last executing test programs:

1m38.741992527s ago: executing program 2 (id=3941):
r0 = socket(0x2, 0x3, 0xff)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg$unix(r0, &(0x7f0000000b40)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000300)="6a681367d81cc4642a7e4ecb36cf0b80b5ffcc298f16a0b67969b30af1f3c0a3f290399da8cd007b", 0x28}], 0x1, &(0x7f0000000ac0)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40, 0x4004}}], 0x1, 0x20000000)

1m38.712390059s ago: executing program 2 (id=3943):
r0 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TCSETSW2(0xffffffffffffffff, 0x402c542c, &(0x7f0000000000)={0x5, 0x80000000, 0x0, 0xe06, 0xa0, "3f3c5e0000ff775cfffffffff903e7ffffff00", 0xc, 0x81})
fcntl$lock(r0, 0x5, &(0x7f0000000000)={0x1, 0x0, 0xc, 0xfffffffffffffffd})
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f0000000000))

1m38.676416649s ago: executing program 2 (id=3945):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0x124)
r1 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000000)='^\x00', &(0x7f0000000080)='./file0\x00', r0)

1m38.620320921s ago: executing program 2 (id=3948):
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000480)='./bus\x00', 0x0, &(0x7f00000000c0)={[{@noload}, {@noload}, {@lazytime}, {@noload}, {@resgid}, {@auto_da_alloc}]}, 0xff, 0x451, &(0x7f0000000940)="$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")
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x33)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20)
renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x2)

1m38.587935182s ago: executing program 2 (id=3951):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x1, 0x4, 0x8}, 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001980)={{r0}, &(0x7f0000001900), &(0x7f0000001940)='%+9llu \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f00000008c0)="7a7fa22c2aff88df53ef2a2d280f", 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m38.333557009s ago: executing program 2 (id=3957):
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000380)={0x1, {{0xa, 0x0, 0x3, @mcast2, 0x711}}, {{0xa, 0x4e20, 0x7fff, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x8}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f00000004c0)={0x1, {{0xa, 0x4e1f, 0x7, @mcast1, 0xabdf}}, 0x1}, 0x90)

1m38.333390799s ago: executing program 32 (id=3957):
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000380)={0x1, {{0xa, 0x0, 0x3, @mcast2, 0x711}}, {{0xa, 0x4e20, 0x7fff, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x8}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f00000004c0)={0x1, {{0xa, 0x4e1f, 0x7, @mcast1, 0xabdf}}, 0x1}, 0x90)

59.831861948s ago: executing program 0 (id=4905):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'dummy0\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0xc3, &(0x7f0000000580)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x403, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x215}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8, 0x1, r2}, @IFLA_HSR_SLAVE2={0x8, 0x2, r3}]}}}]}, 0x40}, 0x1, 0xba01, 0x0, 0x4000044}, 0x10)

59.75212527s ago: executing program 0 (id=4909):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x4000004, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'ip6gretap0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b036c00e0ff64000200475400f6a13bb1000000080065584803", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

59.699925232s ago: executing program 0 (id=4912):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000100)=0x2, 0x4)
recvmmsg(r0, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001d40)=""/4096, 0x1000}], 0x1}, 0x1}], 0x256, 0x10022, 0x0)

59.532415767s ago: executing program 0 (id=4921):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000380), 0x3, 0x44d, &(0x7f0000001080)="$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")
creat(&(0x7f00000004c0)='./bus\x00', 0x20)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
preadv2(r0, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4083, 0xffffffdf}], 0x1, 0x0, 0x0, 0x1)

59.344923462s ago: executing program 0 (id=4924):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xfff3}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x4, 0x3c}}]}}]}, 0x48}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000008000000000018000380140003801000018004000300080001"], 0x44}}, 0x20008000)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x44, r1, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_OURS={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x8, 0x4, '\x00\x00\x00\x00'}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x44}}, 0x0)

59.031573821s ago: executing program 0 (id=4932):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000ec0)={'batadv0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="030300400000fedbdf250c00000008000300", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x8050}, 0x4000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r0)

59.031501501s ago: executing program 33 (id=4932):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000ec0)={'batadv0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="030300400000fedbdf250c00000008000300", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x8050}, 0x4000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r0)

51.766332592s ago: executing program 1 (id=5117):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r1, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r1, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000b40)=@newqdisc={0x40, 0x24, 0xf0b, 0x70bd2e, 0x0, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}, {0xffe0}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_TIMER_SLACK={0x8, 0xd, 0x100}, @TCA_FQ_CE_THRESHOLD={0x8}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000001}, 0x94)

51.730720293s ago: executing program 1 (id=5119):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000c80)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36513001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e455fe2bb24ef66970746c7f1f2a5c4c3", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000780)=""/274, 0x112}], 0x1}, 0x10182)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000740)=ANY=[@ANYBLOB="380100001a00016000feffffff00010000ac1e0101000000000000000000000000fc010000000000000000000000000001000107174e2300050a0000203a0000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff020000000000000000000000000001000004d46c000000fc02000000000000000000000000000007000000000000009201000000000010a39b000000000000ffff0000000000001c250800000000000500000000000000fcffffffffffffff0400000000000000ffffffffffffffff00000000000000001f000000000000000500000000000000fefffffffc030000000000007e0000000535000002"], 0x138}}, 0x844)

51.673838185s ago: executing program 1 (id=5120):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x8}, 0x4, 0x0, 0x10000, 0x0, 0x2, 0x6, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

51.535854579s ago: executing program 1 (id=5123):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000002c0)=@file={0x1, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
bind$unix(r1, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

51.444789851s ago: executing program 1 (id=5125):
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x64, 0x6, 0x0, 0x0, 0x0, 0xb, 0x22, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc090, 0x2, @perf_bp={0x0, 0x3}, 0xd, 0x0, 0x11000, 0x4, 0x4, 0x5, 0x0, 0x0, 0x0, 0x0, 0xa7}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x9)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0))
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000001c00010429bd7000ffdbdf2507000000", @ANYRES32=r0, @ANYBLOB="e0ff8b0a0a0002"], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x24040040)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001d"], 0x30}, 0x1, 0x0, 0x0, 0x1}, 0xc31fe084736598c)

51.289667325s ago: executing program 1 (id=5126):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
setsockopt(r0, 0x84, 0x80, &(0x7f0000000000)="0000000000000002", 0x8)

51.289594105s ago: executing program 34 (id=5126):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
setsockopt(r0, 0x84, 0x80, &(0x7f0000000000)="0000000000000002", 0x8)

50.844998188s ago: executing program 3 (id=5136):
r0 = socket(0x11, 0x3, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000000c0)=0x29a8, 0x4)
sendmmsg(r0, &(0x7f0000000bc0)=[{{&(0x7f0000000400)=@qipcrtr={0x2a, 0x4, 0x4001}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000040)="d479183d7d98d181a4b5f3e38100", 0xe}], 0x1}}], 0x1, 0x24044015)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000009, 0x12, 0xffffffffffffffff, 0xf668c000)
close(0x3)

50.77761926s ago: executing program 3 (id=5138):
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10208, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="bbbbbbbbbbbbf59c09c55f0386dd6100000000103afffe8000dfffffffffffffff000000009e0000000000000000000000000000000186"], 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xa0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0x50, 0x0, &(0x7f0000000000)="ff", 0x0, 0x36, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x50)

50.645787543s ago: executing program 3 (id=5140):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480))
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb010018000000000000007c0000007c00000002000000f3ff00000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000c20000000000000000000000900000000000000000000000900000000000000000000000902"], 0x0, 0x96, 0x0, 0x3}, 0x28)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000a00)={r1, 0xd8, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001000), 0x8, 0x0, 0x8, 0xffffffffffffff0e, 0x0}}, 0x10)

50.561593916s ago: executing program 3 (id=5143):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000002c0)=@file={0x1, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
bind$unix(r1, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

50.486392208s ago: executing program 3 (id=5146):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x8, 0x740b1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x46}, 0x1616, 0x0, 0x43a1bd78, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x24000000000, 0xffffffffffffffff, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
statfs(&(0x7f0000000040)='./file0\x00', 0x0)

50.310423243s ago: executing program 3 (id=5147):
setuid(0xee00)
r0 = syz_io_uring_setup(0x4b6, &(0x7f0000000100)={0x0, 0x0, 0x400, 0x0, 0x20e}, &(0x7f0000ff0000), &(0x7f0000000000), &(0x7f0000000000))
setrlimit(0x40000000000008, &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000040)=[{0x0}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

50.264789274s ago: executing program 35 (id=5147):
setuid(0xee00)
r0 = syz_io_uring_setup(0x4b6, &(0x7f0000000100)={0x0, 0x0, 0x400, 0x0, 0x20e}, &(0x7f0000ff0000), &(0x7f0000000000), &(0x7f0000000000))
setrlimit(0x40000000000008, &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000040)=[{0x0}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

1.900521527s ago: executing program 6 (id=6296):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080010000000e8fe55a118", 0x1d}], 0x1}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x24}}, 0x3, 0x2, 0x4}}, 0x63, 0x0}, 0x24000020)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000210081044e81f7d28344b90402", 0x11}], 0x1}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x33fe0)

1.860151708s ago: executing program 6 (id=6298):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000300)={'wpan0\x00', <r3=>0x0})
sendmsg$IEEE802154_LLSEC_SETPARAMS(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000540)={0x2c, r2, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x7}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x800)

1.531881267s ago: executing program 6 (id=6311):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000564000/0x2000)=nil, 0x2000, 0x3, &(0x7f0000000000)=0xffff, 0xc, 0x0)
get_mempolicy(0x0, 0x0, 0x1, &(0x7f000051f000/0x2000)=nil, 0x2)

1.342447863s ago: executing program 8 (id=6312):
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x71, 0x75, 0x8, 0x8, 0x0, 0x1f, 0x1369a, 0x8, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_bp={0x0, 0x1}, 0xb06, 0x3, 0x8, 0x1, 0x7f, 0x8800, 0x5, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000580)={0x5, 0x80, 0xec, 0x7, 0x40, 0x8, 0x0, 0x0, 0xd000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x2, @perf_bp={0x0, 0x2}, 0x986, 0xfc, 0x4, 0x0, 0x81, 0x9, 0x81, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x241a2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x3, @perf_bp={0x0, 0x1}, 0x0, 0x2, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x4}, 0x20}, 0x0, 0xffffffffffffffff, r0, 0x0)

1.270029335s ago: executing program 8 (id=6315):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'ip6gretap0\x00', <r2=>0x0})
capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000140))
sendto$packet(r0, &(0x7f0000000080)="330320000a00140000007ef52f55", 0xe, 0xc081, &(0x7f0000000000)={0x11, 0xac19bf381d6df80c, r2, 0x1, 0x60, 0x6, @multicast}, 0x14)

1.202443987s ago: executing program 8 (id=6317):
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000500)='./file0\x00', 0x2000844, &(0x7f0000000600)={[{@dots}, {@fat=@dos1xfloppy}, {@nodots}, {@fat=@nocase}, {@fat=@allow_utime={'allow_utime', 0x3d, 0x7fff}}, {@nodots}, {@dots}, {@nodots}, {@fat=@errors_remount}, {@fat=@sys_immutable}, {@fat=@flush}, {@fat=@fmask={'fmask', 0x3d, 0x3}}, {@dots}, {@fat=@sys_immutable}, {@fat=@nfs}, {@fat=@check_strict}]}, 0x1, 0x23d, &(0x7f0000000a40)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1/file3\x00', 0x0)
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f00000003c0)='.\x00', 0x3a424bc, &(0x7f0000001040)=ANY=[@ANYRES32=0x0, @ANYRES16, @ANYRESOCT, @ANYRESOCT=0x0, @ANYRESHEX, @ANYBLOB="e486301f94ddf2a3c6e9c6a4598fef2f7853d743f4831d65b415af9ec7dbc191ae080a134bb75d703b909f2312a98aee8b0f9b0db8e7ed2462a00363dad1638b2153b8042adc1cad959cd28efb4c8408de3df91b02cf343ff378c71b87fe0d59824e1618cd9913d306913a737be0e0af9d7310bf01ca4a8807b84427333d19419f24196d806ff138823247a8bf660b3819db5bbac9a3d8c83bbc03f79dd97f2a3ceb4e16d6a19e70233dd475778c5a2ff5143c51b6058a6effbef0ad0e432f91e823", @ANYRES16, @ANYBLOB="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"/433, @ANYRESHEX, @ANYRES8=0x0, @ANYBLOB="787fbcf0d953c7f09e72bb2e52a1f87e9302fa845ff03171634dcdcbfde9f09ac5308b68bf8ccb1186dcaa791090376a8ced429e212b7d50db18595fe44dc1973a193e4ccbd838bba3cb884f228953e593dbe276a8ce3da4d9ee24916115"], 0x5, 0x0, &(0x7f0000000000))
renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x0)

1.013608832s ago: executing program 8 (id=6322):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000540)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000440)={@val={0x70}, @void, @eth={@broadcast, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x452c, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x0, 0x6558, 0x18, 0x0, @wg=@data={0x4, 0x0, 0x5865}}}}}}}, 0xfdef)

975.352293ms ago: executing program 6 (id=6323):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x1, 0x400, 0x0, {0x0, 0x2710}, {0x0, 0x2710}, {}, 0x1, @can={{0x3, 0x1, 0x1}, 0x3, 0x2, 0x0, 0x0, "42a7b472da36a5bb"}}, 0x48}, 0x1, 0x0, 0x0, 0x4004040}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="01000000020500000000008000000000", @ANYRES64=0x0, @ANYRES64=0xea60, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000003"], 0x48}}, 0x40000)

924.500505ms ago: executing program 7 (id=6324):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x2c, 0x1, 0x0, 0x0, 0x0, 0x7, 0x20520, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, @perf_config_ext={0x9, 0x3}, 0x102008, 0x1224, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000003}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r0, &(0x7f0000000880)={{0x7f, 0x45, 0x4c, 0x46, 0x20, 0x4, 0x0, 0x0, 0x0, 0x2, 0x3e, 0xffffffeb, 0x7c, 0x40, 0x2, 0x0, 0x6, 0x38, 0x1, 0xfffe, 0x3, 0x3}, [{0x3, 0xf, 0x8, 0x11, 0x0, 0xe5, 0x1, 0x3}], "", ['\x00']}, 0x178)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

917.311275ms ago: executing program 6 (id=6326):
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="38000000702304"], 0x38}, 0x1, 0x0, 0x0, 0x4040800}, 0x80)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000300), 0x4)
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), r0)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}})

914.245844ms ago: executing program 8 (id=6327):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="780000001000830404000000fedbdf2500007400", @ANYRES32=r2, @ANYBLOB="0008000007500500580040"], 0x78}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9}, 0x0)

817.473878ms ago: executing program 7 (id=6329):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0xc, 0x0, 0x8, 0x4}, 0xe)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0x0, 0xce, 0x8000, 0x7, 0x10003, 0x5aa8, 0x0, 0x8, r1}, &(0x7f0000000140)=0x20)

773.572459ms ago: executing program 5 (id=6330):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x1d, &(0x7f0000000100), 0x4)
sendmsg$inet(r2, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

773.152059ms ago: executing program 7 (id=6331):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000580)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000400), 0x12)
read(r1, &(0x7f0000000040)=""/125, 0x7d)

769.017589ms ago: executing program 8 (id=6332):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000002480)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x101042, 0x15)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
flistxattr(r0, &(0x7f0000000180)=""/190, 0xbe)

732.16726ms ago: executing program 5 (id=6333):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x14, 0x30, 0x216822a75a8bdd29, 0xffe4}, 0x14}}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket(0x15, 0x5, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000000040)={0x0, 0x2710}, 0x10)
recvfrom$inet6(r0, 0x0, 0x0, 0x100, 0x0, 0x0)

701.946781ms ago: executing program 5 (id=6334):
setresgid(0xffffffffffffffff, 0xee00, 0xffffffffffffffff)
r0 = fsmount(0xffffffffffffffff, 0x1, 0x0)
fchdir(r0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0xfffffed3)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14e174135c0b87af)

689.314901ms ago: executing program 7 (id=6335):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r0, 0x0, 0x33, &(0x7f0000000000)=0x80020000, 0x4)
listen(r0, 0x2)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="5c00000012006b000040017ea608601602f3650400010008000000000002009ee517c356a7b0251e616859ad3a78a76e807c857e21bea297bff435cf01c937e786a6d0bdc7fcf50e4509c5cc68b7ed9c232d786c3500000000000074", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

668.826352ms ago: executing program 5 (id=6336):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000140)='hugetlb.2MB.rsvd.max_usage_in_bytes\x00', 0x2, 0x0)
r2 = openat$cgroup_ro(r0, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0xd)

647.500092ms ago: executing program 7 (id=6337):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000d80)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="13", 0x1}], 0x1}, 0x4051)
setsockopt$sock_attach_bpf(r0, 0x1, 0x10, &(0x7f0000001280), 0x4)
recvmsg$unix(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x2122)
sendmsg$inet(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000140)="f9", 0x1}], 0x1}, 0x48844)

537.450535ms ago: executing program 5 (id=6338):
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_io_uring_setup(0x4175, &(0x7f0000000180)={0x0, 0x136f, 0x10000, 0x2, 0x2d0}, &(0x7f0000000440), &(0x7f0000000400), &(0x7f0000000000))
io_uring_enter(r0, 0x7b20, 0xe93c, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r0, 0x13, &(0x7f0000000000)=[0x2, 0x9], 0x2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e22, 0xfffffffd, @local, 0x2}, 0x1c)

407.644629ms ago: executing program 7 (id=6339):
syz_usb_connect(0x0, 0x4bc, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000845dcf0886124620b705010203010902aa04010003f00109047a0008ff04010009050100100000ff0909050a1000020101070905080e0800030180c71004f2a7471c03c0f3f4ca2fea06ed21c2893b526ca2ae4c6320285e61c7047008590b991f436e3dcb5e0a1e180c381883c8206e6823e6d13fb81f0050a160ee9c434d7599cdd5f1ebcb129c56aadf40ff9bd4e08e2e2701d1a2325e6eecf743f153034002ed1ce648aa24f2"], 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000001400000008000200fc00000018000180140002"], 0x5c}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x8890}, 0x20004450)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="38000000070a010100000006000000000a0040010900010073797a3100"], 0x38}, 0x1, 0x0, 0x0, 0x20040850}, 0x44054)

321.964661ms ago: executing program 4 (id=6340):
r0 = socket$kcm(0x2, 0x3, 0x106)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x4000)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x160b, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}, {0x28, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NAT_TYPE={0x8}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x14}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}, 0x1, 0x0, 0x0, 0x850}, 0x4040080)
sendmsg$inet(r0, &(0x7f0000000040)={&(0x7f0000000140)={0x2, 0x4e21, @remote}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000080)="b9ed29d8e7ffffffffff6043d090fc6889ae6b849abc5886602a54d7823999b2a4c23044c325275b35d48feb80c3aa0ce71c2b1b", 0x34}], 0x1}, 0x40)

203.551595ms ago: executing program 4 (id=6341):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000d80)={'veth0_to_bond\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}}, 0x4)
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000001280)={&(0x7f00000003c0)=@newqdisc={0x2c, 0x28, 0x4ee4e6a52ff56541, 0xd3, 0xfffffdfc, {0x0, 0x0, 0x0, r2, {0xf, 0xfff1}, {0xffff, 0xffff}, {0xc, 0x1}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000080)

151.004526ms ago: executing program 4 (id=6342):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nobarrier}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x10}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
fcntl$notify(r1, 0x402, 0x40000029)
getdents64(r0, &(0x7f0000000040)=""/225, 0xe1)

120.372607ms ago: executing program 4 (id=6343):
pipe(&(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r2, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
vmsplice(r0, &(0x7f0000000800)=[{&(0x7f0000000400)="fc72", 0x2}], 0x1, 0xa)
splice(r1, 0x0, r0, 0x0, 0xffffffffffff7fff, 0x9)

78.141758ms ago: executing program 5 (id=6344):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_config_ext={0x4, 0x7ff}, 0x4, 0x8, 0x11000, 0x5, 0x2, 0x90000011, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x2208880, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x41, 0x30e, &(0x7f0000000f00)="$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")
r0 = creat(&(0x7f0000000080)='./file1\x00', 0x8)
write$P9_RVERSION(r0, &(0x7f0000000000)=ANY=[], 0x27848c70)

77.495198ms ago: executing program 4 (id=6354):
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x5084, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_config_ext={0x8, 0x1}, 0x1000, 0x2, 0xffffff7e, 0x8, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24004045)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="8400000000010104000000000000000002000000240001801400018008000100ac14143208000200e00000020c0002800500010000000000240002801400018008000100e000000108000200ac14140d0c0002800500010000000000080007400000000020000680080001"], 0x84}}, 0x0)

42.427459ms ago: executing program 6 (id=6345):
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r0 = io_uring_setup(0x3450, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000002700)=""/4096, 0x1000}], 0x0, 0x113}, 0x20)

0s ago: executing program 4 (id=6346):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18)
connect$can_j1939(r0, &(0x7f0000000100)={0x1d, r1, 0x0, {0x0, 0xff, 0xa8fe8ad4eea2351f}, 0x2}, 0x5a)
sendmmsg(r0, &(0x7f0000003e40), 0x3fffffffffffe3d, 0xf5)

kernel console output (not intermixed with test programs):

5.4444': attribute type 1 has an invalid length.
[  173.679997][T13520] 8021q: adding VLAN 0 to HW filter on device bond1
[  173.937774][T13534] __nla_validate_parse: 4 callbacks suppressed
[  173.937891][T13534] netlink: 104 bytes leftover after parsing attributes in process `syz.5.4451'.
[  174.162768][   T28] audit: type=1400 audit(2000000023.240:1097): avc:  denied  { read } for  pid=13545 comm="syz.5.4456" name="ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  174.328713][   T28] audit: type=1400 audit(2000000023.400:1098): avc:  denied  { map } for  pid=13549 comm="syz.1.4458" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=32797 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  174.372166][   T28] audit: type=1400 audit(2000000023.430:1099): avc:  denied  { read write } for  pid=13549 comm="syz.1.4458" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=32797 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  174.693448][T13558] loop5: detected capacity change from 0 to 512
[  174.761129][   T28] audit: type=1400 audit(2000000023.840:1100): avc:  denied  { name_bind } for  pid=13561 comm="syz.4.4464" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  174.798277][   T28] audit: type=1400 audit(2000000023.870:1101): avc:  denied  { shutdown } for  pid=13565 comm="syz.5.4466" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  174.820932][   T28] audit: type=1400 audit(2000000023.880:1102): avc:  denied  { read } for  pid=13565 comm="syz.5.4466" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  174.853258][T13564] Process accounting resumed
[  174.865326][T13568] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4467'.
[  174.953136][T13582] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4474'.
[  174.976629][T13582] bond1: option updelay: invalid value (18446744073595400532)
[  174.987699][T13582] bond1: option updelay: allowed values 0 - 2147483647
[  175.041827][T13582] bond1 (unregistering): Released all slaves
[  175.520671][ T3523] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  175.520772][T13496] Bluetooth: hci0: command 0x1003 tx timeout
[  175.569311][T13616] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4486'.
[  175.585296][T13616] ip6gre1: entered promiscuous mode
[  175.592110][T13616] ip6gre1: entered allmulticast mode
[  175.599244][T13618] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4490'.
[  175.615473][  T104] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  175.625500][  T104] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  175.640706][ T3415] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  175.661226][T13624] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  175.783739][T13642] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4499'.
[  175.793120][T13642] netlink: 43 bytes leftover after parsing attributes in process `syz.0.4499'.
[  175.802444][T13642] netlink: 'syz.0.4499': attribute type 6 has an invalid length.
[  175.810421][T13642] netlink: 'syz.0.4499': attribute type 5 has an invalid length.
[  175.818982][T13642] netlink: 43 bytes leftover after parsing attributes in process `syz.0.4499'.
[  175.930789][   T23] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  176.140759][   T10] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  176.231215][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811b947e00: rx timeout, send abort
[  176.239546][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811b947e00: 0x20000: (3) A timeout occurred and this is the connection abort to close the session.
[  176.496454][T13692] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  176.614169][T13702] loop5: detected capacity change from 0 to 2048
[  176.637231][T13702] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.747772][T13702] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  176.838463][T12240] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.845081][T13714] erspan0: entered promiscuous mode
[  176.859132][T13714] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4531'.
[  176.879899][T13714] erspan0: left promiscuous mode
[  176.912369][T13722] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4535'.
[  176.939961][   T28] kauditd_printk_skb: 35 callbacks suppressed
[  176.939978][   T28] audit: type=1400 audit(2000000026.010:1138): avc:  denied  { setopt } for  pid=13716 comm="syz.1.4534" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  177.921363][T13764] loop0: detected capacity change from 0 to 512
[  177.964507][T13764] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.006856][T13764] ext4 filesystem being mounted at /814/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.183538][ T3294] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.502063][T13809] netlink: 'syz.0.4572': attribute type 1 has an invalid length.
[  178.525317][T13809] netlink: 'syz.0.4572': attribute type 2 has an invalid length.
[  179.212751][   T28] audit: type=1326 audit(2000000028.290:1139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13825 comm="syz.4.4579" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f37e49acdd9 code=0x0
[  179.302351][T13833] xfrm0 speed is unknown, defaulting to 1000
[  179.360610][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  179.630472][T13859] syzkaller1: entered promiscuous mode
[  179.640206][T13859] syzkaller1: entered allmulticast mode
[  179.678433][T13866] netlink: 'syz.1.4596': attribute type 3 has an invalid length.
[  179.695027][T13866] netlink: 13435 bytes leftover after parsing attributes in process `syz.1.4596'.
[  180.029832][T13896] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4609'.
[  180.186440][   T36] Bluetooth: hci0: Frame reassembly failed (-84)
[  180.687524][T13947] netlink: 'syz.5.4632': attribute type 1 has an invalid length.
[  181.165382][T13975] loop5: detected capacity change from 0 to 128
[  181.182866][T13975] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[  181.309922][T13986] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4650'.
[  182.241129][T13496] Bluetooth: hci0: command 0x1003 tx timeout
[  182.247454][ T3523] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  184.456498][T14031] loop5: detected capacity change from 0 to 512
[  184.487320][T14008] bridge_slave_0: left allmulticast mode
[  184.500469][T14008] bridge_slave_0: left promiscuous mode
[  184.513106][T14008] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.532452][T14008] bridge_slave_1: left promiscuous mode
[  184.538251][T14008] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.550052][T14008] bond0: (slave bond_slave_0): Releasing backup interface
[  184.561779][T14008] bond0: (slave bond_slave_1): Releasing backup interface
[  184.588499][T14008] team0: Port device team_slave_0 removed
[  184.606081][T14008] team0: Port device team_slave_1 removed
[  184.621039][T14008] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  184.641597][T14008] batman_adv: batadv0: Removing interface: batadv_slave_0
[  184.659698][T14008] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  184.680774][T14008] batman_adv: batadv0: Removing interface: batadv_slave_1
[  184.707012][T14008] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  184.838660][T14058] loop0: detected capacity change from 0 to 128
[  185.146050][T14077] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.153311][T14077] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.359549][T14077] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  185.399353][T14077] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  185.515748][   T56] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  185.533970][   T56] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  185.558953][   T56] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  185.588741][   T56] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  185.842736][T14103] netlink: 'syz.3.4692': attribute type 29 has an invalid length.
[  185.861816][T14103] netlink: 'syz.3.4692': attribute type 29 has an invalid length.
[  185.881877][T14103] netlink: 500 bytes leftover after parsing attributes in process `syz.3.4692'.
[  185.901853][T14103] unsupported nla_type 58
[  186.106056][T14130] IPVS: dh: FWM 3 0x00000003 - no destination available
[  186.191157][T14138] loop0: detected capacity change from 0 to 256
[  186.276556][T14149] loop0: detected capacity change from 0 to 1024
[  186.296493][T14149] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  186.307527][T14149] System zones: 0-1, 3-36
[  186.315161][T14149] EXT4-fs error (device loop0): ext4_orphan_get:1423: comm syz.0.4710: bad orphan inode 134217728
[  186.327183][   T28] audit: type=1400 audit(2000000035.410:1140): avc:  denied  { setopt } for  pid=14154 comm="syz.3.4714" lport=37053 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  186.351154][T14156] sctp: [Deprecated]: syz.3.4714 (pid 14156) Use of int in maxseg socket option.
[  186.351154][T14156] Use struct sctp_assoc_value instead
[  186.368056][T14149] loop0: lost filesystem error report for type 5 error -117
[  186.369570][T14149] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.423476][   T28] audit: type=1326 audit(2000000035.480:1141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14161 comm="syz.1.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  186.512918][ T3294] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.526682][   T28] audit: type=1326 audit(2000000035.480:1142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14161 comm="syz.1.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  186.535831][T14170] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4722'.
[  186.552627][   T28] audit: type=1326 audit(2000000035.480:1143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14161 comm="syz.1.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  186.585600][   T28] audit: type=1326 audit(2000000035.480:1144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14161 comm="syz.1.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  186.643445][   T28] audit: type=1326 audit(2000000035.480:1145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14161 comm="syz.1.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  186.709983][   T28] audit: type=1326 audit(2000000035.480:1146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14161 comm="syz.1.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  186.772063][   T28] audit: type=1326 audit(2000000035.480:1148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14161 comm="syz.1.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  186.833783][   T28] audit: type=1326 audit(2000000035.480:1149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14161 comm="syz.1.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  186.885973][   T28] audit: type=1326 audit(2000000035.480:1150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14161 comm="syz.1.4717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  187.185352][T14196] netlink: 64859 bytes leftover after parsing attributes in process `syz.1.4733'.
[  187.360590][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  187.380286][T14202] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4735'.
[  187.801625][T14222] loop5: detected capacity change from 0 to 512
[  187.825748][T14222] EXT4-fs: Ignoring removed oldalloc option
[  187.867012][T14222] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  187.878960][T14222] EXT4-fs error (device loop5): ext4_orphan_get:1397: inode #15: comm syz.5.4743: iget: bad i_size value: 38620345925642
[  187.892170][T14222] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  187.892370][T14222] EXT4-fs error (device loop5): ext4_orphan_get:1402: comm syz.5.4743: couldn't read orphan inode 15 (err -117)
[  187.901567][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  187.901585][    C1] EXT4-fs (loop5): initial error at time 2000000036: ext4_orphan_get:1397: inode 15
[  187.901611][    C1] EXT4-fs (loop5): last error at time 2000000036: ext4_orphan_get:1397: inode 15
[  187.941423][T14222] loop5: lost filesystem error report for type 5 error -117
[  187.941993][T14222] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.155185][T14243] loop0: detected capacity change from 0 to 512
[  188.169226][T14245] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4751'.
[  188.193768][T14243] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c018, mo2=0002]
[  188.202496][T14245] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4751'.
[  188.210751][T14243] System zones: 1-20
[  188.221338][T14243] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.419679][   T56] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm kworker/u8:4: bg 0: block 5: invalid block bitmap
[  188.454305][   T56] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  188.478070][   T56] EXT4-fs (loop5): This should not happen!! Data will be lost
[  188.478070][   T56] 
[  188.490193][   T56] EXT4-fs (loop5): Total free blocks count 0
[  188.497898][   T56] EXT4-fs (loop5): Free/Dirty block details
[  188.504128][   T56] EXT4-fs (loop5): free_blocks=0
[  188.509279][   T56] EXT4-fs (loop5): dirty_blocks=16016
[  188.516660][   T56] EXT4-fs (loop5): Block reservation details
[  188.523088][   T56] EXT4-fs (loop5): i_reserved_data_blocks=16016
[  188.565371][   T56] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  188.619858][ T3294] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.889118][T12240] EXT4-fs warning (device loop5): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[  188.905026][T14268] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.912317][T14268] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.004232][T14268] bridge_slave_0: left allmulticast mode
[  189.022691][T14268] bridge_slave_0: left promiscuous mode
[  189.033612][T14268] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.062391][T14268] bridge_slave_1: left allmulticast mode
[  189.076283][T14268] bridge_slave_1: left promiscuous mode
[  189.085838][T14268] bridge0: port 2(bridge_slave_1) entered disabled state
[  189.103739][T14268] bond0: (slave bond_slave_0): Releasing backup interface
[  189.116385][T14268] bond0: (slave bond_slave_1): Releasing backup interface
[  189.133370][T14268] team0: Port device team_slave_0 removed
[  189.145813][T14268] team0: Port device team_slave_1 removed
[  189.157980][T14268] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  189.172698][T14268] batman_adv: batadv0: Removing interface: batadv_slave_0
[  189.185932][T14268] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  189.196801][T14268] batman_adv: batadv0: Removing interface: batadv_slave_1
[  189.210292][T14268] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  190.130138][T14327] loop5: detected capacity change from 0 to 512
[  190.137533][T14327] EXT4-fs: Ignoring removed mblk_io_submit option
[  190.148137][T14327] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  190.162708][T14327] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.175923][T14327] ext4 filesystem being mounted at /144/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  190.198324][T14327] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.258877][T14333] loop5: detected capacity change from 0 to 2048
[  190.283876][T14333] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.315065][T12240] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.567027][T14354] openvswitch: netlink: Missing key (keys=40, expected=100)
[  190.687178][T14360] sctp: [Deprecated]: syz.3.4794 (pid 14360) Use of int in max_burst socket option deprecated.
[  190.687178][T14360] Use struct sctp_assoc_value instead
[  190.964339][T14363] dummy0: left allmulticast mode
[  190.977077][   T49] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  190.999346][   T49] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.020385][   T49] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.042487][   T49] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.128267][T14389] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4807'.
[  191.263432][T14398] netlink: 'syz.0.4811': attribute type 29 has an invalid length.
[  191.278638][T14398] netlink: 'syz.0.4811': attribute type 29 has an invalid length.
[  191.293711][T14398] netlink: 264 bytes leftover after parsing attributes in process `syz.0.4811'.
[  191.580410][T14410] batman_adv: batadv0: Interface deactivated: ipvlan2
[  191.604086][ T3468] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.622741][ T3468] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.649289][ T3468] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.675224][ T3468] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  191.676072][T14406] loop0: detected capacity change from 0 to 512
[  191.737210][T14421] veth1_to_bond: entered allmulticast mode
[  191.747203][T14421] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4823'.
[  191.764886][T14421] veth1_to_bond (unregistering): left allmulticast mode
[  191.819947][T14406] EXT4-fs warning (device loop0): ext4_xattr_inode_get:560: inode #11: comm syz.0.4815: EA inode hash validation failed
[  191.855756][T14406] EXT4-fs error (device loop0): ext4_do_update_inode:5690: inode #15: comm syz.0.4815: corrupted inode contents
[  191.877023][T14406] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  191.880354][T14406] EXT4-fs (loop0): Remounting filesystem read-only
[  191.880530][    C0] EXT4-fs (loop0): error count since last fsck: 1
[  191.880552][    C0] EXT4-fs (loop0): initial error at time 2000000040: ext4_do_update_inode:5690: inode 15
[  191.880587][    C0] EXT4-fs (loop0): last error at time 2000000040: ext4_do_update_inode:5690: inode 15
[  191.940311][T14406] EXT4-fs warning (device loop0): ext4_evict_inode:287: xattr delete (err -30)
[  191.953577][T14406] EXT4-fs (loop0): 1 orphan inode deleted
[  191.966838][   T28] kauditd_printk_skb: 28 callbacks suppressed
[  191.966857][   T28] audit: type=1400 audit(2000000041.040:1178): avc:  denied  { getopt } for  pid=14431 comm="syz.1.4826" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  191.969829][T14406] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.061418][ T3294] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.198263][T14459] xfrm0 speed is unknown, defaulting to 1000
[  192.279882][   T28] audit: type=1400 audit(2000000041.350:1179): avc:  denied  { getopt } for  pid=14468 comm="syz.4.4841" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  192.362450][T14475] IPVS: set_ctl: invalid protocol: 0 10.1.1.1:20002
[  192.528155][T14489] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4851'.
[  192.582277][T14500] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4856'.
[  193.061497][T14524] af_packet: tpacket_rcv: packet too big, clamped from 29 to 4294967272. macoff=96
[  193.505058][T14534] loop0: detected capacity change from 0 to 512
[  193.512374][T14534] EXT4-fs: Ignoring removed oldalloc option
[  193.524958][T14534] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  193.541498][T14534] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.4866: iget: bad i_size value: 38620345925642
[  193.554622][T14534] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  193.554810][T14534] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.4866: couldn't read orphan inode 15 (err -117)
[  193.564248][    C0] EXT4-fs (loop0): error count since last fsck: 1
[  193.564274][    C0] EXT4-fs (loop0): initial error at time 2000000042: ext4_orphan_get:1397: inode 15
[  193.564317][    C0] EXT4-fs (loop0): last error at time 2000000042: ext4_orphan_get:1397: inode 15
[  193.602731][T14534] loop0: lost filesystem error report for type 5 error -117
[  193.603453][T14534] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.062421][   T56] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm kworker/u8:4: bg 0: block 5: invalid block bitmap
[  194.076165][T14580] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  194.077995][T14038] IPVS: starting estimator thread 0...
[  194.089189][   T56] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  194.102970][   T56] EXT4-fs (loop0): This should not happen!! Data will be lost
[  194.102970][   T56] 
[  194.112973][   T56] EXT4-fs (loop0): Total free blocks count 0
[  194.119073][   T56] EXT4-fs (loop0): Free/Dirty block details
[  194.125588][   T56] EXT4-fs (loop0): free_blocks=0
[  194.131002][   T56] EXT4-fs (loop0): dirty_blocks=16000
[  194.136708][   T56] EXT4-fs (loop0): Block reservation details
[  194.143429][   T56] EXT4-fs (loop0): i_reserved_data_blocks=16000
[  194.190761][T14589] IPVS: using max 2304 ests per chain, 115200 per kthread
[  194.255646][  T357] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  194.278650][T14603] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4896'.
[  194.301164][ T3294] EXT4-fs warning (device loop0): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[  194.447222][   T28] audit: type=1326 audit(2000000043.520:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14615 comm="syz.0.4897" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4a6157cdd9 code=0x0
[  194.479912][T14618] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4903'.
[  194.503578][T14618] gtp0: entered promiscuous mode
[  194.514269][T14618] gtp0: entered allmulticast mode
[  194.700248][T14640] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4914'.
[  194.839077][T14653] loop0: detected capacity change from 0 to 512
[  194.858146][T14653] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  194.887144][T14653] EXT4-fs (loop0): 1 truncate cleaned up
[  194.903695][T14653] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.945799][   T28] audit: type=1400 audit(2000000044.020:1181): avc:  denied  { mounton } for  pid=14652 comm="syz.0.4921" path="/869/file2/bus" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  195.013630][   T28] audit: type=1400 audit(2000000044.090:1182): avc:  denied  { rmdir } for  pid=3294 comm="syz-executor" name="lost+found" dev="loop0" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  195.013949][ T3294] EXT4-fs error (device loop0): mb_free_blocks:2049: group 0, inode 11: block 54:freeing already freed block (bit 53); block bitmap corrupt.
[  195.088182][ T3294] EXT4-fs error (device loop0): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39
[  195.112635][ T3294] EXT4-fs error (device loop0): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39
[  195.231193][T11129] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.277717][T14672] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  195.452901][   T28] audit: type=1400 audit(2000000044.530:1183): avc:  denied  { bind } for  pid=14703 comm="syz.3.4943" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  195.626903][   T56] bond0 (unregistering): Released all slaves
[  195.643142][   T56] bond1 (unregistering): Released all slaves
[  195.656047][   T56] bond2 (unregistering): Released all slaves
[  195.698426][T14685] xfrm0 speed is unknown, defaulting to 1000
[  195.717514][ T3021] 8021q: adding VLAN 0 to HW filter on device eth5
[  195.872227][   T56] hsr_slave_0: left promiscuous mode
[  195.886299][   T56] hsr_slave_1: left promiscuous mode
[  196.010659][ T3021] 8021q: adding VLAN 0 to HW filter on device eth6
[  196.224619][ T3021] 8021q: adding VLAN 0 to HW filter on device eth7
[  196.242160][T14685] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.250576][T14685] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.258151][T14685] bridge_slave_0: entered allmulticast mode
[  196.265045][T14685] bridge_slave_0: entered promiscuous mode
[  196.272270][T14685] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.279678][T14685] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.287112][T14685] bridge_slave_1: entered allmulticast mode
[  196.293878][T14685] bridge_slave_1: entered promiscuous mode
[  196.305522][   T56] IPVS: stop unused estimator thread 0...
[  196.346332][T14685] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  196.359370][T14685] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  196.394063][T14685] team0: Port device team_slave_0 added
[  196.414152][T14685] team0: Port device team_slave_1 added
[  196.470865][T14685] batman_adv: batadv0: Adding interface: batadv_slave_0
[  196.493452][T14685] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  196.572735][T14685] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  196.600413][T14685] batman_adv: batadv0: Adding interface: batadv_slave_1
[  196.628856][T14685] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  196.683993][T14685] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  196.754118][T14685] hsr_slave_0: entered promiscuous mode
[  196.774179][T14685] hsr_slave_1: entered promiscuous mode
[  196.788675][T14685] debugfs: 'hsr0' already exists in 'hsr'
[  196.799004][T14685] Cannot create hsr debugfs directory
[  196.827871][ T3021] 8021q: adding VLAN 0 to HW filter on device eth8
[  197.015072][T14685] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  197.044824][T14845] SELinux: security_context_str_to_sid (ÿû`Û'àˆsÃÉuàA^:=®‚) failed with errno=-22
[  197.054527][T14685] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  197.059191][T14685] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  197.086628][T14685] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  197.101418][T14685] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  197.121960][T14685] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  197.129801][T14848] sch_tbf: burst 1 is lower than device bridge_slave_0 mtu (1514) !
[  197.139079][T14685] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  197.150982][T14685] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  197.245724][T14685] 8021q: adding VLAN 0 to HW filter on device bond0
[  197.266359][T14685] 8021q: adding VLAN 0 to HW filter on device team0
[  197.279315][   T56] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.286498][   T56] bridge0: port 1(bridge_slave_0) entered forwarding state
[  197.295883][   T56] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.303064][   T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[  197.471163][T14685] 8021q: adding VLAN 0 to HW filter on device batadv0
[  197.506602][T14897] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4988'.
[  197.698193][T14685] veth0_vlan: entered promiscuous mode
[  197.709549][T14685] veth1_vlan: entered promiscuous mode
[  197.735325][T14685] veth0_macvtap: entered promiscuous mode
[  197.751104][T14685] veth1_macvtap: entered promiscuous mode
[  197.773262][T14685] batman_adv: batadv0: Interface activated: batadv_slave_0
[  197.793271][T14685] batman_adv: batadv0: Interface activated: batadv_slave_1
[  197.805282][   T56] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  197.821625][   T56] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  197.841605][   T56] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  197.866375][   T56] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  198.731370][T14958] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5019'.
[  198.935487][T14968] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5013'.
[  198.990001][   T28] audit: type=1326 audit(2000000048.060:1184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14974 comm="syz.1.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  199.048635][   T28] audit: type=1326 audit(2000000048.060:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14974 comm="syz.1.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  199.118250][   T28] audit: type=1326 audit(2000000048.060:1186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14974 comm="syz.1.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  199.174907][   T28] audit: type=1326 audit(2000000048.060:1187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14974 comm="syz.1.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  199.211532][   T28] audit: type=1326 audit(2000000048.090:1188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14974 comm="syz.1.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  199.249669][   T28] audit: type=1326 audit(2000000048.090:1189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14974 comm="syz.1.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  199.270692][T14990] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5024'.
[  199.287044][   T28] audit: type=1326 audit(2000000048.100:1190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14974 comm="syz.1.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  199.311831][   T28] audit: type=1326 audit(2000000048.100:1191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14974 comm="syz.1.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  199.344221][T14992] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5025'.
[  199.376170][   T28] audit: type=1326 audit(2000000048.100:1192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14974 comm="syz.1.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  199.403023][T14994] netlink: 'syz.6.5026': attribute type 2 has an invalid length.
[  199.431866][   T28] audit: type=1326 audit(2000000048.150:1193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14974 comm="syz.1.5016" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eec51cdd9 code=0x7ffc0000
[  199.756911][T15029] netlink: 36 bytes leftover after parsing attributes in process `syz.5.5040'.
[  199.786712][T15031] pim6reg: entered allmulticast mode
[  199.836423][T15037] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=15037 comm=syz.5.5044
[  199.973460][T15051] xfrm0 speed is unknown, defaulting to 1000
[  200.108941][T15050] ------------[ cut here ]------------
[  200.114742][T15050] WARNING: kernel/signal.c:2174 at do_notify_parent+0x5c3/0x600, CPU#0: syz.5.5045/15050
[  200.124980][T15050] Modules linked in:
[  200.128948][T15050] CPU: 0 UID: 0 PID: 15050 Comm: syz.5.5045 Not tainted syzkaller #0 PREEMPT(full) 
[  200.138499][T15050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  200.149077][T15050] RIP: 0010:do_notify_parent+0x5c3/0x600
[  200.154774][T15050] Code: 8b 05 c1 49 f6 07 48 3b 44 24 48 75 41 44 89 f0 48 83 c4 50 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 1e 12 1e 00 90 <0f> 0b 90 45 31 f6 eb cc e8 10 12 1e 00 90 0f 0b 90 e9 af fa ff ff
[  200.174443][T15050] RSP: 0000:ffffc90001307dd8 EFLAGS: 00010093
[  200.180543][T15050] RAX: ffffffff813b1682 RBX: ffff8881003eb300 RCX: ffff8881003eb300
[  200.188668][T15050] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000040
[  200.196752][T15050] RBP: 0000000000000080 R08: ffff8881003ebdf8 R09: 0000000000000000
[  200.204862][T15050] R10: ffffc90001307df0 R11: 0001c90001307df0 R12: ffff8881003eb300
[  200.212961][T15050] R13: ffff8881003ebb28 R14: ffff888104b61210 R15: 0000000000000080
[  200.221480][T15050] FS:  0000000000000000(0000) GS:ffff8882ae8fe000(0000) knlGS:0000000000000000
[  200.230623][T15050] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  200.237531][T15050] CR2: 0000001b32e1fff8 CR3: 0000000128e36000 CR4: 00000000003506f0
[  200.245808][T15050] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  200.254039][T15050] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  200.262104][T15050] Call Trace:
[  200.265424][T15050]  <TASK>
[  200.268469][T15050]  do_exit+0xc13/0x1530
[  200.272700][T15050]  ? switch_fpu_return+0xe7/0x1b0
[  200.277972][T15050]  __x64_sys_exit+0x1f/0x20
[  200.282530][T15050]  x64_sys_call+0x301d/0x3020
[  200.287251][T15050]  do_syscall_64+0x12c/0x3b0
[  200.292148][T15050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.298242][T15050] RIP: 0033:0x7fa0aac5cdd9
[  200.302709][T15050] Code: Unable to access opcode bytes at 0x7fa0aac5cdaf.
[  200.309950][T15050] RSP: 002b:00007fa0a9684fd8 EFLAGS: 00000246 ORIG_RAX: 000000000000003c
[  200.320866][T15050] RAX: ffffffffffffffda RBX: 00007fa0aaed6090 RCX: 00007fa0aac5cdd9
[  200.329688][T15050] RDX: 00007fa0a96859c8 RSI: 0000000000000000 RDI: 0000000000000000
[  200.337801][T15050] RBP: 00007fa0aacf2d69 R08: 0000000000000000 R09: 0000000000000000
[  200.345972][T15050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  200.355227][T15050] R13: 00007fa0aaed6128 R14: 00007fa0aaed6090 R15: 00007ffc5a64db78
[  200.363402][T15050]  </TASK>
[  200.366583][T15050] ---[ end trace 0000000000000000 ]---
[  200.510256][T15071] loop6: detected capacity change from 0 to 128
[  200.594379][T15074] bio_check_eod: 47 callbacks suppressed
[  200.594447][T15074] syz.6.5058: attempt to access beyond end of device
[  200.594447][T15074] loop6: rw=3, sector=161, nr_sectors = 7 limit=128
[  200.614935][T15074] syz.6.5058: attempt to access beyond end of device
[  200.614935][T15074] loop6: rw=2051, sector=168, nr_sectors = 1 limit=128
[  200.689814][  T104] kworker/u8:5: attempt to access beyond end of device
[  200.689814][  T104] loop6: rw=1, sector=145, nr_sectors = 16 limit=128
[  200.703620][  T104] kworker/u8:5: attempt to access beyond end of device
[  200.703620][  T104] loop6: rw=1, sector=169, nr_sectors = 8 limit=128
[  200.717324][  T104] kworker/u8:5: attempt to access beyond end of device
[  200.717324][  T104] loop6: rw=1, sector=185, nr_sectors = 8 limit=128
[  200.750865][  T104] kworker/u8:5: attempt to access beyond end of device
[  200.750865][  T104] loop6: rw=1, sector=201, nr_sectors = 8 limit=128
[  200.805684][  T104] kworker/u8:5: attempt to access beyond end of device
[  200.805684][  T104] loop6: rw=1, sector=217, nr_sectors = 8 limit=128
[  200.823401][  T104] kworker/u8:5: attempt to access beyond end of device
[  200.823401][  T104] loop6: rw=1, sector=233, nr_sectors = 8 limit=128
[  200.854153][  T104] kworker/u8:5: attempt to access beyond end of device
[  200.854153][  T104] loop6: rw=1, sector=249, nr_sectors = 8 limit=128
[  200.868929][  T104] kworker/u8:5: attempt to access beyond end of device
[  200.868929][  T104] loop6: rw=1, sector=265, nr_sectors = 8 limit=128
[  200.956525][T15091] xfrm0 speed is unknown, defaulting to 1000
[  200.976625][T15096] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5071'.
[  201.005009][T15098] loop6: detected capacity change from 0 to 512
[  201.023078][T15098] EXT4-fs: Ignoring removed oldalloc option
[  201.031525][T15096] netlink: 'syz.3.5071': attribute type 30 has an invalid length.
[  201.058102][T15098] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  201.083339][T15098] EXT4-fs error (device loop6): ext4_orphan_get:1397: inode #15: comm syz.6.5060: iget: bad i_size value: 38620345925642
[  201.113337][T15098] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  201.113790][T15098] EXT4-fs error (device loop6): ext4_orphan_get:1402: comm syz.6.5060: couldn't read orphan inode 15 (err -117)
[  201.123148][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  201.123176][    C0] EXT4-fs (loop6): initial error at time 2000000050: ext4_orphan_get:1397: inode 15
[  201.123213][    C0] EXT4-fs (loop6): last error at time 2000000050: ext4_orphan_get:1397: inode 15
[  201.163098][T15098] loop6: lost filesystem error report for type 5 error -117
[  201.165449][  T104] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  201.186877][T15098] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.240763][  T104] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  201.283765][  T104] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  201.311178][  T104] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  201.452227][T15120] xfrm0 speed is unknown, defaulting to 1000
[  201.540956][T15105] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  201.569897][ T3468] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  201.595120][ T3468] EXT4-fs (loop6): This should not happen!! Data will be lost
[  201.595120][ T3468] 
[  201.623939][ T3468] EXT4-fs (loop6): Total free blocks count 0
[  201.638114][ T3468] EXT4-fs (loop6): Free/Dirty block details
[  201.650184][ T3468] EXT4-fs (loop6): free_blocks=0
[  201.667597][ T3468] EXT4-fs (loop6): dirty_blocks=8528
[  201.683956][ T3468] EXT4-fs (loop6): Block reservation details
[  201.713921][ T3468] EXT4-fs (loop6): i_reserved_data_blocks=8528
[  201.751304][ T3468] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  201.915939][T14685] EXT4-fs warning (device loop6): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[  202.126918][T15120] ip6gretap0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  202.313833][T15183] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5106'.
[  202.328382][T15183] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5106'.
[  202.638851][T15210] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5119'.
[  202.659960][T15210] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5119'.
[  203.174736][T15229] xfrm0 speed is unknown, defaulting to 1000
[  203.239041][   T49] bridge_slave_1: left allmulticast mode
[  203.245076][   T49] bridge_slave_1: left promiscuous mode
[  203.251552][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.259444][   T49] bridge_slave_0: left allmulticast mode
[  203.265396][   T49] bridge_slave_0: left promiscuous mode
[  203.271189][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  203.279083][   T49] dvmrp6: left allmulticast mode
[  203.374062][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  203.384846][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  203.405146][   T49] bond0 (unregistering): Released all slaves
[  203.526787][   T49] hsr_slave_0: left promiscuous mode
[  203.538191][   T49] hsr_slave_1: left promiscuous mode
[  203.546579][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  203.557338][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  203.616964][T15265] 9pnet: p9_errstr2errno: server reported unknown error 0x000
[  203.646800][   T49] team0 (unregistering): Port device team_slave_1 removed
[  203.668175][   T49] team0 (unregistering): Port device team_slave_0 removed
[  203.776921][T15284] netlink: 32 bytes leftover after parsing attributes in process `syz.5.5142'.
[  203.808027][ T3021] 8021q: adding VLAN 0 to HW filter on device eth9
[  203.981699][T15229] bridge0: port 1(bridge_slave_0) entered blocking state
[  203.996593][T15229] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.019319][T15229] bridge_slave_0: entered allmulticast mode
[  204.032577][T15229] bridge_slave_0: entered promiscuous mode
[  204.053638][T15229] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.073647][T15229] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.095350][T15229] bridge_slave_1: entered allmulticast mode
[  204.112532][T15229] bridge_slave_1: entered promiscuous mode
[  204.208570][T15229] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  204.234167][T15229] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  204.278835][   T49] IPVS: stop unused estimator thread 0...
[  204.297517][T15229] team0: Port device team_slave_0 added
[  204.315753][T15229] team0: Port device team_slave_1 added
[  204.411412][T15229] batman_adv: batadv0: Adding interface: batadv_slave_0
[  204.419173][T15325] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5149'.
[  204.434052][T15229] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  204.437271][T15325] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5149'.
[  204.481951][T15229] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  204.500300][ T3021] 8021q: adding VLAN 0 to HW filter on device eth10
[  204.511278][   T49] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  204.536543][T15229] batman_adv: batadv0: Adding interface: batadv_slave_1
[  204.551330][T15229] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  204.597959][T15229] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  204.625684][T15313] xfrm0 speed is unknown, defaulting to 1000
[  204.637153][   T49] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  204.683815][T15229] hsr_slave_0: entered promiscuous mode
[  204.698283][T15229] hsr_slave_1: entered promiscuous mode
[  204.707195][T15229] debugfs: 'hsr0' already exists in 'hsr'
[  204.718936][T15229] Cannot create hsr debugfs directory
[  204.774704][   T49] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  204.849686][   T49] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  204.873546][   T28] kauditd_printk_skb: 46 callbacks suppressed
[  204.873564][   T28] audit: type=1400 audit(2000000053.950:1240): avc:  denied  { unmount } for  pid=15359 comm="syz.4.5162" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  204.959317][ T3021] 8021q: adding VLAN 0 to HW filter on device eth11
[  204.976393][   T28] audit: type=1400 audit(2000000054.050:1241): avc:  denied  { cpu } for  pid=15374 comm="syz.4.5165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  205.044016][   T49] dvmrp6: left allmulticast mode
[  205.093549][   T49] bond0 (unregistering): Released all slaves
[  205.101232][   T49] bond1 (unregistering): Released all slaves
[  205.147203][T15229] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  205.156299][T15229] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  205.164545][T15229] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  205.175390][T15229] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  205.195215][T15229] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  205.206782][T15229] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  205.239140][T15229] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  205.252026][T15229] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  205.273372][   T49] hsr_slave_0: left promiscuous mode
[  205.286374][   T49] hsr_slave_1: left promiscuous mode
[  205.292504][   T49] batman_adv: batadv0: Removing interface: ipvlan2
[  205.400179][ T3021] 8021q: adding VLAN 0 to HW filter on device eth12
[  205.407740][T15313] bridge0: port 1(bridge_slave_0) entered blocking state
[  205.423522][T15313] bridge0: port 1(bridge_slave_0) entered disabled state
[  205.431016][T15313] bridge_slave_0: entered allmulticast mode
[  205.438011][T15313] bridge_slave_0: entered promiscuous mode
[  205.445077][T15313] bridge0: port 2(bridge_slave_1) entered blocking state
[  205.452373][T15313] bridge0: port 2(bridge_slave_1) entered disabled state
[  205.459650][T15313] bridge_slave_1: entered allmulticast mode
[  205.464142][   T28] audit: type=1326 audit(2000000054.530:1242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37e49acdd9 code=0x7ffc0000
[  205.468389][T15313] bridge_slave_1: entered promiscuous mode
[  205.489982][   T28] audit: type=1326 audit(2000000054.530:1243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37e49acdd9 code=0x7ffc0000
[  205.519288][   T28] audit: type=1326 audit(2000000054.530:1245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f37e49acdd9 code=0x7ffc0000
[  205.543399][   T28] audit: type=1326 audit(2000000054.530:1246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37e49acdd9 code=0x7ffc0000
[  205.567716][   T28] audit: type=1326 audit(2000000054.530:1247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37e49acdd9 code=0x7ffc0000
[  205.598543][T15313] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  205.612474][   T28] audit: type=1326 audit(2000000054.530:1244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37e49acdd9 code=0x7ffc0000
[  205.618096][T15313] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  205.656874][   T28] audit: type=1326 audit(2000000054.530:1248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37e49acdd9 code=0x7ffc0000
[  205.711899][   T28] audit: type=1326 audit(2000000054.530:1249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37e49acdd9 code=0x7ffc0000
[  205.747821][T15424] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5173'.
[  205.759464][T15313] team0: Port device team_slave_0 added
[  205.774065][T15313] team0: Port device team_slave_1 added
[  205.832790][T15434] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5178'.
[  205.837990][T15313] batman_adv: batadv0: Adding interface: batadv_slave_0
[  205.857944][T15434] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5178'.
[  205.861861][T15313] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  205.894244][T15434] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5178'.
[  205.903391][T15434] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5178'.
[  205.953752][T15313] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  205.987653][   T49] IPVS: stop unused estimator thread 0...
[  205.995978][T15229] 8021q: adding VLAN 0 to HW filter on device bond0
[  206.013367][T15313] batman_adv: batadv0: Adding interface: batadv_slave_1
[  206.023719][T15313] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  206.082881][T15313] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  206.112199][ T3021] 8021q: adding VLAN 0 to HW filter on device eth13
[  206.157267][T15229] 8021q: adding VLAN 0 to HW filter on device team0
[  206.193980][T15313] hsr_slave_0: entered promiscuous mode
[  206.205733][T15313] hsr_slave_1: entered promiscuous mode
[  206.226313][   T56] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.233458][   T56] bridge0: port 1(bridge_slave_0) entered forwarding state
[  206.279233][   T56] bridge0: port 2(bridge_slave_1) entered blocking state
[  206.286534][   T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[  206.511138][T15313] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  206.540817][T15313] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  206.569302][T15313] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  206.591180][T15313] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  206.608036][T15313] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  206.628757][T15313] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  206.653745][ T3021] 8021q: adding VLAN 0 to HW filter on device eth14
[  206.665775][T15313] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  206.682453][T15313] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  206.783632][T15229] 8021q: adding VLAN 0 to HW filter on device batadv0
[  206.845966][T15313] 8021q: adding VLAN 0 to HW filter on device bond0
[  206.888293][T15313] 8021q: adding VLAN 0 to HW filter on device team0
[  206.914910][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.922082][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  206.962987][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  206.970386][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  207.070122][ T3021] 8021q: adding VLAN 0 to HW filter on device eth15
[  207.180402][T15229] veth0_vlan: entered promiscuous mode
[  207.208660][T15229] veth1_vlan: entered promiscuous mode
[  207.269785][T15229] veth0_macvtap: entered promiscuous mode
[  207.293478][T15229] veth1_macvtap: entered promiscuous mode
[  207.308011][T15540] loop6: detected capacity change from 0 to 128
[  207.336902][T15229] batman_adv: batadv0: Interface activated: batadv_slave_0
[  207.377763][T15229] batman_adv: batadv0: Interface activated: batadv_slave_1
[  207.420395][  T357] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  207.454489][  T357] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  207.492859][  T357] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  207.512638][T15313] 8021q: adding VLAN 0 to HW filter on device batadv0
[  207.536396][  T357] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  207.643457][T15571] xfrm0 speed is unknown, defaulting to 1000
[  207.657678][ T3021] 8021q: adding VLAN 0 to HW filter on device eth16
[  207.943380][T15313] veth0_vlan: entered promiscuous mode
[  208.008177][T15313] veth1_vlan: entered promiscuous mode
[  208.063920][T15313] veth0_macvtap: entered promiscuous mode
[  208.095085][T15313] veth1_macvtap: entered promiscuous mode
[  208.122191][T15313] batman_adv: batadv0: Interface activated: batadv_slave_0
[  208.176646][T15313] batman_adv: batadv0: Interface activated: batadv_slave_1
[  208.204949][ T3468] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  208.234369][ T3468] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  208.268684][ T3468] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  208.294133][ T3468] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  208.685807][T15676] 8021q: adding VLAN 0 to HW filter on device bond0
[  208.708409][T15676] team0: Port device bond0 added
[  208.739733][T15676] bridge0: port 3(team0) entered blocking state
[  208.750398][T15676] bridge0: port 3(team0) entered disabled state
[  208.757616][T15676] team0: entered allmulticast mode
[  208.763876][T15676] team_slave_0: entered allmulticast mode
[  208.769669][T15676] team_slave_1: entered allmulticast mode
[  208.776067][T15676] bond0: entered allmulticast mode
[  208.781567][T15676] bond_slave_0: entered allmulticast mode
[  208.787610][T15676] bond_slave_1: entered allmulticast mode
[  208.796781][T15676] team0: entered promiscuous mode
[  208.802495][T15676] team_slave_0: entered promiscuous mode
[  208.808324][T15676] team_slave_1: entered promiscuous mode
[  208.817006][T15676] bond0: entered promiscuous mode
[  208.822816][T15676] bond_slave_0: entered promiscuous mode
[  208.833484][T15676] bond_slave_1: entered promiscuous mode
[  208.839888][T15676] bridge0: port 3(team0) entered blocking state
[  208.846252][T15676] bridge0: port 3(team0) entered forwarding state
[  208.924886][T15691] loop7: detected capacity change from 0 to 1764
[  208.952265][T15691] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  208.965268][T15691] isofs_fill_super: get root inode failed
[  209.474885][T15745] __nla_validate_parse: 6 callbacks suppressed
[  209.474920][T15745] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5241'.
[  209.554243][T15751] netlink: 'syz.6.5244': attribute type 4 has an invalid length.
[  209.854826][T15773] loop6: detected capacity change from 0 to 8192
[  209.877832][T15773] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  210.015791][T15782] loop7: detected capacity change from 0 to 512
[  210.073856][T15782] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.127218][T15782] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.162583][T15773] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1050)
[  210.202526][T15773] FAT-fs (loop6): Filesystem has been set read-only
[  210.222838][T15773] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1050)
[  210.242989][T15229] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.252401][T15773] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1050)
[  210.291443][T15796] batadv_slave_0: entered promiscuous mode
[  210.311506][T15795] batadv_slave_0: left promiscuous mode
[  210.330399][T15798] xfrm0 speed is unknown, defaulting to 1000
[  210.420719][T14685] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1050)
[  210.575653][T15815] sctp: [Deprecated]: syz.8.5262 (pid 15815) Use of int in max_burst socket option deprecated.
[  210.575653][T15815] Use struct sctp_assoc_value instead
[  210.615800][T15817] loop7: detected capacity change from 0 to 512
[  210.650903][   T28] kauditd_printk_skb: 27 callbacks suppressed
[  210.650969][   T28] audit: type=1400 audit(2000000059.730:1277): avc:  denied  { mounton } for  pid=15818 comm="syz.4.5266" path="/" dev="nullfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  210.697815][T15817] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  210.729567][T15817] System zones: 0-2, 18-18, 34-34
[  210.740337][T15817] EXT4-fs (loop7): 1 orphan inode deleted
[  210.758559][T15817] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.772266][  T357] Quota error (device loop7): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  210.789289][T15817] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.822005][  T357] EXT4-fs error (device loop7): ext4_release_dquot:7070: comm kworker/u8:7: Failed to release dquot type 1
[  210.835392][  T357] EXT4-fs (loop7): Remounting filesystem read-only
[  210.863842][T15229] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.855964][T15941] loop7: detected capacity change from 0 to 512
[  211.867107][T15941] EXT4-fs: Ignoring removed nobh option
[  211.881405][T15941] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  211.896278][T15941] EXT4-fs (loop7): 1 truncate cleaned up
[  211.903151][T15941] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  211.920690][   T28] audit: type=1400 audit(2000000060.990:1278): avc:  denied  { create } for  pid=15940 comm="syz.7.5308" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  211.951056][   T28] audit: type=1400 audit(2000000060.990:1279): avc:  denied  { add_name } for  pid=15940 comm="syz.7.5308" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  211.972241][   T28] audit: type=1400 audit(2000000061.020:1280): avc:  denied  { remove_name } for  pid=15940 comm="syz.7.5308" name="file0" dev="loop7" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  212.000633][   T28] audit: type=1400 audit(2000000061.020:1281): avc:  denied  { rmdir } for  pid=15940 comm="syz.7.5308" name="file0" dev="loop7" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  212.022760][   T28] audit: type=1400 audit(2000000061.020:1282): avc:  denied  { rename } for  pid=15940 comm="syz.7.5308" name="file0" dev="loop7" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  212.046453][   T28] audit: type=1400 audit(2000000061.020:1283): avc:  denied  { reparent } for  pid=15940 comm="syz.7.5308" name="file0" dev="loop7" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  212.082796][T15229] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.657958][T16054] xfrm0 speed is unknown, defaulting to 1000
[  212.694329][T16057] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5335'.
[  212.706657][T16057] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5335'.
[  212.717311][T16058] netlink: 56 bytes leftover after parsing attributes in process `syz.4.5334'.
[  212.740703][T14037] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  213.176494][T16075] loop7: detected capacity change from 0 to 512
[  213.192652][T16075] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.209625][T16075] ext4 filesystem being mounted at /25/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  213.233582][T15229] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.242876][T14037] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  213.340728][  T357] Bluetooth: hci0: Frame reassembly failed (-84)
[  213.416183][T16090] netlink: 28 bytes leftover after parsing attributes in process `syz.8.5346'.
[  213.425578][T16090] netlink: 32 bytes leftover after parsing attributes in process `syz.8.5346'.
[  213.435767][T16090] netlink: 28 bytes leftover after parsing attributes in process `syz.8.5346'.
[  213.445690][T16090] netlink: 32 bytes leftover after parsing attributes in process `syz.8.5346'.
[  214.244117][T16142] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5371'.
[  214.324583][   T28] audit: type=1400 audit(2000000063.400:1284): avc:  denied  { read } for  pid=16149 comm="syz.6.5375" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  214.351104][   T28] audit: type=1400 audit(2000000063.400:1285): avc:  denied  { open } for  pid=16149 comm="syz.6.5375" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  215.360612][ T3523] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  215.366920][T13496] Bluetooth: hci0: command 0x1003 tx timeout
[  215.638482][T16211] loop8: detected capacity change from 0 to 1024
[  215.675361][T16211] EXT4-fs: Ignoring removed bh option
[  215.716115][T16211] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.859947][T15313] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.996884][   T28] kauditd_printk_skb: 12 callbacks suppressed
[  215.996902][   T28] audit: type=1326 audit(2000000065.070:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16230 comm="syz.5.5408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  216.059605][   T28] audit: type=1326 audit(2000000065.070:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16230 comm="syz.5.5408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  216.096018][   T28] audit: type=1326 audit(2000000065.070:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16230 comm="syz.5.5408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  216.126274][   T28] audit: type=1326 audit(2000000065.070:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16230 comm="syz.5.5408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  216.180650][T16248] loop7: detected capacity change from 0 to 1024
[  216.187650][   T28] audit: type=1326 audit(2000000065.070:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16230 comm="syz.5.5408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  216.240640][   T28] audit: type=1326 audit(2000000065.070:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16230 comm="syz.5.5408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  216.250211][T16248] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  216.280163][   T28] audit: type=1326 audit(2000000065.070:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16230 comm="syz.5.5408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  216.307312][   T28] audit: type=1326 audit(2000000065.070:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16230 comm="syz.5.5408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  216.332456][   T28] audit: type=1326 audit(2000000065.070:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16230 comm="syz.5.5408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  216.356571][   T28] audit: type=1326 audit(2000000065.240:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16230 comm="syz.5.5408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  216.425124][T15229] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.645378][T16284] xt_hashlimit: size too large, truncated to 1048576
[  217.594623][T16303] loop8: detected capacity change from 0 to 256
[  217.982546][T16326] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5448'.
[  218.013931][T16326] bond0: ARP target 8.4.0.0 is already present
[  218.053503][T16326] bond0: option arp_ip_target: invalid value (1032)
[  218.138259][T16338] macvtap1: entered promiscuous mode
[  218.427042][T16365] loop8: detected capacity change from 0 to 8192
[  218.849822][T16396] loop6: detected capacity change from 0 to 1024
[  218.872696][T16396] EXT4-fs: Ignoring removed i_version option
[  218.909091][T16396] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.979723][T14685] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.215103][T16425] loop6: detected capacity change from 0 to 256
[  220.054191][T16480] netlink: 'syz.7.5486': attribute type 3 has an invalid length.
[  220.366209][T16500] xfrm0 speed is unknown, defaulting to 1000
[  220.534035][T16520] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=16520 comm=syz.7.5497
[  220.702626][T16536] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=58 sclass=netlink_audit_socket pid=16536 comm=syz.6.5502
[  220.948848][T16560] netlink: 399 bytes leftover after parsing attributes in process `syz.5.5509'.
[  220.962774][T16562] loop7: detected capacity change from 0 to 512
[  220.988468][T16560] openvswitch: netlink: ufid size 36 bytes exceeds the range (1, 16)
[  221.012929][T16560] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  221.024206][T16562] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.047385][T16562] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.075727][   T28] kauditd_printk_skb: 5 callbacks suppressed
[  221.075779][   T28] audit: type=1400 audit(2000000070.150:1313): avc:  denied  { create } for  pid=16561 comm="syz.7.5510" name=E91F7189591E9233614B scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1
[  221.120905][T15229] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.218229][T16587] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5517'.
[  221.237411][T16584] xfrm0 speed is unknown, defaulting to 1000
[  221.238902][T16593] loop6: detected capacity change from 0 to 128
[  221.275329][T16593] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  221.311091][T16593] ext4 filesystem being mounted at /124/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.402014][T16603] loop7: detected capacity change from 0 to 128
[  221.473665][T14685] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  221.625958][   T28] audit: type=1400 audit(2000000070.700:1314): avc:  denied  { setopt } for  pid=16616 comm="syz.6.5528" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  221.921818][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  222.325305][T16645] loop6: detected capacity change from 0 to 256
[  222.384555][   T28] audit: type=1400 audit(2000000071.460:1315): avc:  denied  { watch watch_reads } for  pid=16644 comm="syz.6.5548" path="/132/file0/file0/file0" dev="loop6" ino=181 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=file permissive=1
[  223.429976][   T28] audit: type=1400 audit(2000000072.500:1316): avc:  denied  { mounton } for  pid=16699 comm="syz.4.5566" path="/" dev="ramfs" ino=41738 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  223.530339][T16707] 9p: Unknown access argument 18446744073709551615: -34
[  224.624635][T16763] erspan0: entered promiscuous mode
[  224.643136][T16763] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5594'.
[  225.218273][T16794] batman_adv: batadv0: Adding interface: macsec1
[  225.235711][T16794] batman_adv: batadv0: The MTU of interface macsec1 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  225.299678][T16794] batman_adv: batadv0: Interface activated: macsec1
[  225.342336][T16800] netlink: 64 bytes leftover after parsing attributes in process `syz.4.5611'.
[  225.462074][T16805] xfrm0 speed is unknown, defaulting to 1000
[  225.690287][   T28] audit: type=1400 audit(2000000074.760:1317): avc:  denied  { add_name } for  pid=16825 comm="syz.8.5622" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  225.741036][   T28] audit: type=1400 audit(2000000074.790:1318): avc:  denied  { create } for  pid=16825 comm="syz.8.5622" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:configfs_t tclass=file permissive=1
[  225.833764][T16831] loop6: detected capacity change from 0 to 4096
[  225.872399][T16831] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.936576][T16841] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=16841 comm=syz.4.5628
[  225.973952][T14685] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.166003][T16851] netlink: 56 bytes leftover after parsing attributes in process `syz.7.5633'.
[  226.224821][T16857] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5635'.
[  226.330132][T16870] batadv_slave_0: entered promiscuous mode
[  226.336780][T16869] batadv_slave_0: left promiscuous mode
[  226.383474][   T28] audit: type=1400 audit(2000000075.460:1319): avc:  denied  { connect } for  pid=16876 comm="syz.5.5644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  226.675420][T16886] loop8: detected capacity change from 0 to 256
[  227.744758][   T28] audit: type=1400 audit(2000000076.820:1320): avc:  denied  { write } for  pid=16932 comm="syz.4.5668" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1
[  227.749698][T16886] syz.8.5649 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  227.798704][T16886] CPU: 0 UID: 0 PID: 16886 Comm: syz.8.5649 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  227.798747][T16886] Tainted: [W]=WARN
[  227.798755][T16886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  227.798846][T16886] Call Trace:
[  227.798854][T16886]  <TASK>
[  227.798864][T16886]  __dump_stack+0x1d/0x30
[  227.798892][T16886]  dump_stack_lvl+0x95/0xd0
[  227.798984][T16886]  dump_stack+0x15/0x1b
[  227.799010][T16886]  dump_header+0x80/0x240
[  227.799034][T16886]  oom_kill_process+0x295/0x350
[  227.799098][T16886]  out_of_memory+0x97d/0xb80
[  227.799141][T16886]  try_charge_memcg+0x62f/0xa10
[  227.799241][T16886]  __memcg_kmem_charge_page+0x1ce/0x3f0
[  227.799274][T16886]  __alloc_frozen_pages_noprof+0x18a/0x350
[  227.799310][T16886]  alloc_pages_mpol+0xb3/0x260
[  227.799340][T16886]  ? mod_lruvec_state+0xe0/0xf0
[  227.799423][T16886]  alloc_pages_noprof+0x8f/0x140
[  227.799455][T16886]  __vmalloc_node_range_noprof+0xaed/0x11c0
[  227.799549][T16886]  __kvmalloc_node_noprof+0x3d4/0x640
[  227.799576][T16886]  ? futex_hash_allocate+0x190/0x9a0
[  227.799617][T16886]  ? futex_hash_allocate+0x190/0x9a0
[  227.799688][T16886]  futex_hash_allocate+0x190/0x9a0
[  227.799726][T16886]  ? cap_task_prctl+0x13f/0x6b0
[  227.799759][T16886]  futex_hash_prctl+0xd8/0xf0
[  227.799800][T16886]  __se_sys_prctl+0x4f4/0x1400
[  227.799923][T16886]  __x64_sys_prctl+0x67/0x80
[  227.799955][T16886]  x64_sys_call+0x2533/0x3020
[  227.799984][T16886]  do_syscall_64+0x12c/0x3b0
[  227.800048][T16886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.800075][T16886] RIP: 0033:0x7fe25154cdd9
[  227.800166][T16886] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  227.800191][T16886] RSP: 002b:00007fe24ff9f028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[  227.800217][T16886] RAX: ffffffffffffffda RBX: 00007fe2517c5fa0 RCX: 00007fe25154cdd9
[  227.800236][T16886] RDX: 0000000001000000 RSI: 0000000000000001 RDI: 000000000000004e
[  227.800377][T16886] RBP: 00007fe2515e2d69 R08: 0000000000000000 R09: 0000000000000000
[  227.800391][T16886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  227.800403][T16886] R13: 00007fe2517c6038 R14: 00007fe2517c5fa0 R15: 00007ffced732758
[  227.800484][T16886]  </TASK>
[  228.041964][T16931] loop7: detected capacity change from 0 to 8192
[  228.057888][T16886] memory: usage 307200kB, limit 307200kB, failcnt 210
[  228.068046][T16886] memory+swap: usage 307500kB, limit 9007199254740988kB, failcnt 0
[  228.076809][T16886] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  228.089264][T16886] Memory cgroup stats for /syz8:
[  228.089921][T16886] cache 0
[  228.099460][T16886] rss 0
[  228.102971][T16886] shmem 0
[  228.106753][T16886] mapped_file 0
[  228.145664][T16886] dirty 0
[  228.159356][T16886] writeback 0
[  228.170718][T16886] workingset_refault_anon 42
[  228.182139][T16886] workingset_refault_file 0
[  228.187910][T16886] swap 307200
[  228.191752][T16886] swapcached 491520
[  228.198573][T16886] pgpgin 13879
[  228.203657][T16886] pgpgout 13876
[  228.210568][T16886] pgfault 25573
[  228.216079][T16886] pgmajfault 18
[  228.219634][T16886] inactive_anon 0
[  228.224230][T16886] active_anon 12288
[  228.228479][T16886] inactive_file 0
[  228.232734][T16886] active_file 0
[  228.236259][T16886] unevictable 0
[  228.240294][T16886] hierarchical_memory_limit 314572800
[  228.248238][T16886] hierarchical_memsw_limit 9223372036854771712
[  228.258230][T16886] total_cache 0
[  228.262464][T16886] total_rss 0
[  228.266031][T16886] total_shmem 0
[  228.269698][T16886] total_mapped_file 0
[  228.280318][T16886] total_dirty 0
[  228.284058][T16886] total_writeback 0
[  228.287940][T16886] total_workingset_refault_anon 42
[  228.293201][T16886] total_workingset_refault_file 0
[  228.298490][T16886] total_swap 307200
[  228.303175][T16886] total_swapcached 491520
[  228.307929][T16886] total_pgpgin 13879
[  228.312548][T16886] total_pgpgout 13876
[  228.317552][T16886] total_pgfault 25573
[  228.327043][T16886] total_pgmajfault 18
[  228.337736][T16886] total_inactive_anon 0
[  228.342096][T16886] total_active_anon 12288
[  228.346655][T16886] total_inactive_file 0
[  228.351159][T16886] total_active_file 0
[  228.368593][T16886] total_unevictable 0
[  228.379086][T16886] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz8,task_memcg=/syz8,task=syz.8.5649,pid=16885,uid=0
[  228.401535][T16886] Memory cgroup out of memory: Killed process 16885 (syz.8.5649) total-vm:96084kB, anon-rss:1232kB, file-rss:22372kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  229.415940][T17015] netlink: 'syz.4.5702': attribute type 2 has an invalid length.
[  229.661820][T17029] loop6: detected capacity change from 0 to 512
[  229.695651][T17029] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.723455][T17029] ext4 filesystem being mounted at /172/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  229.816674][T14685] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.836508][T17043] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5712'.
[  229.891318][T17047] netlink: 36 bytes leftover after parsing attributes in process `syz.6.5714'.
[  229.934864][T17049] bond1: entered promiscuous mode
[  229.950938][T17049] bond1: entered allmulticast mode
[  229.967083][T17049] 8021q: adding VLAN 0 to HW filter on device bond1
[  230.088334][T17059] loop6: detected capacity change from 0 to 512
[  230.110740][T17059] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  230.130639][T17059] EXT4-fs (loop6): orphan cleanup on readonly fs
[  230.152268][T17059] Quota error (device loop6): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6).
[  230.240223][T17064] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.251322][T17059] EXT4-fs warning (device loop6): ext4_enable_quotas:7269: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  230.310666][T17059] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  230.328222][T17059] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.5720: bg 0: block 15: invalid block bitmap
[  230.357394][T17064] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.360617][T17059] loop6: lost filesystem error report for type 5 error -117
[  230.389581][T17059] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6679: Corrupt filesystem
[  230.397077][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  230.397101][    C0] EXT4-fs (loop6): initial error at time 2000000079: ext4_validate_block_bitmap:432
[  230.397128][    C0] EXT4-fs (loop6): last error at time 2000000079: ext4_validate_block_bitmap:432
[  230.440594][T17059] loop6: lost filesystem error report for type 5 error -117
[  230.443380][T17059] EXT4-fs warning (device loop6): ext4_evict_inode:195: inode #16: comm syz.6.5720: data will be lost
[  230.477821][T17064] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.524800][T17059] EXT4-fs (loop6): 1 truncate cleaned up
[  230.539214][T17059] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  230.565415][T17064] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.647891][  T357] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.666966][  T357] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.690356][  T357] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.718137][  T357] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  230.793292][T17077] netlink: 'syz.4.5727': attribute type 10 has an invalid length.
[  230.815979][T17077] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  230.825238][T17073] sctp: [Deprecated]: syz.7.5726 (pid 17073) Use of struct sctp_assoc_value in delayed_ack socket option.
[  230.825238][T17073] Use struct sctp_sack_info instead
[  230.844355][T17077] netdevsim netdevsim4 netdevsim2: entered promiscuous mode
[  230.953530][   T28] audit: type=1400 audit(2000000080.030:1321): avc:  denied  { getopt } for  pid=17082 comm="syz.4.5730" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  231.088917][T14685] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.286358][T17101] loop6: detected capacity change from 0 to 8192
[  231.672810][T17125] loop7: detected capacity change from 0 to 1024
[  231.684181][T17125] EXT4-fs: Ignoring removed mblk_io_submit option
[  231.713867][T17125] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  231.734922][T17125] ext4 filesystem being mounted at /94/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  231.757295][T17125] EXT4-fs error (device loop7): ext4_map_blocks:833: inode #15: block 8: comm syz.7.5747: lblock 8 mapped to illegal pblock 8 (length 8)
[  231.773256][T17125] EXT4-fs error (device loop7): ext4_ext_remove_space:2969: inode #15: comm syz.7.5747: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  231.810544][  T357] EXT4-fs error (device loop7): ext4_map_blocks:833: inode #15: comm kworker/u8:7: lblock 0 mapped to illegal pblock 0 (length 1)
[  231.850730][  T357] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  231.889996][  T357] EXT4-fs (loop7): This should not happen!! Data will be lost
[  231.889996][  T357] 
[  231.921725][T15229] EXT4-fs warning (device loop7): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost
[  231.955500][T15229] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  232.298957][T17152] 9pnet: p9_errstr2errno: server reported unknown error 
[  232.392764][T17161] loop8: detected capacity change from 0 to 512
[  232.482715][T17161] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.504504][T17162] bond1: entered promiscuous mode
[  232.537347][T17162] bond1: entered allmulticast mode
[  232.555933][T17161] ext4 filesystem being mounted at /94/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  232.577066][T17162] 8021q: adding VLAN 0 to HW filter on device bond1
[  232.606222][T17161] EXT4-fs (loop8): shut down requested (0)
[  232.666356][T17171] xfrm0 speed is unknown, defaulting to 1000
[  232.682929][T15313] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.766287][T17179] netlink: 24 bytes leftover after parsing attributes in process `syz.8.5766'.
[  233.017006][T17191] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5772'.
[  233.073516][T17191] netlink: 'syz.7.5772': attribute type 1 has an invalid length.
[  233.102969][T17191] netlink: 'syz.7.5772': attribute type 2 has an invalid length.
[  233.385534][T17211] netlink: 44 bytes leftover after parsing attributes in process `syz.8.5782'.
[  233.493529][T17219] loop7: detected capacity change from 0 to 512
[  233.531238][T17219] EXT4-fs (loop7): 1 truncate cleaned up
[  233.593875][T17219] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.751655][T15229] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.947023][T17256] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5803'.
[  233.974167][T17256] netlink: 'syz.7.5803': attribute type 30 has an invalid length.
[  233.990718][T17256] netlink: 'syz.7.5803': attribute type 29 has an invalid length.
[  234.009494][T17256] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5803'.
[  234.163293][T17275] loop8: detected capacity change from 0 to 1024
[  234.180667][T17275] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  234.242725][T17275] EXT4-fs (loop8): stripe (4) is not aligned with cluster size (4096), stripe is disabled
[  234.260859][T17270] bond1: entered promiscuous mode
[  234.268249][T17275] EXT4-fs error (device loop8): ext4_map_blocks:791: inode #3: block 2: comm syz.8.5810: lblock 2 mapped to illegal pblock 2 (length 1)
[  234.270361][T17270] bond1: entered allmulticast mode
[  234.288714][T17270] 8021q: adding VLAN 0 to HW filter on device bond1
[  234.301140][T17275] loop8: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  234.301279][T17275] Quota error (device loop8): qtree_write_dquot: dquota write failed
[  234.310504][    C0] EXT4-fs (loop8): error count since last fsck: 1
[  234.310539][    C0] EXT4-fs (loop8): initial error at time 2000000083: ext4_map_blocks:791: inode 3: block 2
[  234.310596][    C0] EXT4-fs (loop8): last error at time 2000000083: ext4_map_blocks:791: inode 3: block 2
[  234.345657][T17275] EXT4-fs error (device loop8): ext4_map_blocks:791: inode #3: block 48: comm syz.8.5810: lblock 0 mapped to illegal pblock 48 (length 1)
[  234.361629][T17275] loop8: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  234.363046][T17275] Quota error (device loop8): v2_write_file_info: Can't write info structure
[  234.381138][T17275] EXT4-fs error (device loop8): ext4_acquire_dquot:7034: comm syz.8.5810: Failed to acquire dquot type 0
[  234.392545][T17275] loop8: lost filesystem error report for type 5 error -117
[  234.392964][T17275] EXT4-fs error (device loop8) in ext4_reserve_inode_write:6383: Corrupt filesystem
[  234.399167][ T1040] kernel write not supported for file bpf-prog (pid: 1040 comm: kworker/1:2)
[  234.400900][T17275] loop8: lost filesystem error report for type 5 error -117
[  234.438340][T17275] EXT4-fs error (device loop8): ext4_evict_inode:267: inode #11: comm syz.8.5810: mark_inode_dirty error
[  234.458001][T17275] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  234.458339][T17275] EXT4-fs warning (device loop8): ext4_evict_inode:270: couldn't mark inode dirty (err -117)
[  234.483168][T17275] EXT4-fs (loop8): 1 orphan inode deleted
[  234.500642][T16011] EXT4-fs error (device loop8): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:21: lblock 1 mapped to illegal pblock 1 (length 1)
[  234.515722][T17275] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  234.531656][T16011] loop8: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  234.531839][T16011] Quota error (device loop8): remove_tree: Can't read quota data block 1
[  234.561359][T16011] EXT4-fs error (device loop8): ext4_release_dquot:7070: comm kworker/u8:21: Failed to release dquot type 0
[  234.597313][T17275] EXT4-fs error (device loop8): ext4_map_blocks:791: inode #2: block 16: comm syz.8.5810: lblock 262144 mapped to illegal pblock 16 (length 8)
[  234.688069][T15313] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.711176][T15313] EXT4-fs error (device loop8): __ext4_get_inode_loc:4885: comm syz-executor: Invalid inode table block 1 in block_group 0
[  234.767266][T15313] loop8: lost filesystem error report for type 5 error -117
[  234.767420][T15313] EXT4-fs error (device loop8) in ext4_reserve_inode_write:6383: Corrupt filesystem
[  234.807274][T15313] loop8: lost filesystem error report for type 5 error -117
[  234.807388][T15313] EXT4-fs error (device loop8): ext4_quota_off:7318: inode #3: comm syz-executor: mark_inode_dirty error
[  234.835314][T15313] loop8: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  234.958064][T17317] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5826'.
[  235.030300][T17322] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5826'.
[  235.131167][   T28] audit: type=1400 audit(2000000084.210:1322): avc:  denied  { read } for  pid=17335 comm="syz.4.5835" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  235.183129][   T28] audit: type=1400 audit(2000000084.260:1323): avc:  denied  { write } for  pid=17335 comm="syz.4.5835" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  235.340008][T17359] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5845'.
[  235.359924][T17359] netlink: 'syz.5.5845': attribute type 5 has an invalid length.
[  235.369062][T17336] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  235.380938][T17336] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  235.389558][T17359] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5845'.
[  235.403527][T17359] geneve2: entered promiscuous mode
[  235.408831][T17359] geneve2: entered allmulticast mode
[  235.416135][T15985] netdevsim netdevsim5 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[  235.425892][T15985] netdevsim netdevsim5 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[  235.434998][T15985] netdevsim netdevsim5 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[  235.444410][T15985] netdevsim netdevsim5 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[  235.540861][T17366] netlink: 2164 bytes leftover after parsing attributes in process `syz.6.5849'.
[  235.643544][T17380] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5854'.
[  236.448782][   T28] audit: type=1400 audit(2000000085.520:1324): avc:  denied  { connect } for  pid=17418 comm="syz.8.5871" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  236.615657][T17440] netlink: 'syz.5.5881': attribute type 2 has an invalid length.
[  236.625041][T17440] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5881'.
[  236.963781][T17463] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5891'.
[  237.266127][T17484] loop6: detected capacity change from 0 to 512
[  237.616912][T17506] bond2: entered promiscuous mode
[  237.640666][T17506] bond2: entered allmulticast mode
[  237.649632][T17506] 8021q: adding VLAN 0 to HW filter on device bond2
[  237.945142][T17537] loop8: detected capacity change from 0 to 1024
[  237.962369][T17537] EXT4-fs: Ignoring removed bh option
[  237.995472][T17537] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.504607][T15313] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.518027][T17540] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.587631][T15985] Bluetooth: hci0: Frame reassembly failed (-84)
[  238.606950][T17540] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.697321][T17540] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.760850][T17555] bond1: entered promiscuous mode
[  238.766353][T17555] bond1: entered allmulticast mode
[  238.773217][T17555] 8021q: adding VLAN 0 to HW filter on device bond1
[  238.795996][T17540] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.898816][  T334] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  238.932203][T17560] netlink: 'syz.7.5932': attribute type 4 has an invalid length.
[  238.932516][  T334] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.966591][  T334] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.982905][  T334] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  239.044474][T16011] Bluetooth: hci1: Frame reassembly failed (-84)
[  239.362278][T17599] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5952'.
[  239.422509][T17604] xfrm0 speed is unknown, defaulting to 1000
[  239.912991][T17626] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5963'.
[  240.056661][T17630] __nla_validate_parse: 1 callbacks suppressed
[  240.056688][T17630] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5964'.
[  240.097765][T17634] netlink: 15999 bytes leftover after parsing attributes in process `syz.7.5967'.
[  240.507268][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811aa4b000: rx timeout, send abort
[  240.515749][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811aa4b000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  240.582484][T17650] netlink: 'syz.4.5974': attribute type 21 has an invalid length.
[  240.640560][ T3523] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  240.641308][T17571] Bluetooth: hci0: command 0x1003 tx timeout
[  240.694783][T17658] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5978'.
[  240.751383][T17666] GUP no longer grows the stack in syz.8.5982 (17666): 200000004000-20000000a000 (200000002000)
[  240.762470][T17666] CPU: 0 UID: 0 PID: 17666 Comm: syz.8.5982 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  240.762511][T17666] Tainted: [W]=WARN
[  240.762521][T17666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  240.762538][T17666] Call Trace:
[  240.762547][T17666]  <TASK>
[  240.762558][T17666]  __dump_stack+0x1d/0x30
[  240.762606][T17666]  dump_stack_lvl+0x95/0xd0
[  240.762633][T17666]  dump_stack+0x15/0x1b
[  240.762656][T17666]  __get_user_pages+0x1b26/0x1f10
[  240.762689][T17666]  ? __rcu_read_unlock+0x4e/0x70
[  240.762796][T17666]  get_user_pages_remote+0x1d5/0x6b0
[  240.762835][T17666]  __access_remote_vm+0x154/0x4c0
[  240.762912][T17666]  access_remote_vm+0x32/0x40
[  240.762952][T17666]  proc_pid_cmdline_read+0x32b/0x6b0
[  240.762984][T17666]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  240.763012][T17666]  vfs_readv+0x432/0x6e0
[  240.763056][T17666]  __x64_sys_preadv+0xfd/0x1c0
[  240.763091][T17666]  x64_sys_call+0x2915/0x3020
[  240.763140][T17666]  do_syscall_64+0x12c/0x3b0
[  240.763253][T17666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.763282][T17666] RIP: 0033:0x7fe25154cdd9
[  240.763302][T17666] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  240.763322][T17666] RSP: 002b:00007fe24ff9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  240.763342][T17666] RAX: ffffffffffffffda RBX: 00007fe2517c5fa0 RCX: 00007fe25154cdd9
[  240.763357][T17666] RDX: 0000000000000001 RSI: 0000200000000680 RDI: 0000000000000003
[  240.763405][T17666] RBP: 00007fe2515e2d69 R08: 00000000fffffff9 R09: 0000000000000000
[  240.763420][T17666] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000000
[  240.763433][T17666] R13: 00007fe2517c6038 R14: 00007fe2517c5fa0 R15: 00007ffced732758
[  240.763457][T17666]  </TASK>
[  240.997666][T17669] bond2: entered promiscuous mode
[  241.003541][T17669] bond2: entered allmulticast mode
[  241.010946][T17669] 8021q: adding VLAN 0 to HW filter on device bond2
[  241.046613][T17676] ALSA: seq fatal error: cannot create timer (-22)
[  241.071466][T17678] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5987'.
[  241.120935][T13496] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  241.127188][ T3523] Bluetooth: hci1: command 0x1003 tx timeout
[  241.176339][   T28] audit: type=1400 audit(2000000090.250:1325): avc:  denied  { create } for  pid=17687 comm="syz.5.5993" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=chr_file permissive=1
[  241.257924][T17703] ALSA: seq fatal error: cannot create timer (-22)
[  241.278024][T17705] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=17705 comm=syz.4.5999
[  241.596650][   T28] audit: type=1326 audit(2000000090.670:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17727 comm="syz.5.6009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  241.661821][   T28] audit: type=1326 audit(2000000090.670:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17727 comm="syz.5.6009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  241.722729][   T28] audit: type=1326 audit(2000000090.700:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17727 comm="syz.5.6009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  241.774162][   T28] audit: type=1326 audit(2000000090.700:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17727 comm="syz.5.6009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  241.799229][   T28] audit: type=1326 audit(2000000090.700:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17727 comm="syz.5.6009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  241.866864][   T28] audit: type=1326 audit(2000000090.700:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17727 comm="syz.5.6009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  241.926656][   T28] audit: type=1326 audit(2000000090.700:1332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17727 comm="syz.5.6009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  241.950973][T17734] xfrm0 speed is unknown, defaulting to 1000
[  242.008903][   T28] audit: type=1326 audit(2000000090.700:1333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17727 comm="syz.5.6009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  242.076996][   T28] audit: type=1326 audit(2000000090.870:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17727 comm="syz.5.6009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fa0aac5cdd9 code=0x7ffc0000
[  242.265232][T17749] sctp: [Deprecated]: syz.6.6018 (pid 17749) Use of struct sctp_assoc_value in delayed_ack socket option.
[  242.265232][T17749] Use struct sctp_sack_info instead
[  242.401771][T17709] syz.4.6001 (17709) used greatest stack depth: 8568 bytes left
[  242.614530][T17765] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6026'.
[  242.698920][T17772] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=17772 comm=syz.6.6029
[  242.795641][T17778] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6032'.
[  243.317169][T17817] netlink: 165 bytes leftover after parsing attributes in process `syz.4.6049'.
[  243.772875][T17853] geneve2: entered promiscuous mode
[  243.779013][T17853] geneve2: entered allmulticast mode
[  244.024589][    T9] IPVS: starting estimator thread 0...
[  244.054308][T17889] loop7: detected capacity change from 0 to 512
[  244.130670][T17887] IPVS: using max 1872 ests per chain, 93600 per kthread
[  244.197251][T17902] loop7: detected capacity change from 0 to 512
[  244.206333][T17902] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  244.219330][T17902] EXT4-fs (loop7): 1 orphan inode deleted
[  244.230590][T17902] EXT4-fs (loop7): 1 truncate cleaned up
[  244.252019][T17902] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.390503][T15229] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.444901][T17914] loop7: detected capacity change from 0 to 512
[  244.464631][T17914] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  244.489313][T17914] EXT4-fs (loop7): orphan cleanup on readonly fs
[  244.505445][T17914] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4222: comm syz.7.6093: Allocating blocks 41-42 which overlap fs metadata
[  244.520718][T17914] loop7: lost filesystem error report for type 5 error -117
[  244.521079][T17914] EXT4-fs error (device loop7): ext4_acquire_dquot:7034: comm syz.7.6093: Failed to acquire dquot type 0
[  244.540543][    C0] EXT4-fs (loop7): error count since last fsck: 1
[  244.540570][    C0] EXT4-fs (loop7): initial error at time 2000000093: ext4_mb_mark_diskspace_used:4222
[  244.540601][    C0] EXT4-fs (loop7): last error at time 2000000093: ext4_mb_mark_diskspace_used:4222
[  244.567229][T17914] loop7: lost filesystem error report for type 5 error -117
[  244.568666][T17914] EXT4-fs error (device loop7): mb_free_blocks:2049: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  244.591281][T17914] EXT4-fs error (device loop7): ext4_do_update_inode:5690: inode #12: comm syz.7.6093: corrupted inode contents
[  244.603561][T17914] loop7: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  244.605012][T17914] EXT4-fs error (device loop7): ext4_dirty_inode:6587: inode #12: comm syz.7.6093: mark_inode_dirty error
[  244.626726][T17914] loop7: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  244.627889][T17914] EXT4-fs error (device loop7): ext4_do_update_inode:5690: inode #12: comm syz.7.6093: corrupted inode contents
[  244.650263][T17914] loop7: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  244.650659][T17914] EXT4-fs error (device loop7): __ext4_ext_dirty:207: inode #12: comm syz.7.6093: mark_inode_dirty error
[  244.671546][T17914] loop7: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  244.673256][T17914] EXT4-fs error (device loop7): ext4_do_update_inode:5690: inode #12: comm syz.7.6093: corrupted inode contents
[  244.708997][T17914] loop7: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  244.709187][T17914] EXT4-fs error (device loop7) in ext4_orphan_del:303: Corrupt filesystem
[  244.742409][T17914] loop7: lost filesystem error report for type 5 error -117
[  244.742560][T17914] EXT4-fs error (device loop7): ext4_do_update_inode:5690: inode #12: comm syz.7.6093: corrupted inode contents
[  244.782844][T17914] loop7: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  244.782994][T17914] EXT4-fs error (device loop7): ext4_truncate:4690: inode #12: comm syz.7.6093: mark_inode_dirty error
[  244.840499][T17914] loop7: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117
[  244.840633][T17914] EXT4-fs error (device loop7) in ext4_process_orphan:345: Corrupt filesystem
[  244.846688][T17921] netlink: 104 bytes leftover after parsing attributes in process `syz.5.6096'.
[  244.860654][T17914] loop7: lost filesystem error report for type 5 error -117
[  244.869672][T17914] EXT4-fs (loop7): 1 truncate cleaned up
[  244.895890][T17914] EXT4-fs (loop7): pa ffff888107a04770: logic 1, phys. 41, len 23
[  244.904489][T17914] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5459: group 0, free 22, pa_free 23
[  244.919893][T17914] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  244.956710][T15229] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.330798][T17951] loop7: detected capacity change from 0 to 128
[  245.347731][T17927] syz.5.6100 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  245.362113][T17951] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  245.398600][T17951] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  245.429827][T17927] CPU: 1 UID: 0 PID: 17927 Comm: syz.5.6100 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  245.429984][T17927] Tainted: [W]=WARN
[  245.429991][T17927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  245.430003][T17927] Call Trace:
[  245.430010][T17927]  <TASK>
[  245.430040][T17927]  __dump_stack+0x1d/0x30
[  245.430070][T17927]  dump_stack_lvl+0x95/0xd0
[  245.430126][T17927]  dump_stack+0x15/0x1b
[  245.430144][T17927]  dump_header+0x80/0x240
[  245.430177][T17927]  oom_kill_process+0x295/0x350
[  245.430215][T17927]  out_of_memory+0x97d/0xb80
[  245.430246][T17927]  try_charge_memcg+0x62f/0xa10
[  245.430283][T17927]  charge_memcg+0x6d/0x120
[  245.430318][T17927]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  245.430350][T17927]  __swap_cache_prepare_and_add+0x69/0x4a0
[  245.430388][T17927]  ? alloc_pages_mpol+0x217/0x260
[  245.430417][T17927]  swap_cache_alloc_folio+0xa2/0x120
[  245.430448][T17927]  swap_cluster_readahead+0x25f/0x3c0
[  245.430490][T17927]  swapin_readahead+0xde/0x840
[  245.430589][T17927]  ? _raw_spin_unlock+0x9/0x30
[  245.430622][T17927]  ? swap_put_entries_cluster+0x46c/0x490
[  245.430654][T17927]  ? __rcu_read_unlock+0x4e/0x70
[  245.430727][T17927]  ? swap_cache_get_folio+0x1e0/0x1f0
[  245.430794][T17927]  do_swap_page+0x31e/0x2180
[  245.430820][T17927]  ? css_rstat_updated+0xbb/0x280
[  245.430932][T17927]  ? __rcu_read_lock+0x36/0x50
[  245.431000][T17927]  ? pte_offset_map_rw_nolock+0x19e/0x200
[  245.431023][T17927]  handle_mm_fault+0xb2e/0x2e70
[  245.431094][T17927]  ? vma_start_read+0x1c7/0x2c0
[  245.431189][T17927]  do_user_addr_fault+0x62f/0x1050
[  245.431219][T17927]  ? fpregs_assert_state_consistent+0xb3/0xe0
[  245.431248][T17927]  ? arch_exit_to_user_mode_prepare+0x26/0x60
[  245.431384][T17927]  ? trace_page_fault_user+0x1f/0xa0
[  245.431417][T17927]  exc_page_fault+0x62/0xa0
[  245.431478][T17927]  asm_exc_page_fault+0x26/0x30
[  245.431529][T17927] RIP: 0033:0x7fa0aac17f38
[  245.431545][T17927] Code: 75 40 a8 10 75 3c 41 51 4c 8d 9b 08 03 00 00 49 89 c9 48 89 f1 41 50 48 8b 74 24 20 49 89 d0 48 89 fa 4c 89 df e8 a8 56 00 00 <8b> 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00
[  245.431562][T17927] RSP: 002b:00007ffc5a64dc60 EFLAGS: 00010246
[  245.431578][T17927] RAX: 0000000000000000 RBX: 0000555574393500 RCX: 00007fa0aac1d60e
[  245.431594][T17927] RDX: 00007ffc5a64dcb0 RSI: 0000000000000000 RDI: 0000000000000000
[  245.431610][T17927] RBP: 00007fa0aaed7da0 R08: 0000000000000000 R09: 0000000000000000
[  245.431631][T17927] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000003c035
[  245.431647][T17927] R13: 00007fa0aaed609c R14: 000000000003bd65 R15: 00007fa0aaed6090
[  245.431671][T17927]  </TASK>
[  245.798133][T17927] memory: usage 217016kB, limit 307200kB, failcnt 179
[  245.864505][T17927] memory+swap: usage 205608kB, limit 9007199254740988kB, failcnt 0
[  245.923651][T17927] kmem: usage 192404kB, limit 9007199254740988kB, failcnt 0
[  245.943106][T17964] sctp: [Deprecated]: syz.8.6114 (pid 17964) Use of int in maxseg socket option.
[  245.943106][T17964] Use struct sctp_assoc_value instead
[  245.976673][T17927] Memory cgroup stats for /syz5:
[  245.976882][T17927] cache 0
[  246.020550][T17927] rss 0
[  246.028337][T17927] shmem 0
[  246.038407][T17927] mapped_file 0
[  246.060534][T17927] dirty 0
[  246.072650][T17927] writeback 0
[  246.087798][T17927] workingset_refault_anon 1564
[  246.106484][T17927] workingset_refault_file 0
[  246.121287][T17927] swap 704512
[  246.132558][T17927] swapcached 8929280
[  246.156493][T17927] pgpgin 115793
[  246.173346][T17927] pgpgout 115792
[  246.187842][T17927] pgfault 112062
[  246.199321][T17927] pgmajfault 9
[  246.210583][T17927] inactive_anon 0
[  246.219722][T17927] active_anon 4096
[  246.223816][T17927] inactive_file 0
[  246.227577][T17927] active_file 0
[  246.231382][T17927] unevictable 0
[  246.235044][T17927] hierarchical_memory_limit 314572800
[  246.260158][T17927] hierarchical_memsw_limit 9223372036854771712
[  246.274151][T17927] total_cache 0
[  246.281663][T17927] total_rss 0
[  246.292584][T17927] total_shmem 0
[  246.303612][T17927] total_mapped_file 0
[  246.320610][T17927] total_dirty 0
[  246.332668][T17927] total_writeback 0
[  246.347349][T17927] total_workingset_refault_anon 1564
[  246.379206][T17927] total_workingset_refault_file 0
[  246.404432][T17927] total_swap 704512
[  246.424042][T17927] total_swapcached 8929280
[  246.458056][T17927] total_pgpgin 115793
[  246.479138][T17927] total_pgpgout 115792
[  246.489761][T17983] syzkaller1: entered promiscuous mode
[  246.504231][T17927] total_pgfault 112062
[  246.510991][T17983] syzkaller1: entered allmulticast mode
[  246.527671][T17927] total_pgmajfault 9
[  246.553909][T17927] total_inactive_anon 0
[  246.575877][T17927] total_active_anon 4096
[  246.580498][T17993] loop6: detected capacity change from 0 to 256
[  246.586871][T17927] total_inactive_file 0
[  246.586886][T17927] total_active_file 0
[  246.586896][T17927] total_unevictable 0
[  246.586906][T17927] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.4414,pid=13458,uid=0
[  246.587029][T17927] Memory cgroup out of memory: Killed process 13458 (syz.5.4414) total-vm:94036kB, anon-rss:1244kB, file-rss:20804kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  246.767653][T18007] netlink: 'syz.7.6135': attribute type 3 has an invalid length.
[  246.786479][T18007] netlink: 92 bytes leftover after parsing attributes in process `syz.7.6135'.
[  246.968613][T18024] loop7: detected capacity change from 0 to 128
[  246.996123][T18024] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[  247.087652][T18039] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6150'.
[  247.148364][T18039] bond3: Invalid ad_actor_system MAC address.
[  247.190555][T18039] bond3: option ad_actor_system: invalid value (4294967295)
[  247.205427][T18039] bond3 (unregistering): Released all slaves
[  247.312794][T18053] loop8: detected capacity change from 0 to 4096
[  247.333629][T18053] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  247.386747][T18060] loop7: detected capacity change from 0 to 8192
[  247.424736][T18062] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  247.434753][T15313] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.732274][T18087] loop7: detected capacity change from 0 to 1024
[  247.754666][T18087] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  247.785828][T18087] ext4 filesystem being mounted at /178/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.803698][T18087] EXT4-fs error (device loop7): ext4_map_blocks:833: inode #15: block 3: comm syz.7.6171: lblock 3 mapped to illegal pblock 3 (length 3)
[  247.818694][T18087] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  247.831357][T18087] EXT4-fs (loop7): This should not happen!! Data will be lost
[  247.831357][T18087] 
[  247.844420][T18087] EXT4-fs error (device loop7): ext4_map_blocks:833: inode #15: comm syz.7.6171: lblock 0 mapped to illegal pblock 0 (length 1)
[  247.860173][T18087] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  247.881866][T18087] EXT4-fs (loop7): This should not happen!! Data will be lost
[  247.881866][T18087] 
[  248.039783][T16011] EXT4-fs error (device loop7): ext4_map_blocks:833: inode #15: block 8: comm kworker/u8:21: lblock 8 mapped to illegal pblock 8 (length 8)
[  248.089753][T16011] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  248.123830][T16011] EXT4-fs (loop7): This should not happen!! Data will be lost
[  248.123830][T16011] 
[  248.153440][T15229] EXT4-fs warning (device loop7): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost
[  248.185521][T15229] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  248.333210][T18110] loop8: detected capacity change from 0 to 512
[  248.367929][T18110] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  248.414865][T18110] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem
[  248.435691][T18110] EXT4-fs (loop8): warning: mounting unchecked fs, running e2fsck is recommended
[  248.445396][T18110] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e02c, mo2=0006]
[  248.453758][T18110] System zones: 0-2, 18-18, 34-35
[  248.465904][T18110] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  248.484171][T18110] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.6181: bg 0: block 353: padding at end of block bitmap is not set
[  248.520633][T18110] EXT4-fs (loop8): Remounting filesystem read-only
[  248.595844][T15313] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.579766][   T28] kauditd_printk_skb: 21 callbacks suppressed
[  249.579827][   T28] audit: type=1326 audit(2000000099.653:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18196 comm="syz.6.6214" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa28dc2cdd9 code=0x0
[  249.846405][   T28] audit: type=1326 audit(2000000099.923:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.7.6227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e9a69cdd9 code=0x7ffc0000
[  249.876353][   T28] audit: type=1326 audit(2000000099.923:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.7.6227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e9a69cdd9 code=0x7ffc0000
[  249.900832][   T28] audit: type=1326 audit(2000000099.923:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.7.6227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e9a69cdd9 code=0x7ffc0000
[  249.929876][   T28] audit: type=1326 audit(2000000099.923:1358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.7.6227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7f9e9a69cdd9 code=0x7ffc0000
[  249.963623][   T28] audit: type=1326 audit(2000000099.923:1359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.7.6227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e9a69cdd9 code=0x7ffc0000
[  249.991556][   T28] audit: type=1326 audit(2000000099.923:1360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.7.6227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9e9a69cdd9 code=0x7ffc0000
[  250.017469][   T28] audit: type=1326 audit(2000000099.923:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.7.6227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e9a69cdd9 code=0x7ffc0000
[  250.041999][   T28] audit: type=1326 audit(2000000099.983:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18228 comm="syz.7.6227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f9e9a69cdd9 code=0x7ffc0000
[  250.082202][T18241] xfrm0 speed is unknown, defaulting to 1000
[  250.194058][T18248] set_capacity_and_notify: 1 callbacks suppressed
[  250.194159][T18248] loop8: detected capacity change from 0 to 2048
[  250.328746][   T28] audit: type=1400 audit(2000000100.403:1363): avc:  denied  { name_bind } for  pid=18240 comm="syz.7.6232" src=65530 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=rawip_socket permissive=1
[  250.378363][T18255] loop8: detected capacity change from 0 to 256
[  250.487681][T18258] loop6: detected capacity change from 0 to 1024
[  250.513665][T18258] EXT4-fs: Ignoring removed orlov option
[  250.533479][T18258] EXT4-fs (loop6): stripe (7) is not aligned with cluster size (4096), stripe is disabled
[  250.550813][T18258] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  250.562150][T18258] EXT4-fs (loop6): orphan cleanup on readonly fs
[  250.570152][T18258] EXT4-fs error (device loop6): __ext4_get_inode_loc:4885: comm syz.6.6239: Invalid inode table block 0 in block_group 0
[  250.583557][T18258] loop6: lost filesystem error report for type 5 error -117
[  250.584939][T18258] EXT4-fs (loop6): Remounting filesystem read-only
[  250.592464][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  250.592503][    C0] EXT4-fs (loop6): initial error at time 2000000100: __ext4_get_inode_loc:4885
[  250.592582][    C0] EXT4-fs (loop6): last error at time 2000000100: __ext4_get_inode_loc:4885
[  250.626135][T18258] EXT4-fs (loop6): 1 truncate cleaned up
[  250.636554][T18258] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  250.674363][T18272] loop8: detected capacity change from 0 to 128
[  250.706472][T18258] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.736593][T18272] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006)
[  250.750670][T18272] FAT-fs (loop8): Filesystem has been set read-only
[  250.761965][T18272] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006)
[  250.772673][T18272] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006)
[  250.784032][T18272] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006)
[  250.802031][T18272] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006)
[  250.815593][T18272] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006)
[  250.833126][T18272] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006)
[  250.845201][T18272] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006)
[  250.856828][T18272] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006)
[  250.867637][T18270] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006)
[  251.006150][T18292] loop7: detected capacity change from 0 to 256
[  251.150300][T18299] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6264'.
[  251.338281][T18299] team0: Port device team_slave_0 removed
[  251.358776][T18307] bridge0: port 3(vlan2) entered blocking state
[  251.370713][T18307] bridge0: port 3(vlan2) entered disabled state
[  251.380923][T18307] vlan2: entered allmulticast mode
[  251.398561][T18307] dummy0: entered allmulticast mode
[  251.408123][T18307] vlan2: entered promiscuous mode
[  251.417690][T18307] dummy0: entered promiscuous mode
[  251.438321][T18309] loop6: detected capacity change from 0 to 128
[  251.471369][T18309] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  251.491047][T18309] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  251.879771][T18352] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6280'.
[  251.982428][T18360] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6283'.
[  251.992328][T18360] netlink: 34959 bytes leftover after parsing attributes in process `syz.8.6283'.
[  252.123772][T18370] loop8: detected capacity change from 0 to 512
[  252.132474][T18370] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  252.141022][T18370] EXT4-fs error (device loop8): ext4_get_journal_inode:5896: comm syz.8.6287: inode #1792: comm syz.8.6287: iget: illegal inode #
[  252.154767][T18370] loop8: lost filesystem error report for type 5 error -117
[  252.154953][T18370] EXT4-fs (loop8): Remounting filesystem read-only
[  252.162458][    C0] EXT4-fs (loop8): error count since last fsck: 1
[  252.162484][    C0] EXT4-fs (loop8): initial error at time 2000000102: ext4_get_journal_inode:5896
[  252.162517][    C0] EXT4-fs (loop8): last error at time 2000000102: ext4_get_journal_inode:5896
[  252.194464][T18370] EXT4-fs (loop8): no journal found
[  252.199713][T18370] EXT4-fs (loop8): can't get journal size
[  252.205888][T18370] EXT4-fs (loop8): warning: mounting fs with errors, running e2fsck is recommended
[  252.215790][T18370] EXT4-fs (loop8): Errors on filesystem, clearing orphan list.
[  252.223894][T18370] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.241172][T18370] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000.
[  252.258901][T15313] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.376675][T18382] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6292'.
[  252.415348][T18382] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6292'.
[  252.516474][T18396] netlink: 20 bytes leftover after parsing attributes in process `syz.8.6299'.
[  253.055806][T18424] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  253.086078][T18424] infiniband syz!: RDMA CMA: cma_listen_on_dev, error -98
[  253.159790][T18433] loop8: detected capacity change from 0 to 512
[  253.199610][T18433] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  253.232891][  T357] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  253.470045][T18468] netlink: 'syz.8.6327': attribute type 64 has an invalid length.
[  253.481568][T18468] bridge0: port 3(team0) entered disabled state
[  253.488754][T18468] bridge0: port 2(bridge_slave_1) entered disabled state
[  253.496435][T18468] bridge0: port 1(bridge_slave_0) entered disabled state
[  253.521815][T18473] netlink: 'syz.8.6327': attribute type 64 has an invalid length.
[  253.627868][T18484] sock: sock_set_timeout: `syz.5.6333' (pid 18484) tries to set negative timeout
[  253.686945][T18481] loop8: detected capacity change from 0 to 8192
[  253.716446][T18481] bio_check_eod: 103 callbacks suppressed
[  253.716463][T18481] syz.8.6332: attempt to access beyond end of device
[  253.716463][T18481] loop8: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  253.756832][T18481] Buffer I/O error on dev loop8, logical block 57847, async page read
[  253.771086][T18481] syz.8.6332: attempt to access beyond end of device
[  253.771086][T18481] loop8: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  253.862542][T18481] Buffer I/O error on dev loop8, logical block 57847, async page read
[  253.871440][T18481] syz.8.6332: attempt to access beyond end of device
[  253.871440][T18481] loop8: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  253.885547][T18481] Buffer I/O error on dev loop8, logical block 57847, async page read
[  253.894658][T18481] syz.8.6332: attempt to access beyond end of device
[  253.894658][T18481] loop8: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  253.909266][T18481] Buffer I/O error on dev loop8, logical block 57847, async page read
[  253.917862][T18481] syz.8.6332: attempt to access beyond end of device
[  253.917862][T18481] loop8: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  253.952047][T18501] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  253.955565][T18481] Buffer I/O error on dev loop8, logical block 57847, async page read
[  253.969527][T18481] syz.8.6332: attempt to access beyond end of device
[  253.969527][T18481] loop8: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  253.970891][T18501] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  253.986223][T18481] Buffer I/O error on dev loop8, logical block 57847, async page read
[  254.001849][T18481] syz.8.6332: attempt to access beyond end of device
[  254.001849][T18481] loop8: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  254.017567][T18481] Buffer I/O error on dev loop8, logical block 57847, async page read
[  254.033113][T18501] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6339'.
[  254.049964][T18481] syz.8.6332: attempt to access beyond end of device
[  254.049964][T18481] loop8: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  254.076651][T18481] Buffer I/O error on dev loop8, logical block 57847, async page read
[  254.101361][T18481] syz.8.6332: attempt to access beyond end of device
[  254.101361][T18481] loop8: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  254.150389][T18481] Buffer I/O error on dev loop8, logical block 57847, async page read
[  254.170192][T18481] syz.8.6332: attempt to access beyond end of device
[  254.170192][T18481] loop8: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  254.206520][T18481] Buffer I/O error on dev loop8, logical block 57847, async page read
[  254.287238][T18513] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6354'.
[  254.469262][    C1] ==================================================================
[  254.478033][    C1] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv
[  254.485381][    C1] 
[  254.487782][    C1] read-write to 0xffff88812630df80 of 4 bytes by interrupt on cpu 0:
[  254.495880][    C1]  can_can_gw_rcv+0x863/0x870
[  254.500617][    C1]  can_rcv_filter+0xc3/0x480
[  254.505597][    C1]  can_receive+0x13e/0x190
[  254.510047][    C1]  can_rcv+0x17d/0x1f0
[  254.514153][    C1]  process_backlog+0x363/0x670
[  254.518973][    C1]  __napi_poll+0x61/0x300
[  254.523423][    C1]  net_rx_action+0x452/0x930
[  254.528058][    C1]  handle_softirqs+0xb9/0x280
[  254.532773][    C1]  do_softirq+0x45/0x60
[  254.537047][    C1]  __local_bh_enable_ip+0x70/0x80
[  254.542208][    C1]  _raw_spin_unlock_bh+0x18/0x20
[  254.547195][    C1]  nsim_dev_trap_report_work+0x52b/0x630
[  254.552951][    C1]  process_scheduled_works+0x4f0/0x9c0
[  254.558461][    C1]  worker_thread+0x58a/0x780
[  254.563191][    C1]  kthread+0x22a/0x280
[  254.567309][    C1]  ret_from_fork+0x146/0x330
[  254.571963][    C1]  ret_from_fork_asm+0x1a/0x30
[  254.576868][    C1] 
[  254.579235][    C1] read-write to 0xffff88812630df80 of 4 bytes by interrupt on cpu 1:
[  254.587329][    C1]  can_can_gw_rcv+0x863/0x870
[  254.592066][    C1]  can_rcv_filter+0xc3/0x480
[  254.596803][    C1]  can_receive+0x13e/0x190
[  254.601260][    C1]  can_rcv+0x17d/0x1f0
[  254.605362][    C1]  process_backlog+0x363/0x670
[  254.610185][    C1]  __napi_poll+0x61/0x300
[  254.614718][    C1]  net_rx_action+0x452/0x930
[  254.619433][    C1]  handle_softirqs+0xb9/0x280
[  254.624149][    C1]  do_softirq+0x45/0x60
[  254.628355][    C1]  __local_bh_enable_ip+0x70/0x80
[  254.633427][    C1]  __alloc_skb+0x658/0x690
[  254.637914][    C1]  nsim_dev_trap_report_work+0x18a/0x630
[  254.643601][    C1]  process_scheduled_works+0x4f0/0x9c0
[  254.649227][    C1]  worker_thread+0x58a/0x780
[  254.653866][    C1]  kthread+0x22a/0x280
[  254.658033][    C1]  ret_from_fork+0x146/0x330
[  254.662671][    C1]  ret_from_fork_asm+0x1a/0x30
[  254.667490][    C1] 
[  254.669958][    C1] value changed: 0x000017c3 -> 0x000017c4
[  254.675784][    C1] 
[  254.678129][    C1] Reported by Kernel Concurrency Sanitizer on:
[  254.684303][    C1] CPU: 1 UID: 0 PID: 357 Comm: kworker/u8:7 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  254.695288][    C1] Tainted: [W]=WARN
[  254.699129][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  254.709214][    C1] Workqueue: events_unbound nsim_dev_trap_report_work
[  254.716124][    C1] ==================================================================
[  255.074970][T18519] loop6: detected capacity change from 0 to 256
[  255.320043][T18519] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  257.502545][    C0] ==================================================================
[  257.510713][    C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv
[  257.518027][    C0] 
[  257.520385][    C0] read-write to 0xffff88812630df80 of 4 bytes by interrupt on cpu 1:
[  257.528565][    C0]  can_can_gw_rcv+0x863/0x870
[  257.533318][    C0]  can_rcv_filter+0xc3/0x480
[  257.537961][    C0]  can_receive+0x13e/0x190
[  257.542423][    C0]  can_rcv+0x17d/0x1f0
[  257.546529][    C0]  process_backlog+0x363/0x670
[  257.551351][    C0]  __napi_poll+0x61/0x300
[  257.555720][    C0]  net_rx_action+0x452/0x930
[  257.560357][    C0]  handle_softirqs+0xb9/0x280
[  257.565103][    C0]  do_softirq+0x45/0x60
[  257.569282][    C0]  __local_bh_enable_ip+0x70/0x80
[  257.574336][    C0]  _raw_spin_unlock_bh+0x18/0x20
[  257.579316][    C0]  nsim_dev_trap_report_work+0x52b/0x630
[  257.584999][    C0]  process_scheduled_works+0x4f0/0x9c0
[  257.590498][    C0]  worker_thread+0x58a/0x780
[  257.595128][    C0]  kthread+0x22a/0x280
[  257.599317][    C0]  ret_from_fork+0x146/0x330
[  257.603959][    C0]  ret_from_fork_asm+0x1a/0x30
[  257.608774][    C0] 
[  257.611120][    C0] read-write to 0xffff88812630df80 of 4 bytes by interrupt on cpu 0:
[  257.619211][    C0]  can_can_gw_rcv+0x863/0x870
[  257.623943][    C0]  can_rcv_filter+0xc3/0x480
[  257.628566][    C0]  can_receive+0x13e/0x190
[  257.633020][    C0]  can_rcv+0x17d/0x1f0
[  257.637156][    C0]  process_backlog+0x363/0x670
[  257.642050][    C0]  __napi_poll+0x61/0x300
[  257.646507][    C0]  net_rx_action+0x452/0x930
[  257.651142][    C0]  handle_softirqs+0xb9/0x280
[  257.655850][    C0]  do_softirq+0x45/0x60
[  257.660212][    C0]  __local_bh_enable_ip+0x70/0x80
[  257.665356][    C0]  __alloc_skb+0x658/0x690
[  257.669836][    C0]  nsim_dev_trap_report_work+0x18a/0x630
[  257.675517][    C0]  process_scheduled_works+0x4f0/0x9c0
[  257.681065][    C0]  worker_thread+0x58a/0x780
[  257.685796][    C0]  kthread+0x22a/0x280
[  257.689890][    C0]  ret_from_fork+0x146/0x330
[  257.694707][    C0]  ret_from_fork_asm+0x1a/0x30
[  257.699610][    C0] 
[  257.701970][    C0] value changed: 0x00042d86 -> 0x00042d87
[  257.707744][    C0] 
[  257.710095][    C0] Reported by Kernel Concurrency Sanitizer on:
[  257.716272][    C0] CPU: 0 UID: 0 PID: 334 Comm: kworker/u8:6 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  257.727254][    C0] Tainted: [W]=WARN
[  257.731082][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  257.741181][    C0] Workqueue: events_unbound nsim_dev_trap_report_work
[  257.748000][    C0] ==================================================================
[  260.513926][    C1] ==================================================================
[  260.522097][    C1] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv
[  260.529437][    C1] 
[  260.531785][    C1] read-write to 0xffff88812630df80 of 4 bytes by interrupt on cpu 0:
[  260.539969][    C1]  can_can_gw_rcv+0x863/0x870
[  260.544722][    C1]  can_rcv_filter+0xc3/0x480
[  260.549353][    C1]  can_receive+0x13e/0x190
[  260.553798][    C1]  can_rcv+0x17d/0x1f0
[  260.557904][    C1]  process_backlog+0x363/0x670
[  260.562708][    C1]  __napi_poll+0x61/0x300
[  260.567067][    C1]  net_rx_action+0x452/0x930
[  260.571709][    C1]  handle_softirqs+0xb9/0x280
[  260.576408][    C1]  do_softirq+0x45/0x60
[  260.580597][    C1]  __local_bh_enable_ip+0x70/0x80
[  260.585661][    C1]  wg_packet_tx_worker+0x21f/0x330
[  260.590922][    C1]  process_scheduled_works+0x4f0/0x9c0
[  260.596439][    C1]  worker_thread+0x58a/0x780
[  260.601157][    C1]  kthread+0x22a/0x280
[  260.605259][    C1]  ret_from_fork+0x146/0x330
[  260.609897][    C1]  ret_from_fork_asm+0x1a/0x30
[  260.614701][    C1] 
[  260.617074][    C1] read-write to 0xffff88812630df80 of 4 bytes by interrupt on cpu 1:
[  260.625161][    C1]  can_can_gw_rcv+0x863/0x870
[  260.629920][    C1]  can_rcv_filter+0xc3/0x480
[  260.634541][    C1]  can_receive+0x13e/0x190
[  260.639112][    C1]  can_rcv+0x17d/0x1f0
[  260.643313][    C1]  process_backlog+0x363/0x670
[  260.648122][    C1]  __napi_poll+0x61/0x300
[  260.652574][    C1]  net_rx_action+0x452/0x930
[  260.657228][    C1]  handle_softirqs+0xb9/0x280
[  260.661975][    C1]  do_softirq+0x45/0x60
[  260.666174][    C1]  __local_bh_enable_ip+0x70/0x80
[  260.671236][    C1]  _raw_spin_unlock_bh+0x18/0x20
[  260.676218][    C1]  neigh_periodic_work+0x5e9/0x690
[  260.681456][    C1]  process_scheduled_works+0x4f0/0x9c0
[  260.686962][    C1]  worker_thread+0x58a/0x780
[  260.691643][    C1]  kthread+0x22a/0x280
[  260.695738][    C1]  ret_from_fork+0x146/0x330
[  260.700371][    C1]  ret_from_fork_asm+0x1a/0x30
[  260.705270][    C1] 
[  260.707619][    C1] value changed: 0x00087b2a -> 0x00087b2b
[  260.713393][    C1] 
[  260.715741][    C1] Reported by Kernel Concurrency Sanitizer on:
[  260.722006][    C1] CPU: 1 UID: 0 PID: 3375 Comm: kworker/1:4 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  260.732990][    C1] Tainted: [W]=WARN
[  260.736820][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  260.746920][    C1] Workqueue: events_power_efficient neigh_periodic_work
[  260.753909][    C1] ==================================================================
[  263.526735][    C0] ==================================================================
[  263.535039][    C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv
[  263.542413][    C0] 
[  263.544756][    C0] read-write to 0xffff88812630df80 of 4 bytes by interrupt on cpu 1:
[  263.552953][    C0]  can_can_gw_rcv+0x863/0x870
[  263.557676][    C0]  can_rcv_filter+0xc3/0x480
[  263.562295][    C0]  can_receive+0x13e/0x190
[  263.566749][    C0]  can_rcv+0x17d/0x1f0
[  263.570853][    C0]  process_backlog+0x363/0x670
[  263.575701][    C0]  __napi_poll+0x61/0x300
[  263.580100][    C0]  net_rx_action+0x452/0x930
[  263.584731][    C0]  handle_softirqs+0xb9/0x280
[  263.589444][    C0]  do_softirq+0x45/0x60
[  263.593637][    C0]  __local_bh_enable_ip+0x70/0x80
[  263.598703][    C0]  kernel_fpu_end+0x6c/0x80
[  263.603350][    C0]  blake2s_compress+0x67/0x1740
[  263.608264][    C0]  blake2s_final+0x6a/0xa0
[  263.612991][    C0]  handshake_init+0x15a/0x190
[  263.617737][    C0]  wg_noise_handshake_create_initiation+0xe2/0x610
[  263.624295][    C0]  wg_packet_handshake_send_worker+0xb2/0x160
[  263.630410][    C0]  process_scheduled_works+0x4f0/0x9c0
[  263.636094][    C0]  worker_thread+0x58a/0x780
[  263.640741][    C0]  kthread+0x22a/0x280
[  263.644846][    C0]  ret_from_fork+0x146/0x330
[  263.650034][    C0]  ret_from_fork_asm+0x1a/0x30
[  263.654939][    C0] 
[  263.657310][    C0] read-write to 0xffff88812630df80 of 4 bytes by interrupt on cpu 0:
[  263.665491][    C0]  can_can_gw_rcv+0x863/0x870
[  263.670539][    C0]  can_rcv_filter+0xc3/0x480
[  263.675173][    C0]  can_receive+0x13e/0x190
[  263.679654][    C0]  can_rcv+0x17d/0x1f0
[  263.683782][    C0]  process_backlog+0x363/0x670
[  263.688817][    C0]  __napi_poll+0x61/0x300
[  263.693217][    C0]  net_rx_action+0x452/0x930
[  263.698033][    C0]  handle_softirqs+0xb9/0x280
[  263.702757][    C0]  do_softirq+0x45/0x60
[  263.706999][    C0]  __local_bh_enable_ip+0x70/0x80
[  263.712058][    C0]  __alloc_skb+0x658/0x690
[  263.716712][    C0]  nsim_dev_trap_report_work+0x18a/0x630
[  263.722414][    C0]  process_scheduled_works+0x4f0/0x9c0
[  263.727926][    C0]  worker_thread+0x58a/0x780
[  263.732570][    C0]  kthread+0x22a/0x280
[  263.736781][    C0]  ret_from_fork+0x146/0x330
[  263.741423][    C0]  ret_from_fork_asm+0x1a/0x30
[  263.746248][    C0] 
[  263.748630][    C0] value changed: 0x000cce66 -> 0x000cce67
[  263.754477][    C0] 
[  263.756827][    C0] Reported by Kernel Concurrency Sanitizer on:
[  263.763030][    C0] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  263.773939][    C0] Tainted: [W]=WARN
[  263.777772][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  263.787952][    C0] Workqueue: events_unbound nsim_dev_trap_report_work
[  263.794782][    C0] ==================================================================