last executing test programs:

1m17.597827805s ago: executing program 4 (id=219):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x48)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
close_range(r1, r2, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mq_timedsend(r0, 0x0, 0x0, 0xe, 0x0)

1m17.576054986s ago: executing program 4 (id=220):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ioprio_set$pid(0x1, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x0, 0x0)
pread64(r0, 0x0, 0x0, 0x6c38)

1m17.550743787s ago: executing program 4 (id=221):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e24, @empty}, 0x10)
listen(r0, 0x6)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000003600)={0x0, 0x20, &(0x7f0000000300)=[@in={0x2, 0x4e24, @loopback}, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, &(0x7f0000000040)=0x10)

1m17.481518241s ago: executing program 4 (id=223):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000680)={[{@nombcache}, {@jqfmt_vfsv0}, {@nojournal_checksum}, {@errors_remount}, {@usrjquota}, {@acl}]}, 0x1, 0x4e4, &(0x7f0000001c40)="$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")
chroot(&(0x7f0000000a40)='./file0\x00')
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
umount2(&(0x7f0000000440)='./file0/../file0/../file0/../file0\x00', 0x0)

1m17.32372143s ago: executing program 4 (id=227):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000580)="d8000000140081054e81f782db44b904021d080225000000040000a118000200fcffffff00000e1208000f0100810401a80016ea1f00", 0x36}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB="f40000000002000a0000000000000000000000070800044000000004080005400000000e060007400003000013000b0063616c6c666f7277617264696e670000080008"], 0xf4}, 0x1, 0x0, 0x0, 0x24000800}, 0x20004080)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000580)="d8000000140081054e81f782db44b9040a", 0x11}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000580)=ANY=[], 0xfe33)

1m16.922778284s ago: executing program 4 (id=238):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x3c033, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x4}, 0x0, 0x32, 0x43a1bd79, 0x3, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x400000000, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="17f100000000800000000000001a000095"], &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r2, 0x8, 0x0, 0x0, 0x30, &(0x7f0000000140), 0x10}, 0x94)

1m16.868706927s ago: executing program 32 (id=238):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x3c033, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x4}, 0x0, 0x32, 0x43a1bd79, 0x3, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x400000000, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="17f100000000800000000000001a000095"], &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r2, 0x8, 0x0, 0x0, 0x30, &(0x7f0000000140), 0x10}, 0x94)

2.296137756s ago: executing program 0 (id=2159):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000380), 0x12)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x129a42, 0x5)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x2000400, &(0x7f00000004c0)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x15}}, {@stripe}, {@nolazytime}, {@errors_remount}, {@data_err_ignore}, {@nodelalloc}, {@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x13}}]}, 0x11, 0x60c, &(0x7f0000001c40)="$eJzs3c9rHNcdAPDvzEqqZKuVXYqpTUsFPdhQrB+uqduebF/qg6GG+lBKDxaW5AqvbGHJUDuGyJBDAgmEkGsIvuQfyD2YXHMLgSS3nANOCA45JMEbZnZWXla78lrR/pDn84HZffNmtO99d/Q07+3o7QRQWtPZQxpxNCKuJBFTTdsmo75xutjv8Tf3rmZLErXav75OIinyGvs/KZ4PZg9JxHhEfHw+4teV7eWu37l7faFaq3s5YnZjdW12/c7dkyurC9eWri3dmD/119Nn5v42f3p+T+JsxHXh4j9/98Yr//vL8ifVk0mcjcujLy1GSxx7ZTqm40kRYnP+SEScyRJt3pf9Ji2ekwHXg92pFL+PoxFxJKaikq/VTcXK6wOtHNBTtUpEDSipRPuHkmr0Axpj+16Mg4fZo3P1AdD2+Efqn43EeD42OvA4aRoZ1ce7h/ag/KyMH+8deydbosPnECN7UE4nm/cj4rft4k/yuh3KP8XJ4k+3xvpRjPvnImKseC/SXZY/3bLe79+/54m/+Thk8Z4tnrP887ssf9DxA1BOD88VJ/LNbO3p+S/rGTb6P9Gm/zPZ5ty1G4M+/3Xu/zXO9+P5Z+RpSz8s6/Ncav+So60ZX7x24a1O5Tf3/7IlK7/RF+yHR/cjjrXE/2remUu2jn/S5vhnu1zpsox/fPrVhU7bBh1/7UHE8bbjn6dXtLLU7MbqWiOv5frk7PJKdWmu/ti2jA8++u97ncofdPzZ8Y8O8e90/LO8tS7LeP/Sg9VO2yafGX/65VhyOU+NFTn/X9jYuDUfMZZcLHZpyj+1c10a+zReI4v/xB/bt/8d4s8P9GaX8a/9+/rjemr7VdKuj/+2vyq5J7Uu69BJFv/iLo//m12W8d1/bv++JWuikdgp/ontL5V0+54DAAAAAABAGaX5NdgkndlKp+nMTH0O72/iQFq9ub7xp+Wbt28sRpzI/x9yNG1c6Z6qryfZ+nzx/7CN9VMt63+OiMMR8XZlIl+fuXqzujjo4AEAAAAAAAAAAAAAAAAAAGBIHCzm/zfuU/1tpT7/vysbR3pcO6DnenmDOWC4af9QXnn73+0dXIF9zfkfykv7h/LS/qG8tH8oL+0fykv7h/LS/qG8tH8AAAAAeCEd/sPDz5OI2Pz7RL5kxoptowOtGdBrz9/Gp3tSD6D/Kn39MWCYbF36N/0fSqer/v/3xZcD9r46wAAk7TLzzkFt58b/sO1PAgAAAAAAAAAAAAA9cPyo+f9QVml8OOgqAAPyMyby+w4A2Od89T+UlzE+8KxZ/OOdNpj/DwAAAAAAAAAAAAB9M5kvSTpT3AJ0MtJ0ZibilxFxKEaT5ZXq0lxE/CoiPquM/iJbnx90pQEAAAAAAAAAAAAAAAAAAOAFs37n7vWFanXpVnPih205L3aicRfUYalPcyKS/hc6ERHDEHtvEiNNOUnEZnbkh6Jit9ZjKKqR5tUY8B8mAAAAAAAAAAAAAAAAAAAooaa5x+0de7fPNQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/nt6///dJ5JnvM6gYwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9qefAgAA//+xrDkn")

2.254314928s ago: executing program 0 (id=2160):
unshare(0x68040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80143, 0x1ff)
close(r0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$SIOCGIFHWADDR(r0, 0x8927, &(0x7f0000000080)={'caif0\x00'})

1.340846952s ago: executing program 0 (id=2179):
timer_create(0x1, &(0x7f0000000800)={0x0, 0x21, 0x2}, &(0x7f0000000000))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0)
modify_ldt$write2(0x11, &(0x7f0000000100)={0x1d30, 0x0, 0x2000, 0x1}, 0x10)
modify_ldt$read(0x0, &(0x7f0000003f80)=""/4102, 0x1006)

860.46843ms ago: executing program 1 (id=2206):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x9, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040), &(0x7f00000004c0), 0xce, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000600)="c9f7b98600"/14, 0x0, 0x7ffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
io_submit(0x0, 0x0, 0x0)

747.415836ms ago: executing program 2 (id=2209):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'lo\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=@ipv4_newaddr={0x20, 0x14, 0x503, 0x800000, 0x25dfdbff, {0x2, 0x0, 0x51, 0xff, r3}, [@IFA_LOCAL={0x8, 0x2, @loopback}]}, 0x20}, 0x1, 0x0, 0x0, 0xc090}, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000180)={'lo\x00', {0x2, 0x4e21, @empty=0x7f000000}})

746.992866ms ago: executing program 0 (id=2199):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000006800e97800000000000000000a0000000000000008000500", @ANYRES8=r0], 0x20}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x48, 0x10, 0x437, 0x3, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @private0}]}}}]}, 0x48}}, 0x0)

679.291501ms ago: executing program 0 (id=2201):
socket(0x5, 0x5, 0x4)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, 0x0, 0x0)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000080)=[{0x28, 0x6, 0x0, 0xfffff034}, {0x48, 0xfd}, {0x6, 0x37, 0x0, 0x9}]}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x20, 0x3, 0x8, 0x5, 0x0, 0x0, {0x2, 0x0, 0x2}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_FIN_WAIT={0x8, 0x4, 0x1, 0x0, 0x6}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4800}, 0x10)

678.96214ms ago: executing program 2 (id=2202):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000000)=0xfffffffe, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000480)=0x17fe, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_link_settings={0x2, 0x200000, 0x0, 0x3, 0x7, 0x20, 0x0, 0x4c, 0xf3, 0x8, [0x0, 0x0, 0x0, 0xc, 0x5, 0x0, 0x0, 0x40000002]}})

640.779333ms ago: executing program 0 (id=2204):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r0, &(0x7f00000002c0)={0x2, 0x4e23, @local}, 0x10)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}]}, &(0x7f0000000140)=0x10)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e23, 0x46, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e23, 0x800, @ipv4={'\x00', '\xff\xff', @local}, 0x7}, 0x1c)

621.211454ms ago: executing program 3 (id=2205):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x9, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x3, 0x6, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$selinux_status(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$inet(0x2, 0x3, 0x8)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000340)=@raw={'raw\x00', 0x8, 0x3, 0x308, 0x1a0, 0xe138, 0x198, 0x1a0, 0x198, 0x270, 0x358, 0x358, 0x270, 0x358, 0x3, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'nicvf0\x00', 'veth0_to_bond\x00', {}, {}, 0x0, 0x0, 0x20}, 0x0, 0x158, 0x1a0, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'fsm\x00', "0d0003000000000000000404fff0cf81dfd28c89544e14cd3e01dd24289831867846c88621039b284c3ff45c429955608b9952bed40ce4a8c1df6cdbdb7e2378d5afd35f4c16827f55b3af494e39e8fb330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a0002000000000000000000000000000000080049", 0x4}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x3, 0x3078, 0x5, 'syz1\x00', {0x5}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @local, 0xc, 0x6, [0x97f4, 0x15, 0x33, 0x29, 0x7, 0x3c, 0x4, 0x26, 0x9, 0xc, 0xf, 0x1d, 0x3e, 0x1e, 0x30], 0x0, 0x0, 0x3}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x368)

489.550951ms ago: executing program 2 (id=2218):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0xf, 0x0, 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1], 0x0, 0x10, 0xffff}, 0x94)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x635c, 0x1f480, 0x0, 0x399})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
io_uring_enter(r0, 0x8ae, 0x6933, 0x17, 0x0, 0xeffd)

489.094881ms ago: executing program 1 (id=2208):
r0 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000000000))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000fff000/0x1000)=nil)

437.864215ms ago: executing program 2 (id=2210):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000"], 0xc0}, 0x1, 0x0, 0x0, 0x8890}, 0x24000000)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xfd, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x42c0, 0x0, 0x400000, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e22, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

437.734735ms ago: executing program 3 (id=2211):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a40)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff5653f, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x81}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtfilter={0x44, 0x2c, 0xd3f, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0xc, 0xb}, {0x0, 0x9}, {0xf, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8848}, @TCA_FLOWER_KEY_MPLS_OPTS={0x8, 0x63, 0x0, 0x1, @TCA_FLOWER_KEY_MPLS_OPTS_LSE={0x4, 0x30}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x20040054)

419.932545ms ago: executing program 1 (id=2212):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x841e, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x2}, 0x82, 0x4, 0x4, 0x5, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000980)=@newqdisc={0x58, 0x24, 0xd0f, 0x70bd30, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xd}, {0xffff, 0xffff}, {0xfff3, 0xc}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x2c, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x3, 0x1, 0x8, 0x1, 0xff, 0x7}, {0x4, 0x0, 0x3, 0xa159, 0x1000, 0xbebc20}, 0x3, 0x4000000, 0x421}}]}}]}, 0x58}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0xa00)

419.824706ms ago: executing program 5 (id=2213):
openat$misdntimer(0xffffffffffffff9c, 0x0, 0x200, 0x0)
socket$rds(0x15, 0x5, 0x0)
r0 = perf_event_open(&(0x7f0000000fc0)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x550, 0xfffffffffffffc75}, 0x0, 0x0, 0x8000003, 0x4, 0x0, 0x40d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000180)='cpu<=0||!')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x2040, 0x80)
fcntl$setlease(r1, 0x400, 0x0)

374.707128ms ago: executing program 5 (id=2214):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x2409c8c1, &(0x7f0000000240)={0xa, 0x4e20, 0x6, @mcast1}, 0x1c)
sendto$inet6(r0, &(0x7f0000000e80)="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", 0x5c6, 0x6d91fb6102d8910c, 0x0, 0xfffffffffffffe38)
sendto$inet6(r0, 0x0, 0x0, 0x40000, 0x0, 0x0)
recvfrom(r0, &(0x7f0000001a80)=""/4043, 0xfcb, 0x20, 0x0, 0x0)

366.668328ms ago: executing program 3 (id=2215):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000000000000850000006d00000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={0xffffffffffffffff, 0x2000002, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

344.96905ms ago: executing program 5 (id=2216):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), r1)
getsockname$packet(r1, &(0x7f0000000180)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000540)=ANY=[@ANYBLOB="380000001000390400"/20, @ANYRES32=0x0, @ANYBLOB="00000000408000001800128008000100736974000c00028008000100", @ANYRES32=r2], 0x38}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000040)={'sit0\x00', &(0x7f00000001c0)={'sit0\x00', r2, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x1, 0x14, 0x67, 0x0, 0x0, 0x0, 0x0, @empty, @empty}}}})

331.808751ms ago: executing program 2 (id=2217):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$bt_hci(r1, 0x6, 0x17, &(0x7f0000003580)=""/4117, &(0x7f00000000c0)=0xff8f)

329.557871ms ago: executing program 3 (id=2219):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x1000c40, &(0x7f00000002c0), 0x5, 0x529, &(0x7f0000000c40)="$eJzs3cFvI1cZAPBvZpONu902KVQqIKBLKSxotfbG266qnsoFhKpKiIoTh21IvNEqThzFTtWElTb5H5DoDcGJMxIIDpV64ojgBrdeygGpwArUIHEwmvE4627sjZv12sL+/aSR581M5nvP1rzn+Rz7BTCzLkXEQUScj4i3ImKx2J4US7zWWbLjPr53Z/Xo3p3VJNrtN/+R5PuzbdHzN5kni3OWIuL734n4UXIybnNvf2OlXq/tFOVKa3O70tzbv3p7c2W9tl7bqlZvLN+49sr1l6tDtaM0xDHPb/7qo2/ffv0H7/3uSx/+6eCbP86qdbHY19uOUeo0ff44TmYuIl5/HMEm4FzRnvOTrghnkkbEZyLihfz6X4xz+as5nD6XNQDwf6DdXoz2Ym8ZAJh2aZ4DS9JykQu4GGlaLndyeM/GhbTeaLau3Grsbq11cmVLMZ/eul2vXStyhUsxn2Tl5bvZ+v1yNT5Zvh4Rz0TETxaeyMvl1eHzDADAaD35wPj/74XO+A8ATLm+/zzTe39+c3x1AQDGY5h/ngUApovxHwBmz/3x/8JE6wEAjI/7fwCYPcZ/AJg1H3TH/3OTrgkAMBbfe+ONbGkfFb9/vfb23u5G4+2ra7XmRnlzd7W82tjZLq83Guv1Wnm1sXna+eqNxvbyS7H7TqVVa7Yqzb39m5uN3a3Wzfx3vW/W5sfSKgDgYZ55/v2/JBFx8OoT+RI9czkYq2G6pZOuADAxcv4wu/wKN8wu9/gwu35dfOP3tLk8S9Huf6vw7hmCtu+e4Y+AUbv8efl/mFXy/zC75P9hds0dv9sHZk27nQya8z89PgQAmCqfMsfvIwGYQqd//j/AWT7/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgClxMV+WesppWi5HPBURSzGf3Lpdr12LiKcj4s8L8wtZeXmiNQYAHl36t6SY/+vy4osXH9x7PvnPQv4YdyPizZ++s9Jq7Sxn2/9ZbI9ovVtsr06i/gDAabrjdHcc7/r43p3V7jLO+nz0rc7kolnco2Lp7JmLuezhj6V80uEL/0o65UL2fuXcCOIfHEbE5/q1P8lzI0vFzKcPxs9iPzXW+Okn4qf5vs5j9lx89sSZFwbGPG2uV5gV72f9z2v9rr80LuWPpb6TH5fyHurRdfu/oxP9X/d6L+V9Tb/+79KwMV76/XcH7juM+MJcv/jJcfxkQPwXh4z/wRe//MKgfe2fR1yO/vF7Y1Vam9uV5t7+1eyJr63XtqrVG8s3rr1y/eVqJc9RV7qZ6l6dEeLvr155emD7f/nboqM8Gb90Svu/9tBWt4874F/8960ffmVQ/MOIb3y1/+v/7EPiZ2Pi14v1wT19x8qF3wycvjuLv9Z5/g8/7et/5ZS4XR/+dX9tyEMBgDFo7u1vrNTrtZ2RrszHiE/Ys5I8pjpbmcBKjDFW9jb5Uc/zXJEyW+leP73H/OFn7z2XbZv4szqSlWF6j6NRpMCACbl/0U+6JgAAAAAAAAAAAAAAwCCP/etE6aRbCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwDT7XwAAAP//zOvG0A==")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="05022dbd7000fedbdf250100000000000000024100000010001375754e35f76a58afc4f85a6f"], 0x2c}, 0x1, 0x0, 0x0, 0x20008000}, 0x8840)
truncate(&(0x7f00000000c0)='./file1\x00', 0x6e3)

206.859598ms ago: executing program 5 (id=2220):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0)
r0 = socket(0x28, 0x801, 0x0)
close(0x3)
perf_event_open(&(0x7f00000004c0)={0xa, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x840, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x8}, 0x10000, 0x3, 0x5, 0x0, 0x3, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8ab}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x8c, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])

199.750489ms ago: executing program 1 (id=2221):
memfd_create(&(0x7f0000000000)='/dev/loop#\x00\xee\b\xce\xde\xe9\x8d\xd3\xd4\xe2\xfd\x7f\xf5R%\xe0]l\xa1s\b\xa5\xd2\xd59\xc8\xda\b\xd6\xb2\x15\xf6F\xb8\xb4{r.\xd2\xea\x16\x82\xe8=\xa3\x88sN\x83N`\xf9\xec\xe1\xbb\x05<r\xf8\xd56\xaf~Nh%\x14\xf4\x16\xa3\x88i*rR\x17\xf6:\x964\x82jOu\xa3c\x9ez7\x88\x15\xdbz\xd1&\xd1\xca\xcb\xc5C\xa6,\xc7~\x86\xee=\xae}\xeb\xe8N\x11\xed\xee\xd7x6}-y #\x17\x8d[~\xe2\xab\xe6\xe3\x17\xd2/&\xfb\x13\xf3\xd9\xf4O\xf2\xdb\x9b\x03)\xae\xde\xef\x06\x03W\xb5;\xa6\xb4\'\'\xc2C\x85\xe4\xaa\xe8\x81\xc0\x85\xd2\xfe\xcf\x9bn\xee*\x15\x97#\'\a\x00h\x1f@\xb7\xef&\x87\x93\x15\xa4\xe5D\xee\x03\xd1\xd4\xc2yT\x8a0\x06=\xe7R\x85\x02\xf3\x15\x99z0]\xc4\x04\xb0\xeaZ\xd9\x1e\xbf\xb6\xe9\x8a\xfe\xd9G\x82\x93\xbf,J}\xed\xfa\x1b\x01\xc0\x8c\x0f!\x93A-|Ss\xe8\xe3\xfa\xa2{\xef\xff1\xf9|Cj~\xf4\xd1\xf1q\x13\xb6\x94\xe1\x98#|(O7\xa8)\x86\xaf\x10\x1e\xa5\x18\x8a4\xcc\xd5f\xc0V\v:RK\xed\xc8HD\x9b;\xe0R\x92\x94\xf7\xeb\xe8\x97\x8f\x05\x9a\xe7\xdc\xf09\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00', 0x7)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast1, @local, @local}, 0xc)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1, @local}, 0xffffffffffffff3a)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000000)=""/102, &(0x7f0000000080)=0x66)

141.539902ms ago: executing program 3 (id=2222):
r0 = socket$inet6(0xa, 0x2, 0x0)
close(0x3)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000080)={@remote, 0x800, 0x0, 0x3, 0x1, 0x8}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
sendmsg$inet6(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0xa, 0x1, 0x80000, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xfffffffe}, 0x1c, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x18}, 0x40048d0)

136.506502ms ago: executing program 1 (id=2223):
socket$inet_tcp(0x2, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1d459d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x183, 0x6}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x1c0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)

135.470422ms ago: executing program 5 (id=2224):
syz_mount_image$vfat(&(0x7f0000001800), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc888, &(0x7f0000002340)=ANY=[@ANYRES16=0x0, @ANYRES32=0x0], 0x4, 0x273, &(0x7f0000000680)="$eJzs281qE1EYxvGnH9ra2k60Wm1FfFEE3QxtvIJQWhADSm3EDxCmdqIh06RkQiUitju3Xkdx6U4Qb6AbL0BcuOvGZRfiSCexTdoUdWFGzf+3OW85fcI5vGfCWWS27r5aLuZDN+9V1dtj6pfWtS2l1Ks+1fU0xt64Pqpm67o6lv10/va9+zcy2ezsvNlcZuFa2sxGL7x7+vz1xffV4TtvRt8OaDP1cOtL+vPm+ObE1reFJ4XQCqGVylXzbLFcrnqLgW9LhbDomt26/NELfSuUQr/SMp8PyisrNfNKSyNDKxU/DM0r1azo16xatmqlZt5jr1Ay13VtZEj4mdzG/LyXSXoV+LMqlYw3I2nywExuI5EFAQCARP2d9//A5/7fCdz/u8HO/f9B4/ltxf0fAAAAAAAAAAAAAAAAAAAAAIB/wXYUOVEUOT/GI1L8hk/U+PuYpCFJw5KOSxqRNCrJkZSSdELSSUljkk5JOi1pXNIZSWclTTR9VtJ7xUGH9b+P/ncFnv/uRv+7W9OLu4PS8svV3GquPtbnM3kVFMjXlBx9jXvZUK/nrmdnpyyW0rnltUZ+bTXX15qflrNzYNrlp+t5a80PxOduN5+Ws3PA2uXTbfODunKpKe/K0YdHKivQUnwm9/Ivps1mbmb35Sfj//vfubarbf9c97D5ev4Xzkc01bY//ZrsT3bvkMLas6IXBH6FgoKCYrdI+psJnbDX9KRXAgAAAAAAAAAAAAAAAAD4HZ34OWHSewQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYL/vAQAA//94NGA9")
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000050000000100000001000013040000000200000088060000ff0f0000002e2e"], 0x0, 0x35, 0x0, 0x1}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000eb0626f50000000000080000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x4fa, &(0x7f0000000cc0)=""/4096, 0x40f00, 0x5, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x0, 0x2, 0x4, 0x9}, 0x1, 0x0, 0x0, 0x64, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000240)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xd4}, 0x94)

48.138457ms ago: executing program 1 (id=2225):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80000)
splice(r1, 0x0, r3, 0x0, 0x38f9, 0x0)
splice(r2, 0x0, r1, 0x0, 0x7, 0x3)
fcntl$setstatus(r2, 0x4, 0x42c00)
write(r0, &(0x7f0000000040), 0xffffff4a)

19.565309ms ago: executing program 2 (id=2226):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup(r2)
connect$unix(r1, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x10, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[], [], 0x6b}})

17.703199ms ago: executing program 3 (id=2227):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setpgid(0x0, r0)
wait4(r0, 0x0, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000640)={0x0, 0x13, 0x4, @tid=r0}, 0x0)

0s ago: executing program 5 (id=2228):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x15, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000007bc23c22c47a74cfb5af100fc4e94d123d9f22a7561b8850821bc1f8b5b0a3e3b79b0d96ab7cc60e0e144f0f04bfffe66a22d132a161eea53a46a5316f6800"/100], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f0000000440)=""/204, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2c}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000003f80)=ANY=[@ANYBLOB="18020000feffffff00000000000000008500000041000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000010400000850000007200000095"], &(0x7f00000001c0)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f00000000c0)=r0, 0x4)

kernel console output (not intermixed with test programs):

78/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.136437][ T5835] loop1: detected capacity change from 0 to 1024
[   68.165679][ T5835] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   68.196059][ T5835] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   68.204494][ T5835] EXT4-fs (loop1): orphan cleanup on readonly fs
[   68.210929][ T5835] EXT4-fs error (device loop1): ext4_quota_enable:7173: comm syz.1.803: Bad quota inum: 2, type: 0
[   68.222673][ T5835] EXT4-fs (loop1): Remounting filesystem read-only
[   68.229260][ T5835] EXT4-fs warning (device loop1): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-117, ino=2). Please run e2fsck to fix.
[   68.244011][ T5835] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   68.384113][ T5857] loop1: detected capacity change from 0 to 512
[   68.412811][ T5857] ext4 filesystem being mounted at /182/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   68.685412][ T5885] loop2: detected capacity change from 0 to 1024
[   68.706569][ T5888] netlink: 92 bytes leftover after parsing attributes in process `syz.1.826'.
[   68.764984][ T5895] netlink: 16 bytes leftover after parsing attributes in process `syz.2.829'.
[   68.785728][ T5898] vcan0: tx drop: invalid da for name 0x0000000000000002
[   68.977975][ T5918] netlink: 14 bytes leftover after parsing attributes in process `syz.0.839'.
[   68.999965][ T5918] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   69.024519][ T5918] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   69.054442][ T5918] bond0 (unregistering): Released all slaves
[   69.257801][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   69.272581][ T5939] netlink: 'syz.0.848': attribute type 1 has an invalid length.
[   69.629503][ T4863] Bluetooth: hci0: Frame reassembly failed (-84)
[   69.682867][ T5970] loop5: detected capacity change from 0 to 512
[   69.689817][ T5970] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.715514][ T5970] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   69.723632][ T5970] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=842c01c, mo2=0002]
[   69.731768][ T5970] EXT4-fs (loop5): couldn't mount RDWR because of unsupported optional features (80)
[   69.741321][ T5970] EXT4-fs (loop5): Skipping orphan cleanup due to unknown ROCOMPAT features
[   69.799947][ T5979] loop2: detected capacity change from 0 to 256
[   69.818423][ T5982] loop3: detected capacity change from 0 to 512
[   69.844720][ T5982] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.866: bg 0: block 393: padding at end of block bitmap is not set
[   69.849048][ T5970] EXT4-fs warning (device loop5): dx_probe:861: inode #2: comm syz.5.861: dx entry: limit 65535 != root limit 120
[   69.871156][ T5970] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.861: Corrupt directory, running e2fsck is recommended
[   69.884371][ T5982] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6689: Corrupt filesystem
[   69.896338][ T5970] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 3: comm syz.5.861: path /111/file0: bad entry in directory: directory entry overrun - offset=0, inode=4294967295, rec_len=65552, size=1024 fake=0
[   69.940174][ T5982] EXT4-fs (loop3): 2 truncates cleaned up
[   69.962416][ T5982] EXT4-fs mount: 15 callbacks suppressed
[   69.962436][ T5982] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.986898][ T5982] EXT4-fs error (device loop3): ext4_inlinedir_to_tree:1324: inode #12: block 7: comm syz.3.866: path /168/file0/file0: bad entry in directory: directory entry overrun - offset=196864, inode=4278190093, rec_len=196860, size=60 fake=0
[   70.011968][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.034714][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.068278][ T5993] sctp: [Deprecated]: syz.2.871 (pid 5993) Use of struct sctp_assoc_value in delayed_ack socket option.
[   70.068278][ T5993] Use struct sctp_sack_info instead
[   70.157282][ T6002] netlink: 16 bytes leftover after parsing attributes in process `syz.2.874'.
[   70.279586][ T6008] loop2: detected capacity change from 0 to 256
[   70.344674][ T5999] loop1: detected capacity change from 0 to 32768
[   70.388111][ T3300]  loop1: p1 p2 p3 < p5 >
[   70.392850][ T3300] loop1: p1 size 242222080 extends beyond EOD, truncated
[   70.401516][ T3300] loop1: p2 start 16777215 is beyond EOD, truncated
[   70.411631][ T5999]  loop1: p1 p2 p3 < p5 >
[   70.419835][ T5999] loop1: p1 size 242222080 extends beyond EOD, truncated
[   70.428653][ T5999] loop1: p2 start 16777215 is beyond EOD, truncated
[   70.543521][ T6023] netlink: 64 bytes leftover after parsing attributes in process `syz.2.883'.
[   70.559174][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   70.569907][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   70.581548][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop1p5, 10) failed: No such file or directory
[   70.605061][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   70.615667][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop1p5, 10) failed: No such file or directory
[   70.623130][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   70.646315][ T6027] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   70.679432][ T6027] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.710103][ T6034] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6034 comm=syz.2.887
[   70.724184][ T6027] ext4 filesystem being mounted at /114/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.741608][   T29] kauditd_printk_skb: 97 callbacks suppressed
[   70.741624][   T29] audit: type=1400 audit(1770214152.145:704): avc:  denied  { getopt } for  pid=6026 comm="syz.5.885" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   70.778451][ T6027] Quota error (device loop5): do_check_range: Getting block 4095 out of range 0-5
[   70.855218][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.926255][   T29] audit: type=1400 audit(1770214152.325:705): avc:  denied  { create } for  pid=6048 comm="syz.5.894" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[   71.012448][ T6056] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.121937][ T6063] netlink: 16 bytes leftover after parsing attributes in process `syz.5.899'.
[   71.143793][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.217420][ T6067] PF_CAN: dropped non conform CAN XL skbuff: dev type 280, len 40
[   71.244867][   T29] audit: type=1400 audit(1770214152.645:706): avc:  denied  { connect } for  pid=6068 comm="syz.5.902" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   71.311345][ T6073] netlink: 'syz.2.904': attribute type 8 has an invalid length.
[   71.319194][ T6073] netlink: 4 bytes leftover after parsing attributes in process `syz.2.904'.
[   71.331203][ T6073] bond0: entered promiscuous mode
[   71.336255][ T6073] bond_slave_0: entered promiscuous mode
[   71.342171][ T6073] bond_slave_1: entered promiscuous mode
[   71.353870][ T6073] gretap0: entered promiscuous mode
[   71.363844][ T6073] ip6gretap0: entered promiscuous mode
[   71.370560][ T6073] hsr1: entered promiscuous mode
[   71.602753][   T29] audit: type=1326 audit(3917697801.000:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.3.908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   71.626059][   T29] audit: type=1326 audit(3917697801.000:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.3.908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   71.649484][   T29] audit: type=1326 audit(3917697801.000:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.3.908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   71.672896][   T29] audit: type=1326 audit(3917697801.000:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.3.908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   71.677783][ T3784] Bluetooth: hci0: command 0x1003 tx timeout
[   71.696376][   T29] audit: type=1326 audit(3917697801.000:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.3.908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   71.710255][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   71.857202][   T29] audit: type=1400 audit(3917697801.250:712): avc:  denied  { execute } for  pid=6096 comm="syz.3.912" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=12068 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   71.977393][ T6099] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[   72.050985][ T2964] kernel read not supported for file /vcs (pid: 2964 comm: kworker/1:2)
[   72.306574][ T6139] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   72.326405][ T6139] EXT4-fs (loop2): 1 truncate cleaned up
[   72.333318][ T6142] netlink: 8 bytes leftover after parsing attributes in process `syz.5.933'.
[   72.348080][ T6139] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.416521][ T6151] netlink: 8 bytes leftover after parsing attributes in process `syz.3.937'.
[   72.425405][ T6151] netlink: 4 bytes leftover after parsing attributes in process `syz.3.937'.
[   72.442166][ T5067] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   72.442195][ T6151] netlink: 8 bytes leftover after parsing attributes in process `syz.3.937'.
[   72.460005][ T6151] netlink: 4 bytes leftover after parsing attributes in process `syz.3.937'.
[   72.490740][ T5067] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   72.506487][ T4863] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   72.531016][ T4863] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   72.535726][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.558332][ T6157] netlink: 8 bytes leftover after parsing attributes in process `syz.2.939'.
[   72.567253][ T6157] netlink: 4 bytes leftover after parsing attributes in process `syz.2.939'.
[   72.604491][ T6157] netlink: 8 bytes leftover after parsing attributes in process `syz.2.939'.
[   72.613677][ T5962] Bluetooth: hci0: Opcode 0x0401 failed: -4
[   72.622207][ T5069] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   72.631705][ T5069] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   72.643722][ T5069] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   72.660311][ T5069] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   73.225147][ T6217] set_capacity_and_notify: 3 callbacks suppressed
[   73.225166][ T6217] loop0: detected capacity change from 0 to 128
[   73.261332][ T6217] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   73.274222][ T6217] ext4 filesystem being mounted at /173/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   73.344557][ T3319] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   73.506695][ T6238] loop1: detected capacity change from 0 to 1024
[   73.514702][ T6238] EXT4-fs: inline encryption not supported
[   73.520614][ T6238] EXT4-fs: Ignoring removed i_version option
[   73.544615][ T6238] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.667017][ T6238] EXT4-fs error (device loop1): mb_free_blocks:2037: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[   73.780421][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.302111][ T6303] loop5: detected capacity change from 0 to 128
[   74.309687][ T6303] FAT-fs (loop5): Directory bread(block 414) failed
[   74.316313][ T6303] FAT-fs (loop5): Directory bread(block 415) failed
[   74.327274][ T6303] FAT-fs (loop5): Directory bread(block 416) failed
[   74.344458][ T6303] FAT-fs (loop5): Directory bread(block 417) failed
[   74.367648][ T6303] FAT-fs (loop5): Directory bread(block 418) failed
[   74.383847][ T6303] FAT-fs (loop5): Directory bread(block 419) failed
[   74.390782][ T6303] FAT-fs (loop5): Directory bread(block 420) failed
[   74.397448][ T6303] FAT-fs (loop5): Directory bread(block 421) failed
[   74.404829][ T6303] vfat filesystem being mounted at /137/file0 supports timestamps until 2107-12-31 (0x10391447e)
[   74.441190][ T6311] loop3: detected capacity change from 0 to 1024
[   74.464425][ T6311] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.541428][ T6311] EXT4-fs error (device loop3): ext4_xattr_block_list:766: inode #15: comm syz.3.1004: corrupted xattr block 209: invalid header
[   74.595633][ T6311] EXT4-fs (loop3): Remounting filesystem read-only
[   74.645958][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.668554][ T6330] loop2: detected capacity change from 0 to 512
[   74.675713][ T6330] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   74.686992][ T6330] EXT4-fs (loop2): 1 truncate cleaned up
[   74.693558][ T6330] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.731898][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.042673][ T6369] loop5: detected capacity change from 0 to 7
[   75.212799][ T6379] netlink: 'syz.3.1032': attribute type 5 has an invalid length.
[   75.331797][ T6387] loop5: detected capacity change from 0 to 1024
[   75.367774][ T6387] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.412632][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.776858][   T29] kauditd_printk_skb: 54 callbacks suppressed
[   75.776877][   T29] audit: type=1400 audit(3917697805.170:767): avc:  denied  { sqpoll } for  pid=6405 comm="syz.1.1041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   76.118727][ T6409] loop1: detected capacity change from 0 to 32768
[   76.159605][ T3300]  loop1: p1 p3 < >
[   76.169972][ T6409]  loop1: p1 p3 < >
[   76.338038][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   76.351633][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   76.378817][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   76.379206][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   76.408524][   T29] audit: type=1400 audit(3917697805.810:768): avc:  denied  { append } for  pid=6441 comm="syz.5.1053" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   76.436992][ T6443] __nla_validate_parse: 8 callbacks suppressed
[   76.437004][ T6443] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1052'.
[   76.443730][   T29] audit: type=1400 audit(3917697805.830:769): avc:  denied  { write } for  pid=6441 comm="syz.5.1053" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   76.476594][ T6443] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   76.487024][ T6443] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   76.496912][ T6443] bond0 (unregistering): Released all slaves
[   76.543701][ T6448] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[   77.013456][   T29] audit: type=1400 audit(3917697806.410:770): avc:  denied  { getopt } for  pid=6461 comm="syz.0.1061" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   77.050038][ T6464] netlink: 'syz.0.1062': attribute type 4 has an invalid length.
[   77.061972][ T6464] netlink: 'syz.0.1062': attribute type 4 has an invalid length.
[   77.617506][ T6488] loop5: detected capacity change from 0 to 1024
[   77.639085][ T6488] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   77.651288][ T6488] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.664924][ T6488] EXT4-fs error (device loop5): ext4_map_blocks:825: inode #15: block 3: comm syz.5.1073: lblock 3 mapped to illegal pblock 3 (length 3)
[   77.679309][ T6488] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[   77.691622][ T6488] EXT4-fs (loop5): This should not happen!! Data will be lost
[   77.691622][ T6488] 
[   77.702177][   T29] audit: type=1400 audit(3917697807.100:771): avc:  denied  { map } for  pid=6487 comm="syz.5.1073" path="/157/file1/file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   77.725231][ T6488] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #15: block 3: comm syz.5.1073: lblock 3 mapped to illegal pblock 3 (length 1)
[   77.740764][ T6488] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #15: block 3: comm syz.5.1073: lblock 3 mapped to illegal pblock 3 (length 1)
[   77.753618][ T6487] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #15: block 4: comm syz.5.1073: lblock 4 mapped to illegal pblock 4 (length 2)
[   77.756421][ T6488] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #15: block 3: comm syz.5.1073: lblock 3 mapped to illegal pblock 3 (length 1)
[   77.782845][ T6487] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #15: block 4: comm syz.5.1073: lblock 4 mapped to illegal pblock 4 (length 2)
[   77.783136][ T6488] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #15: block 3: comm syz.5.1073: lblock 3 mapped to illegal pblock 3 (length 1)
[   77.798416][ T6487] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #15: block 4: comm syz.5.1073: lblock 4 mapped to illegal pblock 4 (length 2)
[   77.825726][ T6488] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #15: block 3: comm syz.5.1073: lblock 3 mapped to illegal pblock 3 (length 1)
[   77.825997][ T6492] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #15: block 4: comm syz.5.1073: lblock 4 mapped to illegal pblock 4 (length 2)
[   78.241604][ T6494] netlink: 'syz.0.1074': attribute type 3 has an invalid length.
[   78.249684][ T6494] netlink: 'syz.0.1074': attribute type 3 has an invalid length.
[   78.360989][ T6396] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   78.465036][   T29] audit: type=1400 audit(3917697807.860:772): avc:  denied  { ioctl } for  pid=6502 comm="syz.3.1079" path="socket:[14408]" dev="sockfs" ino=14408 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   78.490105][ T6505] loop2: detected capacity change from 0 to 1024
[   78.530539][ T6505] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.553643][ T5071] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[   78.566048][ T5071] EXT4-fs (loop5): This should not happen!! Data will be lost
[   78.566048][ T5071] 
[   78.583511][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   78.599216][ T6505] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: comm syz.2.1078: inode #3479939154: comm syz.2.1078: iget: illegal inode #
[   78.650843][ T6505] EXT4-fs (loop2): Remounting filesystem read-only
[   78.678281][ T6505] EXT4-fs warning (device loop2): ext4_xattr_block_set:2200: inode #19: comm syz.2.1078: dec ref error=-30
[   78.710389][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.751068][ T6525] sch_tbf: burst 22 is lower than device lo mtu (65550) !
[   78.759898][ T6525] sch_tbf: burst 22 is lower than device lo mtu (65550) !
[   78.781101][ T6527] sctp: [Deprecated]: syz.5.1088 (pid 6527) Use of struct sctp_assoc_value in delayed_ack socket option.
[   78.781101][ T6527] Use struct sctp_sack_info instead
[   78.825183][ T6531] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1090'.
[   79.106719][ T6565] loop5: detected capacity change from 0 to 1024
[   79.130512][ T6565] EXT4-fs: Ignoring removed orlov option
[   79.136276][ T6565] EXT4-fs: inline encryption not supported
[   79.185333][ T6565] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.226916][   T29] audit: type=1400 audit(3917697808.620:773): avc:  denied  { mounton } for  pid=6564 comm="syz.5.1106" path="/166/file1/bus" dev="loop5" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   79.296034][   T29] audit: type=1400 audit(3917697808.690:774): avc:  denied  { remove_name } for  pid=4083 comm="syz-executor" name="lost+found" dev="loop5" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   79.298193][ T6579] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1111'.
[   79.319331][   T29] audit: type=1400 audit(3917697808.690:775): avc:  denied  { rmdir } for  pid=4083 comm="syz-executor" name="lost+found" dev="loop5" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   79.350927][   T29] audit: type=1400 audit(3917697808.690:776): avc:  denied  { unlink } for  pid=4083 comm="syz-executor" name="file0" dev="loop5" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   79.382561][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.441858][ T6584] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1113'.
[   79.491700][ T6589] loop1: detected capacity change from 0 to 1024
[   79.503241][ T6589] EXT4-fs: inline encryption not supported
[   79.545510][ T6589] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.613727][ T6600] loop3: detected capacity change from 0 to 128
[   79.664175][ T6571] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4215: comm syz.1.1109: Allocating blocks 385-513 which overlap fs metadata
[   79.715665][ T6571] EXT4-fs (loop1): pa ffff888107a4d2a0: logic 16, phys. 129, len 24
[   79.723724][ T6571] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 8
[   79.744073][ T6600] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   79.794791][ T6571] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28
[   79.807290][ T6571] EXT4-fs (loop1): This should not happen!! Data will be lost
[   79.807290][ T6571] 
[   79.817122][ T6571] EXT4-fs (loop1): Total free blocks count 0
[   79.823230][ T6571] EXT4-fs (loop1): Free/Dirty block details
[   79.829186][ T6571] EXT4-fs (loop1): free_blocks=128
[   79.834376][ T6571] EXT4-fs (loop1): dirty_blocks=0
[   79.839564][ T6571] EXT4-fs (loop1): Block reservation details
[   79.845575][ T6571] EXT4-fs (loop1): i_reserved_data_blocks=0
[   79.848004][ T6600] ext4 filesystem being mounted at /219/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   79.867806][ T6600] EXT4-fs error (device loop3): htree_dirblock_to_tree:1080: inode #2: block 4: comm syz.3.1120: bad entry in directory: directory entry overrun - offset=1012, inode=128, rec_len=65544, size=1024 fake=0
[   79.926225][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   80.144481][ T6622] syzkaller0: entered promiscuous mode
[   80.150098][ T6622] syzkaller0: entered allmulticast mode
[   80.340581][ T6646] veth1_to_bond: entered allmulticast mode
[   80.346682][ T6646] veth1_to_bond: left allmulticast mode
[   80.448977][ T6658] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1145'.
[   80.458538][ T6658] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1145'.
[   80.483766][ T6660] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1144'.
[   80.507072][ T6660] 8021q: adding VLAN 0 to HW filter on device bond2
[   80.529222][ T6660] 8021q: adding VLAN 0 to HW filter on device bond2
[   80.536545][ T6660] bond2: (slave gre1): The slave device specified does not support setting the MAC address
[   80.548579][ T6660] bond2: (slave gre1): Error -95 calling set_mac_address
[   80.806779][   T29] kauditd_printk_skb: 12 callbacks suppressed
[   80.806798][   T29] audit: type=1400 audit(3917697810.200:789): avc:  denied  { read open } for  pid=6692 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=483 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   80.838465][   T29] audit: type=1400 audit(3917697810.200:790): avc:  denied  { getattr } for  pid=6692 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=483 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   80.869625][ T6693] loop1: detected capacity change from 0 to 512
[   80.891482][ T6693] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   80.963131][ T6693] ext4 filesystem being mounted at /236/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.006582][   T29] audit: type=1400 audit(3917697810.400:791): avc:  denied  { add_name } for  pid=6688 comm="dhcpcd-run-hook" name="resolv.conf.cfttyS3.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   81.029468][   T29] audit: type=1400 audit(3917697810.400:792): avc:  denied  { create } for  pid=6688 comm="dhcpcd-run-hook" name="resolv.conf.cfttyS3.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   81.052140][   T29] audit: type=1400 audit(3917697810.400:793): avc:  denied  { write } for  pid=6688 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.cfttyS3.link" dev="tmpfs" ino=5895 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   81.078761][   T29] audit: type=1400 audit(3917697810.400:794): avc:  denied  { append } for  pid=6688 comm="dhcpcd-run-hook" name="resolv.conf.cfttyS3.link" dev="tmpfs" ino=5895 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   81.125724][   T29] audit: type=1400 audit(3917697810.520:795): avc:  denied  { remove_name } for  pid=6708 comm="rm" name="resolv.conf.cfttyS3.link" dev="tmpfs" ino=5895 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   81.149437][   T29] audit: type=1400 audit(3917697810.520:796): avc:  denied  { unlink } for  pid=6708 comm="rm" name="resolv.conf.cfttyS3.link" dev="tmpfs" ino=5895 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   81.215251][   T29] audit: type=1400 audit(3917697810.550:797): avc:  denied  { append } for  pid=6690 comm="syz.1.1157" name="file2" dev="loop1" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   81.270994][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   81.368035][ T6634] loop3: detected capacity change from 0 to 1024
[   81.499583][ T6747] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[   81.526668][ T6634] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.624194][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.665028][   T29] audit: type=1326 audit(3917697811.060:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6759 comm="syz.3.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   81.699807][ T6762] ALSA: seq fatal error: cannot create timer (-16)
[   81.742081][ T6766] vhci_hcd vhci_hcd.0: invalid port number 0
[   82.040692][ T6786] loop5: detected capacity change from 0 to 512
[   82.048464][ T6786] EXT4-fs warning (device loop5): ext4_multi_mount_protect:288: Invalid MMP block in superblock
[   82.101176][ T6788] loop3: detected capacity change from 0 to 1024
[   82.127033][ T6788] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.154738][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.400775][ T3387] kernel write not supported for file /input/event0 (pid: 3387 comm: kworker/1:3)
[   82.640595][ T6835] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1202'.
[   82.677526][ T6837] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[   82.684178][ T6837] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   82.692749][ T6837] vhci_hcd vhci_hcd.0: Device attached
[   82.701930][ T6838] vhci_hcd: connection closed
[   82.702222][   T37] vhci_hcd vhci_hcd.1: stop threads
[   82.712351][   T37] vhci_hcd vhci_hcd.1: release socket
[   82.717789][   T37] vhci_hcd vhci_hcd.1: disconnect device
[   83.084231][ T6852] netlink: 'syz.3.1208': attribute type 22 has an invalid length.
[   83.092154][ T6852] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1208'.
[   83.127885][ T6852] netlink: 'syz.3.1208': attribute type 22 has an invalid length.
[   83.135848][ T6852] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1208'.
[   83.485260][ T6875] loop1: detected capacity change from 0 to 1024
[   83.502345][ T6875] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.531892][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.625380][ T6882] ip6erspan0: entered promiscuous mode
[   83.664482][ T6884] loop1: detected capacity change from 0 to 1024
[   83.672951][ T6884] EXT4-fs: inline encryption not supported
[   83.702700][ T6884] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.756460][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.875011][ T6855] syz.0.1210 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   83.886337][ T6855] CPU: 1 UID: 0 PID: 6855 Comm: syz.0.1210 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   83.886369][ T6855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   83.886384][ T6855] Call Trace:
[   83.886396][ T6855]  <TASK>
[   83.886421][ T6855]  __dump_stack+0x1d/0x30
[   83.886450][ T6855]  dump_stack_lvl+0x95/0xd0
[   83.886513][ T6855]  dump_stack+0x15/0x1b
[   83.886536][ T6855]  dump_header+0x80/0x240
[   83.886559][ T6855]  oom_kill_process+0x295/0x350
[   83.886599][ T6855]  out_of_memory+0x97d/0xb80
[   83.886629][ T6855]  try_charge_memcg+0x62e/0xa10
[   83.886660][ T6855]  mem_cgroup_swapin_charge_folio+0x103/0x1f0
[   83.886706][ T6855]  __read_swap_cache_async+0x17b/0x2d0
[   83.886779][ T6855]  swap_cluster_readahead+0x262/0x3c0
[   83.886877][ T6855]  swapin_readahead+0xde/0x840
[   83.886911][ T6855]  ? mod_memcg_lruvec_state+0x1a1/0x280
[   83.886942][ T6855]  ? lruvec_stat_mod_folio+0xd2/0x110
[   83.886984][ T6855]  ? __rcu_read_unlock+0x4e/0x70
[   83.887021][ T6855]  ? swap_cache_get_folio+0x26f/0x280
[   83.887057][ T6855]  do_swap_page+0x59b/0x2a50
[   83.887137][ T6855]  ? __rcu_read_lock+0x36/0x50
[   83.887169][ T6855]  ? __pfx_default_wake_function+0x10/0x10
[   83.887206][ T6855]  handle_mm_fault+0xb40/0x3030
[   83.887308][ T6855]  ? vma_start_read+0x1c7/0x2c0
[   83.887396][ T6855]  do_user_addr_fault+0x62f/0x1050
[   83.887425][ T6855]  ? fpregs_assert_state_consistent+0xb3/0xe0
[   83.887449][ T6855]  ? arch_exit_to_user_mode_prepare+0x26/0x80
[   83.887531][ T6855]  ? irqentry_exit+0x3c/0x510
[   83.887559][ T6855]  exc_page_fault+0x62/0xa0
[   83.887593][ T6855]  asm_exc_page_fault+0x26/0x30
[   83.887676][ T6855] RIP: 0033:0x7fa19b7ab760
[   83.887712][ T6855] Code: 6f 46 50 0f 29 44 24 50 f3 0f 6f 46 60 0f 29 44 24 60 f3 0f 6f 46 70 0f 29 44 24 70 e9 5d ff ff ff e8 84 1c 04 00 0f 1f 40 00 <8b> 07 f6 07 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89
[   83.887732][ T6855] RSP: 002b:00007ffcf7a06148 EFLAGS: 00010246
[   83.887752][ T6855] RAX: 0000000000000000 RBX: 000055558f7e1500 RCX: 0000000000000000
[   83.887767][ T6855] RDX: 0000000000000000 RSI: 00000000000000e6 RDI: 000055558f7e1808
[   83.887780][ T6855] RBP: 00007fa19ba67da0 R08: 00007ffcf7a061a0 R09: 0000000000000000
[   83.887793][ T6855] R10: 0000000000000000 R11: 000055558f7e1808 R12: 00000000000147d6
[   83.887869][ T6855] R13: 00007fa19ba6609c R14: 00000000000144fe R15: 00007ffcf7a062d0
[   83.887894][ T6855]  </TASK>
[   84.118094][ T6855] memory: usage 307200kB, limit 307200kB, failcnt 1378
[   84.125067][ T6855] memory+swap: usage 308844kB, limit 9007199254740988kB, failcnt 0
[   84.133114][ T6855] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[   84.140445][ T6855] Memory cgroup stats for /syz0:
[   84.163037][ T6855] cache 0
[   84.171034][ T6855] rss 4096
[   84.174129][ T6855] shmem 0
[   84.177110][ T6855] mapped_file 0
[   84.180667][ T6855] dirty 0
[   84.183653][ T6855] writeback 4096
[   84.187220][ T6855] workingset_refault_anon 124
[   84.191978][ T6855] workingset_refault_file 1141
[   84.196755][ T6855] swap 1683456
[   84.200264][ T6855] swapcached 12288
[   84.204005][ T6855] pgpgin 119138
[   84.207575][ T6855] pgpgout 119135
[   84.211179][ T6855] pgfault 90584
[   84.214655][ T6855] pgmajfault 72
[   84.218251][ T6855] inactive_anon 12288
[   84.222254][ T6855] active_anon 0
[   84.225788][ T6855] inactive_file 0
[   84.229521][ T6855] active_file 0
[   84.233064][ T6855] unevictable 0
[   84.236576][ T6855] hierarchical_memory_limit 314572800
[   84.242007][ T6855] hierarchical_memsw_limit 9223372036854771712
[   84.248216][ T6855] total_cache 0
[   84.248227][ T6855] total_rss 4096
[   84.248237][ T6855] total_shmem 0
[   84.248247][ T6855] total_mapped_file 0
[   84.248257][ T6855] total_dirty 0
[   84.248267][ T6855] total_writeback 4096
[   84.248392][ T6855] total_workingset_refault_anon 124
[   84.248401][ T6855] total_workingset_refault_file 1141
[   84.248409][ T6855] total_swap 1683456
[   84.248462][ T6855] total_swapcached 12288
[   84.248472][ T6855] total_pgpgin 119138
[   84.248481][ T6855] total_pgpgout 119135
[   84.248494][ T6855] total_pgfault 90584
[   84.248502][ T6855] total_pgmajfault 72
[   84.248509][ T6855] total_inactive_anon 12288
[   84.248516][ T6855] total_active_anon 0
[   84.248525][ T6855] total_inactive_file 0
[   84.248536][ T6855] total_active_file 0
[   84.248546][ T6855] total_unevictable 0
[   84.248557][ T6855] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.976,pid=6252,uid=0
[   84.248725][ T6855] Memory cgroup out of memory: Killed process 6252 (syz.0.976) total-vm:94132kB, anon-rss:1312kB, file-rss:20736kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[   84.561232][ T6856] syz.0.1210 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[   84.561278][ T6856] CPU: 1 UID: 0 PID: 6856 Comm: syz.0.1210 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   84.561307][ T6856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   84.561359][ T6856] Call Trace:
[   84.561386][ T6856]  <TASK>
[   84.561396][ T6856]  __dump_stack+0x1d/0x30
[   84.561442][ T6856]  dump_stack_lvl+0x95/0xd0
[   84.561471][ T6856]  dump_stack+0x15/0x1b
[   84.561500][ T6856]  dump_header+0x80/0x240
[   84.561527][ T6856]  oom_kill_process+0x295/0x350
[   84.561561][ T6856]  out_of_memory+0x97d/0xb80
[   84.561596][ T6856]  try_charge_memcg+0x62e/0xa10
[   84.561635][ T6856]  obj_cgroup_charge_pages+0x23/0xc0
[   84.561827][ T6856]  __memcg_kmem_charge_page+0x9e/0x170
[   84.561941][ T6856]  __alloc_frozen_pages_noprof+0x18a/0x350
[   84.562054][ T6856]  alloc_pages_mpol+0xb3/0x260
[   84.562223][ T6856]  alloc_pages_noprof+0x8f/0x130
[   84.562326][ T6856]  __vmalloc_node_range_noprof+0xa46/0x12b0
[   84.562469][ T6856]  __kvmalloc_node_noprof+0x471/0x680
[   84.562615][ T6856]  ? ip_set_alloc+0x24/0x30
[   84.562710][ T6856]  ? ip_set_alloc+0x24/0x30
[   84.562813][ T6856]  ip_set_alloc+0x24/0x30
[   84.562967][ T6856]  hash_netiface_create+0x282/0x740
[   84.563174][ T6856]  ? __pfx_hash_netiface_create+0x10/0x10
[   84.563391][ T6856]  ip_set_create+0x3cf/0x970
[   84.563482][ T6856]  ? __nla_parse+0x40/0x60
[   84.563545][ T6856]  nfnetlink_rcv_msg+0x509/0x5d0
[   84.563704][ T6856]  netlink_rcv_skb+0x123/0x220
[   84.563888][ T6856]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   84.563995][ T6856]  nfnetlink_rcv+0x167/0x1720
[   84.564077][ T6856]  ? __kfree_skb+0x109/0x150
[   84.564180][ T6856]  ? nlmon_xmit+0x4f/0x60
[   84.564343][ T6856]  ? consume_skb+0x49/0x140
[   84.564447][ T6856]  ? nlmon_xmit+0x4f/0x60
[   84.564620][ T6856]  ? dev_hard_start_xmit+0x3a8/0x3e0
[   84.564787][ T6856]  ? __dev_queue_xmit+0x139a/0x1f20
[   84.564903][ T6856]  ? __dev_queue_xmit+0x148/0x1f20
[   84.565158][ T6856]  ? ref_tracker_free+0x37d/0x3e0
[   84.565278][ T6856]  ? __netlink_deliver_tap+0x4dc/0x500
[   84.565409][ T6856]  netlink_unicast+0x5c0/0x690
[   84.565514][ T6856]  netlink_sendmsg+0x5c8/0x6f0
[   84.565632][ T6856]  ? __pfx_netlink_sendmsg+0x10/0x10
[   84.565694][ T6856]  ____sys_sendmsg+0x5af/0x600
[   84.565766][ T6856]  ___sys_sendmsg+0x195/0x1e0
[   84.565899][ T6856]  __x64_sys_sendmsg+0xd4/0x160
[   84.565999][ T6856]  x64_sys_call+0x17ba/0x3000
[   84.566103][ T6856]  do_syscall_64+0xc0/0x2a0
[   84.566256][ T6856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.566329][ T6856] RIP: 0033:0x7fa19b7eaeb9
[   84.566390][ T6856] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   84.566416][ T6856] RSP: 002b:00007fa19a247028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   84.566436][ T6856] RAX: ffffffffffffffda RBX: 00007fa19ba65fa0 RCX: 00007fa19b7eaeb9
[   84.566450][ T6856] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[   84.566572][ T6856] RBP: 00007fa19b858c1f R08: 0000000000000000 R09: 0000000000000000
[   84.566614][ T6856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   84.566708][ T6856] R13: 00007fa19ba66038 R14: 00007fa19ba65fa0 R15: 00007ffcf7a06068
[   84.566790][ T6856]  </TASK>
[   84.566861][ T6856] memory: usage 307200kB, limit 307200kB, failcnt 1551
[   84.746369][ T6909] loop3: detected capacity change from 0 to 1024
[   84.749133][ T6856] memory+swap: usage 308220kB, limit 9007199254740988kB, failcnt 0
[   84.765694][ T6909] EXT4-fs: inline encryption not supported
[   84.770224][ T6856] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[   84.925076][ T6856] Memory cgroup stats for /syz0:
[   84.935038][ T6856] cache 0
[   84.943256][ T6856] rss 0
[   84.946044][ T6856] shmem 0
[   84.949082][ T6856] mapped_file 0
[   84.952566][ T6856] dirty 0
[   84.955523][ T6856] writeback 0
[   84.958945][ T6856] workingset_refault_anon 162
[   84.963700][ T6856] workingset_refault_file 1149
[   84.968532][ T6856] swap 1044480
[   84.971919][ T6856] swapcached 16384
[   84.975664][ T6856] pgpgin 119184
[   84.979225][ T6856] pgpgout 119180
[   84.982849][ T6856] pgfault 90616
[   84.986328][ T6856] pgmajfault 95
[   84.989860][ T6856] inactive_anon 0
[   84.993510][ T6856] active_anon 16384
[   84.997329][ T6856] inactive_file 0
[   85.001024][ T6856] active_file 0
[   85.004580][ T6856] unevictable 0
[   85.008182][ T6856] hierarchical_memory_limit 314572800
[   85.013574][ T6856] hierarchical_memsw_limit 9223372036854771712
[   85.019796][ T6856] total_cache 0
[   85.023278][ T6856] total_rss 0
[   85.026583][ T6856] total_shmem 0
[   85.030107][ T6856] total_mapped_file 0
[   85.034105][ T6856] total_dirty 0
[   85.037681][ T6856] total_writeback 0
[   85.041552][ T6856] total_workingset_refault_anon 162
[   85.046774][ T6856] total_workingset_refault_file 1149
[   85.052108][ T6856] total_swap 1044480
[   85.056019][ T6856] total_swapcached 16384
[   85.060319][ T6856] total_pgpgin 119184
[   85.064325][ T6856] total_pgpgout 119180
[   85.068494][ T6856] total_pgfault 90616
[   85.072573][ T6856] total_pgmajfault 95
[   85.076573][ T6856] total_inactive_anon 0
[   85.080786][ T6856] total_active_anon 16384
[   85.085129][ T6856] total_inactive_file 0
[   85.089351][ T6856] total_active_file 0
[   85.093388][ T6856] total_unevictable 0
[   85.097386][ T6856] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.152,pid=3860,uid=0
[   85.112201][ T6856] Memory cgroup out of memory: Killed process 3860 (syz.0.152) total-vm:96048kB, anon-rss:1236kB, file-rss:20736kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[   85.131025][ T6909] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.253074][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.378100][ T6856] syz.0.1210 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[   85.392213][ T6856] CPU: 1 UID: 0 PID: 6856 Comm: syz.0.1210 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   85.392299][ T6856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   85.392314][ T6856] Call Trace:
[   85.392321][ T6856]  <TASK>
[   85.392329][ T6856]  __dump_stack+0x1d/0x30
[   85.392357][ T6856]  dump_stack_lvl+0x95/0xd0
[   85.392382][ T6856]  dump_stack+0x15/0x1b
[   85.392410][ T6856]  dump_header+0x80/0x240
[   85.392437][ T6856]  oom_kill_process+0x295/0x350
[   85.392531][ T6856]  out_of_memory+0x97d/0xb80
[   85.392567][ T6856]  try_charge_memcg+0x62e/0xa10
[   85.392608][ T6856]  obj_cgroup_charge_pages+0x23/0xc0
[   85.392650][ T6856]  __memcg_kmem_charge_page+0x9e/0x170
[   85.392771][ T6856]  __alloc_frozen_pages_noprof+0x18a/0x350
[   85.392903][ T6856]  alloc_pages_mpol+0xb3/0x260
[   85.392936][ T6856]  alloc_pages_noprof+0x8f/0x130
[   85.392968][ T6856]  __vmalloc_node_range_noprof+0xa46/0x12b0
[   85.393070][ T6856]  __kvmalloc_node_noprof+0x471/0x680
[   85.393107][ T6856]  ? ip_set_alloc+0x24/0x30
[   85.393144][ T6856]  ? ip_set_alloc+0x24/0x30
[   85.393176][ T6856]  ip_set_alloc+0x24/0x30
[   85.393235][ T6856]  hash_netiface_create+0x282/0x740
[   85.393331][ T6856]  ? __pfx_hash_netiface_create+0x10/0x10
[   85.393368][ T6856]  ip_set_create+0x3cf/0x970
[   85.393396][ T6856]  ? __nla_parse+0x40/0x60
[   85.393420][ T6856]  nfnetlink_rcv_msg+0x509/0x5d0
[   85.393525][ T6856]  netlink_rcv_skb+0x123/0x220
[   85.393563][ T6856]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   85.393680][ T6856]  nfnetlink_rcv+0x167/0x1720
[   85.393714][ T6856]  ? __kfree_skb+0x109/0x150
[   85.393745][ T6856]  ? nlmon_xmit+0x4f/0x60
[   85.393799][ T6856]  ? consume_skb+0x49/0x140
[   85.393888][ T6856]  ? nlmon_xmit+0x4f/0x60
[   85.393932][ T6856]  ? dev_hard_start_xmit+0x3a8/0x3e0
[   85.393979][ T6856]  ? __dev_queue_xmit+0x139a/0x1f20
[   85.394039][ T6856]  ? __dev_queue_xmit+0x148/0x1f20
[   85.394093][ T6856]  ? ref_tracker_free+0x37d/0x3e0
[   85.394130][ T6856]  ? __netlink_deliver_tap+0x4dc/0x500
[   85.394205][ T6856]  netlink_unicast+0x5c0/0x690
[   85.394243][ T6856]  netlink_sendmsg+0x5c8/0x6f0
[   85.394269][ T6856]  ? __pfx_netlink_sendmsg+0x10/0x10
[   85.394302][ T6856]  ____sys_sendmsg+0x5af/0x600
[   85.394355][ T6856]  ___sys_sendmsg+0x195/0x1e0
[   85.394396][ T6856]  __x64_sys_sendmsg+0xd4/0x160
[   85.394427][ T6856]  x64_sys_call+0x17ba/0x3000
[   85.394462][ T6856]  do_syscall_64+0xc0/0x2a0
[   85.394511][ T6856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.394539][ T6856] RIP: 0033:0x7fa19b7eaeb9
[   85.394559][ T6856] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   85.394622][ T6856] RSP: 002b:00007fa19a247028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   85.394652][ T6856] RAX: ffffffffffffffda RBX: 00007fa19ba65fa0 RCX: 00007fa19b7eaeb9
[   85.394683][ T6856] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[   85.394696][ T6856] RBP: 00007fa19b858c1f R08: 0000000000000000 R09: 0000000000000000
[   85.394723][ T6856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.394743][ T6856] R13: 00007fa19ba66038 R14: 00007fa19ba65fa0 R15: 00007ffcf7a06068
[   85.394766][ T6856]  </TASK>
[   85.394772][ T6856] memory: usage 307200kB, limit 307200kB, failcnt 1901
[   85.715258][ T6856] memory+swap: usage 308064kB, limit 9007199254740988kB, failcnt 0
[   85.723235][ T6856] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   85.730562][ T6856] Memory cgroup stats for /syz0:
[   85.730810][ T6856] cache 0
[   85.738711][ T6856] rss 0
[   85.741524][ T6856] shmem 0
[   85.744664][ T6856] mapped_file 0
[   85.748250][ T6856] dirty 0
[   85.751208][ T6856] writeback 0
[   85.754527][ T6856] workingset_refault_anon 162
[   85.759333][ T6856] workingset_refault_file 1149
[   85.764112][ T6856] swap 1044480
[   85.767502][ T6856] swapcached 16384
[   85.771269][ T6856] pgpgin 119184
[   85.774742][ T6856] pgpgout 119180
[   85.778321][ T6856] pgfault 90616
[   85.781795][ T6856] pgmajfault 95
[   85.785429][ T6856] inactive_anon 0
[   85.789150][ T6856] active_anon 16384
[   85.793062][ T6856] inactive_file 0
[   85.796719][ T6856] active_file 0
[   85.800472][ T6856] unevictable 0
[   85.803954][ T6856] hierarchical_memory_limit 314572800
[   85.809404][ T6856] hierarchical_memsw_limit 9223372036854771712
[   85.815575][ T6856] total_cache 0
[   85.819131][ T6856] total_rss 0
[   85.822512][ T6856] total_shmem 0
[   85.826036][ T6856] total_mapped_file 0
[   85.830073][ T6856] total_dirty 0
[   85.833550][ T6856] total_writeback 0
[   85.837366][ T6856] total_workingset_refault_anon 162
[   85.842600][ T6856] total_workingset_refault_file 1149
[   85.847974][ T6856] total_swap 1044480
[   85.851895][ T6856] total_swapcached 16384
[   85.856208][ T6856] total_pgpgin 119184
[   85.860291][ T6856] total_pgpgout 119180
[   85.864556][ T6856] total_pgfault 90616
[   85.868618][ T6856] total_pgmajfault 95
[   85.872667][ T6856] total_inactive_anon 0
[   85.876842][ T6856] total_active_anon 16384
[   85.881261][ T6856] total_inactive_file 0
[   85.885460][ T6856] total_active_file 0
[   85.889496][ T6856] total_unevictable 0
[   85.893591][ T6856] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.847,pid=5937,uid=0
[   85.908185][ T6856] Memory cgroup out of memory: Killed process 5937 (syz.0.847) total-vm:94000kB, anon-rss:1236kB, file-rss:20736kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[   85.935310][ T3319] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   85.946366][ T3319] CPU: 0 UID: 0 PID: 3319 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[   85.946428][ T3319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   85.946441][ T3319] Call Trace:
[   85.946448][ T3319]  <TASK>
[   85.946460][ T3319]  __dump_stack+0x1d/0x30
[   85.946495][ T3319]  dump_stack_lvl+0x95/0xd0
[   85.946523][ T3319]  dump_stack+0x15/0x1b
[   85.946550][ T3319]  dump_header+0x80/0x240
[   85.946651][ T3319]  oom_kill_process+0x295/0x350
[   85.946684][ T3319]  out_of_memory+0x97d/0xb80
[   85.946718][ T3319]  try_charge_memcg+0x62e/0xa10
[   85.946769][ T3319]  mem_cgroup_swapin_charge_folio+0x103/0x1f0
[   85.946863][ T3319]  __read_swap_cache_async+0x17b/0x2d0
[   85.946900][ T3319]  swap_cluster_readahead+0x262/0x3c0
[   85.946987][ T3319]  swapin_readahead+0xde/0x840
[   85.947029][ T3319]  ? next_uptodate_folio+0x84c/0x8c0
[   85.947118][ T3319]  ? percpu_counter_add_batch+0xb6/0x130
[   85.947155][ T3319]  ? __rcu_read_unlock+0x4e/0x70
[   85.947185][ T3319]  ? swap_cache_get_folio+0x26f/0x280
[   85.947223][ T3319]  do_swap_page+0x59b/0x2a50
[   85.947418][ T3319]  ? __rcu_read_lock+0x36/0x50
[   85.947457][ T3319]  ? __pfx_default_wake_function+0x10/0x10
[   85.947500][ T3319]  handle_mm_fault+0xb40/0x3030
[   85.947537][ T3319]  ? vma_start_read+0x1c7/0x2c0
[   85.947674][ T3319]  do_user_addr_fault+0x62f/0x1050
[   85.947706][ T3319]  ? arch_exit_to_user_mode_prepare+0x26/0x80
[   85.947802][ T3319]  ? irqentry_exit+0x3c/0x510
[   85.947908][ T3319]  exc_page_fault+0x62/0xa0
[   85.947936][ T3319]  asm_exc_page_fault+0x26/0x30
[   85.948007][ T3319] RIP: 0033:0x7fa19b6b8fb7
[   85.948028][ T3319] Code: 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 00 c8 ed 00 48 69 8c 24 90 00 00 00 e8 03 00 00 8b 78 08 <48> 8b 44 24 18 48 c1 ea 12 4c 8b 0d f9 c6 ed 00 48 01 d1 39 7c 24
[   85.948054][ T3319] RSP: 002b:00007ffcf7a063d0 EFLAGS: 00010202
[   85.948075][ T3319] RAX: 0000001b33624000 RBX: 0000000000000212 RCX: 0000000000014820
[   85.948093][ T3319] RDX: 0000000006a87dbf RSI: 00007ffcf7a06460 RDI: 0000000000000005
[   85.948110][ T3319] RBP: 00007ffcf7a0640c R08: 0000000019661e2f R09: 7fffffffffffffff
[   85.948156][ T3319] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[   85.948169][ T3319] R13: 00000000000927c0 R14: 0000000000014544 R15: 00007ffcf7a06460
[   85.948188][ T3319]  </TASK>
[   86.172275][ T3319] memory: usage 307200kB, limit 307200kB, failcnt 1960
[   86.179178][ T3319] memory+swap: usage 307904kB, limit 9007199254740988kB, failcnt 0
[   86.187116][ T3319] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   86.194534][ T3319] Memory cgroup stats for /syz0:
[   86.194776][ T3319] cache 0
[   86.202758][ T3319] rss 0
[   86.205529][ T3319] shmem 0
[   86.208506][ T3319] mapped_file 0
[   86.211993][ T3319] dirty 0
[   86.214960][ T3319] writeback 0
[   86.218356][ T3319] workingset_refault_anon 162
[   86.223100][ T3319] workingset_refault_file 1149
[   86.227959][ T3319] swap 884736
[   86.231340][ T3319] swapcached 0
[   86.234850][ T3319] pgpgin 119184
[   86.238363][ T3319] pgpgout 119184
[   86.241924][ T3319] pgfault 90616
[   86.245408][ T3319] pgmajfault 95
[   86.248943][ T3319] inactive_anon 0
[   86.252604][ T3319] active_anon 0
[   86.256209][ T3319] inactive_file 0
[   86.259941][ T3319] active_file 0
[   86.263440][ T3319] unevictable 0
[   86.266949][ T3319] hierarchical_memory_limit 314572800
[   86.272484][ T3319] hierarchical_memsw_limit 9223372036854771712
[   86.278806][ T3319] total_cache 0
[   86.282339][ T3319] total_rss 0
[   86.285752][ T3319] total_shmem 0
[   86.289291][ T3319] total_mapped_file 0
[   86.293343][ T3319] total_dirty 0
[   86.296885][ T3319] total_writeback 0
[   86.300868][ T3319] total_workingset_refault_anon 162
[   86.306145][ T3319] total_workingset_refault_file 1149
[   86.311585][ T3319] total_swap 884736
[   86.315418][ T3319] total_swapcached 0
[   86.319411][ T3319] total_pgpgin 119184
[   86.323442][ T3319] total_pgpgout 119184
[   86.327544][ T3319] total_pgfault 90616
[   86.331717][ T3319] total_pgmajfault 95
[   86.335853][ T3319] total_inactive_anon 0
[   86.340190][ T3319] total_active_anon 0
[   86.344194][ T3319] total_inactive_file 0
[   86.348448][ T3319] total_active_file 0
[   86.352460][ T3319] total_unevictable 0
[   86.356463][ T3319] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.945,pid=6174,uid=0
[   86.371066][ T3319] Memory cgroup out of memory: Killed process 6174 (syz.0.945) total-vm:96048kB, anon-rss:1208kB, file-rss:20736kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[   86.499459][ T3319] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   86.510470][ T3319] CPU: 0 UID: 0 PID: 3319 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[   86.510577][ T3319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   86.510592][ T3319] Call Trace:
[   86.510599][ T3319]  <TASK>
[   86.510606][ T3319]  __dump_stack+0x1d/0x30
[   86.510732][ T3319]  dump_stack_lvl+0x95/0xd0
[   86.510782][ T3319]  dump_stack+0x15/0x1b
[   86.510860][ T3319]  dump_header+0x80/0x240
[   86.510887][ T3319]  oom_kill_process+0x295/0x350
[   86.510920][ T3319]  out_of_memory+0x97d/0xb80
[   86.511002][ T3319]  try_charge_memcg+0x62e/0xa10
[   86.511059][ T3319]  mem_cgroup_swapin_charge_folio+0x103/0x1f0
[   86.511182][ T3319]  __read_swap_cache_async+0x17b/0x2d0
[   86.511228][ T3319]  swap_cluster_readahead+0x262/0x3c0
[   86.511342][ T3319]  swapin_readahead+0xde/0x840
[   86.511382][ T3319]  ? next_uptodate_folio+0x84c/0x8c0
[   86.511493][ T3319]  ? percpu_counter_add_batch+0xb6/0x130
[   86.511535][ T3319]  ? __rcu_read_unlock+0x4e/0x70
[   86.511590][ T6953] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1248'.
[   86.511572][ T3319]  ? swap_cache_get_folio+0x26f/0x280
[   86.511780][ T3319]  do_swap_page+0x59b/0x2a50
[   86.512056][ T3319]  ? __rcu_read_lock+0x36/0x50
[   86.512237][ T3319]  ? __pfx_default_wake_function+0x10/0x10
[   86.512344][ T3319]  handle_mm_fault+0xb40/0x3030
[   86.512446][ T3319]  ? vma_start_read+0x1c7/0x2c0
[   86.512565][ T3319]  do_user_addr_fault+0x62f/0x1050
[   86.512650][ T3319]  ? arch_exit_to_user_mode_prepare+0x26/0x80
[   86.512764][ T3319]  ? irqentry_exit+0x3c/0x510
[   86.512926][ T3319]  exc_page_fault+0x62/0xa0
[   86.513043][ T3319]  asm_exc_page_fault+0x26/0x30
[   86.513222][ T3319] RIP: 0033:0x7fa19b6b8fb7
[   86.513289][ T3319] Code: 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 00 c8 ed 00 48 69 8c 24 90 00 00 00 e8 03 00 00 8b 78 08 <48> 8b 44 24 18 48 c1 ea 12 4c 8b 0d f9 c6 ed 00 48 01 d1 39 7c 24
[   86.513351][ T3319] RSP: 002b:00007ffcf7a063d0 EFLAGS: 00010202
[   86.513404][ T3319] RAX: 0000001b33624000 RBX: 0000000000000212 RCX: 0000000000014820
[   86.513462][ T3319] RDX: 0000000006a87dbf RSI: 00007ffcf7a06460 RDI: 0000000000000005
[   86.513505][ T3319] RBP: 00007ffcf7a0640c R08: 0000000019661e2f R09: 7fffffffffffffff
[   86.513554][ T3319] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[   86.513597][ T3319] R13: 00000000000927c0 R14: 0000000000014544 R15: 00007ffcf7a06460
[   86.513653][ T3319]  </TASK>
[   86.513681][ T3319] memory: usage 307200kB, limit 307200kB, failcnt 2135
[   86.753475][ T3319] memory+swap: usage 307728kB, limit 9007199254740988kB, failcnt 0
[   86.761515][ T3319] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   86.769039][ T3319] Memory cgroup stats for /syz0:
[   86.771229][ T3319] cache 0
[   86.779201][ T3319] rss 0
[   86.781984][ T3319] shmem 0
[   86.784960][ T3319] mapped_file 0
[   86.788526][ T3319] dirty 0
[   86.791490][ T3319] writeback 0
[   86.794790][ T3319] workingset_refault_anon 162
[   86.799508][ T3319] workingset_refault_file 1149
[   86.804287][ T3319] swap 540672
[   86.807626][ T3319] swapcached 0
[   86.811031][ T3319] pgpgin 119184
[   86.814499][ T3319] pgpgout 119184
[   86.818092][ T3319] pgfault 90616
[   86.821675][ T3319] pgmajfault 95
[   86.825189][ T3319] inactive_anon 0
[   86.828864][ T3319] active_anon 0
[   86.832342][ T3319] inactive_file 0
[   86.835992][ T3319] active_file 0
[   86.839479][ T3319] unevictable 0
[   86.842954][ T3319] hierarchical_memory_limit 314572800
[   86.848444][ T3319] hierarchical_memsw_limit 9223372036854771712
[   86.854613][ T3319] total_cache 0
[   86.858129][ T3319] total_rss 0
[   86.861479][ T3319] total_shmem 0
[   86.865005][ T3319] total_mapped_file 0
[   86.869314][ T3319] total_dirty 0
[   86.872795][ T3319] total_writeback 0
[   86.876661][ T3319] total_workingset_refault_anon 162
[   86.881905][ T3319] total_workingset_refault_file 1149
[   86.887300][ T3319] total_swap 540672
[   86.891158][ T3319] total_swapcached 0
[   86.895081][ T3319] total_pgpgin 119184
[   86.899123][ T3319] total_pgpgout 119184
[   86.903219][ T3319] total_pgfault 90616
[   86.907295][ T3319] total_pgmajfault 95
[   86.911326][ T3319] total_inactive_anon 0
[   86.915500][ T3319] total_active_anon 0
[   86.919533][ T3319] total_inactive_file 0
[   86.923707][ T3319] total_active_file 0
[   86.927800][ T3319] total_unevictable 0
[   86.931831][ T3319] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.46,pid=3607,uid=0
[   86.946501][ T3319] Memory cgroup out of memory: Killed process 3607 (syz.0.46) total-vm:95976kB, anon-rss:1236kB, file-rss:20480kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[   86.970510][   T29] kauditd_printk_skb: 14 callbacks suppressed
[   86.970529][   T29] audit: type=1326 audit(3917697816.370:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6961 comm="syz.5.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f340aa6aeb9 code=0x7ffc0000
[   87.000026][   T29] audit: type=1326 audit(3917697816.370:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6961 comm="syz.5.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f340aa6aeb9 code=0x7ffc0000
[   87.148214][ T6978] loop1: detected capacity change from 0 to 512
[   87.168400][ T6978] FAT-fs (loop1): Directory bread(block 199916) failed
[   87.175404][ T6978] FAT-fs (loop1): Directory bread(block 199917) failed
[   87.191837][ T6978] FAT-fs (loop1): Directory bread(block 199918) failed
[   87.207138][   T29] audit: type=1326 audit(3917697816.370:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6961 comm="syz.5.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f340aa6aeb9 code=0x7ffc0000
[   87.230995][   T29] audit: type=1326 audit(3917697816.370:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6961 comm="syz.5.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f340aa6aeb9 code=0x7ffc0000
[   87.254621][   T29] audit: type=1326 audit(3917697816.370:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6961 comm="syz.5.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f340aa6aeb9 code=0x7ffc0000
[   87.257940][ T6978] FAT-fs (loop1): Directory bread(block 199919) failed
[   87.278026][   T29] audit: type=1326 audit(3917697816.410:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6961 comm="syz.5.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f340aa6aeb9 code=0x7ffc0000
[   87.299698][ T6978] FAT-fs (loop1): Directory bread(block 199920) failed
[   87.308316][   T29] audit: type=1326 audit(3917697816.410:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6961 comm="syz.5.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f340aa6aeb9 code=0x7ffc0000
[   87.336005][ T6978] FAT-fs (loop1): Directory bread(block 199921) failed
[   87.339089][   T29] audit: type=1326 audit(3917697816.410:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6961 comm="syz.5.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f340aa6aeb9 code=0x7ffc0000
[   87.359966][ T6978] FAT-fs (loop1): Directory bread(block 199922) failed
[   87.368808][   T29] audit: type=1326 audit(3917697816.430:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6961 comm="syz.5.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f340aa6aeb9 code=0x7ffc0000
[   87.398976][   T29] audit: type=1326 audit(3917697816.430:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6961 comm="syz.5.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f340aa6aeb9 code=0x7ffc0000
[   87.402680][ T6856] syz.0.1210 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[   87.436223][ T6856] CPU: 0 UID: 0 PID: 6856 Comm: syz.0.1210 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   87.436261][ T6856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   87.436298][ T6856] Call Trace:
[   87.436305][ T6856]  <TASK>
[   87.436313][ T6856]  __dump_stack+0x1d/0x30
[   87.436390][ T6856]  dump_stack_lvl+0x95/0xd0
[   87.436484][ T6856]  dump_stack+0x15/0x1b
[   87.436505][ T6856]  dump_header+0x80/0x240
[   87.436530][ T6856]  oom_kill_process+0x295/0x350
[   87.436637][ T6856]  out_of_memory+0x97d/0xb80
[   87.436664][ T6856]  try_charge_memcg+0x62e/0xa10
[   87.436691][ T6856]  obj_cgroup_charge_pages+0x23/0xc0
[   87.436788][ T6856]  __memcg_kmem_charge_page+0x9e/0x170
[   87.436820][ T6856]  __alloc_frozen_pages_noprof+0x18a/0x350
[   87.436864][ T6856]  alloc_pages_mpol+0xb3/0x260
[   87.436920][ T6856]  alloc_pages_noprof+0x8f/0x130
[   87.436965][ T6856]  __vmalloc_node_range_noprof+0xa46/0x12b0
[   87.437036][ T6856]  __kvmalloc_node_noprof+0x471/0x680
[   87.437074][ T6856]  ? ip_set_alloc+0x24/0x30
[   87.437226][ T6856]  ? ip_set_alloc+0x24/0x30
[   87.437259][ T6856]  ip_set_alloc+0x24/0x30
[   87.437289][ T6856]  hash_netiface_create+0x282/0x740
[   87.437425][ T6856]  ? __pfx_hash_netiface_create+0x10/0x10
[   87.437536][ T6856]  ip_set_create+0x3cf/0x970
[   87.437563][ T6856]  ? __nla_parse+0x40/0x60
[   87.437633][ T6856]  nfnetlink_rcv_msg+0x509/0x5d0
[   87.437690][ T6856]  netlink_rcv_skb+0x123/0x220
[   87.437736][ T6856]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   87.437808][ T6856]  nfnetlink_rcv+0x167/0x1720
[   87.437890][ T6856]  ? __kfree_skb+0x109/0x150
[   87.437926][ T6856]  ? nlmon_xmit+0x4f/0x60
[   87.438036][ T6856]  ? consume_skb+0x49/0x140
[   87.438086][ T6856]  ? nlmon_xmit+0x4f/0x60
[   87.438137][ T6856]  ? dev_hard_start_xmit+0x3a8/0x3e0
[   87.438251][ T6856]  ? __dev_queue_xmit+0x139a/0x1f20
[   87.438289][ T6856]  ? __dev_queue_xmit+0x148/0x1f20
[   87.438362][ T6856]  ? ref_tracker_free+0x37d/0x3e0
[   87.438473][ T6856]  ? __netlink_deliver_tap+0x4dc/0x500
[   87.438536][ T6856]  netlink_unicast+0x5c0/0x690
[   87.438575][ T6856]  netlink_sendmsg+0x5c8/0x6f0
[   87.438683][ T6856]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.438722][ T6856]  ____sys_sendmsg+0x5af/0x600
[   87.438744][ T6856]  ___sys_sendmsg+0x195/0x1e0
[   87.438820][ T6856]  __x64_sys_sendmsg+0xd4/0x160
[   87.438845][ T6856]  x64_sys_call+0x17ba/0x3000
[   87.438878][ T6856]  do_syscall_64+0xc0/0x2a0
[   87.438959][ T6856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.438985][ T6856] RIP: 0033:0x7fa19b7eaeb9
[   87.439002][ T6856] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   87.439071][ T6856] RSP: 002b:00007fa19a247028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.439098][ T6856] RAX: ffffffffffffffda RBX: 00007fa19ba65fa0 RCX: 00007fa19b7eaeb9
[   87.439123][ T6856] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[   87.439193][ T6856] RBP: 00007fa19b858c1f R08: 0000000000000000 R09: 0000000000000000
[   87.439206][ T6856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   87.439220][ T6856] R13: 00007fa19ba66038 R14: 00007fa19ba65fa0 R15: 00007ffcf7a06068
[   87.439254][ T6856]  </TASK>
[   87.537978][ T6978] FAT-fs (loop1): Directory bread(block 199923) failed
[   87.539340][ T6856] memory: usage 307200kB, limit 307200kB, failcnt 2329
[   87.571862][ T6978] vfat filesystem being mounted at /263/file0 supports timestamps until 2107-12-31 (0x10391447e)
[   87.572986][ T6856] memory+swap: usage 307556kB, limit 9007199254740988kB, failcnt 0
[   87.744629][ T6978] FAT-fs (loop1): FAT read failed (blocknr 128)
[   87.749452][ T6856] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[   87.749472][ T6856] Memory cgroup stats for /syz0:
[   87.840557][ T6856] cache 0
[   87.848804][ T6856] rss 12288
[   87.851976][ T6856] shmem 0
[   87.854944][ T6856] mapped_file 0
[   87.858554][ T6856] dirty 0
[   87.861524][ T6856] writeback 0
[   87.864955][ T6856] workingset_refault_anon 182
[   87.869740][ T6856] workingset_refault_file 1153
[   87.874781][ T6856] swap 352256
[   87.878319][ T6856] swapcached 12288
[   87.882082][ T6856] pgpgin 119208
[   87.885581][ T6856] pgpgout 119204
[   87.889351][ T6856] pgfault 90630
[   87.892870][ T6856] pgmajfault 110
[   87.896445][ T6856] inactive_anon 0
[   87.900167][ T6856] active_anon 8192
[   87.903908][ T6856] inactive_file 0
[   87.907670][ T6856] active_file 0
[   87.911261][ T6856] unevictable 0
[   87.914755][ T6856] hierarchical_memory_limit 314572800
[   87.920307][ T6856] hierarchical_memsw_limit 9223372036854771712
[   87.927109][ T6856] total_cache 0
[   87.930621][ T6856] total_rss 12288
[   87.934280][ T6856] total_shmem 0
[   87.937781][ T6856] total_mapped_file 0
[   87.941818][ T6856] total_dirty 0
[   87.945302][ T6856] total_writeback 0
[   87.949178][ T6856] total_workingset_refault_anon 182
[   87.954570][ T6856] total_workingset_refault_file 1153
[   87.959911][ T6856] total_swap 352256
[   87.963827][ T6856] total_swapcached 12288
[   87.968200][ T6856] total_pgpgin 119208
[   87.972204][ T6856] total_pgpgout 119204
[   87.976293][ T6856] total_pgfault 90630
[   87.980600][ T6856] total_pgmajfault 110
[   87.984689][ T6856] total_inactive_anon 0
[   87.989064][ T6856] total_active_anon 8192
[   87.993339][ T6856] total_inactive_file 0
[   87.997509][ T6856] total_active_file 0
[   88.001550][ T6856] total_unevictable 0
[   88.005549][ T6856] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.1210,pid=6855,uid=0
[   88.020195][ T6856] Memory cgroup out of memory: Killed process 6856 (syz.0.1210) total-vm:94132kB, anon-rss:1204kB, file-rss:22152kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:0
[   88.051864][ T6988] syzkaller1: entered promiscuous mode
[   88.057383][ T6988] syzkaller1: entered allmulticast mode
[   88.162814][ T6997] loop2: detected capacity change from 0 to 128
[   88.191703][ T6997] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   88.206389][ T7002] loop1: detected capacity change from 0 to 512
[   88.273772][ T7002] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.1269: iget: bad i_size value: 38620345925642
[   88.346775][ T7012] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1272'.
[   88.367771][ T7002] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.1269: couldn't read orphan inode 15 (err -117)
[   88.396420][ T7002] EXT4-fs (loop1): mounted filesystem 00000000-0000-00a1-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.413176][ T7002] Direct I/O collision with buffered writes! File: /file1 Comm: syz.1.1269
[   88.434498][ T7012] 8021q: adding VLAN 0 to HW filter on device bond3
[   88.452314][ T4863] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm kworker/u8:10: bg 0: block 5: invalid block bitmap
[   88.475797][ T4863] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[   88.488505][ T4863] EXT4-fs (loop1): This should not happen!! Data will be lost
[   88.488505][ T4863] 
[   88.498435][ T4863] EXT4-fs (loop1): Total free blocks count 0
[   88.504441][ T4863] EXT4-fs (loop1): Free/Dirty block details
[   88.510495][ T4863] EXT4-fs (loop1): free_blocks=0
[   88.515451][ T4863] EXT4-fs (loop1): dirty_blocks=5
[   88.520522][ T4863] EXT4-fs (loop1): Block reservation details
[   88.526529][ T4863] EXT4-fs (loop1): i_reserved_data_blocks=5
[   88.532951][ T4863] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 131587 with max blocks 1 with error 28
[   88.628528][ T7024] loop2: detected capacity change from 0 to 512
[   88.647520][ T7024] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   88.678107][ T7024] EXT4-fs (loop2): 1 truncate cleaned up
[   88.692361][ T7024] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.727998][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.779092][ T7034] loop1: detected capacity change from 0 to 256
[   88.794542][ T7036] loop2: detected capacity change from 0 to 128
[   88.818284][ T7036] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   88.859161][ T7036] ext4 filesystem being mounted at /281/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.876648][ T7041] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1285'.
[   88.907354][ T3315] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   88.927953][ T7045] loop2: detected capacity change from 0 to 512
[   88.949524][ T7045] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.1287: iget: bad i_size value: 38620345925642
[   88.980557][ T7045] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.1287: couldn't read orphan inode 15 (err -117)
[   89.014442][ T7045] EXT4-fs (loop2): mounted filesystem 00000000-0000-00a1-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.026457][ T7052] loop5: detected capacity change from 0 to 2048
[   89.049453][ T7045] Direct I/O collision with buffered writes! File: /file1 Comm: syz.2.1287
[   89.060323][ T7052] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.079348][ T7052] ext4 filesystem being mounted at /200/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.101271][ T4863] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm kworker/u8:10: bg 0: block 5: invalid block bitmap
[   89.117442][ T4863] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[   89.129844][ T4863] EXT4-fs (loop2): This should not happen!! Data will be lost
[   89.129844][ T4863] 
[   89.139651][ T4863] EXT4-fs (loop2): Total free blocks count 0
[   89.145657][ T4863] EXT4-fs (loop2): Free/Dirty block details
[   89.151635][ T4863] EXT4-fs (loop2): free_blocks=0
[   89.156607][ T4863] EXT4-fs (loop2): dirty_blocks=5
[   89.161750][ T4863] EXT4-fs (loop2): Block reservation details
[   89.167828][ T4863] EXT4-fs (loop2): i_reserved_data_blocks=5
[   89.228188][ T4863] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 131587 with max blocks 1 with error 28
[   89.271200][ T7066] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1296'.
[   89.594964][ T7059] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1290: bg 0: block 345: padding at end of block bitmap is not set
[   89.612600][ T7059] EXT4-fs (loop5): Remounting filesystem read-only
[   89.619342][ T5069] EXT4-fs warning (device loop5): ext4_convert_unwritten_extents:4984: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30
[   89.774166][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.805066][ T7110] loop2: detected capacity change from 0 to 8192
[   89.809655][ T7112] loop3: detected capacity change from 0 to 512
[   89.828172][ T7110] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   89.862257][ T7110] vfat filesystem being mounted at /290/file0 supports timestamps until 2107-12-31 (0x10391447e)
[   89.888815][ T7112] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.903253][ T7112] ext4 filesystem being mounted at /259/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.938144][ T7112] EXT4-fs error (device loop3): ext4_search_dir:1474: inode #2: block 3: comm syz.3.1313: bad entry in directory: directory entry overrun - offset=16444, inode=113, rec_len=2048, size=2048 fake=0
[   89.988328][ T7112] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 3: comm syz.3.1313: path /259/file0: bad entry in directory: directory entry overrun - offset=60, inode=113, rec_len=2048, size=2048 fake=0
[   90.013294][ T7116] netlink: 'syz.0.1316': attribute type 13 has an invalid length.
[   90.035698][ T7116] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   90.081470][ T7112] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 12: comm syz.3.1313: path /259/file0: bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0
[   90.105535][ T7112] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 13: comm syz.3.1313: path /259/file0: bad entry in directory: directory entry overrun - offset=0, inode=3653246737, rec_len=65536, size=2048 fake=0
[   90.150596][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.196052][ T7134] loop3: detected capacity change from 0 to 128
[   90.234320][ T7134] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   90.286898][ T7134] ext4 filesystem being mounted at /260/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   90.294725][ T7141] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1325'.
[   90.328130][ T7134] EXT4-fs error (device loop3): dx_make_map:1296: inode #2: block 63: comm syz.3.1322: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[   90.353728][ T7134] EXT4-fs error (device loop3) in do_split:2027: Corrupt filesystem
[   90.390166][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   90.399724][ T7141] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1325'.
[   90.692525][ T7178] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1340'.
[   90.855113][ T7189] loop3: detected capacity change from 0 to 256
[   91.054666][ T7202] loop1: detected capacity change from 0 to 512
[   91.068567][ T7202] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1352: bg 0: block 393: padding at end of block bitmap is not set
[   91.103355][ T7202] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6689: Corrupt filesystem
[   91.112928][ T7202] EXT4-fs (loop1): 2 truncates cleaned up
[   91.119808][ T7202] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.139144][ T7202] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1324: inode #12: block 7: comm syz.1.1352: path /282/file0/file0: bad entry in directory: directory entry overrun - offset=196864, inode=4278190093, rec_len=196860, size=60 fake=0
[   91.176943][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.432999][ T7223] sch_tbf: burst 22 is lower than device lo mtu (65550) !
[   91.445978][ T7223] sch_tbf: burst 22 is lower than device lo mtu (65550) !
[   92.001414][ T7274] netlink: 'syz.5.1380': attribute type 8 has an invalid length.
[   92.009255][ T7274] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1380'.
[   92.044979][ T7274] bond0: entered promiscuous mode
[   92.050177][ T7274] bond_slave_0: entered promiscuous mode
[   92.055999][ T7274] bond_slave_1: entered promiscuous mode
[   92.070664][ T7274] gretap0: entered promiscuous mode
[   92.084996][ T7274] ip6gretap0: entered promiscuous mode
[   92.092192][ T7274] debugfs: 'hsr1' already exists in 'hsr'
[   92.097991][ T7274] Cannot create hsr debugfs directory
[   92.103475][ T7274] hsr1: entered promiscuous mode
[   92.323017][ T7305] 9p: Bad value for 'wfdno'
[   92.338684][   T29] kauditd_printk_skb: 52 callbacks suppressed
[   92.338703][   T29] audit: type=1400 audit(3917697821.740:875): avc:  denied  { relabelfrom } for  pid=7304 comm="syz.5.1392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   92.365762][   T29] audit: type=1400 audit(3917697821.740:876): avc:  denied  { relabelto } for  pid=7304 comm="syz.5.1392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   92.385553][   T29] audit: type=1400 audit(3917697821.770:877): avc:  denied  { attach_queue } for  pid=7304 comm="syz.5.1392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   92.604933][   T29] audit: type=1326 audit(3917697822.000:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7324 comm="syz.3.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   92.628396][   T29] audit: type=1326 audit(3917697822.000:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7324 comm="syz.3.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   92.658846][   T29] audit: type=1326 audit(3917697822.030:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7324 comm="syz.3.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   92.682278][   T29] audit: type=1326 audit(3917697822.030:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7324 comm="syz.3.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   92.705624][   T29] audit: type=1326 audit(3917697822.030:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7324 comm="syz.3.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   92.729124][   T29] audit: type=1326 audit(3917697822.030:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7324 comm="syz.3.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   92.752448][   T29] audit: type=1326 audit(3917697822.030:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7324 comm="syz.3.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[   92.844397][ T7332] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1406'.
[   92.880474][ T7336] netlink: 64 bytes leftover after parsing attributes in process `syz.5.1409'.
[   93.132201][ T7360] netlink: 'syz.3.1419': attribute type 8 has an invalid length.
[   93.140121][ T7360] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1419'.
[   93.152118][ T7360] bond0: entered promiscuous mode
[   93.157201][ T7360] bond_slave_0: entered promiscuous mode
[   93.163134][ T7360] bond_slave_1: entered promiscuous mode
[   93.171025][ T7360] gretap0: entered promiscuous mode
[   93.178169][ T7360] ip6gretap0: entered promiscuous mode
[   93.184968][ T7360] debugfs: 'hsr1' already exists in 'hsr'
[   93.190800][ T7360] Cannot create hsr debugfs directory
[   93.196248][ T7360] hsr1: entered promiscuous mode
[   93.366482][ T7378] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1438'.
[   93.375514][ T7378] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1438'.
[   93.417729][ T7378] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1438'.
[   93.426668][ T7378] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1438'.
[   93.474057][ T7393] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1433'.
[   94.439106][ T7421] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1446'.
[   94.589143][ T7423] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1447'.
[   94.598091][ T7423] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1447'.
[   94.865670][ T5069] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   94.874569][ T5069] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   94.883429][ T7423] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1447'.
[   94.892418][ T7423] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1447'.
[   94.901806][ T4863] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   94.916828][ T4863] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   94.976388][ T7438] loop5: detected capacity change from 0 to 512
[   95.004493][ T7438] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   95.022681][ T7438] EXT4-fs (loop5): 1 truncate cleaned up
[   95.038321][ T7438] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.143942][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.793015][ T7491] loop1: detected capacity change from 0 to 128
[   95.835022][ T7491] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   95.877421][ T7491] ext4 filesystem being mounted at /303/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   95.988408][ T3312] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   96.027364][ T7501] netlink: 'syz.3.1479': attribute type 1 has an invalid length.
[   96.350505][ T7521] loop5: detected capacity change from 0 to 7
[   96.469854][ T7535] netlink: 'syz.5.1492': attribute type 1 has an invalid length.
[   96.763961][ T7553] netlink: 'syz.0.1502': attribute type 5 has an invalid length.
[   97.904261][ T7624] loop5: detected capacity change from 0 to 32768
[   97.948363][ T3300]  loop5: p1 p3 < >
[   97.955674][ T7624]  loop5: p1 p3 < >
[   98.078928][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[   98.079247][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[   98.110491][ T7655] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[   98.128171][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[   98.129339][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[   98.548796][ T7665] loop3: detected capacity change from 0 to 8192
[   98.618653][ T7665]  loop3: p2 p3 p4 < >
[   98.622927][ T7665] loop3: p2 size 590592 extends beyond EOD, truncated
[   98.630809][ T7665] loop3: p3 start 589824 is beyond EOD, truncated
[   98.673098][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   98.681105][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   98.751312][ T7681] loop1: detected capacity change from 0 to 128
[   98.764482][ T7681] FAT-fs (loop1): Directory bread(block 414) failed
[   98.778562][ T7681] FAT-fs (loop1): Directory bread(block 415) failed
[   98.785275][ T7681] FAT-fs (loop1): Directory bread(block 416) failed
[   98.792340][ T7681] FAT-fs (loop1): Directory bread(block 417) failed
[   98.799111][ T7681] FAT-fs (loop1): Directory bread(block 418) failed
[   98.805922][ T7681] FAT-fs (loop1): Directory bread(block 419) failed
[   98.812969][ T7681] FAT-fs (loop1): Directory bread(block 420) failed
[   98.819905][ T7681] FAT-fs (loop1): Directory bread(block 421) failed
[   98.826926][ T7681] vfat filesystem being mounted at /324/file0 supports timestamps until 2107-12-31 (0x10391447e)
[   98.855886][ T7681] __nla_validate_parse: 6 callbacks suppressed
[   98.855908][ T7681] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1556'.
[   99.590044][   T29] kauditd_printk_skb: 42 callbacks suppressed
[   99.590063][   T29] audit: type=1400 audit(6065181476.992:927): avc:  denied  { getopt } for  pid=7732 comm="syz.2.1580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   99.738723][ T7743] ip6gre1: entered promiscuous mode
[   99.743986][ T7743] ip6gre1: entered allmulticast mode
[   99.871258][ T7753] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1587'.
[   99.899093][ T7753] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1587'.
[  100.903306][   T29] audit: type=1326 audit(6065181478.302:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7831 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  100.926751][   T29] audit: type=1326 audit(6065181478.302:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7831 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  100.950179][   T29] audit: type=1326 audit(6065181478.302:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7831 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  100.973610][   T29] audit: type=1326 audit(6065181478.302:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7831 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  100.996832][   T29] audit: type=1326 audit(6065181478.302:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7831 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  101.026619][ T7837] loop5: detected capacity change from 0 to 1024
[  101.039508][   T29] audit: type=1326 audit(6065181478.362:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7831 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  101.062962][   T29] audit: type=1326 audit(6065181478.362:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7831 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5a33beac22 code=0x7ffc0000
[  101.184328][ T7837] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.236039][ T7837] EXT4-fs error (device loop5): ext4_xattr_block_list:766: inode #15: comm syz.5.1618: corrupted xattr block 209: invalid header
[  101.280724][ T7837] EXT4-fs (loop5): Remounting filesystem read-only
[  101.310764][   T29] audit: type=1326 audit(6065181478.712:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7831 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f5a33beacb7 code=0x7ffc0000
[  101.334490][   T29] audit: type=1326 audit(6065181478.712:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7831 comm="syz.3.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f5a33ba7c51 code=0x7ffc0000
[  101.411534][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.153044][ T7914] loop3: detected capacity change from 0 to 32768
[  102.220237][ T7914]  loop3: p1 p3 < >
[  102.392029][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  102.403274][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  102.468478][ T7957] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  102.631558][ T7962] netlink: 'syz.1.1671': attribute type 3 has an invalid length.
[  102.640386][ T7962] netlink: 'syz.1.1671': attribute type 3 has an invalid length.
[  103.014673][ T7999] loop2: detected capacity change from 0 to 512
[  103.035632][ T8003] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1689'.
[  103.051725][ T8003] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.060728][ T7999] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  103.087730][ T7999] ext4 filesystem being mounted at /356/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.098839][ T8003] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.106620][ T8003] bond0: (slave gre1): The slave device specified does not support setting the MAC address
[  103.118863][ T8003] bond0: (slave gre1): Error -95 calling set_mac_address
[  103.187560][ T8013] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1693'.
[  103.198106][ T8013] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1693'.
[  103.211402][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  103.727067][ T8049] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1708'.
[  103.736153][ T8049] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1708'.
[  103.790338][ T8049] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1708'.
[  103.799348][ T8049] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1708'.
[  103.843215][ T8056] A link change request failed with some changes committed already. Interface sit4 may have been left with an inconsistent configuration, please check.
[  104.746598][ T5071] Bluetooth: hci0: Frame reassembly failed (-84)
[  105.097583][ T8158] 9p: Bad value for 'wfdno'
[  105.140151][ T8163] loop5: detected capacity change from 0 to 1024
[  105.147177][ T8163] EXT4-fs: inline encryption not supported
[  105.208511][ T8163] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.252618][ T8178] netlink: 'syz.0.1761': attribute type 1 has an invalid length.
[  105.290839][ T8182] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1762'.
[  105.367253][ T8151] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.1751: Allocating blocks 385-513 which overlap fs metadata
[  105.391683][ T8151] EXT4-fs (loop5): pa ffff888107a4d310: logic 16, phys. 129, len 24
[  105.399767][ T8151] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 8
[  105.418827][ T8197] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1769'.
[  105.427961][ T8197] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1769'.
[  105.433067][ T8151] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28
[  105.436934][ T8197] netlink: 'syz.2.1769': attribute type 7 has an invalid length.
[  105.449344][ T8151] EXT4-fs (loop5): This should not happen!! Data will be lost
[  105.449344][ T8151] 
[  105.466836][ T8151] EXT4-fs (loop5): Total free blocks count 0
[  105.469357][ T8197] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1769'.
[  105.472882][ T8151] EXT4-fs (loop5): Free/Dirty block details
[  105.481904][ T8197] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1769'.
[  105.487661][ T8151] EXT4-fs (loop5): free_blocks=128
[  105.496533][ T8197] netlink: 'syz.2.1769': attribute type 7 has an invalid length.
[  105.501633][ T8151] EXT4-fs (loop5): dirty_blocks=0
[  105.501650][ T8151] EXT4-fs (loop5): Block reservation details
[  105.501665][ T8151] EXT4-fs (loop5): i_reserved_data_blocks=0
[  105.799055][ T8225] loop2: detected capacity change from 0 to 1024
[  105.830848][ T8225] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.867409][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.777713][ T3784] Bluetooth: hci0: command 0x1003 tx timeout
[  106.779847][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  106.923831][ T8311] loop3: detected capacity change from 0 to 32768
[  106.969041][ T3300]  loop3: p1 p2 p3 < p5 >
[  106.973497][ T3300] loop3: p1 size 242222080 extends beyond EOD, truncated
[  106.981252][ T3300] loop3: p2 start 16777215 is beyond EOD, truncated
[  106.991659][ T8311]  loop3: p1 p2 p3 < p5 >
[  106.996128][ T8311] loop3: p1 size 242222080 extends beyond EOD, truncated
[  107.004177][ T8311] loop3: p2 start 16777215 is beyond EOD, truncated
[  107.075370][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  107.075750][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  107.096354][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop3p5, 10) failed: No such file or directory
[  107.113497][ T8314] loop3: detected capacity change from 0 to 512
[  107.127091][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  107.138837][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop3p5, 10) failed: No such file or directory
[  107.149547][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  107.163673][ T8314] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  107.183586][ T8314] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.196618][ T8314] ext4 filesystem being mounted at /327/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  107.213311][ T8314] __quota_error: 50 callbacks suppressed
[  107.213348][ T8314] Quota error (device loop3): do_check_range: Getting block 4095 out of range 0-5
[  107.273208][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.726538][ T8354] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1828'.
[  107.923920][ T8334] syz.3.1831 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  107.938190][ T8334] CPU: 1 UID: 0 PID: 8334 Comm: syz.3.1831 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  107.938228][ T8334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  107.938246][ T8334] Call Trace:
[  107.938259][ T8334]  <TASK>
[  107.938271][ T8334]  __dump_stack+0x1d/0x30
[  107.938297][ T8334]  dump_stack_lvl+0x95/0xd0
[  107.938320][ T8334]  dump_stack+0x15/0x1b
[  107.938343][ T8334]  dump_header+0x80/0x240
[  107.938372][ T8334]  oom_kill_process+0x295/0x350
[  107.938433][ T8334]  out_of_memory+0x97d/0xb80
[  107.938461][ T8334]  try_charge_memcg+0x62e/0xa10
[  107.938488][ T8334]  obj_cgroup_charge_pages+0x23/0xc0
[  107.938569][ T8334]  __memcg_kmem_charge_page+0x9e/0x170
[  107.938602][ T8334]  __alloc_frozen_pages_noprof+0x18a/0x350
[  107.938673][ T8334]  alloc_pages_mpol+0xb3/0x260
[  107.938719][ T8334]  alloc_pages_noprof+0x8f/0x130
[  107.938761][ T8334]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  107.938893][ T8334]  __kvmalloc_node_noprof+0x471/0x680
[  107.938991][ T8334]  ? ip_set_alloc+0x24/0x30
[  107.939022][ T8334]  ? ip_set_alloc+0x24/0x30
[  107.939065][ T8334]  ip_set_alloc+0x24/0x30
[  107.939102][ T8334]  hash_netiface_create+0x282/0x740
[  107.939145][ T8334]  ? __pfx_hash_netiface_create+0x10/0x10
[  107.939226][ T8334]  ip_set_create+0x3cf/0x970
[  107.939262][ T8334]  nfnetlink_rcv_msg+0x509/0x5d0
[  107.939343][ T8334]  netlink_rcv_skb+0x123/0x220
[  107.939377][ T8334]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  107.939419][ T8334]  nfnetlink_rcv+0x167/0x1720
[  107.939528][ T8334]  ? __kfree_skb+0x109/0x150
[  107.939571][ T8334]  ? nlmon_xmit+0x4f/0x60
[  107.939614][ T8334]  ? consume_skb+0x49/0x140
[  107.939702][ T8334]  ? nlmon_xmit+0x4f/0x60
[  107.939748][ T8334]  ? dev_hard_start_xmit+0x3a8/0x3e0
[  107.939858][ T8334]  ? __dev_queue_xmit+0x139a/0x1f20
[  107.939905][ T8334]  ? __dev_queue_xmit+0x148/0x1f20
[  107.940028][ T8334]  ? ref_tracker_free+0x37d/0x3e0
[  107.940079][ T8334]  ? __netlink_deliver_tap+0x4dc/0x500
[  107.940197][ T8334]  netlink_unicast+0x5c0/0x690
[  107.940243][ T8334]  netlink_sendmsg+0x5c8/0x6f0
[  107.940265][ T8334]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.940362][ T8334]  ____sys_sendmsg+0x5af/0x600
[  107.940393][ T8334]  ___sys_sendmsg+0x195/0x1e0
[  107.940434][ T8334]  __x64_sys_sendmsg+0xd4/0x160
[  107.940458][ T8334]  x64_sys_call+0x17ba/0x3000
[  107.940567][ T8334]  do_syscall_64+0xc0/0x2a0
[  107.940601][ T8334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.940703][ T8334] RIP: 0033:0x7f5a33beaeb9
[  107.940725][ T8334] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  107.940751][ T8334] RSP: 002b:00007f5a32647028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.940779][ T8334] RAX: ffffffffffffffda RBX: 00007f5a33e65fa0 RCX: 00007f5a33beaeb9
[  107.940799][ T8334] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  107.940816][ T8334] RBP: 00007f5a33c58c1f R08: 0000000000000000 R09: 0000000000000000
[  107.940894][ T8334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  107.940912][ T8334] R13: 00007f5a33e66038 R14: 00007f5a33e65fa0 R15: 00007ffe07ce5fe8
[  107.940939][ T8334]  </TASK>
[  107.940948][ T8334] memory: usage 307200kB, limit 307200kB, failcnt 310
[  108.251270][ T8364] loop5: detected capacity change from 0 to 512
[  108.257017][ T8334] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0
[  108.271217][ T8334] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[  108.278570][ T8334] Memory cgroup stats for /syz3:
[  108.279657][ T8334] cache 0
[  108.287719][ T8334] rss 0
[  108.290519][ T8334] shmem 0
[  108.293468][ T8334] mapped_file 0
[  108.296946][ T8334] dirty 0
[  108.299943][ T8334] writeback 0
[  108.303250][ T8334] workingset_refault_anon 8
[  108.307889][ T8334] workingset_refault_file 384
[  108.312585][ T8334] swap 1372160
[  108.316051][ T8334] swapcached 20480
[  108.319843][ T8334] pgpgin 105912
[  108.323320][ T8334] pgpgout 105907
[  108.326971][ T8334] pgfault 102973
[  108.330575][ T8334] pgmajfault 6
[  108.333957][ T8334] inactive_anon 4096
[  108.337956][ T8334] active_anon 16384
[  108.341782][ T8334] inactive_file 0
[  108.345436][ T8334] active_file 0
[  108.348943][ T8334] unevictable 0
[  108.352423][ T8334] hierarchical_memory_limit 314572800
[  108.357865][ T8334] hierarchical_memsw_limit 9223372036854771712
[  108.364056][ T8334] total_cache 0
[  108.367613][ T8334] total_rss 0
[  108.370916][ T8334] total_shmem 0
[  108.374390][ T8334] total_mapped_file 0
[  108.378476][ T8334] total_dirty 0
[  108.381965][ T8334] total_writeback 0
[  108.385804][ T8334] total_workingset_refault_anon 8
[  108.390905][ T8334] total_workingset_refault_file 384
[  108.396122][ T8334] total_swap 1372160
[  108.400079][ T8334] total_swapcached 20480
[  108.404335][ T8334] total_pgpgin 105912
[  108.408362][ T8334] total_pgpgout 105907
[  108.412477][ T8334] total_pgfault 102973
[  108.416558][ T8334] total_pgmajfault 6
[  108.420493][ T8334] total_inactive_anon 4096
[  108.424921][ T8334] total_active_anon 16384
[  108.429267][ T8334] total_inactive_file 0
[  108.433444][ T8334] total_active_file 0
[  108.437441][ T8334] total_unevictable 0
[  108.441481][ T8334] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1831,pid=8333,uid=0
[  108.456160][ T8334] Memory cgroup out of memory: Killed process 8333 (syz.3.1831) total-vm:96312kB, anon-rss:1332kB, file-rss:22284kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  108.489718][ T8364] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.563745][ T8364] ext4 filesystem being mounted at /301/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  108.579391][ T8334] syz.3.1831 (8334) used greatest stack depth: 6296 bytes left
[  108.648139][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.766138][ T8396] sctp: [Deprecated]: syz.3.1845 (pid 8396) Use of struct sctp_assoc_value in delayed_ack socket option.
[  108.766138][ T8396] Use struct sctp_sack_info instead
[  108.889140][   T29] audit: type=1326 audit(6065181742.286:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.1861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  108.912612][   T29] audit: type=1326 audit(6065181742.286:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.1861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  108.945744][   T29] audit: type=1326 audit(6065181742.336:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.1861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  108.969473][   T29] audit: type=1326 audit(6065181742.346:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.1861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  108.992816][   T29] audit: type=1326 audit(6065181742.346:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.1861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  109.016770][   T29] audit: type=1326 audit(6065181742.346:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.1861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  109.040134][   T29] audit: type=1326 audit(6065181742.346:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.1861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  109.063472][   T29] audit: type=1326 audit(6065181742.346:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.1861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  109.086916][   T29] audit: type=1326 audit(6065181742.346:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.1861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  109.439317][ T8439] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1860'.
[  109.492165][ T8441] loop5: detected capacity change from 0 to 764
[  109.502210][ T8446] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1865'.
[  109.524693][ T8441] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  109.566362][ T8450] ./file0: Can't open blockdev
[  109.716053][ T8461] loop3: detected capacity change from 0 to 1024
[  109.733030][ T8461] EXT4-fs: Ignoring removed orlov option
[  109.739108][ T8461] EXT4-fs: inline encryption not supported
[  109.781641][ T8461] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.820974][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.125423][ T8479] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1880'.
[  110.554655][ T8504] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1891'.
[  110.770429][ T8520] loop2: detected capacity change from 0 to 512
[  110.829151][ T8520] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.857785][ T8520] ext4 filesystem being mounted at /405/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  110.880615][ T8520] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.1899: corrupted inode contents
[  110.908145][ T8520] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #2: comm syz.2.1899: mark_inode_dirty error
[  110.938314][ T8520] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.1899: corrupted inode contents
[  110.959615][ T8528] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.1899: corrupted inode contents
[  110.998009][ T8528] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #2: comm syz.2.1899: mark_inode_dirty error
[  111.027925][ T8528] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.1899: corrupted inode contents
[  111.048088][ T8528] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.1899: mark_inode_dirty error
[  111.067670][ T8528] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.1899: corrupted inode contents
[  111.083449][ T8528] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #2: comm syz.2.1899: mark_inode_dirty error
[  111.096238][ T8520] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #2: comm syz.2.1899: corrupted inode contents
[  111.149199][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.378956][ T8573] loop5: detected capacity change from 0 to 512
[  111.385739][ T8573] EXT4-fs: Ignoring removed nobh option
[  111.419517][ T8573] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.432276][ T8573] ext4 filesystem being mounted at /317/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  111.466516][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.631777][ T8593] loop3: detected capacity change from 0 to 512
[  111.672820][ T8599] A link change request failed with some changes committed already. Interface gre1 may have been left with an inconsistent configuration, please check.
[  111.691546][ T8593] EXT4-fs error (device loop3): ext4_iget_extra_inode:5073: inode #15: comm syz.3.1927: corrupted in-inode xattr: invalid ea_ino
[  111.714050][ T8593] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1927: couldn't read orphan inode 15 (err -117)
[  111.728369][ T8593] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.763371][ T8593] EXT4-fs error (device loop3): ext4_lookup:1785: inode #14: comm syz.3.1927: invalid fast symlink length 39
[  111.789090][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.869594][ T8613] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1936'.
[  112.052913][ T8644] loop2: detected capacity change from 0 to 512
[  112.065911][ T8644] EXT4-fs error (device loop2): ext4_iget_extra_inode:5073: inode #15: comm syz.2.1947: corrupted in-inode xattr: invalid ea_ino
[  112.080146][ T8644] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.1947: couldn't read orphan inode 15 (err -117)
[  112.093700][ T8644] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.111063][ T8644] EXT4-fs error (device loop2): ext4_lookup:1785: inode #14: comm syz.2.1947: invalid fast symlink length 39
[  112.183593][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.217397][ T3300] udevd[3300]: rename '/dev/disk/by-label/syzkaller.tmp-b7:2' '/dev/disk/by-label/syzkaller' failed: No such file or directory
[  112.234009][ T8649] netlink: 'syz.2.1949': attribute type 10 has an invalid length.
[  112.243643][ T8649] bridge0: port 3(netdevsim1) entered blocking state
[  112.252730][ T8649] bridge0: port 3(netdevsim1) entered disabled state
[  112.264520][ T8649] netdevsim netdevsim2 netdevsim1: entered allmulticast mode
[  112.285096][ T8649] netdevsim netdevsim2 netdevsim1: entered promiscuous mode
[  112.296730][ T8649] bridge0: port 3(netdevsim1) entered blocking state
[  112.304431][ T8649] bridge0: port 3(netdevsim1) entered forwarding state
[  112.321690][ T8653] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1951'.
[  112.421020][ T8661] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1955'.
[  112.430162][ T8661] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1955'.
[  112.470682][ T8665] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1957'.
[  112.517311][   T29] kauditd_printk_skb: 18 callbacks suppressed
[  112.517328][   T29] audit: type=1400 audit(6065181745.916:1014): avc:  denied  { load_policy } for  pid=8666 comm="syz.2.1958" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  112.517918][ T8667] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  112.552590][ T8667] SELinux: failed to load policy
[  112.873265][ T8686] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1966'.
[  112.874325][ T8687] loop5: detected capacity change from 0 to 1024
[  112.964749][   T29] audit: type=1326 audit(6065181746.366:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8694 comm="syz.3.1970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  112.970253][ T8687] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.988332][   T29] audit: type=1326 audit(6065181746.366:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8694 comm="syz.3.1970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  113.027564][   T29] audit: type=1326 audit(6065181746.426:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8694 comm="syz.3.1970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  113.051138][   T29] audit: type=1326 audit(6065181746.426:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8694 comm="syz.3.1970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  113.074612][   T29] audit: type=1326 audit(6065181746.426:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8694 comm="syz.3.1970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  113.098098][   T29] audit: type=1326 audit(6065181746.426:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8694 comm="syz.3.1970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  113.121519][   T29] audit: type=1326 audit(6065181746.426:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8694 comm="syz.3.1970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  113.144954][   T29] audit: type=1326 audit(6065181746.426:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8694 comm="syz.3.1970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a33beaeb9 code=0x7ffc0000
[  113.312848][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.717422][ T8726] syzkaller0: entered promiscuous mode
[  113.723003][ T8726] syzkaller0: entered allmulticast mode
[  113.843114][ T8744] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1992'.
[  114.175846][   T29] audit: type=1400 audit(6065181747.576:1023): avc:  denied  { write } for  pid=8773 comm="syz.3.2006" path="socket:[20139]" dev="sockfs" ino=20139 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  114.261781][ T8781] loop3: detected capacity change from 0 to 128
[  114.298462][ T8781] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  114.312761][ T8781] ext4 filesystem being mounted at /363/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  114.364945][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  114.489414][ T8795] sg_read: process 832 (syz.3.2014) changed security contexts after opening file descriptor, this is not allowed.
[  114.602011][ T8807] team0: Port device syz_tun added
[  114.620065][ T8807] team0: Port device syz_tun removed
[  114.636257][ T8807] bridge_slave_0: left allmulticast mode
[  114.642117][ T8807] bridge_slave_0: left promiscuous mode
[  114.647944][ T8807] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.661822][ T8807] bridge_slave_1: left allmulticast mode
[  114.667615][ T8807] bridge_slave_1: left promiscuous mode
[  114.673319][ T8807] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.691809][ T8807] team0: Port device team_slave_0 removed
[  114.701665][ T8807] team0: Port device team_slave_1 removed
[  114.709413][ T8807] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  114.717028][ T8807] batman_adv: batadv0: Removing interface: batadv_slave_1
[  114.727247][ T8807] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  114.971275][ T8826] SELinux: failed to load policy
[  115.200742][ T8841] loop2: detected capacity change from 0 to 128
[  115.338778][ T8841] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  115.371899][ T8841] ext4 filesystem being mounted at /433/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  115.429182][ T8841] EXT4-fs error (device loop2): dx_make_map:1296: inode #2: block 63: comm syz.2.2029: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  115.462660][ T8841] EXT4-fs error (device loop2) in do_split:2027: Corrupt filesystem
[  115.709021][ T3315] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  116.088350][ T8887] loop3: detected capacity change from 0 to 512
[  116.116253][ T8887] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.132231][ T8887] ext4 filesystem being mounted at /377/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.209599][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.239110][ T8901] loop2: detected capacity change from 0 to 4096
[  116.249031][ T8901] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.534997][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.673337][ T8945] loop3: detected capacity change from 0 to 2048
[  116.694122][ T8945] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.734070][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.842595][ T8963] loop5: detected capacity change from 0 to 512
[  116.889773][ T8963] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  116.929763][ T8963] ext4 filesystem being mounted at /340/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.989264][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  117.088556][ T8966] netlink: 'syz.2.2083': attribute type 13 has an invalid length.
[  117.110096][ T8980] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2088'.
[  117.147683][ T8966] gretap0: refused to change device tx_queue_len
[  117.170734][ T8966] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  117.281217][ T8992] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2093'.
[  117.334097][ T8992] 8021q: adding VLAN 0 to HW filter on device bond2
[  117.388533][ T9005] 9p: Bad value for 'wfdno'
[  117.403669][ T9001] 8021q: adding VLAN 0 to HW filter on device bond2
[  117.411139][ T9001] bond2: (slave gre1): The slave device specified does not support setting the MAC address
[  117.429177][ T9001] bond2: (slave gre1): Error -95 calling set_mac_address
[  117.458769][ T9012] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2101'.
[  117.515965][ T9015] loop3: detected capacity change from 0 to 1024
[  117.522618][ T9012] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2101'.
[  117.567750][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  117.567777][   T29] audit: type=1400 audit(6065181750.966:1025): avc:  denied  { unmount } for  pid=4083 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  117.627988][ T9015] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.658735][ T9022] syzkaller0: entered promiscuous mode
[  117.664288][ T9022] syzkaller0: entered allmulticast mode
[  117.722973][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.821861][ T9032] team0: Port device syz_tun added
[  117.847465][ T9032] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  117.956499][   T29] audit: type=1400 audit(6065181751.356:1026): avc:  denied  { mounton } for  pid=9052 comm="syz.5.2118" path="/syzcgroup/unified/syz5" dev="cgroup2" ino=161 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  118.098022][ T9065] netlink: 104 bytes leftover after parsing attributes in process `syz.0.2122'.
[  118.099707][   T29] audit: type=1400 audit(6065181751.506:1027): avc:  denied  { nlmsg_read } for  pid=9064 comm="syz.0.2122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  118.581272][   T29] audit: type=1326 audit(6065181751.986:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9100 comm="syz.1.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  118.625726][   T29] audit: type=1326 audit(6065181752.016:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9100 comm="syz.1.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  118.649232][   T29] audit: type=1326 audit(6065181752.016:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9100 comm="syz.1.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  118.672730][   T29] audit: type=1326 audit(6065181752.016:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9100 comm="syz.1.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  118.696231][   T29] audit: type=1326 audit(6065181752.016:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9100 comm="syz.1.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  118.719733][   T29] audit: type=1326 audit(6065181752.026:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9100 comm="syz.1.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  118.743210][   T29] audit: type=1326 audit(6065181752.026:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9100 comm="syz.1.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf014aeb9 code=0x7ffc0000
[  119.446427][ T9133] loop3: detected capacity change from 0 to 1024
[  119.498146][ T9133] EXT4-fs: inline encryption not supported
[  119.541816][ T9133] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.751223][ T9115] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.2143: Allocating blocks 385-513 which overlap fs metadata
[  119.799500][ T9115] EXT4-fs (loop3): pa ffff888107a0d770: logic 16, phys. 129, len 24
[  119.807596][ T9115] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 8
[  119.819374][ T9115] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28
[  119.831878][ T9115] EXT4-fs (loop3): This should not happen!! Data will be lost
[  119.831878][ T9115] 
[  119.841555][ T9115] EXT4-fs (loop3): Total free blocks count 0
[  119.847724][ T9115] EXT4-fs (loop3): Free/Dirty block details
[  119.853666][ T9115] EXT4-fs (loop3): free_blocks=128
[  119.858866][ T9115] EXT4-fs (loop3): dirty_blocks=0
[  119.863908][ T9115] EXT4-fs (loop3): Block reservation details
[  119.869948][ T9115] EXT4-fs (loop3): i_reserved_data_blocks=0
[  120.257666][ T9170] loop5: detected capacity change from 0 to 512
[  120.276789][ T9170] EXT4-fs: Mount option(s) incompatible with ext2
[  120.514048][ T9189] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  120.717535][ T9202] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2177'.
[  120.726559][ T9202] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2177'.
[  120.735507][ T9202] netlink: 'syz.1.2177': attribute type 6 has an invalid length.
[  120.744010][ T9200] random: crng reseeded on system resumption
[  120.756505][ T9202] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2177'.
[  120.756473][ T5071] netdevsim netdevsim1 netdevsim0: set [0, 1] type 1 family 0 port 8472 - 0
[  120.765609][ T9202] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2177'.
[  120.783357][ T9202] netlink: 'syz.1.2177': attribute type 6 has an invalid length.
[  120.817497][ T5071] netdevsim netdevsim1 netdevsim1: set [0, 1] type 1 family 0 port 8472 - 0
[  120.840249][ T5071] netdevsim netdevsim1 netdevsim2: set [0, 1] type 1 family 0 port 8472 - 0
[  120.857902][ T5071] netdevsim netdevsim1 netdevsim3: set [0, 1] type 1 family 0 port 8472 - 0
[  120.933961][ T9166] loop3: detected capacity change from 0 to 8192
[  120.956832][ T9214] netlink: 'syz.2.2183': attribute type 8 has an invalid length.
[  120.964678][ T9214] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2183'.
[  120.975074][ T9166] vfat filesystem being mounted at /399/file0 supports timestamps until 2107-12-31 (0x10391447e)
[  121.114001][ T9225] loop5: detected capacity change from 0 to 512
[  121.169320][ T9225] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.209393][ T9225] ext4 filesystem being mounted at /366/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  121.276645][ T9225] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #15: comm syz.5.2187: corrupted xattr block 33: overlapping e_value 
[  121.328871][ T9225] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  121.347964][ T9225] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #15: comm syz.5.2187: corrupted xattr block 33: overlapping e_value 
[  121.384951][ T9225] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  121.398744][ T9225] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #15: comm syz.5.2187: corrupted xattr block 33: overlapping e_value 
[  121.433501][ T9225] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  121.515608][ T4083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.647163][ T9270] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  121.776283][ T9286] sch_tbf: burst 22 is lower than device lo mtu (65550) !
[  121.784287][ T9286] sch_tbf: burst 22 is lower than device lo mtu (65550) !
[  121.871159][ T9296] loop3: detected capacity change from 0 to 512
[  121.903621][ T9296] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.916791][ T9296] ext4 filesystem being mounted at /408/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  121.931496][ T9296] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.2219: corrupted xattr block 33: overlapping e_value 
[  121.947980][ T9296] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  121.957086][ T9296] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.2219: corrupted xattr block 33: overlapping e_value 
[  121.971575][ T9296] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  121.983354][ T9296] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.2219: corrupted xattr block 33: overlapping e_value 
[  121.997698][ T9296] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  122.026430][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.056296][ T9307] loop5: detected capacity change from 0 to 128
[  122.076102][ T9307] vfat filesystem being mounted at /373/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[  122.147363][ T3001] ==================================================================
[  122.155499][ T3001] BUG: KCSAN: data-race in set_nlink / set_nlink
[  122.161871][ T3001] 
[  122.164327][ T3001] read to 0xffff8881079489e8 of 4 bytes by task 3300 on cpu 0:
[  122.171909][ T3001]  set_nlink+0x29/0xb0
[  122.176011][ T3001]  kernfs_iop_permission+0x1e2/0x220
[  122.181325][ T3001]  inode_permission+0x2de/0x3c0
[  122.186203][ T3001]  link_path_walk+0x779/0xe30
[  122.190903][ T3001]  path_openat+0x1bf/0x23c0
[  122.195434][ T3001]  do_filp_open+0x15d/0x280
[  122.199968][ T3001]  do_sys_openat2+0xa6/0x150
[  122.204585][ T3001]  __x64_sys_openat+0xf2/0x120
[  122.209369][ T3001]  x64_sys_call+0x2b07/0x3000
[  122.214069][ T3001]  do_syscall_64+0xc0/0x2a0
[  122.218598][ T3001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.224511][ T3001] 
[  122.226856][ T3001] write to 0xffff8881079489e8 of 4 bytes by task 3001 on cpu 1:
[  122.234505][ T3001]  set_nlink+0x99/0xb0
[  122.238602][ T3001]  kernfs_iop_permission+0x1e2/0x220
[  122.243913][ T3001]  inode_permission+0x2de/0x3c0
[  122.248788][ T3001]  link_path_walk+0x779/0xe30
[  122.253484][ T3001]  path_lookupat+0x8c/0x500
[  122.258009][ T3001]  filename_lookup+0x190/0x390
[  122.262797][ T3001]  vfs_statx+0x96/0x170
[  122.266972][ T3001]  vfs_fstatat+0x115/0x170
[  122.271408][ T3001]  __se_sys_newfstatat+0x55/0x3e0
[  122.276474][ T3001]  __x64_sys_newfstatat+0x55/0x70
[  122.281546][ T3001]  x64_sys_call+0x111f/0x3000
[  122.286262][ T3001]  do_syscall_64+0xc0/0x2a0
[  122.290796][ T3001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.296798][ T3001] 
[  122.299141][ T3001] value changed: 0x00000009 -> 0x00000008
[  122.304886][ T3001] 
[  122.307235][ T3001] Reported by Kernel Concurrency Sanitizer on:
[  122.313401][ T3001] CPU: 1 UID: 0 PID: 3001 Comm: udevd Not tainted syzkaller #0 PREEMPT(voluntary) 
[  122.322703][ T3001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  122.332775][ T3001] ==================================================================
[  123.817689][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!