last executing test programs:

1m30.997807762s ago: executing program 1 (id=1871):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x1000000009, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0xef, 0x3d27}, 0x400, 0x32, 0x43a1bd76, 0x7, 0x203, 0x6, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x3)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$SEG6(&(0x7f0000004040), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(r2, &(0x7f0000004140)={0x0, 0x0, &(0x7f0000004100)={&(0x7f0000004080)={0x34, r3, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x2}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x7}, @SEG6_ATTR_SECRET={0x8, 0x4, [0x1]}]}, 0xfd10}, 0x1, 0x0, 0x0, 0x4845}, 0x20000080)

1m30.918975702s ago: executing program 1 (id=1875):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = memfd_create(&(0x7f00000002c0)='\x103q}2\x9a\xce\xaf\x03\x86\xe7\xc0\x14\x8f^\xd5\xfd\xa9\r\xac7A\x94\xeb\xcd\t\x00\x90k\xd6\x05\r\x84\x87\x1c\b\x8c`\xea\x13A\x90m\xb6&\xd0\x9daA\xc5\xb8_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2_\xdb\xc0\x8b\x19\x17\xb7Rvd\xcb:\b\xeeC0\xa3\xa6\xcf\x00\x00\x06\x00h&+\t\x98\'\xfd|\x11\x99\xa2*6{\xd2C>2\x0e\"\xbc\xda\xee\xb0\xd8\xbf\xaf)\xf58c\x189K\x82\xd1(\xceY*\xcb\x9b\xbdn\x8e\x98m\x10L\xec\xfdWF\x7fj\x19\xb8<\xd2\x9d\xf0\xe9Qy\xe32\xed\x16f\xfe&\x1a\xdb\xeb\xad\xaaE\b\xa9\xa9s\xc4d\xd4\x03\xf1\xb7xO\x99\x804m[Ai\x13\x02\xf0\x84c2s\xd5P\t`\x9b\x12&\x8cx\x8eg\x9d\xe6g\x00', 0x3)
ftruncate(r2, 0x80079a0)
splice(r2, 0x0, r1, 0x0, 0x800000020200, 0x4)
close_range(r0, 0xffffffffffffffff, 0x0)

1m30.893161426s ago: executing program 1 (id=1877):
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x86)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1m30.875029799s ago: executing program 1 (id=1879):
symlink(&(0x7f0000000300)='./file0/../file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
setxattr$trusted_overlay_opaque(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x1)

1m30.855642531s ago: executing program 1 (id=1881):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0xfffffffffffffeec)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000e80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

1m30.836809594s ago: executing program 1 (id=1882):
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0), 0x0, 0x0, 0x0, 0x2804c044}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1, 0x0, 0x2000000004}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x10000, 0x4}, 0x50)

1m15.809805676s ago: executing program 32 (id=1882):
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0), 0x0, 0x0, 0x0, 0x2804c044}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1, 0x0, 0x2000000004}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x10000, 0x4}, 0x50)

1m4.381147347s ago: executing program 3 (id=2646):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x3, 0x8, @loopback, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000000)=@gcm_256={{0x303}, "41328ac34a4ad2ba", "e8582491a0c4050000000000f6542a9b6800000000000000003967d2daa45b4e", "61241765", "89b06aff130000fd"}, 0x38)
sendmsg$inet(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x80c0)

1m4.36059168s ago: executing program 3 (id=2648):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x4}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
removexattr(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000200)=@known='trusted.overlay.upper\x00')

1m4.321858355s ago: executing program 3 (id=2652):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000000)={0x0, 0x0})
socket$igmp(0x2, 0x3, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)

1m3.755480231s ago: executing program 3 (id=2676):
prctl$PR_SET_NAME(0xf, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000500), 0x0, 0x3, 0x805)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x1, 0x571, &(0x7f0000000780)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000540)={0x1, &(0x7f0000000300)=[{0x200000000006, 0x3, 0x2, 0x7ffc0002}]})
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)

1m3.405774428s ago: executing program 3 (id=2686):
bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000fdffffde18000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r0}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='percpu_create_chunk\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)

1m3.385095181s ago: executing program 3 (id=2687):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x5, 0xa, 0x10002}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c0000001800dd8d000000000000000002"], 0x3c}}, 0x8000)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m3.218412773s ago: executing program 33 (id=2687):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x5, 0xa, 0x10002}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c0000001800dd8d000000000000000002"], 0x3c}}, 0x8000)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m1.844655837s ago: executing program 0 (id=2708):
r0 = socket$inet6(0xa, 0x2, 0x0)
close(0x3)
socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
sendmsg$inet6(r0, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e21, 0x80000, @dev={0xfe, 0x80, '\x00', 0x13}, 0xfffffffe}, 0x1c, 0x0, 0x0, &(0x7f0000000200)=[@hopopts_2292={{0x18, 0x29, 0x36, {0x73}}}, @dstopts_2292={{0x18, 0x29, 0x4, {0x62}}}], 0x30}, 0x40c0)

1m1.826147029s ago: executing program 0 (id=2709):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
tgkill(r1, r1, 0x21)
wait4(r1, 0x0, 0x40000000, 0x0)

1m1.761945148s ago: executing program 0 (id=2710):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000380)='memory.stat\x00', 0x275a, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0}, 0x18)
read(r1, &(0x7f0000000040)=""/190, 0xbe)

1m1.720966364s ago: executing program 0 (id=2712):
faccessat(0xffffffffffffffff, 0x0, 0x5)
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)
write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bind$unix(r1, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e)

1m1.682963979s ago: executing program 0 (id=2714):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x10, 0x3}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1, 0xa}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8090}, 0x44)

1m1.59892446s ago: executing program 0 (id=2715):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
setresuid(0x0, 0xee00, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200003, 0x200003, 0x802, 0x4, 0x7})
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000840)='./file0\x00', &(0x7f0000000700), 0x18)
utimensat(r0, 0x0, &(0x7f0000000880)={{0x0, 0xea60}, {0x0, 0x3ffffffe}}, 0x0)

1m1.572980923s ago: executing program 34 (id=2715):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
setresuid(0x0, 0xee00, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200003, 0x200003, 0x802, 0x4, 0x7})
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000840)='./file0\x00', &(0x7f0000000700), 0x18)
utimensat(r0, 0x0, &(0x7f0000000880)={{0x0, 0xea60}, {0x0, 0x3ffffffe}}, 0x0)

1.554822252s ago: executing program 4 (id=4687):
r0 = socket$unix(0x1, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="00000000000057b6b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0xfecc)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0/file0\x00'}, 0x6e)

1.511386387s ago: executing program 4 (id=4690):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0xff, 0x0, 0x400}]})
socket$inet6_tcp(0xa, 0x1, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

1.111769241s ago: executing program 2 (id=4705):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xfffff274}]}}}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "f70200", 0x14, 0x6, 0xff, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x11, 0x0, 0x3}}}}}}}, 0x0)

1.109707351s ago: executing program 6 (id=4716):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000000000800000000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f00000008c0)=[@cswp={0x58, 0x114, 0x7, {{0xb, 0xd0a}, &(0x7f0000000280)=0x8, 0x0, 0x0, 0x56ab, 0x0, 0x4, 0x20, 0x694}}], 0x58, 0x20040000}, 0x0)

1.076870075s ago: executing program 2 (id=4706):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x9, 0x1, 0x7fe2, 0x1, 0x10}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x403, 0x2, 0x0, {0x0, 0x0, 0x4, 0x0, 0x300}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_VLAN_DEFAULT_PVID={0x6, 0x27, 0xe}, @IFLA_BR_AGEING_TIME={0x8, 0x4, 0x101}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x8044)

1.025825722s ago: executing program 6 (id=4708):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000ac0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000004000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x800000, &(0x7f0000000080)={[{@quota}, {@nogrpid}, {@nombcache}, {@nobh}]}, 0x1, 0x519, &(0x7f0000000780)="$eJzs3c9vI1cdAPDveGPHyaZNWnoABO3SFha0WifxtlHVA5QTQqgSokeQtiHxRlHsOIqd0oQ9bM9ckajECY78AZx74s4NblzKAYkfEWiDxMFoxuPUm7WzUdK1s/HnI41m3rxZf99ba96Lv4nnBTCxbkTEg4goRcT7ETGfn0/yLd7pbul1Dw+LcXR4fy2JTue9fyZZ/cPD+2vR929S1/PXLEfEj74X8dPk8bit/YOt1Xq9tpuXF9uNncXW/sHtzcbqRm2jtl2triyvLL11583qOXq1PfDsK41SfvTVT//44Fs/T5s1l5/p78d5JN0uDzofEcXjOKmpiPjBRYJdItfy/pTG3RDOpRARL0bEq9n9Px/Xsndz6KUAwBXQ6cxHZ76/DABcdYUsB5YUKvkH/LkoFCqVbg7vpZgt1Jut9q17zb3t9W6ubCGKhXub9dpSnitciGKSlpez48/K1W55ule+ExEvRMQvp2eycmWtWV8f5w8+ADDBrp+Y//8z3Z3/AYArrjzuBgAAI2f+B4DJY/4HgMlj/geAydOd/2dOnu6Moy0AwGic+vl/6POAAIBnmfw/AEyUH777brp1jvLnX69/sL+31fzg9nqttVVp7K1V1pq7O5WNZnMje2ZP40mvV282d5bfiL0PF76902ovtvYP7jaae9vtu9lzve/WitlVAx+VDQCMyAuvfPLnJJ2R357Jtuhby6E41pYBT5tFPWByXRt3A4Cx8dc9MLku8BlfegCuiAFL9D6iPPALQp2O7wjBs+vml+T/YVL15f/9FTBMGPl/mFzy/zC5Op3krGv+x1kvBAAuNzl+YMjv/1/M97/Lfznwk/WTV3z8NFsFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAl1tv/d9Kvhb4XBQKlUrEcxGxEMXk3ma9thQRz0fEn6aL02l5ecxtBgAuqvC3JF//6+b863OPVL18/fiwFBE/+/V7v/pwtd3eLUWUkn9N9863P87PV0ffegDgdOln/d48ne2X43j534eH99d62yjb9PfvRkS5G//osBRHx/GnYirbl7NGzv47yctdSV/u4iIefBQRXxzU/yTmshxId+XTk/HT2M+NNH7hkfiFrK67T/8vvvA5tAUmzSfp+PPOoPuvEDey/eD7v5yNUBeXj3/pS60dZWPgZ/F749+1IePfjbPGeOMP3+8ezTxe91HEl6cierGP+safXvxkSPzXzxj/L195+dVhdZ3fRNyMwfH7Yy22GzuLrf2D25uN1Y3aRm27Wl1ZXll6686b1cUsR704fDb4x9u3nh9Wl/Z/dkj88hP6//Uz9v+3/3v/x187Jf43XxsUvxAvnRI/nRO/ccb4q7O/Lw+rS+OvD+n/k97/W2eM/+lfDx5bNhwAGJ/W/sHWar1e233WD+byVMZlaY+Dp3GQvsOXoBkDD74zqlilGFz1i9e6t8CJqk7nXLGGjRifR9YNuAyOb/qI+O+4GwMAAAAAAAAAAAAAAAw0im8sjbuPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXF3/DwAA//+D1cwm")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x18)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv2(r2, &(0x7f0000001540)=[{0x0}, {&(0x7f0000001380)=""/129, 0x7ffff000}], 0x2, 0x0, 0x0, 0x0)

1.025153612s ago: executing program 2 (id=4709):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x3, @local}, 0x10)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000), 0x20000328)
setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000000)=0xffffffff, 0x4)

805.579382ms ago: executing program 6 (id=4711):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000000440)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x2}, 0x8)
close(r1)

764.691387ms ago: executing program 7 (id=4712):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x7, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x80000}, 0x18)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000080)={0x24, r2, 0x62c21a4ade68aba1, 0x70bd23, 0xfffffffd, {{0x32}, {@val={0x8, 0x117, 0x59}, @val={0x8}, @void}}}, 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x0)

693.751277ms ago: executing program 7 (id=4713):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000500)='kfree\x00', r1, 0x0, 0xffff}, 0x18)
r2 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r2, 0x29, 0x22, &(0x7f0000000080)={{0xa, 0x4e23, 0x101, @loopback, 0xa3c}, {0xa, 0xfffe, 0xb2000000, @dev={0xfe, 0x80, '\x00', 0x91}, 0x6}, 0x1000, {[0x9, 0x2, 0xffff6710, 0xfffffcf9, 0x0, 0x40001, 0x2, 0x5]}}, 0x5c)

693.466957ms ago: executing program 6 (id=4714):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=@newlink={0x44, 0x10, 0x503, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x50307}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x0)

669.13403ms ago: executing program 7 (id=4717):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x18)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r2, 0x2007ffc)
sendfile(r2, r2, 0x0, 0x800000009)

635.512685ms ago: executing program 4 (id=4718):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="18010000fcff0000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x404}, 0x18)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'bond0\x00', <r3=>0x0})
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="5c0100001000130720000000fcdbdf25e0000001000000000000000000000000ff020000000000000000000000000001000400004e2100020000000021000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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", @ANYRES32=r3], 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x10)

543.104767ms ago: executing program 6 (id=4719):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)={0x114, 0x29, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x103, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac0b}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @loopback}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8", @typed={0x8, 0x145, 0x0, 0x0, @ipv4=@remote}]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)

451.753949ms ago: executing program 5 (id=4720):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000e868495fb58d00b6ad1f50ad32d6ad25dfd73a015e0ca6a0f68a7d007dc6751dfb265a0e3ccae669e173a64bc1cfd514600650a58f145ff1205fc9ddaa275e687d452d64e7cc957d77578f4c25235138d5521f9453559c35da860e8efbc64e57cbb7aee976f2b54421eed73d5661cfeecf9c66c54c3b3ffe1b4ce25d7c983cd44c05bd0a48dfe3e26e7a23129d6606ed28a69989d552af6d9a9df2c3af36e0360070011bbecc2f4a3799af2551ce935b0f327cb3f011a7d06602e2fd5234712596b696418f163d1a1a83109753f54b21cd027edd68149ee99eebc6f7d6dd4aed4af7588c8e1b44ccb19e810879b81a7000000e7ffffff00000000d7900a820b63278f4e9a217b98ef7042ad2a928903000000cbe43a1ed25268816b00000000000009d27d753a30a147b24a48435bd8a568669596e9e0867958e1dd7a0defb6670c06054002238260000000000040587c1ed797aa21a38e1e389f640a0b8b0000000000a835ad0f61ba739cd0c31b05c00fba8a4aee676d7caa2e53b91a68ff2e60da7b01a2e5785a238afa4aba70c08b0d71b6f72d6a8d87fb08533d97ad96d3943c4cc8306dac433a5cdf78b04963d679d5a5d07e618a1ef9057fec00f9e93021f5a8d30e716de8cde9c6000000000c3b64d10f0939b42b33ab2a8717096c58bb3bb1d457d8bb96870f5a7e2ba31fd69bb80235d957eaa9a40b764e5381ffa604aaafb76a980e72b408f686b185736693089213b4e140f8f38e5589663115093889deb646122a5dc5a9e5ba4d37749a36b880110e2bf524b79bc91105f1d3f7d0de694a9417d68694f17ba5e27ea1cec518b93fadcfe0de010ae9be3273ff73c34b5695080a35bfa5c69e3b533e1b939c81b3beda037b7191cb0000000000000000000010e5d683b8938db5c305cf7e6e62a6890ba9e1f4ee64f8202b59de5036569febfaa95f4633db108b2f786333ec7bacc927f4a1785165b5d2444b4c022bb5cff472e6a0c8ee9d6d8df83b704669147b732ac508c9b9f0ca0a1ce45319d43d4643eb285835daf2065b57bebd61ad6671296c27253a5f9688d57c91ccd40ffe2dbc5dd1613a2e6f5b363cc8d205ce6ef3c3c6ded7dd3dfdb39008d8997213f68cdc971c1d6fdacb7729a5560880a77525e9cfb94ef1735dfe74e6b948697f7e3580436b532a82e315d56b17a5dba98436cc24babaae409f0aab0b40af116001bc85492455956e853ead08b5793d4ecf72378a3dfd9cc837b1c66212d9a2be8fd6341c2f837c7fe09924a51ec42912856cce3d3b2d092c80813aad03e1e63a655f4138730f302df339f30a4fbd453c9a0fba381d071ad7cb80a52bec572e29b0b9b55c235806b97e166609f8083ce776075c"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r1, 0x0)
r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x9, 0x7, 0x0, 0x0, 0x0, 0x40008, 0x518, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x3, 0xed}, 0x4c58, 0xd, 0x0, 0x0, 0x8, 0x4ac, 0xb, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x11, r2, 0xc266c000)

451.249269ms ago: executing program 4 (id=4721):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x209, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800000, 0x3fff8000}, 0x404, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket(0x10, 0x3, 0x0)
connect$netlink(r2, &(0x7f0000000300)=@proc={0x10, 0x0, 0x25dfdffc}, 0xc)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x18, 0x31, 0x829, 0xffffffff, 0x0, {0x0, 0x0, 0x2}, [{0x4}]}, 0x18}}, 0x0)

317.292257ms ago: executing program 5 (id=4722):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x9, 0x1, 0x7fe2, 0x1, 0x10}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x403, 0x2, 0x0, {0x0, 0x0, 0x4, 0x0, 0x300}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_VLAN_DEFAULT_PVID={0x6, 0x27, 0xe}, @IFLA_BR_AGEING_TIME={0x8, 0x4, 0x101}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x8044)

317.096337ms ago: executing program 2 (id=4723):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x5, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000180)={[{@dioread_lock}, {@resgid}, {@mblk_io_submit}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resgid}, {@nobarrier}, {@grpid}, {@jqfmt_vfsv0}]}, 0xfc, 0x58f, &(0x7f0000002d00)="$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")
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x14c)
fallocate(r1, 0x0, 0x9, 0x2000403)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

316.940657ms ago: executing program 6 (id=4724):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x94)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000f00)='kfree\x00', r2, 0x0, 0x4}, 0x18)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x38, 0x1403, 0x1, 0x70bd2d, 0x25dffbfb, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000840}, 0x4000)

314.797818ms ago: executing program 7 (id=4725):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}, {0xf}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@newchain={0x24, 0x64, 0x1, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x10, 0xf}, {0xfff2, 0x9}, {0x5, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x44851}, 0x20040054)

228.316519ms ago: executing program 4 (id=4726):
socket$packet(0x11, 0xa, 0x300)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x100, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendto$inet(r0, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast1}, 0x10)
sendto$inet(r0, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)

207.441042ms ago: executing program 5 (id=4727):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r2, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x3f, 0x2, 0x10, {0x2, 0x4e22, @empty}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000ac0)="ee", 0xfffffe5e}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0x8000)

135.622471ms ago: executing program 4 (id=4728):
r0 = creat(&(0x7f0000000200)='./file1\x00', 0x12e)
close(r0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000003000)=@file={0x1}, 0xc)
listen(r1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040), 0x200000, &(0x7f00000010c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

135.172661ms ago: executing program 5 (id=4729):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000b8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = epoll_create(0x3ff)
r2 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0xa0000000, 0x1b54c8})

134.143671ms ago: executing program 2 (id=4730):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mq_open(&(0x7f0000000000)='..\x00', 0x0, 0x0, 0x0)
open(&(0x7f0000000740)='./bus\x00', 0x143c62, 0x0)
mount(&(0x7f0000000000), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')

29.701785ms ago: executing program 7 (id=4731):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setrlimit(0x7, &(0x7f0000000400))
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r1=>0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x4e24, 0x8000100, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x986}]}, &(0x7f0000000080)=0x10)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f00000000c0)={0x1}, 0x8)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7a, &(0x7f0000000340)={r1, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)

29.358236ms ago: executing program 5 (id=4732):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000580)='kmem_cache_free\x00', r1, 0x0, 0x7fff}, 0x18)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
faccessat2(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x3, 0x0)

20.784737ms ago: executing program 2 (id=4733):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x1003, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000001880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000200000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1)

16.624857ms ago: executing program 7 (id=4734):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
capset(&(0x7f00000000c0)={0x19980330}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x2, 0x7})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000200)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f0000002800)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4000804)

0s ago: executing program 5 (id=4735):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="10000000040000000800000005"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f0000000240)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0x5ee, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x53f, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

kernel console output (not intermixed with test programs):

slave left bond - VLAN blocking is removed
[  110.774845][T10201] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  110.791086][ T3479] lo speed is unknown, defaulting to 1000
[  110.791091][ T1039] lo speed is unknown, defaulting to 1000
[  110.791110][ T1039] syz0: Port: 1 Link DOWN
[  111.112959][T10230] __nla_validate_parse: 1 callbacks suppressed
[  111.112975][T10230] netlink: 36 bytes leftover after parsing attributes in process `+}[@'.
[  111.215280][T10239] loop7: detected capacity change from 0 to 512
[  111.223157][T10239] FAT-fs (loop7): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000101)
[  111.673675][T10295] lo speed is unknown, defaulting to 1000
[  111.708405][T10295] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  111.717076][T10295] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  111.811829][T10313] netlink: 'syz.6.2950': attribute type 1 has an invalid length.
[  111.927373][T10334] pim6reg: entered allmulticast mode
[  111.935527][T10336] hub 2-0:1.0: USB hub found
[  111.940365][T10336] hub 2-0:1.0: 8 ports detected
[  111.951880][T10334] pim6reg: left allmulticast mode
[  112.007283][T10344] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2966'.
[  112.016461][T10344] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2966'.
[  112.080590][T10354] loop6: detected capacity change from 0 to 128
[  112.090656][T10354] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  112.108306][T10354] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.206282][ T9655] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  112.287697][T10382] loop5: detected capacity change from 0 to 1024
[  112.294977][T10383] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2986'.
[  112.304290][T10383] netlink: 32 bytes leftover after parsing attributes in process `syz.7.2986'.
[  112.313496][T10382] EXT4-fs: Ignoring removed nobh option
[  112.314159][T10382] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  112.316490][T10382] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #11: comm syz.5.2984: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  112.320197][T10383] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2986'.
[  112.333564][T10382] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.2984: couldn't read orphan inode 11 (err -117)
[  112.371864][T10382] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.385392][T10383] netlink: 32 bytes leftover after parsing attributes in process `syz.7.2986'.
[  112.399209][T10382] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.2984: Invalid block bitmap block 0 in block_group 0
[  112.415586][T10382] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.2984: Failed to acquire dquot type 0
[  112.456906][T10396] loop7: detected capacity change from 0 to 1024
[  112.456942][ T8628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.464054][T10396] EXT4-fs: Ignoring removed nobh option
[  112.484693][T10396] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.656088][T10413] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2996'.
[  112.685625][T10413] vlan2: entered promiscuous mode
[  112.690776][T10413] gretap0: entered promiscuous mode
[  112.805435][T10396] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4215: comm syz.7.2990: Allocating blocks 497-513 which overlap fs metadata
[  112.820618][T10396] EXT4-fs (loop7): pa ffff8881076a6700: logic 256, phys. 385, len 8
[  112.822050][T10422] lo speed is unknown, defaulting to 1000
[  112.830790][T10396] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5466: group 0, free 0, pa_free 1
[  112.984585][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.210170][T10459] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3018'.
[  113.266199][T10465] can0: slcan on ptm0.
[  113.344498][T10473] sctp: [Deprecated]: syz.7.3023 (pid 10473) Use of int in max_burst socket option deprecated.
[  113.344498][T10473] Use struct sctp_assoc_value instead
[  113.347364][T10465] can0 (unregistered): slcan off ptm0.
[  113.372202][T10465] Falling back ldisc for ptm0.
[  113.449388][T10478] syzkaller1: entered promiscuous mode
[  113.456032][T10478] syzkaller1: entered allmulticast mode
[  113.519246][T10491] lo speed is unknown, defaulting to 1000
[  113.536114][T10497] netlink: 14 bytes leftover after parsing attributes in process `wÞ£ÿ'.
[  113.558294][T10498] bridge0: port 3(gretap0) entered blocking state
[  113.564918][T10498] bridge0: port 3(gretap0) entered disabled state
[  113.578048][T10498] gretap0: entered allmulticast mode
[  113.584457][T10501] netlink: 'syz.7.3035': attribute type 27 has an invalid length.
[  113.595121][T10498] gretap0: entered promiscuous mode
[  113.607053][T10498] bridge0: port 3(gretap0) entered blocking state
[  113.613682][T10498] bridge0: port 3(gretap0) entered forwarding state
[  113.629361][T10503] loop5: detected capacity change from 0 to 2048
[  113.655655][T10503] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.669232][T10504] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  113.718350][T10508] loop2: detected capacity change from 0 to 256
[  113.726141][ T8628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.736049][   T29] kauditd_printk_skb: 232 callbacks suppressed
[  113.736065][   T29] audit: type=1400 audit(1768475844.921:5318): avc:  denied  { remount } for  pid=10507 comm="syz.2.3037" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  113.781066][   T29] audit: type=1400 audit(1768475844.951:5319): avc:  denied  { read } for  pid=10509 comm="syz.6.3038" name="file0" dev="tmpfs" ino=281 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  113.803662][   T29] audit: type=1400 audit(1768475844.951:5320): avc:  denied  { open } for  pid=10509 comm="syz.6.3038" path="/51/file0" dev="tmpfs" ino=281 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  113.826730][   T29] audit: type=1326 audit(1768475844.951:5321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10509 comm="syz.6.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce24bdf749 code=0x7ffc0000
[  113.850381][   T29] audit: type=1326 audit(1768475844.951:5322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10509 comm="syz.6.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fce24bdf749 code=0x7ffc0000
[  113.874427][   T29] audit: type=1326 audit(1768475844.951:5323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10509 comm="syz.6.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce24bdf749 code=0x7ffc0000
[  113.920923][   T29] audit: type=1400 audit(1768475845.101:5324): avc:  denied  { cpu } for  pid=10516 comm="syz.5.3041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  113.988597][   T29] audit: type=1326 audit(1768475845.151:5325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10520 comm="syz.6.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce24bdf749 code=0x7ffc0000
[  114.012317][   T29] audit: type=1326 audit(1768475845.151:5326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10520 comm="syz.6.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce24bdf749 code=0x7ffc0000
[  114.037125][   T29] audit: type=1326 audit(1768475845.151:5327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10520 comm="syz.6.3043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fce24bdf749 code=0x7ffc0000
[  114.129758][ T9108] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.140638][ T9108] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.184920][ T9108] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.221137][ T9108] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.519611][T10570] netlink: 'syz.7.3065': attribute type 21 has an invalid length.
[  114.661450][T10584] loop2: detected capacity change from 0 to 512
[  114.686431][T10584] ------------[ cut here ]------------
[  114.692231][T10584] EA inode 11 i_nlink=2
[  114.692247][T10584] WARNING: fs/ext4/xattr.c:1058 at ext4_xattr_inode_update_ref+0x2e6/0x320, CPU#0: syz.2.3071/10584
[  114.707430][T10584] Modules linked in:
[  114.711371][T10584] CPU: 0 UID: 0 PID: 10584 Comm: syz.2.3071 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  114.722209][T10584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  114.732410][T10584] RIP: 0010:ext4_xattr_inode_update_ref+0x305/0x320
[  114.739404][T10584] Code: 71 e2 9c ff 4c 8d 2d 3a ed 20 05 49 8d 7e 40 e8 11 6d b8 ff 49 8b 6e 40 4c 89 e7 e8 25 68 b8 ff 41 8b 56 48 4c 89 ef 48 89 ee <67> 48 0f b9 3a e9 2b ff ff ff e8 7c 9b ba 03 66 66 66 2e 0f 1f 84
[  114.760113][T10584] RSP: 0018:ffffc900025975a0 EFLAGS: 00010246
[  114.766341][T10584] RAX: ffff88812ecf6d90 RBX: ffff88811b87d348 RCX: ffffffff81bb1e8b
[  114.774444][T10584] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff86dc0bb0
[  114.783357][T10584] RBP: 000000000000000b R08: 000188811b87d2fb R09: 0000000000000000
[  114.791372][T10584] R10: ffffc900025974d0 R11: 0001c900025974d0 R12: ffff88811b87d2f8
[  114.799430][T10584] R13: ffffffff86dc0bb0 R14: ffff88811b87d2b0 R15: 0000000000000001
[  114.807476][T10584] FS:  00007f9bb60176c0(0000) GS:ffff8882aedc5000(0000) knlGS:0000000000000000
[  114.817465][T10584] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  114.824155][T10584] CR2: 00002000000b1030 CR3: 000000011c610000 CR4: 00000000003506f0
[  114.832173][T10584] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  114.840229][T10584] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  114.849165][T10584] Call Trace:
[  114.852530][T10584]  <TASK>
[  114.855511][T10584]  ext4_xattr_set_entry+0x77f/0x1020
[  114.860858][T10584]  ext4_xattr_ibody_set+0x184/0x3c0
[  114.866216][T10584]  ext4_expand_extra_isize_ea+0xcbb/0x11f0
[  114.872132][T10584]  __ext4_expand_extra_isize+0x246/0x280
[  114.878849][T10584]  __ext4_mark_inode_dirty+0x29d/0x3f0
[  114.884432][T10584]  ext4_evict_inode+0x7c4/0xd40
[  114.889476][T10584]  ? __pfx_ext4_evict_inode+0x10/0x10
[  114.894969][T10584]  evict+0x2af/0x510
[  114.898947][T10584]  ? __dquot_initialize+0x146/0x7c0
[  114.905199][T10584]  iput+0x4bd/0x650
[  114.909058][T10584]  ext4_process_orphan+0x1a9/0x1c0
[  114.914302][T10584]  ext4_orphan_cleanup+0x6a8/0xa00
[  114.919633][T10584]  ext4_fill_super+0x3411/0x37a0
[  114.924657][T10584]  ? set_blocksize+0x1a8/0x310
[  114.929461][T10584]  ? sb_set_blocksize+0xfc/0x170
[  114.935554][T10584]  ? setup_bdev_super+0x30e/0x370
[  114.940622][T10584]  ? __pfx_ext4_fill_super+0x10/0x10
[  114.945965][T10584]  get_tree_bdev_flags+0x291/0x300
[  114.951243][T10584]  ? __pfx_ext4_fill_super+0x10/0x10
[  114.956642][T10584]  get_tree_bdev+0x1f/0x30
[  114.961174][T10584]  ext4_get_tree+0x1c/0x30
[  114.966625][T10584]  vfs_get_tree+0x57/0x1d0
[  114.971081][T10584]  do_new_mount+0x24d/0x6a0
[  114.975742][T10584]  path_mount+0x4ab/0xb80
[  114.980111][T10584]  ? user_path_at+0xbf/0x130
[  114.984888][T10584]  __se_sys_mount+0x28c/0x2e0
[  114.989614][T10584]  __x64_sys_mount+0x67/0x80
[  114.995185][T10584]  x64_sys_call+0x2cca/0x3000
[  114.999981][T10584]  do_syscall_64+0xca/0x2b0
[  115.004613][T10584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.010633][T10584] RIP: 0033:0x7f9bb75b0eea
[  115.015114][T10584] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.035786][T10584] RSP: 002b:00007f9bb6016e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  115.044279][T10584] RAX: ffffffffffffffda RBX: 00007f9bb6016ef0 RCX: 00007f9bb75b0eea
[  115.052352][T10584] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f9bb6016eb0
[  115.060427][T10584] RBP: 0000200000000180 R08: 00007f9bb6016ef0 R09: 0000000000800700
[  115.069463][T10584] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  115.077523][T10584] R13: 00007f9bb6016eb0 R14: 000000000000046f R15: 000000000000002c
[  115.085685][T10584]  </TASK>
[  115.088829][T10584] ---[ end trace 0000000000000000 ]---
[  115.095915][T10584] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #18: comm syz.2.3071: iget: bad extra_isize 90 (inode size 256)
[  115.109621][T10584] EXT4-fs (loop2): Remounting filesystem read-only
[  115.120630][T10589] netlink: 'syz.5.3073': attribute type 1 has an invalid length.
[  115.125112][T10584] EXT4-fs warning (device loop2): ext4_evict_inode:273: xattr delete (err -30)
[  115.148847][T10584] EXT4-fs (loop2): 1 orphan inode deleted
[  115.156009][T10584] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.207870][T10599] netlink: 'syz.5.3077': attribute type 10 has an invalid length.
[  115.217847][T10599] team0: entered promiscuous mode
[  115.222959][T10599] team_slave_0: entered promiscuous mode
[  115.228738][T10599] team_slave_1: entered promiscuous mode
[  115.239519][T10599] bridge0: port 3(team0) entered blocking state
[  115.246122][T10599] bridge0: port 3(team0) entered disabled state
[  115.253671][T10599] team0: entered allmulticast mode
[  115.258857][T10599] team_slave_0: entered allmulticast mode
[  115.264823][T10599] team_slave_1: entered allmulticast mode
[  115.288965][T10599] bridge0: port 3(team0) entered blocking state
[  115.295404][T10599] bridge0: port 3(team0) entered forwarding state
[  115.313574][T10595] lo speed is unknown, defaulting to 1000
[  115.338362][T10600] lo speed is unknown, defaulting to 1000
[  115.350227][T10603] loop6: detected capacity change from 0 to 1024
[  115.367325][T10603] EXT4-fs: Ignoring removed nobh option
[  115.377844][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.387641][T10603] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  115.413465][T10603] EXT4-fs error (device loop6): ext4_ext_check_inode:523: inode #11: comm syz.6.3078: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  115.463719][T10603] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.3078: couldn't read orphan inode 11 (err -117)
[  115.476334][T10603] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.493642][T10603] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.3078: Invalid block bitmap block 0 in block_group 0
[  115.507640][T10603] EXT4-fs error (device loop6): ext4_acquire_dquot:6986: comm syz.6.3078: Failed to acquire dquot type 0
[  115.553834][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.649087][T10627] loop6: detected capacity change from 0 to 2048
[  115.671177][T10627] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.685848][T10620] syzkaller1: entered promiscuous mode
[  115.691444][T10620] syzkaller1: entered allmulticast mode
[  115.748704][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.849486][T10646] lo speed is unknown, defaulting to 1000
[  115.942040][T10646] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  115.971348][T10658] can0: slcan on ptm0.
[  116.013372][T10658] can0 (unregistered): slcan off ptm0.
[  116.019210][T10658] Falling back ldisc for ptm0.
[  116.322374][T10686] hub 9-0:1.0: USB hub found
[  116.338272][T10686] hub 9-0:1.0: 8 ports detected
[  116.408317][T10668] loop4: detected capacity change from 0 to 32768
[  116.467444][T10668]  loop4: p1 p3 < >
[  116.567078][T10708] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  116.606291][T10710] loop7: detected capacity change from 0 to 512
[  116.616025][T10714] netlink: 'syz.6.3124': attribute type 4 has an invalid length.
[  116.638883][T10714] netlink: 'syz.6.3124': attribute type 4 has an invalid length.
[  116.647816][T10710] EXT4-fs warning (device loop7): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  116.667736][T10710] EXT4-fs (loop7): mount failed
[  116.760381][T10733] loop4: detected capacity change from 0 to 1024
[  116.769687][T10738] loop7: detected capacity change from 0 to 2048
[  116.777902][T10733] EXT4-fs: Ignoring removed orlov option
[  116.783790][T10733] EXT4-fs: inline encryption not supported
[  116.810105][T10738] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.837955][T10733] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.863266][T10738] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  116.899101][T10738] EXT4-fs (loop7): Delayed block allocation failed for inode 16 at logical offset 31 with max blocks 33 with error 28
[  116.911685][T10738] EXT4-fs (loop7): This should not happen!! Data will be lost
[  116.911685][T10738] 
[  116.922323][T10738] EXT4-fs (loop7): Total free blocks count 0
[  116.928453][T10738] EXT4-fs (loop7): Free/Dirty block details
[  116.934582][T10738] EXT4-fs (loop7): free_blocks=2415919504
[  116.940546][T10738] EXT4-fs (loop7): dirty_blocks=48
[  116.944738][T10733] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 18: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  116.947912][T10738] EXT4-fs (loop7): Block reservation details
[  116.966394][T10738] EXT4-fs (loop7): i_reserved_data_blocks=3
[  116.974970][T10733] EXT4-fs (loop4): Remounting filesystem read-only
[  116.994800][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.020166][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.067943][T10761] __nla_validate_parse: 10 callbacks suppressed
[  117.068038][T10761] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3143'.
[  117.083355][T10761] netlink: 348 bytes leftover after parsing attributes in process `syz.6.3143'.
[  117.092461][T10761] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3143'.
[  117.101349][T10761] netlink: 348 bytes leftover after parsing attributes in process `syz.6.3143'.
[  117.122107][T10767] netlink: 'syz.4.3145': attribute type 12 has an invalid length.
[  117.131355][T10761] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3143'.
[  117.171311][T10761] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3143'.
[  117.180268][T10761] netlink: 348 bytes leftover after parsing attributes in process `syz.6.3143'.
[  117.189486][T10761] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3143'.
[  117.198510][T10761] netlink: 348 bytes leftover after parsing attributes in process `syz.6.3143'.
[  117.215056][T10761] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3143'.
[  117.304282][T10786] tipc: Started in network mode
[  117.309404][T10786] tipc: Node identity ac14140f, cluster identity 4711
[  117.320563][T10786] tipc: New replicast peer: 255.255.255.255
[  117.327057][T10786] tipc: Enabled bearer <udp:syz2>, priority 10
[  117.345711][T10786] tipc: Disabling bearer <udp:syz2>
[  117.394429][T10795] sctp: [Deprecated]: syz.4.3157 (pid 10795) Use of int in max_burst socket option deprecated.
[  117.394429][T10795] Use struct sctp_assoc_value instead
[  117.488118][T10805] bond0: (slave vlan2): Opening slave failed
[  117.508364][T10814] tipc: Started in network mode
[  117.513355][T10814] tipc: Node identity ac14140f, cluster identity 4711
[  117.520521][T10814] tipc: New replicast peer: 255.255.255.255
[  117.527174][T10814] tipc: Enabled bearer <udp:s>, priority 10
[  117.535172][T10812] netlink: 'syz.6.3164': attribute type 29 has an invalid length.
[  117.567532][T10818] hub 3-0:1.0: USB hub found
[  117.572366][T10818] hub 3-0:1.0: 8 ports detected
[  117.605377][ T9089] Bluetooth: hci0: Frame reassembly failed (-84)
[  117.624800][T10820] loop4: detected capacity change from 0 to 1024
[  117.665231][T10820] EXT4-fs: Ignoring removed orlov option
[  117.674523][T10820] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.693706][T10830] netlink: 'syz.5.3172': attribute type 21 has an invalid length.
[  117.815722][T10852] loop6: detected capacity change from 0 to 512
[  117.823368][T10854] atomic_op ffff88811c08c128 conn xmit_atomic 0000000000000000
[  117.823369][T10852] EXT4-fs: Ignoring removed nobh option
[  117.840199][T10852] EXT4-fs (loop6): 1 orphan inode deleted
[  117.848119][T10852] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.053925][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.131747][T10867] lo speed is unknown, defaulting to 1000
[  118.181878][T10870] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  118.245676][T10870] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  118.533226][   T23] tipc: Node number set to 2886997007
[  118.611607][T10891] lo speed is unknown, defaulting to 1000
[  118.911262][T10910] smc: net device hsr0 applied user defined pnetid SYZ0
[  118.942342][T10910] smc: net device hsr0 erased user defined pnetid SYZ0
[  118.973936][   T29] kauditd_printk_skb: 178 callbacks suppressed
[  118.973956][   T29] audit: type=1400 audit(1768475850.161:5503): avc:  denied  { mount } for  pid=10916 comm="syz.6.3207" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  118.974252][T10915] loop2: detected capacity change from 0 to 512
[  119.022859][   T29] audit: type=1400 audit(1768475850.211:5504): avc:  denied  { unmount } for  pid=9655 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  119.046269][T10915] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.059873][T10915] ext4 filesystem being mounted at /680/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.092669][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.107486][T10923] loop7: detected capacity change from 0 to 512
[  119.142713][T10923] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.3210: bg 0: block 248: padding at end of block bitmap is not set
[  119.175715][T10923] Quota error (device loop7): write_blk: dquota write failed
[  119.183238][T10923] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  119.202767][T10923] EXT4-fs error (device loop7): ext4_acquire_dquot:6986: comm syz.7.3210: Failed to acquire dquot type 1
[  119.215475][T10923] EXT4-fs (loop7): 1 truncate cleaned up
[  119.221688][T10923] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.234833][T10923] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.260816][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.287063][   T29] audit: type=1400 audit(1768475850.471:5505): avc:  denied  { relabelfrom } for  pid=10942 comm="syz.6.3219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  119.307238][   T29] audit: type=1400 audit(1768475850.471:5506): avc:  denied  { relabelto } for  pid=10942 comm="syz.6.3219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  119.337964][T10949] loop2: detected capacity change from 0 to 1024
[  119.344961][T10949] EXT4-fs: inline encryption not supported
[  119.350934][T10949] EXT4-fs: Ignoring removed i_version option
[  119.364687][T10949] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.390644][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.546681][   T29] audit: type=1400 audit(1768475850.731:5507): avc:  denied  { mount } for  pid=10955 comm="syz.6.3225" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  119.606569][   T29] audit: type=1400 audit(1768475850.791:5508): avc:  denied  { unmount } for  pid=9655 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  119.630302][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  119.833480][   T29] audit: type=1400 audit(1768475851.021:5509): avc:  denied  { bind } for  pid=10986 comm="syz.6.3238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  120.055250][T11010] usb usb1: usbfs: process 11010 (syz.7.3248) did not claim interface 0 before use
[  120.073872][T11013] xt_hashlimit: max too large, truncated to 1048576
[  120.082033][T11013] xt_CT: You must specify a L4 protocol and not use inversions on it
[  120.100116][   T29] audit: type=1326 audit(1768475851.281:5510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11016 comm="syz.7.3251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24f00af749 code=0x7ffc0000
[  120.134502][T11017] loop7: detected capacity change from 0 to 1024
[  120.141624][T11017] EXT4-fs: inline encryption not supported
[  120.147888][T11017] EXT4-fs: Ignoring removed bh option
[  120.174079][T11021] lo speed is unknown, defaulting to 1000
[  120.213191][T11024] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  120.221935][T11024] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  120.240873][T11017] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  120.263743][T11017] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.362099][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.384669][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  120.420987][T11027] 9p: Bad value for 'rfdno'
[  120.495854][T11038] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  120.505610][T11038] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  120.813431][T11071] xt_hashlimit: max too large, truncated to 1048576
[  120.823444][T11071] xt_CT: You must specify a L4 protocol and not use inversions on it
[  120.927002][T11088] netlink: 'syz.5.3284': attribute type 1 has an invalid length.
[  120.988019][T11094] loop2: detected capacity change from 0 to 8192
[  121.019815][ T3319] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000e1b1)
[  121.027762][ T3319] FAT-fs (loop2): Filesystem has been set read-only
[  121.069591][T11100] lo speed is unknown, defaulting to 1000
[  121.120883][T11100] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  121.129570][T11100] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  121.156800][T11104] 9pnet: p9_errstr2errno: server reported unknown error ÿÿÿ
[  121.186982][T11113] loop6: detected capacity change from 0 to 2048
[  121.203991][T11113] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.335918][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.428826][T11129] netlink: 'syz.6.3301': attribute type 5 has an invalid length.
[  121.441990][  T406] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  121.451166][  T406] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  121.460210][  T406] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  121.469214][  T406] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  121.988637][T11186] loop4: detected capacity change from 0 to 8192
[  122.015270][T11194] vlan2: entered allmulticast mode
[  122.020478][T11194] batadv0: entered allmulticast mode
[  122.024201][T11186]  loop4: p2 p3
[  122.032028][T11186] loop4: p3 start 331777 is beyond EOD, truncated
[  122.120885][T11204] __nla_validate_parse: 15 callbacks suppressed
[  122.120910][T11204] netlink: 24 bytes leftover after parsing attributes in process `ÿ'.
[  122.279099][T11226] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3344'.
[  122.288830][T11226] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3344'.
[  122.419078][ T9093] Bluetooth: hci0: Frame reassembly failed (-84)
[  122.461044][T11244] netlink: 5 bytes leftover after parsing attributes in process `syz.5.3352'.
[  122.470213][T11244] 0ªî{X¹¦: renamed from gretap0 (while UP)
[  122.477515][T11244] 0ªî{X¹¦: entered allmulticast mode
[  122.484839][T11244] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  122.793758][T11281] loop5: detected capacity change from 0 to 512
[  122.826291][T11281] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3370: bg 0: block 248: padding at end of block bitmap is not set
[  122.853123][T11281] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.3370: Failed to acquire dquot type 1
[  122.865859][T11281] EXT4-fs (loop5): 1 truncate cleaned up
[  122.871981][T11281] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.884787][T11281] ext4 filesystem being mounted at /196/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.915863][ T8628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.926046][ T9114] EXT4-fs error (device loop5): ext4_release_dquot:7022: comm kworker/u8:65: Failed to release dquot type 1
[  122.965845][T11295] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  123.114436][T11317] lo speed is unknown, defaulting to 1000
[  123.226552][T11317] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3386'.
[  123.724140][T11374] netlink: 'syz.4.3414': attribute type 3 has an invalid length.
[  123.893755][T11401] loop5: detected capacity change from 0 to 512
[  123.931522][T11401] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  123.971487][T11401] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.3426: bad orphan inode 131083
[  123.989191][   T29] kauditd_printk_skb: 233 callbacks suppressed
[  123.989209][   T29] audit: type=1326 audit(1768475855.171:5741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11405 comm="syz.2.3428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  124.043232][T11401] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.076894][ T8628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.124179][   T29] audit: type=1326 audit(1768475855.201:5742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11405 comm="syz.2.3428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  124.147849][   T29] audit: type=1326 audit(1768475855.201:5743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11405 comm="syz.2.3428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  124.171654][   T29] audit: type=1326 audit(1768475855.201:5744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11405 comm="syz.2.3428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  124.195422][   T29] audit: type=1326 audit(1768475855.251:5745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11405 comm="syz.2.3428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  124.218978][   T29] audit: type=1326 audit(1768475855.251:5746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11405 comm="syz.2.3428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  124.242568][   T29] audit: type=1326 audit(1768475855.251:5747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11405 comm="syz.2.3428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  124.266110][   T29] audit: type=1326 audit(1768475855.251:5748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11405 comm="syz.2.3428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  124.290159][   T29] audit: type=1326 audit(1768475855.251:5749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11405 comm="syz.2.3428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9bb75e2005 code=0x7ffc0000
[  124.313703][   T29] audit: type=1326 audit(1768475855.251:5750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11405 comm="syz.2.3428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9bb75e2005 code=0x7ffc0000
[  124.493471][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  124.499584][ T9666] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  124.630030][ T9114] Bluetooth: hci0: Frame reassembly failed (-84)
[  125.280101][T11480] loop4: detected capacity change from 0 to 32768
[  125.345796][T11480]  loop4: p1 p2 p3 < > p4 < p5 p6 >
[  125.367949][T11480] loop4: p1 start 460800 is beyond EOD, truncated
[  125.374639][T11480] loop4: p2 size 83886080 extends beyond EOD, truncated
[  125.391222][T11480] loop4: p5 start 460800 is beyond EOD, truncated
[  125.397767][T11480] loop4: p6 size 83886080 extends beyond EOD, truncated
[  125.580607][T11511] netlink: 104 bytes leftover after parsing attributes in process `syz.4.3477'.
[  125.748791][T11523] syzkaller0: entered allmulticast mode
[  125.769268][T11523] syzkaller0 (unregistering): left allmulticast mode
[  125.971838][T11540] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3491'.
[  125.985894][T11542] SELinux:  Context system_u:object_r:dri_device_t:s0 is not valid (left unmapped).
[  125.995873][T11540] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  126.025651][T11544] loop4: detected capacity change from 0 to 1764
[  126.189251][T11573] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  126.220454][T11575] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3507'.
[  126.295582][T11585] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3512'.
[  126.348642][T11585] netem: change failed
[  126.359923][T11592] loop5: detected capacity change from 0 to 512
[  126.392695][T11592] EXT4-fs warning (device loop5): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  126.461356][T11592] EXT4-fs (loop5): mount failed
[  126.514136][T11589] loop6: detected capacity change from 0 to 32768
[  126.569198][T11589]  loop6: p1 p3 < >
[  126.653562][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  126.659740][ T9666] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  126.823626][T11648] usb usb8: usbfs: process 11648 (syz.7.3533) did not claim interface 0 before use
[  126.996735][T11662] loop7: detected capacity change from 0 to 8192
[  127.144237][T11690] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3551'.
[  127.236163][T11706] netlink: 332 bytes leftover after parsing attributes in process `syz.4.3559'.
[  127.284849][T11716] loop4: detected capacity change from 0 to 256
[  127.303574][T11716] FAT-fs (loop4): Directory bread(block 64) failed
[  127.310268][T11716] FAT-fs (loop4): Directory bread(block 65) failed
[  127.318238][T11716] FAT-fs (loop4): Directory bread(block 66) failed
[  127.325094][T11716] FAT-fs (loop4): Directory bread(block 67) failed
[  127.331654][T11716] FAT-fs (loop4): Directory bread(block 68) failed
[  127.338261][T11716] FAT-fs (loop4): Directory bread(block 69) failed
[  127.345896][T11716] FAT-fs (loop4): Directory bread(block 70) failed
[  127.352499][T11716] FAT-fs (loop4): Directory bread(block 71) failed
[  127.359089][T11716] FAT-fs (loop4): Directory bread(block 72) failed
[  127.365689][T11716] FAT-fs (loop4): Directory bread(block 73) failed
[  127.385595][T11716] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 899)
[  127.394245][T11716] FAT-fs (loop4): Filesystem has been set read-only
[  127.400859][T11716] bio_check_eod: 32 callbacks suppressed
[  127.400873][T11716] syz.4.3563: attempt to access beyond end of device
[  127.400873][T11716] loop4: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  127.421334][T11716] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 899)
[  127.429994][T11716] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 899)
[  127.439663][T11716] syz.4.3563: attempt to access beyond end of device
[  127.439663][T11716] loop4: rw=8388608, sector=1736, nr_sectors = 8 limit=256
[  127.453689][T11716] syz.4.3563: attempt to access beyond end of device
[  127.453689][T11716] loop4: rw=8388608, sector=1736, nr_sectors = 8 limit=256
[  127.496611][T11724] pimreg: entered allmulticast mode
[  127.504289][T11724] pimreg: left allmulticast mode
[  127.582653][T11733] tipc: Started in network mode
[  127.587659][T11733] tipc: Node identity ac14140f, cluster identity 4711
[  127.600615][T11733] tipc: New replicast peer: 255.255.255.255
[  127.606933][T11733] tipc: Enabled bearer <udp:s>, priority 10
[  127.703283][T11754] loop6: detected capacity change from 0 to 2048
[  127.733403][T11754] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.751855][T11754] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  127.767275][T11754] EXT4-fs (loop6): Delayed block allocation failed for inode 16 at logical offset 31 with max blocks 33 with error 28
[  127.779855][T11754] EXT4-fs (loop6): This should not happen!! Data will be lost
[  127.779855][T11754] 
[  127.789687][T11754] EXT4-fs (loop6): Total free blocks count 0
[  127.795789][T11754] EXT4-fs (loop6): Free/Dirty block details
[  127.801724][T11754] EXT4-fs (loop6): free_blocks=2415919504
[  127.807510][T11754] EXT4-fs (loop6): dirty_blocks=48
[  127.812693][T11754] EXT4-fs (loop6): Block reservation details
[  127.818742][T11754] EXT4-fs (loop6): i_reserved_data_blocks=3
[  127.854024][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.937001][T11778] netlink: 'syz.4.3574': attribute type 29 has an invalid length.
[  128.395821][T11852] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3577'.
[  128.404869][T11852] netlink: 348 bytes leftover after parsing attributes in process `syz.5.3577'.
[  128.414031][T11852] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3577'.
[  128.423833][T11852] netlink: 348 bytes leftover after parsing attributes in process `syz.5.3577'.
[  128.433478][T11852] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3577'.
[  128.455424][T11852] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3577'.
[  128.464491][T11852] netlink: 348 bytes leftover after parsing attributes in process `syz.5.3577'.
[  128.473633][T11852] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3577'.
[  128.499244][T11862] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  128.508441][T11862] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  128.723311][ T3494] tipc: Node number set to 2886997007
[  128.767599][T11906] loop4: detected capacity change from 0 to 1024
[  128.776385][T11906] journal_path: Non-blockdev passed as './bus'
[  128.783691][T11906] EXT4-fs: error: could not find journal device path
[  128.837594][T11918] IPv6: Can't replace route, no match found
[  128.875775][T11923] loop5: detected capacity change from 0 to 512
[  128.894891][T11923] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.909025][T11923] ext4 filesystem being mounted at /247/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.928999][T11923] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #18: comm syz.5.3596: corrupted inode contents
[  128.941314][T11923] EXT4-fs error (device loop5): ext4_dirty_inode:6502: inode #18: comm syz.5.3596: mark_inode_dirty error
[  128.953383][T11923] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #18: comm syz.5.3596: corrupted inode contents
[  128.965853][T11923] EXT4-fs error (device loop5): ext4_xattr_delete_inode:3000: inode #18: comm syz.5.3596: mark_inode_dirty error
[  128.978767][T11923] EXT4-fs error (device loop5): ext4_xattr_delete_inode:3003: inode #18: comm syz.5.3596: mark inode dirty (error -117)
[  128.994783][T11923] EXT4-fs warning (device loop5): ext4_evict_inode:273: xattr delete (err -117)
[  129.020366][ T8628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.039286][T11935] smc: net device hsr0 applied user defined pnetid SYZ0
[  129.047038][T11935] smc: net device hsr0 erased user defined pnetid SYZ0
[  129.058934][   T29] kauditd_printk_skb: 223 callbacks suppressed
[  129.058960][   T29] audit: type=1400 audit(1768475860.241:5973): avc:  denied  { write } for  pid=11934 comm="syz.2.3603" name="file0" dev="tmpfs" ino=3871 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  129.115540][T11942] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  129.159170][   T29] audit: type=1400 audit(1768475860.341:5974): avc:  denied  { setopt } for  pid=11943 comm="syz.2.3607" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  129.209101][   T29] audit: type=1400 audit(1768475860.381:5975): avc:  denied  { read } for  pid=11951 comm="syz.6.3611" lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  129.237468][T11956] SELinux: ebitmap: empty map
[  129.242649][T11956] SELinux: failed to load policy
[  129.302372][T11967] netlink: 'syz.6.3617': attribute type 1 has an invalid length.
[  129.325580][T11967] 8021q: adding VLAN 0 to HW filter on device bond1
[  129.371651][T11967] bond1: (slave geneve2): making interface the new active one
[  129.381230][T11967] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  129.627042][T11998] SELinux: ebitmap: empty map
[  129.647944][T11998] SELinux: failed to load policy
[  129.871076][T12017] 9p: Bad value for 'rfdno'
[  129.917338][   T29] audit: type=1326 audit(1768475861.101:5976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12020 comm="syz.6.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce24bdf749 code=0x7ffc0000
[  129.942012][T12021] loop6: detected capacity change from 0 to 1024
[  129.946572][T12021] EXT4-fs: inline encryption not supported
[  129.954555][T12021] EXT4-fs: Ignoring removed bh option
[  129.977301][T12021] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  129.989665][T12021] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.003868][   T29] audit: type=1326 audit(1768475861.101:5977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12020 comm="syz.6.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fce24bd65e7 code=0x7ffc0000
[  130.027462][   T29] audit: type=1326 audit(1768475861.101:5978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12020 comm="syz.6.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fce24b7b829 code=0x7ffc0000
[  130.051006][   T29] audit: type=1326 audit(1768475861.101:5979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12020 comm="syz.6.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fce24bd65e7 code=0x7ffc0000
[  130.074630][   T29] audit: type=1326 audit(1768475861.101:5980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12020 comm="syz.6.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fce24b7b829 code=0x7ffc0000
[  130.098147][   T29] audit: type=1326 audit(1768475861.101:5981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12020 comm="syz.6.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce24bdf749 code=0x7ffc0000
[  130.122004][   T29] audit: type=1326 audit(1768475861.101:5982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12020 comm="syz.6.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce24bdf749 code=0x7ffc0000
[  130.229124][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  130.490710][T12053] netlink: 'syz.4.3655': attribute type 5 has an invalid length.
[  130.548109][T12057] lo speed is unknown, defaulting to 1000
[  130.603079][T12064] loop5: detected capacity change from 0 to 1024
[  130.610129][T12064] EXT4-fs: inline encryption not supported
[  130.616045][T12064] EXT4-fs: Ignoring removed bh option
[  130.634234][T12064] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  130.656672][T12064] ext4 filesystem being mounted at /254/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.715104][ T8628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  130.818751][T12083] loop5: detected capacity change from 0 to 8192
[  131.157397][T12110] 9pnet: p9_errstr2errno: server reported unknown error ÿÿÿ
[  131.310300][T12118] lo speed is unknown, defaulting to 1000
[  131.337014][T12122] loop2: detected capacity change from 0 to 1024
[  131.374221][T12122] EXT4-fs: inline encryption not supported
[  131.380183][T12122] EXT4-fs: Ignoring removed bh option
[  131.494395][T12122] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  131.522579][T12122] ext4 filesystem being mounted at /771/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.536283][T12127] loop7: detected capacity change from 0 to 8192
[  131.625014][ T9738] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1)
[  131.632917][ T9738] FAT-fs (loop7): Filesystem has been set read-only
[  131.676808][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  131.828468][T12132] loop6: detected capacity change from 0 to 8192
[  131.887525][T12132]  loop6: p2 p3
[  131.898322][T12132] loop6: p3 start 331777 is beyond EOD, truncated
[  132.034238][T12155] 9p: Bad value for 'rfdno'
[  132.042095][T12159] loop2: detected capacity change from 0 to 512
[  132.058828][T12159] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  132.085290][T12159] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.3698: bad orphan inode 131083
[  132.107512][T12159] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.142880][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.776135][T12178] sd 0:0:1:0: device reset
[  133.046576][T12209] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  133.080676][T12209] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  133.195315][T12221] sd 0:0:1:0: device reset
[  133.225052][T12225] netlink: 'syz.2.3728': attribute type 1 has an invalid length.
[  133.258115][T12225] 8021q: adding VLAN 0 to HW filter on device bond0
[  133.277750][ T2527] Bluetooth: hci0: Frame reassembly failed (-84)
[  133.298357][T12230] loop6: detected capacity change from 0 to 1024
[  133.310017][T12230] EXT4-fs: Ignoring removed orlov option
[  133.318624][T12230] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.344184][T12231] bond0: (slave geneve4): making interface the new active one
[  133.363362][T12231] bond0: (slave geneve4): Enslaving as an active interface with an up link
[  134.272659][T12253] __nla_validate_parse: 12 callbacks suppressed
[  134.272679][T12253] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3738'.
[  134.360764][   T29] kauditd_printk_skb: 396 callbacks suppressed
[  134.360782][   T29] audit: type=1326 audit(1768475865.541:6379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12262 comm="syz.5.3753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea7e78f749 code=0x7ffc0000
[  134.390679][   T29] audit: type=1326 audit(1768475865.541:6380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12262 comm="syz.5.3753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fea7e78f749 code=0x7ffc0000
[  134.414250][   T29] audit: type=1326 audit(1768475865.551:6381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12265 comm="syz.5.3753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fea7e7c2005 code=0x7ffc0000
[  134.437908][   T29] audit: type=1326 audit(1768475865.551:6382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12262 comm="syz.5.3753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea7e78f749 code=0x7ffc0000
[  134.461521][   T29] audit: type=1326 audit(1768475865.551:6383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12262 comm="syz.5.3753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea7e78f749 code=0x7ffc0000
[  134.485228][   T29] audit: type=1326 audit(1768475865.551:6384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12262 comm="syz.5.3753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7fea7e78f749 code=0x7ffc0000
[  134.518750][   T29] audit: type=1326 audit(1768475865.701:6385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12265 comm="syz.5.3753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fea7e78f749 code=0x7ffc0000
[  134.553981][   T29] audit: type=1326 audit(1768475865.741:6386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12262 comm="syz.5.3753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea7e72b829 code=0x7ffc0000
[  134.589586][   T29] audit: type=1326 audit(1768475865.761:6387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12262 comm="syz.5.3753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea7e78f749 code=0x7ffc0000
[  134.613242][   T29] audit: type=1326 audit(1768475865.761:6388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12262 comm="syz.5.3753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea7e78f749 code=0x7ffc0000
[  134.655100][T12270] netlink: 'syz.5.3744': attribute type 1 has an invalid length.
[  134.670685][T12270] 8021q: adding VLAN 0 to HW filter on device bond2
[  134.691187][T12270] bond2: (slave geneve2): making interface the new active one
[  134.700282][T12270] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  134.745862][T12277] rdma_op ffff88811113d580 conn xmit_rdma 0000000000000000
[  134.818354][T12284] netlink: 5 bytes leftover after parsing attributes in process `syz.7.3750'.
[  134.828358][T12284] 0ªî{X¹¦: renamed from gretap0
[  134.852930][T12284] 0ªî{X¹¦: entered allmulticast mode
[  134.905557][T12284] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  135.123656][T12305] loop7: detected capacity change from 0 to 128
[  135.247533][T12305] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  135.270316][T12305] ext4 filesystem being mounted at /178/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.294084][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  135.300243][ T9666] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  135.323237][ T9738] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  135.467353][T12332] rdma_op ffff88811c1f8d80 conn xmit_rdma 0000000000000000
[  135.635139][T12342] loop4: detected capacity change from 0 to 128
[  135.641622][T12340] netlink: 'syz.7.3775': attribute type 3 has an invalid length.
[  135.653814][T12342] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  135.675428][T12342] ext4 filesystem being mounted at /765/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.701814][ T3315] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  135.824532][T12352] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3781'.
[  135.834056][T12352] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  135.834337][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.896893][T12359] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3783'.
[  135.981286][T12368] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12368 comm=syz.7.3785
[  136.209475][T12396] loop5: detected capacity change from 0 to 512
[  136.219913][T12396] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #18: comm syz.5.3795: iget: bad extra_isize 90 (inode size 256)
[  136.255688][T12396] EXT4-fs (loop5): Remounting filesystem read-only
[  136.262697][T12396] EXT4-fs warning (device loop5): ext4_evict_inode:273: xattr delete (err -30)
[  136.271859][T12396] EXT4-fs (loop5): 1 orphan inode deleted
[  136.279709][T12396] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.370388][ T8628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.471518][T12420] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3800'.
[  136.720121][T12462] ipip0: entered promiscuous mode
[  136.726253][T12462] ipip0: entered allmulticast mode
[  137.485562][T12571] netlink: 'syz.5.3838': attribute type 27 has an invalid length.
[  137.511767][T12571] 0ªî{X¹¦: left allmulticast mode
[  137.539031][T12571] bridge0: port 3(team0) entered disabled state
[  137.545497][T12571] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.552988][T12571] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.639044][T12571] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  137.656577][T12571] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  137.728157][T12571] gretap1: left promiscuous mode
[  137.775127][T12577] 8021q: adding VLAN 0 to HW filter on device bond0
[  137.784096][T12577] bridge0: port 3(team0) entered blocking state
[  137.790471][T12577] bridge0: port 3(team0) entered forwarding state
[  137.797493][T12577] 8021q: adding VLAN 0 to HW filter on device team0
[  137.809383][T12577] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  137.827810][ T9075] bridge0: port 3(team0) entered disabled state
[  137.839233][   T53] netdevsim netdevsim5 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  137.849169][   T53] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  137.904356][   T53] netdevsim netdevsim5 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  137.914356][   T53] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  137.944498][   T53] netdevsim netdevsim5 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  137.953563][   T53] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  137.983390][   T53] netdevsim netdevsim5 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  137.992459][   T53] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  138.224654][T12642] netlink: 'syz.4.3850': attribute type 10 has an invalid length.
[  138.232593][T12642] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3850'.
[  138.244060][T12642] dummy0: entered promiscuous mode
[  138.250139][T12642] bridge0: port 1(dummy0) entered blocking state
[  138.256806][T12642] bridge0: port 1(dummy0) entered disabled state
[  138.272238][T12617] loop5: detected capacity change from 0 to 32768
[  138.279388][T12642] dummy0: entered allmulticast mode
[  138.285627][T12642] bridge0: port 1(dummy0) entered blocking state
[  138.292131][T12642] bridge0: port 1(dummy0) entered forwarding state
[  138.334334][T12617]  loop5: p1 p3 < >
[  138.412943][T12664] syzkaller0: entered allmulticast mode
[  138.420522][T12664] syzkaller0 (unregistering): left allmulticast mode
[  138.520953][T12684] pim6reg1: entered promiscuous mode
[  138.526595][T12684] pim6reg1: entered allmulticast mode
[  138.676301][T12703] loop2: detected capacity change from 0 to 512
[  138.684207][T12703] EXT4-fs: Ignoring removed nobh option
[  138.693131][T12703] EXT4-fs (loop2): 1 orphan inode deleted
[  138.699545][T12703] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.736443][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.810269][T12723] netlink: 'syz.2.3892': attribute type 29 has an invalid length.
[  138.831078][T12724] syzkaller0: entered allmulticast mode
[  138.836898][T12720] lo speed is unknown, defaulting to 1000
[  138.844718][T12724] syzkaller0 (unregistering): left allmulticast mode
[  138.899908][T12727] lo speed is unknown, defaulting to 1000
[  139.147358][T12748] loop4: detected capacity change from 0 to 512
[  139.155260][T12748] EXT4-fs: Ignoring removed nobh option
[  139.165709][T12748] EXT4-fs (loop4): 1 orphan inode deleted
[  139.171960][T12748] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.202055][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.363827][T12761] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  139.423332][   T29] kauditd_printk_skb: 164 callbacks suppressed
[  139.423350][   T29] audit: type=1326 audit(1768475870.611:6553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12768 comm="syz.2.3901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  139.464113][   T29] audit: type=1326 audit(1768475870.611:6554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12768 comm="syz.2.3901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  139.489357][   T29] audit: type=1326 audit(1768475870.611:6555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12768 comm="syz.2.3901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  139.514257][   T29] audit: type=1326 audit(1768475870.611:6556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12768 comm="syz.2.3901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  139.537759][   T29] audit: type=1326 audit(1768475870.611:6557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12768 comm="syz.2.3901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  139.606327][T12771] netlink: 'syz.7.3902': attribute type 29 has an invalid length.
[  139.622181][T12776] pim6reg1: entered promiscuous mode
[  139.627634][T12776] pim6reg1: entered allmulticast mode
[  140.500299][T12784] loop6: detected capacity change from 0 to 512
[  140.515287][T12784] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.517697][   T29] audit: type=1400 audit(1768475871.701:6558): avc:  denied  { audit_write } for  pid=12785 comm="syz.2.3919" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  140.534141][T12783] syzkaller0: entered allmulticast mode
[  140.551382][   T29] audit: type=1107 audit(1768475871.701:6559): pid=12785 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  140.583933][T12784] ext4 filesystem being mounted at /240/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.600310][T12783] syzkaller0 (unregistering): left allmulticast mode
[  140.625341][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.648933][T12795] loop7: detected capacity change from 0 to 512
[  140.659176][T12795] EXT4-fs: Ignoring removed nobh option
[  140.671739][T12795] EXT4-fs (loop7): 1 orphan inode deleted
[  140.679862][T12795] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.775849][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.792430][   T29] audit: type=1326 audit(1768475871.961:6560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12806 comm="syz.5.3928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea7e78f749 code=0x7ffc0000
[  140.817290][   T29] audit: type=1326 audit(1768475871.961:6561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12806 comm="syz.5.3928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea7e78f749 code=0x7ffc0000
[  140.841376][   T29] audit: type=1326 audit(1768475871.961:6562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12806 comm="syz.5.3928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea7e78f749 code=0x7ffc0000
[  140.901464][T12817] netlink: 'syz.7.3910': attribute type 4 has an invalid length.
[  140.952617][T12817] netlink: 'syz.7.3910': attribute type 4 has an invalid length.
[  140.990582][T12833] xt_hashlimit: max too large, truncated to 1048576
[  140.998800][T12833] xt_CT: You must specify a L4 protocol and not use inversions on it
[  141.069418][T12843] netlink: 'syz.5.3943': attribute type 4 has an invalid length.
[  141.081474][T12839] lo speed is unknown, defaulting to 1000
[  141.091261][T12843] netlink: 'syz.5.3943': attribute type 4 has an invalid length.
[  141.203247][T12860] netlink: 'syz.5.3938': attribute type 10 has an invalid length.
[  141.211325][T12860] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3938'.
[  141.230117][T12862] pim6reg1: entered promiscuous mode
[  141.236565][T12862] pim6reg1: entered allmulticast mode
[  141.255342][T12860] dummy0: entered promiscuous mode
[  141.261053][T12860] bridge0: port 4(dummy0) entered blocking state
[  141.267631][T12860] bridge0: port 4(dummy0) entered disabled state
[  141.277919][T12860] dummy0: entered allmulticast mode
[  141.285221][T12860] bridge0: port 4(dummy0) entered blocking state
[  141.291753][T12860] bridge0: port 4(dummy0) entered forwarding state
[  141.351914][T12871] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3945'.
[  141.402464][T12871] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  141.605924][T12902] loop4: detected capacity change from 0 to 1024
[  141.616429][T12899] pim6reg1: entered promiscuous mode
[  141.621828][T12899] pim6reg1: entered allmulticast mode
[  141.644738][T12902] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a80ec01c, mo2=0002]
[  141.661478][T12902] System zones: 0-1, 3-12
[  141.667261][T12902] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.684433][T12902] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm ÿ: bg 0: block 88: padding at end of block bitmap is not set
[  141.720796][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.771121][T12912] ALSA: seq fatal error: cannot create timer (-19)
[  141.803974][ T9088] Bluetooth: hci0: Frame reassembly failed (-84)
[  143.852597][ T9666] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  143.854768][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  143.912572][T12944] pim6reg1: entered promiscuous mode
[  143.917937][T12944] pim6reg1: entered allmulticast mode
[  144.000199][T12961] syzkaller0: entered allmulticast mode
[  144.042573][T12961] syzkaller0 (unregistering): left allmulticast mode
[  144.085161][T12968] netlink: 'syz.6.3985': attribute type 10 has an invalid length.
[  144.093189][T12968] netlink: 40 bytes leftover after parsing attributes in process `syz.6.3985'.
[  144.106063][T12968] dummy0: entered promiscuous mode
[  144.112150][T12968] bridge0: port 4(dummy0) entered blocking state
[  144.118637][T12968] bridge0: port 4(dummy0) entered disabled state
[  144.127856][T12968] dummy0: entered allmulticast mode
[  144.134789][T12968] bridge0: port 4(dummy0) entered blocking state
[  144.141229][T12968] bridge0: port 4(dummy0) entered forwarding state
[  144.208219][T12984] syzkaller1: entered promiscuous mode
[  144.214786][T12984] syzkaller1: entered allmulticast mode
[  144.278028][T12990] loop6: detected capacity change from 0 to 4096
[  144.289751][T12990] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  144.319408][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.471258][T13009] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4005'.
[  144.769371][T13019] syzkaller1: entered promiscuous mode
[  144.774985][T13019] syzkaller1: entered allmulticast mode
[  144.919096][T13025] loop2: detected capacity change from 0 to 1024
[  144.927471][T13025] EXT4-fs: inline encryption not supported
[  144.933439][T13025] EXT4-fs: Ignoring removed orlov option
[  144.940787][T13025] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  144.966538][T13025] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.006807][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.038648][T13041] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4020'.
[  145.108376][T13050] ------------[ cut here ]------------
[  145.114741][T13050] verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0xffffdfcd, 0xffffffffffffdfcc] s64=[0x80000000ffffdfcd, 0x7fffffffffffdfcc] u32=[0xffffdfcd, 0xffffdfcc] s32=[0xffffdfcd, 0xffffdfcc] var_off=(0xffffdfcc, 0xffffffff00000000)
[  145.139476][T13050] WARNING: kernel/bpf/verifier.c:2748 at reg_bounds_sanity_check+0x15b/0x660, CPU#0: syz.4.4024/13050
[  145.151515][T13050] Modules linked in:
[  145.155552][T13050] CPU: 0 UID: 0 PID: 13050 Comm: syz.4.4024 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  145.167026][T13050] Tainted: [W]=WARN
[  145.171037][T13050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  145.181248][T13050] RIP: 0010:reg_bounds_sanity_check+0x27d/0x660
[  145.188606][T13050] Code: 24 78 4c 8b 44 24 70 4c 8b 4c 24 60 41 ff 74 24 20 41 55 53 ff 74 24 68 ff 74 24 78 ff b4 24 90 00 00 00 ff b4 24 b0 00 00 00 <67> 48 0f b9 3a 48 83 c4 38 4c 8b ac 24 98 00 00 00 49 8d 85 80 08
[  145.208368][T13050] RSP: 0018:ffffc90001e533a0 EFLAGS: 00010246
[  145.215505][T13050] RAX: ffff888162799b10 RBX: 00000000ffffdfcc RCX: 00000000ffffdfcd
[  145.223536][T13050] RDX: ffffffff865fc107 RSI: ffffffff864c642d RDI: ffffffff86db6a10
[  145.231543][T13050] RBP: ffff88810a14a270 R08: ffffffffffffdfcc R09: 80000000ffffdfcd
[  145.239574][T13050] R10: 00000000000000d0 R11: 0000000000000002 R12: ffff88810a14a230
[  145.248580][T13050] R13: 00000000ffffdfcc R14: ffff88810a14a27c R15: ffff88810a14a268
[  145.256669][T13050] FS:  00007fdf4e8876c0(0000) GS:ffff8882aedc5000(0000) knlGS:0000000000000000
[  145.265660][T13050] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  145.272279][T13050] CR2: 00007f24f0307dac CR3: 000000010d11a000 CR4: 00000000003506f0
[  145.281120][T13050] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  145.289127][T13050] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  145.297278][T13050] Call Trace:
[  145.300621][T13050]  <TASK>
[  145.304472][T13050]  reg_set_min_max+0x1c8/0x260
[  145.309342][T13050]  check_cond_jmp_op+0x13bd/0x1a80
[  145.314547][T13050]  do_check+0x3347/0x81f0
[  145.318920][T13050]  do_check_common+0xccf/0x1300
[  145.323834][T13050]  bpf_check+0x2f98/0xc860
[  145.328353][T13050]  ? __alloc_frozen_pages_noprof+0x18f/0x360
[  145.335195][T13050]  ? alloc_pages_bulk_noprof+0x4b9/0x540
[  145.340936][T13050]  ? __vmap_pages_range_noflush+0xbc4/0xcf0
[  145.346873][T13050]  ? css_rstat_updated+0xbb/0x280
[  145.352000][T13050]  ? try_charge_memcg+0x215/0xa10
[  145.357108][T13050]  ? css_rstat_updated+0xbb/0x280
[  145.362240][T13050]  ? pcpu_block_update+0x24e/0x3b0
[  145.368359][T13050]  ? pcpu_block_refresh_hint+0x157/0x170
[  145.374097][T13050]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[  145.380301][T13050]  ? css_rstat_updated+0xbb/0x280
[  145.385381][T13050]  ? mod_memcg_state+0x182/0x270
[  145.390428][T13050]  ? __rcu_read_unlock+0x4f/0x70
[  145.396264][T13050]  ? pcpu_memcg_post_alloc_hook+0xec/0x170
[  145.402237][T13050]  ? bpf_prog_alloc+0x5b/0x150
[  145.407090][T13050]  ? pcpu_alloc_noprof+0xd0d/0x1240
[  145.412310][T13050]  ? should_fail_ex+0x30/0x280
[  145.417158][T13050]  ? __kmalloc_noprof+0x2b4/0x5a0
[  145.422281][T13050]  ? security_bpf_prog_load+0x60/0x140
[  145.428651][T13050]  ? selinux_bpf_prog_load+0xad/0xd0
[  145.434026][T13050]  ? security_bpf_prog_load+0x9e/0x140
[  145.439587][T13050]  bpf_prog_load+0xf6e/0x1140
[  145.444309][T13050]  ? security_bpf+0x2b/0x90
[  145.448884][T13050]  __sys_bpf+0x469/0x7c0
[  145.454084][T13050]  __x64_sys_bpf+0x41/0x50
[  145.458606][T13050]  x64_sys_call+0x28e1/0x3000
[  145.463339][T13050]  do_syscall_64+0xca/0x2b0
[  145.468070][T13050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.474004][T13050] RIP: 0033:0x7fdf4fe1f749
[  145.478428][T13050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.498978][T13050] RSP: 002b:00007fdf4e887038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  145.507428][T13050] RAX: ffffffffffffffda RBX: 00007fdf50075fa0 RCX: 00007fdf4fe1f749
[  145.515437][T13050] RDX: 0000000000000049 RSI: 0000200000000140 RDI: 0000000000000005
[  145.524267][T13050] RBP: 00007fdf4fea3f91 R08: 0000000000000000 R09: 0000000000000000
[  145.532339][T13050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  145.540359][T13050] R13: 00007fdf50076038 R14: 00007fdf50075fa0 R15: 00007fffc5cb8c28
[  145.548381][T13050]  </TASK>
[  145.551412][T13050] ---[ end trace 0000000000000000 ]---
[  145.609036][T13061] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4029'.
[  145.618210][T13061] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4029'.
[  145.661922][T13052] loop7: detected capacity change from 0 to 8192
[  145.683967][   T29] kauditd_printk_skb: 125 callbacks suppressed
[  145.683984][   T29] audit: type=1400 audit(1768475876.871:6688): avc:  denied  { create } for  pid=13067 comm="syz.5.4033" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  145.722880][T13069] netlink: 'syz.5.4033': attribute type 3 has an invalid length.
[  145.730703][T13069] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4033'.
[  145.757984][   T29] audit: type=1326 audit(1768475876.871:6689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13066 comm="syz.2.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  145.781606][   T29] audit: type=1326 audit(1768475876.871:6690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13066 comm="syz.2.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  145.805254][   T29] audit: type=1326 audit(1768475876.931:6691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13066 comm="syz.2.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  145.828980][   T29] audit: type=1326 audit(1768475876.931:6692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13066 comm="syz.2.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  145.852560][   T29] audit: type=1326 audit(1768475876.931:6693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13066 comm="syz.2.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  145.853153][T13075] netlink: 48 bytes leftover after parsing attributes in process `syz.6.4035'.
[  145.876198][   T29] audit: type=1326 audit(1768475876.931:6694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13066 comm="syz.2.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  145.876276][   T29] audit: type=1326 audit(1768475876.931:6695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13066 comm="syz.2.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  145.876390][   T29] audit: type=1326 audit(1768475876.931:6696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13066 comm="syz.2.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  145.876424][   T29] audit: type=1326 audit(1768475876.931:6697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13066 comm="syz.2.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  145.987545][T13077] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  145.996262][T13077] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  146.134088][T13092] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4044'.
[  146.273211][T13102] __nla_validate_parse: 1 callbacks suppressed
[  146.273300][T13102] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4048'.
[  146.345146][T13103] loop6: detected capacity change from 0 to 8192
[  146.380034][T13107] hub 9-0:1.0: USB hub found
[  146.386200][T13107] hub 9-0:1.0: 8 ports detected
[  146.597732][T13127] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  146.665790][T13136] loop4: detected capacity change from 0 to 1024
[  146.674045][T13136] EXT4-fs: inline encryption not supported
[  146.679932][T13136] EXT4-fs: Ignoring removed orlov option
[  146.688208][T13136] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  146.716637][T13136] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.808980][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.914249][T13157] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4070'.
[  146.946335][T13155] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  147.014813][T13169] netlink: 68 bytes leftover after parsing attributes in process `syz.5.4078'.
[  147.063849][T13177] netlink: 'syz.4.4082': attribute type 27 has an invalid length.
[  147.107961][T13179] loop7: detected capacity change from 0 to 1024
[  147.148802][T13179] EXT4-fs: inline encryption not supported
[  147.154774][T13179] EXT4-fs: Ignoring removed orlov option
[  147.173019][T13179] EXT4-fs (loop7): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  147.206017][T13179] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.244313][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.336963][T13177] bridge0: port 1(dummy0) entered disabled state
[  147.360242][T13177] vxlan1: left promiscuous mode
[  147.379041][T13177] veth2: left promiscuous mode
[  147.384002][T13177] veth2: left allmulticast mode
[  147.402234][T13202] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  147.518065][T13212] loop7: detected capacity change from 0 to 2048
[  147.533945][T13212] EXT4-fs error (device loop7): ext4_ext_check_inode:523: inode #2: comm syz.7.4094: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[  147.552750][T13212] EXT4-fs (loop7): get root inode failed
[  147.558467][T13212] EXT4-fs (loop7): mount failed
[  147.639496][T13188] 8021q: adding VLAN 0 to HW filter on device bond0
[  147.654854][T13188] bridge0: port 1(dummy0) entered blocking state
[  147.661310][T13188] bridge0: port 1(dummy0) entered forwarding state
[  147.670481][T13188] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  147.728730][ T9057] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  147.737805][ T9057] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  147.746836][T13215] lo speed is unknown, defaulting to 1000
[  147.753641][T13215] syz0: Port: 1 Link ACTIVE
[  147.781399][ T9057] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  147.791296][ T9057] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  147.800242][T13211] lo speed is unknown, defaulting to 1000
[  147.870660][ T9057] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  147.880524][ T9057] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  147.912528][ T9057] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  147.921593][ T9057] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  147.945992][T13225] loop4: detected capacity change from 0 to 2048
[  147.963605][T13225] EXT4-fs: Ignoring removed mblk_io_submit option
[  148.013240][T13225] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.067637][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.100174][T13249] netlink: 'syz.6.4106': attribute type 27 has an invalid length.
[  148.121911][T13251] loop5: detected capacity change from 0 to 2048
[  148.130227][T13251] EXT4-fs: Ignoring removed mblk_io_submit option
[  148.153747][T13249] bridge0: port 3(gretap0) entered disabled state
[  148.189814][T13251] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.214435][T13249] bridge0: port 4(dummy0) entered disabled state
[  148.221008][T13249] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.228403][T13249] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.331561][ T8628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.353332][T13249] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  148.407017][T13255] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4119'.
[  148.458594][T13262] bridge0: port 3(gretap0) entered blocking state
[  148.465155][T13262] bridge0: port 3(gretap0) entered forwarding state
[  148.494109][   T53] Bluetooth: hci0: Frame reassembly failed (-84)
[  148.502146][T13262] 8021q: adding VLAN 0 to HW filter on device bond0
[  148.511128][T13262] 8021q: adding VLAN 0 to HW filter on device team0
[  148.519550][T13262] bridge0: port 4(dummy0) entered blocking state
[  148.525958][T13262] bridge0: port 4(dummy0) entered forwarding state
[  148.535911][T13262] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  148.555363][ T9111] netdevsim netdevsim6 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  148.565284][ T9111] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  148.574506][ T9068] netdevsim netdevsim6 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  148.583510][ T9068] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  148.606992][ T9068] netdevsim netdevsim6 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  148.615999][ T9068] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  148.625246][ T9068] netdevsim netdevsim6 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  148.634318][ T9068] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  148.695287][T13285] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  148.710743][T13289] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4122'.
[  150.572504][ T9666] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  150.574955][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  150.658632][T13316] netlink: 'syz.2.4131': attribute type 27 has an invalid length.
[  150.711622][T13325] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4138'.
[  150.731013][T13316] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.739270][T13316] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.802906][T13316] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  150.814487][T13316] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  150.869407][T13316] ip6gre1: left promiscuous mode
[  150.874485][T13316] ip6gre1: left allmulticast mode
[  150.884645][T13316] gretap1: left promiscuous mode
[  150.890978][T13316] geneve3: left promiscuous mode
[  150.896365][T13316] geneve3: left allmulticast mode
[  150.913890][T13322] tipc: New replicast peer: 255.255.255.83
[  150.919885][T13322] tipc: Enabled bearer <udp:£>, priority 10
[  150.940408][T13326] 8021q: adding VLAN 0 to HW filter on device team0
[  150.952502][T13326] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  150.969980][ T9057] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  150.979870][ T9057] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 256 - 0
[  151.001244][ T9057] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.011010][ T9057] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 256 - 0
[  151.037341][ T9057] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.046507][ T9057] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 256 - 0
[  151.057071][ T9057] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.066812][ T9057] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 256 - 0
[  151.076314][T13338] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4144'.
[  151.087050][T13338] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4144'.
[  151.149034][T13348] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  151.158804][   T29] kauditd_printk_skb: 53 callbacks suppressed
[  151.158842][   T29] audit: type=1400 audit(1768475882.351:6751): avc:  denied  { relabelto } for  pid=13347 comm="syz.5.4149" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  151.192922][   T29] audit: type=1400 audit(1768475882.351:6752): avc:  denied  { associate } for  pid=13347 comm="syz.5.4149" name="/" dev="cgroup2" ino=1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:fsadm_exec_t:s0"
[  151.245738][   T29] audit: type=1400 audit(1768475882.431:6753): avc:  denied  { override_creds } for  pid=13349 comm="syz.7.4150" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  151.424379][   T29] audit: type=1400 audit(1768475882.611:6754): avc:  denied  { mount } for  pid=13370 comm="syz.4.4158" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  151.463267][T13371] random: crng reseeded on system resumption
[  151.558249][ T9111] nci: nci_extract_activation_params_nfc_dep: unsupported activation_rf_tech_and_mode 0x1
[  151.600258][T13395] netlink: 'syz.2.4162': attribute type 27 has an invalid length.
[  151.742740][T13402] 8021q: adding VLAN 0 to HW filter on device team0
[  151.762813][T13402] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  152.032512][   T36] tipc: Node number set to 2886997007
[  152.163787][   T29] audit: type=1400 audit(1768475883.351:6755): avc:  denied  { bind } for  pid=13457 comm="syz.4.4188" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  152.237605][   T29] audit: type=1326 audit(1768475883.421:6756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13465 comm="syz.7.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24f00af749 code=0x7ffc0000
[  152.262467][   T29] audit: type=1326 audit(1768475883.421:6757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13465 comm="syz.7.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24f00af749 code=0x7ffc0000
[  152.287019][   T29] audit: type=1326 audit(1768475883.421:6758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13465 comm="syz.7.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24f00af749 code=0x7ffc0000
[  152.310612][   T29] audit: type=1326 audit(1768475883.421:6760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13465 comm="syz.7.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f24f00af749 code=0x7ffc0000
[  152.335061][   T29] audit: type=1326 audit(1768475883.421:6759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13465 comm="syz.7.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24f00af749 code=0x7ffc0000
[  152.610619][T13490] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4201'.
[  153.063743][T13523] netlink: 'syz.7.4218': attribute type 21 has an invalid length.
[  153.071646][T13523] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4218'.
[  153.086762][T13523] netlink: 'syz.7.4218': attribute type 21 has an invalid length.
[  153.091376][ T9053] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  153.094833][T13523] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4218'.
[  153.112590][ T9053] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  153.131626][ T9053] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  153.151281][ T9053] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  153.257716][T13535] atomic_op ffff8881387cf528 conn xmit_atomic 0000000000000000
[  153.373922][T13555] loop6: detected capacity change from 0 to 512
[  153.380319][T13550] random: crng reseeded on system resumption
[  153.395773][T13555] EXT4-fs warning (device loop6): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  153.411323][T13555] EXT4-fs (loop6): mount failed
[  153.553514][T13579] lo speed is unknown, defaulting to 1000
[  153.605772][T13589] loop6: detected capacity change from 0 to 1024
[  153.613060][T13589] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  153.625164][T13589] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  153.636392][T13589] JBD2: no valid journal superblock found
[  153.642161][T13589] EXT4-fs (loop6): Could not load journal inode
[  153.677390][T13599] netlink: 'syz.7.4242': attribute type 7 has an invalid length.
[  153.828371][T13605] loop2: detected capacity change from 0 to 512
[  153.847428][T13605] EXT4-fs warning (device loop2): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  153.866729][T13605] EXT4-fs (loop2): mount failed
[  154.318637][T13651] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4275'.
[  154.492299][T13657] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4278'.
[  154.914677][T13683] loop7: detected capacity change from 0 to 512
[  154.925302][T13683] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  154.950761][T13683] EXT4-fs error (device loop7): xattr_find_entry:337: inode #15: comm syz.7.4281: corrupted xattr entries
[  154.964466][T13683] EXT4-fs (loop7): 1 orphan inode deleted
[  154.972740][T13683] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.004083][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.143964][T13704] team0: Port device gtp0 added
[  155.173172][T13710] netlink: 'syz.7.4293': attribute type 27 has an invalid length.
[  155.182117][T13710] 0ªî{X¹¦: left allmulticast mode
[  155.190791][T13710] ipip0: left promiscuous mode
[  155.195721][T13710] ipip0: left allmulticast mode
[  155.204348][T10834] netdevsim netdevsim7 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  155.241674][T13714] netlink: 'syz.4.4296': attribute type 1 has an invalid length.
[  155.243673][T10834] netdevsim netdevsim7 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  155.252654][T13713] Falling back ldisc for ptm0.
[  155.275772][T10834] netdevsim netdevsim7 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  155.286454][T10834] netdevsim netdevsim7 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  155.317004][T13719] gre0: entered promiscuous mode
[  155.322130][T13719] gre0: entered allmulticast mode
[  155.384122][T13728] openvswitch: netlink: Missing key (keys=40, expected=100)
[  155.440637][T13734] netlink: 'syz.4.4306': attribute type 2 has an invalid length.
[  155.450831][T13742] netlink: 'syz.6.4309': attribute type 1 has an invalid length.
[  155.541237][T13758] gre0: entered promiscuous mode
[  155.546416][T13758] gre0: entered allmulticast mode
[  155.653883][ T9107] nci: nci_rf_intf_activated_ntf_packet: unsupported rf_interface 0x60
[  155.706745][T13783] Falling back ldisc for ptm0.
[  155.720838][T13785] netlink: 'syz.6.4328': attribute type 16 has an invalid length.
[  155.728758][T13785] netlink: 156 bytes leftover after parsing attributes in process `syz.6.4328'.
[  155.754928][T13788] netlink: 'syz.7.4329': attribute type 2 has an invalid length.
[  155.805225][T13792] loop6: detected capacity change from 0 to 512
[  155.816812][T13794] gre0: entered promiscuous mode
[  155.821825][T13794] gre0: entered allmulticast mode
[  155.864052][T13798] xt_hashlimit: max too large, truncated to 1048576
[  155.872103][T13796] ip6gre1: entered promiscuous mode
[  155.883952][T13798] xt_CT: You must specify a L4 protocol and not use inversions on it
[  155.934251][T13805] option changes via remount are deprecated (pid=13803 comm=syz.7.4336)
[  155.943729][T13805] cgroup: option or name mismatch, new: 0x0 "kmem_cache_free", old: 0x0 ""
[  155.968905][T13812] netlink: 'syz.4.4342': attribute type 12 has an invalid length.
[  155.979812][T13814] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4343'.
[  155.989801][T13814] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4343'.
[  156.000298][T13811] loop5: detected capacity change from 0 to 512
[  156.010912][T13811] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  156.019396][T13811] EXT4-fs (loop5): orphan cleanup on readonly fs
[  156.026169][T13811] EXT4-fs warning (device loop5): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  156.041634][T13811] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  156.048931][T13811] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.4340: bg 0: block 15: invalid block bitmap
[  156.062117][T13811] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  156.071977][T13811] EXT4-fs (loop5): 1 truncate cleaned up
[  156.078990][T13811] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  156.104307][ T8628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.128643][T13824] netlink: 'syz.5.4346': attribute type 2 has an invalid length.
[  156.205594][T13832] gtp0: entered promiscuous mode
[  156.210878][T13832] gtp0: entered allmulticast mode
[  156.215998][T13832] team0: Device gtp0 is of different type
[  156.235914][T13834] loop7: detected capacity change from 0 to 512
[  156.330782][T13846] team0: Device gtp0 is of different type
[  156.341585][T13848] lo speed is unknown, defaulting to 1000
[  156.372968][T13851] loop5: detected capacity change from 0 to 1024
[  156.380296][T13851] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  156.391380][T13851] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  156.404997][T13851] JBD2: no valid journal superblock found
[  156.410771][T13851] EXT4-fs (loop5): Could not load journal inode
[  156.494993][T13866] loop2: detected capacity change from 0 to 512
[  156.816028][T13891] netlink: 'syz.2.4379': attribute type 27 has an invalid length.
[  156.877346][T13899] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4382'.
[  156.886416][T13899] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4382'.
[  156.926459][T13906] loop2: detected capacity change from 0 to 512
[  156.933810][T13906] EXT4-fs: Ignoring removed nobh option
[  156.945695][T13906] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.958785][T13906] ext4 filesystem being mounted at /893/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  156.987324][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.009914][T13910] xt_hashlimit: max too large, truncated to 1048576
[  157.020636][T13910] xt_CT: You must specify a L4 protocol and not use inversions on it
[  157.060985][   T29] kauditd_printk_skb: 56 callbacks suppressed
[  157.061000][   T29] audit: type=1400 audit(1768475888.241:6814): avc:  denied  { read write } for  pid=3319 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  157.091563][   T29] audit: type=1400 audit(1768475888.241:6815): avc:  denied  { open } for  pid=3319 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  157.116461][   T29] audit: type=1400 audit(1768475888.241:6816): avc:  denied  { ioctl } for  pid=3315 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=104 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  157.143351][   T29] audit: type=1400 audit(1768475888.281:6817): avc:  denied  { mounton } for  pid=13915 comm="syz.4.4391" path="/907/bus" dev="tmpfs" ino=4665 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  157.161780][T13916] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.179566][T13916] ext4 filesystem being mounted at /907/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  157.191098][   T29] audit: type=1400 audit(1768475888.301:6818): avc:  denied  { prog_load } for  pid=13917 comm="syz.2.4389" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  157.210529][   T29] audit: type=1400 audit(1768475888.311:6819): avc:  denied  { bpf } for  pid=13917 comm="syz.2.4389" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  157.231248][   T29] audit: type=1400 audit(1768475888.311:6820): avc:  denied  { perfmon } for  pid=13917 comm="syz.2.4389" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  157.247667][T13916] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.4391: corrupted inode contents
[  157.252448][   T29] audit: type=1400 audit(1768475888.311:6821): avc:  denied  { prog_run } for  pid=13917 comm="syz.2.4389" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  157.283168][   T29] audit: type=1400 audit(1768475888.321:6822): avc:  denied  { map_create } for  pid=13917 comm="syz.2.4389" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  157.302731][   T29] audit: type=1400 audit(1768475888.321:6823): avc:  denied  { map_read map_write } for  pid=13917 comm="syz.2.4389" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  157.332594][T13927] ip6gre1: entered promiscuous mode
[  157.336468][T13916] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #2: comm syz.4.4391: mark_inode_dirty error
[  157.349685][T13916] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.4391: corrupted inode contents
[  157.361888][T13916] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.4391: mark_inode_dirty error
[  157.390073][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.458443][T13941] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  157.471854][T13941] EXT4-fs (loop2): orphan cleanup on readonly fs
[  157.478973][T13941] EXT4-fs warning (device loop2): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  157.494118][T13941] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  157.501379][T13941] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.4401: bg 0: block 15: invalid block bitmap
[  157.509737][T13945] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.514083][T13941] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  157.514442][T13941] EXT4-fs (loop2): 1 truncate cleaned up
[  157.515212][T13941] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  157.527525][T13945] ext4 filesystem being mounted at /910/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.581979][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.675431][T13962] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  157.700991][T13962] ext4 filesystem being mounted at /334/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.777270][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  157.811501][T13959]  loop2: p1 p2 p4 < >
[  157.816864][T13959] loop2: partition table partially beyond EOD, truncated
[  157.827080][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.828976][T13959] loop2: p1 start 16777216 is beyond EOD, truncated
[  157.843672][T13959] loop2: p2 size 515840 extends beyond EOD, truncated
[  157.854583][T13959] loop2: p4 start 16777216 is beyond EOD, truncated
[  157.934094][T13980] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  157.983627][T13980] EXT4-fs (loop4): orphan cleanup on readonly fs
[  157.993692][T13980] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  158.020173][T13980] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  158.099300][T13980] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.4415: bg 0: block 15: invalid block bitmap
[  158.111732][T13997] netlink: 348 bytes leftover after parsing attributes in process `syz.6.4424'.
[  158.121886][T13997] netlink: 348 bytes leftover after parsing attributes in process `syz.6.4424'.
[  158.131332][T13980] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  158.158457][T13980] EXT4-fs (loop4): 1 truncate cleaned up
[  158.165648][T13980] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  158.179987][T14000] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=14000 comm=syz.6.4425
[  158.192755][T14000] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=14000 comm=syz.6.4425
[  158.266818][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.319898][T14010] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.341965][T14010] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  158.358418][T14010] EXT4-fs (loop5): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 18 with error 28
[  158.370853][T14010] EXT4-fs (loop5): This should not happen!! Data will be lost
[  158.370853][T14010] 
[  158.380567][T14010] EXT4-fs (loop5): Total free blocks count 0
[  158.387533][T14010] EXT4-fs (loop5): Free/Dirty block details
[  158.393568][T14010] EXT4-fs (loop5): free_blocks=2415919104
[  158.399327][T14010] EXT4-fs (loop5): dirty_blocks=32
[  158.404495][T14010] EXT4-fs (loop5): Block reservation details
[  158.410538][T14010] EXT4-fs (loop5): i_reserved_data_blocks=2
[  158.438910][ T8628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.586619][T14036] set_capacity_and_notify: 7 callbacks suppressed
[  158.586642][T14036] loop6: detected capacity change from 0 to 512
[  158.637439][T14036] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.652882][T14036] ext4 filesystem being mounted at /355/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  158.838046][T14060] loop7: detected capacity change from 0 to 512
[  158.854837][T14060] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.874456][T14060] ext4 filesystem being mounted at /342/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  158.888234][T14064] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4451'.
[  158.900165][T14060] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #2: comm syz.7.4450: corrupted inode contents
[  158.917227][T14064] loop2: detected capacity change from 0 to 512
[  158.935076][T14060] EXT4-fs error (device loop7): ext4_dirty_inode:6502: inode #2: comm syz.7.4450: mark_inode_dirty error
[  158.947235][T14060] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #2: comm syz.7.4450: corrupted inode contents
[  158.955574][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.968947][T14060] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #2: comm syz.7.4450: mark_inode_dirty error
[  158.985647][T14064] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.009261][T14064] ext4 filesystem being mounted at /907/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.059309][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.070465][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.387573][T14088] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=14088 comm=syz.7.4461
[  159.400227][T14088] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=14088 comm=syz.7.4461
[  159.466780][T14098] bridge0: entered promiscuous mode
[  159.472338][T14098] macvtap1: entered promiscuous mode
[  159.477875][T14098] macvtap1: entered allmulticast mode
[  159.483366][T14098] bridge0: entered allmulticast mode
[  159.506833][T14098] bridge0: port 5(macvtap1) entered blocking state
[  159.513498][T14098] bridge0: port 5(macvtap1) entered disabled state
[  159.541453][T14098] bridge0: left allmulticast mode
[  159.546741][T14098] bridge0: left promiscuous mode
[  159.548837][T14110] loop6: detected capacity change from 0 to 512
[  159.564183][T14112] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4473'.
[  159.579324][T14112] vlan3: entered promiscuous mode
[  159.589124][T14112] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  159.598183][T14110] EXT4-fs warning (device loop6): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  159.617872][T14110] EXT4-fs (loop6): mount failed
[  159.686461][T14121] loop7: detected capacity change from 0 to 8192
[  159.748740][T14136] netlink: 72 bytes leftover after parsing attributes in process `syz.4.4482'.
[  159.753384][T14121]  loop7: p1 p2 p4 < >
[  159.761990][T14121] loop7: partition table partially beyond EOD, truncated
[  159.766198][T14136] loop4: detected capacity change from 0 to 512
[  159.787093][T14136] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.818369][T14121] loop7: p1 start 16777216 is beyond EOD, truncated
[  159.825082][T14121] loop7: p2 size 515840 extends beyond EOD, truncated
[  159.832884][T14136] ext4 filesystem being mounted at /919/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.843553][T14121] loop7: p4 start 16777216 is beyond EOD, truncated
[  159.918370][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.948628][T14155] atomic_op ffff88811c57f528 conn xmit_atomic 0000000000000000
[  159.959156][T14154] loop7: detected capacity change from 0 to 512
[  159.973585][T14157] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4492'.
[  159.985930][T14154] EXT4-fs warning (device loop7): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  159.994622][T14157] vlan2: entered promiscuous mode
[  160.006792][T14157] netdevsim netdevsim6 netdevsim0: entered promiscuous mode
[  160.030009][T14154] EXT4-fs (loop7): mount failed
[  160.051498][T14169] netlink: 56 bytes leftover after parsing attributes in process `syz.2.4497'.
[  160.106655][T14173] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4499'.
[  160.115803][T14173] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4499'.
[  160.125947][T14173] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4499'.
[  160.278321][T14200] vlan2: entered promiscuous mode
[  160.283880][T14200] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  160.295866][ T3387] kernel write not supported for file bpf-map (pid: 3387 comm: kworker/0:3)
[  160.496048][T14229] loop5: detected capacity change from 0 to 764
[  160.505275][T14229] rock: directory entry would overflow storage
[  160.511484][T14229] rock: sig=0x4f50, size=4, remaining=3
[  160.517394][T14229] iso9660: Corrupted directory entry in block 6 of inode 1792
[  160.531088][T14231] netlink: 'syz.2.4525': attribute type 6 has an invalid length.
[  160.627548][T14243] lo speed is unknown, defaulting to 1000
[  160.790192][T14256] netlink: 'syz.6.4537': attribute type 1 has an invalid length.
[  160.842022][T14262] bridge0: entered promiscuous mode
[  160.851087][T14262] macvtap1: entered promiscuous mode
[  160.856859][T14262] macvtap1: entered allmulticast mode
[  160.862328][T14262] bridge0: entered allmulticast mode
[  160.868846][T14262] bridge0: port 5(macvtap1) entered blocking state
[  160.875677][T14262] bridge0: port 5(macvtap1) entered disabled state
[  160.884278][T14262] bridge0: left allmulticast mode
[  160.889563][T14262] bridge0: left promiscuous mode
[  161.034712][T14272] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  161.037047][T14274] loop7: detected capacity change from 0 to 512
[  161.063908][T14274] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.082500][T14274] ext4 filesystem being mounted at /354/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.348767][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.369368][T14316] macvtap1: entered promiscuous mode
[  161.374830][T14316] bridge0: entered promiscuous mode
[  161.380362][T14316] macvtap1: entered allmulticast mode
[  161.385896][T14316] bridge0: entered allmulticast mode
[  161.394377][T14316] bridge0: port 3(macvtap1) entered blocking state
[  161.400970][T14316] bridge0: port 3(macvtap1) entered disabled state
[  161.409849][T14316] bridge0: left allmulticast mode
[  161.415095][T14316] bridge0: left promiscuous mode
[  161.423574][T14319] netlink: 'syz.7.4562': attribute type 1 has an invalid length.
[  161.498756][T14325] ip6gre1: entered promiscuous mode
[  161.504417][T14325] ip6gre1: entered allmulticast mode
[  161.510915][T10834] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  161.518825][T10834] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  161.532540][ T3485] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  161.545220][T14325] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  161.558207][T14332] loop2: detected capacity change from 0 to 764
[  161.575509][T14332] rock: directory entry would overflow storage
[  161.581722][T14332] rock: sig=0x4f50, size=4, remaining=3
[  161.587458][T14332] iso9660: Corrupted directory entry in block 6 of inode 1792
[  161.615157][T14339] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  161.629896][T14343] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  161.639950][T14337] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.662610][T14337] ext4 filesystem being mounted at /389/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.675633][T14343] EXT4-fs (loop4): invalid journal inode
[  161.683640][T14347] netlink: 'syz.2.4576': attribute type 1 has an invalid length.
[  161.684403][T14343] EXT4-fs (loop4): can't get journal size
[  161.710901][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.735610][T14343] EXT4-fs (loop4): 1 truncate cleaned up
[  161.760202][T14354] lo speed is unknown, defaulting to 1000
[  161.780801][T14343] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.797505][T14359] macvtap1: entered promiscuous mode
[  161.802940][T14359] bridge0: entered promiscuous mode
[  161.808352][T14359] macvtap1: entered allmulticast mode
[  161.814158][T14359] bridge0: entered allmulticast mode
[  161.821799][T14360] journal_path: Lookup failure for './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[  161.833557][T14359] bridge0: port 1(macvtap1) entered blocking state
[  161.847671][T14360] EXT4-fs: error: could not find journal device path
[  161.851791][T14359] bridge0: port 1(macvtap1) entered disabled state
[  161.879926][   T36] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  161.909186][T14359] bridge0: left allmulticast mode
[  161.914329][T14359] bridge0: left promiscuous mode
[  161.992100][T14367] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  162.032797][T14367] ext4 filesystem being mounted at /426/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  162.068034][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.079149][T14370] sd 0:0:1:0: device reset
[  162.140015][T14378] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  162.142990][ T3485] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  162.153287][ T8628] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  162.186726][   T29] kauditd_printk_skb: 324 callbacks suppressed
[  162.186742][   T29] audit: type=1326 audit(1768475893.361:7144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14379 comm="syz.2.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  162.217709][   T29] audit: type=1326 audit(1768475893.361:7145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14379 comm="syz.2.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  162.242291][   T29] audit: type=1326 audit(1768475893.361:7146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14379 comm="syz.2.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  162.266969][   T29] audit: type=1326 audit(1768475893.361:7147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14379 comm="syz.2.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  162.290646][   T29] audit: type=1326 audit(1768475893.361:7148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14379 comm="syz.2.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  162.315682][   T29] audit: type=1326 audit(1768475893.361:7149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14379 comm="syz.2.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  162.339523][   T29] audit: type=1326 audit(1768475893.361:7150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14379 comm="syz.2.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  162.364069][   T29] audit: type=1326 audit(1768475893.361:7151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14379 comm="syz.2.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  162.388179][   T29] audit: type=1326 audit(1768475893.361:7152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14379 comm="syz.2.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  162.412787][   T29] audit: type=1326 audit(1768475893.361:7153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14379 comm="syz.2.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb75af749 code=0x7ffc0000
[  162.451227][T14387] netlink: 'syz.5.4588': attribute type 6 has an invalid length.
[  162.469729][T14387] netlink: 'syz.5.4588': attribute type 6 has an invalid length.
[  162.484593][T14389] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  162.592308][T14401] bridge0: entered promiscuous mode
[  162.613324][T14401] macvtap1: entered promiscuous mode
[  162.618837][T14401] macvtap1: entered allmulticast mode
[  162.624337][T14401] bridge0: entered allmulticast mode
[  162.653304][T14401] bridge0: port 2(macvtap1) entered blocking state
[  162.659964][T14401] bridge0: port 2(macvtap1) entered disabled state
[  162.684070][T14401] bridge0: left allmulticast mode
[  162.689492][T14401] bridge0: left promiscuous mode
[  162.887632][T14431] bridge2: entered promiscuous mode
[  162.892979][T14431] bridge2: entered allmulticast mode
[  162.938032][T14436] A link change request failed with some changes committed already. Interface bond_slave_1 may have been left with an inconsistent configuration, please check.
[  162.977203][T14440] EXT4-fs: Ignoring removed mblk_io_submit option
[  163.024243][T14440] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.066423][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.221108][T14472] A link change request failed with some changes committed already. Interface bond_slave_1 may have been left with an inconsistent configuration, please check.
[  163.224379][T14476] EXT4-fs: Ignoring removed mblk_io_submit option
[  163.284452][T14476] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.350792][T14492] sd 0:0:1:0: device reset
[  163.364868][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.453350][T14503] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  163.504905][T14512] bridge0: entered promiscuous mode
[  163.510306][T14512] macvtap1: entered promiscuous mode
[  163.515994][T14512] macvtap1: entered allmulticast mode
[  163.521412][T14512] bridge0: entered allmulticast mode
[  163.531130][T14512] bridge0: port 2(macvtap1) entered blocking state
[  163.537793][T14512] bridge0: port 2(macvtap1) entered disabled state
[  163.543563][ T9107] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  163.560658][T14512] bridge0: left allmulticast mode
[  163.566122][T14512] bridge0: left promiscuous mode
[  163.602187][T14517] A link change request failed with some changes committed already. Interface bond_slave_1 may have been left with an inconsistent configuration, please check.
[  163.845974][T14552] A link change request failed with some changes committed already. Interface bond_slave_1 may have been left with an inconsistent configuration, please check.
[  163.877920][T14556] bridge0: entered promiscuous mode
[  163.893782][T14559] __nla_validate_parse: 17 callbacks suppressed
[  163.893799][T14559] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4665'.
[  163.909296][T14559] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4665'.
[  163.912879][T14556] macvtap1: entered promiscuous mode
[  163.918392][T14559] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4665'.
[  163.923983][T14556] macvtap1: entered allmulticast mode
[  163.938148][T14556] bridge0: entered allmulticast mode
[  163.944492][T14556] bridge0: port 5(macvtap1) entered blocking state
[  163.951205][T14556] bridge0: port 5(macvtap1) entered disabled state
[  163.966286][T14559] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4665'.
[  163.975543][T14559] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4665'.
[  163.984741][T14559] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4665'.
[  163.994904][T14556] bridge0: left allmulticast mode
[  164.000082][T14556] bridge0: left promiscuous mode
[  164.024736][T14559] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4665'.
[  164.033817][T14559] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4665'.
[  164.042866][T14559] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4665'.
[  164.334984][T14585] bond4: option arp_validate: mode dependency failed, not supported in mode balance-tlb(5)
[  164.349706][T14585] bond4 (unregistering): Released all slaves
[  164.379643][T14588] bridge1: entered promiscuous mode
[  164.385147][T14588] bridge1: entered allmulticast mode
[  164.391679][T14593] set_capacity_and_notify: 7 callbacks suppressed
[  164.391697][T14593] loop5: detected capacity change from 0 to 512
[  164.426998][T14593] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.454010][T14593] ext4 filesystem being mounted at /450/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.469904][T14603] xt_hashlimit: size too large, truncated to 1048576
[  164.479592][T14605] netlink: 536 bytes leftover after parsing attributes in process `syz.7.4684'.
[  164.490152][T14607] netlink: 'syz.4.4685': attribute type 7 has an invalid length.
[  164.589790][ T8628] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.649116][T14626] bridge1: entered promiscuous mode
[  164.654614][T14626] bridge1: entered allmulticast mode
[  164.708546][T14631] loop7: detected capacity change from 0 to 1024
[  164.736173][T14631] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.749106][T14631] ext4 filesystem being mounted at /394/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.798533][T14643] loop6: detected capacity change from 0 to 1764
[  164.820497][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.853762][T14647] SELinux:  Context system_u: is not valid (left unmapped).
[  164.894041][T14651] loop6: detected capacity change from 0 to 1024
[  164.904706][T14651] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.942707][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.977770][T14663] atomic_op ffff88813740ed28 conn xmit_atomic 0000000000000000
[  164.989318][T14661] bridge1: entered promiscuous mode
[  164.994907][T14661] bridge1: entered allmulticast mode
[  165.013409][T14665] loop7: detected capacity change from 0 to 1024
[  165.019880][T14667] loop6: detected capacity change from 0 to 512
[  165.026801][T14667] EXT4-fs: Ignoring removed nobh option
[  165.045200][T14665] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.069427][T14665] EXT4-fs error (device loop7): mb_free_blocks:2037: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  165.098753][T14667] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.111793][T14667] ext4 filesystem being mounted at /409/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  165.129050][ T9738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.260975][ T9655] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.372437][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  165.384466][T14684] bridge0: entered promiscuous mode
[  165.398783][T14684] macvtap1: entered promiscuous mode
[  165.404478][T14684] macvtap1: entered allmulticast mode
[  165.409880][T14684] bridge0: entered allmulticast mode
[  165.436598][T14684] bridge0: port 5(macvtap1) entered blocking state
[  165.443411][T14684] bridge0: port 5(macvtap1) entered disabled state
[  165.451506][T14684] bridge0: left allmulticast mode
[  165.456783][T14684] bridge0: left promiscuous mode
[  165.628821][T14690] netlink: 'syz.6.4719': attribute type 1 has an invalid length.
[  165.767568][T14699] loop2: detected capacity change from 0 to 1024
[  165.776536][T14700] lo speed is unknown, defaulting to 1000
[  165.783425][T14700] lo speed is unknown, defaulting to 1000
[  165.795506][T14702] bridge1: entered promiscuous mode
[  165.800789][T14702] bridge1: entered allmulticast mode
[  165.806829][T14699] EXT4-fs: Ignoring removed mblk_io_submit option
[  165.814994][T14700] lo speed is unknown, defaulting to 1000
[  165.837962][T14699] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.912691][T14700] infiniband syz1: set active
[  165.917470][T14700] infiniband syz1: added lo
[  165.924698][ T3485] lo speed is unknown, defaulting to 1000
[  165.934466][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.935446][T14700] RDS/IB: syz1: added
[  165.947624][T14700] smc: adding ib device syz1 with port count 1
[  165.954180][T14700] smc:    ib device syz1 port 1 has no pnetid
[  165.960387][ T3485] lo speed is unknown, defaulting to 1000
[  165.966534][T14700] lo speed is unknown, defaulting to 1000
[  166.004569][T14700] lo speed is unknown, defaulting to 1000
[  166.054974][T14700] lo speed is unknown, defaulting to 1000
[  166.072855][T14726] capability: warning: `syz.7.4734' uses 32-bit capabilities (legacy support in use)
[  166.088917][T14728] ==================================================================
[  166.097062][T14728] BUG: KCSAN: data-race in bq_flush_to_queue / cpu_map_kthread_run
[  166.105003][T14728] 
[  166.107366][T14728] write to 0xffff88811bdf7880 of 8 bytes by task 14729 on cpu 0:
[  166.115127][T14728]  cpu_map_kthread_run+0x529/0x1560
[  166.120381][T14728]  kthread+0x489/0x510
[  166.124522][T14728]  ret_from_fork+0x149/0x290
[  166.129163][T14728]  ret_from_fork_asm+0x1a/0x30
[  166.133974][T14728] 
[  166.136334][T14728] read to 0xffff88811bdf7880 of 8 bytes by task 14728 on cpu 1:
[  166.144002][T14728]  bq_flush_to_queue+0x124/0x350
[  166.148989][T14728]  cpu_map_enqueue+0x1a6/0x1c0
[  166.153817][T14728]  xdp_do_redirect_frame+0x27c/0x560
[  166.159159][T14728]  bpf_test_run_xdp_live+0x98c/0x11d0
[  166.164592][T14728]  bpf_prog_test_run_xdp+0x53e/0x9a0
[  166.169957][T14728]  bpf_prog_test_run+0x204/0x340
[  166.174933][T14728]  __sys_bpf+0x4c0/0x7c0
[  166.179212][T14728]  __x64_sys_bpf+0x41/0x50
[  166.183683][T14728]  x64_sys_call+0x28e1/0x3000
[  166.188403][T14728]  do_syscall_64+0xca/0x2b0
[  166.192954][T14728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.198882][T14728] 
[  166.201233][T14728] value changed: 0xffff88814ed8b070 -> 0x0000000000000000
[  166.208356][T14728] 
[  166.210714][T14728] Reported by Kernel Concurrency Sanitizer on:
[  166.216889][T14728] CPU: 1 UID: 0 PID: 14728 Comm: syz.5.4735 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  166.228307][T14728] Tainted: [W]=WARN
[  166.232133][T14728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  166.242218][T14728] ==================================================================
[  166.264848][T14731] netlink: 'syz.2.4736': attribute type 3 has an invalid length.
[  166.283030][T14700] lo speed is unknown, defaulting to 1000
[  166.319507][T14700] lo speed is unknown, defaulting to 1000
[  166.357139][T14700] lo speed is unknown, defaulting to 1000
[  166.391729][T14700] lo speed is unknown, defaulting to 1000
[  173.212527][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!