last executing test programs:

1m53.550188586s ago: executing program 3 (id=904):
socket$inet6_sctp(0xa, 0x1, 0x84)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
msgget$private(0x0, 0x1) (fail_nth: 9)

1m53.089918352s ago: executing program 3 (id=907):
connect$netlink(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000600), 0x2, 0x0)
write$selinux_access(r1, &(0x7f0000000740)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a6c645f736f5f7420704a122f7362696e2f6468636c69656e742030"], 0x41) (fail_nth: 10)

1m52.906773805s ago: executing program 3 (id=909):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x9, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8)

1m52.871435815s ago: executing program 3 (id=912):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ppoll(&(0x7f00000022c0)=[{r1, 0x1000}, {r1, 0x4080}, {r1, 0x80}], 0x3, &(0x7f0000002300)={0x77359400}, &(0x7f0000002340)={[0x4]}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x21404e, &(0x7f00000000c0)={[{@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@user_xattr}, {@usrjquota}]}, 0x1, 0x517, &(0x7f0000000140)="$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")
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000680)='net/udp6\x00')
sendmmsg$inet(r2, &(0x7f0000002200)=[{{&(0x7f00000006c0)={0x2, 0x4e22, @remote}, 0x10, &(0x7f0000000d00)=[{&(0x7f0000000700)="79ba05a4a626943eb4a18a6b05e18184cec255c6df75b4a70dfb361636d598a4ca1e06406cbc138248f3c92de6658526a21c0e72684eea4abdebe27cbda700e9752d054c410a5df3145ba1693d0dc28850e2b00a1edb989b27f85020caabb97ef183aa86f6f1a09340d400c6c7", 0x6d}, {&(0x7f0000000780)="8e1df2ea2793d765a43d4732fe3fc969812fbf25eb5df404c2a59ffd92d744ae42dc5cd782720926de27047e2d208e6a4c9063da92d3046d5827f7e224b33c00a58fe1c4cddbdd89456b74342acaf20e984024b0a6dff1c2dfac461a2df6d0148b84f45b69eda836aba62b5430", 0x6d}, {&(0x7f0000000800)="9cb3dbf8412961afdd013b32b3fb49e26b26a08cec318d4a030feec4076245f8c88effa0fb77b5c81c7e316d68323fbb364f1511ae423fd540734101445e6625e6aa8aae95ef0e51d315ffba0cc0df1c96e7046b2d06c9aaa14796b366b7aa796c86ab4285a04fd2606a0f0249e0935a3962b5768ab0c261bb2307fb21fa0516191c6ed82bdbe68a795e19ae21cd29c9d37149d9e47b49f8a0e8fdbde90e92a9ecd67d9e188946c203f2", 0xaa}, {&(0x7f00000008c0)="a8fafd5eb8ec8ebf6a569b99d2eef03f94cabf14d9a93cb23e9d31c11b8102da406d9cfbd8ded1a94087b6594d6ef414cc61c75768089e8ca43c9f4f582534742a0a7ba514d7cf2501b9403b80f437a6f4ef640b4c681aecb4266a29b20b49ec9d717312567c1c36c937483b79c4f7817c7052bce28c60cc8e02d495b4814c8de4e35dcdc5bfb5fe7aab437b52fa8c1e135fcc1f3560f49db602aebedae0d8a5c2634ef7cb682f6a4db6641bda35b4dd034d6ece2e26eae8e5c0969f5d829ab92d1d383f5c0187", 0xc7}, {&(0x7f0000000a40)="e0858ffda3b8584e0c143f065b9d1fef7603468e0ddda37ed4d96ee34d4edf82f385b0755084b971f4e7dab1b696f7fe92eb6a16e3226e3435c5fa49e6ec03d303aee56e0be3c8926f2a64042d981d5d6af63b3c2bfd011d1aa1c5e3c7174ad9c42a113c4cae93be5e1fa55fd4c349d4c78b5a1435978c39f0e54a5230316409e1dc968b23743d938bab6439c22c1a067be6db7e860feba332406724eb8cf6da05922e31386a7a08bd0375310ef03a368f70335be9abbe7c16e19da65a3ca918484009e9ab167ff37c9df275", 0xcc}, {&(0x7f0000000b40)="3d8aefc26c2882ef28ea501490c9e145ecae54ea2e1121366cff01d2c3a958cbfc9365570de9af26e6b9946eba121b7530c4a58e218afdff26e5c73efdfdfeeecde95fb6fd66d6f813855c2a50b49dddf52fea4548d36b43c9657e631d783d5d315608856a811063d608dcec46debd5fa19fda811d7c9bcde8a1bb713dce863cd5346ebde8b8ec7722ccd1dfdb8fdd5b7e188efe365e2603183637109e0fa2fdd4522343c05d19d85c92d0697e43500c4175b08817fe432a3525c662e86bb978270dd32ad253cc6e3af24497f2f92c83b5a04ed4cbbd1adaabb80beaa3d62a2a279c2113310c78d7160396e147da4e", 0xef}, {&(0x7f0000000c40)="ddde276fb50d86d47eea3c33ff794967a0653e5dd521fb989074c19b674f30790ae3fa131d72533337b92e7d7e08af166060331aae92a97f567eeef9729014380d2a4e8e662079a29b21cf87a11d4ac57827daaf6fe15cf4ab86f4fb78a932493c5a431b7a35c533babc1fee6aa08bb40acb1dee96ce92c030e69388c6f3c14c303e3948855ed1a43602d62ec47df541", 0x90}], 0x7}}, {{&(0x7f0000000d80)={0x2, 0x4e22, @rand_addr=0x64010100}, 0x10, &(0x7f0000000e80)=[{&(0x7f0000000dc0)="370bd83b79afccd1825e1d0c1301a5d7f2a41a5eecef25f05a03989444178bcd446d8120143b4e9e2ddfc66c3a6d775ffa200f48d56e8c7bd5f34236b51c5fde655749c58b1689eeacdb8b00c9bf38f44d7defb2bb2103ef52ad5e5fe09f373636a8f5b50a24233e7ceaf113bffbeefd6b1fd11b6d97095a26fd2c89b29b68ada6fdc936", 0x84}], 0x1, &(0x7f0000000ec0)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x6}}, @ip_tos_int={{0x14}}, @ip_retopts={{0x30, 0x0, 0x7, {[@noop, @ssrr={0x89, 0x7, 0xd4, [@loopback]}, @ssrr={0x89, 0x17, 0xd, [@empty, @private=0xa010102, @empty, @rand_addr=0x64010101, @private=0xa010100]}]}}}, @ip_retopts={{0x24, 0x0, 0x7, {[@ra={0x94, 0x4}, @end, @rr={0x7, 0xb, 0xcf, [@private=0xa010101, @loopback]}, @ra={0x94, 0x4}]}}}, @ip_retopts={{0x64, 0x0, 0x7, {[@cipso={0x86, 0x4d, 0x3, [{0x7, 0x12, "f4419bcf1fe719d6d09ecd66fbbaf765"}, {0x6, 0x3, "99"}, {0x4, 0x12, "7757ca0a5655c2939b4a207bf9df6d1a"}, {0x2, 0xe, "60dd74ddee78aefd42070855"}, {0x6, 0x12, "44c0ea93dbfa232d3e2baf4532d8a2e6"}]}, @ssrr={0x89, 0x7, 0xc3, [@multicast1]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x5}}], 0x108}}, {{&(0x7f0000001000)={0x2, 0x4e23, @private=0xa010101}, 0x10, &(0x7f0000002100)=[{&(0x7f0000001040)="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", 0x1000}, {&(0x7f0000002040)="e7008725716c8f76f3f88917ea2ccc3de89a3b9e5535e54306390def9ce1f38f6eb0f85a52097b01cc912c6138b18430910286ab3ddef91914dd6eae64498354e5a98f182856c2295a68d23606883c70875dfe5f31efac", 0x57}, {&(0x7f00000020c0)="b40603a45be3", 0x6}], 0x3, &(0x7f0000002140)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x3}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}, @ip_ttl={{0x14, 0x0, 0x2, 0x916}}, @ip_tos_u8={{0x11}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xfffffff7}}], 0x98}}], 0x3, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000000)={'netpci0\x00', 0x2})
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
ioctl$TUNSETTXFILTER(r5, 0x400454d1, &(0x7f0000000380)=ANY=[@ANYBLOB="01000004"])
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
set_robust_list(&(0x7f00000009c0)={0x0, 0x8000}, 0x18)
mount$tmpfs(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000080), 0x1200002, 0x0)
r6 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r6, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

1m51.951398778s ago: executing program 3 (id=926):
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@msize={'msize', 0x3d, 0x1000}}], [], 0x6b}})

1m51.666364362s ago: executing program 3 (id=930):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x5, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000001080021850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000c00)={0x34, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}}, 0x0)

1m51.550023493s ago: executing program 32 (id=930):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x5, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000001080021850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000c00)={0x34, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}}, 0x0)

2.882529071s ago: executing program 5 (id=2845):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x5}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000040)="2703022b590200c90000002f1eafbcf706e105000000894f000f1102ee1680ca82973d2bd4b8bf4a8291a14b8a34f90186cee844000000080000000019b0fb0bba", 0x41}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b7d050139bf7ada32bc9e37eed1153ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d3333ce2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb0000000000000000", 0xfdff}, {&(0x7f0000000280)="fe112162c63e6da8bc8432294ef18af53cc330a62a2c7035246635093ba4d30fcf19a90804f04a10939db8f4e13069cda6d167bf1b68c94d8d694d6ad1a4d51a715975560ad48770706eb1b88d021e1119f2eb75275cfe77f862368649be0f7aff5e7826729816e3d3e7986d9434f891c71ca6e4210c6757083cfd8e732048c504f28b6d309fc129ed8eb5a82e224eb648f90134d1d315977c6ea360a7fece4baa3dd7dcc970759f29df0e86469e954e2b050e87b203ca27a2a519b7555c3b73f2681d49442d9647ff5ea64110cc5020fdeafe53a7d8be70f3260816bc376bcdc5352771fa55d9733e27730ec7103520e8359c78edd21ee6c68feb3685a55722f5da09ffe8ba9f05081a8d214156376f99906245f2f390ad717979d98f0574f8c5b52dcc2fa494f461be6c2560ddbaafb80c5b4583cbe56d24f14ab78fd7180100000000000000b8eee267267534c84daa6f095e94bfb85986a03ddea362cc7e6682884e710727c1163cd4f336c13b844605b7a815fe39e43b4d7f13d0d2e414410a82958455b8a6bd9194c631d66295675fed64c0410721111a3af6e9fa000000", 0x1a1}, {&(0x7f0000000180)="6fe4dd9eeba3271dc700b581440284", 0xf}], 0x4}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000100)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@nobarrier}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@jqfmt_vfsv0}, {@nobh}, {@user_xattr}, {@bh}, {@usrquota}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000240)={0x0, 0x80ff, &(0x7f0000000400)={&(0x7f0000000280)=ANY=[@ANYBLOB="0209060202"], 0x10}}, 0x4800c)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r4, 0x0, 0x9b, 0x1c20000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x3, &(0x7f0000001300)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r5, 0xffffffffffffffff, 0x3, 0x0, @val=@perf_event={0x1}}, 0x18)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r7}, 0x18)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630b00c145f94cd977", 0x18, 0xffffffffffffffff)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70200000200f100850000008600000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r8}, 0x10)
execve(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4ca31, 0xffffffffffffffff, 0x0)

2.23175049s ago: executing program 1 (id=2851):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$UHID_INPUT(r1, &(0x7f0000000080)={0x8, {"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", 0x1000}}, 0xfb3)
getpeername$packet(r1, &(0x7f0000001140)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000001180)=0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x18, 0x10, &(0x7f00000010c0)=ANY=[@ANYBLOB="180000000400000000000000080000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702002008000000b7030000040000008500000006000000950000000000000018430000000000000000000000000000185d00000e00000000000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', r2, 0x0, r1, 0x8, 0x0, 0x0, 0x10, &(0x7f00000011c0)={0x3, 0xa, 0x8, 0x4}, 0x10, 0x0, 0x0, 0x5, &(0x7f0000001200)=[r1], &(0x7f0000001240)=[{0x1, 0x4, 0x9, 0x3}, {0x3, 0x2, 0x2, 0xc}, {0x5, 0x2, 0xa, 0x5}, {0x2, 0x2, 0x4, 0x6}, {0x1, 0x4, 0x2, 0xb}], 0x10, 0x80000000, @void, @value}, 0x94)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xffffffff7ffffffd]}, 0x0, 0x8)
gettid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff00", @ANYRES32, @ANYRES64=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x7}, 0x18)
r5 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$int_in(r6, 0x5452, &(0x7f0000b28000)=0x3)
fcntl$setsig(r6, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r7}], 0x2c, 0xffffffffffbffff8)
dup2(r6, r7)
fcntl$setown(r6, 0x8, r5)
tkill(r5, 0x13)

2.114908992s ago: executing program 5 (id=2853):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00@\x00\x00', @ANYRES32=r0, @ANYRESHEX=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000480)='sched_switch\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$netlink(0x10, 0x3, 0x15)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'xfrm0\x00'})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[], 0x34}, 0x1, 0x2}, 0x40814)
clock_nanosleep(0xfffffdfe, 0x0, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe)
r3 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x14)
r4 = syz_io_uring_setup(0x110, &(0x7f0000000300)={0x0, 0x2fb9, 0x80, 0x2, 0x100001, 0x0, r1}, &(0x7f0000001200)=<r5=>0x0, &(0x7f0000000580)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x23, 0x6000, @fd_index=0x6, 0x5, 0x0, 0x0, 0xa, 0x1})
io_uring_enter(r4, 0x47f9, 0x0, 0x41, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r7 = semget$private(0x0, 0x6, 0x3b1)
semtimedop(r7, &(0x7f0000000040)=[{0x1, 0xff, 0x1800}, {0x0, 0x5, 0x1000}, {0x4, 0x81, 0x1000}, {0x2, 0xff, 0xa8c2ea5edb1e1708}], 0x4, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r8, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1000}, 0x4)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$tipc(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000600)="9965d014fb2ebed348cb716920ecd0db44ed74fa15077451769b72cf84b9f47d353cf370e4794f9c976e1b774dcdd7f71777fcd03f64a1b15fadfb6cc372e2c10464edfb07c62dbac538395cfaefa0b95dd198b7a4cadda713892802d1fca47c25a62d053507bef9e0a63ccc279f54847cc278585fb933d51f989fc0a99934f78c593c6e82434c48bad3db9c00aee1f78f4843f1b9c31410bc990c93b2d8147ee4101189082e3591eb10abe43d35621adbb6b56ad1d71e60083d38231c22355514ae58", 0xc3}], 0x1}, 0x4000)
recvmmsg(r8, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x0, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa1e08004502005800000000002f90780000000300000001248086dd0000000010000800000086dd080088be000000021000000001000000000000000800222f2077c200200000000200000000000000000000000800655800000000"], 0x0)
semop(r7, &(0x7f00000000c0)=[{}, {}], 0x2)
fcntl$setsig(r3, 0xa, 0x13)
fcntl$setlease(r3, 0x400, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280)=<r10=>0x0)
timer_settime(r10, 0x0, &(0x7f0000000180)={{}, {0x0, 0x3938700}}, 0x0)
truncate(&(0x7f00000003c0)='./file0\x00', 0x0)

1.353961132s ago: executing program 1 (id=2862):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
fsetxattr$security_selinux(r1, &(0x7f0000000000), &(0x7f00000001c0)='system_u:object_r:devicekit_disk_exec_t:s0\x00', 0x2b, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000900)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64"], 0x44}}, 0x0)

1.343552332s ago: executing program 0 (id=2827):
ioctl$KDGKBLED(0xffffffffffffffff, 0x4b64, &(0x7f0000000000))
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f0000000080)={0x7, &(0x7f0000000040)=[{}, {}, {}, {}, {}, {}, {}]})
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_DSTOPTS(r1, 0x29, 0x3b, &(0x7f00000000c0)={0x67, 0x9, '\x00', [@calipso={0x7, 0x48, {0x0, 0x10, 0x7, 0x3, [0x8, 0x4, 0x7, 0x0, 0x8, 0x913, 0x9, 0x73887c36]}}, @ra={0x5, 0x2, 0x6}]}, 0x58)
r2 = accept$packet(0xffffffffffffffff, &(0x7f0000000140), &(0x7f0000000180)=0x14)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r1, 0xc0096616, &(0x7f00000001c0)={0x4, [0x0, 0x0, 0x0, 0x0]})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0xa00, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8924, &(0x7f0000000240)={'batadv_slave_1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000700)={&(0x7f00000002c0)={0x42c, 0x3f3, 0x1, 0x70bd2c, 0x25dfdbfc, {0x5, 0x2, 0x1f, [0x9, 0x800, 0x0, 0x7, 0x0, 0xd, 0x80000000, 0x4fbf, 0xf0a0, 0x9, 0x7fffffff, 0x4, 0x2, 0x3, 0xfcc5, 0x1, 0x6, 0x5, 0x9, 0x8001, 0x1, 0x63, 0xe63, 0x1, 0x56, 0x0, 0x8, 0x1, 0xf1b, 0x7, 0x0, 0x1ff, 0x4, 0x2, 0x8, 0x8, 0xe, 0x33, 0xfffffffc, 0x2c42, 0x6, 0x4, 0x5, 0xe, 0x3ff, 0x0, 0x80000001, 0x3, 0x5, 0x5, 0xd, 0x6, 0x40, 0x8, 0x1, 0x0, 0xfffffffa, 0x401, 0x2, 0xff, 0x1, 0x200, 0x4, 0x6], [0x5, 0x3, 0x2, 0x5, 0x6, 0x6, 0xffffffff, 0x7, 0x3, 0x9, 0x5, 0x10001, 0x8, 0x47, 0x4, 0x7, 0x3, 0x4ac86187, 0x6, 0x4, 0x1ff, 0x10000, 0x4ce, 0x4, 0x7, 0x9, 0x0, 0x9caf, 0x0, 0x10000, 0x8, 0x6, 0xfcfc, 0x5, 0x6d38, 0x4, 0x81, 0x2, 0x80000001, 0xfffffff8, 0x9, 0x2, 0x5, 0x5, 0xf, 0xe, 0x3904, 0x800, 0x477, 0x3, 0x1, 0xbe, 0x0, 0x1, 0x6, 0xfffffffb, 0x3, 0xff, 0x40, 0x9, 0x6, 0xe963, 0x190, 0x137], [0x28, 0x80000001, 0x4dde, 0x7ff, 0x2, 0x7fffffff, 0x9, 0x9, 0x10001, 0x6, 0x3, 0x7, 0xfffffffb, 0x3, 0x6, 0x30e1, 0xffffff01, 0xfffffffd, 0x8, 0x7, 0x9, 0xd, 0x0, 0x4, 0x26, 0x494471e3, 0xa, 0x7, 0x7ff, 0xffffbd30, 0x401, 0x8, 0x1000, 0x374b, 0x1, 0x6, 0x8, 0xffff0001, 0x4, 0x73, 0xc350, 0xe, 0xe8, 0x4, 0x9, 0x6, 0xffffffff, 0xba9d, 0xff, 0x3, 0xe, 0xf, 0x9, 0x2, 0xcf, 0x7, 0x4b, 0x5, 0x8, 0x4f, 0x2, 0x3, 0x9, 0x5], [0x5, 0x3b1, 0x4a95, 0x75, 0xffffff80, 0x0, 0x7, 0xb3, 0xf0a3, 0xfffffff9, 0x86, 0x8, 0x4, 0x5, 0x6, 0x2, 0x654, 0x80000001, 0x8, 0x2c, 0x80000000, 0x5, 0x2, 0x4, 0x5a, 0x1f3, 0x7, 0xff, 0x9, 0x3c6c, 0x80000001, 0x401, 0x2, 0x1, 0x1, 0x0, 0x7, 0x2, 0xce9, 0x5, 0x6, 0x2, 0x5, 0x9, 0xb4, 0x4ca, 0x4, 0xf24, 0x4009, 0x40, 0xb, 0x1, 0x1ff, 0x3, 0xa7fe, 0x9, 0x0, 0x7fff, 0x65d98f96, 0x5, 0x0, 0x8, 0x9, 0x7], 0xc, ['\x00', '$@.\x00', 'o\x00', '/}/\x00', '\x00']}, ["", "", "", "", "", "", "", ""]}, 0x42c}, 0x1, 0x0, 0x0, 0x40000}, 0x4004000)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000780)=0x26)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r3, 0x80047213, &(0x7f00000007c0))
r6 = open$dir(&(0x7f0000000800)='./file0\x00', 0x20040, 0x108)
mbind(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000840)=0xe, 0xfffffffffffffff8, 0x0)
ioctl$TIOCMBIS(r0, 0x5416, &(0x7f0000000880)=0x81)
r7 = syz_open_dev$char_usb(0xc, 0xb4, 0xffffffff)
read$char_usb(r7, &(0x7f00000008c0)=""/107, 0x6b)
r8 = accept4$inet(r1, &(0x7f0000000940)={0x2, 0x0, @multicast2}, &(0x7f0000000980)=0x10, 0x800)
ioctl$FIDEDUPERANGE(r6, 0xc0189436, &(0x7f00000009c0)={0x3, 0x9, 0x6, 0x0, 0x0, [{{r5}, 0x5212}, {{}, 0x9}, {{r8}, 0x3}, {{r4}, 0x3}, {{r6}, 0xb}, {{r6}, 0x100}]})
r9 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000ac0)='f2fs_iostat\x00', r9, 0x0, 0x6}, 0x18)
r10 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000b80), 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r9, &(0x7f0000000c40)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000c00)={<r11=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r10, &(0x7f0000000c80)={0x10, 0x30, 0xfa00, {&(0x7f0000000bc0), 0x1, {0xa, 0x4e24, 0x1, @private0={0xfc, 0x0, '\x00', 0x1}, 0x1}, r11}}, 0x38)
ioctl$SG_SET_COMMAND_Q(r10, 0x2271, &(0x7f0000000cc0)=0x1)
setsockopt$RDS_CONG_MONITOR(r10, 0x114, 0x6, &(0x7f0000000d00)=0x1, 0x4)
sendmsg$NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, &(0x7f0000000e40)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x3c, 0x0, 0x400, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xb}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0xeb3b9273b6dbbba0)

1.271313693s ago: executing program 5 (id=2864):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x2c, r3, 0x1, 0x0, 0x0, {0x1a}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}]}]}, 0x2c}}, 0x0)

1.159376015s ago: executing program 0 (id=2868):
r0 = inotify_init1(0x0)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000001811000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
r4 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
write$selinux_attr(r4, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
socket$inet_udp(0x2, 0x2, 0x0)
inotify_add_watch(r0, &(0x7f00000000c0)='.\x00', 0xa4000061)
close(r0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

1.120392735s ago: executing program 5 (id=2869):
r0 = syz_open_dev$usbfs(0x0, 0x74, 0x101341)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f00000001c0), 0xed)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0x8008551c, &(0x7f0000000040)=@usbdevfs_connect={0x81ffffff})

1.067744386s ago: executing program 1 (id=2872):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x13)
ioctl$IMDELTIMER(0xffffffffffffffff, 0x80044941, &(0x7f0000000000))
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="020900000700000000000000000000000500", @ANYRES32], 0x38}}, 0x0)

1.067356446s ago: executing program 0 (id=2873):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x2c, r3, 0x1, 0x0, 0x0, {0x1a}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}]}]}, 0x2c}}, 0x0)

1.050365026s ago: executing program 0 (id=2874):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00@\x00\x00', @ANYRES32=r0, @ANYRESHEX=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000480)='sched_switch\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$netlink(0x10, 0x3, 0x15)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'xfrm0\x00'})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[], 0x34}, 0x1, 0x2}, 0x40814)
clock_nanosleep(0xfffffdfe, 0x0, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe)
r3 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x14)
r4 = syz_io_uring_setup(0x110, &(0x7f0000000300)={0x0, 0x2fb9, 0x80, 0x2, 0x100001, 0x0, r1}, &(0x7f0000001200)=<r5=>0x0, &(0x7f0000000580)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x23, 0x6000, @fd_index=0x6, 0x5, 0x0, 0x0, 0xa, 0x1})
io_uring_enter(r4, 0x47f9, 0x0, 0x41, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r7 = semget$private(0x0, 0x6, 0x3b1)
semtimedop(r7, &(0x7f0000000040)=[{0x1, 0xff, 0x1800}, {0x0, 0x5, 0x1000}, {0x4, 0x81, 0x1000}, {0x2, 0xff, 0xa8c2ea5edb1e1708}], 0x4, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r8, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1000}, 0x4)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$tipc(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000600)="9965d014fb2ebed348cb716920ecd0db44ed74fa15077451769b72cf84b9f47d353cf370e4794f9c976e1b774dcdd7f71777fcd03f64a1b15fadfb6cc372e2c10464edfb07c62dbac538395cfaefa0b95dd198b7a4cadda713892802d1fca47c25a62d053507bef9e0a63ccc279f54847cc278585fb933d51f989fc0a99934f78c593c6e82434c48bad3db9c00aee1f78f4843f1b9c31410bc990c93b2d8147ee4101189082e3591eb10abe43d35621adbb6b56ad1d71e60083d38231c22355514ae58", 0xc3}], 0x1}, 0x4000)
recvmmsg(r8, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x0, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa1e08004502005800000000002f90780000000300000001248086dd0000000010000800000086dd080088be000000021000000001000000000000000800222f2077c200200000000200000000000000000000000800655800000000"], 0x0)
semop(r7, &(0x7f00000000c0)=[{}, {}], 0x2)
fcntl$setsig(r3, 0xa, 0x13)
fcntl$setlease(r3, 0x400, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280)=<r10=>0x0)
timer_settime(r10, 0x0, &(0x7f0000000180)={{}, {0x0, 0x3938700}}, 0x0)
truncate(&(0x7f00000003c0)='./file0\x00', 0x0)

990.220067ms ago: executing program 1 (id=2875):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
syz_usb_connect(0x2, 0x0, 0x0, &(0x7f0000000880)={0xa, &(0x7f00000004c0)={0xa, 0x6, 0x310, 0x4, 0xf2, 0x81, 0x10, 0x2}, 0x19, &(0x7f0000000500)={0x5, 0xf, 0x19, 0x3, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x9, 0x8, 0x4}, @ptm_cap={0x3}, @ext_cap={0x7, 0x10, 0x2, 0x9, 0xa, 0x2, 0x8}]}, 0x4, [{0xf8, &(0x7f0000000540)=@string={0xf8, 0x3, "0794fc73c2ecba4a4c289c4e86f53b94a69984220eb307d8cba1e373d58ad920a31fa8875013c82acc2eaccadf2d6c9d597ab09eeeea653e6e8ceb9edbfd2b48de8f02de39bb4b2fb47c947e6b8542f5723b2cafe565b671673b40d61b5099248ef2833129976a923aa0f8244bbccb37aef30e331d602b066236044ba610725295b2d95a8863130b767fdb832a594f01491a7ebf998a167bd58e8095b5d6ecd5a13ed2dd5215cd1341131103b424a94c528cbfa65d899c018749cd032023af9584eb8d8a7388a56cc7b25520fa73500367f54cd1806cbec32a7305ea6865b9959822cfabfed1c0e2d57c954caa5a745847a7cb839d27"}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x47}}, {0x80, &(0x7f0000001ac0)=ANY=[@ANYBLOB="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"]}, {0x4, &(0x7f0000000840)=@lang_id={0x4, 0x3, 0x180a}}]})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f00000002c0)={@val, @void, @eth={@multicast, @empty, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x1, 0x9, 0x1c, 0xe4, 0x0, 0x1, 0x32, 0x0, @dev={0xac, 0x14, 0x14, 0x29}, @rand_addr=0x64010100}, "1e3beefba9d3097c"}}}}}, 0x2e)

989.978567ms ago: executing program 5 (id=2876):
utimes(0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000100)={[{@discard}]}, 0x1, 0x787, &(0x7f0000001000)="$eJzs3ctrXNUfAPDvnSRNk/b3SwRB6yogaKB0YmpsFVxUXIhgoaBr22EyDTWTTMlMShMCtojgRlBxIeimax9159bHVv8LF9JSNS1WXEjkzqOdNjPppM3MBPL5wMmcc++dnPOdcx/nzr3MDWDPmkj/ZCIORcRHScRYfXoSEUPV3GDEidpyt9fX8mlKYmPjzT+S6jK31tfy0fSe1IF64cmI+PH9iMOZzfWWV1bnc8ViYalenqosnJ8qr6weObeQmyvMFRaPTc/MHD3+wvFjOxfrX7+sHrz+8WvPfnPin/eeuPrhT0mciIP1ec1x7JSJmKh/JkPpR3iPV3e6sj5L+t0AHkq6aQ7UtvI4FGMxUM21MdLLlgEA3fJuRGwAAHtM4vgPAHtM43uAW+tr+Ubq7zcSvXXjlYjYX4u/cX2zNmewfs1uf/U66Oit5J4rI0lEjO9A/RMR8cV3b3+Vpqj3g2tpQC9cuhwRZ8YnNu//k033LGzXc1vN3BiuvkzcN3mvHX+gn75Pxz8vthr/Ze6Mf6LF+Ge4xbb7MB68/Weu7UA1baXjv5eb7m273RR/3fhAvfS/6phvKDl7rlhI923/j4jJGBpOy9PVRVuP3CZv/nuzXf3N478/P3nny7T+9PXuEplrg8P3vmc2V8k9atwNNy5HPDXYKv7kTv8nbca/pzqs4/WXPvi83bw0/jTeRtocf3dtXIl4pmX/3+3LZMv7E6eqq8NUY6Vo4dtfPxttV39z/6cprb9xLtALaf+Pbh3/eNJ8v2Z5+3X8fGXsh3bzHhx/6/V/X/JWNb+vPu1irlJZmo7Yl7yxefrRu+9tlBvLp/FPPt16+69V23r9T88Jz3QY/+D1379++Pi7K41/dlv9v/3M1dvzA+3q76z/Z6q5yfqUTvZ/nTbwUT47AAAAAAAAAAAAAAAAAAAAAAAAAOhUJiIORpLJ3slnMtls7Rnej8doplgqVw6fLS0vzkb1WdnjMZRp/NTlWNPvoU7Xfw+/UT56X/n5iHgsIj4dHqmWs/lScbbfwQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA3YE2z/9P/Tbc79YBAF2zv98NAAB6zvEfAPae7R3/R7rWDgCgd5z/A8De0/Hx/0x32wEA9I7zfwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALrs1MmTadr4e30tn5ZnL6wsz5cuHJktlOezC8v5bL60dD47VyrNFQvZfGmh7T+6VHsplkrnZ2Jx+eJUpVCuTJVXVk8vlJYXK6fPLeTmCqcLQz2LDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6V15Znc8Vi4UlmS0zI7ujGbsmMxi7ohkyXcs07yVG+reDAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANjl/gsAAP//IIYqoQ==")
r0 = open(&(0x7f0000000040)='./file2\x00', 0x181042, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001540)={0x3, 0xd, &(0x7f0000001c80)=@framed={{0x18, 0x2, 0x0, 0x0, 0x804, 0x0, 0x0, 0x0, 0x7}, [@call={0x85, 0x0, 0x0, 0x20}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
openat$cgroup_ro(r0, &(0x7f0000000400)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000440)={r1}, 0x4)
write$P9_RREADDIR(r0, &(0x7f0000000680)={0xb, 0x29, 0x2, {0x4}}, 0xb)
sendfile(r0, r0, &(0x7f00000002c0), 0x7f03)

698.984621ms ago: executing program 4 (id=2881):
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_config_ext={0x2, 0x800000000003}, 0x1320, 0xffffffff, 0x3, 0x5, 0x8, 0x1088f109, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000500)={[{@resuid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x4}}]}, 0xff, 0x247, &(0x7f0000000ac0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000005d00)=ANY=[@ANYBLOB="000000004c9002000800000003000100"/66])

613.006932ms ago: executing program 4 (id=2882):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/anycast6\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000070000000080000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r2, <r3=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000604000000002e"], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0200020004000000f6ff00000a00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="000000000100"/28], 0x48)
ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r5, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
close_range(r1, 0xffffffffffffffff, 0x0)

524.416553ms ago: executing program 4 (id=2883):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000005240)=[{{&(0x7f0000000000)={0xa, 0x4e24, 0x1ff, @remote, 0x7}, 0x1c, 0x0}}, {{&(0x7f0000000180)={0xa, 0x4e22, 0x7, @remote, 0x1418}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=[@hoplimit={{0x14, 0x29, 0x34, 0x2d4}}], 0x18}}], 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r1, 0x29, 0xb, &(0x7f0000000000)=0x205, 0x4)
getsockopt$inet6_buf(r1, 0x29, 0x6, 0x0, &(0x7f0000000240))
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="1b00000000000000000000000080", @ANYRESHEX=r1], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x2a081, 0x0)
write$binfmt_aout(r2, &(0x7f0000001280)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f817000000e4f60000006b00"})
r3 = syz_open_pts(r2, 0x0)
r4 = dup3(r3, r2, 0x0)
ioctl$TCFLSH(r4, 0x541b, 0xffefff1f00000000)

489.132374ms ago: executing program 4 (id=2884):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00'}, 0x18)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x400000000000000, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="020f000015000000000000000000000005000500000000000a00ffffff800000000000000000000000000000000000000004000000000000080012000000020000000000020000000600000000000000090000000000000000000000000000000000000000000000ff01000000000000000000000000000105000600000000000a000002ffffffffff0200000000000000000000000000010000000000000000010018"], 0xa8}}, 0x0)

488.823294ms ago: executing program 4 (id=2885):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100003e4e00000000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x400000000000000, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="020f000015000000000000000000000005000500000000000a00ffffff800000000000000000000000000000000000000004000000000000080012000000020000000000020000000600000000000000090000000000000000000000000000000000000000000000ff01000000000000000000000000000105000600000000000a000002ffffffffff0200000000000000000000000000010000000000000000010018"], 0xa8}}, 0x0)

465.998444ms ago: executing program 4 (id=2886):
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = semget$private(0x0, 0x6, 0x0)
semtimedop(r0, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0)
semop(r0, &(0x7f00000000c0)=[{0x0, 0xfffe}], 0x1)
semop(r0, &(0x7f0000000040)=[{0x2, 0x0, 0x2000}, {0x0, 0xfff8, 0x800}], 0x2)
semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000240))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000000040000090000000100bb03", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
futex_waitv(0x0, 0x0, 0x0, 0x0, 0x1)
r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_config_ext={0x4, 0x4}, 0x400, 0xffffffff, 0x6, 0x5, 0x0, 0x40000001, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r4, 0x0, 0xfffffffffffffffc}, 0x18)
r5 = socket$netlink(0x10, 0x3, 0x14)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x8, 0xc0100, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_bp={0x0, 0x13}, 0x400, 0xffffffff, 0x6, 0x4, 0x6, 0x1, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, 0x0, 0x0)
r6 = syz_io_uring_setup(0x10f, &(0x7f0000000980)={0x0, 0x5885, 0x80, 0x3}, &(0x7f00000001c0)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000004c0)='sched_switch\x00', r9}, 0x18)
io_uring_enter(r6, 0x3516, 0x0, 0x0, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)={0x38, 0x1403, 0x1, 0x70bd2d, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b70200001400ffd9b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r10}, 0x10)

293.598736ms ago: executing program 5 (id=2887):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1000000004000000080000000800000000000000", @ANYRESOCT, @ANYBLOB='_'], 0x48)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x80)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000240)='4', 0x1}], 0x1)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000280)={r1, 0x58, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r7 = dup2(r6, r6)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r7)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
pwritev2(r8, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r10}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r9}, &(0x7f0000000080), &(0x7f0000000200)=r10}, 0x20)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000740)=@bpf_ext={0x1c, 0x10, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf523}, [@func={0x85, 0x0, 0x1, 0x0, 0x7}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}, @ldst={0x0, 0x2, 0x0, 0x9, 0x8, 0xffffffffffffffff, 0x10}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @exit, @generic={0x1, 0x1, 0x3, 0x0, 0x8}]}, &(0x7f0000000100)='GPL\x00', 0x5a7, 0x38, &(0x7f0000000140)=""/56, 0x41000, 0x0, '\x00', r5, 0x0, r4, 0x8, &(0x7f00000002c0)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000300)={0x4, 0x1, 0x4, 0x9}, 0x10, 0x26ca3, r7, 0x5, &(0x7f0000000380)=[r8, r4, r9, r1, 0xffffffffffffffff, r4, r0, r4, r3, r4], &(0x7f00000003c0)=[{0x5, 0x4, 0x9, 0x3}, {0x1, 0x1, 0x9}, {0x0, 0x5, 0xc, 0xb}, {0x1, 0x4, 0x10, 0xa}, {0x3, 0x2, 0x7, 0x9}], 0x10, 0x5, @void, @value}, 0x94)

292.665336ms ago: executing program 1 (id=2888):
socket(0x10, 0x3, 0x0)
msgctl$MSG_INFO(0x0, 0xc, &(0x7f00000000c0)=""/45)
eventfd2(0x1, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value=0x2000000}, 0x90)
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000000200), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0xffa8)

166.577608ms ago: executing program 0 (id=2890):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000002c0)='rpm_return_int\x00', r0, 0x0, 0x8}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
close_range(r1, 0xffffffffffffffff, 0x0)

134.334188ms ago: executing program 2 (id=2891):
mknod$loop(&(0x7f00000002c0)='./file0\x00', 0x100000000000600d, 0x0)
r0 = creat(0x0, 0xd4)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r4, 0x0, 0x60, 0x0, 0x0)
dup2(r0, r0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

110.136499ms ago: executing program 1 (id=2892):
r0 = socket$rds(0x15, 0x5, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
personality(0x5400004)
bpf$LINK_GET_FD_BY_ID(0x1e, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x41)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x13, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c1300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000048aa008085000000700000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000540)={r1}, 0xc)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
symlink(0x0, &(0x7f0000000000)='./file0\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r3, &(0x7f0000004200)='t', 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_type(r4, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r5, &(0x7f0000000280), 0x9)
r6 = openat$cgroup_procs(r4, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000c40), 0x12)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)=0x1, 0x12)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)

109.610579ms ago: executing program 0 (id=2893):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/249, 0xf9}], 0x1}, 0x0)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x810100, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1, 0x0, 0x0, 0x3}, 0x0)

108.723709ms ago: executing program 2 (id=2894):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x23, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f00000001c0)=0x7f, 0x4)
close(r2)

85.441009ms ago: executing program 2 (id=2895):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x1008002, &(0x7f0000000080)=ANY=[], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
r0 = open(&(0x7f0000000080)='./file0\x00', 0x40c5, 0x130)
r1 = open$dir(&(0x7f0000000100)='./file0\x00', 0x4200, 0x1)
write$9p(r0, &(0x7f0000001400)="3b27a4b403e92b", 0x4944)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
sendfile(r0, r1, 0x0, 0x7ffff000)

46.56566ms ago: executing program 2 (id=2896):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x0, 0x0, 0x0)

721.5µs ago: executing program 2 (id=2897):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x20)
symlinkat(&(0x7f0000000000)='.\x00', r3, &(0x7f0000000140)='./file0\x00')
openat(r3, &(0x7f00000000c0)='./file0\x00', 0x515a02, 0x52abe154ad664fa4)

0s ago: executing program 2 (id=2898):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
inotify_init1(0x80000)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f0000000280)=0x14)
read(r1, &(0x7f00000019c0)=""/4097, 0x1001)

kernel console output (not intermixed with test programs):

8/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  177.059097][T10136] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  177.062770][T10136] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  177.074160][T10138] FAULT_INJECTION: forcing a failure.
[  177.074160][T10138] name failslab, interval 1, probability 0, space 0, times 0
[  177.076071][T10136] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  177.080014][T10136] $Hÿ: left promiscuous mode
[  177.089043][T10138] CPU: 0 UID: 0 PID: 10138 Comm: syz.0.2299 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  177.089103][T10138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  177.089122][T10138] Call Trace:
[  177.089129][T10138]  <TASK>
[  177.089139][T10138]  __dump_stack+0x1d/0x30
[  177.089187][T10138]  dump_stack_lvl+0xe8/0x140
[  177.089213][T10138]  dump_stack+0x15/0x1b
[  177.089242][T10138]  should_fail_ex+0x265/0x280
[  177.089376][T10138]  should_failslab+0x8c/0xb0
[  177.089415][T10138]  __kmalloc_noprof+0xa5/0x3e0
[  177.089485][T10138]  ? security_perf_event_alloc+0x48/0x120
[  177.089523][T10138]  ? perf_event_alloc+0x146c/0x15c0
[  177.089554][T10138]  security_perf_event_alloc+0x48/0x120
[  177.089592][T10138]  perf_event_alloc+0x14ed/0x15c0
[  177.089687][T10138]  inherit_event+0x7e/0x680
[  177.089720][T10138]  inherit_task_group+0x268/0x680
[  177.089755][T10138]  perf_event_init_task+0x16c/0x3b0
[  177.089833][T10138]  copy_process+0xb33/0x1f90
[  177.089869][T10138]  ? __rcu_read_unlock+0x4f/0x70
[  177.089900][T10138]  kernel_clone+0x16c/0x5b0
[  177.089938][T10138]  __x64_sys_clone+0xe6/0x120
[  177.089990][T10138]  x64_sys_call+0x2c59/0x2fb0
[  177.090055][T10138]  do_syscall_64+0xd0/0x1a0
[  177.090084][T10138]  ? clear_bhb_loop+0x25/0x80
[  177.090112][T10138]  ? clear_bhb_loop+0x25/0x80
[  177.090201][T10138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.090234][T10138] RIP: 0033:0x7f617af7e969
[  177.090255][T10138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.090278][T10138] RSP: 002b:00007f61795e6fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  177.090322][T10138] RAX: ffffffffffffffda RBX: 00007f617b1a5fa0 RCX: 00007f617af7e969
[  177.090338][T10138] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000002a801400
[  177.090354][T10138] RBP: 00007f61795e7090 R08: 0000000000000000 R09: 0000000000000000
[  177.090370][T10138] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[  177.090386][T10138] R13: 0000000000000000 R14: 00007f617b1a5fa0 R15: 00007ffe116cdb38
[  177.090492][T10138]  </TASK>
[  177.317357][T10136] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  177.325916][T10136] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  177.334390][T10136] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  177.342914][T10136] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  177.373127][T10136] bond2: left promiscuous mode
[  177.399349][T10146] FAULT_INJECTION: forcing a failure.
[  177.399349][T10146] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.412532][T10146] CPU: 0 UID: 0 PID: 10146 Comm: syz.1.2302 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  177.412564][T10146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  177.412596][T10146] Call Trace:
[  177.412601][T10146]  <TASK>
[  177.412608][T10146]  __dump_stack+0x1d/0x30
[  177.412634][T10146]  dump_stack_lvl+0xe8/0x140
[  177.412657][T10146]  dump_stack+0x15/0x1b
[  177.412678][T10146]  should_fail_ex+0x265/0x280
[  177.412782][T10146]  should_fail+0xb/0x20
[  177.412957][T10146]  should_fail_usercopy+0x1a/0x20
[  177.413037][T10146]  _copy_to_user+0x20/0xa0
[  177.413063][T10146]  simple_read_from_buffer+0xb5/0x130
[  177.413094][T10146]  proc_fail_nth_read+0x100/0x140
[  177.413168][T10146]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  177.413200][T10146]  vfs_read+0x19d/0x6f0
[  177.413227][T10146]  ? __rcu_read_unlock+0x4f/0x70
[  177.413247][T10146]  ? __rcu_read_unlock+0x4f/0x70
[  177.413272][T10146]  ? __fget_files+0x184/0x1c0
[  177.413361][T10146]  ksys_read+0xda/0x1a0
[  177.413392][T10146]  __x64_sys_read+0x40/0x50
[  177.413442][T10146]  x64_sys_call+0x2d77/0x2fb0
[  177.413465][T10146]  do_syscall_64+0xd0/0x1a0
[  177.413491][T10146]  ? clear_bhb_loop+0x25/0x80
[  177.413517][T10146]  ? clear_bhb_loop+0x25/0x80
[  177.413574][T10146]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.413593][T10146] RIP: 0033:0x7fa57a2dd37c
[  177.413659][T10146] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  177.413680][T10146] RSP: 002b:00007fa578947030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  177.413766][T10146] RAX: ffffffffffffffda RBX: 00007fa57a505fa0 RCX: 00007fa57a2dd37c
[  177.413782][T10146] RDX: 000000000000000f RSI: 00007fa5789470a0 RDI: 0000000000000006
[  177.413858][T10146] RBP: 00007fa578947090 R08: 0000000000000000 R09: 0000000000000000
[  177.413873][T10146] R10: 0000000000000065 R11: 0000000000000246 R12: 0000000000000001
[  177.413888][T10146] R13: 0000000000000000 R14: 00007fa57a505fa0 R15: 00007ffc7f9cb1a8
[  177.413911][T10146]  </TASK>
[  177.700423][T10148] proc: Bad value for 'gid'
[  177.710560][ T6179] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.734470][T10152] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2304'.
[  177.769920][T10155] FAULT_INJECTION: forcing a failure.
[  177.769920][T10155] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  177.783227][T10155] CPU: 1 UID: 0 PID: 10155 Comm: syz.1.2306 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  177.783317][T10155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  177.783333][T10155] Call Trace:
[  177.783342][T10155]  <TASK>
[  177.783351][T10155]  __dump_stack+0x1d/0x30
[  177.783376][T10155]  dump_stack_lvl+0xe8/0x140
[  177.783396][T10155]  dump_stack+0x15/0x1b
[  177.783411][T10155]  should_fail_ex+0x265/0x280
[  177.783476][T10155]  should_fail_alloc_page+0xf2/0x100
[  177.783516][T10155]  __alloc_frozen_pages_noprof+0xff/0x360
[  177.783571][T10155]  alloc_pages_mpol+0xb3/0x250
[  177.783601][T10155]  alloc_pages_noprof+0x90/0x130
[  177.783697][T10155]  __pmd_alloc+0x47/0x440
[  177.783727][T10155]  handle_mm_fault+0x1b31/0x2ae0
[  177.783753][T10155]  ? __rcu_read_unlock+0x4f/0x70
[  177.783782][T10155]  do_user_addr_fault+0x3fe/0x1090
[  177.783876][T10155]  exc_page_fault+0x54/0xc0
[  177.783914][T10155]  asm_exc_page_fault+0x26/0x30
[  177.783932][T10155] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  177.783961][T10155] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  177.783989][T10155] RSP: 0018:ffffc9001133be28 EFLAGS: 00050206
[  177.784008][T10155] RAX: ffff888118c13c18 RBX: 0000000000000090 RCX: 0000000000000090
[  177.784025][T10155] RDX: 0000000000000000 RSI: ffffc9001133be60 RDI: 00002000000008c0
[  177.784040][T10155] RBP: ffffc9001133bf48 R08: 00000000000002d0 R09: 0000000000000000
[  177.784057][T10155] R10: 0001c9001133be60 R11: 0001c9001133beef R12: 0000200000000950
[  177.784152][T10155] R13: 00007ffffffff000 R14: 00002000000008c0 R15: ffffc9001133be60
[  177.784177][T10155]  _copy_to_user+0x7c/0xa0
[  177.784198][T10155]  __x64_sys_getrusage+0xaf/0x110
[  177.784230][T10155]  x64_sys_call+0x27aa/0x2fb0
[  177.784256][T10155]  do_syscall_64+0xd0/0x1a0
[  177.784283][T10155]  ? clear_bhb_loop+0x25/0x80
[  177.784309][T10155]  ? clear_bhb_loop+0x25/0x80
[  177.784345][T10155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.784399][T10155] RIP: 0033:0x7fa57a2de969
[  177.784414][T10155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.784435][T10155] RSP: 002b:00007fa578947038 EFLAGS: 00000246 ORIG_RAX: 0000000000000062
[  177.784453][T10155] RAX: ffffffffffffffda RBX: 00007fa57a505fa0 RCX: 00007fa57a2de969
[  177.784465][T10155] RDX: 0000000000000000 RSI: 00002000000008c0 RDI: 0000000000000001
[  177.784562][T10155] RBP: 00007fa578947090 R08: 0000000000000000 R09: 0000000000000000
[  177.784641][T10155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  177.784653][T10155] R13: 0000000000000001 R14: 00007fa57a505fa0 R15: 00007ffc7f9cb1a8
[  177.784672][T10155]  </TASK>
[  178.068400][T10150] 9pnet_fd: Insufficient options for proto=fd
[  178.133395][T10164] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2310'.
[  178.189789][T10177] loop5: detected capacity change from 0 to 512
[  178.199356][T10175] netlink: 'syz.1.2314': attribute type 13 has an invalid length.
[  178.217246][T10184] loop2: detected capacity change from 0 to 128
[  178.224456][T10177] EXT4-fs: Mount option(s) incompatible with ext2
[  178.226939][T10182] syzkaller1: entered promiscuous mode
[  178.236587][T10182] syzkaller1: entered allmulticast mode
[  178.243953][T10184] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  178.257103][T10184] ext4 filesystem being mounted at /417/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  178.276608][T10177] loop5: detected capacity change from 0 to 4096
[  178.287171][   T36] IPVS: starting estimator thread 0...
[  178.294201][T10177] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.323408][ T3306] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  178.363022][T10197] SELinux:  Context system_u:object_r:net_conf_t:s0 is not valid (left unmapped).
[  178.381436][T10191] IPVS: using max 1872 ests per chain, 93600 per kthread
[  178.395427][T10204] usb usb1: usbfs: process 10204 (syz.2.2323) did not claim interface 0 before use
[  178.427659][T10210] loop1: detected capacity change from 0 to 128
[  178.442128][T10210] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  178.454703][T10210] ext4 filesystem being mounted at /462/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  178.460344][T10218] FAULT_INJECTION: forcing a failure.
[  178.460344][T10218] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  178.499953][T10218] CPU: 0 UID: 0 PID: 10218 Comm: syz.2.2327 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  178.499990][T10218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  178.500072][T10218] Call Trace:
[  178.500081][T10218]  <TASK>
[  178.500091][T10218]  __dump_stack+0x1d/0x30
[  178.500117][T10218]  dump_stack_lvl+0xe8/0x140
[  178.500193][T10218]  dump_stack+0x15/0x1b
[  178.500215][T10218]  should_fail_ex+0x265/0x280
[  178.500252][T10218]  should_fail_alloc_page+0xf2/0x100
[  178.500349][T10218]  alloc_pages_bulk_noprof+0xef/0x540
[  178.500380][T10218]  copy_splice_read+0xf3/0x5f0
[  178.500410][T10218]  ? __pfx_shmem_file_splice_read+0x10/0x10
[  178.500493][T10218]  splice_direct_to_actor+0x290/0x680
[  178.500544][T10218]  ? __pfx_direct_splice_actor+0x10/0x10
[  178.500577][T10218]  do_splice_direct+0xda/0x150
[  178.500604][T10218]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  178.500639][T10218]  do_sendfile+0x380/0x640
[  178.500705][T10218]  __x64_sys_sendfile64+0x105/0x150
[  178.500738][T10218]  x64_sys_call+0xb39/0x2fb0
[  178.500764][T10218]  do_syscall_64+0xd0/0x1a0
[  178.500791][T10218]  ? clear_bhb_loop+0x25/0x80
[  178.500956][T10218]  ? clear_bhb_loop+0x25/0x80
[  178.500983][T10218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.501046][T10218] RIP: 0033:0x7f9a0d89e969
[  178.501070][T10218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.501087][T10218] RSP: 002b:00007f9a0bf07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  178.501104][T10218] RAX: ffffffffffffffda RBX: 00007f9a0dac5fa0 RCX: 00007f9a0d89e969
[  178.501178][T10218] RDX: 0000000000000000 RSI: 000000000000000b RDI: 000000000000000c
[  178.501203][T10218] RBP: 00007f9a0bf07090 R08: 0000000000000000 R09: 0000000000000000
[  178.501217][T10218] R10: 0000000100000005 R11: 0000000000000246 R12: 0000000000000001
[  178.501230][T10218] R13: 0000000000000000 R14: 00007f9a0dac5fa0 R15: 00007ffdf1150aa8
[  178.501282][T10218]  </TASK>
[  178.502052][T10210] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  178.727432][T10232] FAULT_INJECTION: forcing a failure.
[  178.727432][T10232] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  178.740618][T10232] CPU: 0 UID: 0 PID: 10232 Comm: syz.2.2333 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  178.740766][T10232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  178.740782][T10232] Call Trace:
[  178.740789][T10232]  <TASK>
[  178.740800][T10232]  __dump_stack+0x1d/0x30
[  178.740826][T10232]  dump_stack_lvl+0xe8/0x140
[  178.740851][T10232]  dump_stack+0x15/0x1b
[  178.740892][T10232]  should_fail_ex+0x265/0x280
[  178.740932][T10232]  should_fail+0xb/0x20
[  178.741018][T10232]  should_fail_usercopy+0x1a/0x20
[  178.741038][T10232]  strncpy_from_user+0x25/0x230
[  178.741085][T10232]  ? kmem_cache_alloc_noprof+0x186/0x310
[  178.741225][T10232]  ? getname_flags+0x80/0x3b0
[  178.741285][T10232]  getname_flags+0xae/0x3b0
[  178.741321][T10232]  user_path_at+0x28/0x130
[  178.741343][T10232]  __x64_sys_umount+0x85/0xe0
[  178.741365][T10232]  x64_sys_call+0x2915/0x2fb0
[  178.741444][T10232]  do_syscall_64+0xd0/0x1a0
[  178.741470][T10232]  ? clear_bhb_loop+0x25/0x80
[  178.741496][T10232]  ? clear_bhb_loop+0x25/0x80
[  178.741523][T10232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.741570][T10232] RIP: 0033:0x7f9a0d89e969
[  178.741588][T10232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.741612][T10232] RSP: 002b:00007f9a0bf07038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  178.741636][T10232] RAX: ffffffffffffffda RBX: 00007f9a0dac5fa0 RCX: 00007f9a0d89e969
[  178.741651][T10232] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000002c0
[  178.741667][T10232] RBP: 00007f9a0bf07090 R08: 0000000000000000 R09: 0000000000000000
[  178.741733][T10232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.741748][T10232] R13: 0000000000000000 R14: 00007f9a0dac5fa0 R15: 00007ffdf1150aa8
[  178.741772][T10232]  </TASK>
[  178.964907][T10242] usb usb1: usbfs: process 10242 (syz.2.2337) did not claim interface 0 before use
[  178.996134][T10244] pim6reg1: entered promiscuous mode
[  179.001591][T10244] pim6reg1: entered allmulticast mode
[  179.020530][ T6179] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.102437][T10247] loop5: detected capacity change from 0 to 8192
[  179.187319][T10249] loop2: detected capacity change from 0 to 1024
[  179.240344][   T30] kauditd_printk_skb: 196 callbacks suppressed
[  179.240367][   T30] audit: type=1400 audit(1746533783.147:13192): avc:  denied  { kexec_image_load } for  pid=10252 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  179.271600][   T30] audit: type=1400 audit(1746533783.187:13193): avc:  denied  { mount } for  pid=10254 comm="syz.1.2342" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  179.316833][   T30] audit: type=1400 audit(1746533783.227:13194): avc:  denied  { remove_name } for  pid=3302 comm="syz-executor" name="cpuset.effective_cpus" dev="tmpfs" ino=2528 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  179.345442][   T30] audit: type=1400 audit(1746533783.227:13195): avc:  denied  { unlink } for  pid=3302 comm="syz-executor" name="cpuset.effective_cpus" dev="tmpfs" ino=2528 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  179.364171][T10264] loop1: detected capacity change from 0 to 512
[  179.369419][   T30] audit: type=1400 audit(1746533783.227:13196): avc:  denied  { rmdir } for  pid=3302 comm="syz-executor" name="470" dev="tmpfs" ino=2523 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  179.404449][T10264] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  179.415653][T10266] loop2: detected capacity change from 0 to 128
[  179.426465][T10262] pim6reg1: entered promiscuous mode
[  179.431845][T10262] pim6reg1: entered allmulticast mode
[  179.451898][T10264] EXT4-fs (loop1): 1 truncate cleaned up
[  179.475037][   T30] audit: type=1400 audit(1746533783.387:13197): avc:  denied  { name_bind } for  pid=10272 comm="syz.2.2349" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  179.511093][T10273] loop2: detected capacity change from 0 to 2048
[  179.518769][T10273] EXT4-fs (loop2): Invalid log block size: 524290
[  179.526744][T10271] usb usb1: usbfs: process 10271 (syz.5.2348) did not claim interface 0 before use
[  179.564465][   T30] audit: type=1400 audit(1746533783.417:13198): avc:  denied  { setopt } for  pid=10272 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  179.666219][T10282] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2353'.
[  179.675334][T10282] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2353'.
[  179.678339][T10284] loop5: detected capacity change from 0 to 512
[  179.684323][T10282] netlink: 'syz.1.2353': attribute type 15 has an invalid length.
[  179.693678][T10284] EXT4-fs: Ignoring removed mblk_io_submit option
[  179.724817][T10284] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  179.763148][T10284] EXT4-fs (loop5): 1 truncate cleaned up
[  179.775145][   T30] audit: type=1326 audit(1746533783.687:13199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10283 comm="syz.5.2354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d522e969 code=0x7ffc0000
[  179.800161][   T30] audit: type=1326 audit(1746533783.687:13200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10283 comm="syz.5.2354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f80d522e969 code=0x7ffc0000
[  179.823875][   T30] audit: type=1326 audit(1746533783.687:13201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10283 comm="syz.5.2354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d522e969 code=0x7ffc0000
[  179.866779][T10303] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  179.891728][T10303] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  179.901658][T10308] usb usb1: usbfs: process 10308 (syz.1.2361) did not claim interface 0 before use
[  179.975503][T10312] loop4: detected capacity change from 0 to 256
[  179.984721][T10312] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  180.524335][T10314] FAULT_INJECTION: forcing a failure.
[  180.524335][T10314] name failslab, interval 1, probability 0, space 0, times 0
[  180.537025][T10314] CPU: 1 UID: 0 PID: 10314 Comm: syz.4.2364 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  180.537116][T10314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  180.537129][T10314] Call Trace:
[  180.537137][T10314]  <TASK>
[  180.537147][T10314]  __dump_stack+0x1d/0x30
[  180.537173][T10314]  dump_stack_lvl+0xe8/0x140
[  180.537197][T10314]  dump_stack+0x15/0x1b
[  180.537219][T10314]  should_fail_ex+0x265/0x280
[  180.537279][T10314]  ? tty_open+0x81/0xaf0
[  180.537308][T10314]  should_failslab+0x8c/0xb0
[  180.537384][T10314]  __kmalloc_cache_noprof+0x4c/0x320
[  180.537428][T10314]  tty_open+0x81/0xaf0
[  180.537455][T10314]  ? selinux_file_open+0x31c/0x370
[  180.537494][T10314]  chrdev_open+0x2e8/0x3a0
[  180.537557][T10314]  do_dentry_open+0x646/0xa20
[  180.537622][T10314]  ? __pfx_chrdev_open+0x10/0x10
[  180.537710][T10314]  vfs_open+0x37/0x1e0
[  180.537728][T10314]  path_openat+0x1c5e/0x2170
[  180.537787][T10314]  do_filp_open+0x109/0x230
[  180.537839][T10314]  do_sys_openat2+0xa6/0x110
[  180.537864][T10314]  __x64_sys_openat+0xf2/0x120
[  180.537889][T10314]  x64_sys_call+0x1af/0x2fb0
[  180.537915][T10314]  do_syscall_64+0xd0/0x1a0
[  180.537943][T10314]  ? clear_bhb_loop+0x25/0x80
[  180.537999][T10314]  ? clear_bhb_loop+0x25/0x80
[  180.538067][T10314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.538093][T10314] RIP: 0033:0x7f5766ace969
[  180.538112][T10314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.538130][T10314] RSP: 002b:00007f5765137038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  180.538148][T10314] RAX: ffffffffffffffda RBX: 00007f5766cf5fa0 RCX: 00007f5766ace969
[  180.538160][T10314] RDX: 0000000000101000 RSI: 0000200000003080 RDI: ffffffffffffff9c
[  180.538242][T10314] RBP: 00007f5765137090 R08: 0000000000000000 R09: 0000000000000000
[  180.538285][T10314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.538297][T10314] R13: 0000000000000000 R14: 00007f5766cf5fa0 R15: 00007ffec67c3238
[  180.538315][T10314]  </TASK>
[  180.784547][T10322] proc: Bad value for 'gid'
[  180.808954][T10325] netlink: 172 bytes leftover after parsing attributes in process `syz.5.2365'.
[  180.826391][T10327] FAULT_INJECTION: forcing a failure.
[  180.826391][T10327] name failslab, interval 1, probability 0, space 0, times 0
[  180.839151][T10327] CPU: 1 UID: 0 PID: 10327 Comm: syz.4.2370 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  180.839185][T10327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  180.839201][T10327] Call Trace:
[  180.839209][T10327]  <TASK>
[  180.839218][T10327]  __dump_stack+0x1d/0x30
[  180.839305][T10327]  dump_stack_lvl+0xe8/0x140
[  180.839332][T10327]  dump_stack+0x15/0x1b
[  180.839369][T10327]  should_fail_ex+0x265/0x280
[  180.839411][T10327]  should_failslab+0x8c/0xb0
[  180.839448][T10327]  kmem_cache_alloc_node_noprof+0x57/0x320
[  180.839522][T10327]  ? __alloc_skb+0x101/0x320
[  180.839557][T10327]  ? __pfx_genl_done+0x10/0x10
[  180.839631][T10327]  __alloc_skb+0x101/0x320
[  180.839729][T10327]  netlink_ack+0xfd/0x500
[  180.839766][T10327]  ? __pfx_ethnl_phy_start+0x10/0x10
[  180.839797][T10327]  ? __pfx_ethnl_phy_dumpit+0x10/0x10
[  180.839828][T10327]  ? __pfx_ethnl_phy_done+0x10/0x10
[  180.839934][T10327]  netlink_rcv_skb+0x192/0x220
[  180.839978][T10327]  ? __pfx_genl_rcv_msg+0x10/0x10
[  180.840009][T10327]  genl_rcv+0x28/0x40
[  180.840029][T10327]  netlink_unicast+0x59e/0x670
[  180.840099][T10327]  netlink_sendmsg+0x58b/0x6b0
[  180.840135][T10327]  ? __pfx_netlink_sendmsg+0x10/0x10
[  180.840192][T10327]  __sock_sendmsg+0x142/0x180
[  180.840219][T10327]  ____sys_sendmsg+0x31e/0x4e0
[  180.840247][T10327]  ___sys_sendmsg+0x17b/0x1d0
[  180.840285][T10327]  __x64_sys_sendmsg+0xd4/0x160
[  180.840346][T10327]  x64_sys_call+0x2999/0x2fb0
[  180.840374][T10327]  do_syscall_64+0xd0/0x1a0
[  180.840400][T10327]  ? clear_bhb_loop+0x25/0x80
[  180.840428][T10327]  ? clear_bhb_loop+0x25/0x80
[  180.840467][T10327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.840570][T10327] RIP: 0033:0x7f5766ace969
[  180.840590][T10327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.840613][T10327] RSP: 002b:00007f5765137038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  180.840636][T10327] RAX: ffffffffffffffda RBX: 00007f5766cf5fa0 RCX: 00007f5766ace969
[  180.840684][T10327] RDX: 0000000020040814 RSI: 0000200000000840 RDI: 0000000000000006
[  180.840699][T10327] RBP: 00007f5765137090 R08: 0000000000000000 R09: 0000000000000000
[  180.840714][T10327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.840726][T10327] R13: 0000000000000000 R14: 00007f5766cf5fa0 R15: 00007ffec67c3238
[  180.840745][T10327]  </TASK>
[  181.127350][T10335] usb usb1: usbfs: process 10335 (syz.0.2372) did not claim interface 0 before use
[  181.143319][T10337] loop2: detected capacity change from 0 to 1024
[  181.171309][T10337] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  181.178803][T10337] vhci_hcd: default hub control req: 6011 v8001 i0001 l0
[  181.191386][T10343] loop4: detected capacity change from 0 to 512
[  181.198181][T10343] EXT4-fs: Ignoring removed mblk_io_submit option
[  181.205744][T10343] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  181.209963][T10345] pim6reg1: entered promiscuous mode
[  181.218884][T10343] EXT4-fs (loop4): 1 truncate cleaned up
[  181.221330][T10345] pim6reg1: entered allmulticast mode
[  181.271926][T10351] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  181.280431][T10351] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  181.444065][T10359] proc: Bad value for 'gid'
[  181.522133][T10361] SELinux: failed to load policy
[  181.631296][T10369] loop5: detected capacity change from 0 to 1024
[  181.657216][T10369] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  181.665608][T10369] vhci_hcd: default hub control req: 6011 v8001 i0001 l0
[  181.690431][T10365] netlink: 'syz.0.2385': attribute type 21 has an invalid length.
[  181.766633][T10378] loop5: detected capacity change from 0 to 4096
[  181.882382][T10384] loop2: detected capacity change from 0 to 512
[  181.889302][T10384] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  181.901521][T10384] EXT4-fs (loop2): 1 truncate cleaned up
[  181.941387][T10387] pim6reg1: entered promiscuous mode
[  181.946739][T10387] pim6reg1: entered allmulticast mode
[  182.038602][T10390] loop4: detected capacity change from 0 to 256
[  182.129620][T10392] SELinux: failed to load policy
[  182.256820][T10396] syzkaller0: entered promiscuous mode
[  182.262622][T10396] syzkaller0: entered allmulticast mode
[  182.275061][T10400] loop4: detected capacity change from 0 to 512
[  182.282233][T10400] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  182.307523][T10400] EXT4-fs (loop4): 1 truncate cleaned up
[  182.339103][T10400] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2798: inode #15: comm syz.4.2398: corrupted xattr block 33: invalid header
[  182.376731][T10400] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2962: inode #15: comm syz.4.2398: corrupted xattr block 33: invalid header
[  182.401608][T10400] EXT4-fs warning (device loop4): ext4_evict_inode:279: xattr delete (err -117)
[  182.430296][T10407] loop2: detected capacity change from 0 to 512
[  182.461929][T10407] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  182.493893][T10407] ext4 filesystem being mounted at /446/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.550053][T10414] rdma_op ffff88811fd25580 conn xmit_rdma 0000000000000000
[  182.629551][T10424] rdma_op ffff888118177580 conn xmit_rdma 0000000000000000
[  182.673428][T10423] SET target dimension over the limit!
[  182.683369][T10427] SET target dimension over the limit!
[  182.765663][T10431] FAULT_INJECTION: forcing a failure.
[  182.765663][T10431] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  182.778882][T10431] CPU: 0 UID: 0 PID: 10431 Comm: syz.4.2408 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  182.778911][T10431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  182.778988][T10431] Call Trace:
[  182.778996][T10431]  <TASK>
[  182.779005][T10431]  __dump_stack+0x1d/0x30
[  182.779030][T10431]  dump_stack_lvl+0xe8/0x140
[  182.779053][T10431]  dump_stack+0x15/0x1b
[  182.779127][T10431]  should_fail_ex+0x265/0x280
[  182.779159][T10431]  should_fail+0xb/0x20
[  182.779245][T10431]  should_fail_usercopy+0x1a/0x20
[  182.779267][T10431]  strncpy_from_user+0x25/0x230
[  182.779301][T10431]  __se_sys_memfd_create+0x1ff/0x590
[  182.779331][T10431]  __x64_sys_memfd_create+0x31/0x40
[  182.779359][T10431]  x64_sys_call+0x122f/0x2fb0
[  182.779385][T10431]  do_syscall_64+0xd0/0x1a0
[  182.779523][T10431]  ? clear_bhb_loop+0x25/0x80
[  182.779549][T10431]  ? clear_bhb_loop+0x25/0x80
[  182.779646][T10431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.779666][T10431] RIP: 0033:0x7f5766ace969
[  182.779684][T10431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.779701][T10431] RSP: 002b:00007f5765136e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  182.779800][T10431] RAX: ffffffffffffffda RBX: 000000000000052e RCX: 00007f5766ace969
[  182.779812][T10431] RDX: 00007f5765136ef0 RSI: 0000000000000000 RDI: 00007f5766b51444
[  182.779824][T10431] RBP: 0000200000000640 R08: 00007f5765136bb7 R09: 00007f5765136e40
[  182.779857][T10431] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[  182.779868][T10431] R13: 00007f5765136ef0 R14: 00007f5765136eb0 R15: 00002000000001c0
[  182.779889][T10431]  </TASK>
[  182.793025][T10429] SELinux: failed to load policy
[  183.012932][T10434] loop4: detected capacity change from 0 to 128
[  183.032514][T10434] ext4 filesystem being mounted at /504/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  183.054378][T10437] rdma_op ffff88811fd24180 conn xmit_rdma 0000000000000000
[  183.091764][T10437] SET target dimension over the limit!
[  183.216802][T10454] netlink: 'syz.5.2417': attribute type 1 has an invalid length.
[  183.224622][T10454] netlink: 'syz.5.2417': attribute type 2 has an invalid length.
[  183.232534][T10454] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2417'.
[  183.251152][T10454] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2417'.
[  183.259692][T10456] pim6reg1: entered promiscuous mode
[  183.265567][T10456] pim6reg1: entered allmulticast mode
[  183.279119][T10454] loop5: detected capacity change from 0 to 512
[  183.286087][T10454] EXT4-fs: Ignoring removed nobh option
[  183.303738][T10454] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.2417: corrupted inode contents
[  183.322711][T10454] EXT4-fs (loop5): Remounting filesystem read-only
[  183.335039][T10454] EXT4-fs (loop5): 1 truncate cleaned up
[  183.360814][ T9116] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  183.371489][ T9116] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  183.381375][T10463] SELinux: failed to load policy
[  183.384102][T10454] ext4 filesystem being mounted at /294/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.398224][ T9116] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  183.416802][T10465] loop1: detected capacity change from 0 to 512
[  183.423590][T10465] EXT4-fs: Ignoring removed nobh option
[  183.432208][T10465] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #3: comm syz.1.2421: corrupted inode contents
[  183.444741][T10465] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #3: comm syz.1.2421: mark_inode_dirty error
[  183.487489][T10465] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #3: comm syz.1.2421: corrupted inode contents
[  183.500242][T10465] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #3: comm syz.1.2421: mark_inode_dirty error
[  183.514056][T10465] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.2421: Failed to acquire dquot type 0
[  183.526017][T10465] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.2421: corrupted inode contents
[  183.539820][T10465] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #16: comm syz.1.2421: mark_inode_dirty error
[  183.554415][T10465] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.2421: corrupted inode contents
[  183.566652][T10465] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #16: comm syz.1.2421: mark_inode_dirty error
[  183.591177][T10465] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.2421: corrupted inode contents
[  183.603955][T10465] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  183.625037][T10465] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.2421: corrupted inode contents
[  183.637593][T10465] EXT4-fs error (device loop1): ext4_truncate:4255: inode #16: comm syz.1.2421: mark_inode_dirty error
[  183.649393][T10465] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  183.659088][T10465] EXT4-fs (loop1): 1 truncate cleaned up
[  183.666367][T10465] ext4 filesystem being mounted at /483/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  184.248856][   T30] kauditd_printk_skb: 203 callbacks suppressed
[  184.248918][   T30] audit: type=1326 audit(1746533788.157:13397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10482 comm="syz.4.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5766acd41f code=0x7ffc0000
[  184.291422][T10483] loop4: detected capacity change from 0 to 1024
[  184.365180][   T30] audit: type=1326 audit(1746533788.197:13398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10482 comm="syz.4.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f5766ace9f7 code=0x7ffc0000
[  184.388793][   T30] audit: type=1326 audit(1746533788.207:13399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10482 comm="syz.4.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5766acd2d0 code=0x7ffc0000
[  184.412518][   T30] audit: type=1326 audit(1746533788.207:13400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10482 comm="syz.4.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5766ace56b code=0x7ffc0000
[  184.447737][T10487] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  184.470355][T10489] usb usb1: usbfs: process 10489 (syz.0.2430) did not claim interface 0 before use
[  184.480466][T10483] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  184.490401][T10483] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  184.507286][T10487] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  184.521306][   T30] audit: type=1326 audit(1746533788.347:13401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10482 comm="syz.4.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f5766acd5ca code=0x7ffc0000
[  184.544781][   T30] audit: type=1326 audit(1746533788.347:13402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10482 comm="syz.4.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f5766acd5ca code=0x7ffc0000
[  184.568391][   T30] audit: type=1326 audit(1746533788.347:13403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10482 comm="syz.4.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f5766acd1d7 code=0x7ffc0000
[  184.592038][   T30] audit: type=1326 audit(1746533788.347:13404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10482 comm="syz.4.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f5766ad010a code=0x7ffc0000
[  184.616727][T10483] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  184.638336][T10483] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: inode #5: comm syz.4.2427: unexpected bad inode w/o EXT4_IGET_BAD
[  184.675529][T10483] EXT4-fs (loop4): no journal found
[  184.680859][T10483] EXT4-fs (loop4): can't get journal size
[  184.694996][T10491] SELinux: failed to load policy
[  184.702672][T10492] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  184.733568][T10492] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  184.763834][T10492] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  184.773362][T10497] proc: Bad value for 'gid'
[  184.812152][   T30] audit: type=1326 audit(1746533788.667:13405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10482 comm="syz.4.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5766acd2d0 code=0x7ffc0000
[  184.835865][   T30] audit: type=1326 audit(1746533788.667:13406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10482 comm="syz.4.2427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f5766acd6b7 code=0x7ffc0000
[  184.838138][T10492] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  184.933454][T10492] lo: left promiscuous mode
[  184.938038][T10492] lo: left allmulticast mode
[  184.951992][T10514] FAULT_INJECTION: forcing a failure.
[  184.951992][T10514] name failslab, interval 1, probability 0, space 0, times 0
[  184.964655][T10514] CPU: 0 UID: 0 PID: 10514 Comm: syz.1.2438 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  184.964711][T10514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  184.964728][T10514] Call Trace:
[  184.964741][T10514]  <TASK>
[  184.964749][T10514]  __dump_stack+0x1d/0x30
[  184.964776][T10514]  dump_stack_lvl+0xe8/0x140
[  184.964797][T10514]  dump_stack+0x15/0x1b
[  184.964830][T10514]  should_fail_ex+0x265/0x280
[  184.964867][T10514]  ? v9fs_mount+0x51/0x590
[  184.964902][T10514]  should_failslab+0x8c/0xb0
[  184.964935][T10514]  __kmalloc_cache_noprof+0x4c/0x320
[  184.964987][T10514]  v9fs_mount+0x51/0x590
[  184.965011][T10514]  ? __pfx_v9fs_mount+0x10/0x10
[  184.965044][T10514]  legacy_get_tree+0x75/0xd0
[  184.965075][T10514]  vfs_get_tree+0x54/0x1d0
[  184.965107][T10514]  do_new_mount+0x207/0x680
[  184.965213][T10514]  path_mount+0x4a4/0xb20
[  184.965244][T10514]  ? user_path_at+0x109/0x130
[  184.965264][T10514]  __se_sys_mount+0x28f/0x2e0
[  184.965288][T10514]  ? fput+0x8f/0xc0
[  184.965306][T10514]  __x64_sys_mount+0x67/0x80
[  184.965346][T10514]  x64_sys_call+0xd36/0x2fb0
[  184.965374][T10514]  do_syscall_64+0xd0/0x1a0
[  184.965398][T10514]  ? clear_bhb_loop+0x25/0x80
[  184.965440][T10514]  ? clear_bhb_loop+0x25/0x80
[  184.965460][T10514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.965489][T10514] RIP: 0033:0x7fa57a2de969
[  184.965509][T10514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.965532][T10514] RSP: 002b:00007fa578947038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  184.965555][T10514] RAX: ffffffffffffffda RBX: 00007fa57a505fa0 RCX: 00007fa57a2de969
[  184.965574][T10514] RDX: 0000200000000280 RSI: 0000200000000300 RDI: 0000000000000000
[  184.965586][T10514] RBP: 00007fa578947090 R08: 0000200000000600 R09: 0000000000000000
[  184.965598][T10514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  184.965644][T10514] R13: 0000000000000000 R14: 00007fa57a505fa0 R15: 00007ffc7f9cb1a8
[  184.965662][T10514]  </TASK>
[  184.967674][T10514] 9pnet_fd: Insufficient options for proto=fd
[  184.972324][T10517] usb usb1: usbfs: process 10517 (syz.0.2441) did not claim interface 0 before use
[  185.133686][T10525] SELinux: failed to load policy
[  185.180822][T10492] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  185.204206][T10492] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  185.213349][T10492] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  185.222334][T10492] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  185.343734][T10545] proc: Bad value for 'gid'
[  185.388166][T10548] netlink: 'syz.4.2449': attribute type 7 has an invalid length.
[  185.396051][T10548] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2449'.
[  185.406451][T10551] proc: Bad value for 'gid'
[  185.414810][T10548] loop4: detected capacity change from 0 to 512
[  185.422694][T10548] EXT4-fs (loop4): orphan cleanup on readonly fs
[  185.429400][T10548] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.2449: bad orphan inode 13
[  185.439642][T10548] ext4_test_bit(bit=12, block=18) = 1
[  185.445054][T10548] is_bad_inode(inode)=0
[  185.449217][T10548] NEXT_ORPHAN(inode)=2130706432
[  185.454099][T10548] max_ino=32
[  185.457315][T10548] i_nlink=1
[  185.463042][T10548] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2449'.
[  185.479069][T10555] FAULT_INJECTION: forcing a failure.
[  185.479069][T10555] name failslab, interval 1, probability 0, space 0, times 0
[  185.491733][T10555] CPU: 0 UID: 0 PID: 10555 Comm: syz.0.2451 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  185.491758][T10555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  185.491784][T10555] Call Trace:
[  185.491789][T10555]  <TASK>
[  185.491796][T10555]  __dump_stack+0x1d/0x30
[  185.491818][T10555]  dump_stack_lvl+0xe8/0x140
[  185.491834][T10555]  dump_stack+0x15/0x1b
[  185.491847][T10555]  should_fail_ex+0x265/0x280
[  185.491874][T10555]  should_failslab+0x8c/0xb0
[  185.491973][T10555]  kmem_cache_alloc_node_noprof+0x57/0x320
[  185.492005][T10555]  ? __alloc_skb+0x101/0x320
[  185.492032][T10555]  __alloc_skb+0x101/0x320
[  185.492058][T10555]  netlink_alloc_large_skb+0xba/0xf0
[  185.492115][T10555]  netlink_sendmsg+0x3cf/0x6b0
[  185.492145][T10555]  ? __pfx_netlink_sendmsg+0x10/0x10
[  185.492210][T10555]  __sock_sendmsg+0x142/0x180
[  185.492232][T10555]  ____sys_sendmsg+0x31e/0x4e0
[  185.492251][T10555]  ___sys_sendmsg+0x17b/0x1d0
[  185.492356][T10555]  __x64_sys_sendmsg+0xd4/0x160
[  185.492378][T10555]  x64_sys_call+0x2999/0x2fb0
[  185.492396][T10555]  do_syscall_64+0xd0/0x1a0
[  185.492415][T10555]  ? clear_bhb_loop+0x25/0x80
[  185.492433][T10555]  ? clear_bhb_loop+0x25/0x80
[  185.492524][T10555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.492543][T10555] RIP: 0033:0x7f617af7e969
[  185.492557][T10555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.492742][T10555] RSP: 002b:00007f61795e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  185.492758][T10555] RAX: ffffffffffffffda RBX: 00007f617b1a5fa0 RCX: 00007f617af7e969
[  185.492770][T10555] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  185.492796][T10555] RBP: 00007f61795e7090 R08: 0000000000000000 R09: 0000000000000000
[  185.492807][T10555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.492818][T10555] R13: 0000000000000000 R14: 00007f617b1a5fa0 R15: 00007ffe116cdb38
[  185.492836][T10555]  </TASK>
[  185.725856][T10560] usb usb1: usbfs: process 10560 (syz.0.2453) did not claim interface 0 before use
[  185.790168][T10566] SELinux: failed to load policy
[  185.848688][T10579] proc: Bad value for 'gid'
[  185.886531][T10581] pim6reg1: entered promiscuous mode
[  185.891997][T10581] pim6reg1: entered allmulticast mode
[  185.905385][T10583] proc: Bad value for 'gid'
[  185.959916][T10585] loop4: detected capacity change from 0 to 128
[  185.972052][T10585] syz.4.2462: attempt to access beyond end of device
[  185.972052][T10585] loop4: rw=2049, sector=153, nr_sectors = 8 limit=128
[  185.985574][T10585] syz.4.2462: attempt to access beyond end of device
[  185.985574][T10585] loop4: rw=2049, sector=169, nr_sectors = 13 limit=128
[  186.002483][T10585] syz.4.2462: attempt to access beyond end of device
[  186.002483][T10585] loop4: rw=0, sector=121, nr_sectors = 8 limit=128
[  186.015962][T10585] syz.4.2462: attempt to access beyond end of device
[  186.015962][T10585] loop4: rw=0, sector=153, nr_sectors = 8 limit=128
[  186.029778][T10585] syz.4.2462: attempt to access beyond end of device
[  186.029778][T10585] loop4: rw=0, sector=169, nr_sectors = 13 limit=128
[  186.182943][T10595] usb usb1: usbfs: process 10595 (syz.0.2466) did not claim interface 0 before use
[  186.270509][T10604] loop5: detected capacity change from 0 to 512
[  186.277429][T10604] EXT4-fs: Ignoring removed mblk_io_submit option
[  186.285299][T10604] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  186.315340][T10604] EXT4-fs (loop5): 1 truncate cleaned up
[  186.957985][T10611] loop1: detected capacity change from 0 to 128
[  186.974407][T10613] loop4: detected capacity change from 0 to 512
[  186.981014][T10611] ext4 filesystem being mounted at /489/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  186.992960][T10613] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  187.006850][T10613] EXT4-fs (loop4): 1 truncate cleaned up
[  187.056704][T10617] loop4: detected capacity change from 0 to 128
[  187.080410][T10617] syz.4.2473: attempt to access beyond end of device
[  187.080410][T10617] loop4: rw=2049, sector=153, nr_sectors = 8 limit=128
[  187.100897][T10621] loop5: detected capacity change from 0 to 128
[  187.106936][T10623] loop1: detected capacity change from 0 to 128
[  187.108682][T10617] syz.4.2473: attempt to access beyond end of device
[  187.108682][T10617] loop4: rw=2049, sector=169, nr_sectors = 13 limit=128
[  187.131175][T10621] syz.5.2475: attempt to access beyond end of device
[  187.131175][T10621] loop5: rw=2049, sector=153, nr_sectors = 8 limit=128
[  187.145559][T10617] syz.4.2473: attempt to access beyond end of device
[  187.145559][T10617] loop4: rw=0, sector=121, nr_sectors = 8 limit=128
[  187.158971][T10621] syz.5.2475: attempt to access beyond end of device
[  187.158971][T10621] loop5: rw=2049, sector=169, nr_sectors = 13 limit=128
[  187.215132][T10631] usb usb1: usbfs: process 10631 (syz.0.2478) did not claim interface 0 before use
[  187.240214][T10633] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2479'.
[  187.259863][T10633] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2479'.
[  187.269501][T10633] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2479'.
[  187.278613][T10633] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2479'.
[  187.288382][T10638] rdma_op ffff888127f25580 conn xmit_rdma 0000000000000000
[  187.310929][T10642] proc: Bad value for 'gid'
[  187.317631][T10633] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2479'.
[  187.317670][T10633] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2479'.
[  187.344563][T10644] loop5: detected capacity change from 0 to 512
[  187.354264][T10638] SET target dimension over the limit!
[  187.360321][T10644] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  187.386150][T10644] EXT4-fs (loop5): 1 truncate cleaned up
[  187.397400][T10650] proc: Bad value for 'gid'
[  187.408488][T10652] loop2: detected capacity change from 0 to 128
[  187.427323][T10656] proc: Bad value for 'gid'
[  187.430386][T10652] ext4 filesystem being mounted at /452/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  187.504614][T10664] usb usb1: usbfs: process 10664 (syz.2.2491) did not claim interface 0 before use
[  188.163995][T10679] proc: Bad value for 'gid'
[  188.353620][T10684] proc: Bad value for 'gid'
[  188.427843][T10686] loop5: detected capacity change from 0 to 128
[  188.571809][T10690] vhci_hcd: invalid port number 96
[  188.577107][T10690] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  188.599171][T10686] ext4 filesystem being mounted at /308/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  188.629333][T10701] loop4: detected capacity change from 0 to 512
[  188.645640][T10701] EXT4-fs: Ignoring removed mblk_io_submit option
[  188.653194][T10701] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  188.713996][T10701] EXT4-fs (loop4): 1 truncate cleaned up
[  188.855384][T10718] loop5: detected capacity change from 0 to 512
[  188.873571][T10718] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  189.323980][T10718] EXT4-fs (loop5): 1 truncate cleaned up
[  189.332431][T10724] loop4: detected capacity change from 0 to 512
[  189.348770][T10724] EXT4-fs: Ignoring removed nobh option
[  189.363520][T10722] usb usb1: usbfs: process 10722 (syz.0.2513) did not claim interface 0 before use
[  189.392401][T10724] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #3: comm syz.4.2514: corrupted inode contents
[  189.410866][T10724] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #3: comm syz.4.2514: mark_inode_dirty error
[  189.436270][T10724] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #3: comm syz.4.2514: corrupted inode contents
[  189.474962][T10724] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #3: comm syz.4.2514: mark_inode_dirty error
[  189.591504][T10724] __quota_error: 291 callbacks suppressed
[  189.591520][T10724] Quota error (device loop4): write_blk: dquota write failed
[  189.609678][T10738] loop1: detected capacity change from 0 to 512
[  189.629374][T10733] FAULT_INJECTION: forcing a failure.
[  189.629374][T10733] name failslab, interval 1, probability 0, space 0, times 0
[  189.642915][T10733] CPU: 0 UID: 0 PID: 10733 Comm: syz.0.2517 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  189.642967][T10733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  189.642982][T10733] Call Trace:
[  189.642990][T10733]  <TASK>
[  189.642998][T10733]  __dump_stack+0x1d/0x30
[  189.643076][T10733]  dump_stack_lvl+0xe8/0x140
[  189.643095][T10733]  dump_stack+0x15/0x1b
[  189.643113][T10733]  should_fail_ex+0x265/0x280
[  189.643218][T10733]  should_failslab+0x8c/0xb0
[  189.643262][T10733]  kmem_cache_alloc_noprof+0x50/0x310
[  189.643377][T10733]  ? getname_flags+0x80/0x3b0
[  189.643406][T10733]  getname_flags+0x80/0x3b0
[  189.643441][T10733]  __se_sys_quotactl+0x16a/0x670
[  189.643503][T10733]  __x64_sys_quotactl+0x55/0x70
[  189.643542][T10733]  x64_sys_call+0x2886/0x2fb0
[  189.643562][T10733]  do_syscall_64+0xd0/0x1a0
[  189.643581][T10733]  ? clear_bhb_loop+0x25/0x80
[  189.643648][T10733]  ? clear_bhb_loop+0x25/0x80
[  189.643675][T10733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.643699][T10733] RIP: 0033:0x7f617af7e969
[  189.643713][T10733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.643731][T10733] RSP: 002b:00007f61795e7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[  189.643826][T10733] RAX: ffffffffffffffda RBX: 00007f617b1a5fa0 RCX: 00007f617af7e969
[  189.643838][T10733] RDX: 0000000000000000 RSI: 0000200000000300 RDI: ffffffff80000801
[  189.643850][T10733] RBP: 00007f61795e7090 R08: 0000000000000000 R09: 0000000000000000
[  189.643861][T10733] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000001
[  189.643913][T10733] R13: 0000000000000000 R14: 00007f617b1a5fa0 R15: 00007ffe116cdb38
[  189.643936][T10733]  </TASK>
[  189.647499][T10724] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  190.000807][T10724] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.2514: Failed to acquire dquot type 0
[  190.046912][T10724] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.2514: corrupted inode contents
[  190.059075][T10742] loop5: detected capacity change from 0 to 4096
[  190.062741][T10738] ext4 filesystem being mounted at /495/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.086569][T10724] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #16: comm syz.4.2514: mark_inode_dirty error
[  190.098482][T10724] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.2514: corrupted inode contents
[  190.123682][T10724] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #16: comm syz.4.2514: mark_inode_dirty error
[  190.159080][T10724] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.2514: corrupted inode contents
[  190.175126][T10724] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  190.191566][T10724] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #16: comm syz.4.2514: corrupted inode contents
[  190.207887][T10724] EXT4-fs error (device loop4): ext4_truncate:4255: inode #16: comm syz.4.2514: mark_inode_dirty error
[  190.220113][T10724] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  190.229604][T10724] EXT4-fs (loop4): 1 truncate cleaned up
[  190.253529][T10724] ext4 filesystem being mounted at /525/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.290705][   T30] audit: type=1326 audit(1746533794.197:13698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10750 comm="syz.0.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  190.314455][   T30] audit: type=1326 audit(1746533794.197:13699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10750 comm="syz.0.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  190.338192][   T30] audit: type=1326 audit(1746533794.197:13700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10750 comm="syz.0.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  190.361801][   T30] audit: type=1326 audit(1746533794.197:13701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10750 comm="syz.0.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  190.385243][   T30] audit: type=1326 audit(1746533794.197:13702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10750 comm="syz.0.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  190.408958][   T30] audit: type=1326 audit(1746533794.197:13703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10750 comm="syz.0.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  190.432566][   T30] audit: type=1326 audit(1746533794.197:13704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10750 comm="syz.0.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  190.456219][   T30] audit: type=1326 audit(1746533794.197:13705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10750 comm="syz.0.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  190.649431][T10765] loop2: detected capacity change from 0 to 512
[  190.656132][T10765] ext4: Unknown parameter 'noacl'
[  190.673784][T10765] __nla_validate_parse: 27 callbacks suppressed
[  190.673799][T10765] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2531'.
[  190.716046][T10767] pim6reg1: entered promiscuous mode
[  190.721526][T10767] pim6reg1: entered allmulticast mode
[  190.948216][T10773] loop4: detected capacity change from 0 to 128
[  190.989723][T10776] pim6reg1: entered promiscuous mode
[  190.995267][T10776] pim6reg1: entered allmulticast mode
[  191.143181][T10790] FAULT_INJECTION: forcing a failure.
[  191.143181][T10790] name failslab, interval 1, probability 0, space 0, times 0
[  191.155866][T10790] CPU: 1 UID: 0 PID: 10790 Comm: syz.4.2540 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  191.155898][T10790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  191.155977][T10790] Call Trace:
[  191.155983][T10790]  <TASK>
[  191.155990][T10790]  __dump_stack+0x1d/0x30
[  191.156073][T10790]  dump_stack_lvl+0xe8/0x140
[  191.156094][T10790]  dump_stack+0x15/0x1b
[  191.156119][T10790]  should_fail_ex+0x265/0x280
[  191.156149][T10790]  should_failslab+0x8c/0xb0
[  191.156186][T10790]  kmem_cache_alloc_node_noprof+0x57/0x320
[  191.156268][T10790]  ? __alloc_skb+0x101/0x320
[  191.156301][T10790]  __alloc_skb+0x101/0x320
[  191.156356][T10790]  netlink_alloc_large_skb+0xba/0xf0
[  191.156432][T10790]  netlink_sendmsg+0x3cf/0x6b0
[  191.156474][T10790]  ? __pfx_netlink_sendmsg+0x10/0x10
[  191.156505][T10790]  __sock_sendmsg+0x142/0x180
[  191.156552][T10790]  ____sys_sendmsg+0x31e/0x4e0
[  191.156578][T10790]  ___sys_sendmsg+0x17b/0x1d0
[  191.156619][T10778] loop1: detected capacity change from 0 to 8192
[  191.156618][T10790]  __x64_sys_sendmsg+0xd4/0x160
[  191.156645][T10790]  x64_sys_call+0x2999/0x2fb0
[  191.156672][T10790]  do_syscall_64+0xd0/0x1a0
[  191.156735][T10790]  ? clear_bhb_loop+0x25/0x80
[  191.156765][T10790]  ? clear_bhb_loop+0x25/0x80
[  191.156842][T10790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.156914][T10790] RIP: 0033:0x7f5766ace969
[  191.156934][T10790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.156958][T10790] RSP: 002b:00007f5765137038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  191.157002][T10790] RAX: ffffffffffffffda RBX: 00007f5766cf5fa0 RCX: 00007f5766ace969
[  191.157019][T10790] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  191.157035][T10790] RBP: 00007f5765137090 R08: 0000000000000000 R09: 0000000000000000
[  191.157051][T10790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.157067][T10790] R13: 0000000000000000 R14: 00007f5766cf5fa0 R15: 00007ffec67c3238
[  191.157207][T10790]  </TASK>
[  191.570861][T10807] loop4: detected capacity change from 0 to 1024
[  191.579585][T10808] syz.1.2545 (10808): /proc/10802/oom_adj is deprecated, please use /proc/10802/oom_score_adj instead.
[  191.598336][T10807] EXT4-fs: Ignoring removed orlov option
[  191.937361][T10827] loop2: detected capacity change from 0 to 512
[  191.969864][T10827] EXT4-fs: Ignoring removed nomblk_io_submit option
[  192.005560][T10827] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  192.044760][T10825] loop1: detected capacity change from 0 to 8192
[  192.056837][T10827] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  192.121781][T10827] EXT4-fs (loop2): 1 truncate cleaned up
[  192.399475][T10844] loop4: detected capacity change from 0 to 512
[  192.446039][T10848] proc: Bad value for 'gid'
[  192.451230][T10844] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  192.464872][T10844] EXT4-fs (loop4): 1 truncate cleaned up
[  192.483606][T10844] EXT4-fs error (device loop4): ext4_add_entry:2419: inode #2: comm syz.4.2558: Directory hole found for htree leaf block 0
[  192.541819][T10844] EXT4-fs (loop4): Remounting filesystem read-only
[  192.591805][T10850] loop1: detected capacity change from 0 to 1024
[  192.600166][T10850] EXT4-fs: Ignoring removed i_version option
[  192.646139][T10850] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  192.675264][T10850] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  192.704391][T10850] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  192.716878][T10865] 8021q: VLANs not supported on ip6_vti0
[  192.724468][T10850] EXT4-fs (loop1): orphan cleanup on readonly fs
[  192.755079][T10850] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  192.763967][T10867] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[  192.790190][T10850] EXT4-fs (loop1): Remounting filesystem read-only
[  192.800109][T10850] EXT4-fs (loop1): 1 orphan inode deleted
[  192.885778][T10874] proc: Bad value for 'gid'
[  192.918690][T10878] proc: Bad value for 'gid'
[  192.944258][T10880] loop2: detected capacity change from 0 to 128
[  192.974397][T10880] bio_check_eod: 10 callbacks suppressed
[  192.974412][T10880] syz.2.2572: attempt to access beyond end of device
[  192.974412][T10880] loop2: rw=2049, sector=153, nr_sectors = 8 limit=128
[  193.009959][T10880] syz.2.2572: attempt to access beyond end of device
[  193.009959][T10880] loop2: rw=2049, sector=169, nr_sectors = 13 limit=128
[  193.039988][T10888] syz.2.2572: attempt to access beyond end of device
[  193.039988][T10888] loop2: rw=0, sector=121, nr_sectors = 8 limit=128
[  193.057155][T10888] syz.2.2572: attempt to access beyond end of device
[  193.057155][T10888] loop2: rw=0, sector=153, nr_sectors = 8 limit=128
[  193.073066][T10888] syz.2.2572: attempt to access beyond end of device
[  193.073066][T10888] loop2: rw=0, sector=169, nr_sectors = 13 limit=128
[  193.136370][   T36] hid-generic FFFC:0003:0000.0008: unknown main item tag 0x0
[  193.143909][   T36] hid-generic FFFC:0003:0000.0008: unknown main item tag 0x0
[  193.151391][   T36] hid-generic FFFC:0003:0000.0008: unknown main item tag 0x0
[  193.158788][   T36] hid-generic FFFC:0003:0000.0008: unknown main item tag 0x0
[  193.166303][   T36] hid-generic FFFC:0003:0000.0008: unknown main item tag 0x0
[  193.173711][   T36] hid-generic FFFC:0003:0000.0008: unknown main item tag 0x0
[  193.181580][   T36] hid-generic FFFC:0003:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  193.253199][T10913] proc: Bad value for 'gid'
[  193.261064][T10915] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  193.269726][T10915] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  193.342273][T10921] FAULT_INJECTION: forcing a failure.
[  193.342273][T10921] name failslab, interval 1, probability 0, space 0, times 0
[  193.355038][T10921] CPU: 0 UID: 0 PID: 10921 Comm: syz.0.2586 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  193.355087][T10921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  193.355105][T10921] Call Trace:
[  193.355113][T10921]  <TASK>
[  193.355123][T10921]  __dump_stack+0x1d/0x30
[  193.355149][T10921]  dump_stack_lvl+0xe8/0x140
[  193.355250][T10921]  dump_stack+0x15/0x1b
[  193.355271][T10921]  should_fail_ex+0x265/0x280
[  193.355309][T10921]  should_failslab+0x8c/0xb0
[  193.355418][T10921]  kmem_cache_alloc_noprof+0x50/0x310
[  193.355458][T10921]  ? alloc_empty_file+0x76/0x200
[  193.355512][T10921]  ? mntput+0x4b/0x80
[  193.355535][T10921]  alloc_empty_file+0x76/0x200
[  193.355639][T10921]  path_openat+0x68/0x2170
[  193.355659][T10921]  ? _parse_integer_limit+0x170/0x190
[  193.355686][T10921]  ? kstrtoull+0x111/0x140
[  193.355710][T10921]  ? kstrtouint+0x76/0xc0
[  193.355801][T10921]  do_filp_open+0x109/0x230
[  193.355828][T10921]  do_sys_openat2+0xa6/0x110
[  193.355847][T10921]  __x64_sys_openat+0xf2/0x120
[  193.355865][T10921]  x64_sys_call+0x1af/0x2fb0
[  193.356035][T10921]  do_syscall_64+0xd0/0x1a0
[  193.356064][T10921]  ? clear_bhb_loop+0x25/0x80
[  193.356083][T10921]  ? clear_bhb_loop+0x25/0x80
[  193.356102][T10921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.356190][T10921] RIP: 0033:0x7f617af7e969
[  193.356203][T10921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.356223][T10921] RSP: 002b:00007f61795e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  193.356238][T10921] RAX: ffffffffffffffda RBX: 00007f617b1a5fa0 RCX: 00007f617af7e969
[  193.356249][T10921] RDX: 0000000000121042 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  193.356259][T10921] RBP: 00007f61795e7090 R08: 0000000000000000 R09: 0000000000000000
[  193.356269][T10921] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001
[  193.356351][T10921] R13: 0000000000000000 R14: 00007f617b1a5fa0 R15: 00007ffe116cdb38
[  193.356367][T10921]  </TASK>
[  193.819036][T10933] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=31 sclass=netlink_route_socket pid=10933 comm=syz.1.2592
[  193.996075][T10946] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  194.007525][T10945] usb usb1: usbfs: process 10945 (syz.2.2598) did not claim interface 0 before use
[  194.017615][T10946] SELinux: failed to load policy
[  194.101065][T10956] proc: Bad value for 'gid'
[  194.117578][T10961] FAULT_INJECTION: forcing a failure.
[  194.117578][T10961] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.130736][T10961] CPU: 0 UID: 0 PID: 10961 Comm: syz.1.2605 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  194.130770][T10961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  194.130822][T10961] Call Trace:
[  194.130830][T10961]  <TASK>
[  194.130840][T10961]  __dump_stack+0x1d/0x30
[  194.130864][T10961]  dump_stack_lvl+0xe8/0x140
[  194.130882][T10961]  dump_stack+0x15/0x1b
[  194.130956][T10961]  should_fail_ex+0x265/0x280
[  194.131050][T10961]  should_fail+0xb/0x20
[  194.131106][T10961]  should_fail_usercopy+0x1a/0x20
[  194.131130][T10961]  _copy_to_user+0x20/0xa0
[  194.131207][T10961]  simple_read_from_buffer+0xb5/0x130
[  194.131241][T10961]  proc_fail_nth_read+0x100/0x140
[  194.131393][T10961]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  194.131416][T10961]  vfs_read+0x19d/0x6f0
[  194.131473][T10961]  ? __se_sys_kexec_load+0x13f/0x160
[  194.131504][T10961]  ? __rcu_read_unlock+0x4f/0x70
[  194.131599][T10961]  ? __fget_files+0x184/0x1c0
[  194.131627][T10961]  ksys_read+0xda/0x1a0
[  194.131655][T10961]  __x64_sys_read+0x40/0x50
[  194.131719][T10961]  x64_sys_call+0x2d77/0x2fb0
[  194.131790][T10961]  do_syscall_64+0xd0/0x1a0
[  194.131818][T10961]  ? clear_bhb_loop+0x25/0x80
[  194.131843][T10961]  ? clear_bhb_loop+0x25/0x80
[  194.131864][T10961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.131956][T10961] RIP: 0033:0x7fa57a2dd37c
[  194.131975][T10961] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  194.132076][T10961] RSP: 002b:00007fa578947030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  194.132162][T10961] RAX: ffffffffffffffda RBX: 00007fa57a505fa0 RCX: 00007fa57a2dd37c
[  194.132174][T10961] RDX: 000000000000000f RSI: 00007fa5789470a0 RDI: 0000000000000003
[  194.132189][T10961] RBP: 00007fa578947090 R08: 0000000000000000 R09: 0000000000000000
[  194.132205][T10961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.132220][T10961] R13: 0000000000000000 R14: 00007fa57a505fa0 R15: 00007ffc7f9cb1a8
[  194.132299][T10961]  </TASK>
[  194.368515][T10964] proc: Bad value for 'gid'
[  194.382718][T10970] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  194.391610][T10970] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  194.454848][T10968] loop5: detected capacity change from 0 to 8192
[  194.505817][T10974] SELinux: ebitmap: truncated map
[  194.514132][T10974] SELinux: failed to load policy
[  194.601755][   T30] kauditd_printk_skb: 299 callbacks suppressed
[  194.601771][   T30] audit: type=1326 audit(1746533798.517:14001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10976 comm="syz.0.2611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  194.699053][T10985] FAULT_INJECTION: forcing a failure.
[  194.699053][T10985] name failslab, interval 1, probability 0, space 0, times 0
[  194.711826][T10985] CPU: 0 UID: 0 PID: 10985 Comm: syz.4.2612 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  194.711861][T10985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  194.711876][T10985] Call Trace:
[  194.711885][T10985]  <TASK>
[  194.711895][T10985]  __dump_stack+0x1d/0x30
[  194.711918][T10985]  dump_stack_lvl+0xe8/0x140
[  194.711962][T10985]  dump_stack+0x15/0x1b
[  194.711983][T10985]  should_fail_ex+0x265/0x280
[  194.712024][T10985]  should_failslab+0x8c/0xb0
[  194.712066][T10985]  __kmalloc_noprof+0xa5/0x3e0
[  194.712088][T10985]  ? bpf_test_init+0xa9/0x160
[  194.712126][T10985]  bpf_test_init+0xa9/0x160
[  194.712159][T10985]  bpf_prog_test_run_nf+0x186/0x560
[  194.712233][T10985]  ? __rcu_read_unlock+0x4f/0x70
[  194.712265][T10985]  ? __pfx_bpf_prog_test_run_nf+0x10/0x10
[  194.712305][T10985]  bpf_prog_test_run+0x207/0x390
[  194.712368][T10985]  __sys_bpf+0x3dc/0x790
[  194.712411][T10985]  __x64_sys_bpf+0x41/0x50
[  194.712523][T10985]  x64_sys_call+0x2478/0x2fb0
[  194.712550][T10985]  do_syscall_64+0xd0/0x1a0
[  194.712578][T10985]  ? clear_bhb_loop+0x25/0x80
[  194.712626][T10985]  ? clear_bhb_loop+0x25/0x80
[  194.712730][T10985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.712756][T10985] RIP: 0033:0x7f5766ace969
[  194.712775][T10985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.712797][T10985] RSP: 002b:00007f5765137038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  194.712821][T10985] RAX: ffffffffffffffda RBX: 00007f5766cf5fa0 RCX: 00007f5766ace969
[  194.712952][T10985] RDX: 0000000000000050 RSI: 00002000000002c0 RDI: 000000000000000a
[  194.712964][T10985] RBP: 00007f5765137090 R08: 0000000000000000 R09: 0000000000000000
[  194.712975][T10985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.712988][T10985] R13: 0000000000000000 R14: 00007f5766cf5fa0 R15: 00007ffec67c3238
[  194.713012][T10985]  </TASK>
[  194.972688][T10995] FAULT_INJECTION: forcing a failure.
[  194.972688][T10995] name failslab, interval 1, probability 0, space 0, times 0
[  194.985395][T10995] CPU: 0 UID: 0 PID: 10995 Comm: syz.2.2619 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  194.985428][T10995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  194.985441][T10995] Call Trace:
[  194.985447][T10995]  <TASK>
[  194.985455][T10995]  __dump_stack+0x1d/0x30
[  194.985476][T10995]  dump_stack_lvl+0xe8/0x140
[  194.985573][T10995]  dump_stack+0x15/0x1b
[  194.985593][T10995]  should_fail_ex+0x265/0x280
[  194.985633][T10995]  should_failslab+0x8c/0xb0
[  194.985723][T10995]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  194.985750][T10995]  ? sidtab_sid2str_get+0xa0/0x130
[  194.985787][T10995]  kmemdup_noprof+0x2b/0x70
[  194.985805][T10995]  sidtab_sid2str_get+0xa0/0x130
[  194.985841][T10995]  security_sid_to_context_core+0x1eb/0x2e0
[  194.985882][T10995]  security_sid_to_context+0x27/0x40
[  194.985918][T10995]  avc_audit_post_callback+0x10f/0x520
[  194.986062][T10995]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  194.986103][T10995]  common_lsm_audit+0x1b8/0x230
[  194.986132][T10995]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  194.986231][T10995]  slow_avc_audit+0x104/0x140
[  194.986332][T10995]  avc_has_perm+0x128/0x150
[  194.986381][T10995]  selinux_socket_sendmsg+0x175/0x1b0
[  194.986407][T10995]  security_socket_sendmsg+0x48/0x80
[  194.986429][T10995]  __sock_sendmsg+0x30/0x180
[  194.986512][T10995]  ____sys_sendmsg+0x31e/0x4e0
[  194.986572][T10995]  ___sys_sendmsg+0x17b/0x1d0
[  194.986612][T10995]  __x64_sys_sendmsg+0xd4/0x160
[  194.986642][T10995]  x64_sys_call+0x2999/0x2fb0
[  194.986668][T10995]  do_syscall_64+0xd0/0x1a0
[  194.986758][T10995]  ? clear_bhb_loop+0x25/0x80
[  194.986785][T10995]  ? clear_bhb_loop+0x25/0x80
[  194.986838][T10995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.986858][T10995] RIP: 0033:0x7f9a0d89e969
[  194.986875][T10995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.986960][T10995] RSP: 002b:00007f9a0bf07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  194.986978][T10995] RAX: ffffffffffffffda RBX: 00007f9a0dac5fa0 RCX: 00007f9a0d89e969
[  194.986992][T10995] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000007
[  194.987008][T10995] RBP: 00007f9a0bf07090 R08: 0000000000000000 R09: 0000000000000000
[  194.987024][T10995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.987039][T10995] R13: 0000000000000000 R14: 00007f9a0dac5fa0 R15: 00007ffdf1150aa8
[  194.987061][T10995]  </TASK>
[  194.987114][   T30] audit: type=1400 audit(1746533798.887:14002): avc:  denied  { write } for  pid=10993 comm="syz.2.2619" scontext=root:sysadm_r:sysadm_t tsid=135 tclass=can_socket permissive=1
[  195.020909][T10992] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  195.233790][   T30] audit: type=1400 audit(1746533799.147:14003): avc:  denied  { create } for  pid=10986 comm="syz.5.2616" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  195.304453][   T30] audit: type=1326 audit(1746533799.217:14004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11006 comm="syz.1.2623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa57a2de969 code=0x7ffc0000
[  195.328232][   T30] audit: type=1326 audit(1746533799.217:14005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11006 comm="syz.1.2623" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa57a2de969 code=0x7ffc0000
[  195.389810][   T30] audit: type=1326 audit(1746533799.217:14006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11007 comm="syz.0.2622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  195.413559][   T30] audit: type=1326 audit(1746533799.217:14007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11007 comm="syz.0.2622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  195.437421][   T30] audit: type=1326 audit(1746533799.227:14008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11007 comm="syz.0.2622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  195.461414][   T30] audit: type=1326 audit(1746533799.227:14009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11007 comm="syz.0.2622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  195.485129][   T30] audit: type=1326 audit(1746533799.227:14010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11007 comm="syz.0.2622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  195.509228][T11019] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2624'.
[  195.654020][T11030] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2627'.
[  195.702163][T11024] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  195.861067][T11037] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2632'.
[  196.213135][T11053] loop2: detected capacity change from 0 to 4096
[  196.364859][T11053] EXT4-fs mount: 60 callbacks suppressed
[  196.364877][T11053] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.451993][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.489698][T11061] hub 4-0:1.0: USB hub found
[  196.494598][T11061] hub 4-0:1.0: 8 ports detected
[  196.642055][T11070] proc: Bad value for 'gid'
[  196.749576][T11076] loop2: detected capacity change from 0 to 512
[  196.825605][T11076] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  196.862418][T11076] EXT4-fs (loop2): 1 truncate cleaned up
[  196.868586][T11076] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.966186][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.081920][T11093] proc: Bad value for 'gid'
[  197.089732][T11095] proc: Bad value for 'gid'
[  197.330164][T11101] loop5: detected capacity change from 0 to 128
[  197.339900][T11102] loop2: detected capacity change from 0 to 512
[  197.348452][T11102] EXT4-fs: Ignoring removed nomblk_io_submit option
[  197.356428][T11101] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  197.373484][T11102] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  197.381466][T11102] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[  197.390308][T11101] ext4 filesystem being mounted at /328/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  197.407380][T11102] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80)
[  197.416954][T11102] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features
[  197.444336][T11102] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  197.471333][T11102] EXT4-fs warning (device loop2): dx_probe:863: inode #2: comm syz.2.2657: dx entry: limit 65535 != root limit 120
[  197.483518][T11102] EXT4-fs warning (device loop2): dx_probe:936: inode #2: comm syz.2.2657: Corrupt directory, running e2fsck is recommended
[  197.510406][ T6179] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  197.546609][T11102] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 3: comm syz.2.2657: path /505/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  197.622817][T11108] loop5: detected capacity change from 0 to 1024
[  197.653511][T11108] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.753390][ T6179] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.879139][T11117] loop1: detected capacity change from 0 to 512
[  197.923067][T11117] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.2662: casefold flag without casefold feature
[  197.996266][T11117] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.2662: couldn't read orphan inode 15 (err -117)
[  198.038610][T11117] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.101330][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.117963][T11126] loop5: detected capacity change from 0 to 512
[  198.127669][T11130] syz_tun: entered allmulticast mode
[  198.135832][T11126] EXT4-fs: Ignoring removed orlov option
[  198.183429][T11130] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2667'.
[  198.194600][T11130] syz_tun (unregistering): left allmulticast mode
[  198.222063][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.244623][T11126] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #2: block 3: comm syz.5.2666: lblock 0 mapped to illegal pblock 3 (length 1)
[  198.259562][T11126] EXT4-fs warning (device loop5): dx_probe:793: inode #2: lblock 0: comm syz.5.2666: error -117 reading directory block
[  198.283842][T11126] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  198.303353][T11126] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.321533][T11134] 9pnet: Could not find request transport: rdmach
[  198.391764][T11142] FAULT_INJECTION: forcing a failure.
[  198.391764][T11142] name failslab, interval 1, probability 0, space 0, times 0
[  198.404609][T11142] CPU: 0 UID: 0 PID: 11142 Comm: syz.4.2671 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  198.404703][T11142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  198.404715][T11142] Call Trace:
[  198.404721][T11142]  <TASK>
[  198.404727][T11142]  __dump_stack+0x1d/0x30
[  198.404886][T11142]  dump_stack_lvl+0xe8/0x140
[  198.404906][T11142]  dump_stack+0x15/0x1b
[  198.404927][T11142]  should_fail_ex+0x265/0x280
[  198.404968][T11142]  should_failslab+0x8c/0xb0
[  198.405060][T11142]  __kmalloc_noprof+0xa5/0x3e0
[  198.405115][T11142]  ? security_sk_alloc+0x52/0x120
[  198.405150][T11142]  ? should_failslab+0x8c/0xb0
[  198.405184][T11142]  security_sk_alloc+0x52/0x120
[  198.405206][T11142]  sk_prot_alloc+0xc2/0x190
[  198.405246][T11142]  sk_alloc+0x34/0x360
[  198.405370][T11142]  bpf_prog_test_run_skb+0x234/0xbd0
[  198.405402][T11142]  ? __rcu_read_unlock+0x4f/0x70
[  198.405479][T11142]  ? __fget_files+0x184/0x1c0
[  198.405503][T11142]  ? __rcu_read_unlock+0x4f/0x70
[  198.405531][T11142]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  198.405569][T11142]  bpf_prog_test_run+0x207/0x390
[  198.405613][T11142]  __sys_bpf+0x3dc/0x790
[  198.405657][T11142]  __x64_sys_bpf+0x41/0x50
[  198.405768][T11142]  x64_sys_call+0x2478/0x2fb0
[  198.405788][T11142]  do_syscall_64+0xd0/0x1a0
[  198.405809][T11142]  ? clear_bhb_loop+0x25/0x80
[  198.405860][T11142]  ? clear_bhb_loop+0x25/0x80
[  198.405888][T11142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.405915][T11142] RIP: 0033:0x7f5766ace969
[  198.406009][T11142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.406031][T11142] RSP: 002b:00007f5765137038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  198.406049][T11142] RAX: ffffffffffffffda RBX: 00007f5766cf5fa0 RCX: 00007f5766ace969
[  198.406061][T11142] RDX: 0000000000000050 RSI: 0000200000000000 RDI: 000000000000000a
[  198.406073][T11142] RBP: 00007f5765137090 R08: 0000000000000000 R09: 0000000000000000
[  198.406085][T11142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.406138][T11142] R13: 0000000000000000 R14: 00007f5766cf5fa0 R15: 00007ffec67c3238
[  198.406163][T11142]  </TASK>
[  198.629181][T11126] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2666'.
[  198.734826][ T6179] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.943395][T11168] loop2: detected capacity change from 0 to 128
[  198.953686][T11168] syz.2.2680: attempt to access beyond end of device
[  198.953686][T11168] loop2: rw=2049, sector=153, nr_sectors = 8 limit=128
[  198.970700][T11168] syz.2.2680: attempt to access beyond end of device
[  198.970700][T11168] loop2: rw=2049, sector=169, nr_sectors = 13 limit=128
[  198.994268][T11168] syz.2.2680: attempt to access beyond end of device
[  198.994268][T11168] loop2: rw=0, sector=121, nr_sectors = 8 limit=128
[  199.008403][T11168] syz.2.2680: attempt to access beyond end of device
[  199.008403][T11168] loop2: rw=0, sector=153, nr_sectors = 8 limit=128
[  199.021847][T11168] syz.2.2680: attempt to access beyond end of device
[  199.021847][T11168] loop2: rw=0, sector=169, nr_sectors = 13 limit=128
[  199.092247][T11170] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  199.099732][T11170] vhci_hcd: default hub control req: 6011 v8001 i0001 l0
[  199.113826][T11173] proc: Bad value for 'gid'
[  199.186986][T11177] loop1: detected capacity change from 0 to 512
[  199.196582][T11177] EXT4-fs: Ignoring removed mblk_io_submit option
[  199.247880][T11181] loop2: detected capacity change from 0 to 1024
[  199.263112][T11177] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  199.313285][T11177] EXT4-fs (loop1): 1 truncate cleaned up
[  199.319803][T11177] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.346196][T11181] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.398719][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.408363][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.512147][T11192] loop2: detected capacity change from 0 to 1024
[  199.568589][T11192] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.653293][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.682446][   T30] kauditd_printk_skb: 438 callbacks suppressed
[  199.682513][   T30] audit: type=1326 audit(2000000000.950:14437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11199 comm="syz.4.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5766ace969 code=0x7ffc0000
[  199.712543][   T30] audit: type=1326 audit(2000000000.950:14438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11199 comm="syz.4.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5766ace969 code=0x7ffc0000
[  199.736441][   T30] audit: type=1326 audit(2000000000.950:14439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11199 comm="syz.4.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5766ace969 code=0x7ffc0000
[  199.760359][   T30] audit: type=1326 audit(2000000000.950:14440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11199 comm="syz.4.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5766ace969 code=0x7ffc0000
[  199.784143][   T30] audit: type=1326 audit(2000000000.960:14441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11199 comm="syz.4.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5766ace969 code=0x7ffc0000
[  199.787513][T11202] proc: Bad value for 'gid'
[  199.807982][   T30] audit: type=1326 audit(2000000000.960:14442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11199 comm="syz.4.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5766ace969 code=0x7ffc0000
[  199.836362][   T30] audit: type=1326 audit(2000000000.960:14443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11199 comm="syz.4.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5766ace969 code=0x7ffc0000
[  199.859995][   T30] audit: type=1326 audit(2000000000.960:14444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11199 comm="syz.4.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5766ace969 code=0x7ffc0000
[  199.883884][   T30] audit: type=1326 audit(2000000000.960:14445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11199 comm="syz.4.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5766ace969 code=0x7ffc0000
[  199.907626][   T30] audit: type=1326 audit(2000000000.960:14446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11199 comm="syz.4.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5766ace969 code=0x7ffc0000
[  200.017471][T11208] FAULT_INJECTION: forcing a failure.
[  200.017471][T11208] name failslab, interval 1, probability 0, space 0, times 0
[  200.030227][T11208] CPU: 0 UID: 0 PID: 11208 Comm: syz.2.2693 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  200.030264][T11208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  200.030282][T11208] Call Trace:
[  200.030290][T11208]  <TASK>
[  200.030374][T11208]  __dump_stack+0x1d/0x30
[  200.030401][T11208]  dump_stack_lvl+0xe8/0x140
[  200.030427][T11208]  dump_stack+0x15/0x1b
[  200.030448][T11208]  should_fail_ex+0x265/0x280
[  200.030552][T11208]  ? allocate_cgrp_cset_links+0x7e/0x1f0
[  200.030640][T11208]  should_failslab+0x8c/0xb0
[  200.030679][T11208]  __kmalloc_cache_noprof+0x4c/0x320
[  200.030704][T11208]  allocate_cgrp_cset_links+0x7e/0x1f0
[  200.030736][T11208]  find_css_set+0x596/0xd20
[  200.030834][T11208]  ? cgroup_apply_control_enable+0xa3c/0xa80
[  200.030869][T11208]  cgroup_migrate_prepare_dst+0x75/0x3f0
[  200.030928][T11208]  cgroup_apply_control+0x2e9/0x410
[  200.030965][T11208]  cgroup_subtree_control_write+0x7d5/0xb80
[  200.031116][T11208]  ? __pfx_cgroup_subtree_control_write+0x10/0x10
[  200.031149][T11208]  cgroup_file_write+0x194/0x350
[  200.031193][T11208]  ? __pfx_cgroup_file_write+0x10/0x10
[  200.031223][T11208]  kernfs_fop_write_iter+0x1be/0x2d0
[  200.031262][T11208]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  200.031295][T11208]  vfs_write+0x49d/0x8d0
[  200.031333][T11208]  ksys_write+0xda/0x1a0
[  200.031360][T11208]  __x64_sys_write+0x40/0x50
[  200.031391][T11208]  x64_sys_call+0x2cdd/0x2fb0
[  200.031414][T11208]  do_syscall_64+0xd0/0x1a0
[  200.031435][T11208]  ? clear_bhb_loop+0x25/0x80
[  200.031489][T11208]  ? clear_bhb_loop+0x25/0x80
[  200.031514][T11208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.031606][T11208] RIP: 0033:0x7f9a0d89e969
[  200.031622][T11208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.031650][T11208] RSP: 002b:00007f9a0bf07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  200.031668][T11208] RAX: ffffffffffffffda RBX: 00007f9a0dac5fa0 RCX: 00007f9a0d89e969
[  200.031684][T11208] RDX: 0000000000000005 RSI: 0000200000000300 RDI: 0000000000000010
[  200.031698][T11208] RBP: 00007f9a0bf07090 R08: 0000000000000000 R09: 0000000000000000
[  200.031709][T11208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  200.031720][T11208] R13: 0000000000000000 R14: 00007f9a0dac5fa0 R15: 00007ffdf1150aa8
[  200.031740][T11208]  </TASK>
[  200.282291][T11211] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  200.312081][T11215] loop2: detected capacity change from 0 to 1024
[  200.320110][T11213] netlink: 'syz.1.2697': attribute type 2 has an invalid length.
[  200.328002][T11213] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2697'.
[  200.357043][T11215] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.379578][T11223] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2703'.
[  200.388633][T11223] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2703'.
[  200.412123][T11226] loop1: detected capacity change from 0 to 512
[  200.439904][T11226] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  200.440098][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.457944][T11226] EXT4-fs (loop1): 1 truncate cleaned up
[  200.466534][T11233] proc: Bad value for 'gid'
[  200.468681][T11226] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.487414][T11226] EXT4-fs error (device loop1): ext4_add_entry:2419: inode #2: comm syz.1.2702: Directory hole found for htree leaf block 0
[  200.501711][T11226] EXT4-fs (loop1): Remounting filesystem read-only
[  200.568508][T11237] smc: net device bond0 applied user defined pnetid SYZ0
[  200.586798][T11237] xt_hashlimit: size too large, truncated to 1048576
[  200.628603][T11242] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[  200.845189][T11256] loop5: detected capacity change from 0 to 8192
[  201.301196][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.320791][T11268] FAULT_INJECTION: forcing a failure.
[  201.320791][T11268] name failslab, interval 1, probability 0, space 0, times 0
[  201.333502][T11268] CPU: 0 UID: 0 PID: 11268 Comm: syz.5.2717 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  201.333537][T11268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  201.333553][T11268] Call Trace:
[  201.333560][T11268]  <TASK>
[  201.333624][T11268]  __dump_stack+0x1d/0x30
[  201.333650][T11268]  dump_stack_lvl+0xe8/0x140
[  201.333686][T11268]  dump_stack+0x15/0x1b
[  201.333706][T11268]  should_fail_ex+0x265/0x280
[  201.333744][T11268]  should_failslab+0x8c/0xb0
[  201.333824][T11268]  __kvmalloc_node_noprof+0x126/0x4d0
[  201.333850][T11268]  ? bpf_test_run_xdp_live+0x114/0xfd0
[  201.333890][T11268]  bpf_test_run_xdp_live+0x114/0xfd0
[  201.333928][T11268]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  201.333966][T11268]  ? __pfx_autoremove_wake_function+0x10/0x10
[  201.334009][T11268]  ? synchronize_rcu+0x45/0x320
[  201.334043][T11268]  ? 0xffffffffa00038c0
[  201.334060][T11268]  ? 0xffffffffa00038c0
[  201.334091][T11268]  ? bpf_dispatcher_change_prog+0x6ec/0x7f0
[  201.334115][T11268]  ? 0xffffffffa00038c0
[  201.334143][T11268]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  201.334191][T11268]  bpf_prog_test_run_xdp+0x4f5/0x8f0
[  201.334242][T11268]  ? __rcu_read_unlock+0x4f/0x70
[  201.334271][T11268]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  201.334306][T11268]  bpf_prog_test_run+0x207/0x390
[  201.334449][T11268]  __sys_bpf+0x3dc/0x790
[  201.334537][T11268]  __x64_sys_bpf+0x41/0x50
[  201.334562][T11268]  x64_sys_call+0x2478/0x2fb0
[  201.334585][T11268]  do_syscall_64+0xd0/0x1a0
[  201.334606][T11268]  ? clear_bhb_loop+0x25/0x80
[  201.334667][T11268]  ? clear_bhb_loop+0x25/0x80
[  201.334687][T11268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.334706][T11268] RIP: 0033:0x7f80d522e969
[  201.334720][T11268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.334822][T11268] RSP: 002b:00007f80d3897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  201.334894][T11268] RAX: ffffffffffffffda RBX: 00007f80d5455fa0 RCX: 00007f80d522e969
[  201.334906][T11268] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  201.334921][T11268] RBP: 00007f80d3897090 R08: 0000000000000000 R09: 0000000000000000
[  201.334934][T11268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  201.334947][T11268] R13: 0000000000000000 R14: 00007f80d5455fa0 R15: 00007ffd4dd763c8
[  201.335028][T11268]  </TASK>
[  201.640806][T11272] proc: Bad value for 'gid'
[  201.794532][T11293] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  201.794554][T11289] loop4: detected capacity change from 0 to 8192
[  201.803585][T11293] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  201.849062][T11296] loop1: detected capacity change from 0 to 1024
[  201.856839][T11296] EXT4-fs: Ignoring removed orlov option
[  201.864925][T11296] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.090338][T11310] loop2: detected capacity change from 0 to 512
[  202.097570][T11310] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  202.122902][T11310] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.2731: invalid block
[  202.136456][T11310] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2731: invalid indirect mapped block 4294967295 (level 1)
[  202.150892][T11310] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2731: invalid indirect mapped block 4294967295 (level 1)
[  202.165419][T11310] EXT4-fs (loop2): 2 truncates cleaned up
[  202.171776][T11310] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.312031][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.362924][T11322] proc: Bad value for 'gid'
[  202.543113][T11331] loop1: detected capacity change from 0 to 8192
[  202.594799][T11333] loop5: detected capacity change from 0 to 2048
[  202.811667][T11343] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  202.820484][T11343] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  202.862256][T11345] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  202.870857][T11345] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  202.891183][T11346] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  202.899730][T11346] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  202.909070][T11346] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  202.917779][T11346] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  202.926870][T11346] lo: left promiscuous mode
[  202.931438][T11346] lo: left allmulticast mode
[  202.936416][T11346] wireguard0: left allmulticast mode
[  202.946703][T11348] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  202.955294][T11348] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  202.964890][T11348] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  202.973510][T11348] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  202.987901][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.045548][T11354] loop2: detected capacity change from 0 to 764
[  203.412857][T11370] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2756'.
[  203.495701][T11374] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  203.556651][T11378] syzkaller0: entered allmulticast mode
[  203.563060][T11379] SELinux:  policydb magic number 0x6b7a7973 does not match expected magic number 0xf97cff8c
[  203.573559][T11379] SELinux: failed to load policy
[  203.578601][T11377] syzkaller0: left allmulticast mode
[  203.617126][T11381] netlink: 'syz.0.2761': attribute type 10 has an invalid length.
[  203.625047][T11381] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2761'.
[  203.634065][T11381] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  203.697063][T11387] SET target dimension over the limit!
[  203.773384][T11398] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2769'.
[  203.782455][T11398] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2769'.
[  203.791502][T11398] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2769'.
[  204.081634][T11415] loop2: detected capacity change from 0 to 2048
[  204.102318][T11415] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  204.665578][T11420] netlink: 'syz.0.2776': attribute type 11 has an invalid length.
[  204.673788][T11420] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2776'.
[  204.683741][T11420] 9pnet_fd: Insufficient options for proto=fd
[  204.734165][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.751087][   T30] kauditd_printk_skb: 545 callbacks suppressed
[  204.751167][   T30] audit: type=1400 audit(2000000006.030:14992): avc:  denied  { connect } for  pid=11425 comm="syz.0.2780" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  204.782212][   T30] audit: type=1400 audit(2000000006.040:14993): avc:  denied  { write } for  pid=11425 comm="syz.0.2780" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  204.802117][   T30] audit: type=1326 audit(2000000006.060:14994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11425 comm="syz.0.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  204.825859][   T30] audit: type=1326 audit(2000000006.060:14995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11425 comm="syz.0.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  204.826642][T11429] syzkaller1: entered promiscuous mode
[  204.849509][   T30] audit: type=1326 audit(2000000006.060:14996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11425 comm="syz.0.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  204.855196][T11429] syzkaller1: entered allmulticast mode
[  204.885971][   T30] audit: type=1326 audit(2000000006.160:14997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11425 comm="syz.0.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  204.909655][   T30] audit: type=1326 audit(2000000006.160:14998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11425 comm="syz.0.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  204.934585][   T30] audit: type=1326 audit(2000000006.160:14999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11425 comm="syz.0.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  204.958404][   T30] audit: type=1326 audit(2000000006.160:15000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11425 comm="syz.0.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  204.982178][   T30] audit: type=1326 audit(2000000006.160:15001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11425 comm="syz.0.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617af7e969 code=0x7ffc0000
[  205.061436][T11437] loop1: detected capacity change from 0 to 8192
[  205.131304][T11445] FAULT_INJECTION: forcing a failure.
[  205.131304][T11445] name failslab, interval 1, probability 0, space 0, times 0
[  205.144079][T11445] CPU: 1 UID: 0 PID: 11445 Comm: syz.1.2782 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  205.144122][T11445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  205.144139][T11445] Call Trace:
[  205.144148][T11445]  <TASK>
[  205.144159][T11445]  __dump_stack+0x1d/0x30
[  205.144181][T11445]  dump_stack_lvl+0xe8/0x140
[  205.144203][T11445]  dump_stack+0x15/0x1b
[  205.144246][T11445]  should_fail_ex+0x265/0x280
[  205.144290][T11445]  should_failslab+0x8c/0xb0
[  205.144377][T11445]  kmem_cache_alloc_node_noprof+0x57/0x320
[  205.144505][T11445]  ? __alloc_skb+0x101/0x320
[  205.144552][T11445]  ? __rtnl_unlock+0x95/0xb0
[  205.144581][T11445]  __alloc_skb+0x101/0x320
[  205.144614][T11445]  netlink_ack+0xfd/0x500
[  205.144720][T11445]  netlink_rcv_skb+0x192/0x220
[  205.144763][T11445]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  205.144803][T11445]  rtnetlink_rcv+0x1c/0x30
[  205.144851][T11445]  netlink_unicast+0x59e/0x670
[  205.144881][T11445]  netlink_sendmsg+0x58b/0x6b0
[  205.144921][T11445]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.144954][T11445]  __sock_sendmsg+0x142/0x180
[  205.145058][T11445]  ____sys_sendmsg+0x31e/0x4e0
[  205.145088][T11445]  ___sys_sendmsg+0x17b/0x1d0
[  205.145140][T11445]  __x64_sys_sendmsg+0xd4/0x160
[  205.145209][T11445]  x64_sys_call+0x2999/0x2fb0
[  205.145232][T11445]  do_syscall_64+0xd0/0x1a0
[  205.145255][T11445]  ? clear_bhb_loop+0x25/0x80
[  205.145275][T11445]  ? clear_bhb_loop+0x25/0x80
[  205.145303][T11445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.145365][T11445] RIP: 0033:0x7fa57a2de969
[  205.145386][T11445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.145474][T11445] RSP: 002b:00007fa578905038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  205.145499][T11445] RAX: ffffffffffffffda RBX: 00007fa57a506160 RCX: 00007fa57a2de969
[  205.145559][T11445] RDX: 000000002000a804 RSI: 0000200000006280 RDI: 000000000000000b
[  205.145571][T11445] RBP: 00007fa578905090 R08: 0000000000000000 R09: 0000000000000000
[  205.145663][T11445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  205.145679][T11445] R13: 0000000000000000 R14: 00007fa57a506160 R15: 00007ffc7f9cb1a8
[  205.145713][T11445]  </TASK>
[  205.499991][T11449] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  205.601267][T11451] SET target dimension over the limit!
[  205.789965][T11465] usb usb1: usbfs: process 11465 (syz.5.2794) did not claim interface 0 before use
[  205.869497][T11475] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  205.888307][T11475] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  205.954015][T11490] FAULT_INJECTION: forcing a failure.
[  205.954015][T11490] name failslab, interval 1, probability 0, space 0, times 0
[  205.966783][T11490] CPU: 0 UID: 0 PID: 11490 Comm: syz.0.2803 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  205.966816][T11490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  205.966894][T11490] Call Trace:
[  205.966903][T11490]  <TASK>
[  205.966912][T11490]  __dump_stack+0x1d/0x30
[  205.966938][T11490]  dump_stack_lvl+0xe8/0x140
[  205.966958][T11490]  dump_stack+0x15/0x1b
[  205.966979][T11490]  should_fail_ex+0x265/0x280
[  205.967106][T11490]  should_failslab+0x8c/0xb0
[  205.967143][T11490]  kmem_cache_alloc_noprof+0x50/0x310
[  205.967185][T11490]  ? getname_kernel+0x3c/0x1f0
[  205.967262][T11490]  getname_kernel+0x3c/0x1f0
[  205.967297][T11490]  kern_path+0x23/0x130
[  205.967333][T11490]  create_local_trace_uprobe+0x53/0x2c0
[  205.967388][T11490]  perf_uprobe_init+0xc0/0x150
[  205.967498][T11490]  perf_uprobe_event_init+0xea/0x150
[  205.967542][T11490]  perf_try_init_event+0xd0/0x540
[  205.967621][T11490]  ? perf_event_alloc+0xab1/0x15c0
[  205.967651][T11490]  perf_event_alloc+0xabc/0x15c0
[  205.967685][T11490]  __se_sys_perf_event_open+0x5a8/0x1170
[  205.967715][T11490]  ? __rcu_read_unlock+0x4f/0x70
[  205.967799][T11490]  __x64_sys_perf_event_open+0x67/0x80
[  205.967830][T11490]  x64_sys_call+0x27ec/0x2fb0
[  205.967857][T11490]  do_syscall_64+0xd0/0x1a0
[  205.967918][T11490]  ? clear_bhb_loop+0x25/0x80
[  205.967941][T11490]  ? clear_bhb_loop+0x25/0x80
[  205.967969][T11490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.967994][T11490] RIP: 0033:0x7f617af7e969
[  205.968089][T11490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.968186][T11490] RSP: 002b:00007f61795e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  205.968204][T11490] RAX: ffffffffffffffda RBX: 00007f617b1a5fa0 RCX: 00007f617af7e969
[  205.968216][T11490] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  205.968230][T11490] RBP: 00007f61795e7090 R08: 0000000000000000 R09: 0000000000000000
[  205.968245][T11490] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  205.968261][T11490] R13: 0000000000000000 R14: 00007f617b1a5fa0 R15: 00007ffe116cdb38
[  205.968291][T11490]  </TASK>
[  206.353090][T11518] FAULT_INJECTION: forcing a failure.
[  206.353090][T11518] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.366310][T11518] CPU: 1 UID: 0 PID: 11518 Comm: syz.0.2816 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  206.366390][T11518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  206.366407][T11518] Call Trace:
[  206.366415][T11518]  <TASK>
[  206.366425][T11518]  __dump_stack+0x1d/0x30
[  206.366451][T11518]  dump_stack_lvl+0xe8/0x140
[  206.366476][T11518]  dump_stack+0x15/0x1b
[  206.366496][T11518]  should_fail_ex+0x265/0x280
[  206.366584][T11518]  should_fail+0xb/0x20
[  206.366613][T11518]  should_fail_usercopy+0x1a/0x20
[  206.366635][T11518]  _copy_to_user+0x20/0xa0
[  206.366663][T11518]  simple_read_from_buffer+0xb5/0x130
[  206.366756][T11518]  proc_fail_nth_read+0x100/0x140
[  206.366786][T11518]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  206.366845][T11518]  vfs_read+0x19d/0x6f0
[  206.366872][T11518]  ? putname+0xda/0x100
[  206.366949][T11518]  ? __rcu_read_unlock+0x4f/0x70
[  206.366973][T11518]  ? __fget_files+0x184/0x1c0
[  206.367110][T11518]  ksys_read+0xda/0x1a0
[  206.367135][T11518]  __x64_sys_read+0x40/0x50
[  206.367158][T11518]  x64_sys_call+0x2d77/0x2fb0
[  206.367228][T11518]  do_syscall_64+0xd0/0x1a0
[  206.367256][T11518]  ? clear_bhb_loop+0x25/0x80
[  206.367317][T11518]  ? clear_bhb_loop+0x25/0x80
[  206.367346][T11518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.367373][T11518] RIP: 0033:0x7f617af7d37c
[  206.367448][T11518] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  206.367471][T11518] RSP: 002b:00007f61795e7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  206.367523][T11518] RAX: ffffffffffffffda RBX: 00007f617b1a5fa0 RCX: 00007f617af7d37c
[  206.367539][T11518] RDX: 000000000000000f RSI: 00007f61795e70a0 RDI: 0000000000000005
[  206.367555][T11518] RBP: 00007f61795e7090 R08: 0000000000000000 R09: 0000000000000000
[  206.367570][T11518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  206.367582][T11518] R13: 0000000000000000 R14: 00007f617b1a5fa0 R15: 00007ffe116cdb38
[  206.367602][T11518]  </TASK>
[  206.721286][T11511] netlink: 'syz.5.2812': attribute type 1 has an invalid length.
[  206.736682][T11511] loop5: detected capacity change from 0 to 512
[  206.743458][T11511] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  206.798554][T11528] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2820'.
[  206.811338][T11530] FAULT_INJECTION: forcing a failure.
[  206.811338][T11530] name failslab, interval 1, probability 0, space 0, times 0
[  206.824079][T11530] CPU: 0 UID: 0 PID: 11530 Comm: syz.1.2821 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  206.824191][T11530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  206.824208][T11530] Call Trace:
[  206.824215][T11530]  <TASK>
[  206.824224][T11530]  __dump_stack+0x1d/0x30
[  206.824255][T11530]  dump_stack_lvl+0xe8/0x140
[  206.824276][T11530]  dump_stack+0x15/0x1b
[  206.824359][T11530]  should_fail_ex+0x265/0x280
[  206.824461][T11530]  should_failslab+0x8c/0xb0
[  206.824499][T11530]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  206.824601][T11530]  ? __d_alloc+0x3d/0x350
[  206.824642][T11530]  __d_alloc+0x3d/0x350
[  206.824690][T11530]  d_alloc_parallel+0x53/0xc40
[  206.824767][T11530]  ? __rcu_read_unlock+0x4f/0x70
[  206.824793][T11530]  ? __d_lookup+0x316/0x340
[  206.824838][T11530]  ? vsnprintf+0x829/0x890
[  206.824871][T11530]  ? full_name_hash+0x92/0xe0
[  206.824913][T11530]  proc_fill_cache+0x158/0x240
[  206.825004][T11530]  ? __pfx_proc_map_files_instantiate+0x10/0x10
[  206.825041][T11530]  proc_map_files_readdir+0x500/0x680
[  206.825112][T11530]  iterate_dir+0x111/0x330
[  206.825131][T11530]  ? mutex_lock+0xd/0x30
[  206.825160][T11530]  __se_sys_getdents64+0x88/0x1b0
[  206.825264][T11530]  ? __pfx_filldir64+0x10/0x10
[  206.825287][T11530]  __x64_sys_getdents64+0x43/0x50
[  206.825311][T11530]  x64_sys_call+0x1302/0x2fb0
[  206.825335][T11530]  do_syscall_64+0xd0/0x1a0
[  206.825432][T11530]  ? clear_bhb_loop+0x25/0x80
[  206.825459][T11530]  ? clear_bhb_loop+0x25/0x80
[  206.825485][T11530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.825505][T11530] RIP: 0033:0x7fa57a2de969
[  206.825520][T11530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.825583][T11530] RSP: 002b:00007fa578947038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  206.825606][T11530] RAX: ffffffffffffffda RBX: 00007fa57a505fa0 RCX: 00007fa57a2de969
[  206.825622][T11530] RDX: 0000000000001002 RSI: 0000200000002f40 RDI: 0000000000000003
[  206.825638][T11530] RBP: 00007fa578947090 R08: 0000000000000000 R09: 0000000000000000
[  206.825707][T11530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.825773][T11530] R13: 0000000000000000 R14: 00007fa57a505fa0 R15: 00007ffc7f9cb1a8
[  206.825795][T11530]  </TASK>
[  206.844736][T11528] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2820'.
[  207.140424][T11550] usb usb1: usbfs: process 11550 (syz.4.2829) did not claim interface 0 before use
[  207.242660][T11564] loop5: detected capacity change from 0 to 2048
[  207.273598][T11564] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.342021][T11575] loop2: detected capacity change from 0 to 128
[  207.378537][T11575] syz.2.2834: attempt to access beyond end of device
[  207.378537][T11575] loop2: rw=2049, sector=153, nr_sectors = 8 limit=128
[  207.447793][T11548] chnl_net:caif_netlink_parms(): no params data found
[  207.458674][T11575] syz.2.2834: attempt to access beyond end of device
[  207.458674][T11575] loop2: rw=2049, sector=169, nr_sectors = 13 limit=128
[  207.497522][T11575] syz.2.2834: attempt to access beyond end of device
[  207.497522][T11575] loop2: rw=0, sector=121, nr_sectors = 8 limit=128
[  207.515921][T11575] syz.2.2834: attempt to access beyond end of device
[  207.515921][T11575] loop2: rw=0, sector=153, nr_sectors = 8 limit=128
[  207.535812][T11575] syz.2.2834: attempt to access beyond end of device
[  207.535812][T11575] loop2: rw=0, sector=169, nr_sectors = 13 limit=128
[  207.550080][T11548] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.557212][T11548] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.565901][T11548] bridge_slave_0: entered allmulticast mode
[  207.572561][T11548] bridge_slave_0: entered promiscuous mode
[  207.579647][T11548] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.581073][T11573] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  207.586791][T11548] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.587070][T11548] bridge_slave_1: entered allmulticast mode
[  207.615393][T11548] bridge_slave_1: entered promiscuous mode
[  207.630556][T11583] loop4: detected capacity change from 0 to 128
[  207.658654][T11548] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  207.658692][T11583] syz.4.2836: attempt to access beyond end of device
[  207.658692][T11583] loop4: rw=2049, sector=153, nr_sectors = 8 limit=128
[  207.683713][T11548] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  207.695114][T11583] syz.4.2836: attempt to access beyond end of device
[  207.695114][T11583] loop4: rw=2049, sector=169, nr_sectors = 13 limit=128
[  207.717500][T11585] SET target dimension over the limit!
[  207.741248][T11548] team0: Port device team_slave_0 added
[  207.748391][T11548] team0: Port device team_slave_1 added
[  207.780137][T11548] batman_adv: batadv0: Adding interface: batadv_slave_0
[  207.787260][T11548] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  207.813232][T11548] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  207.836706][T11548] batman_adv: batadv0: Adding interface: batadv_slave_1
[  207.843734][T11548] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  207.869695][T11548] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  207.885466][T11593] loop4: detected capacity change from 0 to 1024
[  207.903549][T11548] hsr_slave_0: entered promiscuous mode
[  207.909713][T11548] hsr_slave_1: entered promiscuous mode
[  207.916968][T11548] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  207.924576][T11548] Cannot create hsr debugfs directory
[  207.931155][T11593] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.019006][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.052259][   T12] bridge_slave_0: left promiscuous mode
[  208.058083][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  208.070221][ T6179] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.097700][T11609] loop1: detected capacity change from 0 to 128
[  208.126820][T11609] syz.1.2846: attempt to access beyond end of device
[  208.126820][T11609] loop1: rw=2049, sector=153, nr_sectors = 8 limit=128
[  208.148714][T11609] syz.1.2846: attempt to access beyond end of device
[  208.148714][T11609] loop1: rw=2049, sector=169, nr_sectors = 13 limit=128
[  208.166512][T11609] syz.1.2846: attempt to access beyond end of device
[  208.166512][T11609] loop1: rw=0, sector=121, nr_sectors = 8 limit=128
[  208.198395][T11615] loop5: detected capacity change from 0 to 1024
[  208.205359][T11615] EXT4-fs: Ignoring removed nobh option
[  208.211010][T11615] EXT4-fs: Ignoring removed bh option
[  208.218758][T11617] loop1: detected capacity change from 0 to 128
[  208.227471][T11617] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  208.251682][T11617] ext4 filesystem being mounted at /559/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  208.282345][T11615] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.355746][T11627] loop4: detected capacity change from 0 to 256
[  208.362545][T11627] vfat: Unknown parameter 'ÿ'
[  208.398077][ T3304] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  208.467393][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  208.528517][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  208.593759][   T12] bond0 (unregistering): Released all slaves
[  208.760981][   T12] hsr_slave_0: left promiscuous mode
[  208.766756][   T12] hsr_slave_1: left promiscuous mode
[  208.773608][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  208.782495][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  208.799962][ T6179] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.876687][T11646] loop2: detected capacity change from 0 to 2048
[  208.892440][T11646] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.961345][T11652] loop4: detected capacity change from 0 to 128
[  208.993857][T11548] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  209.004846][T11548] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  209.014160][T11548] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  209.024097][T11548] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  209.091482][T11548] 8021q: adding VLAN 0 to HW filter on device bond0
[  209.118456][T11548] 8021q: adding VLAN 0 to HW filter on device team0
[  209.138787][T11548] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  209.149404][T11548] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  209.162507][ T9109] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.169604][ T9109] bridge0: port 1(bridge_slave_0) entered forwarding state
[  209.179734][ T9109] bridge0: port 2(bridge_slave_1) entered blocking state
[  209.186836][ T9109] bridge0: port 2(bridge_slave_1) entered forwarding state
[  209.260178][T11548] 8021q: adding VLAN 0 to HW filter on device batadv0
[  209.413328][T11662] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2859'.
[  209.448887][T11548] veth0_vlan: entered promiscuous mode
[  209.457488][T11548] veth1_vlan: entered promiscuous mode
[  209.471674][T11548] veth0_macvtap: entered promiscuous mode
[  209.484403][T11548] veth1_macvtap: entered promiscuous mode
[  209.495430][T11548] batman_adv: batadv0: Interface activated: batadv_slave_0
[  209.504844][T11548] batman_adv: batadv0: Interface activated: batadv_slave_1
[  209.516855][T11548] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  209.525700][T11548] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  209.534511][T11548] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  209.543400][T11548] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  209.608319][T11677] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2862'.
[  209.620627][T11677] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2862'.
[  209.723750][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.747662][T11677] bond2: entered promiscuous mode
[  209.753356][T11677] bond2: entered allmulticast mode
[  209.762826][T11677] 8021q: adding VLAN 0 to HW filter on device bond2
[  209.798589][   T30] kauditd_printk_skb: 569 callbacks suppressed
[  209.798607][   T30] audit: type=1400 audit(2000000011.070:15571): avc:  denied  { setcurrent } for  pid=11693 comm="syz.0.2868" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  209.859742][   T30] audit: type=1401 audit(2000000011.070:15572): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[  209.876695][   T30] audit: type=1400 audit(2000000011.070:15573): avc:  denied  { watch watch_reads } for  pid=11693 comm="syz.0.2868" path="/1" dev="tmpfs" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  209.931082][   T30] audit: type=1400 audit(2000000011.180:15574): avc:  denied  { create } for  pid=11696 comm="syz.4.2870" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  209.958035][   T30] audit: type=1326 audit(2000000011.230:15575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11698 comm="syz.2.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a0d89e969 code=0x7ffc0000
[  209.981784][   T30] audit: type=1326 audit(2000000011.230:15576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11698 comm="syz.2.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a0d89e969 code=0x7ffc0000
[  209.982087][T11712] loop5: detected capacity change from 0 to 2048
[  210.005545][   T30] audit: type=1326 audit(2000000011.230:15577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11698 comm="syz.2.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a0d89e969 code=0x7ffc0000
[  210.035407][   T30] audit: type=1326 audit(2000000011.230:15578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11698 comm="syz.2.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a0d89e969 code=0x7ffc0000
[  210.046980][T11712] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.059014][   T30] audit: type=1326 audit(2000000011.230:15579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11698 comm="syz.2.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a0d89e969 code=0x7ffc0000
[  210.094691][   T30] audit: type=1326 audit(2000000011.230:15580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11698 comm="syz.2.2871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a0d89e969 code=0x7ffc0000
[  210.158305][T11719] syz_tun: Device is already in use.
[  210.172467][T11719] loop4: detected capacity change from 0 to 2048
[  210.259607][T11727] loop4: detected capacity change from 0 to 128
[  210.278388][T11727] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  210.291127][T11727] ext4 filesystem being mounted at /585/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  210.332699][ T3310] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  210.657007][ T6179] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.709194][T11741] lo speed is unknown, defaulting to 1000
[  210.715098][T11741] lo speed is unknown, defaulting to 1000
[  210.722178][T11741] lo speed is unknown, defaulting to 1000
[  210.729667][T11741] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  210.742794][T11741] lo speed is unknown, defaulting to 1000
[  210.752808][T11741] lo speed is unknown, defaulting to 1000
[  210.758965][T11741] lo speed is unknown, defaulting to 1000
[  210.764376][T11743] SELinux: ebitmap: truncated map
[  210.766418][T11741] lo speed is unknown, defaulting to 1000
[  210.777732][T11741] lo speed is unknown, defaulting to 1000
[  210.790021][T11743] SELinux: failed to load policy
[  210.852159][T11755] loop1: detected capacity change from 0 to 1024
[  210.859023][T11755] EXT4-fs: Ignoring removed orlov option
[  210.868259][T11755] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.870442][T11762] loop2: detected capacity change from 0 to 128
[  210.961522][T11755] ==================================================================
[  210.969668][T11755] BUG: KCSAN: data-race in filemap_splice_read / filemap_splice_read
[  210.977796][T11755] 
[  210.980127][T11755] write to 0xffff88810449f468 of 8 bytes by task 11769 on cpu 0:
[  210.987869][T11755]  filemap_splice_read+0x47e/0x6b0
[  210.993027][T11755]  ext4_file_splice_read+0x8f/0xb0
[  210.998180][T11755]  splice_direct_to_actor+0x26c/0x680
[  211.003664][T11755]  do_splice_direct+0xda/0x150
[  211.008449][T11755]  do_sendfile+0x380/0x640
[  211.012907][T11755]  __x64_sys_sendfile64+0x105/0x150
[  211.018135][T11755]  x64_sys_call+0xb39/0x2fb0
[  211.022744][T11755]  do_syscall_64+0xd0/0x1a0
[  211.027278][T11755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.033211][T11755] 
[  211.035559][T11755] write to 0xffff88810449f468 of 8 bytes by task 11755 on cpu 1:
[  211.043556][T11755]  filemap_splice_read+0x47e/0x6b0
[  211.048810][T11755]  ext4_file_splice_read+0x8f/0xb0
[  211.053960][T11755]  splice_direct_to_actor+0x26c/0x680
[  211.059370][T11755]  do_splice_direct+0xda/0x150
[  211.064190][T11755]  do_sendfile+0x380/0x640
[  211.068628][T11755]  __x64_sys_sendfile64+0x105/0x150
[  211.073842][T11755]  x64_sys_call+0xb39/0x2fb0
[  211.078443][T11755]  do_syscall_64+0xd0/0x1a0
[  211.082950][T11755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.088934][T11755] 
[  211.091258][T11755] value changed: 0x000000000000013f -> 0x0000000000000140
[  211.098366][T11755] 
[  211.100691][T11755] Reported by Kernel Concurrency Sanitizer on:
[  211.106841][T11755] CPU: 1 UID: 0 PID: 11755 Comm: syz.1.2892 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[  211.119350][T11755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  211.129420][T11755] ==================================================================
[  211.162843][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.