last executing test programs:

1.712507207s ago: executing program 0 (id=1033):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x16)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
r1 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000100)={r1})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x2f}, @printk={@d, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x17}}]}, &(0x7f0000000080)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xb, 0x3, 0x7a5b0b1f, 0x80, 0x42, r1, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2, 0x3}, 0x50)
r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000001c0), 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@bloom_filter={0x1e, 0xa6b2, 0x9, 0x9, 0x1830, r3, 0x3, '\x00', 0x0, r4, 0x0, 0x1, 0x5, 0xf}, 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, 0xffffffffffffffff, 0x26}, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9c}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg$unix(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
close(0xffffffffffffffff)
r6 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2400c09d}, 0x20)

1.711917247s ago: executing program 2 (id=1035):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r2, &(0x7f0000000740)=[{{&(0x7f00000002c0)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000640)=[{0x0, 0x11}, {&(0x7f0000000540)="506f578d627e1169d0a06cce63c735bb71e2ae98c0832af7994a293861", 0x1d}, {0x0}], 0x3, &(0x7f0000000680)=[@ip_tos_int={{0x14, 0x0, 0x1, 0xc0d}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x80}}], 0x30}}], 0x1, 0x0)

1.678458767s ago: executing program 2 (id=1038):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x19, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0xb}, 0x18)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000400), r1)
getsockname$packet(r1, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="4800000010000305ff810000fddbdf2500000000", @ANYRES32=r2, @ANYRES32=r2], 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x0)

1.624037128s ago: executing program 2 (id=1041):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xb, 0x0, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
r0 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000a40)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@norecovery}, {@resuid}, {@quota}]}, 0x8, 0x445, &(0x7f0000001dc0)="$eJzs28tvG0UYAPBv105KX8RU5dEHECiIikfSpKX0wAEQSBxAQoJDOYYkrUrdBjVBolUFBaFyRJW4I45I/AWc4IKAExJX4IwqVSiXFk5Ga+82jmunSbDrEP9+0tYzu+POfJ4de3YnG8DAGs3+SSJ2RMRvETHSyC4vMNp4ubF4cfrvxYvTSdRqb/6V1MtdX7w4XRQt3re9yJQj0k+T2Nem3vnzF05PVauz5/L8+MKZ98bnz1945tSZqZOzJ2fPTh47duTwxHNHJ5/tSpxZXNf3fji3f8+rb195ffr4lXd++iYp4m+Jo0tG2+4tN14er9W6XF1/7WxKJ+U+NoQ1KeWn5FB9/I9EKZY6byRe+aSvjQN6qlar1e7rfPhSDdjEkuh3C4D+KH7os+vfYrtDU48N4dqLjQugLO4b+dY4Uo40LzPUcn3bTaMRcfzSP19mW7Teh9jao0oBgIH2XTb/ebrd/C+N5vtCd+drKJWIuCcidkXE0YjYHRH3RtTL3h8RD6yx/tZFklvnn+nVdQW2Stn87/l8bWv5/K+Y/UWllOd21uMfSk6cqs4eyj+TgzG0JctPrFDH9y//+nmnY83zv2zL6i/mgnk7rpa3LH/PzNTC1H+Judm1jyP2ltvFn9xcCUgiYk9EvLDOOk49+fX+Tsc6xD+8qv+4C+tMta8inmj0/6Voib+QrLw+OX5XVGcPjRdnxa1+/uXyG53qv33/91bW/9vanv9F/H9Ukub12vm113H59886XlOu9/wfTt5atu+DqYWFcxMRw8lr9Xylef9kS7nJpfJZ/AcPtB//u2Lpk9gXEdlJ/GBEPBQRD+dtfyQiHo2IAyvE/+NLj727/vh7K4t/ZsX+j5b+X0oMR+ue9onS6R++XVZpZS3xZ/1/pJ46mO9Zzfffatq1vrMZAAAA/n/SiNgRSTp2M52mY2ONv+HfHdvS6tz8wlMn5t4/O9N4RqASQ2lxp2uk6X7oRH5ZX+QnW/KH8/vGX5S21vNj03PVmX4HDwNue4fxn/mz1O/WAT3neS0YXMY/DC7jHwaX8Q+Dq8349+gZDIh2v/8f9aEdwJ3XMv5XXPYzMYDNxfU/DC7jHwaX8Q8DaX5r3P4h+c2RSCNiAzRjsyQi3RDNkOhRot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN3xbwAAAP//ynflmQ==")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0) (async)
r2 = openat(r0, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3], 0x0}, 0x94) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@typedef={0x2}]}, {0x0, [0x0, 0x61]}}, 0x0, 0x28}, 0x20)
fcntl$getflags(r1, 0xb) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@alu={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]}, &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0xb, r5, 0x8, 0x0, 0x0, 0x14, 0x0, 0x14}, 0x94) (async)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140)={<r6=>0x0}, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
write(r2, &(0x7f00000009c0)="3bf58d", 0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
sendfile(r2, r1, 0x0, 0x3ffff) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x50) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x14, 0x8, &(0x7f0000000080)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r8 = syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')
preadv(r8, &(0x7f0000000480)=[{&(0x7f0000000440)=""/2, 0x2}], 0x1, 0x0, 0x5)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000280)={&(0x7f00000007c0)={0x200, 0x34, 0x2, 0x70bd2c, 0x25dfdbff, {0x16}, [@nested={0x196, 0xe0, 0x0, 0x1, [@generic="872495c36b7d3920f8683ce7c4faf40fff7f17fbcc72b93b415fa5c3c552d4f76382dd6c1617e3b0097d800140694d42cdc5461bae33d8bae67ff233dde25aa9da86ed44d823643d9b0ebe061c6dc6722714a883966ecc1654038d0447f6bca1b5fe2aaa004503bd1b5d378d90f07a0818a7843af2a5cfe1ec92fc89453c", @typed={0x101, 0xa5, 0x0, 0x0, @binary="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"}, @nested={0x4, 0x117}, @typed={0x8, 0x70, 0x0, 0x0, @pid=r6}, @nested={0x4}]}, @nested={0x4, 0x10c}, @nested={0x50, 0xdb, 0x0, 0x1, [@typed={0x46, 0x41, 0x0, 0x0, @binary="bf67c2a569ff61b3ffbdb7a5e41b100994e58aaac8468fd398d3e0f4503099b4eed1383657701b525424dc568363b428178096abfb94c95970686eb0d2fb1925a2c6"}, @nested={0x4, 0x144}]}]}, 0x200}, 0x1, 0x0, 0x0, 0x21417a57c3f0c6b3}, 0x10000000) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x18) (async)
setfsgid(0x0) (async)
sendfile(r2, r1, 0x0, 0x7fffeffd) (async)
acct(&(0x7f0000000080)='./bus\x00')

1.56332613s ago: executing program 2 (id=1044):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x72, 0x11cfa, 0x5, 0x5, 0x3, 0x4, 0x1, 0x0, 0x7cce8c743ee810dc})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
read(r1, &(0x7f0000000840)=""/40, 0x28)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f0000000bc0)={0x800100, 0x0, 0x0, 0x724f, 0x400, 0x55a})
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r4 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)
r5 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r5, 0x0, 0xca, &(0x7f0000000180)={0x0, 0x4, 0x0, 0x40, @vifc_lcl_ifindex, @multicast2}, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000a00)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6, 0x0, 0x2}, 0x18)
setsockopt$MRT_FLUSH(r5, 0x0, 0xd4, &(0x7f0000000000)=0x9, 0x4)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000009"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000240)={0x0, r3}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000664fc3137d72ac2a1223fcaf9231d802c7396568630a712bf0000000000000000000000d110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r7}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r8}, 0x10)
setitimer(0x1, 0x0, 0x0)
alarm(0x5)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r9=>0x0]}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000000)={r9, 0x0, 0x0, 0xfffffffe, 0x0, 0x6}, 0x14)
r10 = socket$inet_sctp(0x2, 0x5, 0x84)
r11 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r11, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r12=>0x0}, &(0x7f00000010c0)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r10, 0x84, 0x0, &(0x7f0000000040)={r12, 0x4, 0x800, 0x1000}, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)

1.414016593s ago: executing program 3 (id=1052):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'syzkaller0\x00', <r1=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x2}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x1a, r1, 0x1, 0x1, 0x6, @broadcast}, 0x14)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6d, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200a}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r5, 0xc0105500, &(0x7f0000000140)={0x20, 0x11, 0x4, 0x8000, 0x0, 0x0, 0x0})

1.359928054s ago: executing program 3 (id=1054):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x80000000001}, 0x18)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0xfffe, 0x0, @empty, 0x4}, {0xa, 0x0, 0x0, @loopback, 0xfffffffc}, r2, 0x400}}, 0x48)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r1, &(0x7f0000000d40)={0x16, 0x98, 0xfa00, {0x0, 0x2, r2, 0x30, 0x1, @ib={0x1b, 0x8000, 0xfff, {"3f8c0d6cf777eaa6ace6d3ec00ed4771"}, 0x500e, 0x0, 0x5}}}, 0xa0)

1.359584714s ago: executing program 3 (id=1056):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/vmstat\x00', 0x0, 0x0)
r2 = syz_io_uring_setup(0x49d, &(0x7f00000003c0)={0x0, 0x79ac, 0x400, 0x7ffd, 0x32c, 0x0, r1}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000000)=0x2000ffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x2007, @fd=r1, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
io_uring_enter(r2, 0xfd0, 0x4c1, 0x43, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)

1.359446824s ago: executing program 3 (id=1057):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x3, @empty, 0x1}, 0x1c)
listen(r1, 0x1)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
accept(r0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f00000000c0)='kyber_latency\x00', r3}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x1a, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x81, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f00000004c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x8}}}}}, 0x0)

1.02499903s ago: executing program 4 (id=1064):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f0000000d00)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, 0x0)
syz_open_pts(r0, 0x0)

857.789503ms ago: executing program 0 (id=1065):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'syzkaller0\x00', <r1=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x2}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x1a, r1, 0x1, 0x1, 0x6, @broadcast}, 0x14)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6d, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200a}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r5, 0xc0105500, &(0x7f0000000140)={0x20, 0x11, 0x4, 0x8000, 0x0, 0x0, 0x0})

857.588763ms ago: executing program 0 (id=1066):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000000000000198, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000800000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1e}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000800000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x863, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800010009000000000000000a00000000000000080001000200000004000b"], 0x24}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@delnexthop={0x20, 0x69, 0x503, 0x1000000, 0x0, {}, [{0x8, 0x1, 0x2}]}, 0x20}}, 0x0)

819.112074ms ago: executing program 0 (id=1068):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/vmstat\x00', 0x0, 0x0)
r2 = syz_io_uring_setup(0x49d, &(0x7f00000003c0)={0x0, 0x79ac, 0x400, 0x7ffd, 0x32c, 0x0, r1}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000000)=0x2000ffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x2007, @fd=r1, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
io_uring_enter(r2, 0xfd0, 0x4c1, 0x43, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)

818.417874ms ago: executing program 0 (id=1070):
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$cgroup_pid(r1, &(0x7f0000000000), 0x2a979d)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r3, &(0x7f0000000180), 0x40010)

788.902935ms ago: executing program 0 (id=1073):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x3, @empty, 0x1}, 0x1c)
listen(r1, 0x1)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
accept(r0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f00000000c0)='kyber_latency\x00', r3}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x1a, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x81, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, 0x0, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f00000004c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x8}}}}}, 0x0)

720.790676ms ago: executing program 2 (id=1074):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
msgsnd(0x0, 0x0, 0x401, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000700000001000500"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, 0x0, &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd64}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='fib6_table_lookup\x00', r3}, 0x18)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x210})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb89, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x80000000, 0x0, 0x10000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x89f1, &(0x7f0000000080))

720.513596ms ago: executing program 2 (id=1075):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x9}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x80, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, 0x6, 0x1, 0x401, 0x0, 0x0, {0xa, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x8800}, 0x14000010)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000180)={0x0, 0xa, 0x20}, &(0x7f0000000200)=0xc)

613.905728ms ago: executing program 1 (id=1078):
setreuid(0xee01, 0x0)
syz_mount_image$ext4(&(0x7f0000000b00)='ext4\x00', &(0x7f0000000b40)='./file2\x00', 0x414c84, &(0x7f0000000500)={[{@inlinecrypt}]}, 0x1, 0x775, &(0x7f0000001180)="$eJzs3c9rXNUeAPDvnSRNm/a95MGD9+oqIGigdGJqbBVcVFyIYKGga9thMg01k0zJTEoTAlpEcCOouBB007U/6s6tP7b6X7gQS9W0WHEhkTu5t502M2mSJpnqfD5wM+fceyfnfOf+OGfmHu4NoGeNpn8KEYcj4t0kYjibn0TEQDPVH3Fybb1bK8vldEpidfXlX5LmOjdXlsvR8p7UwSzz/4j45q2II4X15dYXl2ZK1WplPsuPN2YvjNcXl46eny1NV6Yrc8cnJiePnXjqxPGdi/W375cOXXvvhcc/P/nHm/+7+s63SZyMQ9my1jh2ymiMZp/JQPoR3uX5nS6sy5JuV4BtSQ/NvrWjPA7HcPQ1UwDAP9nrEbEKAPSYRPsPAD0m/x3g5spyOZ+6+4vE3rr+XETsX4s/v765tqQ/u2a3v3kddOhmcteVkSQiRnag/NGI+PjLVz9Np9il65AA7bxxOSLOjoyuP/8n68YsbNUTGyzbl72O3jPf+Q/2zldp/+fpdv2/wu3+T7Tp/wy2OXa3477H/4EdKGQDaf/v2Zaxbbda4s+M9GW5fzX7fAPJufPVSnpu+3dEjMXAYJqf2KCMsRt/3ui0rLX/9+v7r32Slp++3lmj8FP/4N3vmSo1Sg8Sc6vrlyMe6W8Xf3J7+ycd+r+nN1nGi8+8/VGnZWn8abz5tD7+yEYn7Y7VKxGPtd3+d0a0JRuOTxxv7g7j+U7Rxhc/fDjUqfzW7Z9Oafn5d4G9kG7/oY3jH0lax2vWt17Gd1eGv+607P7xt9//9yWvNNN5P+JSqdGYn4jYl7y0fv6xO+/N8/n6afxjj7Y//jfa/9PvhGc3GX//tZ8/2378uyuNf2pL23/riau3Zvo6lb+57T/ZTI1lczZz/ttsBR/kswMAAAAAAAAAAAAAAAAAAAAAAACAzSpExKFICsXb6UKhWFx7hvd/Y6hQrdUbR87VFuamovms7JEYKOS3uhxuuR/qRHY//Dx/7J78kxHxn4j4YPBAkt9HcarLsQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA7mCH5/+nfhzsdu0AgF2zv9sVAAD2nPYfAHqP9h8Aeo/2HwB6j/YfAHqP9h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBddvrUqXRa/X1luZzmpy4uLszULh6dqtRnirML5WK5Nn+hOF2rTVcrxXJt9n7/r1qrXZiMuYVL441KvTFeX1w6M1tbmGucOT9bmq6cqQzsSVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsDX1xaWZUrVamZfYRmL14ahG9xN92e70sNRnTxPJw1GNHU50+cQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8DfxVwAAAP//02Ii/w==")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) (fail_nth: 3)

375.726283ms ago: executing program 3 (id=1079):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000580)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000006c0), 0x48200, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xe)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x200000000000000)
setreuid(0xee01, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_SIOCGSKNS(r3, 0x894c, 0x0)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x4e24, @multicast1}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, 0x0}}], 0x1, 0x20008000)
socket$kcm(0x10, 0x2, 0x10)
socket(0x1e, 0x4, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
shutdown(r3, 0x1)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r6}, 0x18)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r7, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

205.129866ms ago: executing program 4 (id=1080):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x80000000001}, 0x18)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0xfffe, 0x0, @empty, 0x4}, {0xa, 0x0, 0x0, @loopback, 0xfffffffc}, r2, 0x400}}, 0x48)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r1, &(0x7f0000000d40)={0x16, 0x98, 0xfa00, {0x0, 0x2, r2, 0x30, 0x1, @ib={0x1b, 0x8000, 0xfff, {"3f8c0d6cf777eaa6ace6d3ec00ed4771"}, 0x500e, 0x0, 0x5}}}, 0xa0)

159.527747ms ago: executing program 4 (id=1081):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/vmstat\x00', 0x0, 0x0)
r2 = syz_io_uring_setup(0x49d, &(0x7f00000003c0)={0x0, 0x79ac, 0x400, 0x7ffd, 0x32c, 0x0, r1}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000000)=0x2000ffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x2007, @fd=r1, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
io_uring_enter(r2, 0xfd0, 0x4c1, 0x43, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)

159.205227ms ago: executing program 1 (id=1082):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x12, 0x104, 0x8, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r2, <r3=>0xffffffffffffffff}, 0x0, &(0x7f0000001d40)=r0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000002c0)={r3, 0x0, 0x0}, 0x20)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES16=r4, @ANYRES32=<r5=>r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704002000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x18)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000700), 0xffffffffffffffff)
recvmmsg(r7, &(0x7f0000000640)=[{{0x0, 0x0, &(0x7f0000000480)}, 0xc}, {{&(0x7f0000000340)=@pppoe={0x18, 0x0, {0x0, @broadcast}}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000500)=""/168, 0xa8}, {&(0x7f00000005c0)=""/96, 0x60}], 0x2, &(0x7f0000000400)=""/51, 0x33}, 0x80000000}], 0x2, 0x40010080, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r7, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=<r9=>r8, @ANYBLOB="030704707900000000000100040004000180"], 0x18}}, 0x0)
r10 = socket$inet_sctp(0x2, 0x1, 0x84)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES8=<r12=>r10], 0x50)
r13 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYRESDEC=r11, @ANYRESHEX=r12, @ANYRES32=r5, @ANYRESOCT=r6, @ANYRES64=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0x14, &(0x7f0000000900)=ANY=[@ANYRES64=<r14=>r8, @ANYRES32=r13, @ANYRESOCT=r9], &(0x7f0000000240)='GPL\x00', 0xfff, 0x0, 0x0, 0x0, 0x64, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
r15 = syz_io_uring_setup(0x29ae, &(0x7f00000007c0)={0x0, 0x400, 0x200, 0x3, 0x0, 0x0, r7}, &(0x7f0000000280)=<r16=>0x0, &(0x7f00000006c0)=<r17=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r16, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r16, r17, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r15, 0x47f6, 0x0, 0x0, 0x0, 0x0)
r18 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r19 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000440), 0x103940)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r19, 0x4058534c, &(0x7f0000000180)={0x80, 0xc, 0x2, 0xffffffff, 0x0, 0x2})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r19, 0x4058534c, &(0x7f0000000040)={0x80, 0x19, 0x2002, 0x4, 0x80000000, 0x9})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r7, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f0000000840)=ANY=[@ANYBLOB="60f620f1", @ANYRES16=r18, @ANYBLOB="00022abd7000fcdbdf255c00000008000300", @ANYRES64=r14, @ANYBLOB="0c5b10425fda8f81c6e034a3f2c167f3009900000000005700e001000008006b003e00000008006b00df01000008006b007800"/67], 0x60}, 0x1, 0x0, 0x0, 0x4}, 0x8000)

159.103617ms ago: executing program 4 (id=1083):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020646c4300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

158.871667ms ago: executing program 4 (id=1084):
prctl$PR_SET_NAME(0xf, &(0x7f0000000200)='gtp\x00\xe4\xaa\xae\xdf~2\xa6X\x14\x92\xdarV\xf4U\xf7\xa2\xc3l\x1b@\xaf\xf9\xc9\xa9#\xf0S\xd9=q\xd6\x14\xedt\xc8!W\xe9@\xeb\x7f~\tB0EE\x9a:\xb7\xff\xc1\xfc\x9a\x1f\xf2\xfb\x19\xda#x\xc5F\x1c~\x8c\xe1\xdf\xdc\x01k\f\xde0~\x95\r\xa2\x80\b4M\x14\xe7\xd0\t`n!g\x14\xe6\xd1\xc2\xd3\x88\xf8cVtd\xbeY\xa5\xe7\x16sD\x96}7\n\x88e\x00\xf0\xff\xff\xf0\xcb\x94\xb4S\x00\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000200)="1c0000001d008102e00f80ecdb4cb9f207c804a00d00000088081afb", 0x1c}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x8, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xb3)
pwritev2(r2, 0x0, 0x0, 0x8800000, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{}, &(0x7f00000001c0), &(0x7f0000000400)}, 0x20)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c0000000800124000000000050005000a000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r3, 0x0, 0x0, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0xffff, @local, 0x3}, 0x1c)
shutdown(r3, 0x1)

141.608597ms ago: executing program 4 (id=1085):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x87, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x21}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x79, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x65, 0x0, @gue={{0x1, 0x0, 0x1, 0x8, 0x0, @void}, "a48f0b1a6ce64ac3edc7137edf44fa5078dc44552b075213169048fc8048d3d534a40f6c458d17241a2f472eb8491f2c720958e666f2c8e4e107f87a0c3c1ba09259131f751cde7ecbe2fbb0e5b8de46fe3eb733cf7c04642e"}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(r0, &(0x7f0000000600)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800010009000000000000000a00000000000000080001000200000004000b"], 0x24}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@delnexthop={0x20, 0x69, 0x503, 0x0, 0x0, {}, [{0x8, 0x1, 0x2}]}, 0x20}}, 0x0)

77.665108ms ago: executing program 1 (id=1086):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)

77.194778ms ago: executing program 1 (id=1087):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r1 = dup2(r0, r0)
write$selinux_load(r1, &(0x7f0000000580)=ANY=[], 0x43)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe2ea}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000000000000198, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000800000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1e}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000800000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x863, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800010009000000000000000a00000000000000080001000200000004000b"], 0x24}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@delnexthop={0x20, 0x69, 0x503, 0x0, 0x0, {}, [{0x8, 0x1, 0x2}]}, 0x20}}, 0x0)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000000)={r4, r1}, 0xc)

24.38959ms ago: executing program 3 (id=1088):
bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_read_part_table(0x1051, &(0x7f0000001280)="$eJzsz7EJwlAUBdAbTIIiSBp7LR3jD+Em9gouo87jJLY2kpg4gqQ4Bz58Hvc+eGEuXqmS/r3HwTLJ4vttk6yn4PNXuez2uZbzEK36eOmG1mab1Wms3kubqmtSp0lyO0zrUtc5Pv55IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADM1ScAAP//gqkI3g==") (async)
syz_read_part_table(0x1051, &(0x7f0000001280)="$eJzsz7EJwlAUBdAbTIIiSBp7LR3jD+Em9gouo87jJLY2kpg4gqQ4Bz58Hvc+eGEuXqmS/r3HwTLJ4vttk6yn4PNXuez2uZbzEK36eOmG1mab1Wms3kubqmtSp0lyO0zrUtc5Pv55IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADM1ScAAP//gqkI3g==")
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0xf, 0x0, r0, 0xe0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x2}, 0x50) (async)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0xf, 0x0, r0, 0xe0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x2}, 0x50)
r3 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000500)={'team0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r4, {0x0, 0xfff2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}}, 0x8000)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000efffffff850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='sys_enter\x00', r6}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000540)={{0x1, 0x1, 0x18, <r7=>r0}, './file0\x00'})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_ext={0x1c, 0x12, &(0x7f0000000200)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x14000, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@ldst={0x0, 0x3, 0x3, 0xb, 0x5, 0xfffffffffffffffc, 0xfffffffffffffff8}, @exit, @jmp={0x5, 0x0, 0xa, 0xa, 0x5, 0x20}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x3, 0xf, &(0x7f00000002c0)=""/15, 0x41100, 0x1, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000500)={0x5, 0xd, 0x1, 0x10000}, 0x10, 0xe98f, r6, 0x4, &(0x7f0000000580)=[r0, r7, r0, r1, r0, 0x1, r0], &(0x7f00000005c0)=[{0x2, 0x1, 0x5, 0x6}, {0x1, 0x4, 0x2}, {0x0, 0x5, 0x6, 0x6}, {0x0, 0x5, 0x10, 0x2}], 0x10, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_ifreq(r8, 0x89a2, &(0x7f0000000000)={'geneve1\x00', @ifru_addrs=@nl=@unspec})
r9 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r9, &(0x7f0000002dc0)=[{{0x0, 0x0, 0x0}, 0x800}], 0x1, 0x22, 0x0)
sendmsg$nl_generic(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000032000107fcffffff0000003e0d"], 0x14}, 0x1, 0x0, 0x0, 0x20004811}, 0x0) (async)
sendmsg$nl_generic(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000032000107fcffffff0000003e0d"], 0x14}, 0x1, 0x0, 0x0, 0x20004811}, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x32126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2) (async)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)
syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
socket$can_raw(0x1d, 0x3, 0x1) (async)
r10 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r10, 0x65, 0x1, &(0x7f00000000c0), 0xf00) (async)
setsockopt$CAN_RAW_FILTER(r10, 0x65, 0x1, &(0x7f00000000c0), 0xf00)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32, @ANYBLOB="0000000002000000b705000008000000850000007000000095"], &(0x7f0000000300)='GPL\x00', 0x8, 0xfe6a, &(0x7f00000014c0)=""/4098, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe65}, 0x23)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000020000000000000000000095"], &(0x7f0000000340)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r11, 0x406, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000000c0)="a0", 0x0}, 0x31) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r11, 0x406, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000000c0)="a0", 0x0}, 0x31)

24.13602ms ago: executing program 1 (id=1089):
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$cgroup_pid(r1, &(0x7f0000000000), 0x2a979d)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r3, &(0x7f0000000180), 0x40010)

0s ago: executing program 1 (id=1090):
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, 0x0, 0x0)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad433ec5"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0x30, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="38000000540001000000000000c4000007008209", @ANYRES32, @ANYBLOB="20000100", @ANYRES32, @ANYBLOB="00000001e000030000000000000000000000000008"], 0x38}, 0x1, 0x0, 0x0, 0x880}, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

kernel console output (not intermixed with test programs):

mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.963184][ T4028] pim6reg: tun_chr_ioctl cmd 35108
[   49.989256][ T4032] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   49.997919][ T4032] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   50.059972][ T4035] netlink: 12 bytes leftover after parsing attributes in process `syz.2.199'.
[   50.077755][ T4035] IPv6: NLM_F_CREATE should be specified when creating new route
[   50.323305][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.350354][ T4038] syz.0.200 (4038): /proc/4038/oom_adj is deprecated, please use /proc/4038/oom_score_adj instead.
[   50.388004][ T4038] netlink: 28 bytes leftover after parsing attributes in process `syz.0.200'.
[   50.599950][   T29] kauditd_printk_skb: 59 callbacks suppressed
[   50.599967][   T29] audit: type=1400 audit(1756865301.882:239): avc:  denied  { read write } for  pid=4044 comm="syz.0.203" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   50.629599][   T29] audit: type=1400 audit(1756865301.882:240): avc:  denied  { open } for  pid=4044 comm="syz.0.203" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   50.678561][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.817838][   T29] audit: type=1400 audit(1756865302.092:241): avc:  denied  { read } for  pid=4050 comm="syz.4.206" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   50.840849][   T29] audit: type=1400 audit(1756865302.092:242): avc:  denied  { open } for  pid=4050 comm="syz.4.206" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   50.866339][ T4057] loop3: detected capacity change from 0 to 1024
[   50.873093][ T4057] EXT4-fs: Ignoring removed orlov option
[   50.898664][ T4057] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.909437][   T29] audit: type=1400 audit(1756865302.182:243): avc:  denied  { ioctl } for  pid=4050 comm="syz.4.206" path="/dev/snapshot" dev="devtmpfs" ino=90 ioctlcmd=0x3311 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   50.962124][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.059204][ T4075] loop1: detected capacity change from 0 to 1024
[   51.066566][   T29] audit: type=1400 audit(1756865302.342:244): avc:  denied  { cpu } for  pid=4072 comm="syz.4.214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   51.090113][ T4075] EXT4-fs: Ignoring removed bh option
[   51.096697][ T4075] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   51.128908][ T4075] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.268685][ T4081] rdma_rxe: rxe_newlink: failed to add lo
[   51.288780][   T29] audit: type=1400 audit(1756865302.572:245): avc:  denied  { create } for  pid=4083 comm="syz.4.216" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   51.298594][ T4084] loop4: detected capacity change from 0 to 1024
[   51.359466][ T4084] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.408802][ T4084] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.459793][ T4084] FAULT_INJECTION: forcing a failure.
[   51.459793][ T4084] name failslab, interval 1, probability 0, space 0, times 0
[   51.472606][ T4084] CPU: 1 UID: 0 PID: 4084 Comm: syz.4.216 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   51.472640][ T4084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   51.472681][ T4084] Call Trace:
[   51.472688][ T4084]  <TASK>
[   51.472697][ T4084]  __dump_stack+0x1d/0x30
[   51.472723][ T4084]  dump_stack_lvl+0xe8/0x140
[   51.472897][ T4084]  dump_stack+0x15/0x1b
[   51.472919][ T4084]  should_fail_ex+0x265/0x280
[   51.472990][ T4084]  should_failslab+0x8c/0xb0
[   51.473018][ T4084]  __kmalloc_noprof+0xa5/0x3e0
[   51.473050][ T4084]  ? ext4_find_extent+0x16b/0x7a0
[   51.473079][ T4084]  ext4_find_extent+0x16b/0x7a0
[   51.473103][ T4084]  ? __list_del_entry_valid_or_report+0x65/0x130
[   51.473140][ T4084]  ? __rmqueue_pcplist+0x9d2/0xbd0
[   51.473223][ T4084]  ext4_ext_map_blocks+0x11f/0x38a0
[   51.473322][ T4084]  ? __account_obj_stock+0x211/0x350
[   51.473353][ T4084]  ? __rcu_read_unlock+0x4f/0x70
[   51.473380][ T4084]  ext4_map_query_blocks+0xa8/0x480
[   51.473418][ T4084]  ext4_da_get_block_prep+0x25b/0xbb0
[   51.473457][ T4084]  ? alloc_buffer_head+0x1c3/0x1f0
[   51.473487][ T4084]  ? folio_alloc_buffers+0x2e5/0x310
[   51.473595][ T4084]  ext4_block_write_begin+0x5e5/0xc00
[   51.473638][ T4084]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[   51.473678][ T4084]  ? __filemap_get_folio+0x47f/0x6b0
[   51.473756][ T4084]  ext4_da_write_begin+0x48f/0x6e0
[   51.473790][ T4084]  generic_perform_write+0x184/0x490
[   51.473870][ T4084]  ext4_buffered_write_iter+0x1ee/0x3c0
[   51.473910][ T4084]  ? ext4_file_write_iter+0xfe/0xf00
[   51.473951][ T4084]  ext4_file_write_iter+0x383/0xf00
[   51.474049][ T4084]  ? path_openat+0x1bf8/0x2170
[   51.474074][ T4084]  ? _parse_integer_limit+0x170/0x190
[   51.474107][ T4084]  do_iter_readv_writev+0x49c/0x540
[   51.474161][ T4084]  vfs_writev+0x2df/0x8b0
[   51.474209][ T4084]  __se_sys_pwritev2+0xfc/0x1c0
[   51.474279][ T4084]  __x64_sys_pwritev2+0x67/0x80
[   51.474314][ T4084]  x64_sys_call+0x2c55/0x2ff0
[   51.474341][ T4084]  do_syscall_64+0xd2/0x200
[   51.474407][ T4084]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   51.474436][ T4084]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   51.474536][ T4084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.474560][ T4084] RIP: 0033:0x7fd19fd6ebe9
[   51.474576][ T4084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.474593][ T4084] RSP: 002b:00007fd19e7cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   51.474612][ T4084] RAX: ffffffffffffffda RBX: 00007fd19ffa5fa0 RCX: 00007fd19fd6ebe9
[   51.474624][ T4084] RDX: 0000000000000001 RSI: 00002000000001c0 RDI: 0000000000000008
[   51.474636][ T4084] RBP: 00007fd19e7cf090 R08: 0000000000000000 R09: 0000000000000000
[   51.474705][ T4084] R10: 0000000000000e7b R11: 0000000000000246 R12: 0000000000000001
[   51.474717][ T4084] R13: 00007fd19ffa6038 R14: 00007fd19ffa5fa0 R15: 00007fff3d8c99d8
[   51.474736][ T4084]  </TASK>
[   51.764475][   T29] audit: type=1400 audit(1756865302.742:246): avc:  denied  { write } for  pid=4083 comm="syz.4.216" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   51.768948][ T4093] netlink: 24 bytes leftover after parsing attributes in process `syz.3.217'.
[   51.786568][   T29] audit: type=1400 audit(1756865302.742:247): avc:  denied  { open } for  pid=4083 comm="syz.4.216" path="/44/file1/file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   51.844360][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.925910][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.988965][ T4112] loop4: detected capacity change from 0 to 1024
[   52.001311][ T4112] EXT4-fs: Ignoring removed bh option
[   52.008878][ T4104] rdma_rxe: rxe_newlink: failed to add lo
[   52.015865][ T4112] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   52.091840][ T4112] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.227483][ T4128] netlink: 28 bytes leftover after parsing attributes in process `syz.3.227'.
[   52.268019][ T4131] pim6reg: tun_chr_ioctl cmd 35108
[   52.369059][ T4138] audit: audit_lost=2 audit_rate_limit=0 audit_backlog_limit=64
[   52.384037][ T4133] loop3: detected capacity change from 0 to 512
[   52.396723][ T4133] EXT4-fs: Ignoring removed nobh option
[   52.424249][ T4133] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   52.447546][ T4140] loop1: detected capacity change from 0 to 1024
[   52.454851][ T4140] EXT4-fs: Ignoring removed bh option
[   52.465962][ T4140] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   52.500555][ T4133] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.228: corrupted inode contents
[   52.509201][ T4140] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.527324][ T4133] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm syz.3.228: mark_inode_dirty error
[   52.544162][ T4133] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.228: corrupted inode contents
[   52.571609][ T4133] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.228: mark_inode_dirty error
[   52.601729][ T4155] netlink: 12 bytes leftover after parsing attributes in process `syz.2.236'.
[   52.658888][ T4160] netlink: 28 bytes leftover after parsing attributes in process `syz.2.238'.
[   52.665529][ T4133] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.228: Failed to acquire dquot type 0
[   52.703579][ T4133] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.228: corrupted inode contents
[   52.717414][ T4133] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.228: mark_inode_dirty error
[   52.731056][ T4133] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.228: corrupted inode contents
[   52.743953][ T4133] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.228: mark_inode_dirty error
[   52.758194][ T4133] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.228: corrupted inode contents
[   52.775579][ T4133] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   52.785380][ T4133] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.228: corrupted inode contents
[   52.799347][ T4133] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.228: mark_inode_dirty error
[   52.815240][ T4133] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   52.833575][ T4133] EXT4-fs (loop3): 1 truncate cleaned up
[   52.844890][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.856651][ T4133] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.871849][ T4133] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.912697][ T4133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.966963][ T4169] 9pnet: Could not find request transport: 0xffffffffffffffff
[   53.010824][ T4179] FAULT_INJECTION: forcing a failure.
[   53.010824][ T4179] name failslab, interval 1, probability 0, space 0, times 0
[   53.023615][ T4179] CPU: 1 UID: 0 PID: 4179 Comm: syz.4.246 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   53.023683][ T4179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   53.023706][ T4179] Call Trace:
[   53.023713][ T4179]  <TASK>
[   53.023723][ T4179]  __dump_stack+0x1d/0x30
[   53.023771][ T4179]  dump_stack_lvl+0xe8/0x140
[   53.023793][ T4179]  dump_stack+0x15/0x1b
[   53.023814][ T4179]  should_fail_ex+0x265/0x280
[   53.023886][ T4179]  ? __se_sys_mount+0xef/0x2e0
[   53.023908][ T4179]  should_failslab+0x8c/0xb0
[   53.023938][ T4179]  __kmalloc_cache_noprof+0x4c/0x320
[   53.023970][ T4179]  ? memdup_user+0x99/0xd0
[   53.024003][ T4179]  __se_sys_mount+0xef/0x2e0
[   53.024030][ T4179]  ? fput+0x8f/0xc0
[   53.024119][ T4179]  ? ksys_write+0x192/0x1a0
[   53.024166][ T4179]  __x64_sys_mount+0x67/0x80
[   53.024193][ T4179]  x64_sys_call+0x2b4d/0x2ff0
[   53.024218][ T4179]  do_syscall_64+0xd2/0x200
[   53.024252][ T4179]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   53.024366][ T4179]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   53.024392][ T4179]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.024433][ T4179] RIP: 0033:0x7fd19fd6ebe9
[   53.024451][ T4179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.024472][ T4179] RSP: 002b:00007fd19e7cf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   53.024552][ T4179] RAX: ffffffffffffffda RBX: 00007fd19ffa5fa0 RCX: 00007fd19fd6ebe9
[   53.024567][ T4179] RDX: 00002000000002c0 RSI: 0000200000000080 RDI: 0000000000000000
[   53.024578][ T4179] RBP: 00007fd19e7cf090 R08: 0000200000000240 R09: 0000000000000000
[   53.024590][ T4179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.024649][ T4179] R13: 00007fd19ffa6038 R14: 00007fd19ffa5fa0 R15: 00007fff3d8c99d8
[   53.024669][ T4179]  </TASK>
[   53.232949][ T4182] netlink: 20 bytes leftover after parsing attributes in process `syz.2.247'.
[   53.247107][ T4182] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[   53.286541][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.362322][ T4187] loop2: detected capacity change from 0 to 1024
[   53.472127][ T4187] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   53.491089][ T4200] rdma_rxe: rxe_newlink: failed to add lo
[   53.508410][ T4187] JBD2: no valid journal superblock found
[   53.514330][ T4187] EXT4-fs (loop2): Could not load journal inode
[   53.641482][ T4212] loop4: detected capacity change from 0 to 128
[   53.648222][ T4212] EXT4-fs: Ignoring removed nobh option
[   53.660622][ T4212] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   53.674959][ T4212] ext4 filesystem being mounted at /54/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   53.711845][ T3311] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   53.741780][ T4217] loop4: detected capacity change from 0 to 1024
[   53.758055][ T4217] EXT4-fs: Ignoring removed bh option
[   53.764536][ T4221] netlink: 'syz.3.262': attribute type 21 has an invalid length.
[   53.778534][ T4217] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   53.786258][ T4221] netlink: 132 bytes leftover after parsing attributes in process `syz.3.262'.
[   53.825250][ T4217] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.871103][ T4233] loop0: detected capacity change from 0 to 512
[   53.878299][ T4233] EXT4-fs: Ignoring removed oldalloc option
[   53.879363][ T4232] loop3: detected capacity change from 0 to 1024
[   53.891431][ T4232] EXT4-fs: Ignoring removed bh option
[   53.897364][ T4232] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   53.898578][ T4233] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.265: Parent and EA inode have the same ino 15
[   53.923780][ T4233] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   53.938390][ T4233] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.265: Parent and EA inode have the same ino 15
[   53.954286][ T4232] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.971180][ T4233] EXT4-fs (loop0): 1 orphan inode deleted
[   53.977699][ T4233] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.017634][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.129546][ T4250] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.141646][ T4252] netlink: 'syz.2.271': attribute type 4 has an invalid length.
[   54.152757][ T4252] netlink: 'syz.2.271': attribute type 4 has an invalid length.
[   54.180934][ T4255] loop2: detected capacity change from 0 to 1024
[   54.188860][ T4255] EXT4-fs: Ignoring removed bh option
[   54.194804][ T4255] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   54.206821][ T4250] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.273101][ T4250] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.347083][ T4250] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.415517][   T51] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.427415][   T51] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.439072][   T51] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.450526][   T51] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.551792][ T4263] 9pnet: Could not find request transport: 0xffffffffffffffff
[   54.642060][ T4270] FAULT_INJECTION: forcing a failure.
[   54.642060][ T4270] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.655283][ T4270] CPU: 0 UID: 0 PID: 4270 Comm: syz.4.277 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   54.655315][ T4270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   54.655374][ T4270] Call Trace:
[   54.655383][ T4270]  <TASK>
[   54.655392][ T4270]  __dump_stack+0x1d/0x30
[   54.655419][ T4270]  dump_stack_lvl+0xe8/0x140
[   54.655443][ T4270]  dump_stack+0x15/0x1b
[   54.655524][ T4270]  should_fail_ex+0x265/0x280
[   54.655545][ T4270]  should_fail+0xb/0x20
[   54.655567][ T4270]  should_fail_usercopy+0x1a/0x20
[   54.655699][ T4270]  _copy_from_user+0x1c/0xb0
[   54.655730][ T4270]  __sys_bind+0x106/0x2a0
[   54.655773][ T4270]  __x64_sys_bind+0x3f/0x50
[   54.655802][ T4270]  x64_sys_call+0x2b6e/0x2ff0
[   54.655920][ T4270]  do_syscall_64+0xd2/0x200
[   54.655955][ T4270]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.656046][ T4270]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   54.656071][ T4270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.656092][ T4270] RIP: 0033:0x7fd19fd6ebe9
[   54.656111][ T4270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.656134][ T4270] RSP: 002b:00007fd19e7cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[   54.656158][ T4270] RAX: ffffffffffffffda RBX: 00007fd19ffa5fa0 RCX: 00007fd19fd6ebe9
[   54.656233][ T4270] RDX: 0000000000000007 RSI: 0000200000000100 RDI: 0000000000000004
[   54.656250][ T4270] RBP: 00007fd19e7cf090 R08: 0000000000000000 R09: 0000000000000000
[   54.656382][ T4270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.656396][ T4270] R13: 00007fd19ffa6038 R14: 00007fd19ffa5fa0 R15: 00007fff3d8c99d8
[   54.656415][ T4270]  </TASK>
[   54.995928][ T4287] pim6reg1: entered promiscuous mode
[   55.001369][ T4287] pim6reg1: entered allmulticast mode
[   55.048035][ T4290] loop2: detected capacity change from 0 to 1024
[   55.061654][ T4290] EXT4-fs: Ignoring removed bh option
[   55.087981][ T4290] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   55.300398][ T4312] loop1: detected capacity change from 0 to 1024
[   55.307904][ T4312] EXT4-fs: Ignoring removed bh option
[   55.313793][ T4312] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   55.390789][ T4319] bridge0: entered promiscuous mode
[   55.396326][ T4319] macvtap1: entered allmulticast mode
[   55.401801][ T4319] bridge0: entered allmulticast mode
[   55.463655][ T4329] netlink: 12 bytes leftover after parsing attributes in process `syz.3.297'.
[   55.761574][ T4343] netlink: 'syz.4.303': attribute type 4 has an invalid length.
[   55.787124][ T4343] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.870385][ T4343] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.920414][ T4343] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.982810][ T4343] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.056423][   T51] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.074725][   T51] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.086733][   T51] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.095151][   T51] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.122532][ T4352] bridge0: entered promiscuous mode
[   56.137640][ T4352] macvtap1: entered allmulticast mode
[   56.143209][ T4352] bridge0: entered allmulticast mode
[   56.184931][ T4356] lo speed is unknown, defaulting to 1000
[   56.211730][ T4362] loop2: detected capacity change from 0 to 512
[   56.219115][ T4362] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   56.227356][   T29] kauditd_printk_skb: 36 callbacks suppressed
[   56.227395][   T29] audit: type=1400 audit(1756865307.502:281): avc:  denied  { mounton } for  pid=4361 comm="syz.2.311" path="/55/file0" dev="tmpfs" ino=304 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[   56.279639][ T4362] EXT4-fs (loop2): 1 truncate cleaned up
[   56.312030][ T4362] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   56.325291][ T4364] loop1: detected capacity change from 0 to 1024
[   56.533491][ T4440] netlink: 'syz.4.314': attribute type 298 has an invalid length.
[   56.623559][ T4446] loop0: detected capacity change from 0 to 1024
[   56.648603][ T4446] EXT4-fs: Ignoring removed bh option
[   56.676137][ T4446] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   56.771307][ T4461] loop1: detected capacity change from 0 to 1024
[   56.778330][ T4461] EXT4-fs: Ignoring removed bh option
[   56.786670][ T4461] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   56.967873][ T4466] loop3: detected capacity change from 0 to 128
[   57.037228][   T29] audit: type=1400 audit(1756865308.312:282): avc:  denied  { connect } for  pid=4472 comm="syz.2.327" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   57.075738][   T29] audit: type=1400 audit(1756865308.352:283): avc:  denied  { ioctl } for  pid=4472 comm="syz.2.327" path="socket:[8645]" dev="sockfs" ino=8645 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   57.197087][   T29] audit: type=1400 audit(1756865308.472:284): avc:  denied  { execmem } for  pid=4487 comm="syz.2.332" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   57.217031][ T4488] syzkaller0: entered allmulticast mode
[   57.223627][ T4488] FAULT_INJECTION: forcing a failure.
[   57.223627][ T4488] name failslab, interval 1, probability 0, space 0, times 0
[   57.236334][ T4488] CPU: 1 UID: 0 PID: 4488 Comm: syz.2.332 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   57.236369][ T4488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   57.236387][ T4488] Call Trace:
[   57.236397][ T4488]  <TASK>
[   57.236407][ T4488]  __dump_stack+0x1d/0x30
[   57.236511][ T4488]  dump_stack_lvl+0xe8/0x140
[   57.236533][ T4488]  dump_stack+0x15/0x1b
[   57.236553][ T4488]  should_fail_ex+0x265/0x280
[   57.236585][ T4488]  should_failslab+0x8c/0xb0
[   57.236663][ T4488]  __kmalloc_noprof+0xa5/0x3e0
[   57.236701][ T4488]  ? unregister_netdevice_many_notify+0x4c9/0x15d0
[   57.236739][ T4488]  ? unlist_netdevice+0x2cc/0x320
[   57.236798][ T4488]  unregister_netdevice_many_notify+0x4c9/0x15d0
[   57.236829][ T4488]  ? radix_tree_delete_item+0x176/0x270
[   57.236874][ T4488]  unregister_netdevice_queue+0x1f5/0x220
[   57.236983][ T4488]  br_dev_delete+0xc4/0xe0
[   57.237084][ T4488]  br_del_bridge+0x97/0xc0
[   57.237116][ T4488]  br_ioctl_stub+0x535/0x860
[   57.237172][ T4488]  ? ioctl_has_perm+0x257/0x2a0
[   57.237248][ T4488]  ? __pfx_br_ioctl_stub+0x10/0x10
[   57.237358][ T4488]  sock_ioctl+0x39c/0x610
[   57.237399][ T4488]  ? __pfx_sock_ioctl+0x10/0x10
[   57.237472][ T4488]  __se_sys_ioctl+0xcb/0x140
[   57.237499][ T4488]  __x64_sys_ioctl+0x43/0x50
[   57.237539][ T4488]  x64_sys_call+0x1816/0x2ff0
[   57.237568][ T4488]  do_syscall_64+0xd2/0x200
[   57.237606][ T4488]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   57.237639][ T4488]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   57.237672][ T4488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.237773][ T4488] RIP: 0033:0x7f669ad0ebe9
[   57.237794][ T4488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.237817][ T4488] RSP: 002b:00007f669976f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   57.237856][ T4488] RAX: ffffffffffffffda RBX: 00007f669af45fa0 RCX: 00007f669ad0ebe9
[   57.237938][ T4488] RDX: 0000200000000040 RSI: 00000000000089a1 RDI: 0000000000000006
[   57.237954][ T4488] RBP: 00007f669976f090 R08: 0000000000000000 R09: 0000000000000000
[   57.237971][ T4488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.237988][ T4488] R13: 00007f669af46038 R14: 00007f669af45fa0 R15: 00007ffcf74c07e8
[   57.238024][ T4488]  </TASK>
[   57.468054][ T4488] syzkaller0 (unregistering): left allmulticast mode
[   57.492636][ T4491] FAULT_INJECTION: forcing a failure.
[   57.492636][ T4491] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   57.506174][ T4491] CPU: 0 UID: 0 PID: 4491 Comm: syz.0.333 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   57.506208][ T4491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   57.506224][ T4491] Call Trace:
[   57.506229][ T4491]  <TASK>
[   57.506237][ T4491]  __dump_stack+0x1d/0x30
[   57.506324][ T4491]  dump_stack_lvl+0xe8/0x140
[   57.506362][ T4491]  dump_stack+0x15/0x1b
[   57.506381][ T4491]  should_fail_ex+0x265/0x280
[   57.506402][ T4491]  should_fail_alloc_page+0xf2/0x100
[   57.506440][ T4491]  __alloc_frozen_pages_noprof+0xff/0x360
[   57.506477][ T4491]  alloc_pages_mpol+0xb3/0x250
[   57.506535][ T4491]  alloc_pages_noprof+0x90/0x130
[   57.506575][ T4491]  get_free_pages_noprof+0xc/0x40
[   57.506595][ T4491]  __pollwait+0xc2/0x270
[   57.506686][ T4491]  ? __pfx___pollwait+0x10/0x10
[   57.506714][ T4491]  pipe_poll+0xfe/0x250
[   57.506744][ T4491]  ? __pfx_pipe_poll+0x10/0x10
[   57.506795][ T4491]  do_sys_poll+0x65e/0xbd0
[   57.506851][ T4491]  ? __pfx___pollwait+0x10/0x10
[   57.506877][ T4491]  ? __pfx_pollwake+0x10/0x10
[   57.506908][ T4491]  ? __pfx_pollwake+0x10/0x10
[   57.506939][ T4491]  ? __pfx_pollwake+0x10/0x10
[   57.506970][ T4491]  ? __pfx_pollwake+0x10/0x10
[   57.507016][ T4491]  ? __pfx_pollwake+0x10/0x10
[   57.507039][ T4491]  ? __pfx_pollwake+0x10/0x10
[   57.507070][ T4491]  ? __pfx_pollwake+0x10/0x10
[   57.507113][ T4491]  ? __pfx_pollwake+0x10/0x10
[   57.507218][ T4491]  ? __pfx_pollwake+0x10/0x10
[   57.507243][ T4491]  __se_sys_poll+0xdd/0x200
[   57.507279][ T4491]  __x64_sys_poll+0x43/0x50
[   57.507307][ T4491]  x64_sys_call+0x27d2/0x2ff0
[   57.507329][ T4491]  do_syscall_64+0xd2/0x200
[   57.507373][ T4491]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   57.507404][ T4491]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   57.507479][ T4491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.507500][ T4491] RIP: 0033:0x7f611bc6ebe9
[   57.507519][ T4491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.507578][ T4491] RSP: 002b:00007f611a6d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[   57.507601][ T4491] RAX: ffffffffffffffda RBX: 00007f611bea5fa0 RCX: 00007f611bc6ebe9
[   57.507617][ T4491] RDX: 0000000000000009 RSI: 20000000000000b5 RDI: 0000200000000000
[   57.507630][ T4491] RBP: 00007f611a6d7090 R08: 0000000000000000 R09: 0000000000000000
[   57.507646][ T4491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.507657][ T4491] R13: 00007f611bea6038 R14: 00007f611bea5fa0 R15: 00007ffed0893638
[   57.507676][ T4491]  </TASK>
[   57.799873][ T4495] netlink: 24 bytes leftover after parsing attributes in process `syz.4.335'.
[   57.849486][ T4504] netlink: 8 bytes leftover after parsing attributes in process `syz.2.339'.
[   57.862312][ T4504] vlan2: entered allmulticast mode
[   57.867570][ T4504] bridge_slave_0: entered allmulticast mode
[   57.877184][ T4501] pim6reg1: entered promiscuous mode
[   57.882652][ T4501] pim6reg1: entered allmulticast mode
[   57.952904][ T4509] loop2: detected capacity change from 0 to 1024
[   57.960911][ T4509] EXT4-fs: Ignoring removed bh option
[   57.977915][ T4509] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   58.099620][ T4527] veth1_to_team: entered allmulticast mode
[   58.141366][ T4529] syz.1.343 uses obsolete (PF_INET,SOCK_PACKET)
[   58.209145][ T4520] loop4: detected capacity change from 0 to 512
[   58.215869][ T4520] EXT4-fs: Ignoring removed nobh option
[   58.222416][ T4526] veth1_to_team: left allmulticast mode
[   58.232758][ T4520] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.346: iget: bad i_size value: 38620345925642
[   58.248800][ T4532] loop1: detected capacity change from 0 to 1024
[   58.256083][ T4520] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.346: couldn't read orphan inode 15 (err -117)
[   58.375872][ T4522] loop0: detected capacity change from 0 to 512
[   58.382816][ T4522] EXT4-fs: Ignoring removed nobh option
[   58.392243][ T4522] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.347: iget: bad i_size value: 38620345925642
[   58.408209][ T4520] EXT4-fs (loop4): shut down requested (0)
[   58.421617][   T37] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm kworker/u8:2: bg 0: block 5: invalid block bitmap
[   58.434680][ T4522] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.347: couldn't read orphan inode 15 (err -117)
[   58.482040][   T37] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 980 with error 28
[   58.494529][   T37] EXT4-fs (loop4): This should not happen!! Data will be lost
[   58.494529][   T37] 
[   58.504265][   T37] EXT4-fs (loop4): Total free blocks count 0
[   58.510302][   T37] EXT4-fs (loop4): Free/Dirty block details
[   58.516229][   T37] EXT4-fs (loop4): free_blocks=0
[   58.521338][   T37] EXT4-fs (loop4): dirty_blocks=984
[   58.526588][   T37] EXT4-fs (loop4): Block reservation details
[   58.532791][   T37] EXT4-fs (loop4): i_reserved_data_blocks=984
[   58.546692][ T4542] netlink: 8 bytes leftover after parsing attributes in process `syz.3.350'.
[   58.587160][ T4522] EXT4-fs (loop0): shut down requested (0)
[   58.619585][ T4411] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm kworker/u8:14: bg 0: block 5: invalid block bitmap
[   58.641082][ T4411] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 732 with error 28
[   58.653740][ T4411] EXT4-fs (loop0): This should not happen!! Data will be lost
[   58.653740][ T4411] 
[   58.663554][ T4411] EXT4-fs (loop0): Total free blocks count 0
[   58.669605][ T4411] EXT4-fs (loop0): Free/Dirty block details
[   58.675599][ T4411] EXT4-fs (loop0): free_blocks=0
[   58.680707][ T4411] EXT4-fs (loop0): dirty_blocks=736
[   58.686055][ T4411] EXT4-fs (loop0): Block reservation details
[   58.692088][ T4411] EXT4-fs (loop0): i_reserved_data_blocks=736
[   58.712118][   T29] audit: type=1326 audit(1756865309.992:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd596febe9 code=0x7ffc0000
[   58.742472][   T29] audit: type=1326 audit(1756865310.022:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fcd596febe9 code=0x7ffc0000
[   58.765878][   T29] audit: type=1326 audit(1756865310.022:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd596febe9 code=0x7ffc0000
[   58.789172][   T29] audit: type=1326 audit(1756865310.022:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd596febe9 code=0x7ffc0000
[   58.812446][   T29] audit: type=1326 audit(1756865310.022:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7fcd596febe9 code=0x7ffc0000
[   58.835961][   T29] audit: type=1326 audit(1756865310.022:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd596febe9 code=0x7ffc0000
[   58.918659][ T4563] Driver unsupported XDP return value 0 on prog  (id 214) dev N/A, expect packet loss!
[   58.995055][ T4578] netlink: 20 bytes leftover after parsing attributes in process `syz.4.366'.
[   59.012121][ T4568] netlink: 20 bytes leftover after parsing attributes in process `syz.1.362'.
[   59.026374][ T4570] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4570 comm=syz.0.364
[   59.059487][ T4585] FAULT_INJECTION: forcing a failure.
[   59.059487][ T4585] name failslab, interval 1, probability 0, space 0, times 0
[   59.060148][ T4571] netlink: 32 bytes leftover after parsing attributes in process `syz.0.364'.
[   59.072274][ T4585] CPU: 1 UID: 0 PID: 4585 Comm: syz.4.368 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   59.072362][ T4585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   59.072385][ T4585] Call Trace:
[   59.072394][ T4585]  <TASK>
[   59.072406][ T4585]  __dump_stack+0x1d/0x30
[   59.072444][ T4585]  dump_stack_lvl+0xe8/0x140
[   59.072471][ T4585]  dump_stack+0x15/0x1b
[   59.072494][ T4585]  should_fail_ex+0x265/0x280
[   59.072611][ T4585]  should_failslab+0x8c/0xb0
[   59.072644][ T4585]  __kmalloc_noprof+0xa5/0x3e0
[   59.072752][ T4585]  ? bpf_test_init+0xa9/0x160
[   59.072780][ T4585]  bpf_test_init+0xa9/0x160
[   59.072808][ T4585]  bpf_prog_test_run_xdp+0x274/0x910
[   59.072838][ T4585]  ? kstrtouint+0x76/0xc0
[   59.072893][ T4585]  ? __rcu_read_unlock+0x4f/0x70
[   59.072928][ T4585]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   59.072958][ T4585]  bpf_prog_test_run+0x22a/0x390
[   59.073052][ T4585]  __sys_bpf+0x4b9/0x7b0
[   59.073104][ T4585]  __x64_sys_bpf+0x41/0x50
[   59.073141][ T4585]  x64_sys_call+0x2aea/0x2ff0
[   59.073169][ T4585]  do_syscall_64+0xd2/0x200
[   59.073240][ T4585]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   59.073323][ T4585]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   59.073359][ T4585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.073389][ T4585] RIP: 0033:0x7fd19fd6ebe9
[   59.073488][ T4585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.073511][ T4585] RSP: 002b:00007fd19e7cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   59.073542][ T4585] RAX: ffffffffffffffda RBX: 00007fd19ffa5fa0 RCX: 00007fd19fd6ebe9
[   59.073558][ T4585] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 000000000000000a
[   59.073575][ T4585] RBP: 00007fd19e7cf090 R08: 0000000000000000 R09: 0000000000000000
[   59.073656][ T4585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.073671][ T4585] R13: 00007fd19ffa6038 R14: 00007fd19ffa5fa0 R15: 00007fff3d8c99d8
[   59.073697][ T4585]  </TASK>
[   59.292606][ T4594] loop3: detected capacity change from 0 to 1024
[   59.306928][ T4594] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   59.318242][ T4594] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   59.347044][ T4601] pim6reg: tun_chr_ioctl cmd 35108
[   59.348892][ T4600] FAULT_INJECTION: forcing a failure.
[   59.348892][ T4600] name failslab, interval 1, probability 0, space 0, times 0
[   59.364974][ T4600] CPU: 0 UID: 0 PID: 4600 Comm: syz.1.375 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   59.365031][ T4600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   59.365074][ T4600] Call Trace:
[   59.365081][ T4600]  <TASK>
[   59.365089][ T4600]  __dump_stack+0x1d/0x30
[   59.365123][ T4600]  dump_stack_lvl+0xe8/0x140
[   59.365148][ T4600]  dump_stack+0x15/0x1b
[   59.365168][ T4600]  should_fail_ex+0x265/0x280
[   59.365195][ T4600]  should_failslab+0x8c/0xb0
[   59.365223][ T4600]  kmem_cache_alloc_node_noprof+0x57/0x320
[   59.365264][ T4600]  ? __alloc_skb+0x101/0x320
[   59.365286][ T4600]  __alloc_skb+0x101/0x320
[   59.365311][ T4600]  netlink_alloc_large_skb+0xba/0xf0
[   59.365380][ T4600]  netlink_sendmsg+0x3cf/0x6b0
[   59.365418][ T4603] pim6reg1: entered promiscuous mode
[   59.365442][ T4600]  ? __pfx_netlink_sendmsg+0x10/0x10
[   59.365465][ T4600]  __sock_sendmsg+0x142/0x180
[   59.365500][ T4600]  ____sys_sendmsg+0x31e/0x4e0
[   59.365531][ T4600]  ___sys_sendmsg+0x17b/0x1d0
[   59.365608][ T4600]  __x64_sys_sendmsg+0xd4/0x160
[   59.365678][ T4600]  x64_sys_call+0x191e/0x2ff0
[   59.365709][ T4600]  do_syscall_64+0xd2/0x200
[   59.365752][ T4600]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   59.365786][ T4600]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   59.365885][ T4600]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.365916][ T4600] RIP: 0033:0x7f6b3464ebe9
[   59.365937][ T4600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.365961][ T4600] RSP: 002b:00007f6b330af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.366040][ T4600] RAX: ffffffffffffffda RBX: 00007f6b34885fa0 RCX: 00007f6b3464ebe9
[   59.366057][ T4600] RDX: 0000000000000080 RSI: 00002000000002c0 RDI: 0000000000000004
[   59.366073][ T4600] RBP: 00007f6b330af090 R08: 0000000000000000 R09: 0000000000000000
[   59.366091][ T4600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.366203][ T4600] R13: 00007f6b34886038 R14: 00007f6b34885fa0 R15: 00007ffc2bae66a8
[   59.366290][ T4600]  </TASK>
[   59.375922][ T4594] JBD2: no valid journal superblock found
[   59.385368][ T4603] pim6reg1: entered allmulticast mode
[   59.484121][ T4608] netlink: 20 bytes leftover after parsing attributes in process `syz.1.379'.
[   59.486292][ T4594] EXT4-fs (loop3): Could not load journal inode
[   59.550174][ T4610] netlink: 20 bytes leftover after parsing attributes in process `syz.2.378'.
[   59.815023][ T4633] loop3: detected capacity change from 0 to 1024
[   59.824425][ T4633] EXT4-fs: Ignoring removed bh option
[   59.830866][ T4633] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   59.856530][ T4635] $Hÿ: renamed from bond0 (while UP)
[   59.875032][ T4635] $Hÿ: entered promiscuous mode
[   59.886651][ T4642] netlink: 20 bytes leftover after parsing attributes in process `syz.2.392'.
[   59.918930][ T4644] FAULT_INJECTION: forcing a failure.
[   59.918930][ T4644] name failslab, interval 1, probability 0, space 0, times 0
[   59.931703][ T4644] CPU: 1 UID: 0 PID: 4644 Comm: syz.1.391 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   59.931738][ T4644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   59.931753][ T4644] Call Trace:
[   59.931758][ T4644]  <TASK>
[   59.931767][ T4644]  __dump_stack+0x1d/0x30
[   59.931823][ T4644]  dump_stack_lvl+0xe8/0x140
[   59.931853][ T4644]  dump_stack+0x15/0x1b
[   59.931871][ T4644]  should_fail_ex+0x265/0x280
[   59.931892][ T4644]  should_failslab+0x8c/0xb0
[   59.931968][ T4644]  kmem_cache_alloc_node_noprof+0x57/0x320
[   59.932004][ T4644]  ? __alloc_skb+0x101/0x320
[   59.932031][ T4644]  __alloc_skb+0x101/0x320
[   59.932055][ T4644]  netlink_alloc_large_skb+0xba/0xf0
[   59.932174][ T4644]  netlink_sendmsg+0x3cf/0x6b0
[   59.932205][ T4644]  ? __pfx_netlink_sendmsg+0x10/0x10
[   59.932228][ T4644]  __sock_sendmsg+0x142/0x180
[   59.932289][ T4644]  ____sys_sendmsg+0x31e/0x4e0
[   59.932321][ T4644]  ___sys_sendmsg+0x17b/0x1d0
[   59.932358][ T4644]  __x64_sys_sendmsg+0xd4/0x160
[   59.932390][ T4644]  x64_sys_call+0x191e/0x2ff0
[   59.932410][ T4644]  do_syscall_64+0xd2/0x200
[   59.932442][ T4644]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   59.932526][ T4644]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   59.932625][ T4644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.932650][ T4644] RIP: 0033:0x7f6b3464ebe9
[   59.932669][ T4644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.932711][ T4644] RSP: 002b:00007f6b330af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.932735][ T4644] RAX: ffffffffffffffda RBX: 00007f6b34885fa0 RCX: 00007f6b3464ebe9
[   59.932746][ T4644] RDX: 000000002008c010 RSI: 0000200000000580 RDI: 0000000000000004
[   59.932759][ T4644] RBP: 00007f6b330af090 R08: 0000000000000000 R09: 0000000000000000
[   59.932774][ T4644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.932789][ T4644] R13: 00007f6b34886038 R14: 00007f6b34885fa0 R15: 00007ffc2bae66a8
[   59.932813][ T4644]  </TASK>
[   60.224543][ T4658] FAULT_INJECTION: forcing a failure.
[   60.224543][ T4658] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.238101][ T4658] CPU: 0 UID: 0 PID: 4658 Comm: syz.0.397 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.238178][ T4658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   60.238199][ T4658] Call Trace:
[   60.238206][ T4658]  <TASK>
[   60.238214][ T4658]  __dump_stack+0x1d/0x30
[   60.238251][ T4658]  dump_stack_lvl+0xe8/0x140
[   60.238273][ T4658]  dump_stack+0x15/0x1b
[   60.238320][ T4658]  should_fail_ex+0x265/0x280
[   60.238400][ T4658]  should_fail+0xb/0x20
[   60.238422][ T4658]  should_fail_usercopy+0x1a/0x20
[   60.238449][ T4658]  _copy_from_user+0x1c/0xb0
[   60.238546][ T4658]  memdup_user+0x5e/0xd0
[   60.238571][ T4658]  strndup_user+0x68/0xb0
[   60.238598][ T4658]  __se_sys_mount+0x4d/0x2e0
[   60.238627][ T4658]  ? fput+0x8f/0xc0
[   60.238773][ T4658]  ? ksys_write+0x192/0x1a0
[   60.238794][ T4658]  __x64_sys_mount+0x67/0x80
[   60.238816][ T4658]  x64_sys_call+0x2b4d/0x2ff0
[   60.238885][ T4658]  do_syscall_64+0xd2/0x200
[   60.238918][ T4658]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.239008][ T4658]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   60.239140][ T4658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.239162][ T4658] RIP: 0033:0x7f611bc6ebe9
[   60.239177][ T4658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.239232][ T4658] RSP: 002b:00007f611a6d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   60.239252][ T4658] RAX: ffffffffffffffda RBX: 00007f611bea5fa0 RCX: 00007f611bc6ebe9
[   60.239264][ T4658] RDX: 00002000000000c0 RSI: 0000200000000240 RDI: 0000000000000000
[   60.239277][ T4658] RBP: 00007f611a6d7090 R08: 0000200000000ac0 R09: 0000000000000000
[   60.239289][ T4658] R10: 0000000000810004 R11: 0000000000000246 R12: 0000000000000001
[   60.239301][ T4658] R13: 00007f611bea6038 R14: 00007f611bea5fa0 R15: 00007ffed0893638
[   60.239319][ T4658]  </TASK>
[   60.490501][ T4666] loop2: detected capacity change from 0 to 512
[   60.505930][ T4675] FAULT_INJECTION: forcing a failure.
[   60.505930][ T4675] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.519224][ T4675] CPU: 1 UID: 0 PID: 4675 Comm: syz.3.402 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.519259][ T4675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   60.519275][ T4675] Call Trace:
[   60.519283][ T4675]  <TASK>
[   60.519290][ T4675]  __dump_stack+0x1d/0x30
[   60.519317][ T4675]  dump_stack_lvl+0xe8/0x140
[   60.519335][ T4675]  dump_stack+0x15/0x1b
[   60.519352][ T4675]  should_fail_ex+0x265/0x280
[   60.519379][ T4675]  should_fail+0xb/0x20
[   60.519414][ T4675]  should_fail_usercopy+0x1a/0x20
[   60.519442][ T4675]  _copy_from_user+0x1c/0xb0
[   60.519480][ T4675]  ___sys_sendmsg+0xc1/0x1d0
[   60.519518][ T4675]  __sys_sendmmsg+0x178/0x300
[   60.519604][ T4675]  __x64_sys_sendmmsg+0x57/0x70
[   60.519634][ T4675]  x64_sys_call+0x1c4a/0x2ff0
[   60.519660][ T4675]  do_syscall_64+0xd2/0x200
[   60.519719][ T4675]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.519747][ T4675]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   60.519781][ T4675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.519807][ T4675] RIP: 0033:0x7fcd596febe9
[   60.519853][ T4675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.519871][ T4675] RSP: 002b:00007fcd58167038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   60.519946][ T4675] RAX: ffffffffffffffda RBX: 00007fcd59935fa0 RCX: 00007fcd596febe9
[   60.519961][ T4675] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[   60.519988][ T4675] RBP: 00007fcd58167090 R08: 0000000000000000 R09: 0000000000000000
[   60.520003][ T4675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.520014][ T4675] R13: 00007fcd59936038 R14: 00007fcd59935fa0 R15: 00007ffd4480bbf8
[   60.520040][ T4675]  </TASK>
[   60.521608][ T4673] netlink: 20 bytes leftover after parsing attributes in process `syz.1.404'.
[   60.715119][ T4689] wireguard0: entered promiscuous mode
[   60.720842][ T4689] wireguard0: entered allmulticast mode
[   60.729065][ T4666] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.400: bg 0: block 5: invalid block bitmap
[   60.746812][ T4666] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   60.765693][ T4666] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.400: invalid indirect mapped block 3 (level 2)
[   60.779385][ T4666] EXT4-fs (loop2): 2 truncates cleaned up
[   60.796460][ T4699] pim6reg: tun_chr_ioctl cmd 35108
[   60.830569][ T4701] FAULT_INJECTION: forcing a failure.
[   60.830569][ T4701] name failslab, interval 1, probability 0, space 0, times 0
[   60.843546][ T4701] CPU: 0 UID: 0 PID: 4701 Comm: syz.1.414 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.843579][ T4701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   60.843593][ T4701] Call Trace:
[   60.843600][ T4701]  <TASK>
[   60.843609][ T4701]  __dump_stack+0x1d/0x30
[   60.843634][ T4701]  dump_stack_lvl+0xe8/0x140
[   60.843653][ T4701]  dump_stack+0x15/0x1b
[   60.843745][ T4701]  should_fail_ex+0x265/0x280
[   60.843771][ T4701]  should_failslab+0x8c/0xb0
[   60.843801][ T4701]  kmem_cache_alloc_node_noprof+0x57/0x320
[   60.843881][ T4701]  ? __alloc_skb+0x101/0x320
[   60.843930][ T4701]  __alloc_skb+0x101/0x320
[   60.844021][ T4701]  netlink_alloc_large_skb+0xba/0xf0
[   60.844057][ T4701]  netlink_sendmsg+0x3cf/0x6b0
[   60.844120][ T4701]  ? __pfx_netlink_sendmsg+0x10/0x10
[   60.844143][ T4701]  __sock_sendmsg+0x142/0x180
[   60.844173][ T4701]  ____sys_sendmsg+0x31e/0x4e0
[   60.844251][ T4701]  ___sys_sendmsg+0x17b/0x1d0
[   60.844371][ T4701]  __x64_sys_sendmsg+0xd4/0x160
[   60.844463][ T4701]  x64_sys_call+0x191e/0x2ff0
[   60.844484][ T4701]  do_syscall_64+0xd2/0x200
[   60.844513][ T4701]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.844582][ T4701]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   60.844609][ T4701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.844634][ T4701] RIP: 0033:0x7f6b3464ebe9
[   60.844649][ T4701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.844666][ T4701] RSP: 002b:00007f6b330af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   60.844696][ T4701] RAX: ffffffffffffffda RBX: 00007f6b34885fa0 RCX: 00007f6b3464ebe9
[   60.844708][ T4701] RDX: 0000000020050890 RSI: 00002000000000c0 RDI: 0000000000000003
[   60.844720][ T4701] RBP: 00007f6b330af090 R08: 0000000000000000 R09: 0000000000000000
[   60.844732][ T4701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.844744][ T4701] R13: 00007f6b34886038 R14: 00007f6b34885fa0 R15: 00007ffc2bae66a8
[   60.844763][ T4701]  </TASK>
[   61.085003][ T4709] loop0: detected capacity change from 0 to 1024
[   61.102912][ T4715] netlink: 20 bytes leftover after parsing attributes in process `syz.1.419'.
[   61.107376][ T4709] EXT4-fs: Ignoring removed bh option
[   61.126134][ T4718] geneve0: entered allmulticast mode
[   61.131928][ T4709] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   61.142795][ T4717] geneve0: left allmulticast mode
[   61.154680][ T4720] netlink: 20 bytes leftover after parsing attributes in process `syz.1.422'.
[   61.279016][ T4729] netlink: 56 bytes leftover after parsing attributes in process `syz.1.426'.
[   61.321868][ T4735] loop1: detected capacity change from 0 to 512
[   61.363707][ T4735] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   61.393045][   T29] kauditd_printk_skb: 17 callbacks suppressed
[   61.393063][   T29] audit: type=1400 audit(1756865312.672:308): avc:  denied  { block_suspend } for  pid=4743 comm="syz.2.431" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   61.423213][ T4735] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[   61.431349][ T4735] System zones: 1-12
[   61.440579][ T4735] EXT4-fs (loop1): orphan cleanup on readonly fs
[   61.450943][   T29] audit: type=1326 audit(1756865312.732:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4743 comm="syz.2.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f669ad0ebe9 code=0x7ffc0000
[   61.474341][   T29] audit: type=1326 audit(1756865312.732:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4743 comm="syz.2.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f669ad0ebe9 code=0x7ffc0000
[   61.497772][   T29] audit: type=1326 audit(1756865312.732:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4743 comm="syz.2.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f669ad0ebe9 code=0x7ffc0000
[   61.521168][   T29] audit: type=1326 audit(1756865312.732:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4743 comm="syz.2.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f669ad0ebe9 code=0x7ffc0000
[   61.544482][   T29] audit: type=1326 audit(1756865312.732:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4743 comm="syz.2.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f669ad0ebe9 code=0x7ffc0000
[   61.568184][   T29] audit: type=1326 audit(1756865312.732:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4743 comm="syz.2.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f669ad0ebe9 code=0x7ffc0000
[   61.580287][ T4747] netlink: 20 bytes leftover after parsing attributes in process `syz.0.432'.
[   61.591614][   T29] audit: type=1326 audit(1756865312.732:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4743 comm="syz.2.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f669ad0ebe9 code=0x7ffc0000
[   61.624364][   T29] audit: type=1326 audit(1756865312.732:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4743 comm="syz.2.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f669ad0ebe9 code=0x7ffc0000
[   61.639892][ T4735] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.428: bg 0: block 361: padding at end of block bitmap is not set
[   61.647655][   T29] audit: type=1326 audit(1756865312.732:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4743 comm="syz.2.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f669ad0ebe9 code=0x7ffc0000
[   61.682283][ T4735] EXT4-fs (loop1): Remounting filesystem read-only
[   61.695147][ T4735] EXT4-fs (loop1): 1 truncate cleaned up
[   61.763271][ T4753] loop1: detected capacity change from 0 to 1024
[   61.771636][ T4753] EXT4-fs: Ignoring removed bh option
[   61.778287][ T4753] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   61.866454][ T4761] netlink: 20 bytes leftover after parsing attributes in process `syz.1.437'.
[   62.086339][ T4775] netlink: 20 bytes leftover after parsing attributes in process `syz.3.443'.
[   62.103457][ T4779] netlink: 12 bytes leftover after parsing attributes in process `syz.1.446'.
[   62.126437][ T4783] netlink: 20 bytes leftover after parsing attributes in process `syz.3.448'.
[   62.172813][ T4790] pim6reg: tun_chr_ioctl cmd 35108
[   62.358938][ T4789] rdma_rxe: rxe_newlink: failed to add lo
[   62.505990][ T4808] netlink: 16 bytes leftover after parsing attributes in process `syz.1.458'.
[   62.696438][ T4822] pim6reg: tun_chr_ioctl cmd 35108
[   62.955639][ T4831] SELinux: failed to load policy
[   63.094885][ T4842] loop4: detected capacity change from 0 to 1024
[   63.111574][ T4842] EXT4-fs: Ignoring removed bh option
[   63.136709][ T4842] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   63.199005][ T4837] loop0: detected capacity change from 0 to 512
[   63.205572][ T4837] EXT4-fs: Ignoring removed nobh option
[   63.213230][ T4837] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.470: iget: bad i_size value: 38620345925642
[   63.232341][ T4851] pim6reg: tun_chr_ioctl cmd 35108
[   63.238174][ T4837] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.470: couldn't read orphan inode 15 (err -117)
[   63.362992][   T37] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm kworker/u8:2: bg 0: block 5: invalid block bitmap
[   63.376099][   T37] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   63.388824][   T37] EXT4-fs (loop0): This should not happen!! Data will be lost
[   63.388824][   T37] 
[   63.399050][   T37] EXT4-fs (loop0): Total free blocks count 0
[   63.405065][   T37] EXT4-fs (loop0): Free/Dirty block details
[   63.411041][   T37] EXT4-fs (loop0): free_blocks=0
[   63.416058][   T37] EXT4-fs (loop0): dirty_blocks=3324
[   63.421485][   T37] EXT4-fs (loop0): Block reservation details
[   63.427653][   T37] EXT4-fs (loop0): i_reserved_data_blocks=3324
[   63.443219][   T37] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 1268 with error 28
[   63.456069][   T37] EXT4-fs (loop0): This should not happen!! Data will be lost
[   63.456069][   T37] 
[   63.686966][ T4872] pim6reg: tun_chr_ioctl cmd 35108
[   63.856839][ T4883] loop2: detected capacity change from 0 to 512
[   63.863646][ T4883] EXT4-fs: Ignoring removed nobh option
[   63.871190][ T4883] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.486: iget: bad i_size value: 38620345925642
[   63.884256][ T4883] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.486: couldn't read orphan inode 15 (err -117)
[   63.948459][ T4884] EXT4-fs (loop2): shut down requested (0)
[   63.969671][ T4887] 9pnet: Could not find request transport: fd!
[   64.061158][ T4891] pim6reg: tun_chr_ioctl cmd 35108
[   64.180683][  T788] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm kworker/u8:6: bg 0: block 5: invalid block bitmap
[   64.194511][  T788] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   64.207105][  T788] EXT4-fs (loop2): This should not happen!! Data will be lost
[   64.207105][  T788] 
[   64.216928][  T788] EXT4-fs (loop2): Total free blocks count 0
[   64.222938][  T788] EXT4-fs (loop2): Free/Dirty block details
[   64.228910][  T788] EXT4-fs (loop2): free_blocks=0
[   64.229523][ T4898] pim6reg1: entered promiscuous mode
[   64.233871][  T788] EXT4-fs (loop2): dirty_blocks=16016
[   64.233889][  T788] EXT4-fs (loop2): Block reservation details
[   64.233902][  T788] EXT4-fs (loop2): i_reserved_data_blocks=16016
[   64.254769][   T37] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[   64.257102][ T4898] pim6reg1: entered allmulticast mode
[   64.481236][ T4915] capability: warning: `syz.2.499' uses 32-bit capabilities (legacy support in use)
[   64.519330][ T4921] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   64.547831][ T4921] netlink: 'syz.1.502': attribute type 10 has an invalid length.
[   64.555770][ T4921] ipvlan0: entered allmulticast mode
[   64.561261][ T4921] veth0_vlan: entered allmulticast mode
[   64.568959][ T4921] team0: Device ipvlan0 failed to register rx_handler
[   64.659147][ T4934] pim6reg1: entered promiscuous mode
[   64.664569][ T4934] pim6reg1: entered allmulticast mode
[   64.740920][ T4927] loop1: detected capacity change from 0 to 512
[   64.748738][ T4927] EXT4-fs: Ignoring removed nobh option
[   64.756327][ T4927] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.503: iget: bad i_size value: 38620345925642
[   64.770660][ T4927] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.503: couldn't read orphan inode 15 (err -117)
[   64.785479][ T4927] EXT4-fs (loop1): shut down requested (0)
[   64.823942][ T4935] loop0: detected capacity change from 0 to 512
[   64.835555][ T4935] EXT4-fs: Ignoring removed nobh option
[   64.853970][ T4935] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.507: iget: bad i_size value: 38620345925642
[   64.876674][ T4935] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.507: couldn't read orphan inode 15 (err -117)
[   64.964834][ T4955] pim6reg: tun_chr_ioctl cmd 35108
[   65.082958][ T4964] loop4: detected capacity change from 0 to 1024
[   65.091343][ T4964] EXT4-fs: Ignoring removed bh option
[   65.097599][ T4964] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   65.217404][ T4416] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm kworker/u8:16: bg 0: block 5: invalid block bitmap
[   65.231585][ T4416] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   65.244182][ T4416] EXT4-fs (loop0): This should not happen!! Data will be lost
[   65.244182][ T4416] 
[   65.253885][ T4416] EXT4-fs (loop0): Total free blocks count 0
[   65.260068][ T4416] EXT4-fs (loop0): Free/Dirty block details
[   65.265992][ T4416] EXT4-fs (loop0): free_blocks=0
[   65.271099][ T4416] EXT4-fs (loop0): dirty_blocks=3448
[   65.276506][ T4416] EXT4-fs (loop0): Block reservation details
[   65.282548][ T4416] EXT4-fs (loop0): i_reserved_data_blocks=3448
[   65.299346][ T4416] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 1392 with error 28
[   65.312189][ T4416] EXT4-fs (loop0): This should not happen!! Data will be lost
[   65.312189][ T4416] 
[   65.348793][ T4970] netlink: 'syz.2.520': attribute type 10 has an invalid length.
[   65.356838][ T4970] ipvlan0: entered allmulticast mode
[   65.362235][ T4970] veth0_vlan: entered allmulticast mode
[   65.369686][ T4970] team0: Device ipvlan0 failed to register rx_handler
[   65.425011][ T4980] pim6reg: tun_chr_ioctl cmd 35108
[   65.834187][ T4995] loop1: detected capacity change from 0 to 512
[   65.841413][ T4995] EXT4-fs: Ignoring removed nobh option
[   65.848542][ T4995] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.529: iget: bad i_size value: 38620345925642
[   65.861626][ T4995] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.529: couldn't read orphan inode 15 (err -117)
[   65.892216][ T5001] loop3: detected capacity change from 0 to 256
[   65.907494][ T5001] FAT-fs (loop3): Directory bread(block 64) failed
[   65.921483][ T5001] FAT-fs (loop3): Directory bread(block 65) failed
[   65.943032][ T5001] FAT-fs (loop3): Directory bread(block 66) failed
[   65.953792][ T5001] FAT-fs (loop3): Directory bread(block 67) failed
[   65.967121][ T5001] FAT-fs (loop3): Directory bread(block 68) failed
[   65.975505][ T5001] FAT-fs (loop3): Directory bread(block 69) failed
[   65.993780][ T5001] FAT-fs (loop3): Directory bread(block 70) failed
[   66.000628][ T5001] FAT-fs (loop3): Directory bread(block 71) failed
[   66.008947][ T5001] FAT-fs (loop3): Directory bread(block 72) failed
[   66.016311][ T5001] FAT-fs (loop3): Directory bread(block 73) failed
[   66.213526][ T5005] __nla_validate_parse: 16 callbacks suppressed
[   66.213545][ T5005] netlink: 8 bytes leftover after parsing attributes in process `syz.3.531'.
[   66.241374][   T37] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm kworker/u8:2: bg 0: block 5: invalid block bitmap
[   66.254404][ T5005] veth0_to_bond: entered allmulticast mode
[   66.262956][   T37] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   66.275627][   T37] EXT4-fs (loop1): This should not happen!! Data will be lost
[   66.275627][   T37] 
[   66.285427][   T37] EXT4-fs (loop1): Total free blocks count 0
[   66.291948][   T37] EXT4-fs (loop1): Free/Dirty block details
[   66.297923][   T37] EXT4-fs (loop1): free_blocks=0
[   66.302919][   T37] EXT4-fs (loop1): dirty_blocks=3496
[   66.308275][   T37] EXT4-fs (loop1): Block reservation details
[   66.314370][   T37] EXT4-fs (loop1): i_reserved_data_blocks=3496
[   66.372285][   T37] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 1440 with error 28
[   66.385278][   T37] EXT4-fs (loop1): This should not happen!! Data will be lost
[   66.385278][   T37] 
[   66.398666][   T29] kauditd_printk_skb: 321 callbacks suppressed
[   66.398681][   T29] audit: type=1326 audit(1756865317.654:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5000 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd596f5ba7 code=0x7ffc0000
[   66.428330][   T29] audit: type=1326 audit(1756865317.654:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5000 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd5969adb9 code=0x7ffc0000
[   66.451694][   T29] audit: type=1326 audit(1756865317.654:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5000 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd596febe9 code=0x7ffc0000
[   66.475063][   T29] audit: type=1326 audit(1756865317.674:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5000 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd596f5ba7 code=0x7ffc0000
[   66.498334][   T29] audit: type=1326 audit(1756865317.674:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5000 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd5969adb9 code=0x7ffc0000
[   66.522208][   T29] audit: type=1326 audit(1756865317.674:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5000 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd596febe9 code=0x7ffc0000
[   66.546845][   T29] audit: type=1326 audit(1756865317.684:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5000 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd596f5ba7 code=0x7ffc0000
[   66.570660][   T29] audit: type=1326 audit(1756865317.684:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5000 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd5969adb9 code=0x7ffc0000
[   66.594170][   T29] audit: type=1326 audit(1756865317.684:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5000 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd596febe9 code=0x7ffc0000
[   66.627589][   T29] audit: type=1326 audit(1756865317.684:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5000 comm="syz.3.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd596f5ba7 code=0x7ffc0000
[   66.756226][ T5026] pim6reg1: entered promiscuous mode
[   66.761713][ T5026] pim6reg1: entered allmulticast mode
[   66.894356][  T788] kworker/u8:6: attempt to access beyond end of device
[   66.894356][  T788] loop3: rw=1, sector=1192, nr_sectors = 32 limit=256
[   66.928172][  T788] kworker/u8:6: attempt to access beyond end of device
[   66.928172][  T788] loop3: rw=1, sector=1256, nr_sectors = 32 limit=256
[   66.958534][  T788] kworker/u8:6: attempt to access beyond end of device
[   66.958534][  T788] loop3: rw=1, sector=1320, nr_sectors = 32 limit=256
[   66.986466][  T788] kworker/u8:6: attempt to access beyond end of device
[   66.986466][  T788] loop3: rw=1, sector=1384, nr_sectors = 32 limit=256
[   67.015268][  T788] kworker/u8:6: attempt to access beyond end of device
[   67.015268][  T788] loop3: rw=1, sector=1448, nr_sectors = 32 limit=256
[   67.046890][  T788] kworker/u8:6: attempt to access beyond end of device
[   67.046890][  T788] loop3: rw=1, sector=1512, nr_sectors = 32 limit=256
[   67.064889][  T788] kworker/u8:6: attempt to access beyond end of device
[   67.064889][  T788] loop3: rw=1, sector=1576, nr_sectors = 32 limit=256
[   67.098131][ T5040] netlink: 32 bytes leftover after parsing attributes in process `syz.0.545'.
[   67.107271][  T788] kworker/u8:6: attempt to access beyond end of device
[   67.107271][  T788] loop3: rw=1, sector=1640, nr_sectors = 32 limit=256
[   67.124316][  T788] kworker/u8:6: attempt to access beyond end of device
[   67.124316][  T788] loop3: rw=1, sector=1704, nr_sectors = 32 limit=256
[   67.139528][  T788] kworker/u8:6: attempt to access beyond end of device
[   67.139528][  T788] loop3: rw=1, sector=1800, nr_sectors = 32 limit=256
[   67.167013][ T5031] loop1: detected capacity change from 0 to 512
[   67.176931][ T5038] loop2: detected capacity change from 0 to 512
[   67.183604][ T5038] EXT4-fs: Ignoring removed nobh option
[   67.192855][ T5038] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.544: iget: bad i_size value: 38620345925642
[   67.206207][ T5031] EXT4-fs: Ignoring removed nobh option
[   67.213280][ T5038] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.544: couldn't read orphan inode 15 (err -117)
[   67.225985][ T5031] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.541: iget: bad i_size value: 38620345925642
[   67.251596][ T5031] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.541: couldn't read orphan inode 15 (err -117)
[   67.297352][ T5031] EXT4-fs (loop1): shut down requested (0)
[   67.381944][ T5052] netlink: 8 bytes leftover after parsing attributes in process `syz.3.547'.
[   67.416804][ T5056] FAULT_INJECTION: forcing a failure.
[   67.416804][ T5056] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.429959][ T5056] CPU: 0 UID: 0 PID: 5056 Comm: syz.1.549 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   67.430018][ T5056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   67.430034][ T5056] Call Trace:
[   67.430043][ T5056]  <TASK>
[   67.430052][ T5056]  __dump_stack+0x1d/0x30
[   67.430077][ T5056]  dump_stack_lvl+0xe8/0x140
[   67.430100][ T5056]  dump_stack+0x15/0x1b
[   67.430121][ T5056]  should_fail_ex+0x265/0x280
[   67.430173][ T5056]  should_fail+0xb/0x20
[   67.430196][ T5056]  should_fail_usercopy+0x1a/0x20
[   67.430223][ T5056]  _copy_from_user+0x1c/0xb0
[   67.430252][ T5056]  __sys_bpf+0x178/0x7b0
[   67.430346][ T5056]  __x64_sys_bpf+0x41/0x50
[   67.430377][ T5056]  x64_sys_call+0x2aea/0x2ff0
[   67.430404][ T5056]  do_syscall_64+0xd2/0x200
[   67.430461][ T5056]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   67.430491][ T5056]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   67.430612][ T5056]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.430640][ T5056] RIP: 0033:0x7f6b3464ebe9
[   67.430711][ T5056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.430729][ T5056] RSP: 002b:00007f6b330af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   67.430750][ T5056] RAX: ffffffffffffffda RBX: 00007f6b34885fa0 RCX: 00007f6b3464ebe9
[   67.430798][ T5056] RDX: 000000000000000c RSI: 0000200000000640 RDI: 0000000000000023
[   67.430810][ T5056] RBP: 00007f6b330af090 R08: 0000000000000000 R09: 0000000000000000
[   67.430822][ T5056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.430836][ T5056] R13: 00007f6b34886038 R14: 00007f6b34885fa0 R15: 00007ffc2bae66a8
[   67.430858][ T5056]  </TASK>
[   67.636880][ T5061] loop1: detected capacity change from 0 to 1024
[   67.643822][ T5061] EXT4-fs: Ignoring removed bh option
[   67.658483][ T5061] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   67.687910][ T5058] netlink: 24 bytes leftover after parsing attributes in process `syz.3.548'.
[   67.850988][ T4400] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm kworker/u8:11: bg 0: block 5: invalid block bitmap
[   67.867227][ T4400] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1876 with error 28
[   67.880574][ T4400] EXT4-fs (loop2): This should not happen!! Data will be lost
[   67.880574][ T4400] 
[   67.892090][ T4400] EXT4-fs (loop2): Total free blocks count 0
[   67.898171][ T4400] EXT4-fs (loop2): Free/Dirty block details
[   67.904108][ T4400] EXT4-fs (loop2): free_blocks=0
[   67.909214][ T4400] EXT4-fs (loop2): dirty_blocks=1880
[   67.914541][ T4400] EXT4-fs (loop2): Block reservation details
[   67.917891][ T5087] loop3: detected capacity change from 0 to 1024
[   67.920579][ T4400] EXT4-fs (loop2): i_reserved_data_blocks=1880
[   68.005620][ T5084] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 18: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[   68.236178][ T5115] pim6reg1: entered promiscuous mode
[   68.241797][ T5115] pim6reg1: entered allmulticast mode
[   68.318012][ T5105] loop4: detected capacity change from 0 to 512
[   68.324620][ T5105] EXT4-fs: Ignoring removed nobh option
[   68.341195][ T5105] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.567: iget: bad i_size value: 38620345925642
[   68.354259][ T5105] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.567: couldn't read orphan inode 15 (err -117)
[   68.561747][ T5140] netlink: 'syz.0.581': attribute type 7 has an invalid length.
[   68.569637][ T5140] netlink: 140 bytes leftover after parsing attributes in process `syz.0.581'.
[   68.708286][ T5143] rdma_rxe: rxe_newlink: failed to add lo
[   68.805984][ T5147] syzkaller0: entered allmulticast mode
[   68.811897][ T5147] syzkaller0: entered promiscuous mode
[   68.819616][ T5147] syzkaller0 (unregistering): left allmulticast mode
[   68.826481][ T5147] syzkaller0 (unregistering): left promiscuous mode
[   68.862753][  T788] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm kworker/u8:6: bg 0: block 5: invalid block bitmap
[   68.877635][ T5151] netlink: 28 bytes leftover after parsing attributes in process `syz.1.584'.
[   68.880862][  T788] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   68.899401][  T788] EXT4-fs (loop4): This should not happen!! Data will be lost
[   68.899401][  T788] 
[   68.909116][  T788] EXT4-fs (loop4): Total free blocks count 0
[   68.916355][  T788] EXT4-fs (loop4): Free/Dirty block details
[   68.922295][  T788] EXT4-fs (loop4): free_blocks=0
[   68.927373][  T788] EXT4-fs (loop4): dirty_blocks=2712
[   68.932795][  T788] EXT4-fs (loop4): Block reservation details
[   68.938828][  T788] EXT4-fs (loop4): i_reserved_data_blocks=2712
[   68.951669][ T4416] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 656 with error 28
[   68.964471][ T4416] EXT4-fs (loop4): This should not happen!! Data will be lost
[   68.964471][ T4416] 
[   69.022933][ T5161] netlink: 'syz.1.588': attribute type 10 has an invalid length.
[   69.049932][ T5161] team0: Device hsr_slave_0 failed to register rx_handler
[   69.117846][ T5180] netlink: 28 bytes leftover after parsing attributes in process `syz.0.598'.
[   69.128433][ T5176] loop2: detected capacity change from 0 to 1024
[   69.136483][ T5176] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   69.256588][ T5181] rdma_rxe: rxe_newlink: failed to add lo
[   69.321742][ T5174] loop4: detected capacity change from 0 to 512
[   69.331994][ T5174] EXT4-fs: Ignoring removed nobh option
[   69.351574][ T5174] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.595: iget: bad i_size value: 38620345925642
[   69.371774][ T5174] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.595: couldn't read orphan inode 15 (err -117)
[   69.647580][ T5210] loop3: detected capacity change from 0 to 512
[   69.655184][ T5210] ext4: Unknown parameter 'euid>00000000004294967295'
[   69.684485][ T5200] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.726927][ T5215] netlink: 'syz.3.609': attribute type 21 has an invalid length.
[   69.734922][ T5215] IPv6: NLM_F_CREATE should be specified when creating new route
[   69.873233][ T5220] netlink: 28 bytes leftover after parsing attributes in process `syz.3.610'.
[   69.885273][ T5200] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.899621][ T4400] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm kworker/u8:11: bg 0: block 5: invalid block bitmap
[   69.912723][ T4400] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   69.925241][ T4400] EXT4-fs (loop4): This should not happen!! Data will be lost
[   69.925241][ T4400] 
[   69.935047][ T4400] EXT4-fs (loop4): Total free blocks count 0
[   69.941054][ T4400] EXT4-fs (loop4): Free/Dirty block details
[   69.946994][ T4400] EXT4-fs (loop4): free_blocks=0
[   69.952040][ T4400] EXT4-fs (loop4): dirty_blocks=4468
[   69.957557][ T4400] EXT4-fs (loop4): Block reservation details
[   69.963563][ T4400] EXT4-fs (loop4): i_reserved_data_blocks=4468
[   69.975667][ T5200] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.988793][   T37] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[   70.001595][   T37] EXT4-fs (loop4): This should not happen!! Data will be lost
[   70.001595][   T37] 
[   70.026152][ T5228] netlink: 'syz.3.615': attribute type 10 has an invalid length.
[   70.041806][ T5228] ipvlan0: entered allmulticast mode
[   70.047557][ T5228] veth0_vlan: entered allmulticast mode
[   70.055097][ T5228] team0: Device ipvlan0 failed to register rx_handler
[   70.066647][ T5200] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.067366][ T5228] netlink: 592 bytes leftover after parsing attributes in process `syz.3.615'.
[   70.087642][ T5228] netlink: 592 bytes leftover after parsing attributes in process `syz.3.615'.
[   70.123061][ T5236] loop3: detected capacity change from 0 to 1024
[   70.131157][ T5236] EXT4-fs: Ignoring removed bh option
[   70.137188][ T5236] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   70.163198][ T5237] loop4: detected capacity change from 0 to 512
[   70.181752][ T5237] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.612: casefold flag without casefold feature
[   70.196960][ T5237] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.612: couldn't read orphan inode 15 (err -117)
[   70.211949][ T5234] rdma_rxe: rxe_newlink: failed to add lo
[   70.243959][ T4400] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.269203][ T4400] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.319858][ T4400] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.334289][   T37] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.692780][ T5270] pim6reg: tun_chr_ioctl cmd 35108
[   70.948025][ T3311] EXT4-fs unmount: 60 callbacks suppressed
[   70.948044][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.985601][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.020609][ T5274] loop3: detected capacity change from 0 to 1024
[   71.028041][ T5274] EXT4-fs: Ignoring removed bh option
[   71.042879][ T5274] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   71.075823][ T5274] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.120040][ T5274] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.359941][ T5315] pim6reg1: entered promiscuous mode
[   71.365331][ T5315] pim6reg1: entered allmulticast mode
[   71.403487][ T5320] audit_log_lost: 691 callbacks suppressed
[   71.403504][ T5320] audit: audit_lost=3 audit_rate_limit=0 audit_backlog_limit=64
[   71.403724][   T29] audit: type=1400 audit(1756865322.697:1340): avc:  denied  { prog_load } for  pid=5323 comm="syz.1.652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   71.409491][ T5320] audit: out of memory in audit_log_start
[   71.452344][   T29] audit: type=1400 audit(1756865322.697:1341): avc:  denied  { map_create } for  pid=5301 comm="syz.2.642" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   71.471552][   T29] audit: type=1400 audit(1756865322.737:1342): avc:  denied  { mounton } for  pid=5323 comm="syz.1.652" path="/140/file0" dev="tmpfs" ino=748 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=0
[   71.495209][   T29] audit: type=1326 audit(1756865322.737:1343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5321 comm="syz.4.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd19fd6ebe9 code=0x7ffc0000
[   71.518932][   T29] audit: type=1400 audit(1756865322.737:1344): avc:  denied  { map_create } for  pid=5321 comm="syz.4.651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   71.538250][   T29] audit: type=1326 audit(1756865322.737:1345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5321 comm="syz.4.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19fd6ebe9 code=0x7ffc0000
[   71.561726][   T29] audit: type=1326 audit(1756865322.737:1346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5321 comm="syz.4.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19fd6ebe9 code=0x7ffc0000
[   71.610909][ T5326] audit: audit_backlog=65 > audit_backlog_limit=64
[   71.621587][ T5326] FAULT_INJECTION: forcing a failure.
[   71.621587][ T5326] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.634827][ T5326] CPU: 1 UID: 0 PID: 5326 Comm: syz.1.653 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   71.634856][ T5326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   71.634868][ T5326] Call Trace:
[   71.634875][ T5326]  <TASK>
[   71.634901][ T5326]  __dump_stack+0x1d/0x30
[   71.634927][ T5326]  dump_stack_lvl+0xe8/0x140
[   71.634951][ T5326]  dump_stack+0x15/0x1b
[   71.634969][ T5326]  should_fail_ex+0x265/0x280
[   71.634990][ T5326]  should_fail+0xb/0x20
[   71.635008][ T5326]  should_fail_usercopy+0x1a/0x20
[   71.635114][ T5326]  _copy_to_user+0x20/0xa0
[   71.635149][ T5326]  simple_read_from_buffer+0xb5/0x130
[   71.635305][ T5326]  proc_fail_nth_read+0x10e/0x150
[   71.635345][ T5326]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   71.635384][ T5326]  vfs_read+0x1a5/0x770
[   71.635404][ T5326]  ? __rcu_read_unlock+0x4f/0x70
[   71.635425][ T5326]  ? __fget_files+0x184/0x1c0
[   71.635497][ T5326]  ksys_read+0xda/0x1a0
[   71.635526][ T5326]  __x64_sys_read+0x40/0x50
[   71.635552][ T5326]  x64_sys_call+0x27bc/0x2ff0
[   71.635575][ T5326]  do_syscall_64+0xd2/0x200
[   71.635613][ T5326]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.635636][ T5326]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   71.635661][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.635688][ T5326] RIP: 0033:0x7f6b3464d5fc
[   71.635724][ T5326] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   71.635746][ T5326] RSP: 002b:00007f6b330af030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   71.635769][ T5326] RAX: ffffffffffffffda RBX: 00007f6b34885fa0 RCX: 00007f6b3464d5fc
[   71.635784][ T5326] RDX: 000000000000000f RSI: 00007f6b330af0a0 RDI: 0000000000000004
[   71.635796][ T5326] RBP: 00007f6b330af090 R08: 0000000000000000 R09: 0000000000000000
[   71.635890][ T5326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.635901][ T5326] R13: 00007f6b34886038 R14: 00007f6b34885fa0 R15: 00007ffc2bae66a8
[   71.635939][ T5326]  </TASK>
[   71.948482][ T5348] __nla_validate_parse: 3 callbacks suppressed
[   71.948497][ T5348] netlink: 4 bytes leftover after parsing attributes in process `syz.4.661'.
[   71.993424][ T5351] netlink: 32 bytes leftover after parsing attributes in process `syz.1.663'.
[   72.027168][ T5353] lo speed is unknown, defaulting to 1000
[   72.160497][ T5371] netlink: 4 bytes leftover after parsing attributes in process `syz.3.672'.
[   72.228075][ T5383] FAULT_INJECTION: forcing a failure.
[   72.228075][ T5383] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.241232][ T5383] CPU: 0 UID: 0 PID: 5383 Comm: syz.1.678 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   72.241269][ T5383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   72.241281][ T5383] Call Trace:
[   72.241288][ T5383]  <TASK>
[   72.241295][ T5383]  __dump_stack+0x1d/0x30
[   72.241325][ T5383]  dump_stack_lvl+0xe8/0x140
[   72.241345][ T5383]  dump_stack+0x15/0x1b
[   72.241410][ T5383]  should_fail_ex+0x265/0x280
[   72.241436][ T5383]  should_fail+0xb/0x20
[   72.241458][ T5383]  should_fail_usercopy+0x1a/0x20
[   72.241485][ T5383]  _copy_to_user+0x20/0xa0
[   72.241524][ T5383]  simple_read_from_buffer+0xb5/0x130
[   72.241551][ T5383]  proc_fail_nth_read+0x10e/0x150
[   72.241611][ T5383]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   72.241636][ T5383]  vfs_read+0x1a5/0x770
[   72.241658][ T5383]  ? __rcu_read_unlock+0x4f/0x70
[   72.241699][ T5383]  ? __fget_files+0x184/0x1c0
[   72.241754][ T5383]  ksys_read+0xda/0x1a0
[   72.241777][ T5383]  __x64_sys_read+0x40/0x50
[   72.241798][ T5383]  x64_sys_call+0x27bc/0x2ff0
[   72.241836][ T5383]  do_syscall_64+0xd2/0x200
[   72.241872][ T5383]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   72.241932][ T5383]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   72.242029][ T5383]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.242054][ T5383] RIP: 0033:0x7f6b3464d5fc
[   72.242131][ T5383] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   72.242154][ T5383] RSP: 002b:00007f6b330af030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   72.242172][ T5383] RAX: ffffffffffffffda RBX: 00007f6b34885fa0 RCX: 00007f6b3464d5fc
[   72.242186][ T5383] RDX: 000000000000000f RSI: 00007f6b330af0a0 RDI: 0000000000000004
[   72.242201][ T5383] RBP: 00007f6b330af090 R08: 0000000000000000 R09: 0000000000000000
[   72.242216][ T5383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.242232][ T5383] R13: 00007f6b34886038 R14: 00007f6b34885fa0 R15: 00007ffc2bae66a8
[   72.242256][ T5383]  </TASK>
[   72.587184][ T5408] pim6reg1: entered promiscuous mode
[   72.592519][ T5408] pim6reg1: entered allmulticast mode
[   72.616073][ T5411] pim6reg: tun_chr_ioctl cmd 35108
[   72.749696][ T5423] mmap: syz.3.697 (5423) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   72.809792][ T5429] netlink: 56 bytes leftover after parsing attributes in process `syz.2.699'.
[   72.869855][ T5439] netlink: 12 bytes leftover after parsing attributes in process `syz.2.704'.
[   73.137308][ T5474] netlink: 12 bytes leftover after parsing attributes in process `syz.3.721'.
[   73.227204][ T5481] netlink: 'syz.3.724': attribute type 17 has an invalid length.
[   73.235006][ T5481] netlink: 152 bytes leftover after parsing attributes in process `syz.3.724'.
[   73.300461][ T5481] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   73.496926][ T5507] netlink: 12 bytes leftover after parsing attributes in process `syz.3.735'.
[   73.570433][ T5515] netlink: 'syz.2.738': attribute type 7 has an invalid length.
[   73.578215][ T5515] netlink: 140 bytes leftover after parsing attributes in process `syz.2.738'.
[   73.671797][ T5521] lo speed is unknown, defaulting to 1000
[   73.686449][ T5523] pim6reg: tun_chr_ioctl cmd 35108
[   73.763534][ T5529] pim6reg1: entered promiscuous mode
[   73.768895][ T5529] pim6reg1: entered allmulticast mode
[   73.822555][ T5536] netlink: 12 bytes leftover after parsing attributes in process `syz.3.748'.
[   73.871673][ T5541] FAULT_INJECTION: forcing a failure.
[   73.871673][ T5541] name failslab, interval 1, probability 0, space 0, times 0
[   73.884446][ T5541] CPU: 1 UID: 0 PID: 5541 Comm: syz.1.747 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   73.884513][ T5541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   73.884529][ T5541] Call Trace:
[   73.884537][ T5541]  <TASK>
[   73.884545][ T5541]  __dump_stack+0x1d/0x30
[   73.884573][ T5541]  dump_stack_lvl+0xe8/0x140
[   73.884597][ T5541]  dump_stack+0x15/0x1b
[   73.884632][ T5541]  should_fail_ex+0x265/0x280
[   73.884658][ T5541]  should_failslab+0x8c/0xb0
[   73.884718][ T5541]  kmem_cache_alloc_noprof+0x50/0x310
[   73.884752][ T5541]  ? skb_clone+0x151/0x1f0
[   73.884782][ T5541]  skb_clone+0x151/0x1f0
[   73.884886][ T5541]  __netlink_deliver_tap+0x2c9/0x500
[   73.884984][ T5541]  netlink_unicast+0x66b/0x690
[   73.885011][ T5541]  netlink_sendmsg+0x58b/0x6b0
[   73.885042][ T5541]  ? __pfx_netlink_sendmsg+0x10/0x10
[   73.885071][ T5541]  __sock_sendmsg+0x142/0x180
[   73.885131][ T5541]  ____sys_sendmsg+0x31e/0x4e0
[   73.885215][ T5541]  ___sys_sendmsg+0x17b/0x1d0
[   73.885258][ T5541]  __x64_sys_sendmsg+0xd4/0x160
[   73.885291][ T5541]  x64_sys_call+0x191e/0x2ff0
[   73.885317][ T5541]  do_syscall_64+0xd2/0x200
[   73.885386][ T5541]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.885416][ T5541]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   73.885449][ T5541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.885508][ T5541] RIP: 0033:0x7f6b3464ebe9
[   73.885526][ T5541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.885548][ T5541] RSP: 002b:00007f6b3308e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.885572][ T5541] RAX: ffffffffffffffda RBX: 00007f6b34886090 RCX: 00007f6b3464ebe9
[   73.885618][ T5541] RDX: 0000000000000000 RSI: 00002000000012c0 RDI: 0000000000000005
[   73.885633][ T5541] RBP: 00007f6b3308e090 R08: 0000000000000000 R09: 0000000000000000
[   73.885648][ T5541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.885663][ T5541] R13: 00007f6b34886128 R14: 00007f6b34886090 R15: 00007ffc2bae66a8
[   73.885685][ T5541]  </TASK>
[   74.218401][ T5557] netdevsim netdevsim3: Direct firmware load for ./file0 failed with error -2
[   74.551134][ T5567] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   74.941853][ T5598] FAULT_INJECTION: forcing a failure.
[   74.941853][ T5598] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   74.955071][ T5598] CPU: 0 UID: 0 PID: 5598 Comm: syz.0.775 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   74.955102][ T5598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   74.955143][ T5598] Call Trace:
[   74.955149][ T5598]  <TASK>
[   74.955156][ T5598]  __dump_stack+0x1d/0x30
[   74.955177][ T5598]  dump_stack_lvl+0xe8/0x140
[   74.955198][ T5598]  dump_stack+0x15/0x1b
[   74.955288][ T5598]  should_fail_ex+0x265/0x280
[   74.955314][ T5598]  should_fail+0xb/0x20
[   74.955337][ T5598]  should_fail_usercopy+0x1a/0x20
[   74.955380][ T5598]  _copy_from_user+0x1c/0xb0
[   74.955460][ T5598]  kstrtouint_from_user+0x69/0xf0
[   74.955539][ T5598]  ? 0xffffffff81000000
[   74.955585][ T5598]  ? selinux_file_permission+0x1e4/0x320
[   74.955607][ T5598]  proc_fail_nth_write+0x50/0x160
[   74.955659][ T5598]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   74.955699][ T5598]  vfs_write+0x266/0x960
[   74.955723][ T5598]  ? vfs_read+0x4e6/0x770
[   74.955741][ T5598]  ? kmem_cache_free+0xdf/0x300
[   74.955780][ T5598]  ? putname+0xda/0x100
[   74.955888][ T5598]  ksys_write+0xda/0x1a0
[   74.955937][ T5598]  __x64_sys_write+0x40/0x50
[   74.955965][ T5598]  x64_sys_call+0x27fe/0x2ff0
[   74.955991][ T5598]  do_syscall_64+0xd2/0x200
[   74.956027][ T5598]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   74.956051][ T5598]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   74.956089][ T5598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.956115][ T5598] RIP: 0033:0x7f611bc6d69f
[   74.956133][ T5598] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   74.956154][ T5598] RSP: 002b:00007f611a6d7030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   74.956173][ T5598] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f611bc6d69f
[   74.956184][ T5598] RDX: 0000000000000001 RSI: 00007f611a6d70a0 RDI: 0000000000000003
[   74.956195][ T5598] RBP: 00007f611a6d7090 R08: 0000000000000000 R09: 0000000000000000
[   74.956216][ T5598] R10: 00002000000000c0 R11: 0000000000000293 R12: 0000000000000001
[   74.956231][ T5598] R13: 00007f611bea6038 R14: 00007f611bea5fa0 R15: 00007ffed0893638
[   74.956333][ T5598]  </TASK>
[   75.301012][ T5613] FAULT_INJECTION: forcing a failure.
[   75.301012][ T5613] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.314306][ T5613] CPU: 0 UID: 0 PID: 5613 Comm: syz.0.783 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   75.314333][ T5613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   75.314345][ T5613] Call Trace:
[   75.314351][ T5613]  <TASK>
[   75.314359][ T5613]  __dump_stack+0x1d/0x30
[   75.314409][ T5613]  dump_stack_lvl+0xe8/0x140
[   75.314434][ T5613]  dump_stack+0x15/0x1b
[   75.314453][ T5613]  should_fail_ex+0x265/0x280
[   75.314479][ T5613]  should_fail+0xb/0x20
[   75.314508][ T5613]  should_fail_usercopy+0x1a/0x20
[   75.314536][ T5613]  _copy_to_user+0x20/0xa0
[   75.314640][ T5613]  simple_read_from_buffer+0xb5/0x130
[   75.314668][ T5613]  proc_fail_nth_read+0x10e/0x150
[   75.314721][ T5613]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   75.314752][ T5613]  vfs_read+0x1a5/0x770
[   75.314771][ T5613]  ? __rcu_read_unlock+0x4f/0x70
[   75.314845][ T5613]  ? __fget_files+0x184/0x1c0
[   75.314871][ T5613]  ksys_read+0xda/0x1a0
[   75.314958][ T5613]  __x64_sys_read+0x40/0x50
[   75.314981][ T5613]  x64_sys_call+0x27bc/0x2ff0
[   75.315002][ T5613]  do_syscall_64+0xd2/0x200
[   75.315133][ T5613]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   75.315159][ T5613]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   75.315192][ T5613]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.315217][ T5613] RIP: 0033:0x7f611bc6d5fc
[   75.315333][ T5613] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   75.315408][ T5613] RSP: 002b:00007f611a6d7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   75.315433][ T5613] RAX: ffffffffffffffda RBX: 00007f611bea5fa0 RCX: 00007f611bc6d5fc
[   75.315448][ T5613] RDX: 000000000000000f RSI: 00007f611a6d70a0 RDI: 0000000000000004
[   75.315463][ T5613] RBP: 00007f611a6d7090 R08: 0000000000000000 R09: 0000000000000000
[   75.315475][ T5613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.315486][ T5613] R13: 00007f611bea6038 R14: 00007f611bea5fa0 R15: 00007ffed0893638
[   75.315503][ T5613]  </TASK>
[   75.558485][ T5623] pim6reg: tun_chr_ioctl cmd 35108
[   75.579007][ T5624] pim6reg: tun_chr_ioctl cmd 35108
[   75.689554][ T5629] FAULT_INJECTION: forcing a failure.
[   75.689554][ T5629] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.702683][ T5629] CPU: 1 UID: 0 PID: 5629 Comm: syz.3.788 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   75.702721][ T5629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   75.702785][ T5629] Call Trace:
[   75.702792][ T5629]  <TASK>
[   75.702800][ T5629]  __dump_stack+0x1d/0x30
[   75.702825][ T5629]  dump_stack_lvl+0xe8/0x140
[   75.702847][ T5629]  dump_stack+0x15/0x1b
[   75.702862][ T5629]  should_fail_ex+0x265/0x280
[   75.702929][ T5629]  should_fail+0xb/0x20
[   75.702949][ T5629]  should_fail_usercopy+0x1a/0x20
[   75.702985][ T5629]  _copy_to_user+0x20/0xa0
[   75.703041][ T5629]  simple_read_from_buffer+0xb5/0x130
[   75.703068][ T5629]  proc_fail_nth_read+0x10e/0x150
[   75.703103][ T5629]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   75.703140][ T5629]  vfs_read+0x1a5/0x770
[   75.703207][ T5629]  ? __rcu_read_unlock+0x4f/0x70
[   75.703227][ T5629]  ? __fget_files+0x184/0x1c0
[   75.703253][ T5629]  ksys_read+0xda/0x1a0
[   75.703277][ T5629]  __x64_sys_read+0x40/0x50
[   75.703377][ T5629]  x64_sys_call+0x27bc/0x2ff0
[   75.703400][ T5629]  do_syscall_64+0xd2/0x200
[   75.703434][ T5629]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   75.703502][ T5629]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   75.703530][ T5629]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.703618][ T5629] RIP: 0033:0x7fcd596fd5fc
[   75.703632][ T5629] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   75.703653][ T5629] RSP: 002b:00007fcd58146030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   75.703676][ T5629] RAX: ffffffffffffffda RBX: 00007fcd59936090 RCX: 00007fcd596fd5fc
[   75.703692][ T5629] RDX: 000000000000000f RSI: 00007fcd581460a0 RDI: 0000000000000009
[   75.703706][ T5629] RBP: 00007fcd58146090 R08: 0000000000000000 R09: 0000000000000000
[   75.703740][ T5629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.703755][ T5629] R13: 00007fcd59936128 R14: 00007fcd59936090 R15: 00007ffd4480bbf8
[   75.703777][ T5629]  </TASK>
[   76.027558][ T5658] pim6reg: tun_chr_ioctl cmd 35108
[   76.046303][ T5656] pim6reg1: entered promiscuous mode
[   76.051671][ T5656] pim6reg1: entered allmulticast mode
[   76.348338][ T5695] pim6reg1: entered promiscuous mode
[   76.353844][ T5695] pim6reg1: entered allmulticast mode
[   76.413480][   T29] kauditd_printk_skb: 1397 callbacks suppressed
[   76.413506][   T29] audit: type=1400 audit(1756865583.698:2730): avc:  denied  { open } for  pid=5704 comm="syz.0.825" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=0
[   76.460018][   T29] audit: type=1400 audit(1756865583.698:2731): avc:  denied  { create } for  pid=5700 comm="syz.3.823" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=0
[   76.479800][   T29] audit: type=1400 audit(1756865583.698:2732): avc:  denied  { create } for  pid=5700 comm="syz.3.823" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=0
[   76.499655][   T29] audit: type=1400 audit(1756865583.698:2733): avc:  denied  { name_bind } for  pid=5700 comm="syz.3.823" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=0
[   76.521323][   T29] audit: type=1400 audit(1756865583.698:2734): avc:  denied  { create } for  pid=5700 comm="syz.3.823" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=0
[   76.541928][   T29] audit: type=1400 audit(1756865583.728:2735): avc:  denied  { map_create } for  pid=5704 comm="syz.0.825" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   76.561119][   T29] audit: type=1400 audit(1756865583.728:2736): avc:  denied  { prog_load } for  pid=5704 comm="syz.0.825" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   76.580544][   T29] audit: type=1400 audit(1756865583.728:2737): avc:  denied  { prog_load } for  pid=5704 comm="syz.0.825" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   76.599695][   T29] audit: type=1400 audit(1756865583.728:2738): avc:  denied  { prog_load } for  pid=5704 comm="syz.0.825" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   76.618710][   T29] audit: type=1400 audit(1756865583.728:2739): avc:  denied  { prog_load } for  pid=5704 comm="syz.0.825" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   76.650767][ T5714] pim6reg: tun_chr_ioctl cmd 35108
[   76.883906][ T5737] pim6reg1: entered promiscuous mode
[   76.889261][ T5737] pim6reg1: entered allmulticast mode
[   76.916515][ T5741] netlink: 'syz.4.841': attribute type 17 has an invalid length.
[   76.932039][ T5739] lo speed is unknown, defaulting to 1000
[   76.938549][ T5741] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   77.026082][ T5741] FAULT_INJECTION: forcing a failure.
[   77.026082][ T5741] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.039376][ T5741] CPU: 0 UID: 0 PID: 5741 Comm: syz.4.841 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   77.039452][ T5741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   77.039467][ T5741] Call Trace:
[   77.039475][ T5741]  <TASK>
[   77.039485][ T5741]  __dump_stack+0x1d/0x30
[   77.039510][ T5741]  dump_stack_lvl+0xe8/0x140
[   77.039534][ T5741]  dump_stack+0x15/0x1b
[   77.039634][ T5741]  should_fail_ex+0x265/0x280
[   77.039662][ T5741]  should_fail+0xb/0x20
[   77.039685][ T5741]  should_fail_usercopy+0x1a/0x20
[   77.039714][ T5741]  _copy_from_user+0x1c/0xb0
[   77.039751][ T5741]  snd_seq_ioctl+0x127/0x2e0
[   77.039822][ T5741]  ? __pfx_snd_seq_ioctl+0x10/0x10
[   77.039859][ T5741]  __se_sys_ioctl+0xcb/0x140
[   77.039954][ T5741]  __x64_sys_ioctl+0x43/0x50
[   77.039972][ T5741]  x64_sys_call+0x1816/0x2ff0
[   77.039999][ T5741]  do_syscall_64+0xd2/0x200
[   77.040086][ T5741]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.040110][ T5741]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   77.040157][ T5741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.040178][ T5741] RIP: 0033:0x7fd19fd6ebe9
[   77.040193][ T5741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.040215][ T5741] RSP: 002b:00007fd19e7cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   77.040238][ T5741] RAX: ffffffffffffffda RBX: 00007fd19ffa5fa0 RCX: 00007fd19fd6ebe9
[   77.040258][ T5741] RDX: 0000200000000400 RSI: 0000000040605346 RDI: 0000000000000005
[   77.040292][ T5741] RBP: 00007fd19e7cf090 R08: 0000000000000000 R09: 0000000000000000
[   77.040387][ T5741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.040402][ T5741] R13: 00007fd19ffa6038 R14: 00007fd19ffa5fa0 R15: 00007fff3d8c99d8
[   77.040424][ T5741]  </TASK>
[   77.291119][ T5751] pim6reg: tun_chr_ioctl cmd 35108
[   77.666355][ T5793] pim6reg: tun_chr_ioctl cmd 35108
[   78.093519][ T5826] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[   78.153425][ T5825] __nla_validate_parse: 9 callbacks suppressed
[   78.153443][ T5825] netlink: 4 bytes leftover after parsing attributes in process `syz.1.877'.
[   78.552380][ T5859] pim6reg1: entered promiscuous mode
[   78.557835][ T5859] pim6reg1: entered allmulticast mode
[   78.606351][ T5869] FAULT_INJECTION: forcing a failure.
[   78.606351][ T5869] name failslab, interval 1, probability 0, space 0, times 0
[   78.619313][ T5869] CPU: 0 UID: 0 PID: 5869 Comm: syz.3.897 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   78.619341][ T5869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   78.619358][ T5869] Call Trace:
[   78.619366][ T5869]  <TASK>
[   78.619376][ T5869]  __dump_stack+0x1d/0x30
[   78.619434][ T5869]  dump_stack_lvl+0xe8/0x140
[   78.619458][ T5869]  dump_stack+0x15/0x1b
[   78.619479][ T5869]  should_fail_ex+0x265/0x280
[   78.619644][ T5869]  should_failslab+0x8c/0xb0
[   78.619674][ T5869]  kmem_cache_alloc_node_noprof+0x57/0x320
[   78.619711][ T5869]  ? __alloc_skb+0x101/0x320
[   78.619731][ T5869]  __alloc_skb+0x101/0x320
[   78.619752][ T5869]  ? audit_log_start+0x365/0x6c0
[   78.619854][ T5869]  audit_log_start+0x380/0x6c0
[   78.619895][ T5869]  audit_seccomp+0x48/0x100
[   78.619925][ T5869]  ? __seccomp_filter+0x68c/0x10d0
[   78.619948][ T5869]  __seccomp_filter+0x69d/0x10d0
[   78.619975][ T5869]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   78.620001][ T5869]  ? vfs_write+0x7e8/0x960
[   78.620027][ T5869]  ? __rcu_read_unlock+0x4f/0x70
[   78.620072][ T5869]  ? __fget_files+0x184/0x1c0
[   78.620102][ T5869]  __secure_computing+0x82/0x150
[   78.620122][ T5869]  syscall_trace_enter+0xcf/0x1e0
[   78.620194][ T5869]  do_syscall_64+0xac/0x200
[   78.620224][ T5869]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   78.620325][ T5869]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   78.620350][ T5869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.620370][ T5869] RIP: 0033:0x7fcd596febe9
[   78.620388][ T5869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.620410][ T5869] RSP: 002b:00007fcd58167038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[   78.620461][ T5869] RAX: ffffffffffffffda RBX: 00007fcd59935fa0 RCX: 00007fcd596febe9
[   78.620476][ T5869] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   78.620489][ T5869] RBP: 00007fcd58167090 R08: 0000000000000000 R09: 0000000000000000
[   78.620500][ T5869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.620519][ T5869] R13: 00007fcd59936038 R14: 00007fcd59935fa0 R15: 00007ffd4480bbf8
[   78.620611][ T5869]  </TASK>
[   78.873383][ T5878] FAULT_INJECTION: forcing a failure.
[   78.873383][ T5878] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.886584][ T5878] CPU: 0 UID: 0 PID: 5878 Comm: syz.4.900 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   78.886629][ T5878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   78.886641][ T5878] Call Trace:
[   78.886646][ T5878]  <TASK>
[   78.886653][ T5878]  __dump_stack+0x1d/0x30
[   78.886699][ T5878]  dump_stack_lvl+0xe8/0x140
[   78.886795][ T5878]  dump_stack+0x15/0x1b
[   78.886818][ T5878]  should_fail_ex+0x265/0x280
[   78.886846][ T5878]  should_fail+0xb/0x20
[   78.886868][ T5878]  should_fail_usercopy+0x1a/0x20
[   78.886897][ T5878]  _copy_from_user+0x1c/0xb0
[   78.886932][ T5878]  inet_ioctl+0x200/0x3a0
[   78.887000][ T5878]  sock_do_ioctl+0x73/0x220
[   78.887039][ T5878]  sock_ioctl+0x41b/0x610
[   78.887130][ T5878]  ? __pfx_sock_ioctl+0x10/0x10
[   78.887165][ T5878]  __se_sys_ioctl+0xcb/0x140
[   78.887187][ T5878]  __x64_sys_ioctl+0x43/0x50
[   78.887204][ T5878]  x64_sys_call+0x1816/0x2ff0
[   78.887281][ T5878]  do_syscall_64+0xd2/0x200
[   78.887366][ T5878]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   78.887398][ T5878]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   78.887431][ T5878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.887487][ T5878] RIP: 0033:0x7fd19fd6ebe9
[   78.887501][ T5878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.887601][ T5878] RSP: 002b:00007fd19e7cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   78.887624][ T5878] RAX: ffffffffffffffda RBX: 00007fd19ffa5fa0 RCX: 00007fd19fd6ebe9
[   78.887640][ T5878] RDX: 0000200000000140 RSI: 000000000000890b RDI: 0000000000000003
[   78.887655][ T5878] RBP: 00007fd19e7cf090 R08: 0000000000000000 R09: 0000000000000000
[   78.887671][ T5878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.887715][ T5878] R13: 00007fd19ffa6038 R14: 00007fd19ffa5fa0 R15: 00007fff3d8c99d8
[   78.887738][ T5878]  </TASK>
[   79.105691][ T5895] netlink: 12 bytes leftover after parsing attributes in process `syz.0.908'.
[   79.147400][ T5897] FAULT_INJECTION: forcing a failure.
[   79.147400][ T5897] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   79.160861][ T5897] CPU: 0 UID: 0 PID: 5897 Comm: syz.2.909 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   79.160892][ T5897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   79.160907][ T5897] Call Trace:
[   79.160913][ T5897]  <TASK>
[   79.160922][ T5897]  __dump_stack+0x1d/0x30
[   79.160998][ T5897]  dump_stack_lvl+0xe8/0x140
[   79.161021][ T5897]  dump_stack+0x15/0x1b
[   79.161040][ T5897]  should_fail_ex+0x265/0x280
[   79.161064][ T5897]  should_fail_alloc_page+0xf2/0x100
[   79.161112][ T5897]  alloc_pages_bulk_noprof+0xef/0x540
[   79.161157][ T5897]  copy_splice_read+0xf3/0x660
[   79.161187][ T5897]  ? __pfx_shmem_file_splice_read+0x10/0x10
[   79.161219][ T5897]  splice_direct_to_actor+0x290/0x680
[   79.161309][ T5897]  ? __pfx_direct_splice_actor+0x10/0x10
[   79.161337][ T5897]  do_splice_direct+0xda/0x150
[   79.161361][ T5897]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   79.161392][ T5897]  do_sendfile+0x380/0x650
[   79.161460][ T5897]  __x64_sys_sendfile64+0x105/0x150
[   79.161542][ T5897]  x64_sys_call+0x2bb0/0x2ff0
[   79.161593][ T5897]  do_syscall_64+0xd2/0x200
[   79.161628][ T5897]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   79.161689][ T5897]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   79.161720][ T5897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.161746][ T5897] RIP: 0033:0x7f669ad0ebe9
[   79.161780][ T5897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.161797][ T5897] RSP: 002b:00007f669976f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   79.161849][ T5897] RAX: ffffffffffffffda RBX: 00007f669af45fa0 RCX: 00007f669ad0ebe9
[   79.161864][ T5897] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[   79.161878][ T5897] RBP: 00007f669976f090 R08: 0000000000000000 R09: 0000000000000000
[   79.161892][ T5897] R10: 0000000800000009 R11: 0000000000000246 R12: 0000000000000001
[   79.161907][ T5897] R13: 00007f669af46038 R14: 00007f669af45fa0 R15: 00007ffcf74c07e8
[   79.161930][ T5897]  </TASK>
[   79.403086][ T5905] lo speed is unknown, defaulting to 1000
[   79.528205][ T5923] pim6reg: tun_chr_ioctl cmd 35108
[   80.182365][ T5972] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   80.190071][ T5972] batman_adv: batadv0: Removing interface: batadv_slave_0
[   80.200276][ T5972] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   80.207874][ T5972] batman_adv: batadv0: Removing interface: batadv_slave_1
[   80.237468][ T5976] netlink: 'syz.1.942': attribute type 4 has an invalid length.
[   80.269165][ T5977] netlink: 'syz.3.941': attribute type 28 has an invalid length.
[   80.270164][ T5979] FAULT_INJECTION: forcing a failure.
[   80.270164][ T5979] name failslab, interval 1, probability 0, space 0, times 0
[   80.277097][ T5977] netlink: 'syz.3.941': attribute type 3 has an invalid length.
[   80.277115][ T5977] netlink: 132 bytes leftover after parsing attributes in process `syz.3.941'.
[   80.306691][ T5979] CPU: 1 UID: 0 PID: 5979 Comm: syz.1.943 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   80.306805][ T5979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   80.306822][ T5979] Call Trace:
[   80.306829][ T5979]  <TASK>
[   80.306839][ T5979]  __dump_stack+0x1d/0x30
[   80.306866][ T5979]  dump_stack_lvl+0xe8/0x140
[   80.306912][ T5979]  dump_stack+0x15/0x1b
[   80.306933][ T5979]  should_fail_ex+0x265/0x280
[   80.306959][ T5979]  should_failslab+0x8c/0xb0
[   80.306991][ T5979]  kmem_cache_alloc_noprof+0x50/0x310
[   80.307050][ T5979]  ? security_inode_alloc+0x37/0x100
[   80.307169][ T5979]  security_inode_alloc+0x37/0x100
[   80.307198][ T5979]  inode_init_always_gfp+0x4b7/0x500
[   80.307253][ T5979]  ? __pfx_sock_alloc_inode+0x10/0x10
[   80.307286][ T5979]  alloc_inode+0x58/0x170
[   80.307308][ T5979]  do_accept+0xa0/0x3a0
[   80.307347][ T5979]  ? vfs_write+0x7e8/0x960
[   80.307377][ T5979]  __sys_accept4+0xbf/0x140
[   80.307396][ T5979]  __x64_sys_accept+0x42/0x50
[   80.307415][ T5979]  x64_sys_call+0x212c/0x2ff0
[   80.307436][ T5979]  do_syscall_64+0xd2/0x200
[   80.307491][ T5979]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.307516][ T5979]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   80.307543][ T5979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.307630][ T5979] RIP: 0033:0x7f6b3464ebe9
[   80.307646][ T5979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.307664][ T5979] RSP: 002b:00007f6b330af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[   80.307684][ T5979] RAX: ffffffffffffffda RBX: 00007f6b34885fa0 RCX: 00007f6b3464ebe9
[   80.307734][ T5979] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   80.307747][ T5979] RBP: 00007f6b330af090 R08: 0000000000000000 R09: 0000000000000000
[   80.307759][ T5979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.307772][ T5979] R13: 00007f6b34886038 R14: 00007f6b34885fa0 R15: 00007ffc2bae66a8
[   80.307790][ T5979]  </TASK>
[   80.569929][ T5988] netlink: 36 bytes leftover after parsing attributes in process `syz.0.946'.
[   80.570002][ T5989] netlink: 56 bytes leftover after parsing attributes in process `syz.3.947'.
[   80.678383][ T6002] FAULT_INJECTION: forcing a failure.
[   80.678383][ T6002] name failslab, interval 1, probability 0, space 0, times 0
[   80.691340][ T6002] CPU: 1 UID: 0 PID: 6002 Comm: syz.3.953 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   80.691386][ T6002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   80.691402][ T6002] Call Trace:
[   80.691410][ T6002]  <TASK>
[   80.691419][ T6002]  __dump_stack+0x1d/0x30
[   80.691441][ T6002]  dump_stack_lvl+0xe8/0x140
[   80.691460][ T6002]  dump_stack+0x15/0x1b
[   80.691516][ T6002]  should_fail_ex+0x265/0x280
[   80.691538][ T6002]  should_failslab+0x8c/0xb0
[   80.691566][ T6002]  kmem_cache_alloc_node_noprof+0x57/0x320
[   80.691602][ T6002]  ? __alloc_skb+0x101/0x320
[   80.691664][ T6002]  __alloc_skb+0x101/0x320
[   80.691686][ T6002]  netlink_alloc_large_skb+0xba/0xf0
[   80.691725][ T6002]  netlink_sendmsg+0x3cf/0x6b0
[   80.691751][ T6002]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.691840][ T6002]  __sock_sendmsg+0x142/0x180
[   80.691876][ T6002]  ____sys_sendmsg+0x31e/0x4e0
[   80.691908][ T6002]  ___sys_sendmsg+0x17b/0x1d0
[   80.691953][ T6002]  __x64_sys_sendmsg+0xd4/0x160
[   80.692049][ T6002]  x64_sys_call+0x191e/0x2ff0
[   80.692076][ T6002]  do_syscall_64+0xd2/0x200
[   80.692113][ T6002]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.692156][ T6002]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   80.692182][ T6002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.692205][ T6002] RIP: 0033:0x7fcd596febe9
[   80.692284][ T6002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.692307][ T6002] RSP: 002b:00007fcd58167038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.692354][ T6002] RAX: ffffffffffffffda RBX: 00007fcd59935fa0 RCX: 00007fcd596febe9
[   80.692375][ T6002] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[   80.692389][ T6002] RBP: 00007fcd58167090 R08: 0000000000000000 R09: 0000000000000000
[   80.692405][ T6002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.692420][ T6002] R13: 00007fcd59936038 R14: 00007fcd59935fa0 R15: 00007ffd4480bbf8
[   80.692442][ T6002]  </TASK>
[   80.941106][ T6006] netlink: 'syz.0.955': attribute type 4 has an invalid length.
[   80.950941][ T6006] FAULT_INJECTION: forcing a failure.
[   80.950941][ T6006] name failslab, interval 1, probability 0, space 0, times 0
[   80.963773][ T6006] CPU: 0 UID: 0 PID: 6006 Comm: syz.0.955 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   80.963806][ T6006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   80.963821][ T6006] Call Trace:
[   80.963830][ T6006]  <TASK>
[   80.963839][ T6006]  __dump_stack+0x1d/0x30
[   80.963878][ T6006]  dump_stack_lvl+0xe8/0x140
[   80.963902][ T6006]  dump_stack+0x15/0x1b
[   80.963922][ T6006]  should_fail_ex+0x265/0x280
[   80.963997][ T6006]  should_failslab+0x8c/0xb0
[   80.964102][ T6006]  kmem_cache_alloc_node_noprof+0x57/0x320
[   80.964135][ T6006]  ? __alloc_skb+0x101/0x320
[   80.964185][ T6006]  __alloc_skb+0x101/0x320
[   80.964208][ T6006]  rtmsg_ifinfo_build_skb+0x5f/0x1b0
[   80.964239][ T6006]  ? __rcu_read_unlock+0x4f/0x70
[   80.964303][ T6006]  ? __pfx_rtnetlink_event+0x10/0x10
[   80.964340][ T6006]  rtnetlink_event+0x18c/0x200
[   80.964386][ T6006]  raw_notifier_call_chain+0x6c/0x1b0
[   80.964411][ T6006]  ? call_netdevice_notifiers_info+0x9c/0x100
[   80.964515][ T6006]  call_netdevice_notifiers_info+0xae/0x100
[   80.964556][ T6006]  netif_set_mtu_ext+0x356/0x470
[   80.964584][ T6006]  do_setlink+0x751/0x2810
[   80.964670][ T6006]  ? save_fpregs_to_fpstate+0x100/0x160
[   80.964707][ T6006]  ? _raw_spin_unlock+0x26/0x50
[   80.964730][ T6006]  ? finish_task_switch+0xad/0x2b0
[   80.964755][ T6006]  ? __schedule+0x6b9/0xb30
[   80.964835][ T6006]  rtnl_setlink+0x311/0x420
[   80.964893][ T6006]  ? selinux_capable+0x31/0x40
[   80.964927][ T6006]  ? security_capable+0x83/0x90
[   80.964955][ T6006]  ? ns_capable+0x7d/0xb0
[   80.965020][ T6006]  ? __pfx_rtnl_setlink+0x10/0x10
[   80.965054][ T6006]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   80.965092][ T6006]  netlink_rcv_skb+0x120/0x220
[   80.965165][ T6006]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   80.965205][ T6006]  rtnetlink_rcv+0x1c/0x30
[   80.965237][ T6006]  netlink_unicast+0x5c0/0x690
[   80.965264][ T6006]  netlink_sendmsg+0x58b/0x6b0
[   80.965295][ T6006]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.965330][ T6006]  __sock_sendmsg+0x142/0x180
[   80.965426][ T6006]  sock_write_iter+0x165/0x1b0
[   80.965482][ T6006]  do_iter_readv_writev+0x49c/0x540
[   80.965574][ T6006]  vfs_writev+0x2df/0x8b0
[   80.965634][ T6006]  do_writev+0xe7/0x210
[   80.965671][ T6006]  __x64_sys_writev+0x45/0x50
[   80.965701][ T6006]  x64_sys_call+0x1e9a/0x2ff0
[   80.965747][ T6006]  do_syscall_64+0xd2/0x200
[   80.965856][ T6006]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.965935][ T6006]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   80.965968][ T6006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.965995][ T6006] RIP: 0033:0x7f611bc6ebe9
[   80.966013][ T6006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.966089][ T6006] RSP: 002b:00007f611a6d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   80.966114][ T6006] RAX: ffffffffffffffda RBX: 00007f611bea5fa0 RCX: 00007f611bc6ebe9
[   80.966130][ T6006] RDX: 0000000000000001 RSI: 00002000000003c0 RDI: 0000000000000004
[   80.966145][ T6006] RBP: 00007f611a6d7090 R08: 0000000000000000 R09: 0000000000000000
[   80.966161][ T6006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.966176][ T6006] R13: 00007f611bea6038 R14: 00007f611bea5fa0 R15: 00007ffed0893638
[   80.966209][ T6006]  </TASK>
[   81.400481][ T6016] netlink: 56 bytes leftover after parsing attributes in process `syz.0.960'.
[   81.438727][   T29] kauditd_printk_skb: 1052 callbacks suppressed
[   81.438745][   T29] audit: type=1400 audit(1756865588.718:3788): avc:  denied  { open } for  pid=5998 comm="syz.2.952" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=0
[   81.474956][   T29] audit: type=1400 audit(1756865588.758:3789): avc:  denied  { read write } for  pid=3311 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   81.511590][ T6000] netlink: 60 bytes leftover after parsing attributes in process `syz.2.952'.
[   81.537114][ T6000] can0: slcan on ttyS3.
[   81.543320][   T29] audit: type=1400 audit(1756865588.768:3790): avc:  denied  { read write } for  pid=6018 comm="syz.4.962" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   81.568086][   T29] audit: type=1400 audit(1756865588.778:3791): avc:  denied  { prog_load } for  pid=6020 comm="syz.0.961" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   81.587233][   T29] audit: type=1400 audit(1756865588.778:3792): avc:  denied  { create } for  pid=6018 comm="syz.4.962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=0
[   81.606757][   T29] audit: type=1400 audit(1756865588.778:3793): avc:  denied  { create } for  pid=6018 comm="syz.4.962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=0
[   81.626177][   T29] audit: type=1400 audit(1756865588.778:3794): avc:  denied  { prog_load } for  pid=6020 comm="syz.0.961" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   81.643118][ T6032] netlink: 'syz.4.967': attribute type 7 has an invalid length.
[   81.645230][   T29] audit: type=1400 audit(1756865588.778:3795): avc:  denied  { prog_load } for  pid=6018 comm="syz.4.962" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   81.652964][ T6032] netlink: 140 bytes leftover after parsing attributes in process `syz.4.967'.
[   81.671927][   T29] audit: type=1400 audit(1756865588.778:3796): avc:  denied  { prog_load } for  pid=6020 comm="syz.0.961" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   81.699989][   T29] audit: type=1400 audit(1756865588.778:3797): avc:  denied  { prog_load } for  pid=6020 comm="syz.0.961" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   81.733556][ T6000] can0 (unregistered): slcan off ttyS3.
[   81.826163][ T6043] netlink: 56 bytes leftover after parsing attributes in process `syz.2.971'.
[   82.414579][ T6072] pim6reg1: entered promiscuous mode
[   82.420012][ T6072] pim6reg1: entered allmulticast mode
[   82.483867][ T6075] netlink: 8 bytes leftover after parsing attributes in process `syz.1.985'.
[   83.119794][ T6126] netlink: 'syz.2.1005': attribute type 7 has an invalid length.
[   83.425851][ T6158] FAULT_INJECTION: forcing a failure.
[   83.425851][ T6158] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.441496][ T6158] CPU: 1 UID: 0 PID: 6158 Comm: syz.4.1020 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   83.441525][ T6158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   83.441537][ T6158] Call Trace:
[   83.441542][ T6158]  <TASK>
[   83.441600][ T6158]  __dump_stack+0x1d/0x30
[   83.441626][ T6158]  dump_stack_lvl+0xe8/0x140
[   83.441646][ T6158]  dump_stack+0x15/0x1b
[   83.441661][ T6158]  should_fail_ex+0x265/0x280
[   83.441756][ T6158]  should_fail+0xb/0x20
[   83.441778][ T6158]  should_fail_usercopy+0x1a/0x20
[   83.441835][ T6158]  _copy_from_user+0x1c/0xb0
[   83.441905][ T6158]  ip6_tnl_siocdevprivate+0x132/0x920
[   83.442073][ T6158]  dev_ifsioc+0x8f5/0xaa0
[   83.442106][ T6158]  dev_ioctl+0x78d/0x960
[   83.442137][ T6158]  sock_ioctl+0x593/0x610
[   83.442171][ T6158]  ? __pfx_sock_ioctl+0x10/0x10
[   83.442205][ T6158]  __se_sys_ioctl+0xcb/0x140
[   83.442273][ T6158]  __x64_sys_ioctl+0x43/0x50
[   83.442290][ T6158]  x64_sys_call+0x1816/0x2ff0
[   83.442312][ T6158]  do_syscall_64+0xd2/0x200
[   83.442343][ T6158]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   83.442373][ T6158]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   83.442407][ T6158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.442459][ T6158] RIP: 0033:0x7fd19fd6ebe9
[   83.442479][ T6158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.442501][ T6158] RSP: 002b:00007fd19e7cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   83.442524][ T6158] RAX: ffffffffffffffda RBX: 00007fd19ffa5fa0 RCX: 00007fd19fd6ebe9
[   83.442536][ T6158] RDX: 0000200000000080 RSI: 00000000000089f1 RDI: 0000000000000004
[   83.442548][ T6158] RBP: 00007fd19e7cf090 R08: 0000000000000000 R09: 0000000000000000
[   83.442628][ T6158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.442639][ T6158] R13: 00007fd19ffa6038 R14: 00007fd19ffa5fa0 R15: 00007fff3d8c99d8
[   83.442656][ T6158]  </TASK>
[   83.651629][ T6157] netlink: 'syz.0.1019': attribute type 7 has an invalid length.
[   83.659876][ T6157] __nla_validate_parse: 5 callbacks suppressed
[   83.659894][ T6157] netlink: 140 bytes leftover after parsing attributes in process `syz.0.1019'.
[   83.868367][ T6198] netlink: 'syz.4.1039': attribute type 7 has an invalid length.
[   83.872611][ T6201] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1038'.
[   83.876358][ T6198] netlink: 140 bytes leftover after parsing attributes in process `syz.4.1039'.
[   83.886535][ T6200] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1040'.
[   83.982531][ T6218] netlink: 'syz.3.1046': attribute type 12 has an invalid length.
[   84.016229][ T6219] syz.2.1044 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   84.114406][ T6230] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1051'.
[   84.215477][ T6246] netlink: 'syz.4.1059': attribute type 12 has an invalid length.
[   84.939311][ T6290] FAULT_INJECTION: forcing a failure.
[   84.939311][ T6290] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.952474][ T6290] CPU: 0 UID: 0 PID: 6290 Comm: syz.1.1078 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   84.952509][ T6290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   84.952555][ T6290] Call Trace:
[   84.952561][ T6290]  <TASK>
[   84.952568][ T6290]  __dump_stack+0x1d/0x30
[   84.952586][ T6290]  dump_stack_lvl+0xe8/0x140
[   84.952603][ T6290]  dump_stack+0x15/0x1b
[   84.952632][ T6290]  should_fail_ex+0x265/0x280
[   84.952651][ T6290]  should_fail+0xb/0x20
[   84.952665][ T6290]  should_fail_usercopy+0x1a/0x20
[   84.952684][ T6290]  copy_folio_from_iter_atomic+0x278/0x11b0
[   84.952740][ T6290]  ? shmem_write_begin+0xa8/0x190
[   84.952765][ T6290]  ? shmem_write_begin+0xe1/0x190
[   84.952829][ T6290]  generic_perform_write+0x2c2/0x490
[   84.952854][ T6290]  shmem_file_write_iter+0xc5/0xf0
[   84.952876][ T6290]  ? __pfx_shmem_file_write_iter+0x10/0x10
[   84.952962][ T6290]  vfs_write+0x527/0x960
[   84.952987][ T6290]  __x64_sys_pwrite64+0xfd/0x150
[   84.953049][ T6290]  x64_sys_call+0xc4d/0x2ff0
[   84.953067][ T6290]  do_syscall_64+0xd2/0x200
[   84.953092][ T6290]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.953112][ T6290]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   84.953273][ T6290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.953301][ T6290] RIP: 0033:0x7f6b3464ebe9
[   84.953320][ T6290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.953342][ T6290] RSP: 002b:00007f6b330af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[   84.953366][ T6290] RAX: ffffffffffffffda RBX: 00007f6b34885fa0 RCX: 00007f6b3464ebe9
[   84.953382][ T6290] RDX: 00000000200000c1 RSI: 00002000000000c0 RDI: 0000000000000003
[   84.953394][ T6290] RBP: 00007f6b330af090 R08: 0000000000000000 R09: 0000000000000000
[   84.953487][ T6290] R10: 0000000000009000 R11: 0000000000000246 R12: 0000000000000001
[   84.953501][ T6290] R13: 00007f6b34886038 R14: 00007f6b34885fa0 R15: 00007ffc2bae66a8
[   84.953524][ T6290]  </TASK>
[   85.542981][ T6315] ==================================================================
[   85.551131][ T6315] BUG: KCSAN: data-race in mas_state_walk / mas_wmb_replace
[   85.558543][ T6315] 
[   85.560875][ T6315] write to 0xffff8881039ba300 of 8 bytes by task 6314 on cpu 1:
[   85.568511][ T6315]  mas_wmb_replace+0x20d/0x14a0
[   85.573459][ T6315]  mas_wr_store_entry+0x1773/0x2b50
[   85.578678][ T6315]  mas_store_prealloc+0x74d/0x9e0
[   85.583733][ T6315]  vma_iter_store_new+0x1c5/0x200
[   85.588795][ T6315]  vma_complete+0x125/0x580
[   85.593414][ T6315]  __split_vma+0x591/0x650
[   85.597861][ T6315]  vma_modify+0x21e/0xc80
[   85.602236][ T6315]  vma_modify_flags+0x101/0x130
[   85.607117][ T6315]  mprotect_fixup+0x2cc/0x570
[   85.611817][ T6315]  do_mprotect_pkey+0x6d6/0x980
[   85.616694][ T6315]  __x64_sys_mprotect+0x48/0x60
[   85.621646][ T6315]  x64_sys_call+0x274e/0x2ff0
[   85.626342][ T6315]  do_syscall_64+0xd2/0x200
[   85.630864][ T6315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.636780][ T6315] 
[   85.639124][ T6315] read to 0xffff8881039ba300 of 8 bytes by task 6315 on cpu 0:
[   85.646675][ T6315]  mas_state_walk+0x485/0x650
[   85.651381][ T6315]  mas_walk+0x60/0x150
[   85.655476][ T6315]  lock_vma_under_rcu+0x8d/0x160
[   85.660442][ T6315]  do_user_addr_fault+0x233/0x1090
[   85.665585][ T6315]  exc_page_fault+0x62/0xa0
[   85.670112][ T6315]  asm_exc_page_fault+0x26/0x30
[   85.674976][ T6315] 
[   85.677305][ T6315] value changed: 0xffff888104239181 -> 0xffff8881039ba300
[   85.684521][ T6315] 
[   85.686860][ T6315] Reported by Kernel Concurrency Sanitizer on:
[   85.693024][ T6315] CPU: 0 UID: 0 PID: 6315 Comm: syz.3.1088 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   85.702779][ T6315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   85.712850][ T6315] ==================================================================