last executing test programs:

42.044181878s ago: executing program 2 (id=402):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r0, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0) (fail_nth: 9)

41.799680113s ago: executing program 2 (id=405):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newtaction={0x90, 0x30, 0x1, 0x0, 0x0, {}, [{0x7c, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4, 0x2}, {0xc}, {0xc}}}, @m_ife={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xfffffffffffffffe}}}, @TCA_IFE_METALST={0x4}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x90}}, 0x0)

41.718433118s ago: executing program 2 (id=409):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100000000000000000000000000000000000000000a0060", @ANYRESOCT], 0xb8}}, 0x20040014)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x200, 0x0, 0x25dfdbfb, {{@in=@loopback, @in6=@local, 0x0, 0x4, 0x0, 0x0, 0xa, 0x60, 0x80, 0x3b, 0x0, 0xee01}, {0x0, 0x4, 0x0, 0x0, 0x40, 0xfffffffffffffffd, 0x2}, {0xfffffffffffffffe}, 0x9, 0x40000000, 0x0, 0x1, 0x2}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x50)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e0001"], 0xb8}}, 0x20004000)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000020000000000fc0000000000000000"], 0xb8}, 0x1, 0x0, 0x0, 0x80c0}, 0x0)
sendmsg$nl_xfrm(r0, 0x0, 0x4000)

41.66901454s ago: executing program 2 (id=412):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f00000003c0)={0x0, 0xfffffffffffffd90, &(0x7f0000000380)={&(0x7f0000000240)={0x14, r1, 0x701, 0x74bd2b, 0x0, {0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x20004074}, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x12c5008, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x500, 0x40)
r3 = open_tree(r2, &(0x7f0000000300)='\x00', 0x89901)
r4 = open_tree(r2, &(0x7f0000000100)='./file0/../file0\x00', 0x101)
r5 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x9, 0xf94b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x2, @perf_bp={0x0}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x200003, 0x6, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r7 = getpgid(0xffffffffffffffff)
getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000600)={{{@in6=@private2, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in=@loopback}, 0x0, @in6=@mcast2}}, &(0x7f0000000040)=0xe8)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000000280)={<r10=>0x0, <r11=>0x0, <r12=>0x0}, &(0x7f00000013c0)=0xc)
sendmmsg$unix(r9, &(0x7f0000000480)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000440)="aa", 0x1}], 0x1, &(0x7f00000000c0)=[@cred={{0x1c, 0x1, 0x2, {r10, r11, r12}}}], 0x20, 0x40044}}, {{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000300)="06", 0x1}], 0x1, 0x0, 0x0, 0x4004}}], 0x2, 0x4)
setsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={r7, r8, r12}, 0xc)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)

41.66813662s ago: executing program 2 (id=414):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x63, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x800000, 0x6, 0x2, 0xcb, 0xffff, 0x0, 0x0, 0x0, 0xbf}, 0x0, 0xfff8000000000001, 0xffffffffffffffff, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x200000a, 0x13, r0, 0x0)
r1 = gettid()
pipe(&(0x7f00000004c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$P9_RGETLOCK(r2, &(0x7f00000002c0)=ANY=[], 0x200002e6)
fcntl$setpipe(r2, 0x407, 0x7000000)
process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r4=>0x0})
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$UHID_INPUT(r6, &(0x7f0000000b40)={0x8, {"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", 0x1000}}, 0x1006)
ptrace(0x10, r5)
rt_sigqueueinfo(r5, 0x36, &(0x7f0000000ac0)={0x8001f, 0xc4, 0xff7ffffe})
ptrace$peeksig(0x4209, r5, &(0x7f0000000000)={0x2, 0x1, 0x1}, &(0x7f0000000040)=[{}])
prctl$PR_GET_SPECULATION_CTRL(0x23, 0x4, 0x7fffffffefff)
ptrace$peeksig(0x4209, r5, &(0x7f0000000580)={0x4810fc3a, 0x1, 0x3}, &(0x7f00000005c0)=[{}, {}, {}])
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0xb, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000001000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000000600000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000240)={0x0, <r9=>0x0}, &(0x7f0000000280)=0x5)
setuid(r9)
quotactl$Q_SETQUOTA(0x4f99fd225aa494fe, &(0x7f0000000040)=@md0, r9, &(0x7f0000000280)={0x7f, 0x5, 0x1, 0x77e5a85, 0x0, 0x37db, 0x2, 0x5, 0x4})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r7, r4, 0x25, 0x0, @void}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
fstat(r7, &(0x7f0000000500))
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000140)={'wlan0\x00'})
epoll_pwait(0xffffffffffffffff, &(0x7f0000000400)=[{}, {}, {}, {}, {}, {}], 0x6, 0x6, &(0x7f0000000480)={[0x1]}, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)

41.215710016s ago: executing program 2 (id=422):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000180)={0x0, 0x2}, 0x8)
sendto$inet6(r0, &(0x7f0000000b80)="be", 0x1, 0x4008014, &(0x7f0000000000)={0xa, 0x4e22, 0x1, @dev={0xfe, 0x80, '\x00', 0x23}, 0x7}, 0x1c)
shutdown(r0, 0x1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000050000000100000001000013040000000200000088060000ff0f0000002e2e"], 0x0, 0x35, 0x0, 0x1}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYRES16=r0, @ANYRESDEC=r0, @ANYRES64=r0, @ANYRESDEC, @ANYRES64=r0], 0x50)

41.215600316s ago: executing program 32 (id=422):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000180)={0x0, 0x2}, 0x8)
sendto$inet6(r0, &(0x7f0000000b80)="be", 0x1, 0x4008014, &(0x7f0000000000)={0xa, 0x4e22, 0x1, @dev={0xfe, 0x80, '\x00', 0x23}, 0x7}, 0x1c)
shutdown(r0, 0x1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000050000000100000001000013040000000200000088060000ff0f0000002e2e"], 0x0, 0x35, 0x0, 0x1}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYRES16=r0, @ANYRESDEC=r0, @ANYRES64=r0, @ANYRESDEC, @ANYRES64=r0], 0x50)

3.010572185s ago: executing program 4 (id=1159):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0542, 0x0)
readv(r0, &(0x7f00000018c0)=[{&(0x7f0000000840)=""/4096, 0x1000}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4080}, 0x20000080)
timer_create(0x0, 0x0, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10004, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x3938700}}, 0x0)

2.147399055s ago: executing program 4 (id=1177):
r0 = socket$packet(0x11, 0x3, 0x300)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x10, 0x0, 0x7fff7ffc}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
get_mempolicy(0x0, 0x0, 0x4, &(0x7f000051f000/0x2000)=nil, 0x3)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x4, &(0x7f0000000280)=[{0x20, 0x2, 0x81, 0xfffff034}, {0x20, 0x0, 0x8, 0xfffff00c}, {0x40}, {0x6, 0xba, 0x2, 0xffff}]}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), r2)
r3 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$netlink(r5, 0x10e, 0xb, &(0x7f0000000ac0)=""/93, &(0x7f0000000b40)=0x5d)
r6 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x50)
getdents(r6, 0x0, 0x0)
getdents(r6, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="f80000005400e50100000000fdffffff07000000", @ANYRES32=r4, @ANYBLOB="20000100", @ANYRES32=r4, @ANYBLOB="011e0400fc0000000000000000000000000000000000000020000100", @ANYRES32=r4, @ANYBLOB="01000400ac1414aa0000000000000000000000000800000020000100", @ANYRES32=r4, @ANYBLOB="00020400ac1414370000000000000000000000000800000020000100", @ANYRES32=r4, @ANYBLOB="01030440e064ee484d620000020800000000000000684ea4ca7ed6404c20becc00", @ANYRES32=r4, @ANYBLOB="01000300640101010000000000000000000000000800000020000100", @ANYRES32=r4, @ANYBLOB="01020100640101010000000000000000000000000000000020000100", @ANYRES32=r4, @ANYBLOB="00020400fe88000000000000000000000000010108000000"], 0xf8}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000440)=@ipv6_delrule={0x58, 0x21, 0x200, 0x70bd27, 0x25dfdbff, {0xa, 0x20, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x800f}, [@FRA_SRC={0x14, 0x2, @loopback}, @FIB_RULE_POLICY=@FRA_IIFNAME={0x14, 0x3, 'pim6reg\x00'}, @FRA_DST={0x14, 0x1, @mcast1}]}, 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x20040896)
syz_emit_ethernet(0x46, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra}}}}}, 0x0)

1.973313165s ago: executing program 4 (id=1178):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000001c0)={0x2007})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f0000000000)={0x20000018})
epoll_wait(r2, &(0x7f0000000180)=[{}], 0x1, 0x3)
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x103440)
syz_usb_disconnect(r3)
syz_usb_connect$cdc_ncm(0x3, 0xf3, &(0x7f0000000540)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r3, 0x41015500, &(0x7f0000000500)=0x81000000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f0000000940)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="480000001000370400000000ffdbdf2500000000", @ANYRES32=r6, @ANYBLOB="01f1050000000000180012800800", @ANYRES32], 0x48}, 0x1, 0x0, 0x0, 0x4011}, 0x40004)
sendmmsg$inet(r0, &(0x7f00000006c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1=0xe000030a}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @empty, @multicast2}}}], 0x20}}], 0x1, 0x80)

1.816963454s ago: executing program 1 (id=1184):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, 0x0, 0x20040014)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x200, 0x0, 0x25dfdbfb, {{@in=@loopback, @in6=@local, 0x0, 0x4, 0x0, 0x0, 0xa, 0x60, 0x80, 0x3b, 0x0, 0xee01}, {0x0, 0x4, 0x0, 0x0, 0x40, 0xfffffffffffffffd, 0x2}, {0xfffffffffffffffe}, 0x9, 0x40000000, 0x0, 0x1, 0x2}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x50)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e00"], 0xb8}}, 0x20004000)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000020000000000fc0000000000000000"], 0xb8}, 0x1, 0x0, 0x0, 0x80c0}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYBLOB="b80000001300e9990500000000000000fc000000000000000000000000000000fc00000000000000000000000000000000000000000000000a0030"], 0xb8}}, 0x4000)

1.782090697s ago: executing program 1 (id=1186):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000001d80)={0x0, @in6={{0xa, 0x4e23, 0x20006, @empty, 0x6}}, 0x27f, 0x2, 0x0, 0x5, 0x392, 0x94}, 0x9c)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r3, 0x2000000, 0xe, 0xf0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.72010237s ago: executing program 1 (id=1187):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0542, 0x0)
readv(r0, &(0x7f00000018c0)=[{&(0x7f0000000840)=""/4096, 0x1000}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4080}, 0x20000080)
timer_create(0x0, 0x0, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10004, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x3938700}}, 0x0)

1.114517165s ago: executing program 4 (id=1191):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a88000000060a0b160000000000000000020000085c00048028000180080001006f7366001c0002800800014000000004052402000c000000080001400000000a30000180080001006e6174002400028008000140000000000800034000000014080002400000000208000540000000000900010073797a30000000000900020073797a32"], 0xb0}, 0x1, 0x0, 0x0, 0x850}, 0x4040080)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0xe)
socket(0x40000000015, 0x805, 0x0)
r1 = perf_event_open(&(0x7f00000005c0)={0x1, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x2}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open$cgroup(&(0x7f0000000080)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1005e2, 0x2, 0x0, 0x0, 0x2, 0x1000000}, 0xffffffffffffffff, 0x0, r1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
creat(&(0x7f0000000000)='./file0\x00', 0x8)
syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13580}, 0x0, 0x0)
r2 = socket$kcm(0x1e, 0x5, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0x8, 0x6}, 0x10, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="380000001800010000000000000000000a000000000000000000000008000400", @ANYRES32=r3, @ANYBLOB="06001500070000000c00168008000100", @ANYRES64=r2], 0x38}}, 0x10)

1.03464389s ago: executing program 4 (id=1195):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xd4, 0x0, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
socket$igmp(0x2, 0x3, 0x2)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x69)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x11000)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x2, 0xf4039, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x147b7e, 0x0, @perf_config_ext={0x1, 0xf60e}, 0x9092, 0x0, 0x43a1bd76, 0x2, 0x9, 0x6, 0x5, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x4000000000, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$inet(0x2, 0x3, 0x33)
getsockopt$inet_mreqsrc(r5, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x8)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = dup(r6)
write$UHID_INPUT(r7, &(0x7f00000027c0)={0xfc, {"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", 0x1000}}, 0x1006)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000100)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@abort}, {@resgid}, {@bh}, {@nouid32}]}, 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
pwritev2(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x105842, 0x0)
writev(r8, &(0x7f0000000a40)=[{0x0}, {&(0x7f0000000e00)='t', 0x2fd200}, {0x0, 0x2200}, {&(0x7f0000001000)="d6", 0x20c00}], 0x21)

1.016534761s ago: executing program 3 (id=1196):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, 0x0, 0x20040014)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x200, 0x0, 0x25dfdbfb, {{@in=@loopback, @in6=@local, 0x0, 0x4, 0x0, 0x0, 0xa, 0x60, 0x80, 0x3b, 0x0, 0xee01}, {0x0, 0x4, 0x0, 0x0, 0x40, 0xfffffffffffffffd, 0x2}, {0xfffffffffffffffe}, 0x9, 0x40000000, 0x0, 0x1, 0x2}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x50)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e00"], 0xb8}}, 0x20004000)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000020000000000fc0000000000000000"], 0xb8}, 0x1, 0x0, 0x0, 0x80c0}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYBLOB="b80000001300e9990500000000000000fc000000000000000000000000000000fc00000000000000000000000000000000000000000000000a0030"], 0xb8}}, 0x4000)

985.013983ms ago: executing program 3 (id=1197):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000001d80)={0x0, @in6={{0xa, 0x4e23, 0x20006, @empty, 0x6}}, 0x27f, 0x2, 0x0, 0x5, 0x392, 0x94}, 0x9c)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r2, 0x2000000, 0xe, 0xf0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

924.199246ms ago: executing program 3 (id=1198):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x0, 0x3}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x0, 0x1}, 0x10)
sendmsg$tipc(r1, &(0x7f00000008c0)={&(0x7f0000000600)=@name, 0x10, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x80)
r2 = dup3(r0, r1, 0x0)
setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, &(0x7f0000000000)=0x10000, 0x4)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88)
quotactl$Q_GETINFO(0xffffffff80000500, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000440))
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)

908.162057ms ago: executing program 1 (id=1199):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a88000000060a0b160000000000000000020000085c00048028000180080001006f7366001c0002800800014000000004052402000c000000080001400000000a30000180080001006e6174002400028008000140000000000800034000000014080002400000000208000540000000000900010073797a30000000000900020073797a32"], 0xb0}, 0x1, 0x0, 0x0, 0x850}, 0x4040080)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0xe)
socket(0x40000000015, 0x805, 0x0)
r1 = perf_event_open(&(0x7f00000005c0)={0x1, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x2}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r2 = perf_event_open$cgroup(&(0x7f0000000080)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1005e2, 0x2, 0x0, 0x0, 0x2, 0x1000000}, 0xffffffffffffffff, 0x0, r1, 0x0)
close(r2)
socket$nl_generic(0x10, 0x3, 0x10)
creat(&(0x7f0000000000)='./file0\x00', 0x8)
r3 = socket$kcm(0x1e, 0x5, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0x8, 0x6}, 0x10, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="380000001800010000000000000000000a000000000000000000000008000400", @ANYRES32, @ANYBLOB="06001500070000000c00168008000100", @ANYRES64=r3], 0x38}}, 0x10)

871.361869ms ago: executing program 3 (id=1201):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000001c0)={0x2007})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f0000000000)={0x20000018})
epoll_wait(r2, &(0x7f0000000180)=[{}], 0x1, 0x3)
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x103440)
syz_usb_disconnect(r3)
syz_usb_connect$cdc_ncm(0x3, 0xf3, &(0x7f0000000540)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r3, 0x41015500, &(0x7f0000000500)=0x81000000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f0000000940)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="480000001000370400000000ffdbdf2500000000", @ANYRES32=r6, @ANYBLOB="01f1050000000000180012800800", @ANYRES32], 0x48}, 0x1, 0x0, 0x0, 0x4011}, 0x40004)
sendmmsg$inet(r0, &(0x7f00000006c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1=0xe000030a}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @empty, @multicast2}}}], 0x20}}], 0x1, 0x80)

796.207854ms ago: executing program 0 (id=1202):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000180)={'macvlan1\x00', @random="de24d700e151"})
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000240)='./file3\x00', 0x4002, &(0x7f0000000080)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@bh}, {@grpquota}, {@mblk_io_submit}]}, 0x1, 0xbd2, &(0x7f0000000540)="$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")
dup3(r1, r0, 0x80000)
r2 = inotify_init1(0x0)
r3 = inotify_add_watch(r2, &(0x7f0000000200)='.\x00', 0x10000a0)
r4 = dup(r2)
inotify_rm_watch(r4, r3)
ioctl$sock_inet6_tcp_SIOCINQ(r4, 0x541b, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x4000)
fdatasync(r5)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(r5, 0x5)

795.702844ms ago: executing program 1 (id=1203):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x53a1bd79, 0x7, 0x9, 0x86, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000004000000000000000000001800000004000040000000000000000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'ip6gre0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000001240)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x4000000, {0x0, 0x0, 0x0, r3, {0x5a8, 0x1}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x1, 0x0, 0x1fc, 0x0, 0xfffffc80, 0x0, 0x6, 0xca7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0xfffffffc, 0x0, 0x4, 0x0, 0x0, 0xffffffff, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3f, 0x0, 0x0, 0x2, 0xffffffff, 0x2, 0xfff, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x1000, 0xfffffffc, 0xd, 0x0, 0x0, 0x9, 0x0, 0x0, 0x100, 0x0, 0x0, 0x6, 0xbb2, 0x0, 0x272, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x4, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x0, 0xb97, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x3, 0x5e, 0xfffffffc, 0x8, 0x8, 0x0, 0x400000, 0x7, 0x4, 0xd, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x18000, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x7, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xb3c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x400, 0x0, 0x0, 0xd79, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x75, 0x3, 0x0, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x8, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x1, 0x0, 0x0, 0x0, 0xfffc, 0x6}, {0xff}, 0x0, 0x7f}}]}}]}, 0x45c}}, 0x0)

669.731911ms ago: executing program 1 (id=1204):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, 0x0, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
recvmmsg(r0, &(0x7f0000000200)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000017c0)=""/130, 0x82}, {0x0}], 0x2}, 0xa1}], 0x1, 0x0, 0x0)

517.166989ms ago: executing program 0 (id=1205):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x4000000)

504.50694ms ago: executing program 5 (id=1206):
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x20, r0, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x0)

478.234522ms ago: executing program 0 (id=1207):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, 0x0, 0x20040014)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x200, 0x0, 0x25dfdbfb, {{@in=@loopback, @in6=@local, 0x0, 0x4, 0x0, 0x0, 0xa, 0x60, 0x80, 0x3b, 0x0, 0xee01}, {0x0, 0x4, 0x0, 0x0, 0x40, 0xfffffffffffffffd, 0x2}, {0xfffffffffffffffe}, 0x9, 0x40000000, 0x0, 0x1, 0x2}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x50)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e00"], 0xb8}}, 0x20004000)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000020000000000fc0000000000000000"], 0xb8}, 0x1, 0x0, 0x0, 0x80c0}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYBLOB="b80000001300e9990500000000000000fc000000000000000000000000000000fc00000000000000000000000000000000000000000000000a0030"], 0xb8}}, 0x4000)

477.990972ms ago: executing program 0 (id=1208):
setresuid(0x0, 0xee00, 0x0)
r0 = msgget$private(0x0, 0x3ac)
msgrcv(r0, 0x0, 0x0, 0xd3ee73c716b4091b, 0x2000)
msgctl$IPC_SET(r0, 0x1, &(0x7f0000000340)={{0x2, 0x0, 0x0, 0x0, 0x0, 0x80, 0x6341}, 0x0, 0x0, 0x0, 0x6, 0x7, 0x1000, 0x7, 0xfffd, 0x89, 0x95a})
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
r1 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000c80)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @private2={0xfc, 0x2, '\x00', 0x5}, 0x7800, 0x7800, 0xfffffffc, 0xdc64}})

477.468372ms ago: executing program 5 (id=1209):
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r1, &(0x7f0000000a40)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000006c0), 0x48200, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x200000000000000)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r1)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x114, 0x2, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x9}, [@CTA_HELP={0x10, 0x5, 0x0, 0x1, {0xa, 0x1, 'H.245\x00'}}, @CTA_LABELS_MASK={0xc, 0x17, [0x8, 0x6]}, @CTA_ID={0x8, 0xc, 0x1, 0x0, 0x2}, @CTA_SYNPROXY={0x2c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x8}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x4}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x7fff}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x8}, @CTA_SYNPROXY_ISN={0x8}]}, @CTA_TUPLE_REPLY={0x34, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x29}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}, @CTA_NAT_SRC={0x7c, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @mcast1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @loopback}, @CTA_NAT_V4_MINIP={0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x38}}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @loopback}, @CTA_NAT_PROTO={0x2c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e20}]}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x20000001}, 0x8002)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r0)

432.243345ms ago: executing program 5 (id=1210):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a480000000c0a010100000000000000000a1000060900020073797a31000000000900010073797a31000000001c000380180000800c00018006000100d1030e00080003400000000114000000110001"], 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[], 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0x3)
ioctl$TCSETSW2(r5, 0x80047437, &(0x7f0000000040)={0x2, 0x0, 0x0, 0x2, 0x0, "23f555d9adb42d4408020e90d1beaa82dc1ecf"})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x34, 0x0, 0x0, 0xfffffff9}, {0x1c}, {0x6, 0x0, 0x0, 0x7ffffcb9}]})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r4, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000003b40)={0x0, 0x0, &(0x7f0000003b00)={&(0x7f0000000080)=@newtaction={0x60, 0x30, 0x1, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x8}}]}, {0x4}, {0xc, 0x3}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x60}}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'syzkaller1\x00', 0xc201})
socket$kcm(0x2, 0xa, 0x2)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth1_virt_wifi\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b"], 0x50)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x8946, &(0x7f0000000080))
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r4, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000005c0)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd2e, 0x0, {0x0, 0x0, 0x12, r8, {0x0, 0xffff}, {0xffff, 0xffff}, {0xf, 0x6}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x26, 0x2, {{0xd, [0x5, 0x1, 0x2c, 0x7, 0x1, 0x0, 0x3, 0xe, 0x1, 0x8, 0xc, 0x0, 0x5, 0xb, 0xd, 0xd], 0x1, [0x3, 0x94fe, 0x9, 0xfc00, 0x77, 0x0, 0x8834, 0x40, 0x4, 0xc445, 0x1, 0x474, 0x6, 0xb840, 0x9, 0x3], [0x9, 0xde, 0x1ff, 0x4, 0x8, 0x4, 0xb, 0x5, 0x3, 0x4, 0x0, 0x7, 0x7, 0x268, 0x7ff, 0x2d]}}}}]}, 0x88}, 0x1, 0x0, 0x0, 0x8004001}, 0x0)

431.582135ms ago: executing program 5 (id=1211):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
write$tun(r0, 0x0, 0x0)

368.150678ms ago: executing program 0 (id=1212):
setuid(0x0) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (async)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0x88000000000007, 0x3) (async)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00')
pread64(r0, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000)
r1 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000400)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e20, @multicast1}, 0x3, 0x3, 0x2}}, 0x80, 0x0}, 0x20000000) (async)
r2 = socket$netlink(0x10, 0x3, 0x0)
socket(0x2b, 0x800, 0xfffffff9)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0xa1, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x3c, 0x10, 0xff05, 0x0, 0x0, {0x0, 0x0, 0x4a00}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_MASTER={0x8}]}, 0x3c}}, 0x0)

315.147331ms ago: executing program 5 (id=1213):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a88000000060a0b160000000000000000020000085c00048028000180080001006f7366001c0002800800014000000004052402000c000000080001400000000a30000180080001006e6174002400028008000140000000000800034000000014080002400000000208000540000000000900010073797a30000000000900020073797a32"], 0xb0}, 0x1, 0x0, 0x0, 0x850}, 0x4040080)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0xe)
socket(0x40000000015, 0x805, 0x0)
r1 = perf_event_open(&(0x7f00000005c0)={0x1, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x2}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r2 = perf_event_open$cgroup(&(0x7f0000000080)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1005e2, 0x2, 0x0, 0x0, 0x2, 0x1000000}, 0xffffffffffffffff, 0x0, r1, 0x0)
close(r2)
socket$nl_generic(0x10, 0x3, 0x10)
creat(&(0x7f0000000000)='./file0\x00', 0x8)
r3 = socket$kcm(0x1e, 0x5, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0x8, 0x6}, 0x10, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="380000001800010000000000000000000a000000000000000000000008000400", @ANYRES32, @ANYBLOB="06001500070000000c00168008000100", @ANYRES64=r3], 0x38}}, 0x10)

306.321702ms ago: executing program 0 (id=1214):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000100000004"], 0x48)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x200000a, 0x13, r1, 0x0)
r2 = memfd_create(0x0, 0x6)
fallocate(r2, 0x0, 0x0, 0x400001)
r3 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r3, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
r4 = socket$inet6(0xa, 0xf, 0x80ff)
setsockopt$inet6_int(r4, 0x29, 0x16, &(0x7f0000fcb000)=0x80000080, 0x4)
fcntl$addseals(r2, 0x409, 0xe)
socket(0x10, 0x1, 0x0)
r5 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x10000, @loopback, 0x1}, 0x1c)
recvmsg$can_j1939(r5, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
mlockall(0x7)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r6=>0x0})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x1, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_config_ext={0xfffffffd, 0xdd5}, 0x0, 0x0, 0x10000, 0x2, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0x4, 0xffffffffffffffff, 0x1)
r7 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
r8 = dup(r7)
ioctl$USBDEVFS_CONTROL(r8, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x4f, 0x61, 0x0, 0x5, 0x0})
syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x80001021, 0x80, 0x6, 0x110}, &(0x7f0000000340)=<r9=>0x0, &(0x7f0000000240)=<r10=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r9, r10, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
r11 = msgget$private(0x0, 0x7ac)
msgrcv(r11, 0x0, 0x0, 0x3, 0x2000)
msgrcv(r11, 0x0, 0x0, 0xe4b43f0e2aa28c96, 0x2000)
msgsnd(r11, &(0x7f0000000240)=ANY=[@ANYBLOB="c883d87afd02cb7a"], 0x8, 0x8fa2496c381b7ad5)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYRES8=r0, @ANYRES32=r6, @ANYRESHEX, @ANYRES32=r6, @ANYBLOB="010203007f00478b2270cb69ca9d00"/24], 0x38}, 0x1, 0x0, 0x0, 0x2000010}, 0x8084)

247.980895ms ago: executing program 5 (id=1215):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8080}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x8}, 0x4, 0x0, 0xf, 0x9, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0xb)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000000}}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in=@broadcast, 0x0, 0x0, 0x3}]}]}, 0xfc}}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000009c0)=@migrate={0xcc, 0x21, 0x1, 0x0, 0x4, {{@in6=@private2, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0xa}}, [@migrate={0x50, 0x11, [{@in6=@mcast2, @in=@private=0xa010100, @in=@private=0xa010100, @in=@rand_addr=0x6, 0x3c, 0x0, 0x0, 0x0, 0xa, 0xa}]}, @user_kmaddress={0x2c, 0x13, {@in=@loopback, @in=@multicast1, 0x0, 0xa}}]}, 0xcc}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x1000000009, 0x640b9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x8, 0x3fff8000}, 0xa00, 0x81, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x10011, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_config_ext={0x9, 0x7}, 0x100, 0xa88, 0x8406, 0x4, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x1)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000006c0), 0x48200, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000100)=0x2)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x200000000000000)

138.124162ms ago: executing program 4 (id=1216):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000180)={'macvlan1\x00', @random="de24d700e151"})
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000240)='./file3\x00', 0x4002, &(0x7f0000000080)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@bh}, {@grpquota}, {@mblk_io_submit}]}, 0x1, 0xbd2, &(0x7f0000000540)="$eJzs3N1rXGUaAPDnnEymaZvtpMuybPdmsyxLC8tOky4p27KwrVS88ULQW6EhnZSQ6QdJpCbNxUT/AVGvBW8EtShe2OveKHrrjba3ihdCkdgoiGjkzEeSNjNJ2s70hPb3g3fO+553Zp7nmcPMOS/MTABPrOHsJo04FBFnk4hSc38aEcV6byCi1rjfyvLixE/LixNJrK4+/30SSUTcWV6caD1X0tzubw4GIuKLp5L446ub487OL0yPV6uVmeb46NyFy0dn5xf+PXVh/HzlfOXi6PH/jh0bOz5yYqxrtf789anrP/79mW9rv7z367Uf3ngniVMx2JzbWEe3DMfw2muyUSEixrsdLCd9zXo21pkUtnlQ2uOkAADoKN1wDffnKEVfrF+8leKTL3NNDgAAAOiK1b6IVQAAAOAxl1j/AwAAwGOu9T2AO8uLE62W7zcSHq3bpyNiqFH/SrM1ZgpRq28Hoj8i9t1JYuPPWpPGwx7acER8c+vEh1mLHv0OeSu1pYj4S7vjn9TrH6r/intz/WlEjHQh/vA9423q7+tCyLs8TP2nuhD/PusHgK64cbpxItt8/kvXrn+izfmv0Obc9SDanP+6fo7fSuv6b2XT9d96/X0drv+e22GMq+++daXTXFb//64//UGrZfGz7bZPuu2frOzM7aWIvxba1Z+s1Z90qP/sDmOUfrtS6TT3wPV3yerbEYejff0tydb/T3R0cqpaGWncto2x9PnY+53i511/dvz3dai/9f9PnY7/5R3GePHMmY827by13t26/vS7YvJCvVds7nl5fG5uZjSimDy7ef+xrXNp3af1HFn9R/6x9fu/Xf3ZZ0Kt+Tpka4Gl5jYbv3JPzP9fu/pxp3xa6788j/+5Dsd/Y/2fFTYf/9d2GOOfn75+pNPcxvVv1rL4rbUwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALSkETEYSVpe66dpuRyxPyL+FPvS6qXZuX9NXnrp4rlsLmIo+tPJqWplJCJKjXGSjUfr/fXxsXvG/4mIgxHxZmlvfVyeuFQ9l3fxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAArNkfEYORpOWISCNipZSm5XLeWQEAAABddyDvBAAAAICeG8o7AQAAAKDnrP8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADosYN/u3EziYjayb31lik25/pzzQzotTTvBIDc9OWdAJCbQt4JALm5zzW+ywV4DCXbzA90nNnT9VwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2L0OH7pxM4mI2sm99ZYpNuf6c80M6LU07wSA3PR1mhiIiMKjzQV4tLzF4clljQ8k28wPrN+ndvfMnp7lBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDuM1hvSVqOiGJzX7kc8YeIGIr+ZHKqWhmJiAMR8VWpf082Hs05ZwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALpvdn5herxarcxknTSanbU9OuudpPGK1XZLPjoP2SnGrkhjl3by/mQCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAPs/ML0+PVamVmNu9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgLzNzi9Mj1erlZkedvKuEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/PweAAD//1pFCiI=")
dup3(r1, r0, 0x80000)
r2 = inotify_init1(0x0)
r3 = inotify_add_watch(r2, &(0x7f0000000200)='.\x00', 0x10000a0)
r4 = dup(r2)
inotify_rm_watch(r4, r3)
ioctl$sock_inet6_tcp_SIOCINQ(r4, 0x541b, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x4000)
fdatasync(r5)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(r5, 0x5)

66.767516ms ago: executing program 3 (id=1217):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x4000000)

0s ago: executing program 3 (id=1218):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003d00000095"], &(0x7f00000000c0)='GPL\x00', 0x1}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000f3ffffff0b00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000002200)='blkio.bfq.io_serviced\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x80, 0x200000007})
open(&(0x7f0000000240)='./file1\x00', 0x105342, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_procfs$pagemap(0x0, &(0x7f0000000140))
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, 0x0, 0x0)
socket$inet6(0xa, 0x1, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$tipc(0x1e, 0x2, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x48100, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0xfb)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000100)=0x82)
futex_waitv(&(0x7f0000002440)=[{0x5, &(0x7f0000000000)=0x7f, 0x2}, {0x3, &(0x7f00000001c0)=0x7, 0x82}, {0xbffa, &(0x7f0000000200)=0x5, 0x2}, {0x60, &(0x7f0000000280)=0x8, 0x2}, {0x2, &(0x7f00000021c0)=0x8, 0x2}, {0x5, &(0x7f00000003c0)=0x3, 0x82}, {0x8, &(0x7f0000000400), 0x5}, {0x4, &(0x7f0000000440)=0xeb, 0x82}, {0xffffffffffffffff, &(0x7f0000000480)=0x5, 0x2}, {0xe, &(0x7f00000004c0)=0x3, 0x82}, {0x5, &(0x7f0000000500)=0xfffffffffffffbff, 0x2}, {0x4, &(0x7f0000000540)=0x1ff, 0x2}, {0x51, &(0x7f0000000580)=0x2a3, 0x82}, {0x3, &(0x7f00000005c0)=0x101, 0x2}, {0x0, &(0x7f0000000600)=0x8, 0x2}, {0x800, &(0x7f0000000640)=0x5, 0x82}, {0xc, &(0x7f0000000740)=0x8, 0x187}, {0xfffffffffffffff9, &(0x7f0000000780)=0x8001, 0x2}, {0x4, &(0x7f00000007c0)=0x7, 0x2}, {0xf6c, &(0x7f0000000800)=0x4, 0x82}, {0x9, &(0x7f0000000840)=0x8, 0x2}, {0x3, &(0x7f0000000880)=0x2, 0x82}, {0x7fffffffffffffff, &(0x7f00000008c0)=0x8001, 0x2}, {0x2, &(0x7f0000000900)=0x89c0, 0x82}, {0x100000001, &(0x7f0000000940)=0x1ff, 0x82}, {0x3, &(0x7f0000000980)=0xee8, 0x82}, {0x0, &(0x7f00000009c0)=0x7, 0x82}, {0x3, &(0x7f0000000a00)=0x8, 0x2}, {0x9, &(0x7f0000000a40)=0x8001, 0x82}, {0xffffffff80000001, &(0x7f0000000a80)=0x258, 0x82}, {0x7, &(0x7f0000000ac0)=0x1, 0x2}, {0x6, &(0x7f0000000b00)=0x7, 0x2}, {0xfffffffffffffffe, &(0x7f0000000b40)=0x6ea, 0x2}, {0x7, &(0x7f0000000b80)=0xf00000000000000, 0x2}, {0x7, &(0x7f0000000bc0)=0x8, 0x82}, {0x0, &(0x7f0000000c00)=0x7, 0x82}, {0x3ff, &(0x7f0000000c40)=0x69e, 0x2}, {0x6, &(0x7f0000000c80)=0x2, 0x82}, {0x0, &(0x7f0000000cc0), 0x2}, {0x40, &(0x7f0000000d00)=0x7, 0x2}, {0x8000000000000001, &(0x7f0000000d40)=0x681, 0x82}, {0xb5, &(0x7f0000000d80)=0x2a4, 0x82}, {0x0, &(0x7f0000000dc0)=0x100000001, 0x82}, {0x200, &(0x7f0000000e00)=0x2995, 0x2}, {0x3, &(0x7f0000000e40)=0x6, 0x2}, {0x1, &(0x7f0000000e80)=0x1, 0x2}, {0x4, &(0x7f0000000ec0), 0x82}, {0x100000001, &(0x7f0000000f00)=0x50, 0x2}, {0x0, &(0x7f0000000f40)=0x7, 0x82}, {0x9, &(0x7f0000000f80)=0x7fffffffffffffff, 0x2}, {0x1, &(0x7f0000000fc0)=0x9, 0x2}, {0x3, &(0x7f0000001000)=0x8, 0x2}, {0x4, &(0x7f0000001040)=0x2, 0x2}, {0x82c, &(0x7f0000001080)=0x8af, 0x2}, {0x10, &(0x7f00000010c0)=0x3, 0x2}, {0x1000, &(0x7f0000001100)=0x7, 0x2}, {0x36b, &(0x7f0000001140)=0x7, 0x2}, {0xf7, &(0x7f0000001180)=0x4, 0x82}, {0x9, &(0x7f00000011c0)=0x3, 0x2}, {0x83, &(0x7f0000001200)=0x4, 0x2}, {0x7, &(0x7f0000001240)=0x1, 0x82}, {0x2, &(0x7f0000001280)=0xd09, 0x2}, {0x9, &(0x7f00000012c0)=0x2, 0x82}, {0x5, &(0x7f0000001300)=0x2de32ac5, 0x82}, {0x8e3, &(0x7f0000001340)=0x7fff, 0x2}, {0x74, &(0x7f0000001380)=0x1, 0x2}, {0x5, &(0x7f00000013c0), 0x82}, {0x6, &(0x7f0000001400)=0x6, 0x82}, {0x6, &(0x7f0000001440)=0x9, 0x82}, {0x8, &(0x7f0000001480)=0x4, 0x82}, {0x6, &(0x7f00000014c0)=0xffffffff, 0x2}, {0x8, &(0x7f0000001500), 0x82}, {0x5, &(0x7f0000001540)=0x5d0, 0x82}, {0x3, &(0x7f0000001580)=0xf57}, {0x800, &(0x7f00000015c0)=0x3d, 0x6}, {0x6d, &(0x7f0000001600)=0x8, 0x2}, {0x2f, &(0x7f0000001640)=0x3, 0x2}, {0xa453, &(0x7f0000001680)=0xdfb}, {0x8, &(0x7f00000016c0)=0x5, 0x82}, {0x2db7, &(0x7f0000001700)=0x2b2d, 0x2}, {0x1, &(0x7f0000001740)=0x4, 0x2}, {0x1, &(0x7f0000001780)=0x8, 0x82}, {0x8000000000000000, &(0x7f00000017c0)=0x2, 0x2}, {0x1, &(0x7f0000001800)=0x291, 0x82}, {0x3ff, &(0x7f0000001840)=0x4, 0x82}, {0x8, &(0x7f0000001880)=0x8000000000000001, 0x2}, {0x7fff, &(0x7f00000018c0), 0x2}, {0x7f, &(0x7f0000001900)=0x40000000000000, 0x82}, {0x2, &(0x7f0000001940)=0x6, 0x82}, {0x5, &(0x7f0000001980)=0x7, 0x2}, {0x10000, &(0x7f00000019c0), 0x82}, {0x1, &(0x7f0000001a00)=0x200, 0x82}, {0x0, &(0x7f0000001a40)=0x9, 0x82}, {0x7fffffffffffffff, &(0x7f0000001a80)=0x6, 0x2}, {0x1, &(0x7f0000001ac0)=0x1, 0x2}, {0x8, &(0x7f0000001b00)=0x3, 0x82}, {0x66f21f3f, &(0x7f0000001b40)=0x9}, {0x6, &(0x7f0000001b80)=0x800, 0x82}, {0x7ff, &(0x7f0000001bc0)=0x7fff, 0x82}, {0x100, &(0x7f0000001c00)=0x9, 0x82}, {0x100000000, &(0x7f0000001c40)=0xfffffffffffffffc, 0x82}, {0x7, &(0x7f0000001c80)=0x1, 0x2}, {0x5, &(0x7f0000001cc0)=0xe7e, 0x82}, {0xff, &(0x7f0000001d00)=0x7fffffffffffffff, 0x82}, {0x4, &(0x7f0000001d40)=0x2000000000000004, 0x82}, {0xfa, &(0x7f0000001d80)=0x9, 0x2}, {0x0, &(0x7f0000001dc0), 0x82}, {0xd19e, &(0x7f0000001e00)=0x9, 0x82}, {0x7, &(0x7f0000001e40)=0x400, 0x2}, {0x7f, &(0x7f0000001e80)=0x8, 0x2}, {0x8000000000000000, &(0x7f0000001ec0)=0xea, 0x82}, {0x1000, &(0x7f0000001f00)=0x8, 0x82}, {0xa51, &(0x7f0000001f40), 0x2}, {0x0, &(0x7f0000001f80)=0x7, 0x82}, {0xaa71237, &(0x7f0000001fc0)=0x2, 0x82}, {0x4, &(0x7f0000002000)=0xfffffffffffffffe, 0x2}, {0x9, &(0x7f0000002040)=0x2, 0x2}, {0x6, &(0x7f0000002080)=0x9, 0x2}, {0x8, &(0x7f00000020c0)=0x9, 0x2}, {0x4, &(0x7f0000002100)=0x8001, 0x82}, {0x7, &(0x7f0000002140)=0x8001, 0x2}], 0x79, 0x0, &(0x7f0000002180), 0x1)
socket$tipc(0x1e, 0x5, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
socket$netlink(0x10, 0x3, 0x9)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
r4 = socket$unix(0x1, 0x2, 0x0)
ppoll(&(0x7f0000000300)=[{r4, 0x4236}], 0x1, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080), 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300), 0x2, 0x4}}, 0x20)

kernel console output (not intermixed with test programs):

  63.514152][ T5213] RBP: 000000000000000b R08: 000188811b0185c3 R09: 0000000000000000
[   63.522195][ T5213] R10: ffffc90000e2b4d8 R11: 0001c90000e2b4d8 R12: ffff88811b0185c0
[   63.530200][ T5213] R13: ffffffff86fc3a50 R14: ffff88811b018578 R15: 0000000000000001
[   63.531856][ T5210] EXT4-fs (loop5): inodes count not valid: 2 vs 32
[   63.538278][ T5213] FS:  00007f0b0a8e76c0(0000) GS:ffff8882aec57000(0000) knlGS:0000000000000000
[   63.538300][ T5213] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   63.560559][ T5213] CR2: 00007fb789656000 CR3: 00000001281b6000 CR4: 00000000003506f0
[   63.568705][ T5213] Call Trace:
[   63.572102][ T5213]  <TASK>
[   63.575042][ T5213]  ext4_xattr_set_entry+0x77c/0x1010
[   63.580351][ T5213]  ext4_xattr_ibody_set+0x184/0x3c0
[   63.585634][ T5213]  ext4_expand_extra_isize_ea+0xd7b/0x11a0
[   63.591589][ T5213]  __ext4_expand_extra_isize+0x246/0x280
[   63.597557][ T5213]  __ext4_mark_inode_dirty+0x29d/0x3f0
[   63.603150][ T5213]  ext4_evict_inode+0x7c3/0xd40
[   63.608026][ T5213]  ? __pfx_ext4_evict_inode+0x10/0x10
[   63.613540][ T5213]  evict+0x2af/0x510
[   63.617451][ T5213]  ? __dquot_initialize+0x146/0x7c0
[   63.622734][ T5213]  iput+0x4b9/0x650
[   63.626607][ T5213]  ext4_process_orphan+0x1a9/0x1c0
[   63.631871][ T5213]  ext4_orphan_cleanup+0x6a8/0xa00
[   63.637038][ T5213]  ext4_fill_super+0x3476/0x3800
[   63.642153][ T5213]  ? set_blocksize+0x1a3/0x310
[   63.647036][ T5213]  ? setup_bdev_super+0x30e/0x370
[   63.652215][ T5213]  ? __pfx_ext4_fill_super+0x10/0x10
[   63.657515][ T5213]  get_tree_bdev_flags+0x291/0x300
[   63.662774][ T5213]  ? __pfx_ext4_fill_super+0x10/0x10
[   63.668066][ T5213]  get_tree_bdev+0x1f/0x30
[   63.672521][ T5213]  ext4_get_tree+0x1c/0x30
[   63.676952][ T5213]  vfs_get_tree+0x57/0x1d0
[   63.681471][ T5213]  do_new_mount+0x288/0x700
[   63.685975][ T5213]  path_mount+0x4d0/0xbc0
[   63.690383][ T5213]  ? user_path_at+0xbf/0x130
[   63.695051][ T5213]  __se_sys_mount+0x28c/0x2e0
[   63.699734][ T5213]  __x64_sys_mount+0x67/0x80
[   63.704408][ T5213]  x64_sys_call+0x2cca/0x3000
[   63.709114][ T5213]  do_syscall_64+0xc0/0x2a0
[   63.713729][ T5213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.719622][ T5213] RIP: 0033:0x7f0b0be8c14a
[   63.724244][ T5213] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   63.743947][ T5213] RSP: 002b:00007f0b0a8e6e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   63.752573][ T5213] RAX: ffffffffffffffda RBX: 00007f0b0a8e6ee0 RCX: 00007f0b0be8c14a
[   63.760724][ T5213] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f0b0a8e6ea0
[   63.768752][ T5213] RBP: 0000200000000180 R08: 00007f0b0a8e6ee0 R09: 0000000000800700
[   63.776752][ T5213] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[   63.784760][ T5213] R13: 00007f0b0a8e6ea0 R14: 000000000000046f R15: 000000000000002c
[   63.792800][ T5213]  </TASK>
[   63.795815][ T5213] ---[ end trace 0000000000000000 ]---
[   63.804397][ T5213] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #18: comm syz.3.574: iget: bad extra_isize 90 (inode size 256)
[   63.818742][ T5213] EXT4-fs (loop3): Remounting filesystem read-only
[   63.825628][ T5213] EXT4-fs warning (device loop3): ext4_evict_inode:273: xattr delete (err -30)
[   63.834723][ T5213] EXT4-fs (loop3): 1 orphan inode deleted
[   63.854715][ T5191] loop1: detected capacity change from 0 to 2048
[   63.922303][ T5234] netlink: 20 bytes leftover after parsing attributes in process `syz.1.581'.
[   63.949999][ T5239] FAULT_INJECTION: forcing a failure.
[   63.949999][ T5239] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.963176][ T5239] CPU: 1 UID: 0 PID: 5239 Comm: syz.4.582 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   63.963212][ T5239] Tainted: [W]=WARN
[   63.963218][ T5239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   63.963230][ T5239] Call Trace:
[   63.963261][ T5239]  <TASK>
[   63.963268][ T5239]  __dump_stack+0x1d/0x30
[   63.963364][ T5239]  dump_stack_lvl+0x95/0xd0
[   63.963388][ T5239]  dump_stack+0x15/0x1b
[   63.963409][ T5239]  should_fail_ex+0x263/0x280
[   63.963443][ T5239]  should_fail+0xb/0x20
[   63.963586][ T5239]  should_fail_usercopy+0x1a/0x20
[   63.963628][ T5239]  _copy_to_user+0x20/0xa0
[   63.963647][ T5239]  simple_read_from_buffer+0xb5/0x130
[   63.963742][ T5239]  proc_fail_nth_read+0x10e/0x150
[   63.963852][ T5239]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   63.963916][ T5239]  vfs_read+0x1ab/0x7f0
[   63.963933][ T5239]  ? __rcu_read_unlock+0x4e/0x70
[   63.963985][ T5239]  ? __fget_files+0x184/0x1c0
[   63.964009][ T5239]  ? mutex_lock+0x57/0x90
[   63.964066][ T5239]  ksys_read+0xdc/0x1a0
[   63.964151][ T5239]  __x64_sys_read+0x40/0x50
[   63.964171][ T5239]  x64_sys_call+0x2889/0x3000
[   63.964200][ T5239]  do_syscall_64+0xc0/0x2a0
[   63.964279][ T5239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.964304][ T5239] RIP: 0033:0x7f021289b78e
[   63.964321][ T5239] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   63.964402][ T5239] RSP: 002b:00007f0211336fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   63.964467][ T5239] RAX: ffffffffffffffda RBX: 00007f02113376c0 RCX: 00007f021289b78e
[   63.964481][ T5239] RDX: 000000000000000f RSI: 00007f02113370a0 RDI: 0000000000000005
[   63.964494][ T5239] RBP: 00007f0211337090 R08: 0000000000000000 R09: 0000000000000000
[   63.964506][ T5239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.964526][ T5239] R13: 00007f0212b56038 R14: 00007f0212b55fa0 R15: 00007ffdef3e6488
[   63.964548][ T5239]  </TASK>
[   64.074376][ T5247] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   64.074420][ T5247] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   64.098016][ T5249] loop1: detected capacity change from 0 to 512
[   64.100104][ T5249] EXT4-fs: Ignoring removed nobh option
[   64.269339][ T5249] ext4 filesystem being mounted at /108/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   64.309008][ T5262] netlink: 76 bytes leftover after parsing attributes in process `syz.4.591'.
[   64.333433][ T5266] FAULT_INJECTION: forcing a failure.
[   64.333433][ T5266] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.346780][ T5266] CPU: 0 UID: 0 PID: 5266 Comm: syz.4.592 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   64.346818][ T5266] Tainted: [W]=WARN
[   64.346826][ T5266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   64.346877][ T5266] Call Trace:
[   64.346884][ T5266]  <TASK>
[   64.346893][ T5266]  __dump_stack+0x1d/0x30
[   64.346921][ T5266]  dump_stack_lvl+0x95/0xd0
[   64.346946][ T5266]  dump_stack+0x15/0x1b
[   64.346983][ T5266]  should_fail_ex+0x263/0x280
[   64.347106][ T5266]  should_fail+0xb/0x20
[   64.347136][ T5266]  should_fail_usercopy+0x1a/0x20
[   64.347172][ T5266]  _copy_to_user+0x20/0xa0
[   64.347203][ T5266]  bpf_verifier_vlog+0x2c5/0x5a0
[   64.347236][ T5266]  __btf_verifier_log+0x7f/0xb0
[   64.347288][ T5266]  ? should_fail_ex+0xd9/0x280
[   64.347320][ T5266]  ? btf_parse_hdr+0x1e6/0x3c0
[   64.347348][ T5266]  btf_parse_hdr+0x1f9/0x3c0
[   64.347442][ T5266]  btf_new_fd+0x246/0x7b0
[   64.347471][ T5266]  ? ns_capable+0x7c/0xb0
[   64.347502][ T5266]  bpf_btf_load+0x112/0x130
[   64.347552][ T5266]  __sys_bpf+0x357/0x7b0
[   64.347585][ T5266]  __x64_sys_bpf+0x41/0x50
[   64.347617][ T5266]  x64_sys_call+0x28e1/0x3000
[   64.347644][ T5266]  do_syscall_64+0xc0/0x2a0
[   64.347693][ T5266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.347719][ T5266] RIP: 0033:0x7f02128daeb9
[   64.347738][ T5266] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   64.347759][ T5266] RSP: 002b:00007f0211337028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   64.347783][ T5266] RAX: ffffffffffffffda RBX: 00007f0212b55fa0 RCX: 00007f02128daeb9
[   64.347799][ T5266] RDX: 0000000000000028 RSI: 00002000000000c0 RDI: 0000000000000012
[   64.347860][ T5266] RBP: 00007f0211337090 R08: 0000000000000000 R09: 0000000000000000
[   64.347951][ T5266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.347966][ T5266] R13: 00007f0212b56038 R14: 00007f0212b55fa0 R15: 00007ffdef3e6488
[   64.347989][ T5266]  </TASK>
[   64.906658][ T5287] FAULT_INJECTION: forcing a failure.
[   64.906658][ T5287] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.919740][ T5287] CPU: 0 UID: 0 PID: 5287 Comm: syz.3.600 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   64.919776][ T5287] Tainted: [W]=WARN
[   64.919783][ T5287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   64.919850][ T5287] Call Trace:
[   64.919858][ T5287]  <TASK>
[   64.919867][ T5287]  __dump_stack+0x1d/0x30
[   64.919894][ T5287]  dump_stack_lvl+0x95/0xd0
[   64.919919][ T5287]  dump_stack+0x15/0x1b
[   64.920001][ T5287]  should_fail_ex+0x263/0x280
[   64.920036][ T5287]  should_fail+0xb/0x20
[   64.920083][ T5287]  should_fail_usercopy+0x1a/0x20
[   64.920117][ T5287]  _copy_from_user+0x1c/0xb0
[   64.920140][ T5287]  ucma_write+0xd8/0x260
[   64.920173][ T5287]  ? __pfx_ucma_write+0x10/0x10
[   64.920227][ T5287]  vfs_write+0x269/0x9f0
[   64.920249][ T5287]  ? __rcu_read_unlock+0x4e/0x70
[   64.920332][ T5287]  ? __fget_files+0x184/0x1c0
[   64.920382][ T5287]  ksys_write+0xdc/0x1a0
[   64.920404][ T5287]  __x64_sys_write+0x40/0x50
[   64.920427][ T5287]  x64_sys_call+0x2847/0x3000
[   64.920468][ T5287]  do_syscall_64+0xc0/0x2a0
[   64.920500][ T5287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.920526][ T5287] RIP: 0033:0x7f0b0be8aeb9
[   64.920544][ T5287] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   64.920578][ T5287] RSP: 002b:00007f0b0a8e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   64.920597][ T5287] RAX: ffffffffffffffda RBX: 00007f0b0c105fa0 RCX: 00007f0b0be8aeb9
[   64.920613][ T5287] RDX: 0000000000000128 RSI: 0000200000001340 RDI: 0000000000000003
[   64.920625][ T5287] RBP: 00007f0b0a8e7090 R08: 0000000000000000 R09: 0000000000000000
[   64.920645][ T5287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.920656][ T5287] R13: 00007f0b0c106038 R14: 00007f0b0c105fa0 R15: 00007fffc9a015c8
[   64.920679][ T5287]  </TASK>
[   65.233004][ T5302] FAULT_INJECTION: forcing a failure.
[   65.233004][ T5302] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   65.247108][ T5302] CPU: 0 UID: 0 PID: 5302 Comm: syz.1.607 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   65.247209][ T5302] Tainted: [W]=WARN
[   65.247216][ T5302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   65.247227][ T5302] Call Trace:
[   65.247233][ T5302]  <TASK>
[   65.247240][ T5302]  __dump_stack+0x1d/0x30
[   65.247262][ T5302]  dump_stack_lvl+0x95/0xd0
[   65.247286][ T5302]  dump_stack+0x15/0x1b
[   65.247379][ T5302]  should_fail_ex+0x263/0x280
[   65.247408][ T5302]  should_fail+0xb/0x20
[   65.247433][ T5302]  should_fail_usercopy+0x1a/0x20
[   65.247493][ T5302]  _copy_from_user+0x1c/0xb0
[   65.247516][ T5302]  ___sys_sendmsg+0xc1/0x1e0
[   65.247586][ T5302]  __x64_sys_sendmsg+0xd4/0x160
[   65.247686][ T5302]  x64_sys_call+0x17ba/0x3000
[   65.247711][ T5302]  do_syscall_64+0xc0/0x2a0
[   65.247776][ T5302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.247798][ T5302] RIP: 0033:0x7f6144faaeb9
[   65.247832][ T5302] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   65.247852][ T5302] RSP: 002b:00007f6143a07028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   65.247874][ T5302] RAX: ffffffffffffffda RBX: 00007f6145225fa0 RCX: 00007f6144faaeb9
[   65.247890][ T5302] RDX: 0000000024048890 RSI: 0000200000000080 RDI: 0000000000000003
[   65.247943][ T5302] RBP: 00007f6143a07090 R08: 0000000000000000 R09: 0000000000000000
[   65.247959][ T5302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.247972][ T5302] R13: 00007f6145226038 R14: 00007f6145225fa0 R15: 00007fff6df5e468
[   65.248073][ T5302]  </TASK>
[   65.417494][ T5295] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   65.425962][ T5295] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   65.429030][ T5306] netlink: 'syz.4.610': attribute type 2 has an invalid length.
[   65.442759][ T5306] netlink: 'syz.4.610': attribute type 8 has an invalid length.
[   65.451090][ T5306] netlink: 132 bytes leftover after parsing attributes in process `syz.4.610'.
[   65.477067][ T5309] netlink: 8 bytes leftover after parsing attributes in process `syz.1.611'.
[   65.486010][ T5309] netlink: 8 bytes leftover after parsing attributes in process `syz.1.611'.
[   65.497017][ T5309] netlink: 'syz.1.611': attribute type 7 has an invalid length.
[   65.504764][ T5309] netlink: 'syz.1.611': attribute type 8 has an invalid length.
[   65.512933][ T5311] tmpfs: Bad value for 'mpol'
[   65.557348][ T5309] lo speed is unknown, defaulting to 1000
[   65.612157][ T5322] loop3: detected capacity change from 0 to 512
[   65.627469][ T5322] EXT4-fs: Ignoring removed nobh option
[   65.668961][ T5322] ext4 filesystem being mounted at /110/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   65.867573][   T29] kauditd_printk_skb: 157 callbacks suppressed
[   65.867611][   T29] audit: type=1400 audit(1769514978.234:990): avc:  denied  { execute_no_trans } for  pid=5346 comm="syz.0.621" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=1114 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   65.939610][ T5349] FAULT_INJECTION: forcing a failure.
[   65.939610][ T5349] name failslab, interval 1, probability 0, space 0, times 0
[   65.952407][ T5349] CPU: 0 UID: 0 PID: 5349 Comm: syz.0.623 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   65.952440][ T5349] Tainted: [W]=WARN
[   65.952448][ T5349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   65.952461][ T5349] Call Trace:
[   65.952467][ T5349]  <TASK>
[   65.952474][ T5349]  __dump_stack+0x1d/0x30
[   65.952546][ T5349]  dump_stack_lvl+0x95/0xd0
[   65.952570][ T5349]  dump_stack+0x15/0x1b
[   65.952593][ T5349]  should_fail_ex+0x263/0x280
[   65.952686][ T5349]  should_failslab+0x8c/0xb0
[   65.952712][ T5349]  kmem_cache_alloc_noprof+0x68/0x490
[   65.952736][ T5349]  ? getname_flags+0x7f/0x3b0
[   65.952833][ T5349]  getname_flags+0x7f/0x3b0
[   65.952858][ T5349]  getname_uflags+0x21/0x30
[   65.952885][ T5349]  __x64_sys_execveat+0x5d/0x90
[   65.952988][ T5349]  x64_sys_call+0x1c0e/0x3000
[   65.953016][ T5349]  do_syscall_64+0xc0/0x2a0
[   65.953043][ T5349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.953067][ T5349] RIP: 0033:0x7fb792fdaeb9
[   65.953084][ T5349] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   65.953105][ T5349] RSP: 002b:00007fb791a37028 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[   65.953128][ T5349] RAX: ffffffffffffffda RBX: 00007fb793255fa0 RCX: 00007fb792fdaeb9
[   65.953144][ T5349] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[   65.953191][ T5349] RBP: 00007fb791a37090 R08: 0000000000001000 R09: 0000000000000000
[   65.953204][ T5349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.953216][ T5349] R13: 00007fb793256038 R14: 00007fb793255fa0 R15: 00007fffce1689f8
[   65.953291][ T5349]  </TASK>
[   66.261826][   T29] audit: type=1400 audit(1769514978.634:991): avc:  denied  { create } for  pid=5343 comm="syz.1.622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   66.328245][   T29] audit: type=1400 audit(1769514978.654:992): avc:  denied  { write } for  pid=5362 comm="syz.0.629" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   66.350901][   T29] audit: type=1401 audit(1769514978.714:993): op=setxattr invalid_context=""
[   66.371504][ T5368] netlink: 8 bytes leftover after parsing attributes in process `syz.4.630'.
[   66.380316][ T5368] netlink: 8 bytes leftover after parsing attributes in process `syz.4.630'.
[   66.391638][ T5368] netlink: 'syz.4.630': attribute type 7 has an invalid length.
[   66.399320][ T5368] netlink: 'syz.4.630': attribute type 8 has an invalid length.
[   66.417875][ T5364] netlink: 8 bytes leftover after parsing attributes in process `syz.1.622'.
[   66.420879][ T5368] lo speed is unknown, defaulting to 1000
[   66.522790][ T3311] EXT4-fs unmount: 19 callbacks suppressed
[   66.522805][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.761344][   T29] audit: type=1400 audit(1769514979.134:994): avc:  denied  { create } for  pid=5386 comm="syz.0.635" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[   66.784083][ T5391] netlink: 120 bytes leftover after parsing attributes in process `syz.3.639'.
[   66.793720][ T5392] netlink: 4 bytes leftover after parsing attributes in process `syz.1.638'.
[   66.803223][ T5392] FAULT_INJECTION: forcing a failure.
[   66.803223][ T5392] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.816330][ T5392] CPU: 0 UID: 0 PID: 5392 Comm: syz.1.638 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   66.816362][ T5392] Tainted: [W]=WARN
[   66.816369][ T5392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   66.816407][ T5392] Call Trace:
[   66.816413][ T5392]  <TASK>
[   66.816421][ T5392]  __dump_stack+0x1d/0x30
[   66.816513][ T5392]  dump_stack_lvl+0x95/0xd0
[   66.816533][ T5392]  dump_stack+0x15/0x1b
[   66.816552][ T5392]  should_fail_ex+0x263/0x280
[   66.816653][ T5392]  should_fail+0xb/0x20
[   66.816678][ T5392]  should_fail_usercopy+0x1a/0x20
[   66.816746][ T5392]  _copy_from_user+0x1c/0xb0
[   66.816769][ T5392]  ___sys_sendmsg+0xc1/0x1e0
[   66.816854][ T5392]  __x64_sys_sendmsg+0xd4/0x160
[   66.816875][ T5392]  x64_sys_call+0x17ba/0x3000
[   66.816900][ T5392]  do_syscall_64+0xc0/0x2a0
[   66.816934][ T5392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.816973][ T5392] RIP: 0033:0x7f6144faaeb9
[   66.816989][ T5392] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   66.817007][ T5392] RSP: 002b:00007f6143a07028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   66.817025][ T5392] RAX: ffffffffffffffda RBX: 00007f6145225fa0 RCX: 00007f6144faaeb9
[   66.817115][ T5392] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000005
[   66.817131][ T5392] RBP: 00007f6143a07090 R08: 0000000000000000 R09: 0000000000000000
[   66.817146][ T5392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.817233][ T5392] R13: 00007f6145226038 R14: 00007f6145225fa0 R15: 00007fff6df5e468
[   66.817254][ T5392]  </TASK>
[   66.998792][   T29] audit: type=1400 audit(1769514979.364:995): avc:  denied  { create } for  pid=5386 comm="syz.0.635" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[   67.099600][ T5406] loop4: detected capacity change from 0 to 512
[   67.112780][ T5400] netlink: 4 bytes leftover after parsing attributes in process `syz.3.640'.
[   67.145360][ T5406] EXT4-fs (loop4): orphan cleanup on readonly fs
[   67.152485][ T5406] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.642: bg 0: block 248: padding at end of block bitmap is not set
[   67.171100][ T5406] Quota error (device loop4): write_blk: dquota write failed
[   67.178512][ T5406] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[   67.188467][ T5406] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.642: Failed to acquire dquot type 1
[   67.200420][ T5406] EXT4-fs (loop4): 1 truncate cleaned up
[   67.205211][ T5415] netlink: 8 bytes leftover after parsing attributes in process `syz.5.645'.
[   67.214861][ T5415] netlink: 8 bytes leftover after parsing attributes in process `syz.5.645'.
[   67.225726][ T5415] netlink: 'syz.5.645': attribute type 7 has an invalid length.
[   67.225737][ T5406] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   67.225818][ T5415] netlink: 'syz.5.645': attribute type 8 has an invalid length.
[   67.227176][   T29] audit: type=1400 audit(1769514979.604:996): avc:  denied  { read write } for  pid=5414 comm="syz.1.646" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   67.278256][   T29] audit: type=1400 audit(1769514979.604:997): avc:  denied  { open } for  pid=5414 comm="syz.1.646" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   67.310544][ T5406] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[   67.321464][ T5406] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   67.330808][ T5406] ext4 filesystem being remounted at /179/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.349949][ T5406] EXT4-fs (loop4): shut down requested (0)
[   67.410444][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.603976][ T5427] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   67.613622][ T5427] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   67.696838][ T5455] netlink: 76 bytes leftover after parsing attributes in process `syz.5.654'.
[   67.840323][ T5466] FAULT_INJECTION: forcing a failure.
[   67.840323][ T5466] name failslab, interval 1, probability 0, space 0, times 0
[   67.853018][ T5466] CPU: 0 UID: 0 PID: 5466 Comm: syz.5.659 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   67.853042][ T5466] Tainted: [W]=WARN
[   67.853046][ T5466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   67.853054][ T5466] Call Trace:
[   67.853058][ T5466]  <TASK>
[   67.853063][ T5466]  __dump_stack+0x1d/0x30
[   67.853103][ T5466]  dump_stack_lvl+0x95/0xd0
[   67.853116][ T5466]  dump_stack+0x15/0x1b
[   67.853128][ T5466]  should_fail_ex+0x263/0x280
[   67.853146][ T5466]  should_failslab+0x8c/0xb0
[   67.853177][ T5466]  kmem_cache_alloc_noprof+0x68/0x490
[   67.853191][ T5466]  ? __anon_vma_prepare+0xcd/0x2f0
[   67.853209][ T5466]  __anon_vma_prepare+0xcd/0x2f0
[   67.853226][ T5466]  do_wp_page+0x1976/0x2560
[   67.853303][ T5466]  ? css_rstat_updated+0xbb/0x280
[   67.853319][ T5466]  ? __rcu_read_lock+0x36/0x50
[   67.853385][ T5466]  handle_mm_fault+0x8c7/0x3030
[   67.853404][ T5466]  ? vma_start_read+0x1c7/0x2c0
[   67.853426][ T5466]  do_user_addr_fault+0x62f/0x1050
[   67.853441][ T5466]  ? ksys_mmap_pgoff+0xc1/0x310
[   67.853532][ T5466]  ? fpregs_assert_state_consistent+0xb3/0xe0
[   67.853546][ T5466]  ? arch_exit_to_user_mode_prepare+0x26/0x80
[   67.853565][ T5466]  ? irqentry_exit+0x3c/0x510
[   67.853580][ T5466]  exc_page_fault+0x62/0xa0
[   67.853651][ T5466]  asm_exc_page_fault+0x26/0x30
[   67.853671][ T5466] RIP: 0033:0x7fb0af0227e3
[   67.853681][ T5466] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   67.853692][ T5466] RSP: 002b:00007fb0adbc63c0 EFLAGS: 00010202
[   67.853703][ T5466] RAX: 0000000000000181 RBX: 00007fb0adbc6480 RCX: 00007fb0a57a7000
[   67.853727][ T5466] RDX: 00007fb0adbc6620 RSI: 0000000000000007 RDI: 00007fb0adbc6520
[   67.853735][ T5466] RBP: 000000000000007e R08: 0000000000000007 R09: 0000000000000050
[   67.853748][ T5466] R10: 0000000000000068 R11: 00007fb0adbc6480 R12: 0000000000000001
[   67.853756][ T5466] R13: 00007fb0af217900 R14: 0000000000000002 R15: 00007fb0adbc6520
[   67.853770][ T5466]  </TASK>
[   67.853787][ T5466] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   68.090848][ T5466] loop5: detected capacity change from 0 to 8192
[   68.135196][ T3302]  loop5: p3 < >
[   68.142405][ T5466]  loop5: p3 < >
[   68.160109][ T5475] delete_channel: no stack
[   68.276735][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[   68.400341][ T5489] netlink: 76 bytes leftover after parsing attributes in process `syz.0.669'.
[   68.426501][ T5493] FAULT_INJECTION: forcing a failure.
[   68.426501][ T5493] name failslab, interval 1, probability 0, space 0, times 0
[   68.439199][ T5493] CPU: 1 UID: 0 PID: 5493 Comm: syz.1.671 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   68.439251][ T5493] Tainted: [W]=WARN
[   68.439255][ T5493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   68.439263][ T5493] Call Trace:
[   68.439267][ T5493]  <TASK>
[   68.439272][ T5493]  __dump_stack+0x1d/0x30
[   68.439341][ T5493]  dump_stack_lvl+0x95/0xd0
[   68.439354][ T5493]  dump_stack+0x15/0x1b
[   68.439425][ T5493]  should_fail_ex+0x263/0x280
[   68.439443][ T5493]  should_failslab+0x8c/0xb0
[   68.439468][ T5493]  __kmalloc_cache_noprof+0x64/0x4a0
[   68.439527][ T5493]  ? futex_lock_pi+0x757/0x7e0
[   68.439543][ T5493]  futex_lock_pi+0x757/0x7e0
[   68.439557][ T5493]  ? _parse_integer_limit+0x170/0x190
[   68.439629][ T5493]  ? __pfx_futex_wake_mark+0x10/0x10
[   68.439649][ T5493]  do_futex+0x284/0x380
[   68.439663][ T5493]  __se_sys_futex+0x2f6/0x370
[   68.439677][ T5493]  __x64_sys_futex+0x78/0x90
[   68.439767][ T5493]  x64_sys_call+0x2bc2/0x3000
[   68.439782][ T5493]  do_syscall_64+0xc0/0x2a0
[   68.439835][ T5493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.439849][ T5493] RIP: 0033:0x7f6144faaeb9
[   68.439859][ T5493] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   68.439870][ T5493] RSP: 002b:00007f6143a07028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   68.439908][ T5493] RAX: ffffffffffffffda RBX: 00007f6145225fa0 RCX: 00007f6144faaeb9
[   68.439980][ T5493] RDX: 0000000000000001 RSI: 0000000000000008 RDI: 0000200000000100
[   68.439988][ T5493] RBP: 00007f6143a07090 R08: 0000000000000000 R09: 0000000000000000
[   68.439996][ T5493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.440003][ T5493] R13: 00007f6145226038 R14: 00007f6145225fa0 R15: 00007fff6df5e468
[   68.440014][ T5493]  </TASK>
[   68.793597][ T5529] loop3: detected capacity change from 0 to 256
[   68.852139][ T5535] loop1: detected capacity change from 0 to 128
[   68.873743][ T5537] loop5: detected capacity change from 0 to 512
[   68.915783][ T5542] FAULT_INJECTION: forcing a failure.
[   68.915783][ T5542] name failslab, interval 1, probability 0, space 0, times 0
[   68.928801][ T5542] CPU: 0 UID: 0 PID: 5542 Comm: syz.3.686 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   68.928837][ T5542] Tainted: [W]=WARN
[   68.928843][ T5542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   68.928856][ T5542] Call Trace:
[   68.928862][ T5542]  <TASK>
[   68.928870][ T5542]  __dump_stack+0x1d/0x30
[   68.928929][ T5542]  dump_stack_lvl+0x95/0xd0
[   68.928951][ T5542]  dump_stack+0x15/0x1b
[   68.928969][ T5542]  should_fail_ex+0x263/0x280
[   68.929001][ T5542]  should_failslab+0x8c/0xb0
[   68.929028][ T5542]  __kmalloc_cache_noprof+0x64/0x4a0
[   68.929099][ T5542]  ? futex_lock_pi+0x757/0x7e0
[   68.929125][ T5542]  futex_lock_pi+0x757/0x7e0
[   68.929193][ T5542]  ? _parse_integer_limit+0x170/0x190
[   68.929221][ T5542]  ? __pfx_futex_wake_mark+0x10/0x10
[   68.929257][ T5542]  do_futex+0x284/0x380
[   68.929354][ T5542]  __se_sys_futex+0x2f6/0x370
[   68.929379][ T5542]  ? mutex_unlock+0x4e/0x90
[   68.929408][ T5542]  __x64_sys_futex+0x78/0x90
[   68.929429][ T5542]  x64_sys_call+0x2bc2/0x3000
[   68.929533][ T5542]  do_syscall_64+0xc0/0x2a0
[   68.929629][ T5542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.929650][ T5542] RIP: 0033:0x7f0b0be8aeb9
[   68.929732][ T5542] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   68.929750][ T5542] RSP: 002b:00007f0b0a8e7028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   68.929773][ T5542] RAX: ffffffffffffffda RBX: 00007f0b0c105fa0 RCX: 00007f0b0be8aeb9
[   68.929836][ T5542] RDX: 0000000000000001 RSI: 0000000000000008 RDI: 0000200000000100
[   68.929850][ T5542] RBP: 00007f0b0a8e7090 R08: 0000000000000000 R09: 0000000000000000
[   68.929862][ T5542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.929874][ T5542] R13: 00007f0b0c106038 R14: 00007f0b0c105fa0 R15: 00007fffc9a015c8
[   68.929968][ T5542]  </TASK>
[   69.137847][ T5537] vlan2: entered allmulticast mode
[   69.289659][ T5571] loop3: detected capacity change from 0 to 512
[   69.296366][ T5571] EXT4-fs: Ignoring removed nobh option
[   69.312988][ T5571] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.325786][ T5571] ext4 filesystem being mounted at /126/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   69.398589][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.483952][ T5582] loop3: detected capacity change from 0 to 256
[   69.497989][ T5582] loop3: detected capacity change from 0 to 1024
[   69.505999][ T5582] EXT4-fs: Ignoring removed bh option
[   69.532514][ T5582] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.549112][ T5582] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.696: Allocating blocks 497-513 which overlap fs metadata
[   69.563180][ T5582] EXT4-fs (loop3): Remounting filesystem read-only
[   69.795272][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.189745][ T5644] loop5: detected capacity change from 0 to 128
[   70.392170][   T12] bio_check_eod: 18 callbacks suppressed
[   70.392180][   T12] kworker/u8:0: attempt to access beyond end of device
[   70.392180][   T12] loop5: rw=1, sector=145, nr_sectors = 32 limit=128
[   70.411543][   T12] kworker/u8:0: attempt to access beyond end of device
[   70.411543][   T12] loop5: rw=1, sector=185, nr_sectors = 8 limit=128
[   70.425179][   T12] kworker/u8:0: attempt to access beyond end of device
[   70.425179][   T12] loop5: rw=1, sector=201, nr_sectors = 8 limit=128
[   70.438902][   T12] kworker/u8:0: attempt to access beyond end of device
[   70.438902][   T12] loop5: rw=1, sector=217, nr_sectors = 8 limit=128
[   70.452565][   T12] kworker/u8:0: attempt to access beyond end of device
[   70.452565][   T12] loop5: rw=1, sector=233, nr_sectors = 8 limit=128
[   70.466501][   T12] kworker/u8:0: attempt to access beyond end of device
[   70.466501][   T12] loop5: rw=1, sector=249, nr_sectors = 8 limit=128
[   70.479949][   T12] kworker/u8:0: attempt to access beyond end of device
[   70.479949][   T12] loop5: rw=1, sector=265, nr_sectors = 8 limit=128
[   70.493645][   T12] kworker/u8:0: attempt to access beyond end of device
[   70.493645][   T12] loop5: rw=1, sector=281, nr_sectors = 8 limit=128
[   70.503184][ T5656] bpf: Bad value for 'gid'
[   70.507001][   T12] kworker/u8:0: attempt to access beyond end of device
[   70.507001][   T12] loop5: rw=1, sector=297, nr_sectors = 8 limit=128
[   70.507040][   T12] kworker/u8:0: attempt to access beyond end of device
[   70.507040][   T12] loop5: rw=1, sector=313, nr_sectors = 8 limit=128
[   70.859471][ T5685] FAULT_INJECTION: forcing a failure.
[   70.859471][ T5685] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.872651][ T5685] CPU: 0 UID: 0 PID: 5685 Comm: syz.3.733 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   70.872688][ T5685] Tainted: [W]=WARN
[   70.872692][ T5685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   70.872700][ T5685] Call Trace:
[   70.872704][ T5685]  <TASK>
[   70.872709][ T5685]  __dump_stack+0x1d/0x30
[   70.872725][ T5685]  dump_stack_lvl+0x95/0xd0
[   70.872752][ T5685]  dump_stack+0x15/0x1b
[   70.872836][ T5685]  should_fail_ex+0x263/0x280
[   70.872948][ T5685]  should_fail+0xb/0x20
[   70.873018][ T5685]  should_fail_usercopy+0x1a/0x20
[   70.873037][ T5685]  _copy_from_user+0x1c/0xb0
[   70.873118][ T5685]  ___sys_sendmsg+0xc1/0x1e0
[   70.873144][ T5685]  __x64_sys_sendmsg+0xd4/0x160
[   70.873200][ T5685]  x64_sys_call+0x17ba/0x3000
[   70.873216][ T5685]  do_syscall_64+0xc0/0x2a0
[   70.873282][ T5685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.873296][ T5685] RIP: 0033:0x7f0b0be8aeb9
[   70.873306][ T5685] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   70.873318][ T5685] RSP: 002b:00007f0b0a8e7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   70.873330][ T5685] RAX: ffffffffffffffda RBX: 00007f0b0c105fa0 RCX: 00007f0b0be8aeb9
[   70.873430][ T5685] RDX: 0000000000000000 RSI: 0000200000001640 RDI: 0000000000000003
[   70.873438][ T5685] RBP: 00007f0b0a8e7090 R08: 0000000000000000 R09: 0000000000000000
[   70.873446][ T5685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.873454][ T5685] R13: 00007f0b0c106038 R14: 00007f0b0c105fa0 R15: 00007fffc9a015c8
[   70.873466][ T5685]  </TASK>
[   71.121418][   T29] kauditd_printk_skb: 72 callbacks suppressed
[   71.121434][   T29] audit: type=1400 audit(1769514983.494:1070): avc:  denied  { cpu } for  pid=5700 comm="syz.0.738" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   71.175998][ T5691] lo speed is unknown, defaulting to 1000
[   71.428305][ T5709] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   71.436974][ T5709] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   71.458052][ T5691] loop3: detected capacity change from 0 to 1024
[   71.467117][ T5691] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   71.467749][ T5738] __nla_validate_parse: 11 callbacks suppressed
[   71.467763][ T5738] netlink: 8 bytes leftover after parsing attributes in process `syz.0.745'.
[   71.492676][ T5738] netlink: 8 bytes leftover after parsing attributes in process `syz.0.745'.
[   71.503768][ T5691] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8801e019, mo2=0000]
[   71.506098][ T5738] netlink: 'syz.0.745': attribute type 7 has an invalid length.
[   71.519600][ T5738] netlink: 'syz.0.745': attribute type 8 has an invalid length.
[   71.521985][ T5691] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 2: comm syz.3.736: lblock 2 mapped to illegal pblock 2 (length 1)
[   71.541454][ T5691] Quota error (device loop3): qtree_write_dquot: dquota write failed
[   71.549600][ T5691] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 48: comm syz.3.736: lblock 0 mapped to illegal pblock 48 (length 1)
[   71.576683][ T5691] Quota error (device loop3): v2_write_file_info: Can't write info structure
[   71.585678][ T5691] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.736: Failed to acquire dquot type 0
[   71.604502][ T5691] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6298: Corrupt filesystem
[   71.615792][ T5691] EXT4-fs error (device loop3): ext4_evict_inode:253: inode #11: comm syz.3.736: mark_inode_dirty error
[   71.631016][ T5691] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[   71.641466][ T5691] EXT4-fs (loop3): 1 orphan inode deleted
[   71.653796][ T5691] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.665967][  T374] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   71.692482][  T374] Quota error (device loop3): remove_tree: Can't read quota data block 1
[   71.701038][  T374] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:5: Failed to release dquot type 0
[   71.725646][ T5691] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.738063][ T5691] EXT4-fs error (device loop3): __ext4_get_inode_loc:4830: comm syz.3.736: Invalid inode table block 1 in block_group 0
[   71.750669][   T29] audit: type=1400 audit(1769514984.114:1071): avc:  denied  { mounton } for  pid=5742 comm="syz.1.747" path="/proc/347/cgroup" dev="proc" ino=13524 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[   71.773604][   T29] audit: type=1400 audit(1769514984.114:1072): avc:  denied  { read } for  pid=5742 comm="syz.1.747" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   71.773715][ T5691] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6298: Corrupt filesystem
[   71.804267][ T5691] EXT4-fs error (device loop3): ext4_quota_off:7270: inode #3: comm syz.3.736: mark_inode_dirty error
[   71.805894][   T29] audit: type=1400 audit(1769514984.174:1073): avc:  denied  { map } for  pid=5755 comm="syz.4.751" path="socket:[13531]" dev="sockfs" ino=13531 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[   71.855121][ T5757] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   71.877079][ T5757] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   71.885905][ T5757] netlink: 32 bytes leftover after parsing attributes in process `syz.4.751'.
[   72.073487][ T5759] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   72.083850][ T5759] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   72.212186][ T5770] bpf: Bad value for 'gid'
[   72.271799][   T29] audit: type=1400 audit(1769514984.634:1074): avc:  denied  { read } for  pid=5774 comm="syz.3.759" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   72.305994][ T5778] loop5: detected capacity change from 0 to 512
[   72.333887][ T5778] EXT4-fs: Ignoring removed nobh option
[   72.341972][ T5775] vhci_hcd vhci_hcd.0: invalid port number 97
[   72.348099][ T5775] vhci_hcd vhci_hcd.0: invalid port number 97
[   72.356355][ T5778] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.369568][ T5778] ext4 filesystem being mounted at /64/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   72.548948][ T4668] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.614446][ T5790] smc: net device bond0 applied user defined pnetid SYZ0
[   72.622322][ T5790] smc: ib device syz1 ibport 1 applied user defined pnetid SYZ0
[   72.770677][ T5788] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   72.791144][ T5788] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   72.904492][ T5796] bpf: Bad value for 'gid'
[   73.219984][ T5809] loop1: detected capacity change from 0 to 4096
[   73.265627][ T5811] loop3: detected capacity change from 0 to 512
[   73.274167][ T5811] EXT4-fs: Ignoring removed nobh option
[   73.282277][ T5809] EXT4-fs: Ignoring removed bh option
[   73.287686][ T5809] EXT4-fs: Ignoring removed mblk_io_submit option
[   73.322794][ T5811] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.354684][ T5809] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.373576][ T5811] ext4 filesystem being mounted at /151/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   73.460599][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.498190][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.599843][ T5818] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   73.614388][ T5831] netlink: 'syz.1.780': attribute type 3 has an invalid length.
[   73.620825][ T5818] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   73.622089][ T5831] netlink: 13435 bytes leftover after parsing attributes in process `syz.1.780'.
[   73.699229][ T5838] FAULT_INJECTION: forcing a failure.
[   73.699229][ T5838] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.712517][ T5838] CPU: 1 UID: 0 PID: 5838 Comm: syz.1.782 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   73.712565][ T5838] Tainted: [W]=WARN
[   73.712572][ T5838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   73.712586][ T5838] Call Trace:
[   73.712593][ T5838]  <TASK>
[   73.712600][ T5838]  __dump_stack+0x1d/0x30
[   73.712623][ T5838]  dump_stack_lvl+0x95/0xd0
[   73.712644][ T5838]  dump_stack+0x15/0x1b
[   73.712667][ T5838]  should_fail_ex+0x263/0x280
[   73.712739][ T5838]  should_fail+0xb/0x20
[   73.712835][ T5838]  should_fail_usercopy+0x1a/0x20
[   73.712863][ T5838]  _copy_from_user+0x1c/0xb0
[   73.712888][ T5838]  mptcp_setsockopt+0x1618/0x2580
[   73.712986][ T5838]  sock_common_setsockopt+0x69/0x80
[   73.713011][ T5838]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   73.713038][ T5838]  __sys_setsockopt+0x184/0x200
[   73.713122][ T5838]  __x64_sys_setsockopt+0x64/0x80
[   73.713151][ T5838]  x64_sys_call+0x21d5/0x3000
[   73.713173][ T5838]  do_syscall_64+0xc0/0x2a0
[   73.713221][ T5838]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.713242][ T5838] RIP: 0033:0x7f6144faaeb9
[   73.713256][ T5838] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   73.713353][ T5838] RSP: 002b:00007f6143a07028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   73.713372][ T5838] RAX: ffffffffffffffda RBX: 00007f6145225fa0 RCX: 00007f6144faaeb9
[   73.713386][ T5838] RDX: 0000000000000024 RSI: 0000000000000001 RDI: 0000000000000003
[   73.713412][ T5838] RBP: 00007f6143a07090 R08: 0000000000000004 R09: 0000000000000000
[   73.713434][ T5838] R10: 0000200000000fc0 R11: 0000000000000246 R12: 0000000000000001
[   73.713447][ T5838] R13: 00007f6145226038 R14: 00007f6145225fa0 R15: 00007fff6df5e468
[   73.713463][ T5838]  </TASK>
[   73.914398][ T5840] netlink: 76 bytes leftover after parsing attributes in process `syz.0.784'.
[   73.947172][ T5844] netlink: 'syz.1.786': attribute type 1 has an invalid length.
[   73.964445][ T5846] loop3: detected capacity change from 0 to 512
[   73.977156][ T5844] 8021q: adding VLAN 0 to HW filter on device bond1
[   73.992309][ T5846] EXT4-fs: Ignoring removed nobh option
[   74.019200][ T5846] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.031898][ T5846] ext4 filesystem being mounted at /153/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   74.057778][   T29] audit: type=1400 audit(1769514986.424:1075): avc:  denied  { getopt } for  pid=5843 comm="syz.1.786" lport=51 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   74.058546][ T5858] IPVS: set_ctl: invalid protocol: 47 100.1.1.1:20004
[   74.094557][ T5858] IPVS: set_ctl: invalid protocol: 47 100.1.1.1:20004
[   74.123686][ T5856] loop1: detected capacity change from 0 to 1024
[   74.137547][ T5856] EXT4-fs: Ignoring removed bh option
[   74.162654][ T5856] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.190420][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.193247][ T5856] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4215: comm syz.1.786: Allocating blocks 497-513 which overlap fs metadata
[   74.263189][ T5856] EXT4-fs (loop1): pa ffff888106731930: logic 336, phys. 465, len 3
[   74.271364][ T5856] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[   74.288973][ T5874] loop3: detected capacity change from 0 to 4096
[   74.307522][   T29] audit: type=1400 audit(1769514986.674:1076): avc:  denied  { read } for  pid=5843 comm="syz.1.786" path="socket:[12868]" dev="sockfs" ino=12868 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   74.310299][ T5874] EXT4-fs: Ignoring removed bh option
[   74.336613][ T5874] EXT4-fs: Ignoring removed mblk_io_submit option
[   74.346729][ T5874] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.481835][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.505197][ T5885] loop3: detected capacity change from 0 to 512
[   74.515538][ T5885] EXT4-fs (loop3): orphan cleanup on readonly fs
[   74.530479][ T5885] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.799: bg 0: block 248: padding at end of block bitmap is not set
[   74.545007][ T5885] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.799: Failed to acquire dquot type 1
[   74.556618][ T5885] EXT4-fs (loop3): 1 truncate cleaned up
[   74.563897][ T5885] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.578224][ T5885] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[   74.591373][ T5885] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   74.599764][ T5885] ext4 filesystem being remounted at /155/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.615852][ T5885] EXT4-fs (loop3): shut down requested (0)
[   74.648044][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.680976][ T5891] netlink: 8 bytes leftover after parsing attributes in process `syz.3.801'.
[   74.690121][ T5891] netlink: 8 bytes leftover after parsing attributes in process `syz.3.801'.
[   74.699383][ T5891] netlink: 12 bytes leftover after parsing attributes in process `syz.3.801'.
[   74.741847][ T5895] FAULT_INJECTION: forcing a failure.
[   74.741847][ T5895] name failslab, interval 1, probability 0, space 0, times 0
[   74.754564][ T5895] CPU: 0 UID: 0 PID: 5895 Comm: syz.3.803 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   74.754596][ T5895] Tainted: [W]=WARN
[   74.754604][ T5895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   74.754612][ T5895] Call Trace:
[   74.754616][ T5895]  <TASK>
[   74.754621][ T5895]  __dump_stack+0x1d/0x30
[   74.754704][ T5895]  dump_stack_lvl+0x95/0xd0
[   74.754717][ T5895]  dump_stack+0x15/0x1b
[   74.754728][ T5895]  should_fail_ex+0x263/0x280
[   74.754778][ T5895]  should_failslab+0x8c/0xb0
[   74.754793][ T5895]  kmem_cache_alloc_noprof+0x68/0x490
[   74.754807][ T5895]  ? skb_clone+0x151/0x1f0
[   74.754850][ T5895]  skb_clone+0x151/0x1f0
[   74.754860][ T5895]  nfnetlink_rcv+0x316/0x1720
[   74.754879][ T5895]  ? __rcu_read_unlock+0x4e/0x70
[   74.754910][ T5895]  ? xa_load+0xb1/0xe0
[   74.755013][ T5895]  ? obj_cgroup_charge_account+0x122/0x1a0
[   74.755031][ T5895]  ? should_fail_ex+0x30/0x280
[   74.755048][ T5895]  ? __rcu_read_unlock+0x4e/0x70
[   74.755123][ T5895]  ? avc_has_perm_noaudit+0xab/0x130
[   74.755149][ T5895]  ? should_fail_ex+0xd9/0x280
[   74.755175][ T5895]  netlink_unicast+0x5c0/0x690
[   74.755197][ T5895]  netlink_sendmsg+0x5c8/0x6f0
[   74.755210][ T5895]  ? __pfx_netlink_sendmsg+0x10/0x10
[   74.755222][ T5895]  ____sys_sendmsg+0x5af/0x600
[   74.755234][ T5895]  ___sys_sendmsg+0x195/0x1e0
[   74.755253][ T5895]  __x64_sys_sendmsg+0xd4/0x160
[   74.755266][ T5895]  x64_sys_call+0x17ba/0x3000
[   74.755281][ T5895]  do_syscall_64+0xc0/0x2a0
[   74.755347][ T5895]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.755360][ T5895] RIP: 0033:0x7f0b0be8aeb9
[   74.755448][ T5895] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   74.755460][ T5895] RSP: 002b:00007f0b0a8e7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   74.755473][ T5895] RAX: ffffffffffffffda RBX: 00007f0b0c105fa0 RCX: 00007f0b0be8aeb9
[   74.755481][ T5895] RDX: 0000000024000840 RSI: 0000200000009b40 RDI: 0000000000000004
[   74.755489][ T5895] RBP: 00007f0b0a8e7090 R08: 0000000000000000 R09: 0000000000000000
[   74.755574][ T5895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.755581][ T5895] R13: 00007f0b0c106038 R14: 00007f0b0c105fa0 R15: 00007fffc9a015c8
[   74.755594][ T5895]  </TASK>
[   75.077643][ T5903] loop3: detected capacity change from 0 to 512
[   75.084415][ T5903] EXT4-fs: Ignoring removed nobh option
[   75.105901][ T5900] netlink: 4 bytes leftover after parsing attributes in process `syz.4.806'.
[   75.114895][ T5900] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   75.122317][ T5900] batman_adv: batadv0: Removing interface: batadv_slave_0
[   75.132969][ T5900] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   75.140418][ T5900] batman_adv: batadv0: Removing interface: batadv_slave_1
[   75.149344][ T5903] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.162306][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.162461][ T5903] ext4 filesystem being mounted at /161/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   75.209627][ T5909] loop5: detected capacity change from 0 to 4096
[   75.240269][ T5909] EXT4-fs: Ignoring removed bh option
[   75.245743][ T5909] EXT4-fs: Ignoring removed mblk_io_submit option
[   75.255163][ T5909] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.266923][ T5914] syzkaller0: entered promiscuous mode
[   75.273326][ T5914] syzkaller0: entered allmulticast mode
[   75.301463][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.327291][ T5918] loop3: detected capacity change from 0 to 512
[   75.349755][ T5918] EXT4-fs (loop3): orphan cleanup on readonly fs
[   75.366411][ T5918] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.811: bg 0: block 248: padding at end of block bitmap is not set
[   75.389757][ T5918] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.811: Failed to acquire dquot type 1
[   75.403932][ T5918] EXT4-fs (loop3): 1 truncate cleaned up
[   75.408975][ T5925] netlink: 'syz.4.813': attribute type 7 has an invalid length.
[   75.410222][ T5918] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.417265][ T5925] netlink: 'syz.4.813': attribute type 8 has an invalid length.
[   75.437678][ T5918] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[   75.456302][ T5918] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   75.457066][ T4668] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.466311][ T5918] ext4 filesystem being remounted at /162/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.501237][ T5918] EXT4-fs (loop3): shut down requested (0)
[   75.552420][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.581512][ T5928] vhci_hcd vhci_hcd.0: invalid port number 97
[   75.587649][ T5928] vhci_hcd vhci_hcd.0: invalid port number 97
[   75.602566][ T5935] netlink: 76 bytes leftover after parsing attributes in process `syz.3.817'.
[   75.835182][ T5952] bpf: Bad value for 'gid'
[   75.890861][ T5958] netlink: 'syz.4.825': attribute type 7 has an invalid length.
[   75.898673][ T5958] netlink: 'syz.4.825': attribute type 8 has an invalid length.
[   75.943235][ T5962] FAULT_INJECTION: forcing a failure.
[   75.943235][ T5962] name failslab, interval 1, probability 0, space 0, times 0
[   75.956039][ T5962] CPU: 1 UID: 0 PID: 5962 Comm: syz.4.827 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   75.956070][ T5962] Tainted: [W]=WARN
[   75.956076][ T5962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   75.956088][ T5962] Call Trace:
[   75.956095][ T5962]  <TASK>
[   75.956103][ T5962]  __dump_stack+0x1d/0x30
[   75.956126][ T5962]  dump_stack_lvl+0x95/0xd0
[   75.956218][ T5962]  dump_stack+0x15/0x1b
[   75.956282][ T5962]  should_fail_ex+0x263/0x280
[   75.956309][ T5962]  should_failslab+0x8c/0xb0
[   75.956333][ T5962]  kmem_cache_alloc_node_noprof+0x6a/0x4a0
[   75.956396][ T5962]  ? __alloc_skb+0x2f0/0x4b0
[   75.956426][ T5962]  __alloc_skb+0x2f0/0x4b0
[   75.956497][ T5962]  ? __alloc_skb+0x219/0x4b0
[   75.956529][ T5962]  audit_log_start+0x3aa/0x730
[   75.956564][ T5962]  audit_seccomp+0x47/0x100
[   75.956636][ T5962]  ? __seccomp_filter+0x8db/0x1350
[   75.956769][ T5962]  __seccomp_filter+0x8ec/0x1350
[   75.956805][ T5962]  ? __pfx_seq_read+0x10/0x10
[   75.956831][ T5962]  ? proc_reg_read+0x169/0x1c0
[   75.956866][ T5962]  ? __pfx_proc_reg_read+0x10/0x10
[   75.956912][ T5962]  ? vfs_read+0x4eb/0x7f0
[   75.957001][ T5962]  __secure_computing+0x81/0x150
[   75.957019][ T5962]  syscall_trace_enter+0xce/0x1e0
[   75.957084][ T5962]  do_syscall_64+0x9a/0x2a0
[   75.957117][ T5962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.957138][ T5962] RIP: 0033:0x7f021289b78e
[   75.957153][ T5962] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   75.957176][ T5962] RSP: 002b:00007f0211336fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   75.957199][ T5962] RAX: ffffffffffffffda RBX: 00007f02113376c0 RCX: 00007f021289b78e
[   75.957216][ T5962] RDX: 000000000000000f RSI: 00007f02113370a0 RDI: 0000000000000004
[   75.957231][ T5962] RBP: 00007f0211337090 R08: 0000000000000000 R09: 0000000000000000
[   75.957319][ T5962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.957330][ T5962] R13: 00007f0212b56038 R14: 00007f0212b55fa0 R15: 00007ffdef3e6488
[   75.957349][ T5962]  </TASK>
[   76.245072][ T5973] FAULT_INJECTION: forcing a failure.
[   76.245072][ T5973] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.258293][ T5973] CPU: 0 UID: 0 PID: 5973 Comm: syz.4.832 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   76.258357][ T5973] Tainted: [W]=WARN
[   76.258361][ T5973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   76.258369][ T5973] Call Trace:
[   76.258373][ T5973]  <TASK>
[   76.258378][ T5973]  __dump_stack+0x1d/0x30
[   76.258394][ T5973]  dump_stack_lvl+0x95/0xd0
[   76.258463][ T5973]  dump_stack+0x15/0x1b
[   76.258485][ T5973]  should_fail_ex+0x263/0x280
[   76.258504][ T5973]  should_fail+0xb/0x20
[   76.258559][ T5973]  should_fail_usercopy+0x1a/0x20
[   76.258590][ T5973]  _copy_to_user+0x20/0xa0
[   76.258603][ T5973]  io_query+0x266/0x620
[   76.258617][ T5973]  __se_sys_io_uring_register+0xc7/0xf30
[   76.258636][ T5973]  ? task_work_run+0x169/0x1a0
[   76.258715][ T5973]  ? exit_to_user_mode_loop+0xef/0x6f0
[   76.258733][ T5973]  __x64_sys_io_uring_register+0x55/0x70
[   76.258752][ T5973]  x64_sys_call+0x27ad/0x3000
[   76.258798][ T5973]  do_syscall_64+0xc0/0x2a0
[   76.258886][ T5973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.258900][ T5973] RIP: 0033:0x7f02128daeb9
[   76.258910][ T5973] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   76.258927][ T5973] RSP: 002b:00007f0211337028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   76.258951][ T5973] RAX: ffffffffffffffda RBX: 00007f0212b55fa0 RCX: 00007f02128daeb9
[   76.258960][ T5973] RDX: 00002000000000c0 RSI: 0000000000000023 RDI: ffffffffffffffff
[   76.258970][ T5973] RBP: 00007f0211337090 R08: 0000000000000000 R09: 0000000000000000
[   76.258978][ T5973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.258985][ T5973] R13: 00007f0212b56038 R14: 00007f0212b55fa0 R15: 00007ffdef3e6488
[   76.258997][ T5973]  </TASK>
[   76.606025][ T5992] netlink: 'syz.1.840': attribute type 1 has an invalid length.
[   76.635732][ T5992] loop1: detected capacity change from 0 to 164
[   76.642564][ T5992] iso9660: Unknown parameter '9p'
[   76.687143][ T6005] __nla_validate_parse: 2 callbacks suppressed
[   76.687169][ T6005] netlink: 76 bytes leftover after parsing attributes in process `syz.1.845'.
[   76.736275][ T5998] EXT4-fs: Ignoring removed bh option
[   76.741832][ T5998] EXT4-fs: Ignoring removed mblk_io_submit option
[   76.760389][ T5998] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.831434][   T29] kauditd_printk_skb: 24 callbacks suppressed
[   76.831449][   T29] audit: type=1400 audit(1769514989.204:1095): avc:  denied  { connect } for  pid=6016 comm="syz.5.849" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   76.832132][ T6020] vhci_hcd vhci_hcd.0: invalid port number 97
[   76.863478][ T6020] vhci_hcd vhci_hcd.0: invalid port number 97
[   76.874470][ T6019] tipc: Started in network mode
[   76.879364][ T6019] tipc: Node identity 5ea979844fce, cluster identity 4711
[   76.886653][ T6019] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   76.894440][ T6019] syzkaller0: entered promiscuous mode
[   76.899914][ T6019] syzkaller0: entered allmulticast mode
[   76.914142][ T6019] FAULT_INJECTION: forcing a failure.
[   76.914142][ T6019] name failslab, interval 1, probability 0, space 0, times 0
[   76.926872][ T6019] CPU: 0 UID: 0 PID: 6019 Comm: syz.1.851 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   76.926956][ T6019] Tainted: [W]=WARN
[   76.926960][ T6019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   76.926998][ T6019] Call Trace:
[   76.927005][ T6019]  <TASK>
[   76.927014][ T6019]  __dump_stack+0x1d/0x30
[   76.927070][ T6019]  dump_stack_lvl+0x95/0xd0
[   76.927145][ T6019]  dump_stack+0x15/0x1b
[   76.927195][ T6019]  should_fail_ex+0x263/0x280
[   76.927218][ T6019]  should_failslab+0x8c/0xb0
[   76.927232][ T6019]  kmem_cache_alloc_node_noprof+0x6a/0x4a0
[   76.927266][ T6019]  ? __alloc_skb+0x2f0/0x4b0
[   76.927361][ T6019]  ? kvfree_call_rcu+0x201/0x390
[   76.927378][ T6019]  __alloc_skb+0x2f0/0x4b0
[   76.927394][ T6019]  ? __alloc_skb+0x219/0x4b0
[   76.927410][ T6019]  inet6_rt_notify+0x8b/0x1d0
[   76.927454][ T6019]  ? call_fib_notifiers+0x7e/0xa0
[   76.927470][ T6019]  fib6_del+0x7e4/0x910
[   76.927482][ T6019]  ? fib6_del+0x251/0x910
[   76.927571][ T6019]  fib6_clean_node+0x18c/0x2a0
[   76.927587][ T6019]  fib6_walk_continue+0x39f/0x440
[   76.927604][ T6019]  __fib6_clean_all+0x21c/0x350
[   76.927691][ T6019]  ? __pfx_fib6_ifdown+0x10/0x10
[   76.927707][ T6019]  ? __pfx_fib6_clean_node+0x10/0x10
[   76.927721][ T6019]  ? __pfx_fib6_ifdown+0x10/0x10
[   76.927736][ T6019]  ? __pfx_fib6_ifdown+0x10/0x10
[   76.927805][ T6019]  fib6_clean_all+0x2a/0x40
[   76.927824][ T6019]  rt6_disable_ip+0xb0/0x590
[   76.927839][ T6019]  ? consume_skb+0x71/0x140
[   76.927857][ T6019]  addrconf_ifdown+0x94/0xf90
[   76.927870][ T6019]  ? __pfx_tun_device_event+0x10/0x10
[   76.927904][ T6019]  ? __pfx_cbs_dev_notifier+0x10/0x10
[   76.927916][ T6019]  ? tls_dev_event+0x47c/0x9b0
[   76.927930][ T6019]  addrconf_notify+0x222/0x8f0
[   76.927946][ T6019]  ? __pfx_addrconf_notify+0x10/0x10
[   76.928012][ T6019]  raw_notifier_call_chain+0x6f/0x1b0
[   76.928030][ T6019]  ? call_netdevice_notifiers_info+0x80/0xd0
[   76.928046][ T6019]  call_netdevice_notifiers_info+0x92/0xd0
[   76.928126][ T6019]  netif_set_mtu_ext+0x3e3/0x520
[   76.928144][ T6019]  netif_set_mtu+0x4a/0xe0
[   76.928280][ T6019]  dev_set_mtu+0xc1/0x170
[   76.928296][ T6019]  dev_ifsioc+0x48d/0xf60
[   76.928308][ T6019]  ? mutex_lock+0x57/0x90
[   76.928394][ T6019]  dev_ioctl+0x709/0x960
[   76.928406][ T6019]  sock_do_ioctl+0x1aa/0x230
[   76.928476][ T6019]  sock_ioctl+0x41b/0x610
[   76.928488][ T6019]  ? mutex_lock+0x57/0x90
[   76.928502][ T6019]  ? __pfx_sock_ioctl+0x10/0x10
[   76.928515][ T6019]  __se_sys_ioctl+0xce/0x140
[   76.928538][ T6019]  __x64_sys_ioctl+0x43/0x50
[   76.928556][ T6019]  x64_sys_call+0x14b0/0x3000
[   76.928570][ T6019]  do_syscall_64+0xc0/0x2a0
[   76.928588][ T6019]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.928636][ T6019] RIP: 0033:0x7f6144faaeb9
[   76.928647][ T6019] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   76.928658][ T6019] RSP: 002b:00007f6143a07028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.928739][ T6019] RAX: ffffffffffffffda RBX: 00007f6145225fa0 RCX: 00007f6144faaeb9
[   76.928748][ T6019] RDX: 0000200000002280 RSI: 0000000000008922 RDI: 0000000000000007
[   76.928822][ T6019] RBP: 00007f6143a07090 R08: 0000000000000000 R09: 0000000000000000
[   76.928831][ T6019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.928839][ T6019] R13: 00007f6145226038 R14: 00007f6145225fa0 R15: 00007fff6df5e468
[   76.928850][ T6019]  </TASK>
[   76.930018][ T6019] tipc: Resetting bearer <eth:syzkaller0>
[   76.945880][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.368557][ T6031] netlink: 4 bytes leftover after parsing attributes in process `syz.5.853'.
[   77.368577][ T6031] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   77.368639][ T6031] batman_adv: batadv0: Removing interface: batadv_slave_0
[   77.369160][ T6031] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   77.399678][ T6031] batman_adv: batadv0: Removing interface: batadv_slave_1
[   77.551889][ T6037] netlink: 'syz.3.855': attribute type 1 has an invalid length.
[   77.578228][ T6037] 8021q: adding VLAN 0 to HW filter on device bond1
[   77.601917][ T6042] tipc: Started in network mode
[   77.606865][ T6042] tipc: Node identity da9f307ab98a, cluster identity 4711
[   77.614113][ T6042] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   77.621330][ T6042] syzkaller0: entered promiscuous mode
[   77.626843][ T6042] syzkaller0: entered allmulticast mode
[   77.636853][ T6042] tipc: Resetting bearer <eth:syzkaller0>
[   77.649077][ T6018] tipc: Resetting bearer <eth:syzkaller0>
[   77.662838][ T6018] tipc: Disabling bearer <eth:syzkaller0>
[   77.679553][ T6044] EXT4-fs: Ignoring removed bh option
[   77.695152][ T6044] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.736353][ T6044] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.855: Allocating blocks 497-513 which overlap fs metadata
[   77.754160][ T6044] EXT4-fs (loop3): pa ffff888106731a10: logic 336, phys. 465, len 3
[   77.762397][ T6044] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[   77.856022][ T6060] FAULT_INJECTION: forcing a failure.
[   77.856022][ T6060] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.869131][ T6060] CPU: 0 UID: 0 PID: 6060 Comm: syz.4.863 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   77.869176][ T6060] Tainted: [W]=WARN
[   77.869182][ T6060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   77.869193][ T6060] Call Trace:
[   77.869200][ T6060]  <TASK>
[   77.869209][ T6060]  __dump_stack+0x1d/0x30
[   77.869306][ T6060]  dump_stack_lvl+0x95/0xd0
[   77.869326][ T6060]  dump_stack+0x15/0x1b
[   77.869346][ T6060]  should_fail_ex+0x263/0x280
[   77.869375][ T6060]  should_fail+0xb/0x20
[   77.869474][ T6060]  should_fail_usercopy+0x1a/0x20
[   77.869559][ T6060]  _copy_from_user+0x1c/0xb0
[   77.869583][ T6060]  io_register_rsrc_update+0x5f/0x140
[   77.869607][ T6060]  __se_sys_io_uring_register+0x9c6/0xf30
[   77.869703][ T6060]  ? fput+0x8f/0xc0
[   77.869731][ T6060]  ? ksys_write+0x194/0x1a0
[   77.869749][ T6060]  __x64_sys_io_uring_register+0x55/0x70
[   77.869823][ T6060]  x64_sys_call+0x27ad/0x3000
[   77.869851][ T6060]  do_syscall_64+0xc0/0x2a0
[   77.869936][ T6060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.869956][ T6060] RIP: 0033:0x7f02128daeb9
[   77.869973][ T6060] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   77.869992][ T6060] RSP: 002b:00007f0211337028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   77.870013][ T6060] RAX: ffffffffffffffda RBX: 00007f0212b55fa0 RCX: 00007f02128daeb9
[   77.870057][ T6060] RDX: 00002000000018c0 RSI: 0000000000000010 RDI: 0000000000000003
[   77.870123][ T6060] RBP: 00007f0211337090 R08: 0000000000000000 R09: 0000000000000000
[   77.870138][ T6060] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[   77.870151][ T6060] R13: 00007f0212b56038 R14: 00007f0212b55fa0 R15: 00007ffdef3e6488
[   77.870244][ T6060]  </TASK>
[   77.870476][ T6062] EXT4-fs: Ignoring removed bh option
[   78.033494][ T6065] vhci_hcd vhci_hcd.0: invalid port number 97
[   78.038425][ T6062] EXT4-fs: Ignoring removed mblk_io_submit option
[   78.046410][ T6065] vhci_hcd vhci_hcd.0: invalid port number 97
[   78.075344][ T6062] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.162740][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.193182][ T6071] serio: Serial port ptm1
[   78.347001][ T6071] serio: Serial port ptm1
[   78.431128][ T6041] tipc: Resetting bearer <eth:syzkaller0>
[   78.439081][ T6041] tipc: Disabling bearer <eth:syzkaller0>
[   78.452468][ T6036] Process accounting paused
[   78.458513][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.515411][ T6079] set_capacity_and_notify: 5 callbacks suppressed
[   78.515428][ T6079] loop1: detected capacity change from 0 to 512
[   78.534386][ T6079] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   78.546872][ T6079] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.868: bg 0: block 255: padding at end of block bitmap is not set
[   78.561652][ T6079] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6689: Corrupt filesystem
[   78.570734][ T6079] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.868: invalid indirect mapped block 1 (level 1)
[   78.584994][ T6079] EXT4-fs (loop1): 1 truncate cleaned up
[   78.591239][ T6079] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.593034][ T6088] netlink: 4 bytes leftover after parsing attributes in process `syz.3.872'.
[   78.612159][   T29] audit: type=1400 audit(1769514990.974:1096): avc:  denied  { write } for  pid=6077 comm="syz.1.868" name="file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   78.634706][   T29] audit: type=1400 audit(1769514990.974:1097): avc:  denied  { open } for  pid=6077 comm="syz.1.868" path="/160/file0/file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   78.702761][ T6097] FAULT_INJECTION: forcing a failure.
[   78.702761][ T6097] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.712103][   T29] audit: type=1400 audit(1769514991.044:1098): avc:  denied  { read append } for  pid=6077 comm="syz.1.868" name="file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   78.715980][ T6097] CPU: 0 UID: 0 PID: 6097 Comm: syz.5.874 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   78.716021][ T6097] Tainted: [W]=WARN
[   78.716029][ T6097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   78.716043][ T6097] Call Trace:
[   78.716050][ T6097]  <TASK>
[   78.716059][ T6097]  __dump_stack+0x1d/0x30
[   78.716086][ T6097]  dump_stack_lvl+0x95/0xd0
[   78.716109][ T6097]  dump_stack+0x15/0x1b
[   78.716130][ T6097]  should_fail_ex+0x263/0x280
[   78.716262][ T6097]  should_fail+0xb/0x20
[   78.716367][ T6097]  should_fail_usercopy+0x1a/0x20
[   78.716401][ T6097]  _copy_from_user+0x1c/0xb0
[   78.716422][ T6097]  ___sys_sendmsg+0xc1/0x1e0
[   78.716454][ T6097]  __x64_sys_sendmsg+0xd4/0x160
[   78.716502][ T6097]  x64_sys_call+0x17ba/0x3000
[   78.716527][ T6097]  do_syscall_64+0xc0/0x2a0
[   78.716585][ T6097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.716654][ T6097] RIP: 0033:0x7fb0af16aeb9
[   78.716671][ T6097] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   78.716690][ T6097] RSP: 002b:00007fb0adbc7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.716776][ T6097] RAX: ffffffffffffffda RBX: 00007fb0af3e5fa0 RCX: 00007fb0af16aeb9
[   78.716791][ T6097] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[   78.716827][ T6097] RBP: 00007fb0adbc7090 R08: 0000000000000000 R09: 0000000000000000
[   78.716841][ T6097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.716855][ T6097] R13: 00007fb0af3e6038 R14: 00007fb0af3e5fa0 R15: 00007ffeee9e86c8
[   78.716875][ T6097]  </TASK>
[   78.901579][   T29] audit: type=1326 audit(1769514991.064:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6077 comm="syz.1.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   78.925163][   T29] audit: type=1326 audit(1769514991.064:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6077 comm="syz.1.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   78.948562][   T29] audit: type=1326 audit(1769514991.064:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6077 comm="syz.1.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   78.971866][   T29] audit: type=1326 audit(1769514991.064:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6077 comm="syz.1.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   78.995326][   T29] audit: type=1326 audit(1769514991.064:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6077 comm="syz.1.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   79.018798][   T29] audit: type=1326 audit(1769514991.064:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6077 comm="syz.1.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   79.025023][ T6099] netlink: 52 bytes leftover after parsing attributes in process `syz.4.875'.
[   79.070333][ T6102] FAULT_INJECTION: forcing a failure.
[   79.070333][ T6102] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   79.070695][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.083670][ T6102] CPU: 0 UID: 0 PID: 6102 Comm: syz.5.876 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   79.083707][ T6102] Tainted: [W]=WARN
[   79.083740][ T6102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   79.083754][ T6102] Call Trace:
[   79.083762][ T6102]  <TASK>
[   79.083771][ T6102]  __dump_stack+0x1d/0x30
[   79.083828][ T6102]  dump_stack_lvl+0x95/0xd0
[   79.083852][ T6102]  dump_stack+0x15/0x1b
[   79.083874][ T6102]  should_fail_ex+0x263/0x280
[   79.083907][ T6102]  should_fail_alloc_page+0xf2/0x100
[   79.083938][ T6102]  __alloc_frozen_pages_noprof+0x108/0x350
[   79.084033][ T6102]  alloc_pages_mpol+0xb3/0x260
[   79.084066][ T6102]  alloc_pages_noprof+0x8f/0x130
[   79.084148][ T6102]  get_free_pages_noprof+0xc/0x40
[   79.084178][ T6102]  selinux_genfs_get_sid+0x33/0x180
[   79.084237][ T6102]  inode_doinit_with_dentry+0x5fd/0x7a0
[   79.084275][ T6102]  selinux_d_instantiate+0x27/0x40
[   79.084309][ T6102]  security_d_instantiate+0x76/0x90
[   79.084355][ T6102]  d_make_persistent+0x4f/0x110
[   79.084424][ T6102]  __debugfs_create_file+0x14e/0x2b0
[   79.084457][ T6102]  debugfs_create_file_full+0x3f/0x60
[   79.084547][ T6102]  ? __pfx_ipvlan_link_setup+0x10/0x10
[   79.084571][ T6102]  ref_tracker_dir_debugfs+0x10e/0x220
[   79.084611][ T6102]  alloc_netdev_mqs+0x1a7/0xa40
[   79.084679][ T6102]  rtnl_create_link+0x239/0x720
[   79.084768][ T6102]  rtnl_newlink_create+0x174/0x650
[   79.084857][ T6102]  ? security_capable+0x7b/0x90
[   79.084888][ T6102]  ? netlink_ns_capable+0x86/0xa0
[   79.084958][ T6102]  rtnl_newlink+0xf5b/0x1370
[   79.084989][ T6102]  ? __rcu_read_unlock+0x4e/0x70
[   79.085019][ T6102]  ? strlen+0x19/0x40
[   79.085048][ T6102]  ? perf_trace_kmem_cache_free+0x55/0x160
[   79.085117][ T6102]  ? __kfree_skb+0x109/0x150
[   79.085150][ T6102]  ? __rcu_read_unlock+0x4e/0x70
[   79.085232][ T6102]  ? avc_has_perm_noaudit+0xab/0x130
[   79.085264][ T6102]  ? cred_has_capability+0x224/0x290
[   79.085321][ T6102]  ? selinux_capable+0x31/0x40
[   79.085404][ T6102]  ? security_capable+0x7b/0x90
[   79.085433][ T6102]  ? ns_capable+0x7c/0xb0
[   79.085461][ T6102]  ? __pfx_rtnl_newlink+0x10/0x10
[   79.085485][ T6102]  rtnetlink_rcv_msg+0x64b/0x720
[   79.085518][ T6102]  netlink_rcv_skb+0x123/0x220
[   79.085549][ T6102]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   79.085579][ T6102]  rtnetlink_rcv+0x1c/0x30
[   79.085628][ T6102]  netlink_unicast+0x5c0/0x690
[   79.085659][ T6102]  netlink_sendmsg+0x5c8/0x6f0
[   79.085682][ T6102]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.085736][ T6102]  ____sys_sendmsg+0x5af/0x600
[   79.085759][ T6102]  ___sys_sendmsg+0x195/0x1e0
[   79.085789][ T6102]  __x64_sys_sendmsg+0xd4/0x160
[   79.085814][ T6102]  x64_sys_call+0x17ba/0x3000
[   79.085840][ T6102]  do_syscall_64+0xc0/0x2a0
[   79.085953][ T6102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.086012][ T6102] RIP: 0033:0x7fb0af16aeb9
[   79.086029][ T6102] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   79.086058][ T6102] RSP: 002b:00007fb0adbc7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.086079][ T6102] RAX: ffffffffffffffda RBX: 00007fb0af3e5fa0 RCX: 00007fb0af16aeb9
[   79.086111][ T6102] RDX: 0000000000040040 RSI: 0000200000000200 RDI: 0000000000000003
[   79.086125][ T6102] RBP: 00007fb0adbc7090 R08: 0000000000000000 R09: 0000000000000000
[   79.086140][ T6102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   79.086153][ T6102] R13: 00007fb0af3e6038 R14: 00007fb0af3e5fa0 R15: 00007ffeee9e86c8
[   79.086227][ T6102]  </TASK>
[   79.272425][ T6080] Process accounting paused
[   79.547212][ T6121] loop3: detected capacity change from 0 to 128
[   79.671850][ T6126] loop1: detected capacity change from 0 to 4096
[   79.694262][ T6126] EXT4-fs: Ignoring removed bh option
[   79.699765][ T6126] EXT4-fs: Ignoring removed mblk_io_submit option
[   79.732471][ T6126] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.908381][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.927247][ T6130] netlink: 8 bytes leftover after parsing attributes in process `syz.4.888'.
[   80.037976][ T6137] netlink: 52 bytes leftover after parsing attributes in process `syz.0.890'.
[   80.190425][ T6162] FAULT_INJECTION: forcing a failure.
[   80.190425][ T6162] name failslab, interval 1, probability 0, space 0, times 0
[   80.203132][ T6162] CPU: 0 UID: 0 PID: 6162 Comm: syz.0.900 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   80.203164][ T6162] Tainted: [W]=WARN
[   80.203171][ T6162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   80.203183][ T6162] Call Trace:
[   80.203189][ T6162]  <TASK>
[   80.203196][ T6162]  __dump_stack+0x1d/0x30
[   80.203258][ T6162]  dump_stack_lvl+0x95/0xd0
[   80.203289][ T6162]  dump_stack+0x15/0x1b
[   80.203375][ T6162]  should_fail_ex+0x263/0x280
[   80.203406][ T6162]  should_failslab+0x8c/0xb0
[   80.203435][ T6162]  kmem_cache_alloc_noprof+0x68/0x490
[   80.203458][ T6162]  ? skb_clone+0x151/0x1f0
[   80.203478][ T6162]  skb_clone+0x151/0x1f0
[   80.203504][ T6162]  __netlink_deliver_tap+0x2c9/0x500
[   80.203604][ T6162]  netlink_unicast+0x66b/0x690
[   80.203633][ T6162]  netlink_sendmsg+0x5c8/0x6f0
[   80.203675][ T6162]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.203695][ T6162]  ____sys_sendmsg+0x5af/0x600
[   80.203718][ T6162]  ___sys_sendmsg+0x195/0x1e0
[   80.203806][ T6162]  __x64_sys_sendmsg+0xd4/0x160
[   80.203832][ T6162]  x64_sys_call+0x17ba/0x3000
[   80.203858][ T6162]  do_syscall_64+0xc0/0x2a0
[   80.203970][ T6162]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.203995][ T6162] RIP: 0033:0x7fb792fdaeb9
[   80.204013][ T6162] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   80.204032][ T6162] RSP: 002b:00007fb791a37028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.204053][ T6162] RAX: ffffffffffffffda RBX: 00007fb793255fa0 RCX: 00007fb792fdaeb9
[   80.204088][ T6162] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[   80.204101][ T6162] RBP: 00007fb791a37090 R08: 0000000000000000 R09: 0000000000000000
[   80.204114][ T6162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.204126][ T6162] R13: 00007fb793256038 R14: 00007fb793255fa0 R15: 00007fffce1689f8
[   80.204143][ T6162]  </TASK>
[   80.204154][ T6162] netlink: 'syz.0.900': attribute type 28 has an invalid length.
[   80.205868][ T6164] loop1: detected capacity change from 0 to 128
[   80.215462][ T6162] netlink: 'syz.0.900': attribute type 3 has an invalid length.
[   80.215478][ T6162] netlink: 132 bytes leftover after parsing attributes in process `syz.0.900'.
[   80.251911][ T6142] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.437798][ T6142] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   80.455220][ T6172] loop5: detected capacity change from 0 to 128
[   80.483044][ T6142] netlink: 16 bytes leftover after parsing attributes in process `syz.3.891'.
[   80.490511][ T3302] udevd[3302]: incorrect ext4 checksum on /dev/loop5
[   80.499164][ T6181] FAULT_INJECTION: forcing a failure.
[   80.499164][ T6181] name failslab, interval 1, probability 0, space 0, times 0
[   80.499192][ T6181] CPU: 1 UID: 0 PID: 6181 Comm: syz.4.907 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   80.499220][ T6181] Tainted: [W]=WARN
[   80.499227][ T6181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   80.499240][ T6181] Call Trace:
[   80.499248][ T6181]  <TASK>
[   80.499257][ T6181]  __dump_stack+0x1d/0x30
[   80.499352][ T6181]  dump_stack_lvl+0x95/0xd0
[   80.499373][ T6181]  dump_stack+0x15/0x1b
[   80.499396][ T6181]  should_fail_ex+0x263/0x280
[   80.499444][ T6181]  should_failslab+0x8c/0xb0
[   80.499503][ T6181]  __kmalloc_noprof+0xb8/0x580
[   80.499526][ T6181]  ? vc_do_resize+0x21c/0xdc0
[   80.499564][ T6181]  vc_do_resize+0x21c/0xdc0
[   80.499609][ T6181]  ? ioctl_has_perm+0x27e/0x2d0
[   80.499639][ T6181]  ? _raw_spin_lock_irqsave+0x57/0xb0
[   80.499731][ T6181]  vt_resize+0x55/0x70
[   80.499781][ T6181]  ? __pfx_vt_resize+0x10/0x10
[   80.499814][ T6181]  tiocswinsz+0x9b/0xe0
[   80.499894][ T6181]  tty_ioctl+0x1b1/0xb80
[   80.499922][ T6181]  ? __pfx_tty_ioctl+0x10/0x10
[   80.499951][ T6181]  __se_sys_ioctl+0xce/0x140
[   80.500029][ T6181]  __x64_sys_ioctl+0x43/0x50
[   80.500107][ T6181]  x64_sys_call+0x14b0/0x3000
[   80.500129][ T6181]  do_syscall_64+0xc0/0x2a0
[   80.500156][ T6181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.500237][ T6181] RIP: 0033:0x7f02128daeb9
[   80.500251][ T6181] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   80.500303][ T6181] RSP: 002b:00007f0211337028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   80.500326][ T6181] RAX: ffffffffffffffda RBX: 00007f0212b55fa0 RCX: 00007f02128daeb9
[   80.500341][ T6181] RDX: 0000200000000040 RSI: 0000000000005414 RDI: 0000000000000003
[   80.500357][ T6181] RBP: 00007f0211337090 R08: 0000000000000000 R09: 0000000000000000
[   80.500378][ T6181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.500392][ T6181] R13: 00007f0212b56038 R14: 00007f0212b55fa0 R15: 00007ffdef3e6488
[   80.500414][ T6181]  </TASK>
[   80.858696][ T6198] vhci_hcd vhci_hcd.0: invalid port number 97
[   80.864798][ T6198] vhci_hcd vhci_hcd.0: invalid port number 97
[   81.059215][ T6202] vhci_hcd vhci_hcd.0: invalid port number 97
[   81.065422][ T6202] vhci_hcd vhci_hcd.0: invalid port number 97
[   81.150067][ T6229] FAULT_INJECTION: forcing a failure.
[   81.150067][ T6229] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   81.163231][ T6229] CPU: 0 UID: 0 PID: 6229 Comm: syz.4.926 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   81.163266][ T6229] Tainted: [W]=WARN
[   81.163274][ T6229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   81.163287][ T6229] Call Trace:
[   81.163294][ T6229]  <TASK>
[   81.163302][ T6229]  __dump_stack+0x1d/0x30
[   81.163350][ T6229]  dump_stack_lvl+0x95/0xd0
[   81.163374][ T6229]  dump_stack+0x15/0x1b
[   81.163420][ T6229]  should_fail_ex+0x263/0x280
[   81.163448][ T6229]  should_fail+0xb/0x20
[   81.163473][ T6229]  should_fail_usercopy+0x1a/0x20
[   81.163507][ T6229]  _copy_from_user+0x1c/0xb0
[   81.163532][ T6229]  ___sys_sendmsg+0xc1/0x1e0
[   81.163565][ T6229]  __x64_sys_sendmsg+0xd4/0x160
[   81.163619][ T6229]  x64_sys_call+0x17ba/0x3000
[   81.163644][ T6229]  do_syscall_64+0xc0/0x2a0
[   81.163675][ T6229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.163714][ T6229] RIP: 0033:0x7f02128daeb9
[   81.163732][ T6229] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   81.163827][ T6229] RSP: 002b:00007f0211337028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   81.163873][ T6229] RAX: ffffffffffffffda RBX: 00007f0212b55fa0 RCX: 00007f02128daeb9
[   81.163887][ T6229] RDX: 0000000000000000 RSI: 0000200000001640 RDI: 0000000000000003
[   81.163901][ T6229] RBP: 00007f0211337090 R08: 0000000000000000 R09: 0000000000000000
[   81.163956][ T6229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.163970][ T6229] R13: 00007f0212b56038 R14: 00007f0212b55fa0 R15: 00007ffdef3e6488
[   81.164044][ T6229]  </TASK>
[   81.403115][ T6241] FAULT_INJECTION: forcing a failure.
[   81.403115][ T6241] name failslab, interval 1, probability 0, space 0, times 0
[   81.415799][ T6241] CPU: 0 UID: 0 PID: 6241 Comm: syz.3.931 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   81.415835][ T6241] Tainted: [W]=WARN
[   81.415842][ T6241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   81.415886][ T6241] Call Trace:
[   81.415893][ T6241]  <TASK>
[   81.415901][ T6241]  __dump_stack+0x1d/0x30
[   81.415924][ T6241]  dump_stack_lvl+0x95/0xd0
[   81.415988][ T6241]  dump_stack+0x15/0x1b
[   81.416008][ T6241]  should_fail_ex+0x263/0x280
[   81.416036][ T6241]  should_failslab+0x8c/0xb0
[   81.416088][ T6241]  __kmalloc_cache_noprof+0x64/0x4a0
[   81.416114][ T6241]  ? rtnl_newlink+0x5c/0x1370
[   81.416139][ T6241]  ? __pfx_rtnl_newlink+0x10/0x10
[   81.416163][ T6241]  rtnl_newlink+0x5c/0x1370
[   81.416231][ T6241]  ? xas_load+0x413/0x430
[   81.416259][ T6241]  ? try_charge_memcg+0x215/0xa10
[   81.416282][ T6241]  ? __rcu_read_unlock+0x4e/0x70
[   81.416313][ T6241]  ? css_rstat_updated+0xbb/0x280
[   81.416413][ T6241]  ? __account_obj_stock+0x211/0x350
[   81.416445][ T6241]  ? __rcu_read_unlock+0x4e/0x70
[   81.416491][ T6241]  ? avc_has_perm_noaudit+0xab/0x130
[   81.416525][ T6241]  ? cred_has_capability+0x224/0x290
[   81.416552][ T6241]  ? selinux_capable+0x31/0x40
[   81.416570][ T6241]  ? security_capable+0x7b/0x90
[   81.416651][ T6241]  ? ns_capable+0x7c/0xb0
[   81.416675][ T6241]  ? __pfx_rtnl_newlink+0x10/0x10
[   81.416695][ T6241]  rtnetlink_rcv_msg+0x64b/0x720
[   81.416719][ T6241]  ? avc_has_perm_noaudit+0xab/0x130
[   81.416796][ T6241]  netlink_rcv_skb+0x123/0x220
[   81.416906][ T6241]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   81.417012][ T6241]  rtnetlink_rcv+0x1c/0x30
[   81.417033][ T6241]  netlink_unicast+0x5c0/0x690
[   81.417067][ T6241]  netlink_sendmsg+0x5c8/0x6f0
[   81.417101][ T6241]  ? __pfx_netlink_sendmsg+0x10/0x10
[   81.417122][ T6241]  ____sys_sendmsg+0x5af/0x600
[   81.417147][ T6241]  ___sys_sendmsg+0x195/0x1e0
[   81.417172][ T6241]  __x64_sys_sendmsg+0xd4/0x160
[   81.417235][ T6241]  x64_sys_call+0x17ba/0x3000
[   81.417332][ T6241]  do_syscall_64+0xc0/0x2a0
[   81.417360][ T6241]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.417387][ T6241] RIP: 0033:0x7f0b0be8aeb9
[   81.417405][ T6241] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   81.417449][ T6241] RSP: 002b:00007f0b0a8e7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   81.417472][ T6241] RAX: ffffffffffffffda RBX: 00007f0b0c105fa0 RCX: 00007f0b0be8aeb9
[   81.417489][ T6241] RDX: 0000000008000002 RSI: 0000200000000000 RDI: 0000000000000003
[   81.417505][ T6241] RBP: 00007f0b0a8e7090 R08: 0000000000000000 R09: 0000000000000000
[   81.417519][ T6241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.417549][ T6241] R13: 00007f0b0c106038 R14: 00007f0b0c105fa0 R15: 00007fffc9a015c8
[   81.417571][ T6241]  </TASK>
[   81.781553][ T6248] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   81.792775][ T6248] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   81.801646][ T6248] netlink: 16 bytes leftover after parsing attributes in process `syz.1.932'.
[   82.304900][ T6280] FAULT_INJECTION: forcing a failure.
[   82.304900][ T6280] name failslab, interval 1, probability 0, space 0, times 0
[   82.317625][ T6280] CPU: 1 UID: 0 PID: 6280 Comm: syz.0.948 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   82.317700][ T6280] Tainted: [W]=WARN
[   82.317707][ T6280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   82.317720][ T6280] Call Trace:
[   82.317726][ T6280]  <TASK>
[   82.317734][ T6280]  __dump_stack+0x1d/0x30
[   82.317759][ T6280]  dump_stack_lvl+0x95/0xd0
[   82.317782][ T6280]  dump_stack+0x15/0x1b
[   82.317800][ T6280]  should_fail_ex+0x263/0x280
[   82.317900][ T6280]  should_failslab+0x8c/0xb0
[   82.317921][ T6280]  kmem_cache_alloc_noprof+0x68/0x490
[   82.317943][ T6280]  ? seq_open+0x50/0xd0
[   82.317969][ T6280]  seq_open+0x50/0xd0
[   82.318062][ T6280]  kernfs_fop_open+0x2e1/0x640
[   82.318149][ T6280]  ? __pfx_kernfs_fop_open+0x10/0x10
[   82.318241][ T6280]  do_dentry_open+0x54b/0xa60
[   82.318323][ T6280]  vfs_open+0x37/0x1e0
[   82.318346][ T6280]  dentry_open+0x4a/0x90
[   82.318369][ T6280]  __se_sys_acct+0x191/0x520
[   82.318454][ T6280]  __x64_sys_acct+0x1f/0x30
[   82.318510][ T6280]  x64_sys_call+0x2923/0x3000
[   82.318574][ T6280]  do_syscall_64+0xc0/0x2a0
[   82.318648][ T6280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.318668][ T6280] RIP: 0033:0x7fb792fdaeb9
[   82.318682][ T6280] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   82.318735][ T6280] RSP: 002b:00007fb791a37028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[   82.318753][ T6280] RAX: ffffffffffffffda RBX: 00007fb793255fa0 RCX: 00007fb792fdaeb9
[   82.318766][ T6280] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000240
[   82.318779][ T6280] RBP: 00007fb791a37090 R08: 0000000000000000 R09: 0000000000000000
[   82.318804][ T6280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   82.318815][ T6280] R13: 00007fb793256038 R14: 00007fb793255fa0 R15: 00007fffce1689f8
[   82.318865][ T6280]  </TASK>
[   82.538913][ T6284] netlink: 96 bytes leftover after parsing attributes in process `syz.1.950'.
[   82.563473][ T6290] bridge0: entered promiscuous mode
[   82.568733][ T6290] macvlan2: entered promiscuous mode
[   82.590012][ T6290] sd 0:0:1:0: device reset
[   82.596944][   T29] kauditd_printk_skb: 86 callbacks suppressed
[   82.596959][   T29] audit: type=1400 audit(1769514994.974:1191): avc:  denied  { listen } for  pid=6293 comm="syz.5.953" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   82.622724][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811b981200: rx timeout, send abort
[   82.630983][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811b981200: 0x20000: (3) A timeout occurred and this is the connection abort to close the session.
[   82.655385][ T6294] loop5: detected capacity change from 0 to 512
[   82.662656][   T29] audit: type=1400 audit(1769514995.024:1192): avc:  denied  { accept } for  pid=6293 comm="syz.5.953" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   82.682503][   T29] audit: type=1400 audit(1769514995.054:1193): avc:  denied  { getopt } for  pid=6289 comm="syz.0.951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   82.703424][ T6294] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   82.713953][ T6294] EXT4-fs error (device loop5): ext4_init_orphan_info:620: comm syz.5.953: orphan file block 0: bad magic
[   82.725429][ T6294] EXT4-fs (loop5): Remounting filesystem read-only
[   82.725526][ T6294] EXT4-fs (loop5): mount failed
[   82.758624][ T6294] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   82.816620][ T6302] netlink: 8 bytes leftover after parsing attributes in process `syz.4.956'.
[   82.826378][ T6302] netlink: 'syz.4.956': attribute type 7 has an invalid length.
[   82.834097][ T6302] netlink: 'syz.4.956': attribute type 8 has an invalid length.
[   82.901627][ T6310] loop4: detected capacity change from 0 to 512
[   82.939903][ T6310] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   82.948321][ T6316] netlink: 84 bytes leftover after parsing attributes in process `syz.5.962'.
[   82.961727][ T6314] netlink: 76 bytes leftover after parsing attributes in process `syz.3.961'.
[   82.976902][ T6310] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.960: bg 0: block 255: padding at end of block bitmap is not set
[   83.012251][ T6310] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6689: Corrupt filesystem
[   83.033482][ T6310] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.960: invalid indirect mapped block 1 (level 1)
[   83.051445][ T6310] EXT4-fs (loop4): 1 truncate cleaned up
[   83.057409][ T6310] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.076194][ T6304] syzkaller0: entered promiscuous mode
[   83.081681][ T6304] syzkaller0: entered allmulticast mode
[   83.088309][ T6310] FAULT_INJECTION: forcing a failure.
[   83.088309][ T6310] name failslab, interval 1, probability 0, space 0, times 0
[   83.101033][ T6310] CPU: 1 UID: 0 PID: 6310 Comm: syz.4.960 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   83.101137][ T6310] Tainted: [W]=WARN
[   83.101166][ T6310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   83.101180][ T6310] Call Trace:
[   83.101187][ T6310]  <TASK>
[   83.101193][ T6310]  __dump_stack+0x1d/0x30
[   83.101216][ T6310]  dump_stack_lvl+0x95/0xd0
[   83.101236][ T6310]  dump_stack+0x15/0x1b
[   83.101297][ T6310]  should_fail_ex+0x263/0x280
[   83.101330][ T6310]  should_failslab+0x8c/0xb0
[   83.101354][ T6310]  kmem_cache_alloc_lru_noprof+0x6c/0x490
[   83.101447][ T6310]  ? __d_alloc+0x37/0x340
[   83.101471][ T6310]  ? avc_policy_seqno+0x15/0x30
[   83.101502][ T6310]  __d_alloc+0x37/0x340
[   83.101532][ T6310]  d_alloc_parallel+0x54/0xce0
[   83.101624][ T6310]  ? __rcu_read_unlock+0x4e/0x70
[   83.101696][ T6310]  ? __d_lookup+0x316/0x340
[   83.101726][ T6310]  path_openat+0x8d2/0x23c0
[   83.101766][ T6310]  do_filp_open+0x15d/0x280
[   83.101848][ T6310]  do_sys_openat2+0xa6/0x150
[   83.101888][ T6310]  __x64_sys_creat+0x65/0x90
[   83.101918][ T6310]  x64_sys_call+0x2f1c/0x3000
[   83.102012][ T6310]  do_syscall_64+0xc0/0x2a0
[   83.102045][ T6310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.102106][ T6310] RIP: 0033:0x7f02128daeb9
[   83.102124][ T6310] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   83.102144][ T6310] RSP: 002b:00007f0211337028 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   83.102170][ T6310] RAX: ffffffffffffffda RBX: 00007f0212b55fa0 RCX: 00007f02128daeb9
[   83.102186][ T6310] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000002c0
[   83.102200][ T6310] RBP: 00007f0211337090 R08: 0000000000000000 R09: 0000000000000000
[   83.102279][ T6310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.102293][ T6310] R13: 00007f0212b56038 R14: 00007f0212b55fa0 R15: 00007ffdef3e6488
[   83.102312][ T6310]  </TASK>
[   83.307892][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.317465][ T6332] netlink: 64 bytes leftover after parsing attributes in process `syz.5.971'.
[   83.329239][   T29] audit: type=1400 audit(1769514995.684:1194): avc:  denied  { mount } for  pid=6331 comm="syz.5.971" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[   83.354034][   T29] audit: type=1400 audit(1769514995.724:1195): avc:  denied  { setopt } for  pid=6331 comm="syz.5.971" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   83.401391][   T29] audit: type=1326 audit(1769514995.774:1196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6337 comm="syz.1.973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   83.424833][   T29] audit: type=1326 audit(1769514995.774:1197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6337 comm="syz.1.973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   83.433152][ T6341] netlink: 'syz.4.969': attribute type 7 has an invalid length.
[   83.448212][   T29] audit: type=1326 audit(1769514995.774:1198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6337 comm="syz.1.973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   83.455834][ T6341] netlink: 'syz.4.969': attribute type 8 has an invalid length.
[   83.487088][   T29] audit: type=1326 audit(1769514995.774:1199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6337 comm="syz.1.973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   83.511151][   T29] audit: type=1326 audit(1769514995.864:1200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6337 comm="syz.1.973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   83.512167][ T6342] netlink: 'syz.3.974': attribute type 1 has an invalid length.
[   83.595485][ T6354] loop4: detected capacity change from 0 to 512
[   83.599267][ T6342] 8021q: adding VLAN 0 to HW filter on device bond2
[   83.610402][ T6354] EXT4-fs (loop4): orphan cleanup on readonly fs
[   83.618008][ T6354] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.979: bg 0: block 248: padding at end of block bitmap is not set
[   83.639211][ T6354] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.979: Failed to acquire dquot type 1
[   83.658431][ T6354] EXT4-fs (loop4): 1 truncate cleaned up
[   83.667817][ T6354] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   83.691258][ T6354] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[   83.703056][ T6364] loop5: detected capacity change from 0 to 128
[   83.741236][ T6371] netlink: 76 bytes leftover after parsing attributes in process `syz.5.984'.
[   83.751111][ T6354] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   83.769357][ T6354] ext4 filesystem being remounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.806563][ T6343] loop3: detected capacity change from 0 to 1024
[   83.818323][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.826465][ T6343] EXT4-fs: Ignoring removed bh option
[   83.846009][ T6374] loop1: detected capacity change from 0 to 4096
[   83.866508][ T6343] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.900140][ T6374] EXT4-fs: Ignoring removed bh option
[   83.905748][ T6374] EXT4-fs: Ignoring removed mblk_io_submit option
[   83.959564][ T6374] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.058085][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.209157][ T6422] netlink: 76 bytes leftover after parsing attributes in process `syz.1.998'.
[   84.258418][ T6425] bpf: Bad value for 'gid'
[   84.266402][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.408311][ T6428] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1000'.
[   84.449425][ T6433] loop1: detected capacity change from 0 to 4096
[   84.456474][ T6433] EXT4-fs: Ignoring removed bh option
[   84.461993][ T6433] EXT4-fs: Ignoring removed mblk_io_submit option
[   84.475816][ T6433] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.587542][ T6444] loop3: detected capacity change from 0 to 1024
[   84.587852][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.594272][ T6444] EXT4-fs: Ignoring removed nobh option
[   84.609554][ T6444] EXT4-fs: Ignoring removed nobh option
[   84.615227][ T6444] EXT4-fs: inline encryption not supported
[   84.638144][ T6444] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.667422][ T6444] lo: entered allmulticast mode
[   84.672869][ T6443] lo: left allmulticast mode
[   84.685364][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.750485][ T6458] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1011'.
[   84.760002][ T6458] netlink: 'syz.1.1011': attribute type 7 has an invalid length.
[   84.768421][ T6458] netlink: 'syz.1.1011': attribute type 8 has an invalid length.
[   85.258535][ T6479] loop5: detected capacity change from 0 to 4096
[   85.269231][ T6479] EXT4-fs: Ignoring removed bh option
[   85.274713][ T6479] EXT4-fs: Ignoring removed mblk_io_submit option
[   85.336046][ T6484] netlink: 'syz.0.1022': attribute type 7 has an invalid length.
[   85.343820][ T6484] netlink: 'syz.0.1022': attribute type 8 has an invalid length.
[   85.355116][ T6479] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.617182][ T4668] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.096287][ T6520] netlink: 'syz.5.1033': attribute type 7 has an invalid length.
[   86.104139][ T6520] netlink: 'syz.5.1033': attribute type 8 has an invalid length.
[   86.132554][ T6517] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[   86.139102][ T6517] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   86.146816][ T6517] vhci_hcd vhci_hcd.0: Device attached
[   86.156378][ T6518] vhci_hcd: connection closed
[   86.156772][   T31] vhci_hcd vhci_hcd.0: stop threads
[   86.167255][   T31] vhci_hcd vhci_hcd.0: release socket
[   86.172781][   T31] vhci_hcd vhci_hcd.0: disconnect device
[   86.443051][ T6534] netlink: 'syz.3.1038': attribute type 1 has an invalid length.
[   86.457609][ T6534] 8021q: adding VLAN 0 to HW filter on device bond3
[   86.484737][ T6532] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6532 comm=syz.5.1037
[   86.575778][ T6540] loop3: detected capacity change from 0 to 1024
[   86.589909][ T6540] EXT4-fs: Ignoring removed bh option
[   86.602589][ T6540] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.620835][ T6540] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.1038: Allocating blocks 481-513 which overlap fs metadata
[   86.636392][ T6540] EXT4-fs (loop3): pa ffff8881067319a0: logic 128, phys. 257, len 16
[   86.644528][ T6540] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 2
[   86.758100][ T6562] FAULT_INJECTION: forcing a failure.
[   86.758100][ T6562] name failslab, interval 1, probability 0, space 0, times 0
[   86.770803][ T6562] CPU: 0 UID: 0 PID: 6562 Comm: syz.1.1047 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   86.770876][ T6562] Tainted: [W]=WARN
[   86.770884][ T6562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   86.770898][ T6562] Call Trace:
[   86.770906][ T6562]  <TASK>
[   86.770914][ T6562]  __dump_stack+0x1d/0x30
[   86.770942][ T6562]  dump_stack_lvl+0x95/0xd0
[   86.770961][ T6562]  dump_stack+0x15/0x1b
[   86.771037][ T6562]  should_fail_ex+0x263/0x280
[   86.771073][ T6562]  should_failslab+0x8c/0xb0
[   86.771130][ T6562]  kmem_cache_alloc_noprof+0x68/0x490
[   86.771157][ T6562]  ? skb_clone+0x151/0x1f0
[   86.771230][ T6562]  skb_clone+0x151/0x1f0
[   86.771251][ T6562]  __netlink_deliver_tap+0x2c9/0x500
[   86.771292][ T6562]  netlink_unicast+0x66b/0x690
[   86.771327][ T6562]  netlink_sendmsg+0x5c8/0x6f0
[   86.771390][ T6562]  ? __pfx_netlink_sendmsg+0x10/0x10
[   86.771409][ T6562]  ____sys_sendmsg+0x5af/0x600
[   86.771431][ T6562]  ___sys_sendmsg+0x195/0x1e0
[   86.771457][ T6562]  __x64_sys_sendmsg+0xd4/0x160
[   86.771518][ T6562]  x64_sys_call+0x17ba/0x3000
[   86.771560][ T6562]  do_syscall_64+0xc0/0x2a0
[   86.771595][ T6562]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.771654][ T6562] RIP: 0033:0x7f6144faaeb9
[   86.771669][ T6562] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   86.771686][ T6562] RSP: 002b:00007f6143a07028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   86.771767][ T6562] RAX: ffffffffffffffda RBX: 00007f6145225fa0 RCX: 00007f6144faaeb9
[   86.771798][ T6562] RDX: 0000000000000054 RSI: 0000200000000140 RDI: 0000000000000003
[   86.771811][ T6562] RBP: 00007f6143a07090 R08: 0000000000000000 R09: 0000000000000000
[   86.771823][ T6562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.771835][ T6562] R13: 00007f6145226038 R14: 00007f6145225fa0 R15: 00007fff6df5e468
[   86.771853][ T6562]  </TASK>
[   86.971394][ T6562] __nla_validate_parse: 10 callbacks suppressed
[   86.971408][ T6562] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1047'.
[   86.997613][ T6561] Process accounting resumed
[   87.008394][ T6558] vhci_hcd vhci_hcd.0: invalid port number 97
[   87.014618][ T6558] vhci_hcd vhci_hcd.0: invalid port number 97
[   87.075564][ T6574] loop1: detected capacity change from 0 to 128
[   87.149652][ T6578] loop1: detected capacity change from 0 to 4096
[   87.156399][ T6578] EXT4-fs: Ignoring removed bh option
[   87.161937][ T6578] EXT4-fs: Ignoring removed mblk_io_submit option
[   87.178612][ T6578] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.316733][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.329496][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.375267][ T6584] EXT4-fs: Ignoring removed bh option
[   87.380733][ T6584] EXT4-fs: Ignoring removed mblk_io_submit option
[   87.391314][ T6584] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.504109][ T6588] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1056'.
[   87.513122][ T6588] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1056'.
[   87.524186][ T6588] netlink: 'syz.1.1056': attribute type 7 has an invalid length.
[   87.532042][ T6588] netlink: 'syz.1.1056': attribute type 8 has an invalid length.
[   87.596264][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.645847][   T29] kauditd_printk_skb: 70 callbacks suppressed
[   87.645863][   T29] audit: type=1400 audit(1769515000.014:1269): avc:  denied  { read } for  pid=6595 comm="syz.3.1060" dev="sockfs" ino=19192 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   87.682426][   T29] audit: type=1400 audit(1769515000.054:1270): avc:  denied  { setopt } for  pid=6595 comm="syz.3.1060" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   87.702076][   T29] audit: type=1400 audit(1769515000.054:1271): avc:  denied  { read } for  pid=6595 comm="syz.3.1060" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   87.750803][ T6598] bpf: Bad value for 'gid'
[   87.857175][ T6602] bpf: Bad value for 'gid'
[   88.565860][ T6610] EXT4-fs: Ignoring removed bh option
[   88.571332][ T6610] EXT4-fs: Ignoring removed mblk_io_submit option
[   88.590535][ T6610] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.659809][ T6618] set_capacity_and_notify: 2 callbacks suppressed
[   88.659825][ T6618] loop3: detected capacity change from 0 to 128
[   88.728179][ T6620] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1068'.
[   88.737225][ T6620] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1068'.
[   88.747009][ T6620] netlink: 'syz.5.1068': attribute type 7 has an invalid length.
[   88.754943][ T6620] netlink: 'syz.5.1068': attribute type 8 has an invalid length.
[   88.832673][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.849855][ T6628] loop5: detected capacity change from 0 to 512
[   88.912652][ T6628] EXT4-fs (loop5): orphan cleanup on readonly fs
[   88.929833][ T6628] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1072: bg 0: block 248: padding at end of block bitmap is not set
[   89.009445][ T6628] Quota error (device loop5): write_blk: dquota write failed
[   89.016961][ T6628] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[   89.026930][ T6628] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.1072: Failed to acquire dquot type 1
[   89.112281][ T6624] vhci_hcd vhci_hcd.0: invalid port number 97
[   89.118416][ T6624] vhci_hcd vhci_hcd.0: invalid port number 97
[   89.158740][ T6628] EXT4-fs (loop5): 1 truncate cleaned up
[   89.169806][ T6628] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   89.172450][ T6642] bpf: Bad value for 'gid'
[   89.209430][ T6649] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1079'.
[   89.218517][ T6649] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1079'.
[   89.227500][ T6649] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1079'.
[   89.237660][ T6628] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[   89.263545][ T6628] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   89.273330][ T6628] ext4 filesystem being remounted at /132/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.315485][ T4668] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.477075][ T6658] lo speed is unknown, defaulting to 1000
[   89.812551][ T6690] loop3: detected capacity change from 0 to 4096
[   89.831377][ T6690] EXT4-fs: Ignoring removed bh option
[   89.836858][ T6690] EXT4-fs: Ignoring removed mblk_io_submit option
[   89.856016][ T6690] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.877443][ T6671] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   89.924141][ T6693] loop4: detected capacity change from 0 to 128
[   89.993887][ T6671] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.006621][ T6671] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1087'.
[   90.302932][ T6710] loop1: detected capacity change from 0 to 2048
[   90.310416][ T6710] ext4: Bad value for 'barrier'
[   90.468148][ T6713] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1097'.
[   90.618378][ T6728] loop1: detected capacity change from 0 to 1024
[   90.633422][ T6728] EXT4-fs (loop1): inodes count not valid: 19 vs 32
[   90.638218][ T6734] netlink: 'syz.4.1106': attribute type 7 has an invalid length.
[   90.647801][ T6734] netlink: 'syz.4.1106': attribute type 8 has an invalid length.
[   90.658757][ T6736] netlink: 'syz.3.1108': attribute type 1 has an invalid length.
[   90.678585][ T6736] 8021q: adding VLAN 0 to HW filter on device bond4
[   90.804385][ T6745] bpf: Bad value for 'gid'
[   90.878616][ T6747] loop3: detected capacity change from 0 to 1024
[   90.886216][ T6747] EXT4-fs: Ignoring removed bh option
[   90.925884][ T6747] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[   91.038088][ T6764] loop1: detected capacity change from 0 to 1024
[   91.066487][ T6755] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.076314][ T6755] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.176738][   T12] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   91.191958][   T12] EXT4-fs (loop1): Remounting filesystem read-only
[   91.226670][ T6771] FAULT_INJECTION: forcing a failure.
[   91.226670][ T6771] name failslab, interval 1, probability 0, space 0, times 0
[   91.239456][ T6771] CPU: 1 UID: 0 PID: 6771 Comm: syz.1.1120 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   91.239511][ T6771] Tainted: [W]=WARN
[   91.239517][ T6771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   91.239525][ T6771] Call Trace:
[   91.239572][ T6771]  <TASK>
[   91.239577][ T6771]  __dump_stack+0x1d/0x30
[   91.239594][ T6771]  dump_stack_lvl+0x95/0xd0
[   91.239607][ T6771]  dump_stack+0x15/0x1b
[   91.239683][ T6771]  should_fail_ex+0x263/0x280
[   91.239720][ T6771]  should_failslab+0x8c/0xb0
[   91.239743][ T6771]  kmem_cache_alloc_noprof+0x68/0x490
[   91.239848][ T6771]  ? security_file_alloc+0x32/0xf0
[   91.239876][ T6771]  security_file_alloc+0x32/0xf0
[   91.239901][ T6771]  init_file+0x5c/0x1c0
[   91.239926][ T6771]  alloc_empty_file+0x8b/0x200
[   91.240017][ T6771]  path_openat+0x62/0x23c0
[   91.240055][ T6771]  ? _parse_integer_limit+0x170/0x190
[   91.240086][ T6771]  ? _parse_integer+0x27/0x40
[   91.240169][ T6771]  ? kstrtoull+0x111/0x140
[   91.240193][ T6771]  ? kstrtouint+0x76/0xc0
[   91.240246][ T6771]  do_filp_open+0x15d/0x280
[   91.240287][ T6771]  do_sys_openat2+0xa6/0x150
[   91.240326][ T6771]  __x64_sys_openat+0xf2/0x120
[   91.240355][ T6771]  x64_sys_call+0x2b07/0x3000
[   91.240370][ T6771]  do_syscall_64+0xc0/0x2a0
[   91.240392][ T6771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.240406][ T6771] RIP: 0033:0x7f6144f6b78e
[   91.240416][ T6771] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   91.240462][ T6771] RSP: 002b:00007f6143a06ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   91.240474][ T6771] RAX: ffffffffffffffda RBX: 00007f6143a076c0 RCX: 00007f6144f6b78e
[   91.240483][ T6771] RDX: 0000000000000002 RSI: 00007f6143a06f90 RDI: ffffffffffffff9c
[   91.240492][ T6771] RBP: 00007f6143a07090 R08: 0000000000000000 R09: 0000000000000000
[   91.240548][ T6771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.240556][ T6771] R13: 00007f6145226038 R14: 00007f6145225fa0 R15: 00007fff6df5e468
[   91.240567][ T6771]  </TASK>
[   91.665216][ T6792] loop3: detected capacity change from 0 to 4096
[   91.674597][ T6792] EXT4-fs: Ignoring removed bh option
[   91.680000][ T6792] EXT4-fs: Ignoring removed mblk_io_submit option
[   91.696567][ T6794] netlink: 'syz.1.1130': attribute type 1 has an invalid length.
[   91.819468][   T29] audit: type=1326 audit(1769515004.184:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6801 comm="syz.1.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   91.843053][   T29] audit: type=1326 audit(1769515004.184:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6801 comm="syz.1.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   91.866512][   T29] audit: type=1326 audit(1769515004.184:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6801 comm="syz.1.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   91.889946][   T29] audit: type=1326 audit(1769515004.184:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6801 comm="syz.1.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   91.913450][   T29] audit: type=1326 audit(1769515004.184:1276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6801 comm="syz.1.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6144faaeb9 code=0x7ffc0000
[   92.015020][ T6819] __nla_validate_parse: 9 callbacks suppressed
[   92.015035][ T6819] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1141'.
[   92.030200][ T6819] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1141'.
[   92.039746][ T6819] netlink: 'syz.0.1141': attribute type 7 has an invalid length.
[   92.047659][ T6819] netlink: 'syz.0.1141': attribute type 8 has an invalid length.
[   92.097909][ T6818] vhci_hcd vhci_hcd.0: invalid port number 97
[   92.104055][ T6818] vhci_hcd vhci_hcd.0: invalid port number 97
[   92.154102][ T6824] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1143'.
[   92.175020][ T6824] FAULT_INJECTION: forcing a failure.
[   92.175020][ T6824] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.188949][ T6824] CPU: 0 UID: 0 PID: 6824 Comm: syz.0.1143 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   92.188985][ T6824] Tainted: [W]=WARN
[   92.188993][ T6824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   92.189007][ T6824] Call Trace:
[   92.189013][ T6824]  <TASK>
[   92.189022][ T6824]  __dump_stack+0x1d/0x30
[   92.189122][ T6824]  dump_stack_lvl+0x95/0xd0
[   92.189144][ T6824]  dump_stack+0x15/0x1b
[   92.189181][ T6824]  should_fail_ex+0x263/0x280
[   92.189209][ T6824]  should_fail+0xb/0x20
[   92.189239][ T6824]  should_fail_usercopy+0x1a/0x20
[   92.189295][ T6824]  _copy_from_user+0x1c/0xb0
[   92.189319][ T6824]  vt_resizex+0x4a/0x3d0
[   92.189418][ T6824]  vt_ioctl+0x10a3/0x18d0
[   92.189444][ T6824]  ? tty_jobctrl_ioctl+0x29c/0x810
[   92.189469][ T6824]  tty_ioctl+0x7d7/0xb80
[   92.189511][ T6824]  ? __pfx_tty_ioctl+0x10/0x10
[   92.189558][ T6824]  __se_sys_ioctl+0xce/0x140
[   92.189593][ T6824]  __x64_sys_ioctl+0x43/0x50
[   92.189682][ T6824]  x64_sys_call+0x14b0/0x3000
[   92.189707][ T6824]  do_syscall_64+0xc0/0x2a0
[   92.189769][ T6824]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.189790][ T6824] RIP: 0033:0x7fb792fdaeb9
[   92.189804][ T6824] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   92.189822][ T6824] RSP: 002b:00007fb791a37028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   92.189845][ T6824] RAX: ffffffffffffffda RBX: 00007fb793255fa0 RCX: 00007fb792fdaeb9
[   92.189885][ T6824] RDX: 00002000000006c0 RSI: 000000000000560a RDI: 0000000000000007
[   92.189897][ T6824] RBP: 00007fb791a37090 R08: 0000000000000000 R09: 0000000000000000
[   92.189910][ T6824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.189921][ T6824] R13: 00007fb793256038 R14: 00007fb793255fa0 R15: 00007fffce1689f8
[   92.189939][ T6824]  </TASK>
[   92.665950][ T6846] loop5: detected capacity change from 0 to 4096
[   92.674873][ T6853] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1154'.
[   92.675142][ T6846] EXT4-fs: Ignoring removed bh option
[   92.683883][ T6853] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1154'.
[   92.689276][ T6846] EXT4-fs: Ignoring removed mblk_io_submit option
[   92.756336][ T6853] netlink: 'syz.0.1154': attribute type 7 has an invalid length.
[   92.764162][ T6853] netlink: 'syz.0.1154': attribute type 8 has an invalid length.
[   92.974832][ T6869] vhci_hcd vhci_hcd.0: invalid port number 97
[   92.981116][ T6869] vhci_hcd vhci_hcd.0: invalid port number 97
[   93.070218][ T6873] SELinux:  policydb magic number 0x1eb9f does not match expected magic number 0xf97cff8c
[   93.070871][   T29] kauditd_printk_skb: 5 callbacks suppressed
[   93.070885][   T29] audit: type=1400 audit(1769515005.434:1282): avc:  denied  { load_policy } for  pid=6867 comm="syz.0.1160" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   93.080326][ T6873] SELinux: failed to load policy
[   93.244553][ T6885] netlink: 'syz.0.1166': attribute type 1 has an invalid length.
[   93.258841][ T6889] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1167'.
[   93.267863][ T6889] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1167'.
[   93.277922][ T6889] netlink: 'syz.3.1167': attribute type 7 has an invalid length.
[   93.287751][ T6885] 8021q: adding VLAN 0 to HW filter on device bond2
[   93.309413][ T6892] 8021q: adding VLAN 0 to HW filter on device bond1
[   93.409635][ T6899] EXT4-fs: Ignoring removed bh option
[   93.445886][ T6899] EXT4-fs error (device loop5): mb_free_blocks:2037: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[   93.604165][ T6914] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[   93.613586][ T6914] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1176: bg 0: block 255: padding at end of block bitmap is not set
[   93.628268][ T6914] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6689: Corrupt filesystem
[   93.637333][ T6914] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1176: invalid indirect mapped block 1 (level 1)
[   93.651030][ T6914] EXT4-fs (loop3): 1 truncate cleaned up
[   93.682703][ T6914] FAULT_INJECTION: forcing a failure.
[   93.682703][ T6914] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.695812][ T6914] CPU: 0 UID: 0 PID: 6914 Comm: syz.3.1176 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   93.695850][ T6914] Tainted: [W]=WARN
[   93.695910][ T6914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   93.695922][ T6914] Call Trace:
[   93.695930][ T6914]  <TASK>
[   93.695939][ T6914]  __dump_stack+0x1d/0x30
[   93.695966][ T6914]  dump_stack_lvl+0x95/0xd0
[   93.695991][ T6914]  dump_stack+0x15/0x1b
[   93.696013][ T6914]  should_fail_ex+0x263/0x280
[   93.696106][ T6914]  should_fail+0xb/0x20
[   93.696180][ T6914]  should_fail_usercopy+0x1a/0x20
[   93.696199][ T6914]  _copy_from_user+0x1c/0xb0
[   93.696244][ T6914]  memdup_user+0x5e/0xd0
[   93.696262][ T6914]  strndup_user+0x68/0xb0
[   93.696336][ T6914]  bpf_uprobe_multi_link_attach+0x20b/0x910
[   93.696456][ T6914]  ? kstrtouint+0x76/0xc0
[   93.696472][ T6914]  ? __rcu_read_unlock+0x4e/0x70
[   93.696530][ T6914]  ? __fget_files+0x184/0x1c0
[   93.696599][ T6914]  link_create+0x639/0x690
[   93.696618][ T6914]  __sys_bpf+0x628/0x7b0
[   93.696636][ T6914]  __x64_sys_bpf+0x41/0x50
[   93.696737][ T6914]  x64_sys_call+0x28e1/0x3000
[   93.696752][ T6914]  do_syscall_64+0xc0/0x2a0
[   93.696770][ T6914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.696783][ T6914] RIP: 0033:0x7f0b0be8aeb9
[   93.696860][ T6914] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   93.696871][ T6914] RSP: 002b:00007f0b0a8e7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   93.696884][ T6914] RAX: ffffffffffffffda RBX: 00007f0b0c105fa0 RCX: 00007f0b0be8aeb9
[   93.696892][ T6914] RDX: 0000000000000040 RSI: 00002000000003c0 RDI: 000000000000001c
[   93.696912][ T6914] RBP: 00007f0b0a8e7090 R08: 0000000000000000 R09: 0000000000000000
[   93.696920][ T6914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.696986][ T6914] R13: 00007f0b0c106038 R14: 00007f0b0c105fa0 R15: 00007fffc9a015c8
[   93.697092][ T6914]  </TASK>
[   93.697983][ T6914] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1176'.
[   94.136836][ T6924] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.181979][   T29] audit: type=1326 audit(1769515006.554:1283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6938 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb792fdaeb9 code=0x7ffc0000
[   94.205538][   T29] audit: type=1326 audit(1769515006.554:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6938 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb792fdaeb9 code=0x7ffc0000
[   94.229167][   T29] audit: type=1326 audit(1769515006.554:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6938 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fb792fdaeb9 code=0x7ffc0000
[   94.252824][ T6924] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.262153][ T6924] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1178'.
[   94.271216][ T6924] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1178'.
[   94.299051][   T29] audit: type=1326 audit(1769515006.664:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6938 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb792fdaeb9 code=0x7ffc0000
[   94.322691][   T29] audit: type=1326 audit(1769515006.664:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6938 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb792fdaeb9 code=0x7ffc0000
[   94.356624][   T29] audit: type=1326 audit(1769515006.724:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6938 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7fb792fdaeb9 code=0x7ffc0000
[   94.401173][   T29] audit: type=1400 audit(1769515006.724:1289): avc:  denied  { relabelto } for  pid=6938 comm="syz.0.1185" name="234" dev="tmpfs" ino=1229 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:systemd_logger_exec_t:s0"
[   94.428438][   T29] audit: type=1326 audit(1769515006.724:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6938 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb792fdaeb9 code=0x7ffc0000
[   94.452177][   T29] audit: type=1326 audit(1769515006.724:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6938 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb792fdaeb9 code=0x7ffc0000
[   94.757869][ T6953] set_capacity_and_notify: 2 callbacks suppressed
[   94.757961][ T6953] loop5: detected capacity change from 0 to 128
[   94.794939][ T6955] loop3: detected capacity change from 0 to 1024
[   94.921554][ T6964] 8021q: adding VLAN 0 to HW filter on device bond2
[   95.120552][ T6978] loop4: detected capacity change from 0 to 1024
[   95.130289][ T6978] EXT4-fs: Ignoring removed bh option
[   95.197653][ T6978] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[   95.282111][ T6982] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.299763][ T6982] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   95.689394][ T7015] vhci_hcd vhci_hcd.0: invalid port number 97
[   95.695513][ T7015] vhci_hcd vhci_hcd.0: invalid port number 97
[   95.812923][ T7020] loop4: detected capacity change from 0 to 4096
[   95.819771][ T7020] EXT4-fs: Ignoring removed bh option
[   95.825404][ T7020] EXT4-fs: Ignoring removed mblk_io_submit option
[   95.902622][ T7020] ==================================================================
[   95.911174][ T7020] BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked
[   95.918580][ T7020] 
[   95.920889][ T7020] read-write to 0xffff888107b30d98 of 8 bytes by task 6711 on cpu 1:
[   95.928946][ T7020]  __xa_clear_mark+0xf5/0x1e0
[   95.933651][ T7020]  __folio_end_writeback+0xf4/0x360
[   95.938865][ T7020]  folio_end_writeback_no_dropbehind+0x6d/0x1d0
[   95.945110][ T7020]  folio_end_writeback+0x1c/0x70
[   95.950043][ T7020]  ext4_finish_bio+0x459/0x8b0
[   95.954805][ T7020]  ext4_release_io_end+0x9f/0x1f0
[   95.959940][ T7020]  ext4_end_io_end+0x18d/0x240
[   95.964720][ T7020]  ext4_end_io_rsv_work+0x15b/0x1f0
[   95.970008][ T7020]  process_scheduled_works+0x4cd/0x9d0
[   95.975488][ T7020]  worker_thread+0x6bc/0x8b0
[   95.980079][ T7020]  kthread+0x488/0x510
[   95.984144][ T7020]  ret_from_fork+0x148/0x280
[   95.989161][ T7020]  ret_from_fork_asm+0x1a/0x30
[   95.993930][ T7020] 
[   95.996256][ T7020] read to 0xffff888107b30d98 of 8 bytes by task 7020 on cpu 0:
[   96.003788][ T7020]  xas_find_marked+0x213/0x620
[   96.008590][ T7020]  filemap_get_folios_tag+0xfa/0x510
[   96.013875][ T7020]  file_write_and_wait_range+0x20c/0x2f0
[   96.019498][ T7020]  generic_buffers_fsync_noflush+0x45/0x130
[   96.025385][ T7020]  ext4_sync_file+0x1aa/0x680
[   96.030065][ T7020]  __x64_sys_fdatasync+0x83/0xe0
[   96.034993][ T7020]  x64_sys_call+0x29d3/0x3000
[   96.039667][ T7020]  do_syscall_64+0xc0/0x2a0
[   96.044168][ T7020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.050060][ T7020] 
[   96.052488][ T7020] value changed: 0x000000000001fffc -> 0x000000000001f000
[   96.059577][ T7020] 
[   96.061882][ T7020] Reported by Kernel Concurrency Sanitizer on:
[   96.068025][ T7020] CPU: 0 UID: 0 PID: 7020 Comm: syz.4.1216 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   96.079300][ T7020] Tainted: [W]=WARN
[   96.083092][ T7020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   96.093134][ T7020] ==================================================================