][ T5564] bridge0: port 3(syz_tun) entered disabled state
[   75.510312][ T5564] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.517688][ T5564] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.537233][ T5558] syz1: rxe_newlink: already configured on syz_tun
[   75.639944][ T5575] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   75.810239][ T5596] netlink: 'syz.5.701': attribute type 27 has an invalid length.
[   75.821744][ T5593] loop4: detected capacity change from 0 to 512
[   75.880678][ T5593] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.901207][ T5605] bond1: option mode: unable to set because the bond device has slaves
[   75.917731][ T5605] netlink: 'syz.5.703': attribute type 10 has an invalid length.
[   75.937538][ T5605] rdma_rxe: rxe_newlink: failed to add syz_tun
[   75.943989][ T5593] ext4 filesystem being mounted at /128/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   76.037236][ T5612] bond1: option mode: unable to set because the bond device has slaves
[   76.038079][ T5612] netlink: 'syz.5.705': attribute type 10 has an invalid length.
[   76.125524][ T5593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.197348][ T5613] loop2: detected capacity change from 0 to 128
[   76.225261][ T5613] FAT-fs (loop2): bogus sectors per cluster 7
[   76.231482][ T5613] FAT-fs (loop2): Can't find a valid FAT filesystem
[   76.292593][ T5624] sctp: [Deprecated]: syz.4.709 (pid 5624) Use of int in maxseg socket option.
[   76.292593][ T5624] Use struct sctp_assoc_value instead
[   76.405168][ T5631] loop5: detected capacity change from 0 to 128
[   76.473630][ T5636] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[   76.771279][ T5631] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[   76.781695][   T29] kauditd_printk_skb: 266 callbacks suppressed
[   76.781713][   T29] audit: type=1400 audit(1769066238.315:2982): avc:  denied  { setopt } for  pid=5630 comm="syz.5.712" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   76.938829][   T29] audit: type=1400 audit(1769066238.475:2983): avc:  denied  { bind } for  pid=5665 comm="syz.5.724" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   76.992528][ T5672] sctp: [Deprecated]: syz.1.727 (pid 5672) Use of int in maxseg socket option.
[   76.992528][ T5672] Use struct sctp_assoc_value instead
[   77.014051][ T5674] program syz.2.728 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   77.085756][ T5683] loop5: detected capacity change from 0 to 128
[   77.110806][ T5683] ipt_REJECT: TCP_RESET invalid for non-tcp
[   77.113356][ T5686] ipt_REJECT: TCP_RESET invalid for non-tcp
[   77.206035][ T5693] loop3: detected capacity change from 0 to 512
[   77.218811][ T5693] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000101)
[   77.300856][ T5701] loop5: detected capacity change from 0 to 256
[   77.357285][ T5697] bond3: entered promiscuous mode
[   77.362562][ T5697] bond3: entered allmulticast mode
[   77.394483][ T5697] 8021q: adding VLAN 0 to HW filter on device bond3
[   77.560245][   T29] audit: type=1326 audit(1769066239.095:2984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5711 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31994acb9 code=0x7ffc0000
[   77.624717][   T29] audit: type=1326 audit(1769066239.125:2985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5711 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31994acb9 code=0x7ffc0000
[   77.648242][   T29] audit: type=1326 audit(1769066239.125:2986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5711 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31994acb9 code=0x7ffc0000
[   77.692337][   T29] audit: type=1326 audit(1769066239.185:2987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5711 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fe31994acb9 code=0x7ffc0000
[   77.716024][   T29] audit: type=1326 audit(1769066239.185:2988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5711 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe31994aa22 code=0x7ffc0000
[   77.739518][   T29] audit: type=1326 audit(1769066239.185:2989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5711 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe31994aa22 code=0x7ffc0000
[   77.762888][   T29] audit: type=1326 audit(1769066239.185:2990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5711 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31994acb9 code=0x7ffc0000
[   77.786555][   T29] audit: type=1326 audit(1769066239.185:2991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5711 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe31994acb9 code=0x7ffc0000
[   77.791003][ T5724] sctp: [Deprecated]: syz.5.745 (pid 5724) Use of int in maxseg socket option.
[   77.791003][ T5724] Use struct sctp_assoc_value instead
[   77.889661][ T5729] __nla_validate_parse: 21 callbacks suppressed
[   77.889681][ T5729] netlink: 8 bytes leftover after parsing attributes in process `syz.4.747'.
[   77.932241][ T5729] bond1: option mode: unable to set because the bond device has slaves
[   77.942662][ T5729] netlink: 8 bytes leftover after parsing attributes in process `syz.4.747'.
[   77.951657][ T5729] netlink: 4 bytes leftover after parsing attributes in process `syz.4.747'.
[   77.961710][ T5729] netlink: 'syz.4.747': attribute type 10 has an invalid length.
[   78.007086][ T5737] netlink: 44 bytes leftover after parsing attributes in process `syz.4.750'.
[   78.158942][ T5750] netlink: 8 bytes leftover after parsing attributes in process `syz.4.756'.
[   78.177073][ T5748] netlink: 8 bytes leftover after parsing attributes in process `syz.5.755'.
[   78.186144][ T5750] bond1: option mode: unable to set because the bond device has slaves
[   78.194532][ T5748] bond1: option mode: unable to set because the bond device has slaves
[   78.204951][ T5750] netlink: 8 bytes leftover after parsing attributes in process `syz.4.756'.
[   78.209029][ T5748] netlink: 8 bytes leftover after parsing attributes in process `syz.5.755'.
[   78.213829][ T5750] netlink: 4 bytes leftover after parsing attributes in process `syz.4.756'.
[   78.222615][ T5748] netlink: 4 bytes leftover after parsing attributes in process `syz.5.755'.
[   78.233630][ T5748] netlink: 'syz.5.755': attribute type 10 has an invalid length.
[   78.299823][ T5750] rdma_rxe: rxe_newlink: failed to add syz_tun
[   78.402025][ T5758] loop4: detected capacity change from 0 to 2048
[   78.458899][ T3312] Alternate GPT is invalid, using primary GPT.
[   78.465323][ T3312]  loop4: p1 p2 p3
[   78.502355][ T5762] 8021q: adding VLAN 0 to HW filter on device bond2
[   78.518113][ T5758] Alternate GPT is invalid, using primary GPT.
[   78.524521][ T5758]  loop4: p1 p2 p3
[   78.600188][ T3659] udevd[3659]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   78.600288][ T3311] udevd[3311]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   78.621738][ T3312] udevd[3312]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   78.664886][ T3312] udevd[3312]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   78.672156][ T3659] udevd[3659]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   78.693650][ T5770] bond1: option mode: unable to set because the bond device has slaves
[   78.777319][ T5772] geneve2: entered promiscuous mode
[   78.782801][ T5772] geneve2: entered allmulticast mode
[   78.890409][ T5785] loop4: detected capacity change from 0 to 2048
[   78.916901][ T5785] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.930749][ T5785] EXT4-fs error (device loop4): ext4_find_extent:939: inode #2: comm syz.4.769: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   78.953338][ T5793] loop5: detected capacity change from 0 to 128
[   79.057134][ T5799] program syz.1.775 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   79.114320][ T5802] FAULT_INJECTION: forcing a failure.
[   79.114320][ T5802] name failslab, interval 1, probability 0, space 0, times 0
[   79.127132][ T5802] CPU: 0 UID: 0 PID: 5802 Comm: syz.2.777 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   79.127164][ T5802] Tainted: [W]=WARN
[   79.127173][ T5802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   79.127190][ T5802] Call Trace:
[   79.127229][ T5802]  <TASK>
[   79.127239][ T5802]  __dump_stack+0x1d/0x30
[   79.127264][ T5802]  dump_stack_lvl+0x95/0xd0
[   79.127364][ T5802]  dump_stack+0x15/0x1b
[   79.127384][ T5802]  should_fail_ex+0x263/0x280
[   79.127469][ T5802]  should_failslab+0x8c/0xb0
[   79.127497][ T5802]  kmem_cache_alloc_node_noprof+0x6a/0x4a0
[   79.127548][ T5802]  ? __alloc_skb+0x2f0/0x4b0
[   79.127573][ T5802]  __alloc_skb+0x2f0/0x4b0
[   79.127597][ T5802]  ? __alloc_skb+0x219/0x4b0
[   79.127694][ T5802]  audit_log_start+0x3aa/0x730
[   79.127725][ T5802]  ? __rcu_read_unlock+0x4e/0x70
[   79.127752][ T5802]  audit_seccomp+0x47/0x100
[   79.127792][ T5802]  ? __seccomp_filter+0x8db/0x1350
[   79.127860][ T5802]  __seccomp_filter+0x8ec/0x1350
[   79.127961][ T5802]  ? __schedule+0x82d/0xc90
[   79.128000][ T5802]  __secure_computing+0x81/0x150
[   79.128038][ T5802]  syscall_trace_enter+0xce/0x1e0
[   79.128081][ T5802]  do_syscall_64+0x9a/0x2a0
[   79.128132][ T5802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.128236][ T5802] RIP: 0033:0x7fe31990b58e
[   79.128257][ T5802] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   79.128280][ T5802] RSP: 002b:00007fe3183a6fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   79.128364][ T5802] RAX: ffffffffffffffda RBX: 00007fe3183a76c0 RCX: 00007fe31990b58e
[   79.128382][ T5802] RDX: 000000000000000f RSI: 00007fe3183a70a0 RDI: 0000000000000005
[   79.128399][ T5802] RBP: 00007fe3183a7090 R08: 0000000000000000 R09: 0000000000000000
[   79.128416][ T5802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.128432][ T5802] R13: 00007fe319bc6038 R14: 00007fe319bc5fa0 R15: 00007ffc83875888
[   79.128458][ T5802]  </TASK>
[   79.330742][ T5797] loop5: detected capacity change from 0 to 8192
[   79.564574][ T5812] loop2: detected capacity change from 0 to 512
[   79.574174][ T5812] EXT4-fs (loop2): 1 orphan inode deleted
[   79.592703][ T5812] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.618696][ T5815] loop1: detected capacity change from 0 to 512
[   79.743256][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.822045][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.942010][ T5844] loop2: detected capacity change from 0 to 2048
[   80.505681][ T5886] dummy0: entered promiscuous mode
[   80.511283][ T5886] macvlan2: entered promiscuous mode
[   80.524364][ T5886] macvlan2: entered allmulticast mode
[   80.536565][ T5886] dummy0: entered allmulticast mode
[   80.545091][ T5888] EXT4-fs: Ignoring removed oldalloc option
[   80.578095][ T5888] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c028, mo2=0002]
[   80.606503][ T5888] System zones: 0-7
[   80.615673][ T5888] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.649024][ T5888] EXT4-fs error (device loop3): ext4_ext_precache:632: inode #2: comm syz.3.811: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[   80.681696][ T5888] EXT4-fs (loop3): Remounting filesystem read-only
[   80.725142][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.900387][ T5897] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.945325][ T5897] ext4 filesystem being mounted at /146/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   80.968942][ T5897] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.044038][ T5903] EXT4-fs error (device loop3): ext4_init_orphan_info:583: comm syz.3.815: inode #0: comm syz.3.815: iget: illegal inode #
[   81.060030][ T5903] EXT4-fs (loop3): Remounting filesystem read-only
[   81.066682][ T5903] EXT4-fs (loop3): get orphan inode failed
[   81.077120][ T5903] EXT4-fs (loop3): mount failed
[   81.287275][ T5915] validate_nla: 4 callbacks suppressed
[   81.287290][ T5915] netlink: 'syz.1.819': attribute type 12 has an invalid length.
[   81.300787][ T5915] netlink: 'syz.1.819': attribute type 29 has an invalid length.
[   81.309473][ T5915] netlink: 'syz.1.819': attribute type 2 has an invalid length.
[   81.502743][ T5935] FAULT_INJECTION: forcing a failure.
[   81.502743][ T5935] name failslab, interval 1, probability 0, space 0, times 0
[   81.515630][ T5935] CPU: 0 UID: 0 PID: 5935 Comm: syz.1.826 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   81.515831][ T5935] Tainted: [W]=WARN
[   81.515954][ T5935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   81.515971][ T5935] Call Trace:
[   81.515977][ T5935]  <TASK>
[   81.515984][ T5935]  __dump_stack+0x1d/0x30
[   81.516060][ T5935]  dump_stack_lvl+0x95/0xd0
[   81.516099][ T5935]  dump_stack+0x15/0x1b
[   81.516117][ T5935]  should_fail_ex+0x263/0x280
[   81.516136][ T5935]  should_failslab+0x8c/0xb0
[   81.516154][ T5935]  kmem_cache_alloc_noprof+0x68/0x490
[   81.516172][ T5935]  ? security_inode_alloc+0x37/0x100
[   81.516242][ T5935]  security_inode_alloc+0x37/0x100
[   81.516260][ T5935]  inode_init_always_gfp+0x4b7/0x500
[   81.516280][ T5935]  ? __pfx_sock_alloc_inode+0x10/0x10
[   81.516355][ T5935]  alloc_inode+0x58/0x170
[   81.516371][ T5935]  __sock_create+0x120/0x580
[   81.516475][ T5935]  ? mutex_lock+0x57/0x90
[   81.516491][ T5935]  ? mutex_unlock+0x4e/0x90
[   81.516507][ T5935]  ? fput+0x8f/0xc0
[   81.516620][ T5935]  __sys_socket+0xaf/0x180
[   81.516676][ T5935]  __x64_sys_socket+0x3f/0x50
[   81.516704][ T5935]  x64_sys_call+0x127b/0x3000
[   81.516733][ T5935]  do_syscall_64+0xc0/0x2a0
[   81.516759][ T5935]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.516786][ T5935] RIP: 0033:0x7fbe4ecfacb9
[   81.516800][ T5935] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   81.516816][ T5935] RSP: 002b:00007fbe4d757028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[   81.516843][ T5935] RAX: ffffffffffffffda RBX: 00007fbe4ef75fa0 RCX: 00007fbe4ecfacb9
[   81.516856][ T5935] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000022
[   81.516881][ T5935] RBP: 00007fbe4d757090 R08: 0000000000000000 R09: 0000000000000000
[   81.516899][ T5935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.516915][ T5935] R13: 00007fbe4ef76038 R14: 00007fbe4ef75fa0 R15: 00007ffeb408b608
[   81.516977][ T5935]  </TASK>
[   81.720246][ T5935] socket: no more sockets
[   81.770980][ T5939] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   81.796354][ T5939] ext4 filesystem being mounted at /151/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   81.807182][   T29] kauditd_printk_skb: 272 callbacks suppressed
[   81.807199][   T29] audit: type=1326 audit(1769066243.345:3262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5938 comm="syz.4.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5bf1fdb58e code=0x7ffc0000
[   81.853162][   T29] audit: type=1326 audit(1769066243.345:3263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5938 comm="syz.4.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5bf1fdb58e code=0x7ffc0000
[   81.876766][   T29] audit: type=1326 audit(1769066243.345:3264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5938 comm="syz.4.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   81.900288][   T29] audit: type=1326 audit(1769066243.345:3265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5938 comm="syz.4.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   81.924094][   T29] audit: type=1326 audit(1769066243.345:3266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5938 comm="syz.4.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   81.947906][   T29] audit: type=1326 audit(1769066243.345:3267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5938 comm="syz.4.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   81.971646][   T29] audit: type=1326 audit(1769066243.345:3268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5938 comm="syz.4.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5bf201aa22 code=0x7ffc0000
[   81.995258][   T29] audit: type=1326 audit(1769066243.345:3269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5938 comm="syz.4.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   82.019234][   T29] audit: type=1326 audit(1769066243.345:3270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5938 comm="syz.4.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5bf1fdb58e code=0x7ffc0000
[   82.042634][   T29] audit: type=1326 audit(1769066243.345:3271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5938 comm="syz.4.828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f5bf201aae7 code=0x7ffc0000
[   82.092852][ T5945] netlink: 'syz.1.830': attribute type 6 has an invalid length.
[   82.092852][ T5946] netlink: 'syz.1.830': attribute type 6 has an invalid length.
[   82.148071][ T3324] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   82.215289][ T5955] sctp: [Deprecated]: syz.3.834 (pid 5955) Use of int in maxseg socket option.
[   82.215289][ T5955] Use struct sctp_assoc_value instead
[   82.464335][ T5973] bond4 (unregistering): Released all slaves
[   82.697922][ T5988] set_capacity_and_notify: 5 callbacks suppressed
[   82.697951][ T5988] loop1: detected capacity change from 0 to 256
[   82.872948][ T5998] loop2: detected capacity change from 0 to 512
[   82.901433][ T5998] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.930762][ T5998] ext4 filesystem being mounted at /182/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   82.939616][ T6002] __nla_validate_parse: 13 callbacks suppressed
[   82.939668][ T6002] netlink: 20 bytes leftover after parsing attributes in process `syz.1.852'.
[   82.980247][ T5998] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.043994][ T6006] loop2: detected capacity change from 0 to 512
[   83.080391][ T6006] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.141902][ T6006] netlink: 8 bytes leftover after parsing attributes in process `syz.2.856'.
[   83.207307][ T6020] loop1: detected capacity change from 0 to 256
[   83.228640][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.249602][ T6021] netlink: 80 bytes leftover after parsing attributes in process `syz.5.853'.
[   83.340876][ T6031] netlink: 'syz.5.864': attribute type 10 has an invalid length.
[   83.348981][ T6031] ipvlan0: entered allmulticast mode
[   83.354329][ T6031] veth0_vlan: entered allmulticast mode
[   83.362477][ T6031] team0: Device ipvlan0 failed to register rx_handler
[   83.388078][ T6037] netlink: 20 bytes leftover after parsing attributes in process `syz.2.865'.
[   83.403192][ T6031] loop5: detected capacity change from 0 to 2048
[   83.414063][ T6031] EXT4-fs: Ignoring removed oldalloc option
[   83.442948][ T6039] FAULT_INJECTION: forcing a failure.
[   83.442948][ T6039] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.456618][ T6039] CPU: 1 UID: 0 PID: 6039 Comm: syz.2.866 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   83.456652][ T6039] Tainted: [W]=WARN
[   83.456659][ T6039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   83.456684][ T6039] Call Trace:
[   83.456694][ T6039]  <TASK>
[   83.456702][ T6039]  __dump_stack+0x1d/0x30
[   83.456732][ T6039]  dump_stack_lvl+0x95/0xd0
[   83.456760][ T6039]  dump_stack+0x15/0x1b
[   83.456787][ T6039]  should_fail_ex+0x263/0x280
[   83.456850][ T6039]  should_fail+0xb/0x20
[   83.456867][ T6039]  should_fail_usercopy+0x1a/0x20
[   83.457002][ T6039]  _copy_from_iter+0xcf/0xea0
[   83.457032][ T6039]  ? alloc_pages_mpol+0x217/0x260
[   83.457060][ T6039]  ? perf_tp_event+0x9c8/0xa00
[   83.457097][ T6039]  copy_page_from_iter+0x178/0x2a0
[   83.457181][ T6039]  tun_get_user+0xbbd/0x27c0
[   83.457216][ T6039]  ? ref_tracker_alloc+0x1f2/0x2f0
[   83.457377][ T6039]  tun_chr_write_iter+0x15e/0x210
[   83.457406][ T6039]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   83.457511][ T6039]  vfs_write+0x5a6/0x9f0
[   83.457560][ T6039]  ksys_write+0xdc/0x1a0
[   83.457585][ T6039]  __x64_sys_write+0x40/0x50
[   83.457608][ T6039]  x64_sys_call+0x2847/0x3000
[   83.457668][ T6039]  do_syscall_64+0xc0/0x2a0
[   83.457706][ T6039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.457735][ T6039] RIP: 0033:0x7fe31990b58e
[   83.457755][ T6039] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   83.457827][ T6039] RSP: 002b:00007fe3183a6fb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   83.457854][ T6039] RAX: ffffffffffffffda RBX: 00007fe3183a76c0 RCX: 00007fe31990b58e
[   83.457894][ T6039] RDX: 000000000000003e RSI: 0000200000000500 RDI: 00000000000000c8
[   83.457913][ T6039] RBP: 00007fe3183a7090 R08: 0000000000000000 R09: 0000000000000000
[   83.457997][ T6039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.458010][ T6039] R13: 00007fe319bc6038 R14: 00007fe319bc5fa0 R15: 00007ffc83875888
[   83.458031][ T6039]  </TASK>
[   83.670611][ T6041] loop3: detected capacity change from 0 to 512
[   83.680503][ T6031] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c028, mo2=0002]
[   83.688862][ T6031] System zones: 0-7
[   83.699662][ T6031] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.716537][ T6041] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.867: bg 0: block 248: padding at end of block bitmap is not set
[   83.733288][ T6041] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.867: Failed to acquire dquot type 1
[   83.745816][ T6041] EXT4-fs (loop3): 1 truncate cleaned up
[   83.752244][ T6041] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.765123][ T6031] EXT4-fs error (device loop5): ext4_ext_precache:632: inode #2: comm syz.5.864: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[   83.765767][ T6041] ext4 filesystem being mounted at /156/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.805083][ T6031] EXT4-fs (loop5): Remounting filesystem read-only
[   83.821153][ T6041] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.842100][ T4437] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.060554][ T6058] loop2: detected capacity change from 0 to 256
[   84.068938][ T6041] syz.3.867 (6041) used greatest stack depth: 9104 bytes left
[   84.082423][ T6067] netlink: 20 bytes leftover after parsing attributes in process `syz.4.876'.
[   84.176058][ T6078] loop4: detected capacity change from 0 to 128
[   84.183088][ T6078] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   84.196992][ T6078] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   84.349556][ T6095] loop4: detected capacity change from 0 to 256
[   84.390860][ T6100] tap0: tun_chr_ioctl cmd 1074025675
[   84.396272][ T6100] tap0: persist disabled
[   84.428172][ T6105] netlink: 27 bytes leftover after parsing attributes in process `syz.2.894'.
[   84.492456][ T6114] FAULT_INJECTION: forcing a failure.
[   84.492456][ T6114] name failslab, interval 1, probability 0, space 0, times 0
[   84.505208][ T6114] CPU: 0 UID: 0 PID: 6114 Comm: syz.4.896 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   84.505261][ T6114] Tainted: [W]=WARN
[   84.505271][ T6114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   84.505290][ T6114] Call Trace:
[   84.505297][ T6114]  <TASK>
[   84.505315][ T6114]  __dump_stack+0x1d/0x30
[   84.505349][ T6114]  dump_stack_lvl+0x95/0xd0
[   84.505435][ T6114]  dump_stack+0x15/0x1b
[   84.505465][ T6114]  should_fail_ex+0x263/0x280
[   84.505492][ T6114]  should_failslab+0x8c/0xb0
[   84.505600][ T6114]  __kvmalloc_node_noprof+0x148/0x680
[   84.505631][ T6114]  ? traverse+0xa2/0x3a0
[   84.505666][ T6114]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   84.505743][ T6114]  traverse+0xa2/0x3a0
[   84.505770][ T6114]  ? __fget_files+0x184/0x1c0
[   84.505805][ T6114]  seq_lseek+0xb5/0x170
[   84.505842][ T6114]  proc_reg_llseek+0x10c/0x180
[   84.505882][ T6114]  __x64_sys_lseek+0xe8/0x160
[   84.505939][ T6114]  x64_sys_call+0x285d/0x3000
[   84.505978][ T6114]  do_syscall_64+0xc0/0x2a0
[   84.506020][ T6114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.506071][ T6114] RIP: 0033:0x7f5bf201acb9
[   84.506089][ T6114] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   84.506114][ T6114] RSP: 002b:00007f5bf0a77028 EFLAGS: 00000246 ORIG_RAX: 0000000000000008
[   84.506144][ T6114] RAX: ffffffffffffffda RBX: 00007f5bf2295fa0 RCX: 00007f5bf201acb9
[   84.506159][ T6114] RDX: 0000000000000001 RSI: 0000000000000004 RDI: 0000000000000003
[   84.506173][ T6114] RBP: 00007f5bf0a77090 R08: 0000000000000000 R09: 0000000000000000
[   84.506204][ T6114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.506219][ T6114] R13: 00007f5bf2296038 R14: 00007f5bf2295fa0 R15: 00007ffd093cc7d8
[   84.506242][ T6114]  </TASK>
[   84.523245][ T6115] netlink: 'syz.2.897': attribute type 1 has an invalid length.
[   84.708996][ T6120] FAULT_INJECTION: forcing a failure.
[   84.708996][ T6120] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.722212][ T6120] CPU: 0 UID: 0 PID: 6120 Comm: syz.5.898 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   84.722262][ T6120] Tainted: [W]=WARN
[   84.722272][ T6120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   84.722309][ T6120] Call Trace:
[   84.722318][ T6120]  <TASK>
[   84.722329][ T6120]  __dump_stack+0x1d/0x30
[   84.722361][ T6120]  dump_stack_lvl+0x95/0xd0
[   84.722390][ T6120]  dump_stack+0x15/0x1b
[   84.722444][ T6120]  should_fail_ex+0x263/0x280
[   84.722472][ T6120]  should_fail+0xb/0x20
[   84.722495][ T6120]  should_fail_usercopy+0x1a/0x20
[   84.722525][ T6120]  strncpy_from_user+0x27/0x250
[   84.722598][ T6120]  getname_flags+0xad/0x3b0
[   84.722623][ T6120]  __se_sys_quotactl+0x16a/0x670
[   84.722745][ T6120]  ? fput+0x8f/0xc0
[   84.722773][ T6120]  __x64_sys_quotactl+0x55/0x70
[   84.722799][ T6120]  x64_sys_call+0x19a4/0x3000
[   84.722827][ T6120]  do_syscall_64+0xc0/0x2a0
[   84.722909][ T6120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.722933][ T6120] RIP: 0033:0x7ff3e374acb9
[   84.722949][ T6120] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   84.722969][ T6120] RSP: 002b:00007ff3e21a7028 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[   84.723000][ T6120] RAX: ffffffffffffffda RBX: 00007ff3e39c5fa0 RCX: 00007ff3e374acb9
[   84.723015][ T6120] RDX: 0000000000000000 RSI: 0000200000000340 RDI: ffffffff80000401
[   84.723029][ T6120] RBP: 00007ff3e21a7090 R08: 0000000000000000 R09: 0000000000000000
[   84.723042][ T6120] R10: 0000200000000380 R11: 0000000000000246 R12: 0000000000000001
[   84.723056][ T6120] R13: 00007ff3e39c6038 R14: 00007ff3e39c5fa0 R15: 00007fffb90e96f8
[   84.723143][ T6120]  </TASK>
[   84.916305][ T6115] bond4: entered promiscuous mode
[   84.927055][ T6115] 8021q: adding VLAN 0 to HW filter on device bond4
[   85.012778][ T6137] loop4: detected capacity change from 0 to 512
[   85.053527][ T6137] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.110967][ T6137] ext4 filesystem being mounted at /166/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   85.122227][ T6146] EXT4-fs: inline encryption not supported
[   85.156711][ T6130] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.901: corrupted inode contents
[   85.173605][ T6146] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.198585][ T6130] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #2: comm syz.4.901: mark_inode_dirty error
[   85.287115][ T6130] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.901: corrupted inode contents
[   85.333370][ T6130] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.901: mark_inode_dirty error
[   85.458798][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.494123][ T6154] netlink: 8 bytes leftover after parsing attributes in process `syz.4.907'.
[   85.508916][ T6154] bond1: option mode: unable to set because the bond device has slaves
[   85.537662][ T6154] netlink: 8 bytes leftover after parsing attributes in process `syz.4.907'.
[   85.546500][ T6154] netlink: 4 bytes leftover after parsing attributes in process `syz.4.907'.
[   85.568970][ T6154] netlink: 'syz.4.907': attribute type 10 has an invalid length.
[   85.581386][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.811438][ T6182] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.824521][ T6182] ext4 filesystem being mounted at /196/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   85.838503][ T6182] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.897501][ T6189] netlink: 8 bytes leftover after parsing attributes in process `syz.1.920'.
[   85.916926][ T6189] bond1: option mode: unable to set because the bond device has slaves
[   85.949761][ T6189] netlink: 'syz.1.920': attribute type 10 has an invalid length.
[   86.118653][ T6210] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.135616][ T6207] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   86.137840][ T6210] ext4 filesystem being mounted at /199/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.160852][ T6210] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.406000][ T6235] bond1: option mode: unable to set because the bond device has slaves
[   86.419249][ T6235] netlink: 'syz.3.937': attribute type 10 has an invalid length.
[   86.539323][ T6238] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   86.650657][ T6220] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   86.671255][ T6207] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 18 with max blocks 2048 with error 28
[   86.683898][ T6207] EXT4-fs (loop2): This should not happen!! Data will be lost
[   86.683898][ T6207] 
[   86.693621][ T6207] EXT4-fs (loop2): Total free blocks count 0
[   86.699675][ T6207] EXT4-fs (loop2): Free/Dirty block details
[   86.705730][ T6207] EXT4-fs (loop2): free_blocks=2415919104
[   86.711556][ T6207] EXT4-fs (loop2): dirty_blocks=8208
[   86.716995][ T6207] EXT4-fs (loop2): Block reservation details
[   86.723124][ T6207] EXT4-fs (loop2): i_reserved_data_blocks=513
[   86.827758][ T6249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.840580][ T6249] ext4 filesystem being mounted at /169/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.850943][   T29] kauditd_printk_skb: 287 callbacks suppressed
[   86.850962][   T29] audit: type=1326 audit(1769066248.375:3557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   86.880708][   T29] audit: type=1326 audit(1769066248.375:3558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   86.904184][   T29] audit: type=1326 audit(1769066248.375:3559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   86.931437][   T29] audit: type=1326 audit(1769066248.465:3560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   86.957475][   T29] audit: type=1326 audit(1769066248.485:3561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   86.965649][ T6249] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.998022][   T31] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2068 with max blocks 2048 with error 28
[   87.011309][   T29] audit: type=1326 audit(1769066248.535:3562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   87.035047][   T29] audit: type=1326 audit(1769066248.535:3563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   87.058503][   T29] audit: type=1326 audit(1769066248.535:3564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   87.082029][   T29] audit: type=1326 audit(1769066248.535:3565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   87.105362][   T29] audit: type=1326 audit(1769066248.535:3566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bf201acb9 code=0x7ffc0000
[   87.257597][ T6262] sctp: [Deprecated]: syz.4.949 (pid 6262) Use of int in maxseg socket option.
[   87.257597][ T6262] Use struct sctp_assoc_value instead
[   87.344533][ T6270] FAULT_INJECTION: forcing a failure.
[   87.344533][ T6270] name failslab, interval 1, probability 0, space 0, times 0
[   87.357279][ T6270] CPU: 1 UID: 0 PID: 6270 Comm: syz.2.952 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   87.357320][ T6270] Tainted: [W]=WARN
[   87.357335][ T6270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   87.357427][ T6270] Call Trace:
[   87.357435][ T6270]  <TASK>
[   87.357443][ T6270]  __dump_stack+0x1d/0x30
[   87.357467][ T6270]  dump_stack_lvl+0x95/0xd0
[   87.357572][ T6270]  dump_stack+0x15/0x1b
[   87.357615][ T6270]  should_fail_ex+0x263/0x280
[   87.357641][ T6270]  should_failslab+0x8c/0xb0
[   87.357723][ T6270]  __kmalloc_cache_noprof+0x64/0x4a0
[   87.357749][ T6270]  ? genl_start+0x117/0x390
[   87.357853][ T6270]  genl_start+0x117/0x390
[   87.357911][ T6270]  __netlink_dump_start+0x334/0x520
[   87.357946][ T6270]  genl_family_rcv_msg_dumpit+0x1a5/0x210
[   87.358016][ T6270]  ? __pfx_genl_start+0x10/0x10
[   87.358048][ T6270]  ? __pfx_genl_dumpit+0x10/0x10
[   87.358084][ T6270]  ? __pfx_genl_done+0x10/0x10
[   87.358148][ T6270]  genl_rcv_msg+0x400/0x470
[   87.358268][ T6270]  ? __pfx_batadv_dat_cache_dump+0x10/0x10
[   87.358302][ T6270]  netlink_rcv_skb+0x123/0x220
[   87.358339][ T6270]  ? __pfx_genl_rcv_msg+0x10/0x10
[   87.358495][ T6270]  genl_rcv+0x28/0x40
[   87.358535][ T6270]  netlink_unicast+0x5c0/0x690
[   87.358561][ T6270]  netlink_sendmsg+0x5c8/0x6f0
[   87.358596][ T6270]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.358658][ T6270]  __sock_sendmsg+0x145/0x170
[   87.358694][ T6270]  sock_sendmsg+0xc1/0x130
[   87.358737][ T6270]  splice_to_socket+0x6e2/0xa80
[   87.358817][ T6270]  ? __pfx_splice_to_socket+0x10/0x10
[   87.358856][ T6270]  direct_splice_actor+0x156/0x2a0
[   87.358938][ T6270]  ? shmem_file_write_iter+0xa1/0xf0
[   87.358973][ T6270]  splice_direct_to_actor+0x311/0x670
[   87.359016][ T6270]  ? __pfx_direct_splice_actor+0x10/0x10
[   87.359147][ T6270]  do_splice_direct+0x119/0x1a0
[   87.359192][ T6270]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   87.359278][ T6270]  do_sendfile+0x380/0x650
[   87.359316][ T6270]  __x64_sys_sendfile64+0x105/0x150
[   87.359366][ T6270]  x64_sys_call+0x2db1/0x3000
[   87.359393][ T6270]  do_syscall_64+0xc0/0x2a0
[   87.359422][ T6270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.359445][ T6270] RIP: 0033:0x7fe31994acb9
[   87.359544][ T6270] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   87.359570][ T6270] RSP: 002b:00007fe3183a7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   87.359597][ T6270] RAX: ffffffffffffffda RBX: 00007fe319bc5fa0 RCX: 00007fe31994acb9
[   87.359616][ T6270] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000011
[   87.359631][ T6270] RBP: 00007fe3183a7090 R08: 0000000000000000 R09: 0000000000000000
[   87.359644][ T6270] R10: 0000000100000002 R11: 0000000000000246 R12: 0000000000000001
[   87.359662][ T6270] R13: 00007fe319bc6038 R14: 00007fe319bc5fa0 R15: 00007ffc83875888
[   87.359684][ T6270]  </TASK>
[   87.707691][ T6262] sctp: [Deprecated]: syz.4.949 (pid 6262) Use of int in max_burst socket option.
[   87.707691][ T6262] Use struct sctp_assoc_value instead
[   87.753930][ T6275] tunl0: Caught tx_queue_len zero misconfig
[   87.806783][ T6280] netlink: 'syz.3.955': attribute type 10 has an invalid length.
[   87.817595][ T6280] ipvlan0: entered allmulticast mode
[   87.823017][ T6280] veth0_vlan: entered allmulticast mode
[   87.831456][ T6280] team0: Device ipvlan0 failed to register rx_handler
[   87.911855][ T6288] team0: Port device team_slave_0 removed
[   87.921024][  T922] smc: removing ib device !yz!
[   87.958550][ T6292] program syz.1.960 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   88.477104][ T6307] sctp: [Deprecated]: syz.4.966 (pid 6307) Use of int in maxseg socket option.
[   88.477104][ T6307] Use struct sctp_assoc_value instead
[   88.584822][ T6307] sctp: [Deprecated]: syz.4.966 (pid 6307) Use of int in max_burst socket option.
[   88.584822][ T6307] Use struct sctp_assoc_value instead
[   88.691061][ T6322] program syz.2.971 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   88.816520][ T6336] syz.3.977 uses obsolete (PF_INET,SOCK_PACKET)
[   88.839087][ T6339] FAULT_INJECTION: forcing a failure.
[   88.839087][ T6339] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   88.852269][ T6339] CPU: 1 UID: 0 PID: 6339 Comm: syz.4.978 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   88.852318][ T6339] Tainted: [W]=WARN
[   88.852328][ T6339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   88.852345][ T6339] Call Trace:
[   88.852353][ T6339]  <TASK>
[   88.852363][ T6339]  __dump_stack+0x1d/0x30
[   88.852389][ T6339]  dump_stack_lvl+0x95/0xd0
[   88.852464][ T6339]  dump_stack+0x15/0x1b
[   88.852490][ T6339]  should_fail_ex+0x263/0x280
[   88.852523][ T6339]  should_fail+0xb/0x20
[   88.852546][ T6339]  should_fail_usercopy+0x1a/0x20
[   88.852573][ T6339]  _copy_to_user+0x20/0xa0
[   88.852601][ T6339]  simple_read_from_buffer+0xb5/0x130
[   88.852659][ T6339]  proc_fail_nth_read+0x10e/0x150
[   88.852713][ T6339]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   88.852748][ T6339]  vfs_read+0x1ab/0x7f0
[   88.852790][ T6339]  ? __rcu_read_unlock+0x4e/0x70
[   88.852815][ T6339]  ? __fget_files+0x184/0x1c0
[   88.852837][ T6339]  ? __sys_bind+0x222/0x290
[   88.852926][ T6339]  ? mutex_lock+0x57/0x90
[   88.852947][ T6339]  ksys_read+0xdc/0x1a0
[   88.853003][ T6339]  __x64_sys_read+0x40/0x50
[   88.853040][ T6339]  x64_sys_call+0x2889/0x3000
[   88.853122][ T6339]  do_syscall_64+0xc0/0x2a0
[   88.853184][ T6339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.853214][ T6339] RIP: 0033:0x7f5bf1fdb58e
[   88.853236][ T6339] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   88.853258][ T6339] RSP: 002b:00007f5bf0a76fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   88.853360][ T6339] RAX: ffffffffffffffda RBX: 00007f5bf0a776c0 RCX: 00007f5bf1fdb58e
[   88.853384][ T6339] RDX: 000000000000000f RSI: 00007f5bf0a770a0 RDI: 0000000000000004
[   88.853402][ T6339] RBP: 00007f5bf0a77090 R08: 0000000000000000 R09: 0000000000000000
[   88.853416][ T6339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.853429][ T6339] R13: 00007f5bf2296038 R14: 00007f5bf2295fa0 R15: 00007ffd093cc7d8
[   88.853449][ T6339]  </TASK>
[   89.077883][ T6343] __nla_validate_parse: 10 callbacks suppressed
[   89.077906][ T6343] netlink: 8 bytes leftover after parsing attributes in process `syz.2.979'.
[   89.115256][ T6343] bond1: option mode: unable to set because the bond device has slaves
[   89.179501][ T6343] netlink: 8 bytes leftover after parsing attributes in process `syz.2.979'.
[   89.188369][ T6343] netlink: 4 bytes leftover after parsing attributes in process `syz.2.979'.
[   89.227405][ T6343] netlink: 'syz.2.979': attribute type 10 has an invalid length.
[   89.237808][ T6353] sctp: [Deprecated]: syz.5.983 (pid 6353) Use of int in maxseg socket option.
[   89.237808][ T6353] Use struct sctp_assoc_value instead
[   89.262441][ T6343] bridge0: port 3(syz_tun) entered disabled state
[   89.269025][ T6343] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.276174][ T6343] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.337007][ T6343] netlink: 20 bytes leftover after parsing attributes in process `syz.2.979'.
[   89.356725][ T6353] sctp: [Deprecated]: syz.5.983 (pid 6353) Use of int in max_burst socket option.
[   89.356725][ T6353] Use struct sctp_assoc_value instead
[   89.480710][ T6365] vhci_hcd vhci_hcd.1: default hub control req: 5f00 v0000 i0000 l0
[   89.507326][ T6365] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1019 sclass=netlink_route_socket pid=6365 comm=syz.2.985
[   89.673703][ T6375] set_capacity_and_notify: 5 callbacks suppressed
[   89.673725][ T6375] loop2: detected capacity change from 0 to 128
[   89.753296][ T6375] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   89.782311][ T6388] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   89.815745][ T6375] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.840817][ T6389] loop1: detected capacity change from 0 to 256
[   89.909363][ T6392] netlink: 8 bytes leftover after parsing attributes in process `syz.3.995'.
[   89.947313][ T6392] bond1: option mode: unable to set because the bond device has slaves
[   89.968016][ T6392] netlink: 8 bytes leftover after parsing attributes in process `syz.3.995'.
[   89.976907][ T6392] netlink: 4 bytes leftover after parsing attributes in process `syz.3.995'.
[   90.017415][ T6392] netlink: 'syz.3.995': attribute type 10 has an invalid length.
[   90.025738][ T6392] netlink: 20 bytes leftover after parsing attributes in process `syz.3.995'.
[   90.074112][ T6399] loop4: detected capacity change from 0 to 512
[   90.086214][ T6397] loop1: detected capacity change from 0 to 128
[   90.108461][ T6397] FAT-fs (loop1): bogus number of reserved sectors
[   90.115057][ T6397] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[   90.124466][ T6397] FAT-fs (loop1): Can't find a valid FAT filesystem
[   90.132699][ T6399] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.165114][ T6399] ext4 filesystem being mounted at /186/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   90.197048][ T6405] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[   90.197048][ T6405] The task syz.3.999 (6405) triggered the difference, watch for misbehavior.
[   90.199214][ T6399] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.998: corrupted inode contents
[   90.235333][ T6399] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #2: comm syz.4.998: mark_inode_dirty error
[   90.259285][ T6399] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.998: corrupted inode contents
[   90.337558][ T6399] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.998: mark_inode_dirty error
[   90.409337][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.434387][ T6418] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1005'.
[   90.536350][ T6426] loop4: detected capacity change from 0 to 256
[   90.552742][ T3323] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   90.573144][ T6427] loop3: detected capacity change from 0 to 512
[   90.614517][ T6427] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.634702][ T6427] ext4 filesystem being mounted at /187/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   90.646889][ T6424] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #2: comm syz.3.1006: corrupted inode contents
[   90.659278][ T6424] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #2: comm syz.3.1006: mark_inode_dirty error
[   90.695807][ T6424] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #2: comm syz.3.1006: corrupted inode contents
[   90.711673][ T6424] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.1006: mark_inode_dirty error
[   90.857808][ T6439] FAULT_INJECTION: forcing a failure.
[   90.857808][ T6439] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.871123][ T6439] CPU: 0 UID: 0 PID: 6439 Comm: syz.4.1011 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   90.871157][ T6439] Tainted: [W]=WARN
[   90.871166][ T6439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   90.871182][ T6439] Call Trace:
[   90.871189][ T6439]  <TASK>
[   90.871199][ T6439]  __dump_stack+0x1d/0x30
[   90.871295][ T6439]  dump_stack_lvl+0x95/0xd0
[   90.871325][ T6439]  dump_stack+0x15/0x1b
[   90.871378][ T6439]  should_fail_ex+0x263/0x280
[   90.871483][ T6439]  should_fail+0xb/0x20
[   90.871504][ T6439]  should_fail_usercopy+0x1a/0x20
[   90.871533][ T6439]  _copy_from_user+0x1c/0xb0
[   90.871566][ T6439]  sk_getsockopt+0xcf/0x1a60
[   90.871670][ T6439]  ? selinux_socket_getsockopt+0x192/0x1c0
[   90.871702][ T6439]  ? should_fail_ex+0xd9/0x280
[   90.871723][ T6439]  do_sock_getsockopt+0x14d/0x210
[   90.871754][ T6439]  __x64_sys_getsockopt+0x11d/0x1a0
[   90.871829][ T6439]  x64_sys_call+0x2dc7/0x3000
[   90.871916][ T6439]  do_syscall_64+0xc0/0x2a0
[   90.871953][ T6439]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.871978][ T6439] RIP: 0033:0x7f5bf201acb9
[   90.871997][ T6439] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   90.872019][ T6439] RSP: 002b:00007f5bf0a77028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   90.872105][ T6439] RAX: ffffffffffffffda RBX: 00007f5bf2295fa0 RCX: 00007f5bf201acb9
[   90.872145][ T6439] RDX: 000000000000001c RSI: 0000000000000001 RDI: 0000000000000004
[   90.872162][ T6439] RBP: 00007f5bf0a77090 R08: 00002000000003c0 R09: 0000000000000000
[   90.872180][ T6439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.872197][ T6439] R13: 00007f5bf2296038 R14: 00007f5bf2295fa0 R15: 00007ffd093cc7d8
[   90.872224][ T6439]  </TASK>
[   91.061452][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.084539][ T6441] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[   91.418786][ T6458] loop4: detected capacity change from 0 to 128
[   91.427557][ T6458] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   91.440460][ T6458] ext4 filesystem being mounted at /194/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.622861][ T6463] can0: slcan on ttyS3.
[   91.761879][ T6463] loop2: detected capacity change from 0 to 128
[   91.823952][ T6479] FAULT_INJECTION: forcing a failure.
[   91.823952][ T6479] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   91.837333][ T6479] CPU: 1 UID: 0 PID: 6479 Comm: syz.5.1022 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   91.837374][ T6479] Tainted: [W]=WARN
[   91.837381][ T6479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   91.837397][ T6479] Call Trace:
[   91.837406][ T6479]  <TASK>
[   91.837415][ T6479]  __dump_stack+0x1d/0x30
[   91.837531][ T6479]  dump_stack_lvl+0x95/0xd0
[   91.837558][ T6479]  dump_stack+0x15/0x1b
[   91.837585][ T6479]  should_fail_ex+0x263/0x280
[   91.837611][ T6479]  should_fail+0xb/0x20
[   91.837629][ T6479]  should_fail_usercopy+0x1a/0x20
[   91.837695][ T6479]  _copy_from_user+0x1c/0xb0
[   91.837792][ T6479]  memdup_user+0x5e/0xd0
[   91.837879][ T6479]  strndup_user+0x68/0xb0
[   91.837921][ T6479]  __se_sys_mount+0x4d/0x2e0
[   91.837941][ T6479]  ? fput+0x8f/0xc0
[   91.837971][ T6479]  ? ksys_write+0x194/0x1a0
[   91.838027][ T6479]  __x64_sys_mount+0x67/0x80
[   91.838096][ T6479]  x64_sys_call+0x2cca/0x3000
[   91.838122][ T6479]  do_syscall_64+0xc0/0x2a0
[   91.838157][ T6479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.838277][ T6479] RIP: 0033:0x7ff3e374acb9
[   91.838295][ T6479] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   91.838321][ T6479] RSP: 002b:00007ff3e21a7028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   91.838347][ T6479] RAX: ffffffffffffffda RBX: 00007ff3e39c5fa0 RCX: 00007ff3e374acb9
[   91.838366][ T6479] RDX: 0000200000000180 RSI: 0000200000000000 RDI: 0000000000000000
[   91.838384][ T6479] RBP: 00007ff3e21a7090 R08: 00002000000001c0 R09: 0000000000000000
[   91.838398][ T6479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.838486][ T6479] R13: 00007ff3e39c6038 R14: 00007ff3e39c5fa0 R15: 00007fffb90e96f8
[   91.838506][ T6479]  </TASK>
[   91.933231][ T6482] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=359 sclass=netlink_route_socket pid=6482 comm=syz.2.1020
[   92.119680][ T6488] loop5: detected capacity change from 0 to 2048
[   92.139777][ T6492] loop1: detected capacity change from 0 to 128
[   92.154609][ T6492] FAT-fs (loop1): bogus number of reserved sectors
[   92.161246][ T6492] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[   92.170797][ T6492] FAT-fs (loop1): Can't find a valid FAT filesystem
[   92.264236][ T6497] SET target dimension over the limit!
[   92.310825][ T3324] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   92.363906][ T6509] iso9660: Unknown parameter '&'
[   92.371323][ T6509] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1031'.
[   92.396216][ T6505] EXT4-fs error (device loop4): ext4_quota_enable:7173: comm syz.4.1032: Bad quota inum: 1, type: 2
[   92.427289][   T29] kauditd_printk_skb: 302 callbacks suppressed
[   92.427309][   T29] audit: type=1326 audit(1769066253.965:3869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6510 comm="syz.3.1033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1acdacb9 code=0x7ffc0000
[   92.457978][   T29] audit: type=1326 audit(1769066253.965:3870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6510 comm="syz.3.1033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f7b1acdacb9 code=0x7ffc0000
[   92.477364][ T6505] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix.
[   92.481786][   T29] audit: type=1326 audit(1769066253.965:3871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6510 comm="syz.3.1033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1acdacb9 code=0x7ffc0000
[   92.520498][   T29] audit: type=1326 audit(1769066253.965:3872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6510 comm="syz.3.1033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7b1acdacb9 code=0x7ffc0000
[   92.545226][ T6505] EXT4-fs (loop4): mount failed
[   92.551069][ T6505] ==================================================================
[   92.559332][ T6505] BUG: KCSAN: data-race in find_get_block_common / has_bh_in_lru
[   92.567103][ T6505] 
[   92.569475][ T6505] read-write to 0xffff888237d27550 of 8 bytes by task 6463 on cpu 1:
[   92.577568][ T6505]  find_get_block_common+0x498/0x8e0
[   92.582934][ T6505]  bdev_getblk+0x4d/0x3f0
[   92.587319][ T6505]  __bread_gfp+0x51/0x240
[   92.591689][ T6505]  fat_ent_bread+0xc9/0x1a0
[   92.596250][ T6505]  fat_ent_read+0x3b3/0x5c0
[   92.600789][ T6505]  fat_free_clusters+0x17b/0x8a0
[   92.605760][ T6505]  fat_truncate_blocks+0x510/0x5a0
[   92.611175][ T6505]  fat_write_end+0xba/0x160
[   92.615730][ T6505]  generic_perform_write+0x311/0x490
[   92.621102][ T6505]  __generic_file_write_iter+0xec/0x120
[   92.626788][ T6505]  generic_file_write_iter+0x8d/0x310
[   92.632263][ T6505]  do_iter_readv_writev+0x4fd/0x5a0
[   92.637514][ T6505]  vfs_writev+0x2e1/0x900
[   92.641893][ T6505]  __se_sys_pwritev2+0xfc/0x1c0
[   92.646857][ T6505]  __x64_sys_pwritev2+0x67/0x80
[   92.651759][ T6505]  x64_sys_call+0x2c9e/0x3000
[   92.656575][ T6505]  do_syscall_64+0xc0/0x2a0
[   92.661145][ T6505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.667090][ T6505] 
[   92.669447][ T6505] read to 0xffff888237d27550 of 8 bytes by task 6505 on cpu 0:
[   92.677026][ T6505]  has_bh_in_lru+0x35/0x1f0
[   92.681579][ T6505]  __lru_add_drain_all+0x287/0x450
[   92.686770][ T6505]  lru_add_drain_all+0x10/0x20
[   92.691578][ T6505]  invalidate_bdev+0x47/0x70
[   92.696229][ T6505]  ext4_fill_super+0x2d52/0x3800
[   92.701235][ T6505]  get_tree_bdev_flags+0x291/0x300
[   92.706418][ T6505]  get_tree_bdev+0x1f/0x30
[   92.710896][ T6505]  ext4_get_tree+0x1c/0x30
[   92.715440][ T6505]  vfs_get_tree+0x57/0x1d0
[   92.719910][ T6505]  do_new_mount+0x288/0x700
[   92.724457][ T6505]  path_mount+0x4c0/0xb90
[   92.728850][ T6505]  __se_sys_mount+0x28c/0x2e0
[   92.733586][ T6505]  __x64_sys_mount+0x67/0x80
[   92.738303][ T6505]  x64_sys_call+0x2cca/0x3000
[   92.742788][ T6463] syz.2.1020: attempt to access beyond end of device
[   92.742788][ T6463] loop2: rw=2049, sector=129, nr_sectors = 8 limit=128
[   92.743484][ T6505]  do_syscall_64+0xc0/0x2a0
[   92.757520][ T6463] syz.2.1020: attempt to access beyond end of device
[   92.757520][ T6463] loop2: rw=2049, sector=145, nr_sectors = 8 limit=128
[   92.761399][ T6505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.775126][ T6463] syz.2.1020: attempt to access beyond end of device
[   92.775126][ T6463] loop2: rw=2049, sector=161, nr_sectors = 8 limit=128
[   92.780678][ T6505] 
[   92.780685][ T6505] value changed: 0x0000000000000000 -> 0xffff88811b27d680
[   92.780701][ T6505] 
[   92.780707][ T6505] Reported by Kernel Concurrency Sanitizer on:
[   92.780739][ T6505] CPU: 0 UID: 0 PID: 6505 Comm: syz.4.1032 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   92.794535][ T6463] syz.2.1020: attempt to access beyond end of device
[   92.794535][ T6463] loop2: rw=2049, sector=177, nr_sectors = 8 limit=128
[   92.796442][ T6505] Tainted: [W]=WARN
[   92.796454][ T6505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   92.796468][ T6505] ==================================================================
[   92.859939][ T6463] syz.2.1020: attempt to access beyond end of device
[   92.859939][ T6463] loop2: rw=2049, sector=193, nr_sectors = 8 limit=128
[   92.887170][ T6463] syz.2.1020: attempt to access beyond end of device
[   92.887170][ T6463] loop2: rw=2049, sector=209, nr_sectors = 8 limit=128
[   92.901117][ T6463] syz.2.1020: attempt to access beyond end of device
[   92.901117][ T6463] loop2: rw=2049, sector=225, nr_sectors = 8 limit=128
[   92.915615][ T6463] syz.2.1020: attempt to access beyond end of device
[   92.915615][ T6463] loop2: rw=2049, sector=241, nr_sectors = 8 limit=128
[   92.930997][ T6463] syz.2.1020: attempt to access beyond end of device
[   92.930997][ T6463] loop2: rw=2049, sector=257, nr_sectors = 8 limit=128
[   92.944800][ T6463] syz.2.1020: attempt to access beyond end of device
[   92.944800][ T6463] loop2: rw=2049, sector=273, nr_sectors = 8 limit=128
[   92.967179][ T6462] can0 (unregistered): slcan off ttyS3.