last executing test programs:

6.44787645s ago: executing program 1 (id=869):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x503, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x10000, 0x10}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40090}, 0x40)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="4400000010000108fdffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000008001b00000000001c001a8018002d80"], 0x44}}, 0x0)
syz_usb_connect(0x2, 0x0, 0x0, 0x0)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000040)=0xffffffffffffffff)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @broadcast}, 0x10)
recvmmsg(r1, &(0x7f0000001a00)=[{{0x0, 0x25, 0x0}, 0x6}], 0x1, 0x40000002, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB="0000000600000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r3}, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f00000001c0), 0x12)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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")
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
renameat2(r6, &(0x7f0000000140)='./file1\x00', r6, &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r7}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file3\x00', 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x10, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="840000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00300000000000005400128009000100766c616e000000004400028006000100000000000600050081000000280003803900010006000000090000000c00010000040000000000008dff010040000000060000000600050088a8000008000a00", @ANYRES32, @ANYBLOB="080005"], 0x84}, 0x1, 0xba01}, 0x0)

3.395575338s ago: executing program 1 (id=888):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20)
r4 = io_uring_setup(0x792b, &(0x7f0000000600)={0x0, 0x2002, 0x1, 0x0, 0x4b1})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x7, 0x590, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x9, 0x4, 0x10000000, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x1004010, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r5}, 0x10)
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2000002, 0x42032, 0xffffffffffffffff, 0x80000000)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='afs_cb_miss\x00', r1, 0x0, 0x1ce7}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$inet6(0xa, 0x80002, 0x88)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'xfrm0\x00', <r10=>0x0})
sendmsg$nl_route(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x38, 0x55, 0x2e5, 0x0, 0x25dfdbff, {0x7, r10}, [@MDBA_SET_ENTRY={0x20, 0x1, {r10, 0x0, 0x0, 0x0, {@ip4=@empty}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a"], 0x44}}, 0x0)

3.22821403s ago: executing program 1 (id=891):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x360, &(0x7f0000000b00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105042, 0x40)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x100000b, 0x13, r1, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x32600)
socket(0x40000000015, 0x5, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000003b00)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
r3 = epoll_create(0x4)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x109202)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r2, &(0x7f0000000040)={0x16000000b})
inotify_init1(0x800)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c000000020601020060000000000000000000000900020073797a31000000000500010007000000050005000a00000014000780080013400020000008001240fffffffa0d000300686173683a6e657400000000050004"], 0x5c}}, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r6}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0x3, 0x0, 0x40000, 0x0, 0x2}, 0x0, &(0x7f00000002c0)={0x3ff, 0x1000000000002, 0x0, 0x0, 0x5, 0x4, 0x80000001, 0x7fffffffffffffff}, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)

2.346071211s ago: executing program 1 (id=898):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48241, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newtfilter={0x24, 0x11, 0x1, 0x691522eb, 0x0, {0x0, 0x0, 0x74, r3, {0x10, 0x4}, {}, {0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x2}, 0x18)
openat(r1, &(0x7f00000002c0)='./file0\x00', 0x240441, 0x48)
socket(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdcb, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r6)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setuid(0xee00)

2.036259384s ago: executing program 1 (id=901):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_IO(r1, 0x2285, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
write$sndseq(r2, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time}], 0x38)
write$sndseq(r2, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time={0xffffffff}, {0x4}, {0x0, 0x4}, @time=@tick=0x4}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control={0x0, 0x0, 0x800}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {0x0, 0x4}, @control}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x5, @time, {}, {}, @raw8={"448cc880fe353ca0f2c2e953"}}, {0x0, 0x1, 0x2, 0x0, @time, {}, {}, @connect}], 0xc4)
read$snapshot(r2, 0x0, 0xffffffbf)
read$char_usb(r2, 0x0, 0x0)

1.936020466s ago: executing program 1 (id=902):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x503, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x10000, 0x10}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40090}, 0x40)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="4400000010000108fdffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000008001b00000000001c001a8018002d80"], 0x44}}, 0x0)
syz_usb_connect(0x2, 0x0, 0x0, 0x0)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000040)=0xffffffffffffffff)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @broadcast}, 0x10)
recvmmsg(r1, &(0x7f0000001a00)=[{{0x0, 0x25, 0x0}, 0x6}], 0x1, 0x40000002, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB="0000000600000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r3}, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
write$cgroup_pid(0xffffffffffffffff, &(0x7f00000001c0), 0x12)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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")
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
renameat2(r4, &(0x7f0000000140)='./file1\x00', r4, &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1)

1.785480248s ago: executing program 3 (id=905):
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./control\x00', 0x0, 0x2000, 0x0)

1.711621718s ago: executing program 3 (id=907):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20)
r4 = io_uring_setup(0x792b, &(0x7f0000000600)={0x0, 0x2002, 0x1, 0x0, 0x4b1})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x7, 0x590, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x9, 0x4, 0x10000000, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x1004010, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r5}, 0x10)
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2000002, 0x42032, 0xffffffffffffffff, 0x80000000)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='afs_cb_miss\x00', r1, 0x0, 0x1ce7}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$inet6(0xa, 0x80002, 0x88)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'xfrm0\x00', <r10=>0x0})
sendmsg$nl_route(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x38, 0x55, 0x2e5, 0x0, 0x25dfdbff, {0x7, r10}, [@MDBA_SET_ENTRY={0x20, 0x1, {r10, 0x0, 0x0, 0x0, {@ip4=@empty}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0xa120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a"], 0x44}}, 0x0)

1.54476796s ago: executing program 2 (id=908):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, 0x0, 0x420, 0x70bd28, 0x9, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0xffffffca}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8001}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x4}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x5869}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x4048045}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000600), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000280)={[{@user_xattr}]}, 0x9, 0x537, &(0x7f0000000fc0)="$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")
chown(0x0, 0x0, 0x0)
r3 = openat$selinux_access(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$selinux_access(r3, 0x0, 0x41)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$kcm(0x11, 0xa, 0x300)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xe, 0x0, &(0x7f0000000000)='\x00'/14, 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
write$selinux_access(r2, 0x0, 0x41)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r6, 0x0, 0x20008000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='kfree\x00', r5}, 0x18)

1.267959744s ago: executing program 2 (id=911):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f0000001b80)='syzkaller\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48241, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newtfilter={0x24, 0x11, 0x1, 0x691522eb, 0x0, {0x0, 0x0, 0x74, r3, {0x10, 0x4}, {}, {0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x2}, 0x18)
openat(r1, &(0x7f00000002c0)='./file0\x00', 0x240441, 0x48)
socket(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdcb, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r6)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setuid(0xee00)

1.240578645s ago: executing program 0 (id=912):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_IO(r1, 0x2285, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
write$sndseq(r2, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time}], 0x38)
write$sndseq(r2, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time={0xffffffff}, {0x4}, {0x0, 0x4}, @time=@tick=0x4}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control={0x0, 0x0, 0x800}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {0x0, 0x4}, @control}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x5, @time, {}, {}, @raw8={"448cc880fe353ca0f2c2e953"}}, {0x0, 0x1, 0x2, 0x0, @time, {}, {}, @connect}], 0xc4)
read$snapshot(r2, 0x0, 0xffffffbf)
read$char_usb(r2, 0x0, 0x0)

1.214531825s ago: executing program 0 (id=913):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='mm_page_alloc\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r1}, 0x18)
socket$unix(0x1, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r2)
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000019c0)={0x28, r3, 0xacf5e67dd0b583a1, 0x70bd29, 0x0, {{0x5}, {@val={0x7}, @val={0xc}}}}, 0x28}}, 0x0)

1.184768995s ago: executing program 3 (id=914):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b000000000000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000380)='sys_enter\x00', r1}, 0x10)
signalfd(0xffffffffffffffff, &(0x7f0000000500)={[0x5]}, 0x8)

1.147481486s ago: executing program 3 (id=915):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000003c0)={0x17c04, 0xffffffffffffffff, 0x4eb, 0x10001, 0x0, 0x403})

1.147165836s ago: executing program 3 (id=916):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='rdma.current\x00', 0x275a, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, 0x0)
tkill(0x0, 0x7)
fsetxattr(r0, &(0x7f0000000000)=@known='security.selinux\x00', &(0x7f0000000080)=':\x00', 0xffdf, 0x0)

1.132421655s ago: executing program 2 (id=917):
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./control\x00', 0x0, 0x2000, 0x0)

1.089506476s ago: executing program 0 (id=918):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x1})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="280000000306050000000000000000000000000005000100"], 0x28}}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000400018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
close(r0)

1.081949487s ago: executing program 2 (id=919):
r0 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r2, 0x2000009)
sendfile(r1, r2, 0x0, 0x7ffff004)
recvmsg(r1, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1}, 0x700)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
r4 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x101600, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r4, 0x8982, &(0x7f0000000100)={0x1, '\x00', {}, 0x7f})
ioctl$sock_proto_private(r3, 0x89e2, &(0x7f0000000240)="cfa20494e25b092920a5a82b76a3c3eb670a3f581e6c8243e14805901140f0342bd26ca18764fdaa47adc564b2dde842430c3043cb9baae5a609d2c8354712df3247f0ef9625c8e6fa8c5f159310cf3f86977a8edce523abafcdd3df17d6cb41c26d530cf13846ef9671b7a2535c523fe65d2364652c93663070302e35b454e27d9e48e87e61da2ddc2399123f46bfea94f698ac55c006046a8097ca5ead0bf2701c28dd56efed8d8e7757952a01708caa9521987020419036573ae79049c72b03d7dfbf4c74")
ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200, 0xfffffffffffffffe]})
write$binfmt_script(r3, &(0x7f0000000000)={'#! ', './file0', [{0x20, 'ethtool\x00'}, {0x20, 'ethtool\x00'}, {}, {0x20, 'ethtool\x00'}], 0xa, "5f83a5aa403de51a5a67201607e73d258c81e5363133c8892f544384f5e903c46a83382748cdd421fc58948b3fd7917dcf25a14528768f08867761c019ca2e52a0d55742d514c5bf7f0f20fe6bb08b4e8564067148d93d0561beee40ee46392c02365fc4e6e77d819a2ca4d5940d512d001a0e7138d8be81b308"}, 0xa1)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010026bd70000000000021040000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x2008040}, 0x880)
write$binfmt_misc(r4, &(0x7f0000000140)="24dea6b1cd903a6e0c7e8872dee21685b567ffdc4b059e9698ad014316aa606d2428f4ff7ce2a67a9908fc4fa11f0286f0cad7cc0924a88b2bef91ac81758bb712416047b47e0746fcd1aaebd29d9704cfd8c79740771d2c6441dd00da9b5ae5b7057ffd657fa31c4739ed224aa3328f19691150afdeb033cbba51a13b8b4d87908d87952b02737f3f0cbf638757dcd899b0a35339140c37899beb82387bbbb837fd0de90ee38206c1d90fa296ee2c0a66e5e6505d15eab9ac32ae2312e0621cd0a9971716166fab7e86f0c15cc1", 0xce)

957.461488ms ago: executing program 0 (id=920):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, 0x0, 0x200080c0)

887.377459ms ago: executing program 0 (id=921):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x360, &(0x7f0000000b00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105042, 0x40)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x100000b, 0x13, r1, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x32600)
socket(0x40000000015, 0x5, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000003b00)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
r3 = epoll_create(0x4)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x109202)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r2, &(0x7f0000000040)={0x16000000b})
inotify_init1(0x800)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c000000020601020060000000000000000000000900020073797a31000000000500010007000000050005000a00000014000780080013400020000008001240fffffffa0d000300686173683a6e657400000000050004"], 0x5c}}, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r6}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0x3, 0x0, 0x40000, 0x0, 0x2}, 0x0, &(0x7f00000002c0)={0x3ff, 0x1000000000002, 0x0, 0x0, 0x5, 0x4, 0x80000001, 0x7fffffffffffffff}, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)

741.421221ms ago: executing program 4 (id=926):
syz_open_dev$tty20(0xc, 0x4, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000b00)=@mangle={'mangle\x00', 0x64, 0x6, 0x548, 0x0, 0x0, 0x2a8, 0x2a8, 0x1b8, 0x478, 0x478, 0x478, 0x478, 0x478, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0x5, 0x703}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast}}}, {{@ipv6={@mcast2, @loopback, [], [], 'veth0_to_team\x00', 'syzkaller0\x00'}, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4=@private}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x7, 0x6, @ipv4=@local, 0x4e23}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5a8)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
timer_create(0x2, &(0x7f0000000080)={0x0, 0x0, 0x0, @thr={&(0x7f0000000240)="46ce58e927561c9fe55d3ec228b1c1b8b7bddd6d5e7c216c4aea0d3a32dba891fe5f990fc8332bc6ad8f2fae8f7d1f08380cf90a1f8ca75d9b0514d3f9d51bc063459f90271f1a44cd30340e7f8b93546187bdbfaec63b50582fe809698dfd446c95aa435a7956cda9289601a57e5610ad12837f73978c5d91b2950c2e68f76fe13a276de418b38a86b4487fdf8784d1f0b77ae92288b82f71dbce25caf1715e703048ee8c6674caef73b1cd0c325fc0a208a5c30bffb8efad9af577e7", &(0x7f0000000300)="316459c8820ca865bb533aa146c9dc335cbcedbc611aa9f94f19d6e6fc8f98817defb5218631f35ce3f874f4e447176dab47e5b2cb0e218f3c8e3cd032cd0039e672968191864053c0306ce09a7d76bf1f223dac40461de2c50e28fd6ef887ca7eea10bcbf699d303ffcb12656e893a4b0ae8970b310f22842b3bbf563a7acd44ee98daa29fbde25c872b6412f2f54e738ad3b"}}, &(0x7f00000003c0))
socket(0x2, 0x3, 0xff)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000100000c02000000000000000000000d0000000000005f"], 0x0, 0x34, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

706.595481ms ago: executing program 4 (id=927):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f0000001b80)='syzkaller\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48241, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newtfilter={0x24, 0x11, 0x1, 0x691522eb, 0x0, {0x0, 0x0, 0x74, r3, {0x10, 0x4}, {}, {0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x2}, 0x18)
openat(r1, &(0x7f00000002c0)='./file0\x00', 0x240441, 0x48)
socket(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdcb, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r6)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setuid(0xee00)

639.160952ms ago: executing program 4 (id=928):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000003c0)={0x17c04, 0xffffffffffffffff, 0x4eb, 0x10001, 0x0, 0x403})

575.013953ms ago: executing program 4 (id=929):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='mm_page_alloc\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
socket$unix(0x1, 0x1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r2)
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000019c0)={0x28, r3, 0xacf5e67dd0b583a1, 0x70bd29, 0x0, {{0x5}, {@val={0x7}, @val={0xc}}}}, 0x28}}, 0x0)

573.994033ms ago: executing program 4 (id=930):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0x40ffffffff}, 0x1100, 0x5, 0x3a65, 0x5, 0x0, 0x5, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4050}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x7c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x50, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x28, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_PROTO_MIN={0x8, 0x5, 0x1, 0x0, 0x3}, @NFTA_NAT_TYPE={0x8}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0xfe6a012a791407d4, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0xa4}, 0x1, 0x0, 0x0, 0xa6bb10cf72476599}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000440)={@local, @random='\x00 \x00\x00\x00\b', @void, {@ipv4={0x800, @tcp={{0x9, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0xd}, {[@lsrr={0x83, 0x7, 0xd7, [@multicast2]}, @cipso={0x86, 0x6, 0xfffffffffffffffc}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000380), 0x12)
open(&(0x7f0000000040)='./file2\x00', 0x181042, 0x0)
r4 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val={'init_itable', 0x3d, 0x8000}}, {@nodiscard}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {}, {@nobarrier}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="6c00000010001fff010000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000440012800b00010067656e6576650000340002800500090000000000050009000100000005000a000000000005000300f90000000500040040000000050004000800000008000a00", @ANYRES32=0x0], 0x6c}}, 0x8c0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000002c0)='rpcgss_svc_authenticate\x00', r5, 0x0, 0x6}, 0x18)
r7 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x1, 0x0)
fchdir(r8)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r9, &(0x7f0000000000), 0x208e24b)
connect$inet(r4, &(0x7f0000000280)={0x2, 0x4e24, @loopback}, 0x10)
ftruncate(r5, 0x6)
socket$inet6(0xa, 0x80002, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000001e40)=ANY=[@ANYBLOB="20000000d802010200000000000000000a00fffe04aa7e12c858808e1b2b6bfb"], 0x20}}, 0x6004)

271.747306ms ago: executing program 3 (id=931):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
modify_ldt$write(0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x1, 0xc, &(0x7f0000000140)=ANY=[@ANYRESOCT=r0, @ANYRES32=<r1=>r0, @ANYRESHEX], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r2 = creat(&(0x7f0000000000)='./bus\x00', 0x8)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000200)={'syztnl1\x00', &(0x7f0000000040)={'syztnl1\x00', <r3=>0x0, 0x29, 0x6, 0x4, 0x66, 0x1, @remote, @private0, 0x40, 0x7800, 0x6, 0x5}})
getresuid(&(0x7f0000000240), &(0x7f0000000380), &(0x7f0000000400)=<r4=>0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000580)={{{@in=@dev={0xac, 0x14, 0x14, 0x2b}, @in6=@mcast1, 0x4e23, 0x0, 0x4e20, 0x1ff, 0xa, 0x80, 0x20, 0x2f, r3, r4}, {0xb, 0x7, 0xfffffffffffffffc, 0x1abd, 0x98, 0x9, 0x0, 0x7}, {0x6, 0x401, 0x8000000000000001, 0x2}, 0x9, 0x0, 0x0, 0x1, 0x2, 0x3}, {{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x4d4, 0x32}, 0x2, @in=@multicast2, 0x0, 0x0, 0x3, 0x49, 0x9, 0xc3, 0x7}}, 0xe8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
sendmsg$inet(r5, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x4e1e, @multicast2}, 0x10, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1c0000000000000000000000070000000189"], 0x20}, 0x4000)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r6, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc}, 0x1c)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000001500), 0x200, 0x0)
ioctl$TUNGETVNETLE(r7, 0x800454dd, &(0x7f0000001540))
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYRESDEC=r1], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
readv(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r8, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r9 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r9, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10)
sendmmsg(r9, &(0x7f0000002980), 0x400000000000239, 0x0)

263.836417ms ago: executing program 4 (id=932):
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040), 0x340081, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000005600)='sys_enter\x00', r0}, 0x10)
timerfd_gettime(0xffffffffffffffff, &(0x7f0000001040))
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000080)=0x677c, 0x4)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0xa0e54044ef4acb5, &(0x7f0000000340)={0x11, 0xd}, 0x14)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendfile(r3, r2, 0x0, 0x7ffff000)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001000000800000", @ANYRES32=0x0, @ANYBLOB], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$inet_udp(0x2, 0x2, 0x0)
socket$packet(0x11, 0x2, 0x300)

202.605917ms ago: executing program 2 (id=933):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
readv(r1, &(0x7f0000001180)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)
ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f00000000c0)=0x32)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)

69.256569ms ago: executing program 0 (id=934):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x1a3c82)
syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000640)={0x8f, 0xfffffffffffffffb, 0x1, 0x40, @buffer={0x0, 0xc4, &(0x7f0000000380)=""/196}, &(0x7f0000000300)="f6", &(0x7f0000000580)=""/192, 0x9, 0x5, 0xffffffffffffffff, &(0x7f00000004c0)})
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x7, 0x40, 0x7, 0x0, 0x0, 0x14000, 0x9, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x4}, 0x100183, 0x7ff, 0x7, 0x6, 0x81, 0x2, 0x5, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='cma_alloc_start\x00', r2, 0x0, 0x800000000000001}, 0x18)
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r3 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000200))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r4, 0x0)
ftruncate(r4, 0xc17a)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mremap(&(0x7f000008f000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000486000/0x1000)=nil)
mbind(&(0x7f0000673000/0x1000)=nil, 0x1000, 0x3, &(0x7f00000009c0)=0x7, 0x3, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 2 (id=935):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20)
r4 = io_uring_setup(0x792b, &(0x7f0000000600)={0x0, 0x2002, 0x1, 0x0, 0x4b1})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x7, 0x590, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x9, 0x4, 0x10000000, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x1004010, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r5}, 0x10)
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2000002, 0x42032, 0xffffffffffffffff, 0x80000000)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='afs_cb_miss\x00', r1, 0x0, 0x1ce7}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x80002, 0x88)
socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a"], 0x44}}, 0x0)

kernel console output (not intermixed with test programs):

ulticast mode
[   53.113756][ T3909] bridge_slave_1: left promiscuous mode
[   53.120395][ T3909] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.133360][ T3909] bridge_slave_0: left allmulticast mode
[   53.139805][ T3909] bridge_slave_0: left promiscuous mode
[   53.146536][ T3909] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.221111][ T3907] xt_hashlimit: max too large, truncated to 1048576
[   53.282042][    C0] hrtimer: interrupt took 47813 ns
[   53.326903][ T3923] netlink: 200 bytes leftover after parsing attributes in process `syz.3.97'.
[   53.386975][ T3928] FAULT_INJECTION: forcing a failure.
[   53.386975][ T3928] name failslab, interval 1, probability 0, space 0, times 0
[   53.403254][ T3928] CPU: 1 UID: 0 PID: 3928 Comm: syz.3.99 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(voluntary) 
[   53.403292][ T3928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   53.403308][ T3928] Call Trace:
[   53.403316][ T3928]  <TASK>
[   53.403327][ T3928]  __dump_stack+0x1d/0x30
[   53.403357][ T3928]  dump_stack_lvl+0xe8/0x140
[   53.403399][ T3928]  dump_stack+0x15/0x1b
[   53.403422][ T3928]  should_fail_ex+0x265/0x280
[   53.403465][ T3928]  should_failslab+0x8c/0xb0
[   53.403600][ T3928]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   53.403701][ T3928]  ? sidtab_sid2str_get+0xa0/0x130
[   53.403744][ T3928]  kmemdup_noprof+0x2b/0x70
[   53.403772][ T3928]  sidtab_sid2str_get+0xa0/0x130
[   53.403871][ T3928]  security_sid_to_context_core+0x1eb/0x2e0
[   53.403911][ T3928]  security_sid_to_context+0x27/0x40
[   53.403950][ T3928]  selinux_lsmprop_to_secctx+0x67/0xf0
[   53.404062][ T3928]  security_lsmprop_to_secctx+0x43/0x80
[   53.404096][ T3928]  audit_log_task_context+0x77/0x190
[   53.404147][ T3928]  audit_log_task+0xf4/0x250
[   53.404260][ T3928]  audit_seccomp+0x61/0x100
[   53.404288][ T3928]  ? __seccomp_filter+0x68c/0x10d0
[   53.404318][ T3928]  __seccomp_filter+0x69d/0x10d0
[   53.404350][ T3928]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   53.404421][ T3928]  ? vfs_write+0x75e/0x8d0
[   53.404455][ T3928]  __secure_computing+0x82/0x150
[   53.404478][ T3928]  syscall_trace_enter+0xcf/0x1e0
[   53.404511][ T3928]  do_syscall_64+0xaa/0x1a0
[   53.404622][ T3928]  ? clear_bhb_loop+0x40/0x90
[   53.404655][ T3928]  ? clear_bhb_loop+0x40/0x90
[   53.404686][ T3928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.404716][ T3928] RIP: 0033:0x7fee355ee969
[   53.404738][ T3928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.404763][ T3928] RSP: 002b:00007fee33c57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   53.404867][ T3928] RAX: ffffffffffffffda RBX: 00007fee35815fa0 RCX: 00007fee355ee969
[   53.404885][ T3928] RDX: 0000000000000010 RSI: 0000200000000200 RDI: 0000000000000011
[   53.404903][ T3928] RBP: 00007fee33c57090 R08: 0000000000000000 R09: 0000000000000000
[   53.404920][ T3928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.405035][ T3928] R13: 0000000000000000 R14: 00007fee35815fa0 R15: 00007ffffe7cada8
[   53.405058][ T3928]  </TASK>
[   53.811189][ T3921] loop1: detected capacity change from 0 to 1024
[   53.850176][ T3921] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   53.928051][ T3935] bond0: entered promiscuous mode
[   53.935184][ T3935] bond_slave_0: entered promiscuous mode
[   53.943227][ T3935] bond_slave_1: entered promiscuous mode
[   54.035751][ T3921] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.95: Invalid block bitmap block 0 in block_group 0
[   54.071447][ T3921] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.95: Failed to acquire dquot type 0
[   54.117866][ T3939] vhci_hcd: invalid port number 15
[   54.126501][ T3939] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   54.155671][ T3921] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.95: Freeing blocks not in datazone - block = 0, count = 4096
[   54.173795][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.207247][ T3921] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.95: Invalid inode bitmap blk 0 in block_group 0
[   54.232611][ T3755] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:9: Failed to release dquot type 0
[   54.248417][ T3951] random: crng reseeded on system resumption
[   54.297593][ T3956] loop2: detected capacity change from 0 to 1024
[   54.309862][ T3956] EXT4-fs: Ignoring removed orlov option
[   54.343123][ T3921] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   54.359358][ T3921] EXT4-fs (loop1): 1 orphan inode deleted
[   54.372694][ T3956] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.414996][ T3962] netlink: 'syz.0.112': attribute type 4 has an invalid length.
[   54.425380][ T3962] netlink: 17 bytes leftover after parsing attributes in process `syz.0.112'.
[   54.435823][ T3921] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.509483][ T3965] netlink: 4 bytes leftover after parsing attributes in process `syz.4.111'.
[   54.582224][ T3921] EXT4-fs error (device loop1): ext4_lookup:1789: inode #15: comm syz.1.95: iget: bad extra_isize 65535 (inode size 256)
[   54.616392][ T3969] loop3: detected capacity change from 0 to 512
[   54.640286][ T3969] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   54.729283][ T3979] loop0: detected capacity change from 0 to 512
[   54.736564][ T3969] EXT4-fs (loop3): 1 truncate cleaned up
[   54.738733][ T3982] vhci_hcd: invalid port number 15
[   54.749999][ T3982] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   54.751644][ T3969] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.783133][ T3979] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   54.827542][ T3969] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.850610][ T3979] EXT4-fs (loop0): 1 truncate cleaned up
[   54.887706][ T3979] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.956148][ T3969] geneve2: entered promiscuous mode
[   54.963691][ T3969] geneve2: entered allmulticast mode
[   54.971969][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.129464][ T3987] loop4: detected capacity change from 0 to 512
[   55.176579][ T3921] syz.1.95 (3921) used greatest stack depth: 9224 bytes left
[   55.226261][ T3987] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.242137][ T3987] ext4 filesystem being mounted at /28/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   55.415839][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.440799][ T3993] x_tables: duplicate underflow at hook 1
[   55.478912][ T3993] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   55.497981][ T3993] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   55.509487][ T3330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.550499][ T3998] loop2: detected capacity change from 0 to 1024
[   55.559806][ T3998] EXT4-fs: Ignoring removed orlov option
[   55.574347][ T3998] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.713002][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.755042][ T4014] loop4: detected capacity change from 0 to 512
[   55.760187][ T4008] netlink: 4 bytes leftover after parsing attributes in process `syz.3.124'.
[   55.765138][ T4014] EXT4-fs: Ignoring removed nomblk_io_submit option
[   55.782931][   T29] kauditd_printk_skb: 235 callbacks suppressed
[   55.782948][   T29] audit: type=1400 audit(1748131679.137:561): avc:  denied  { mounton } for  pid=4013 comm="syz.4.125" path="/29/bus" dev="tmpfs" ino=181 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   55.790521][ T4014] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   55.856101][ T4014] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   55.878421][ T4014] EXT4-fs (loop4): 1 truncate cleaned up
[   55.885955][ T4014] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.928808][   T29] audit: type=1400 audit(1748131679.297:562): avc:  denied  { mount } for  pid=4013 comm="syz.4.125" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   55.962144][   T29] audit: type=1400 audit(1748131679.327:563): avc:  denied  { read write } for  pid=4013 comm="syz.4.125" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   55.990762][   T29] audit: type=1400 audit(1748131679.327:564): avc:  denied  { open } for  pid=4013 comm="syz.4.125" path="/dev/loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   56.053677][   T29] audit: type=1400 audit(1748131679.427:565): avc:  denied  { unmount } for  pid=3316 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   56.091160][   T29] audit: type=1400 audit(1748131679.427:566): avc:  denied  { ioctl } for  pid=3321 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   56.121941][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.275683][ T4025] loop3: detected capacity change from 0 to 512
[   56.290533][   T29] audit: type=1400 audit(1748131679.507:567): avc:  denied  { map_create } for  pid=4019 comm="syz.3.128" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   56.313007][   T29] audit: type=1400 audit(1748131679.507:568): avc:  denied  { bpf } for  pid=4019 comm="syz.3.128" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   56.337151][   T29] audit: type=1400 audit(1748131679.507:569): avc:  denied  { map_read map_write } for  pid=4019 comm="syz.3.128" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   56.358613][   T29] audit: type=1400 audit(1748131679.507:570): avc:  denied  { prog_load } for  pid=4019 comm="syz.3.128" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   56.386856][ T4025] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   56.449491][ T4025] EXT4-fs (loop3): 1 truncate cleaned up
[   56.456040][ T4025] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.489808][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.517443][ T3330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.540835][ T4030] loop1: detected capacity change from 0 to 1024
[   56.550892][ T4030] EXT4-fs: Ignoring removed orlov option
[   56.562662][ T4030] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.600216][ T4035] vhci_hcd: invalid port number 15
[   56.607007][ T4035] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   56.726136][ T4042] loop3: detected capacity change from 0 to 512
[   56.755647][ T4042] EXT4-fs: Ignoring removed nomblk_io_submit option
[   56.782599][ T4048] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   56.798417][ T4042] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   56.815056][ T4048] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   56.835622][ T4042] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   56.870357][ T4042] EXT4-fs (loop3): 1 truncate cleaned up
[   56.878722][ T4042] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.910740][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.992717][ T4062] netlink: 'syz.3.137': attribute type 4 has an invalid length.
[   57.001634][ T4062] netlink: 17 bytes leftover after parsing attributes in process `syz.3.137'.
[   57.333752][ T4084] loop3: detected capacity change from 0 to 512
[   57.364173][ T4084] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   57.425545][ T4084] EXT4-fs (loop3): 1 truncate cleaned up
[   57.427686][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.435430][ T4084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.485591][ T4097] loop1: detected capacity change from 0 to 512
[   57.502285][ T4097] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   57.523297][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.544587][ T4097] EXT4-fs (loop1): 1 truncate cleaned up
[   57.628253][ T4107] netlink: 'syz.1.145': attribute type 3 has an invalid length.
[   57.718726][ T4119] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4119 comm=syz.3.148
[   57.721060][ T4117] netlink: 8 bytes leftover after parsing attributes in process `syz.1.147'.
[   57.743417][ T4117] netlink: 12 bytes leftover after parsing attributes in process `syz.1.147'.
[   57.810104][ T4125] netlink: 12 bytes leftover after parsing attributes in process `syz.1.147'.
[   57.834582][ T4125] loop1: detected capacity change from 0 to 1024
[   57.844211][ T4117] bond1: entered promiscuous mode
[   57.849692][ T4117] bond1: entered allmulticast mode
[   57.856815][ T4125] EXT4-fs: Ignoring removed nomblk_io_submit option
[   57.866530][ T4117] 8021q: adding VLAN 0 to HW filter on device bond1
[   57.874704][ T4125] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 0 not in group (block 38654705669)!
[   57.886880][ T4125] EXT4-fs (loop1): group descriptors corrupted!
[   57.950097][ T4138] vhci_hcd: invalid port number 15
[   57.955960][ T4138] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   58.034741][ T4117] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   58.131443][ T4161] loop2: detected capacity change from 0 to 512
[   58.146509][ T4161] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   58.150948][ T4158] random: crng reseeded on system resumption
[   58.178856][ T4161] EXT4-fs (loop2): 1 truncate cleaned up
[   58.359673][ T4175] netlink: 'syz.2.157': attribute type 3 has an invalid length.
[   58.549542][ T4194] loop2: detected capacity change from 0 to 512
[   58.580277][ T4194] EXT4-fs: Ignoring removed nomblk_io_submit option
[   58.661181][ T4194] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[   58.705200][ T4194] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[   58.723265][ T4194] EXT4-fs (loop2): 1 truncate cleaned up
[   58.748564][ T4194] netlink: 64 bytes leftover after parsing attributes in process `syz.2.160'.
[   58.762712][ T4210] netlink: 'syz.4.163': attribute type 3 has an invalid length.
[   58.819329][ T4216] vhci_hcd: invalid port number 15
[   58.826108][ T4216] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   58.966064][ T4220] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   59.104123][ T4233] loop2: detected capacity change from 0 to 128
[   59.277578][ T4247] netlink: 'syz.4.169': attribute type 3 has an invalid length.
[   59.434282][ T4265] random: crng reseeded on system resumption
[   59.518416][ T4268] random: crng reseeded on system resumption
[   59.671639][ T4271] loop4: detected capacity change from 0 to 1024
[   59.689751][ T4271] EXT4-fs: Ignoring removed orlov option
[   60.050910][ T4281] netlink: 4 bytes leftover after parsing attributes in process `syz.0.177'.
[   60.176436][ T4291] netlink: 24 bytes leftover after parsing attributes in process `syz.0.181'.
[   60.178486][ T4289] loop3: detected capacity change from 0 to 512
[   60.197198][ T4289] EXT4-fs: Ignoring removed nomblk_io_submit option
[   60.250071][ T4291] loop0: detected capacity change from 0 to 512
[   60.257899][ T4291] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   60.276981][ T4291] EXT4-fs (loop0): 1 truncate cleaned up
[   60.284438][ T4289] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   60.354861][ T4289] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   60.402827][ T4289] EXT4-fs (loop3): 1 truncate cleaned up
[   60.443131][ T4300] random: crng reseeded on system resumption
[   60.696077][ T4309] netlink: 24 bytes leftover after parsing attributes in process `syz.3.187'.
[   60.743465][ T4309] loop3: detected capacity change from 0 to 512
[   60.755396][ T4309] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   60.797333][   T29] kauditd_printk_skb: 252 callbacks suppressed
[   60.797352][   T29] audit: type=1400 audit(1748131684.167:823): avc:  denied  { read write } for  pid=3318 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   60.831412][   T29] audit: type=1400 audit(1748131684.167:824): avc:  denied  { open } for  pid=3318 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   60.858746][   T29] audit: type=1400 audit(1748131684.167:825): avc:  denied  { ioctl } for  pid=3318 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   60.889868][   T29] audit: type=1400 audit(1748131684.217:826): avc:  denied  { map_create } for  pid=4320 comm="syz.4.194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   60.914691][   T29] audit: type=1400 audit(1748131684.217:827): avc:  denied  { perfmon } for  pid=4320 comm="syz.4.194" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   60.940331][   T29] audit: type=1400 audit(1748131684.217:828): avc:  denied  { map_read map_write } for  pid=4320 comm="syz.4.194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   60.964244][   T29] audit: type=1400 audit(1748131684.257:829): avc:  denied  { execmem } for  pid=4320 comm="syz.4.194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   60.989810][ T4309] EXT4-fs (loop3): 1 truncate cleaned up
[   60.999014][   T29] audit: type=1400 audit(1748131684.367:830): avc:  denied  { mount } for  pid=4308 comm="syz.3.187" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   61.074795][   T29] audit: type=1400 audit(1748131684.417:831): avc:  denied  { prog_load } for  pid=4308 comm="syz.3.187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   61.097970][   T29] audit: type=1400 audit(1748131684.417:832): avc:  denied  { bpf } for  pid=4308 comm="syz.3.187" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   61.223691][ T4335] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.237188][ T4335] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   61.557904][ T4351] bond0: entered promiscuous mode
[   61.564922][ T4351] bond_slave_0: entered promiscuous mode
[   61.571375][ T4351] bond_slave_1: entered promiscuous mode
[   61.649259][ T4359] loop1: detected capacity change from 0 to 1024
[   61.661448][ T4359] EXT4-fs: Ignoring removed orlov option
[   61.704018][ T4358] netlink: 8 bytes leftover after parsing attributes in process `syz.3.195'.
[   61.715050][ T4358] netlink: 12 bytes leftover after parsing attributes in process `syz.3.195'.
[   61.762464][ T4358] bond1: entered promiscuous mode
[   61.767947][ T4358] bond1: entered allmulticast mode
[   61.775787][ T4358] 8021q: adding VLAN 0 to HW filter on device bond1
[   61.785171][ T4370] netlink: 12 bytes leftover after parsing attributes in process `syz.3.195'.
[   61.798286][ T4372] IPv6: Can't replace route, no match found
[   61.826314][ T4372] syzkaller0: entered promiscuous mode
[   61.826463][ T4358] loop3: detected capacity change from 0 to 1024
[   61.832105][ T4372] syzkaller0: entered allmulticast mode
[   61.847907][ T4358] EXT4-fs: Ignoring removed nomblk_io_submit option
[   61.858045][ T4358] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 not in group (block 38654705669)!
[   61.870768][ T4358] EXT4-fs (loop3): group descriptors corrupted!
[   62.084373][ T4392] random: crng reseeded on system resumption
[   62.220456][ T4402] netlink: 24 bytes leftover after parsing attributes in process `syz.2.203'.
[   62.240315][ T4402] loop2: detected capacity change from 0 to 512
[   62.255894][ T4402] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   62.307743][ T4402] EXT4-fs (loop2): 1 truncate cleaned up
[   62.556197][ T4423] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   62.622444][ T4427] loop1: detected capacity change from 0 to 512
[   62.648826][ T4427] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   62.683698][ T4427] EXT4-fs (loop1): 1 truncate cleaned up
[   62.756630][ T4435] loop3: detected capacity change from 0 to 128
[   62.811559][ T4439] syzkaller0: entered promiscuous mode
[   62.817162][ T4439] syzkaller0: entered allmulticast mode
[   62.911909][ T4452] bridge_slave_1: left allmulticast mode
[   62.919024][ T4452] bridge_slave_1: left promiscuous mode
[   62.925427][ T4452] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.936271][ T4452] bridge_slave_0: left allmulticast mode
[   62.943099][ T4452] bridge_slave_0: left promiscuous mode
[   62.949466][ T4452] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.143806][ T4476] random: crng reseeded on system resumption
[   63.344002][ T4489] netlink: 24 bytes leftover after parsing attributes in process `syz.1.221'.
[   63.363001][ T4489] loop1: detected capacity change from 0 to 512
[   63.371342][ T4489] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   63.395340][ T4489] EXT4-fs (loop1): 1 truncate cleaned up
[   63.519821][ T4473] syz.2.218 uses obsolete (PF_INET,SOCK_PACKET)
[   63.613427][ T4492] loop2: detected capacity change from 0 to 4096
[   63.939531][ T4534] IPv6: Can't replace route, no match found
[   63.973486][ T4534] syzkaller0: entered promiscuous mode
[   63.982809][ T4534] syzkaller0: entered allmulticast mode
[   63.997419][ T4538] random: crng reseeded on system resumption
[   64.169897][ T4547] netlink: 24 bytes leftover after parsing attributes in process `syz.4.232'.
[   64.194541][ T4547] loop4: detected capacity change from 0 to 512
[   64.204196][ T4547] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   64.218399][ T4547] EXT4-fs (loop4): 1 truncate cleaned up
[   64.235305][ T4547] geneve2: entered promiscuous mode
[   64.241639][ T4547] geneve2: entered allmulticast mode
[   64.492288][ T4565] IPv6: Can't replace route, no match found
[   64.516266][ T4565] syzkaller0: entered promiscuous mode
[   64.522620][ T4565] syzkaller0: entered allmulticast mode
[   64.594659][ T4572] random: crng reseeded on system resumption
[   64.602266][ T4569] loop4: detected capacity change from 0 to 512
[   64.610398][ T4569] EXT4-fs: Ignoring removed nobh option
[   64.664188][ T4569] EXT4-fs (loop4): failed to initialize system zone (-117)
[   64.672577][ T4569] EXT4-fs (loop4): mount failed
[   64.712418][ T4577] SELinux: syz.0.242 (4577) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   64.902784][ T4595] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   64.915980][ T4596] netlink: 24 bytes leftover after parsing attributes in process `syz.0.248'.
[   64.916111][ T4595] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   64.950856][ T4596] loop0: detected capacity change from 0 to 512
[   64.964813][ T4596] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   64.985904][ T4596] EXT4-fs (loop0): 1 truncate cleaned up
[   65.153083][ T4616] Zero length message leads to an empty skb
[   65.316829][ T4636] random: crng reseeded on system resumption
[   65.496372][ T4647] netlink: 24 bytes leftover after parsing attributes in process `syz.0.254'.
[   65.542315][ T4647] loop0: detected capacity change from 0 to 512
[   65.569564][ T4647] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   65.600846][ T4647] EXT4-fs (loop0): 1 truncate cleaned up
[   65.713819][ T4639] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   65.738268][ T4639] netlink: 'syz.1.253': attribute type 13 has an invalid length.
[   65.822113][   T29] kauditd_printk_skb: 227 callbacks suppressed
[   65.822166][   T29] audit: type=1400 audit(1748131689.167:1060): avc:  denied  { getopt } for  pid=4638 comm="syz.1.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   65.851787][   T29] audit: type=1400 audit(1748131689.167:1061): avc:  denied  { setopt } for  pid=4638 comm="syz.1.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   65.873928][   T29] audit: type=1400 audit(1748131689.167:1062): avc:  denied  { bind } for  pid=4638 comm="syz.1.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   65.895495][   T29] audit: type=1400 audit(1748131689.167:1063): avc:  denied  { name_bind } for  pid=4638 comm="syz.1.253" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   65.920103][   T29] audit: type=1400 audit(1748131689.167:1064): avc:  denied  { node_bind } for  pid=4638 comm="syz.1.253" saddr=fe80::bb src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[   66.106537][   T29] audit: type=1400 audit(1748131689.477:1065): avc:  denied  { read } for  pid=4681 comm="syz.3.259" dev="nsfs" ino=4026532514 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   66.131271][   T29] audit: type=1400 audit(1748131689.477:1066): avc:  denied  { open } for  pid=4681 comm="syz.3.259" path="net:[4026532514]" dev="nsfs" ino=4026532514 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   66.158068][   T29] audit: type=1400 audit(1748131689.477:1067): avc:  denied  { create } for  pid=4681 comm="syz.3.259" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   66.187155][ T4684] bridge_slave_1: left allmulticast mode
[   66.193180][ T4684] bridge_slave_1: left promiscuous mode
[   66.199726][ T4684] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.200281][ T4690] loop2: detected capacity change from 0 to 128
[   66.227075][ T4689] vhci_hcd: invalid port number 15
[   66.227072][ T4693] netlink: 24 bytes leftover after parsing attributes in process `syz.1.261'.
[   66.229244][   T29] audit: type=1400 audit(1748131689.477:1068): avc:  denied  { ioctl } for  pid=4681 comm="syz.3.259" path="socket:[7241]" dev="sockfs" ino=7241 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   66.232702][ T4689] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   66.243126][   T29] audit: type=1326 audit(1748131689.557:1069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4682 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f19ce969 code=0x7ffc0000
[   66.333791][ T4693] loop1: detected capacity change from 0 to 512
[   66.343597][ T4684] bridge_slave_0: left allmulticast mode
[   66.350240][ T4684] bridge_slave_0: left promiscuous mode
[   66.356434][ T4684] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.367586][ T4690] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.370872][ T4693] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   66.434954][ T4693] EXT4-fs (loop1): 1 truncate cleaned up
[   66.515736][ T4710] loop2: detected capacity change from 0 to 2048
[   66.577314][ T4714] netlink: 'syz.0.264': attribute type 3 has an invalid length.
[   66.594383][ T3309] Alternate GPT is invalid, using primary GPT.
[   66.601530][ T3309]  loop2: p1 p2 p3
[   66.625456][ T4710] Alternate GPT is invalid, using primary GPT.
[   66.632503][ T4710]  loop2: p1 p2 p3
[   66.645310][ T4720] random: crng reseeded on system resumption
[   66.734554][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   66.735454][ T3546] udevd[3546]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   66.748500][ T3309] udevd[3309]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   66.792496][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   66.806911][ T3546] udevd[3546]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   66.827484][ T3309] udevd[3309]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   66.930571][ T4736] loop1: detected capacity change from 0 to 2048
[   66.944224][ T4736] ext4: Unknown parameter 'audit'
[   67.052593][ T4736] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   67.077695][ T4736] SELinux: failed to load policy
[   67.078861][ T4756] loop0: detected capacity change from 0 to 2048
[   67.097339][ T4756] ext4: Unknown parameter 'audit'
[   67.105850][ T4756] geneve1: entered allmulticast mode
[   67.149752][ T4761] netlink: 'syz.1.272': attribute type 4 has an invalid length.
[   67.158452][ T4761] netlink: 17 bytes leftover after parsing attributes in process `syz.1.272'.
[   67.174906][ T4756] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   67.186811][ T4756] SELinux: failed to load policy
[   67.285193][ T4775] loop1: detected capacity change from 0 to 512
[   67.293143][ T4775] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   67.324155][ T4775] EXT4-fs (loop1): 1 truncate cleaned up
[   67.340955][ T4779] netlink: 24 bytes leftover after parsing attributes in process `syz.3.276'.
[   67.366468][ T4782] netlink: 24 bytes leftover after parsing attributes in process `syz.1.277'.
[   67.383332][ T4784] netlink: 'syz.0.275': attribute type 3 has an invalid length.
[   67.397333][ T4779] loop3: detected capacity change from 0 to 512
[   67.416203][ T4782] loop1: detected capacity change from 0 to 512
[   67.423111][ T4779] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   67.481803][ T4779] EXT4-fs (loop3): 1 truncate cleaned up
[   67.488694][ T4782] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   67.516298][ T4782] EXT4-fs (loop1): 1 truncate cleaned up
[   67.728398][ T4796] random: crng reseeded on system resumption
[   67.856103][ T4800] loop1: detected capacity change from 0 to 1024
[   67.874892][ T4800] EXT4-fs: Ignoring removed orlov option
[   67.919478][ T4807] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   67.958049][ T4807] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   68.387049][ T4841] loop0: detected capacity change from 0 to 2048
[   68.431945][ T4841] ext4: Unknown parameter 'audit'
[   68.505398][ T4841] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   68.529826][ T4841] SELinux: failed to load policy
[   68.554755][ T4848] netlink: 'syz.3.284': attribute type 4 has an invalid length.
[   68.564900][ T4848] netlink: 17 bytes leftover after parsing attributes in process `syz.3.284'.
[   68.767928][ T4860] loop3: detected capacity change from 0 to 1024
[   68.806056][ T4863] loop1: detected capacity change from 0 to 512
[   68.855600][ T4863] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   68.877811][ T4860] SELinux:  Context : is not valid (left unmapped).
[   68.891658][ T4863] EXT4-fs (loop1): 1 truncate cleaned up
[   69.070752][ T4885] netlink: 24 bytes leftover after parsing attributes in process `syz.1.291'.
[   69.107326][ T4885] loop1: detected capacity change from 0 to 512
[   69.116644][ T4891] IPv6: Can't replace route, no match found
[   69.119740][ T4885] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   69.181068][ T4885] EXT4-fs (loop1): 1 truncate cleaned up
[   69.251749][ T4902] program syz.0.296 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   69.500652][ T4928] random: crng reseeded on system resumption
[   70.473484][ T4953] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4953 comm=syz.3.305
[   70.587637][ T4959] loop1: detected capacity change from 0 to 512
[   70.605910][ T4959] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   70.633226][ T4959] EXT4-fs (loop1): 1 truncate cleaned up
[   70.642872][ T4955] loop0: detected capacity change from 0 to 8192
[   70.670945][ T4955] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF
[   70.682208][ T4955] FAT-fs (loop0): Filesystem has been set read-only
[   70.751788][ T4972] netlink: 24 bytes leftover after parsing attributes in process `syz.1.309'.
[   70.788512][ T4972] loop1: detected capacity change from 0 to 512
[   70.811839][ T4972] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   70.825145][ T4972] EXT4-fs (loop1): 1 truncate cleaned up
[   70.907324][   T29] kauditd_printk_skb: 148 callbacks suppressed
[   70.907341][   T29] audit: type=1400 audit(1748131694.277:1218): avc:  denied  { create } for  pid=4989 comm="syz.4.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   70.988313][   T29] audit: type=1400 audit(1748131694.317:1219): avc:  denied  { ioctl } for  pid=4989 comm="syz.4.311" path="socket:[7490]" dev="sockfs" ino=7490 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   71.021858][ T4994] vhci_hcd: invalid port number 15
[   71.027749][ T4994] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   71.093413][   T29] audit: type=1400 audit(1748131694.387:1220): avc:  denied  { prog_load } for  pid=4989 comm="syz.4.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   71.114949][   T29] audit: type=1400 audit(1748131694.387:1221): avc:  denied  { bpf } for  pid=4989 comm="syz.4.311" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   71.139312][   T29] audit: type=1400 audit(1748131694.387:1222): avc:  denied  { perfmon } for  pid=4989 comm="syz.4.311" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   71.165233][   T29] audit: type=1400 audit(1748131694.387:1223): avc:  denied  { prog_run } for  pid=4989 comm="syz.4.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   71.186387][   T29] audit: type=1400 audit(1748131694.387:1224): avc:  denied  { write } for  pid=4989 comm="syz.4.311" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   71.231532][   T29] audit: type=1400 audit(1748131694.417:1225): avc:  denied  { map_create } for  pid=4993 comm="syz.2.312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   71.242000][ T5007] netlink: 'syz.2.316': attribute type 3 has an invalid length.
[   71.253695][   T29] audit: type=1400 audit(1748131694.417:1226): avc:  denied  { map_read map_write } for  pid=4993 comm="syz.2.312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   71.283872][   T29] audit: type=1326 audit(1748131694.417:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4993 comm="syz.2.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   71.324380][ T5009] loop2: detected capacity change from 0 to 2048
[   71.332614][ T5009] ext4: Unknown parameter 'audit'
[   71.373741][ T5009] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   71.408243][ T5009] SELinux: failed to load policy
[   71.479908][ T5019] loop1: detected capacity change from 0 to 512
[   71.490953][ T5019] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   71.547793][ T5019] EXT4-fs (loop1): 1 truncate cleaned up
[   71.562988][ T5019] EXT4-fs mount: 52 callbacks suppressed
[   71.563008][ T5019] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.627817][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.694116][ T5033] netlink: 'syz.2.327': attribute type 3 has an invalid length.
[   71.779690][ T5041] random: crng reseeded on system resumption
[   71.849890][ T5046] bond0: entered promiscuous mode
[   71.856038][ T5046] bond_slave_0: entered promiscuous mode
[   71.863169][ T5046] bond_slave_1: entered promiscuous mode
[   71.941210][ T5051] loop1: detected capacity change from 0 to 512
[   71.959775][ T5037] netlink: 'syz.0.329': attribute type 13 has an invalid length.
[   72.062075][ T5051] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   72.090548][ T5051] EXT4-fs (loop1): 1 truncate cleaned up
[   72.098607][ T5051] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.128479][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.162302][ T5037] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   72.172334][ T5037] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   72.183025][ T5037] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   72.194434][ T5037] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   72.362691][ T5074] loop3: detected capacity change from 0 to 1024
[   72.373296][ T5074] EXT4-fs: Ignoring removed orlov option
[   72.395275][ T5073] loop0: detected capacity change from 0 to 2048
[   72.406137][ T5074] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.462194][ T3309]  loop0: p1 < >
[   72.469136][ T5084] random: crng reseeded on system resumption
[   72.479824][ T5073]  loop0: p1 < >
[   72.586665][ T5073] xt_hashlimit: size too large, truncated to 1048576
[   72.689447][ T5091] loop1: detected capacity change from 0 to 512
[   72.698292][ T5091] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   72.723143][ T5091] EXT4-fs (loop1): 1 truncate cleaned up
[   72.729661][ T5091] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.758778][ T5098] netlink: 'syz.4.351': attribute type 3 has an invalid length.
[   72.870897][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.981298][ T5104] netlink: 24 bytes leftover after parsing attributes in process `syz.2.354'.
[   72.991938][ T5105] loop4: detected capacity change from 0 to 1024
[   73.082591][ T5105] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.151047][ T5107] netlink: 'syz.1.353': attribute type 13 has an invalid length.
[   73.223910][ T5104] loop2: detected capacity change from 0 to 512
[   73.328105][ T5104] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   73.411695][ T5104] EXT4-fs (loop2): 1 truncate cleaned up
[   73.419528][ T5104] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.460404][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.474192][ T5118] FAULT_INJECTION: forcing a failure.
[   73.474192][ T5118] name failslab, interval 1, probability 0, space 0, times 0
[   73.474597][ T5104] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.488343][ T5118] CPU: 1 UID: 0 PID: 5118 Comm: syz.1.358 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(voluntary) 
[   73.488397][ T5118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   73.488416][ T5118] Call Trace:
[   73.488426][ T5118]  <TASK>
[   73.488437][ T5118]  __dump_stack+0x1d/0x30
[   73.488468][ T5118]  dump_stack_lvl+0xe8/0x140
[   73.488494][ T5118]  dump_stack+0x15/0x1b
[   73.488517][ T5118]  should_fail_ex+0x265/0x280
[   73.488627][ T5118]  should_failslab+0x8c/0xb0
[   73.488746][ T5118]  __kmalloc_noprof+0xa5/0x3e0
[   73.488772][ T5118]  ? io_cache_alloc_new+0x2a/0xb0
[   73.488811][ T5118]  io_cache_alloc_new+0x2a/0xb0
[   73.488848][ T5118]  io_send_zc_prep+0x31f/0x840
[   73.488934][ T5118]  io_submit_sqes+0x5ce/0x1000
[   73.488986][ T5118]  __se_sys_io_uring_enter+0x1c1/0x1b70
[   73.489039][ T5118]  ? __rcu_read_unlock+0x4f/0x70
[   73.489069][ T5118]  ? get_pid_task+0x96/0xd0
[   73.489153][ T5118]  ? proc_fail_nth_write+0x12d/0x160
[   73.489189][ T5118]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   73.489226][ T5118]  ? vfs_write+0x75e/0x8d0
[   73.489260][ T5118]  ? __rcu_read_unlock+0x4f/0x70
[   73.489296][ T5118]  ? __fget_files+0x184/0x1c0
[   73.489385][ T5118]  ? fput+0x8f/0xc0
[   73.489519][ T5118]  __x64_sys_io_uring_enter+0x78/0x90
[   73.489563][ T5118]  x64_sys_call+0x28c8/0x2fb0
[   73.489609][ T5118]  do_syscall_64+0xd0/0x1a0
[   73.489642][ T5118]  ? clear_bhb_loop+0x40/0x90
[   73.489746][ T5118]  ? clear_bhb_loop+0x40/0x90
[   73.489776][ T5118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.489804][ T5118] RIP: 0033:0x7fe6d849e969
[   73.489832][ T5118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.489856][ T5118] RSP: 002b:00007fe6d6b07038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   73.489891][ T5118] RAX: ffffffffffffffda RBX: 00007fe6d86c5fa0 RCX: 00007fe6d849e969
[   73.489910][ T5118] RDX: 0000000000000000 RSI: 00000000000047bc RDI: 0000000000000004
[   73.489927][ T5118] RBP: 00007fe6d6b07090 R08: 0000000000000000 R09: 0000000000000000
[   73.490014][ T5118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.490036][ T5118] R13: 0000000000000000 R14: 00007fe6d86c5fa0 R15: 00007fffcc0d96b8
[   73.490060][ T5118]  </TASK>
[   73.557566][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.586581][ T5124] netlink: 'syz.4.359': attribute type 3 has an invalid length.
[   73.893497][ T5129] netlink: 'syz.1.363': attribute type 4 has an invalid length.
[   73.901734][ T5129] netlink: 17 bytes leftover after parsing attributes in process `syz.1.363'.
[   73.921748][ T5134] netlink: 'syz.3.365': attribute type 3 has an invalid length.
[   74.073916][ T5138] loop4: detected capacity change from 0 to 512
[   74.096527][ T5146] loop3: detected capacity change from 0 to 1024
[   74.144269][ T5146] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.236214][ T5138] EXT4-fs (loop4): 1 orphan inode deleted
[   74.247565][ T5159] netlink: 'syz.1.372': attribute type 3 has an invalid length.
[   74.259427][ T5138] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.275758][   T51] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[   74.299424][ T5138] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.380697][ T5170] vhci_hcd: invalid port number 15
[   74.386842][ T5170] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   74.406900][ T5138] EXT4-fs: Ignoring removed orlov option
[   74.417258][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.427165][ T5138] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   74.461582][ T5138] EXT4-fs (loop4): can't enable nombcache during remount
[   74.567835][ T5178] netlink: 24 bytes leftover after parsing attributes in process `syz.1.381'.
[   74.574122][ T5184] netlink: 4 bytes leftover after parsing attributes in process `syz.2.382'.
[   74.593379][ T5184] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   74.596713][ T5178] loop1: detected capacity change from 0 to 512
[   74.604269][ T5184] batman_adv: batadv0: Removing interface: batadv_slave_0
[   74.629575][ T5184] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   74.639976][ T5184] batman_adv: batadv0: Removing interface: batadv_slave_1
[   74.641294][ T5178] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   74.671413][ T5181] netlink: 'syz.3.378': attribute type 3 has an invalid length.
[   74.698716][ T5178] EXT4-fs (loop1): 1 truncate cleaned up
[   74.714430][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.716196][ T5178] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.740703][ T5178] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.740891][ T5191] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   74.781777][ T5191] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   74.954346][ T5203] loop3: detected capacity change from 0 to 512
[   74.984962][ T5203] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   75.047288][ T5203] EXT4-fs (loop3): 1 truncate cleaned up
[   75.055467][ T5203] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.074557][ T5203] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.143888][ T5225] vhci_hcd: invalid port number 15
[   75.149836][ T5225] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   75.574828][ T5251] loop1: detected capacity change from 0 to 512
[   75.667037][ T5267] netlink: 4 bytes leftover after parsing attributes in process `syz.4.397'.
[   75.676670][ T5251] EXT4-fs (loop1): 1 orphan inode deleted
[   75.677119][ T5251] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.699145][   T12] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[   75.712096][ T5251] ext4 filesystem being mounted at /82/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.829518][ T5251] EXT4-fs: Ignoring removed orlov option
[   75.863673][ T5251] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   75.896380][ T5251] EXT4-fs (loop1): can't enable nombcache during remount
[   75.923209][   T29] kauditd_printk_skb: 363 callbacks suppressed
[   75.923228][   T29] audit: type=1400 audit(1748131699.297:1589): avc:  denied  { read write } for  pid=3321 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   75.958813][   T29] audit: type=1400 audit(1748131699.297:1590): avc:  denied  { open } for  pid=3321 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   75.986558][   T29] audit: type=1400 audit(1748131699.297:1591): avc:  denied  { ioctl } for  pid=3321 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   76.039634][   T29] audit: type=1400 audit(1748131699.347:1592): avc:  denied  { map_create } for  pid=5282 comm="syz.3.400" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   76.061780][   T29] audit: type=1400 audit(1748131699.347:1593): avc:  denied  { bpf } for  pid=5282 comm="syz.3.400" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   76.084479][   T29] audit: type=1400 audit(1748131699.347:1594): avc:  denied  { map_read map_write } for  pid=5282 comm="syz.3.400" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   76.107306][   T29] audit: type=1400 audit(1748131699.347:1595): avc:  denied  { prog_load } for  pid=5282 comm="syz.3.400" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   76.130849][   T29] audit: type=1400 audit(1748131699.347:1596): avc:  denied  { perfmon } for  pid=5282 comm="syz.3.400" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   76.153704][   T29] audit: type=1326 audit(1748131699.347:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.3.400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee355ee969 code=0x7ffc0000
[   76.180991][   T29] audit: type=1326 audit(1748131699.347:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.3.400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee355ee969 code=0x7ffc0000
[   76.336277][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.436434][ T5313] random: crng reseeded on system resumption
[   76.698922][ T5341] loop2: detected capacity change from 0 to 1024
[   76.726199][ T5341] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.841476][ T3330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.150084][ T5390] program syz.2.421 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   77.259133][ T5398] random: crng reseeded on system resumption
[   77.676649][ T5424] netlink: 4 bytes leftover after parsing attributes in process `syz.4.425'.
[   77.772386][ T5431] vhci_hcd: invalid port number 15
[   77.772403][ T5431] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   77.871245][ T5442] random: crng reseeded on system resumption
[   77.994354][ T5449] netlink: 'syz.3.438': attribute type 3 has an invalid length.
[   78.040520][ T5447] netlink: 'syz.0.437': attribute type 4 has an invalid length.
[   78.050364][ T5447] netlink: 17 bytes leftover after parsing attributes in process `syz.0.437'.
[   78.080843][ T5453] netlink: 4 bytes leftover after parsing attributes in process `syz.2.439'.
[   78.188418][ T5468] vhci_hcd: invalid port number 15
[   78.194093][ T5468] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   78.310044][ T5479] netlink: 'syz.3.450': attribute type 3 has an invalid length.
[   78.351935][ T5481] random: crng reseeded on system resumption
[   78.363998][ T5484] netlink: 'syz.3.452': attribute type 3 has an invalid length.
[   78.419406][ T5486] netlink: 4 bytes leftover after parsing attributes in process `syz.2.453'.
[   78.570434][ T5505] vhci_hcd: invalid port number 15
[   78.576995][ T5505] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   78.587821][ T5508] loop1: detected capacity change from 0 to 512
[   78.601169][ T5509] netlink: 'syz.3.462': attribute type 3 has an invalid length.
[   78.611795][ T5508] ext4: Unknown parameter 'fsname'
[   78.960374][ T5536] vhci_hcd: invalid port number 15
[   78.964247][ T5537] netlink: 'syz.3.474': attribute type 3 has an invalid length.
[   78.966255][ T5536] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   79.449945][ T5560] loop2: detected capacity change from 0 to 256
[   79.497396][ T5560] FAULT_INJECTION: forcing a failure.
[   79.497396][ T5560] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   79.514964][ T5560] CPU: 0 UID: 0 PID: 5560 Comm: syz.2.482 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(voluntary) 
[   79.515031][ T5560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   79.515046][ T5560] Call Trace:
[   79.515056][ T5560]  <TASK>
[   79.515066][ T5560]  __dump_stack+0x1d/0x30
[   79.515094][ T5560]  dump_stack_lvl+0xe8/0x140
[   79.515120][ T5560]  dump_stack+0x15/0x1b
[   79.515143][ T5560]  should_fail_ex+0x265/0x280
[   79.515242][ T5560]  should_fail+0xb/0x20
[   79.515277][ T5560]  should_fail_usercopy+0x1a/0x20
[   79.515301][ T5560]  strncpy_from_user+0x25/0x230
[   79.515339][ T5560]  ? kmem_cache_alloc_noprof+0x186/0x310
[   79.515375][ T5560]  ? getname_flags+0x80/0x3b0
[   79.515455][ T5560]  getname_flags+0xae/0x3b0
[   79.515499][ T5560]  user_path_at+0x28/0x130
[   79.515528][ T5560]  user_statfs+0x4d/0x110
[   79.515565][ T5560]  __x64_sys_statfs+0x65/0xf0
[   79.515665][ T5560]  ? fput+0x8f/0xc0
[   79.515690][ T5560]  ? ksys_write+0x16e/0x1a0
[   79.515727][ T5560]  ? fpregs_assert_state_consistent+0x84/0xa0
[   79.515766][ T5560]  x64_sys_call+0x1edd/0x2fb0
[   79.515905][ T5560]  do_syscall_64+0xd0/0x1a0
[   79.515943][ T5560]  ? clear_bhb_loop+0x40/0x90
[   79.515968][ T5560]  ? clear_bhb_loop+0x40/0x90
[   79.515999][ T5560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.516103][ T5560] RIP: 0033:0x7f51555de969
[   79.516123][ T5560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.516148][ T5560] RSP: 002b:00007f5153c47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000089
[   79.516173][ T5560] RAX: ffffffffffffffda RBX: 00007f5155805fa0 RCX: 00007f51555de969
[   79.516190][ T5560] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000200000000440
[   79.516207][ T5560] RBP: 00007f5153c47090 R08: 0000000000000000 R09: 0000000000000000
[   79.516225][ T5560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.516360][ T5560] R13: 0000000000000000 R14: 00007f5155805fa0 R15: 00007ffff0aa5028
[   79.516392][ T5560]  </TASK>
[   79.860939][ T5568] netlink: 'syz.2.486': attribute type 3 has an invalid length.
[   79.965727][ T5574] netlink: 'syz.1.489': attribute type 3 has an invalid length.
[   79.986619][ T5572] loop2: detected capacity change from 0 to 512
[   80.014962][ T5572] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   80.041460][ T5580] loop3: detected capacity change from 0 to 512
[   80.058388][ T5572] EXT4-fs (loop2): 1 truncate cleaned up
[   80.065589][ T5572] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.079546][ T5580] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   80.085045][ T5572] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.117563][ T5586] netlink: 'syz.4.493': attribute type 3 has an invalid length.
[   80.122822][ T5580] EXT4-fs (loop3): 1 truncate cleaned up
[   80.156051][ T5580] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.210616][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.230027][ T5590] netlink: 'syz.0.495': attribute type 3 has an invalid length.
[   80.458573][ T5617] IPv6: Can't replace route, no match found
[   80.495866][ T5620] netlink: 60 bytes leftover after parsing attributes in process `syz.0.506'.
[   80.517195][ T5617] syzkaller0: entered promiscuous mode
[   80.524049][ T5617] syzkaller0: entered allmulticast mode
[   80.540293][ T5620] netlink: 4 bytes leftover after parsing attributes in process `syz.0.506'.
[   80.774889][ T5637] FAULT_INJECTION: forcing a failure.
[   80.774889][ T5637] name failslab, interval 1, probability 0, space 0, times 0
[   80.789698][ T5637] CPU: 1 UID: 0 PID: 5637 Comm: syz.2.515 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(voluntary) 
[   80.789739][ T5637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   80.789802][ T5637] Call Trace:
[   80.789808][ T5637]  <TASK>
[   80.789816][ T5637]  __dump_stack+0x1d/0x30
[   80.789842][ T5637]  dump_stack_lvl+0xe8/0x140
[   80.789869][ T5637]  dump_stack+0x15/0x1b
[   80.789894][ T5637]  should_fail_ex+0x265/0x280
[   80.790005][ T5637]  should_failslab+0x8c/0xb0
[   80.790090][ T5637]  kmem_cache_alloc_node_noprof+0x57/0x320
[   80.790116][ T5637]  ? perf_event_alloc+0x152/0x15c0
[   80.790154][ T5637]  perf_event_alloc+0x152/0x15c0
[   80.790243][ T5637]  ? __fget_files+0x184/0x1c0
[   80.790279][ T5637]  __se_sys_perf_event_open+0x4e1/0x1170
[   80.790349][ T5637]  ? __rcu_read_unlock+0x4f/0x70
[   80.790393][ T5637]  __x64_sys_perf_event_open+0x67/0x80
[   80.790434][ T5637]  x64_sys_call+0x27ec/0x2fb0
[   80.790515][ T5637]  do_syscall_64+0xd0/0x1a0
[   80.790549][ T5637]  ? clear_bhb_loop+0x40/0x90
[   80.790575][ T5637]  ? clear_bhb_loop+0x40/0x90
[   80.790653][ T5637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.790698][ T5637] RIP: 0033:0x7f51555de969
[   80.790719][ T5637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.790745][ T5637] RSP: 002b:00007f5153c47038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[   80.790771][ T5637] RAX: ffffffffffffffda RBX: 00007f5155805fa0 RCX: 00007f51555de969
[   80.790801][ T5637] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000340
[   80.790818][ T5637] RBP: 00007f5153c47090 R08: 0000000000000001 R09: 0000000000000000
[   80.790835][ T5637] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[   80.790852][ T5637] R13: 0000000000000000 R14: 00007f5155805fa0 R15: 00007ffff0aa5028
[   80.790880][ T5637]  </TASK>
[   81.004420][ T5640] loop3: detected capacity change from 0 to 1024
[   81.012679][ T5640] EXT4-fs: Ignoring removed orlov option
[   81.021715][ T5640] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.024506][ T5643] random: crng reseeded on system resumption
[   81.072168][   T29] kauditd_printk_skb: 321 callbacks suppressed
[   81.072186][   T29] audit: type=1400 audit(1748131704.427:1920): avc:  denied  { write } for  pid=5638 comm="syz.3.516" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   81.104565][   T29] audit: type=1400 audit(1748131704.427:1921): avc:  denied  { add_name } for  pid=5638 comm="syz.3.516" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   81.129674][   T29] audit: type=1400 audit(1748131704.427:1922): avc:  denied  { create } for  pid=5638 comm="syz.3.516" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   81.152745][   T29] audit: type=1400 audit(1748131704.427:1923): avc:  denied  { read open } for  pid=5638 comm="syz.3.516" path="/118/bus/bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   81.181688][   T29] audit: type=1400 audit(1748131704.427:1924): avc:  denied  { write } for  pid=5638 comm="syz.3.516" name="bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   81.213330][   T29] audit: type=1326 audit(1748131704.497:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5641 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   81.239889][   T29] audit: type=1326 audit(1748131704.497:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5641 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   81.265280][   T29] audit: type=1326 audit(1748131704.497:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5641 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   81.309312][ T5648] netlink: 17 bytes leftover after parsing attributes in process `syz.4.520'.
[   81.319647][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.351816][ T5650] loop2: detected capacity change from 0 to 1024
[   81.400656][ T5650] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.431450][ T5657] loop1: detected capacity change from 0 to 256
[   81.454866][   T29] audit: type=1400 audit(1748131704.827:1928): avc:  denied  { append } for  pid=5649 comm="syz.2.521" path="/99/file0/rdma.current" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   81.481481][   T29] audit: type=1400 audit(1748131704.827:1929): avc:  denied  { mount } for  pid=5649 comm="syz.2.521" name="/" dev="configfs" ino=183 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   81.639489][ T3330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.659023][ T5668] netlink: 4 bytes leftover after parsing attributes in process `syz.1.526'.
[   81.669327][ T5668] batman_adv: batadv0: Removing interface: batadv_slave_0
[   81.683713][ T5668] batman_adv: batadv0: Removing interface: batadv_slave_1
[   81.755200][ T5674] random: crng reseeded on system resumption
[   81.917037][ T5685] loop2: detected capacity change from 0 to 512
[   81.918837][ T5687] netlink: 17 bytes leftover after parsing attributes in process `syz.1.534'.
[   81.940175][ T5685] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   81.959314][ T5685] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[   81.970250][ T5685] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec02c, mo2=0002]
[   81.979664][ T5685] System zones: 0-2, 18-18, 34-34
[   81.986100][ T5685] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   82.003142][ T5685] EXT4-fs (loop2): 1 truncate cleaned up
[   82.010151][ T5685] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.040884][ T3330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.081489][ T5697] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   82.120798][ T5701] capability: warning: `syz.2.536' uses deprecated v2 capabilities in a way that may be insecure
[   82.130916][ T5703] netlink: 8 bytes leftover after parsing attributes in process `syz.3.540'.
[   82.143949][ T5703] netlink: 8 bytes leftover after parsing attributes in process `syz.3.540'.
[   82.227547][ T5712] loop1: detected capacity change from 0 to 128
[   82.435029][ T5718] loop2: detected capacity change from 0 to 1024
[   82.449046][ T5718] EXT4-fs: inline encryption not supported
[   82.487015][ T5718] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.501073][ T5724] loop4: detected capacity change from 0 to 2048
[   82.501278][ T5718] ext4 filesystem being mounted at /107/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.509152][ T5724] ext4: Unknown parameter 'audit'
[   82.539979][ T5718] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.543: bg 0: block 393: padding at end of block bitmap is not set
[   82.578527][ T5724] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   82.578569][ T5724] SELinux: failed to load policy
[   82.619026][ T3330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.784388][ T5740] random: crng reseeded on system resumption
[   82.921030][ T5748] loop4: detected capacity change from 0 to 2048
[   82.929000][ T5748] ext4: Unknown parameter 'audit'
[   83.044951][ T5755] binfmt_misc: register: failed to install interpreter file ./file2
[   83.057008][ T5752] FAULT_INJECTION: forcing a failure.
[   83.057008][ T5752] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.071520][ T5752] CPU: 1 UID: 0 PID: 5752 Comm: syz.0.556 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(voluntary) 
[   83.071581][ T5752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   83.071598][ T5752] Call Trace:
[   83.071669][ T5752]  <TASK>
[   83.071683][ T5752]  __dump_stack+0x1d/0x30
[   83.071719][ T5752]  dump_stack_lvl+0xe8/0x140
[   83.071747][ T5752]  dump_stack+0x15/0x1b
[   83.071770][ T5752]  should_fail_ex+0x265/0x280
[   83.071814][ T5752]  should_fail+0xb/0x20
[   83.071900][ T5752]  should_fail_usercopy+0x1a/0x20
[   83.071926][ T5752]  _copy_to_user+0x20/0xa0
[   83.071951][ T5752]  simple_read_from_buffer+0xb5/0x130
[   83.071986][ T5752]  proc_fail_nth_read+0x100/0x140
[   83.072025][ T5752]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   83.072065][ T5752]  vfs_read+0x19d/0x6f0
[   83.072098][ T5752]  ? __rcu_read_unlock+0x4f/0x70
[   83.072202][ T5752]  ? __rcu_read_unlock+0x4f/0x70
[   83.072238][ T5752]  ? __fget_files+0x184/0x1c0
[   83.072309][ T5752]  ksys_read+0xda/0x1a0
[   83.072352][ T5752]  __x64_sys_read+0x40/0x50
[   83.072388][ T5752]  x64_sys_call+0x2d77/0x2fb0
[   83.072454][ T5752]  do_syscall_64+0xd0/0x1a0
[   83.072560][ T5752]  ? clear_bhb_loop+0x40/0x90
[   83.072582][ T5752]  ? clear_bhb_loop+0x40/0x90
[   83.072618][ T5752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.072684][ T5752] RIP: 0033:0x7ff6f19cd37c
[   83.072705][ T5752] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   83.072729][ T5752] RSP: 002b:00007ff6f0037030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   83.072765][ T5752] RAX: ffffffffffffffda RBX: 00007ff6f1bf5fa0 RCX: 00007ff6f19cd37c
[   83.072782][ T5752] RDX: 000000000000000f RSI: 00007ff6f00370a0 RDI: 0000000000000007
[   83.072794][ T5752] RBP: 00007ff6f0037090 R08: 0000000000000000 R09: 0000000000000000
[   83.072806][ T5752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.072817][ T5752] R13: 0000000000000000 R14: 00007ff6f1bf5fa0 R15: 00007ffcc41138b8
[   83.072866][ T5752]  </TASK>
[   83.280464][ T5754] loop3: detected capacity change from 0 to 512
[   83.374743][ T5762] loop3: detected capacity change from 0 to 512
[   83.377091][ T5748] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   83.395896][ T5748] SELinux: failed to load policy
[   83.410079][ T5762] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   83.453556][ T5762] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[   83.470531][ T5762] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec02c, mo2=0002]
[   83.481805][ T5762] System zones: 0-2, 18-18, 34-34
[   83.488502][ T5762] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   83.505802][ T5762] EXT4-fs (loop3): 1 truncate cleaned up
[   83.512695][ T5762] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.541510][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.710100][ T5785] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   83.834948][ T5787] loop2: detected capacity change from 0 to 128
[   84.414789][ T5791] __nla_validate_parse: 1 callbacks suppressed
[   84.414812][ T5791] netlink: 4 bytes leftover after parsing attributes in process `syz.4.571'.
[   84.479159][ T5799] loop0: detected capacity change from 0 to 1024
[   84.486485][ T5799] EXT4-fs: Ignoring removed orlov option
[   84.508663][ T5799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.531192][ T5803] loop4: detected capacity change from 0 to 2048
[   84.540131][ T5803] ext4: Unknown parameter 'audit'
[   84.582507][ T5803] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   84.594686][ T5803] SELinux: failed to load policy
[   84.594956][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.699083][ T5813] loop4: detected capacity change from 0 to 1024
[   84.728642][ T5813] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.780454][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.193770][ T5834] loop4: detected capacity change from 0 to 1024
[   85.213473][ T5834] EXT4-fs: Ignoring removed orlov option
[   85.228192][ T5836] loop1: detected capacity change from 0 to 2048
[   85.237448][ T5836] ext4: Unknown parameter 'audit'
[   85.283500][ T5834] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.299705][ T5836] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   85.313053][ T5836] SELinux: failed to load policy
[   85.336838][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.351166][ T5839] random: crng reseeded on system resumption
[   85.503636][ T5842] FAULT_INJECTION: forcing a failure.
[   85.503636][ T5842] name failslab, interval 1, probability 0, space 0, times 0
[   85.520217][ T5842] CPU: 1 UID: 0 PID: 5842 Comm: syz.4.590 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(voluntary) 
[   85.520300][ T5842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   85.520316][ T5842] Call Trace:
[   85.520324][ T5842]  <TASK>
[   85.520334][ T5842]  __dump_stack+0x1d/0x30
[   85.520430][ T5842]  dump_stack_lvl+0xe8/0x140
[   85.520455][ T5842]  dump_stack+0x15/0x1b
[   85.520475][ T5842]  should_fail_ex+0x265/0x280
[   85.520518][ T5842]  should_failslab+0x8c/0xb0
[   85.520558][ T5842]  kmem_cache_alloc_node_noprof+0x57/0x320
[   85.520629][ T5842]  ? __alloc_skb+0x101/0x320
[   85.521274][ T5842]  __alloc_skb+0x101/0x320
[   85.521317][ T5842]  netlink_alloc_large_skb+0xba/0xf0
[   85.521397][ T5842]  netlink_sendmsg+0x3cf/0x6b0
[   85.521424][ T5842]  ? __pfx_netlink_sendmsg+0x10/0x10
[   85.521479][ T5842]  __sock_sendmsg+0x142/0x180
[   85.521515][ T5842]  ____sys_sendmsg+0x31e/0x4e0
[   85.521545][ T5842]  ___sys_sendmsg+0x17b/0x1d0
[   85.521592][ T5842]  __x64_sys_sendmsg+0xd4/0x160
[   85.521644][ T5842]  x64_sys_call+0x2999/0x2fb0
[   85.521728][ T5842]  do_syscall_64+0xd0/0x1a0
[   85.521758][ T5842]  ? clear_bhb_loop+0x40/0x90
[   85.521785][ T5842]  ? clear_bhb_loop+0x40/0x90
[   85.521881][ T5842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.521993][ T5842] RIP: 0033:0x7f091862e969
[   85.522045][ T5842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.522065][ T5842] RSP: 002b:00007f0916c97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   85.522105][ T5842] RAX: ffffffffffffffda RBX: 00007f0918855fa0 RCX: 00007f091862e969
[   85.522120][ T5842] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000006
[   85.522136][ T5842] RBP: 00007f0916c97090 R08: 0000000000000000 R09: 0000000000000000
[   85.522151][ T5842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.522166][ T5842] R13: 0000000000000000 R14: 00007f0918855fa0 R15: 00007ffcf8bd7fb8
[   85.522191][ T5842]  </TASK>
[   85.870519][ T5849] random: crng reseeded on system resumption
[   86.077128][ T5857] loop1: detected capacity change from 0 to 512
[   86.093879][ T5859] netlink: 24 bytes leftover after parsing attributes in process `syz.0.597'.
[   86.104743][ T5857] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   86.140459][ T5859] loop0: detected capacity change from 0 to 512
[   86.158457][ T5859] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   86.172594][ T5857] EXT4-fs (loop1): 1 truncate cleaned up
[   86.182872][ T5857] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.203522][ T5859] EXT4-fs (loop0): 1 truncate cleaned up
[   86.210557][ T5857] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.210667][ T5859] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.256445][ T5859] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.271582][ T5865] vhci_hcd: invalid port number 15
[   86.278560][ T5865] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   86.370787][ T5867] loop4: detected capacity change from 0 to 2048
[   86.394385][ T5867] ext4: Unknown parameter 'audit'
[   86.464846][ T5867] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   86.480276][ T5867] SELinux: failed to load policy
[   86.550817][ T5875] ±ÿ: renamed from bond_slave_0
[   86.615915][ T5880] loop4: detected capacity change from 0 to 1024
[   86.641287][ T5880] EXT4-fs: Ignoring removed orlov option
[   86.657900][ T5880] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.735946][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.767053][   T29] kauditd_printk_skb: 76 callbacks suppressed
[   86.767072][   T29] audit: type=1400 audit(1748131710.137:2006): avc:  denied  { setopt } for  pid=5886 comm="syz.4.606" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   86.801516][ T5888] loop2: detected capacity change from 0 to 1024
[   86.813806][   T29] audit: type=1400 audit(1748131710.137:2007): avc:  denied  { write } for  pid=5886 comm="syz.4.606" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   86.836520][   T29] audit: type=1400 audit(1748131710.147:2008): avc:  denied  { connect } for  pid=5886 comm="syz.4.606" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   86.903083][ T5888] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.958145][ T3330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.984211][   T29] audit: type=1326 audit(1748131710.357:2009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5897 comm="syz.0.614" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff6f19ce969 code=0x0
[   87.057199][ T5904] loop1: detected capacity change from 0 to 1024
[   87.069967][   T29] audit: type=1326 audit(1748131710.437:2010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5906 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   87.106844][   T29] audit: type=1326 audit(1748131710.437:2011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5906 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   87.135496][   T29] audit: type=1326 audit(1748131710.437:2012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5906 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   87.165138][   T29] audit: type=1326 audit(1748131710.437:2013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5906 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   87.194811][   T29] audit: type=1326 audit(1748131710.467:2014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5906 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   87.221740][   T29] audit: type=1326 audit(1748131710.467:2015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5906 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   87.256861][ T5911] loop2: detected capacity change from 0 to 1024
[   87.268861][ T5911] EXT4-fs: Ignoring removed orlov option
[   87.272965][ T5904] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.312518][ T5911] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.331585][ T5922] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.348588][ T5921] loop3: detected capacity change from 0 to 512
[   87.353759][ T5922] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   87.362608][ T5921] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   87.386613][ T5921] EXT4-fs (loop3): 1 truncate cleaned up
[   87.386729][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.398596][ T5921] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.417249][ T5921] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.452309][ T3330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.710189][ T5941] loop2: detected capacity change from 0 to 512
[   87.718320][ T5941] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   87.772559][ T5941] EXT4-fs (loop2): 1 truncate cleaned up
[   87.805252][ T5941] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.826911][ T5941] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.909533][ T5966] loop1: detected capacity change from 0 to 2048
[   87.962553][ T5966] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.047332][ T5979] loop0: detected capacity change from 0 to 2048
[   88.085471][ T5979] ext4: Unknown parameter 'audit'
[   88.133234][ T5966] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[   88.140675][ T5966] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   88.149333][ T5966] vhci_hcd vhci_hcd.0: Device attached
[   88.153632][ T5994] netlink: 24 bytes leftover after parsing attributes in process `syz.3.631'.
[   88.200216][ T5994] loop3: detected capacity change from 0 to 512
[   88.213081][ T5979] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   88.222960][ T5994] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   88.253587][ T5994] EXT4-fs (loop3): 1 truncate cleaned up
[   88.261785][ T5979] SELinux: failed to load policy
[   88.262377][ T5994] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.288474][ T5994] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.432138][ T3395] usb 4-1: SetAddress Request (2) to port 0
[   88.438641][ T3395] usb 4-1: new SuperSpeed USB device number 2 using vhci_hcd
[   88.532619][ T6023] random: crng reseeded on system resumption
[   88.728847][ T6034] loop0: detected capacity change from 0 to 512
[   88.762601][ T6034] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   88.788940][ T6039] IPv6: Can't replace route, no match found
[   88.808297][ T6034] EXT4-fs (loop0): 1 truncate cleaned up
[   88.822509][ T5991] vhci_hcd: connection reset by peer
[   88.822662][ T6034] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.862551][   T69] vhci_hcd: stop threads
[   88.867269][   T69] vhci_hcd: release socket
[   88.873112][   T69] vhci_hcd: disconnect device
[   88.888779][ T6039] syzkaller0: entered promiscuous mode
[   88.895245][ T6039] syzkaller0: entered allmulticast mode
[   89.072190][ T6066] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   89.090171][ T6066] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   89.353579][ T6094] loop3: detected capacity change from 0 to 2048
[   89.367500][ T6094] ext4: Unknown parameter 'audit'
[   89.387963][ T6094] geneve1: entered allmulticast mode
[   89.432770][ T1832] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   89.450288][ T1832] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   89.450322][ T1832] EXT4-fs (loop1): This should not happen!! Data will be lost
[   89.450322][ T1832] 
[   89.450339][ T1832] EXT4-fs (loop1): Total free blocks count 0
[   89.450356][ T1832] EXT4-fs (loop1): Free/Dirty block details
[   89.450371][ T1832] EXT4-fs (loop1): free_blocks=2415919504
[   89.450424][ T1832] EXT4-fs (loop1): dirty_blocks=13296
[   89.450439][ T1832] EXT4-fs (loop1): Block reservation details
[   89.450452][ T1832] EXT4-fs (loop1): i_reserved_data_blocks=831
[   89.470228][ T6094] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   89.470311][ T6094] SELinux: failed to load policy
[   89.470914][ T1832] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   90.334942][ T6114] loop2: detected capacity change from 0 to 1024
[   90.478912][ T6118] syzkaller0: entered promiscuous mode
[   90.484781][ T6118] syzkaller0: entered allmulticast mode
[   90.592469][ T6134] loop3: detected capacity change from 0 to 512
[   90.601429][ T6134] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   91.384426][ T6162] IPv6: Can't replace route, no match found
[   91.410121][ T6162] syzkaller0: entered promiscuous mode
[   91.416039][ T6162] syzkaller0: entered allmulticast mode
[   91.598655][ T6170] validate_nla: 6 callbacks suppressed
[   91.598673][ T6170] netlink: 'syz.2.668': attribute type 3 has an invalid length.
[   91.732756][ T6175] SELinux: syz.2.672 (6175) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   91.870207][ T6180] vhci_hcd: invalid port number 15
[   91.875807][ T6180] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   91.941243][ T6187] netlink: 8 bytes leftover after parsing attributes in process `syz.2.674'.
[   91.951849][ T6187] tipc: Started in network mode
[   91.957096][ T6187] tipc: Node identity ac14140f, cluster identity 4711
[   91.965812][ T6187] tipc: New replicast peer: 255.255.255.255
[   91.973120][ T6187] tipc: Enabled bearer <udp:syz2>, priority 10
[   91.990455][   T29] kauditd_printk_skb: 58 callbacks suppressed
[   91.990475][   T29] audit: type=1400 audit(1748131715.357:2074): avc:  denied  { append } for  pid=6173 comm="syz.3.670" name="vsock" dev="devtmpfs" ino=257 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   92.053854][ T6189] IPv6: Can't replace route, no match found
[   92.093247][ T6189] syzkaller0: entered promiscuous mode
[   92.099446][ T6189] syzkaller0: entered allmulticast mode
[   92.184921][ T6202] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   92.212242][ T6202] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   92.235994][   T29] audit: type=1400 audit(1748131715.587:2075): avc:  denied  { read append } for  pid=6198 comm="syz.1.679" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   92.261963][   T29] audit: type=1400 audit(1748131715.597:2076): avc:  denied  { open } for  pid=6198 comm="syz.1.679" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   92.288199][   T29] audit: type=1400 audit(1748131715.597:2077): avc:  denied  { ioctl } for  pid=6198 comm="syz.1.679" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   92.382082][   T29] audit: type=1400 audit(1748131715.747:2078): avc:  denied  { create } for  pid=6208 comm="gtp" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   92.404322][   T29] audit: type=1400 audit(1748131715.747:2079): avc:  denied  { bind } for  pid=6208 comm="gtp" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   92.424659][   T29] audit: type=1400 audit(1748131715.747:2080): avc:  denied  { name_bind } for  pid=6208 comm="gtp" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   92.445902][   T29] audit: type=1400 audit(1748131715.747:2081): avc:  denied  { node_bind } for  pid=6208 comm="gtp" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[   92.467256][   T29] audit: type=1400 audit(1748131715.747:2082): avc:  denied  { listen } for  pid=6208 comm="gtp" lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   92.487759][   T29] audit: type=1400 audit(1748131715.747:2083): avc:  denied  { connect } for  pid=6208 comm="gtp" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   92.628470][ T6239] loop2: detected capacity change from 0 to 1024
[   92.647515][ T6244] 9pnet_fd: Insufficient options for proto=fd
[   92.666798][ T6244] loop3: detected capacity change from 0 to 1024
[   92.675842][ T6244] EXT4-fs: Ignoring removed orlov option
[   92.720933][ T6239] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.733754][ T6239] FAULT_INJECTION: forcing a failure.
[   92.733754][ T6239] name failslab, interval 1, probability 0, space 0, times 0
[   92.747661][ T6239] CPU: 0 UID: 0 PID: 6239 Comm: syz.2.685 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(voluntary) 
[   92.747916][ T6239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   92.747933][ T6239] Call Trace:
[   92.747941][ T6239]  <TASK>
[   92.747951][ T6239]  __dump_stack+0x1d/0x30
[   92.747978][ T6239]  dump_stack_lvl+0xe8/0x140
[   92.748003][ T6239]  dump_stack+0x15/0x1b
[   92.748069][ T6239]  should_fail_ex+0x265/0x280
[   92.748119][ T6239]  should_failslab+0x8c/0xb0
[   92.748159][ T6239]  __kmalloc_noprof+0xa5/0x3e0
[   92.748183][ T6239]  ? ext4_find_extent+0x16b/0x7a0
[   92.748246][ T6239]  ext4_find_extent+0x16b/0x7a0
[   92.748275][ T6239]  ext4_ext_map_blocks+0x115/0x3620
[   92.748325][ T6239]  ? __refill_stock+0x96/0xd0
[   92.748361][ T6239]  ? refill_stock+0xa0/0x120
[   92.748393][ T6239]  ? cgroup_rstat_updated+0xa3/0x510
[   92.748551][ T6239]  ? try_charge_memcg+0x736/0x870
[   92.748631][ T6239]  ? xas_load+0x413/0x430
[   92.748657][ T6239]  ? invalidate_inode_pages2_range+0x397/0x3d0
[   92.748701][ T6239]  ? __rcu_read_unlock+0x4f/0x70
[   92.748769][ T6239]  ext4_map_query_blocks+0x71/0x170
[   92.748812][ T6239]  ext4_map_blocks+0x24c/0xd00
[   92.748846][ T6239]  ? __rcu_read_unlock+0x4f/0x70
[   92.748904][ T6239]  ? __ext4_journal_start_sb+0x131/0x300
[   92.748977][ T6239]  ext4_iomap_begin+0x498/0x5d0
[   92.749141][ T6239]  ? __pfx_ext4_iomap_begin+0x10/0x10
[   92.749178][ T6239]  iomap_iter+0x335/0x730
[   92.749200][ T6239]  ? should_failslab+0x8c/0xb0
[   92.749367][ T6239]  __iomap_dio_rw+0x708/0x1250
[   92.749498][ T6239]  ? ext4_journal_check_start+0x11a/0x1b0
[   92.749526][ T6239]  iomap_dio_rw+0x40/0x90
[   92.749555][ T6239]  ext4_file_write_iter+0xad9/0xf00
[   92.749603][ T6239]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   92.749716][ T6239]  vfs_write+0x4a0/0x8d0
[   92.749756][ T6239]  ksys_write+0xda/0x1a0
[   92.749790][ T6239]  __x64_sys_write+0x40/0x50
[   92.749850][ T6239]  x64_sys_call+0x2cdd/0x2fb0
[   92.749904][ T6239]  do_syscall_64+0xd0/0x1a0
[   92.749936][ T6239]  ? clear_bhb_loop+0x40/0x90
[   92.750005][ T6239]  ? clear_bhb_loop+0x40/0x90
[   92.750032][ T6239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.750096][ T6239] RIP: 0033:0x7f51555de969
[   92.750116][ T6239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.750137][ T6239] RSP: 002b:00007f5153c47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   92.750161][ T6239] RAX: ffffffffffffffda RBX: 00007f5155805fa0 RCX: 00007f51555de969
[   92.750177][ T6239] RDX: 0000000000032600 RSI: 0000200000000380 RDI: 0000000000000006
[   92.750193][ T6239] RBP: 00007f5153c47090 R08: 0000000000000000 R09: 0000000000000000
[   92.750229][ T6239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.750245][ T6239] R13: 0000000000000000 R14: 00007f5155805fa0 R15: 00007ffff0aa5028
[   92.750269][ T6239]  </TASK>
[   93.070116][ T6239] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.685: bg 0: block 393: padding at end of block bitmap is not set
[   93.085554][ T6239] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 186 with error 117
[   93.098716][ T6239] EXT4-fs (loop2): This should not happen!! Data will be lost
[   93.098716][ T6239] 
[   93.278636][ T6284] IPv6: Can't replace route, no match found
[   93.339205][ T6284] syzkaller0: entered promiscuous mode
[   93.346061][ T6284] syzkaller0: entered allmulticast mode
[   93.479500][ T1039] tipc: Node number set to 2886997007
[   93.542169][ T3395] usb 4-1: device descriptor read/8, error -110
[   93.580291][ T6301] bond1: entered promiscuous mode
[   93.585980][ T6301] bond1: entered allmulticast mode
[   93.592933][ T6301] 8021q: adding VLAN 0 to HW filter on device bond1
[   93.608142][ T6301] bond1 (unregistering): Released all slaves
[   93.627063][ T6308] netlink: 'syz.3.693': attribute type 4 has an invalid length.
[   93.636400][ T6308] netlink: 17 bytes leftover after parsing attributes in process `syz.3.693'.
[   93.662316][ T3395] usb 4-1: new SuperSpeed USB device number 2 using vhci_hcd
[   93.682215][ T3395] usb 4-1: enqueue for inactive port 0
[   93.694868][ T3395] usb 4-1: enqueue for inactive port 0
[   93.706948][ T3395] usb 4-1: enqueue for inactive port 0
[   93.760659][ T6323] netlink: 24 bytes leftover after parsing attributes in process `syz.4.694'.
[   93.801074][ T6323] loop4: detected capacity change from 0 to 512
[   93.818317][ T6323] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   93.846963][ T6323] EXT4-fs (loop4): 1 truncate cleaned up
[   94.128899][ T6372] loop4: detected capacity change from 0 to 1024
[   94.164244][ T6372] ext4 filesystem being mounted at /150/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.178602][ T6372] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.700: bg 0: block 393: padding at end of block bitmap is not set
[   94.194596][ T6372] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   94.336149][ T6382] netlink: 12 bytes leftover after parsing attributes in process `syz.4.702'.
[   94.480283][ T6384] bond1: entered promiscuous mode
[   94.486015][ T6384] bond1: entered allmulticast mode
[   94.492206][ T6384] 8021q: adding VLAN 0 to HW filter on device bond1
[   94.504345][ T6384] bond1 (unregistering): Released all slaves
[   94.705596][ T6399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.711246][ T6401] netlink: 4 bytes leftover after parsing attributes in process `syz.2.705'.
[   94.729409][ T6399] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.742737][ T3395] usb usb4-port1: attempt power cycle
[   94.828153][ T6410] netlink: 'syz.3.708': attribute type 4 has an invalid length.
[   94.837145][ T6410] netlink: 17 bytes leftover after parsing attributes in process `syz.3.708'.
[   95.060110][ T6446] loop4: detected capacity change from 0 to 512
[   95.060845][ T6434] smc: net device bond0 applied user defined pnetid SYZ2
[   95.076939][ T6446] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   95.099040][ T6444] loop3: detected capacity change from 0 to 2048
[   95.106241][ T6434] FAULT_INJECTION: forcing a failure.
[   95.106241][ T6434] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.112460][ T6444] ext4: Unknown parameter 'audit'
[   95.122577][ T6434] CPU: 0 UID: 0 PID: 6434 Comm: syz.2.715 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(voluntary) 
[   95.122617][ T6434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   95.122689][ T6434] Call Trace:
[   95.122697][ T6434]  <TASK>
[   95.122708][ T6434]  __dump_stack+0x1d/0x30
[   95.122739][ T6434]  dump_stack_lvl+0xe8/0x140
[   95.122768][ T6434]  dump_stack+0x15/0x1b
[   95.122842][ T6434]  should_fail_ex+0x265/0x280
[   95.122890][ T6434]  should_fail+0xb/0x20
[   95.122928][ T6434]  should_fail_usercopy+0x1a/0x20
[   95.122953][ T6434]  _copy_from_iter+0xcf/0xdd0
[   95.123014][ T6434]  ? __build_skb_around+0x1a0/0x200
[   95.123094][ T6434]  ? __alloc_skb+0x223/0x320
[   95.123142][ T6434]  netlink_sendmsg+0x471/0x6b0
[   95.123221][ T6434]  ? __pfx_netlink_sendmsg+0x10/0x10
[   95.123278][ T6434]  __sock_sendmsg+0x142/0x180
[   95.123318][ T6434]  ____sys_sendmsg+0x31e/0x4e0
[   95.123350][ T6434]  ___sys_sendmsg+0x17b/0x1d0
[   95.123423][ T6434]  __x64_sys_sendmsg+0xd4/0x160
[   95.123458][ T6434]  x64_sys_call+0x2999/0x2fb0
[   95.123488][ T6434]  do_syscall_64+0xd0/0x1a0
[   95.123521][ T6434]  ? clear_bhb_loop+0x40/0x90
[   95.123591][ T6434]  ? clear_bhb_loop+0x40/0x90
[   95.123621][ T6434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.123650][ T6434] RIP: 0033:0x7f51555de969
[   95.124192][ T6434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.124242][ T6434] RSP: 002b:00007f5153c47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   95.124274][ T6434] RAX: ffffffffffffffda RBX: 00007f5155805fa0 RCX: 00007f51555de969
[   95.124292][ T6434] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000006
[   95.124311][ T6434] RBP: 00007f5153c47090 R08: 0000000000000000 R09: 0000000000000000
[   95.124327][ T6434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.124344][ T6434] R13: 0000000000000000 R14: 00007f5155805fa0 R15: 00007ffff0aa5028
[   95.124371][ T6434]  </TASK>
[   95.293114][ T6446] EXT4-fs (loop4): 1 truncate cleaned up
[   95.411961][ T6444] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   95.437216][ T6444] SELinux: failed to load policy
[   96.033510][ T6522] vhci_hcd: invalid port number 15
[   96.039354][ T6522] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   96.052723][ T6520] netlink: 'syz.4.727': attribute type 4 has an invalid length.
[   96.061297][ T6520] netlink: 17 bytes leftover after parsing attributes in process `syz.4.727'.
[   96.613317][ T3395] usb usb4-port1: unable to enumerate USB device
[   97.056202][ T6586] random: crng reseeded on system resumption
[   97.230022][   T29] kauditd_printk_skb: 16 callbacks suppressed
[   97.230040][   T29] audit: type=1326 audit(1748131720.597:2100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6585 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   97.230146][   T29] audit: type=1326 audit(1748131720.597:2101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6585 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   97.230180][   T29] audit: type=1326 audit(1748131720.597:2102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6585 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   97.230206][   T29] audit: type=1326 audit(1748131720.597:2103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6585 comm="syz.2.735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51555de969 code=0x7ffc0000
[   98.040713][ T6608] IPv6: Can't replace route, no match found
[   98.080105][ T6608] syzkaller0: entered promiscuous mode
[   98.086645][ T6608] syzkaller0: entered allmulticast mode
[   98.106491][ T6612] loop0: detected capacity change from 0 to 1024
[   98.119620][ T6612] EXT4-fs: Ignoring removed orlov option
[   98.211444][ T6620] vhci_hcd: invalid port number 15
[   98.218414][ T6620] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   98.274760][ T6624] loop4: detected capacity change from 0 to 1024
[   98.356545][   T29] audit: type=1326 audit(1748131721.727:2104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6629 comm="syz.3.750" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fee355ee969 code=0x0
[   98.409276][   T29] audit: type=1400 audit(1748131721.767:2105): avc:  denied  { read write } for  pid=6627 comm="syz.1.751" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   98.439763][   T29] audit: type=1400 audit(1748131721.767:2106): avc:  denied  { open } for  pid=6627 comm="syz.1.751" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   98.555610][ T6635] random: crng reseeded on system resumption
[   98.684171][   T29] audit: type=1326 audit(1748131722.047:2107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6634 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f091862e969 code=0x7ffc0000
[   98.713722][   T29] audit: type=1326 audit(1748131722.047:2108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6634 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f091862e969 code=0x7ffc0000
[   98.741809][   T29] audit: type=1326 audit(1748131722.047:2109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6634 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f091862e969 code=0x7ffc0000
[   99.524096][ T6654] vhci_hcd: invalid port number 15
[   99.529587][ T6654] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[   99.576166][ T6658] netlink: 140 bytes leftover after parsing attributes in process `syz.3.761'.
[   99.615902][ T6657] loop0: detected capacity change from 0 to 512
[   99.627576][ T6660] syzkaller0: entered allmulticast mode
[   99.644225][ T6657] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   99.655300][ T6658] loop3: detected capacity change from 0 to 2048
[   99.666436][ T6658] ext4: Unknown parameter 'audit'
[   99.753643][ T6662] syzkaller0 (unregistering): left allmulticast mode
[   99.766114][ T6657] EXT4-fs (loop0): 1 truncate cleaned up
[  100.251425][ T6689] vhci_hcd: invalid port number 15
[  100.257108][ T6689] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  100.466650][ T6691] netlink: 'syz.4.772': attribute type 27 has an invalid length.
[  100.552993][ T6691] bond0: left promiscuous mode
[  100.646926][ T6691] geneve1: left allmulticast mode
[  100.659466][ T6691] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  100.669468][ T6691] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  100.679529][ T6691] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  100.689167][ T6691] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  100.703154][ T6691] geneve2: left promiscuous mode
[  100.709445][ T6691] geneve2: left allmulticast mode
[  100.763019][ T6693] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.772113][ T6693] 8021q: adding VLAN 0 to HW filter on device team0
[  100.795689][ T6693] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  100.875119][ T6700] loop3: detected capacity change from 0 to 2048
[  100.882532][ T6700] ext4: Unknown parameter 'audit'
[  100.924432][ T6706] loop0: detected capacity change from 0 to 1024
[  100.962396][ T6714] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[  100.993300][ T6714] SELinux: failed to load policy
[  101.048774][ T6721] netlink: 24 bytes leftover after parsing attributes in process `syz.4.783'.
[  101.061652][ T6723] netlink: 'syz.3.784': attribute type 3 has an invalid length.
[  101.075850][ T6721] loop4: detected capacity change from 0 to 512
[  101.103191][ T6721] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  101.128418][ T6721] EXT4-fs (loop4): 1 truncate cleaned up
[  101.498657][ T6746] FAULT_INJECTION: forcing a failure.
[  101.498657][ T6746] name failslab, interval 1, probability 0, space 0, times 0
[  101.511904][ T6746] CPU: 1 UID: 0 PID: 6746 Comm: syz.4.792 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(voluntary) 
[  101.511929][ T6746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  101.511941][ T6746] Call Trace:
[  101.512022][ T6746]  <TASK>
[  101.512034][ T6746]  __dump_stack+0x1d/0x30
[  101.512062][ T6746]  dump_stack_lvl+0xe8/0x140
[  101.512167][ T6746]  dump_stack+0x15/0x1b
[  101.512188][ T6746]  should_fail_ex+0x265/0x280
[  101.512232][ T6746]  should_failslab+0x8c/0xb0
[  101.512269][ T6746]  kmem_cache_alloc_noprof+0x50/0x310
[  101.512324][ T6746]  ? skb_clone+0x151/0x1f0
[  101.512353][ T6746]  skb_clone+0x151/0x1f0
[  101.512381][ T6746]  __netlink_deliver_tap+0x2c9/0x500
[  101.512412][ T6746]  netlink_unicast+0x64c/0x670
[  101.512453][ T6746]  netlink_sendmsg+0x58b/0x6b0
[  101.512559][ T6746]  ? __pfx_netlink_sendmsg+0x10/0x10
[  101.512577][ T6746]  __sock_sendmsg+0x142/0x180
[  101.512604][ T6746]  sock_write_iter+0x165/0x1b0
[  101.512670][ T6746]  ? __pfx_sock_write_iter+0x10/0x10
[  101.512692][ T6746]  vfs_write+0x4a0/0x8d0
[  101.512721][ T6746]  ksys_write+0xda/0x1a0
[  101.512844][ T6746]  __x64_sys_write+0x40/0x50
[  101.512870][ T6746]  x64_sys_call+0x2cdd/0x2fb0
[  101.512904][ T6746]  do_syscall_64+0xd0/0x1a0
[  101.512982][ T6746]  ? clear_bhb_loop+0x40/0x90
[  101.513020][ T6746]  ? clear_bhb_loop+0x40/0x90
[  101.513049][ T6746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.513078][ T6746] RIP: 0033:0x7f091862e969
[  101.513096][ T6746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.513112][ T6746] RSP: 002b:00007f0916c76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  101.513144][ T6746] RAX: ffffffffffffffda RBX: 00007f0918856080 RCX: 00007f091862e969
[  101.513155][ T6746] RDX: 000000000000fe33 RSI: 0000200000000000 RDI: 0000000000000003
[  101.513166][ T6746] RBP: 00007f0916c76090 R08: 0000000000000000 R09: 0000000000000000
[  101.513177][ T6746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.513188][ T6746] R13: 0000000000000001 R14: 00007f0918856080 R15: 00007ffcf8bd7fb8
[  101.513206][ T6746]  </TASK>
[  101.746702][ T6746] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.792'.
[  101.758564][ T6745] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.792'.
[  101.814156][ T6750] loop4: detected capacity change from 0 to 2048
[  101.822687][ T6750] ext4: Unknown parameter 'audit'
[  101.848895][ T6750] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[  101.864138][ T6750] SELinux: failed to load policy
[  101.870003][ T6756] loop1: detected capacity change from 0 to 1024
[  101.892761][ T6756] EXT4-fs mount: 24 callbacks suppressed
[  101.892854][ T6756] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.926235][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.956149][ T6764] bond0: entered promiscuous mode
[  102.014633][ T6767] netlink: 'syz.1.801': attribute type 3 has an invalid length.
[  102.079428][ T6777] bond2: entered promiscuous mode
[  102.084681][ T6777] bond2: entered allmulticast mode
[  102.090646][ T6777] 8021q: adding VLAN 0 to HW filter on device bond2
[  102.131212][ T6782] loop1: detected capacity change from 0 to 2048
[  102.138933][ T6782] ext4: Unknown parameter 'audit'
[  102.159461][ T6784] loop0: detected capacity change from 0 to 1024
[  102.173308][ T6782] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[  102.185233][ T6782] SELinux: failed to load policy
[  102.270143][ T6784] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.360948][   T29] kauditd_printk_skb: 38 callbacks suppressed
[  102.360963][   T29] audit: type=1400 audit(1748131725.727:2148): avc:  denied  { create } for  pid=6789 comm="syz.2.812" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  102.407981][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.437467][ T6805] netlink: 'syz.1.816': attribute type 3 has an invalid length.
[  102.495439][   T29] audit: type=1326 audit(1748131725.867:2149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6d849e969 code=0x7ffc0000
[  102.532364][   T29] audit: type=1326 audit(1748131725.897:2150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7fe6d849e969 code=0x7ffc0000
[  102.560939][   T29] audit: type=1326 audit(1748131725.897:2151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6d849e969 code=0x7ffc0000
[  102.589287][   T29] audit: type=1326 audit(1748131725.897:2152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe6d849e969 code=0x7ffc0000
[  102.615682][   T29] audit: type=1326 audit(1748131725.897:2153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6d849e969 code=0x7ffc0000
[  102.639588][   T29] audit: type=1326 audit(1748131725.897:2154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe6d849e969 code=0x7ffc0000
[  102.664789][   T29] audit: type=1326 audit(1748131725.897:2155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6d849e969 code=0x7ffc0000
[  102.689730][   T29] audit: type=1326 audit(1748131725.897:2156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe6d849e969 code=0x7ffc0000
[  102.714220][   T29] audit: type=1326 audit(1748131725.897:2157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6810 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6d849e969 code=0x7ffc0000
[  102.751239][ T6814] loop3: detected capacity change from 0 to 2048
[  102.769014][ T6814] ext4: Unknown parameter 'audit'
[  102.772986][ T6817] loop1: detected capacity change from 0 to 128
[  102.799123][ T6817] syz.1.821: attempt to access beyond end of device
[  102.799123][ T6817] loop1: rw=0, sector=2065, nr_sectors = 1 limit=128
[  102.812761][ T6817] Buffer I/O error on dev loop1, logical block 2065, async page read
[  102.828868][ T6817] syz.1.821: attempt to access beyond end of device
[  102.828868][ T6817] loop1: rw=0, sector=2066, nr_sectors = 1 limit=128
[  102.830319][ T6814] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[  102.843094][ T6817] Buffer I/O error on dev loop1, logical block 2066, async page read
[  102.843426][ T6817] syz.1.821: attempt to access beyond end of device
[  102.843426][ T6817] loop1: rw=0, sector=2067, nr_sectors = 1 limit=128
[  102.877663][ T6817] Buffer I/O error on dev loop1, logical block 2067, async page read
[  102.896800][ T6817] syz.1.821: attempt to access beyond end of device
[  102.896800][ T6817] loop1: rw=0, sector=2068, nr_sectors = 1 limit=128
[  102.911918][ T6817] Buffer I/O error on dev loop1, logical block 2068, async page read
[  102.922206][ T6817] syz.1.821: attempt to access beyond end of device
[  102.922206][ T6817] loop1: rw=0, sector=2069, nr_sectors = 1 limit=128
[  102.932148][ T6814] SELinux: failed to load policy
[  102.936989][ T6817] Buffer I/O error on dev loop1, logical block 2069, async page read
[  102.957864][ T6817] syz.1.821: attempt to access beyond end of device
[  102.957864][ T6817] loop1: rw=0, sector=2070, nr_sectors = 1 limit=128
[  102.972684][ T6817] Buffer I/O error on dev loop1, logical block 2070, async page read
[  102.979575][ T6825] syz.2.823: attempt to access beyond end of device
[  102.979575][ T6825] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  102.992080][ T6817] syz.1.821: attempt to access beyond end of device
[  102.992080][ T6817] loop1: rw=0, sector=2071, nr_sectors = 1 limit=128
[  103.014290][ T6817] Buffer I/O error on dev loop1, logical block 2071, async page read
[  103.023299][ T6817] syz.1.821: attempt to access beyond end of device
[  103.023299][ T6817] loop1: rw=0, sector=2072, nr_sectors = 1 limit=128
[  103.037958][ T6817] Buffer I/O error on dev loop1, logical block 2072, async page read
[  103.048254][ T6816] syz.1.821: attempt to access beyond end of device
[  103.048254][ T6816] loop1: rw=0, sector=2065, nr_sectors = 1 limit=128
[  103.062681][ T6816] Buffer I/O error on dev loop1, logical block 2065, async page read
[  103.077735][ T6824] delete_channel: no stack
[  103.098526][ T6816] Buffer I/O error on dev loop1, logical block 2066, async page read
[  103.125860][ T6831] loop2: detected capacity change from 0 to 1024
[  103.147647][ T6831] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.181563][ T6837] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  103.230799][ T3330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.251910][ T6839] loop2: detected capacity change from 0 to 256
[  103.327133][ T6842] loop3: detected capacity change from 0 to 128
[  103.404180][ T6849] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  103.484516][ T6851] netlink: 24 bytes leftover after parsing attributes in process `syz.0.833'.
[  103.513248][ T6851] loop0: detected capacity change from 0 to 512
[  103.521419][ T6851] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  103.534722][ T6851] EXT4-fs (loop0): 1 truncate cleaned up
[  103.540772][ T6851] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.556954][ T6851] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.598705][ T6855] loop2: detected capacity change from 0 to 128
[  103.721775][ T6855] netlink: 36 bytes leftover after parsing attributes in process `syz.2.832'.
[  103.982445][ T6862] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  104.005033][ T6862] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  104.320034][ T6889] loop0: detected capacity change from 0 to 2048
[  104.332548][ T6889] ext4: Unknown parameter 'audit'
[  104.370969][ T6889] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[  104.383964][ T6889] SELinux: failed to load policy
[  104.600561][ T6932] netlink: 24 bytes leftover after parsing attributes in process `syz.0.845'.
[  104.616678][ T6932] loop0: detected capacity change from 0 to 512
[  104.626116][ T6932] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  104.648201][ T6932] EXT4-fs (loop0): 1 truncate cleaned up
[  104.655216][ T6932] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.670434][ T6932] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.937555][ T6972] netlink: 24 bytes leftover after parsing attributes in process `syz.0.846'.
[  104.951884][ T6972] loop0: detected capacity change from 0 to 512
[  104.965904][ T6972] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  104.981871][ T6972] EXT4-fs (loop0): 1 truncate cleaned up
[  104.988802][ T6972] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.004264][ T6972] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.251173][ T7006] loop0: detected capacity change from 0 to 2048
[  105.258724][ T7006] ext4: Unknown parameter 'audit'
[  105.285191][ T7006] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[  105.297601][ T7006] SELinux: failed to load policy
[  105.340112][ T7010] loop0: detected capacity change from 0 to 128
[  106.487110][ T7033] loop0: detected capacity change from 0 to 1024
[  106.511917][ T7033] EXT4-fs: Ignoring removed orlov option
[  106.548655][ T7035] loop3: detected capacity change from 0 to 2048
[  106.567946][ T7035] ext4: Unknown parameter 'audit'
[  106.575275][ T7033] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.580023][ T7035] geneve3: entered allmulticast mode
[  106.623097][ T7035] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[  106.634789][ T7035] SELinux: failed to load policy
[  106.779721][ T7049] loop3: detected capacity change from 0 to 512
[  106.791420][ T7049] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  106.802972][ T7052] netlink: 'syz.4.866': attribute type 3 has an invalid length.
[  106.873030][ T7049] EXT4-fs (loop3): 1 truncate cleaned up
[  106.916304][ T7049] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.949325][ T7061] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  107.036665][ T7049] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.070803][ T7065] loop4: detected capacity change from 0 to 512
[  107.079802][ T7065] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  107.099828][ T7065] EXT4-fs (loop4): 1 truncate cleaned up
[  107.110348][ T7065] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.125047][ T7065] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.137035][ T7070] loop1: detected capacity change from 0 to 128
[  107.220931][ T7070] netlink: 36 bytes leftover after parsing attributes in process `syz.1.869'.
[  107.598207][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.653692][ T7074] loop0: detected capacity change from 0 to 128
[  107.841640][ T7077] loop3: detected capacity change from 0 to 2048
[  107.865278][ T7077] ext4: Unknown parameter 'audit'
[  107.917312][ T7077] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[  107.949799][ T7077] SELinux: failed to load policy
[  108.043351][ T7087] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  108.168700][ T7089] loop3: detected capacity change from 0 to 128
[  108.197863][ T7089] netlink: 36 bytes leftover after parsing attributes in process `syz.3.877'.
[  108.328375][ T7091] netlink: 'syz.4.878': attribute type 3 has an invalid length.
[  108.422486][ T7101] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  108.441100][ T7101] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  108.541636][ T7108] netlink: 4 bytes leftover after parsing attributes in process `syz.0.881'.
[  108.748407][ T7134] loop0: detected capacity change from 0 to 512
[  108.760043][ T7134] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  108.774959][ T7134] EXT4-fs (loop0): 1 truncate cleaned up
[  108.783223][ T7134] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.803315][ T7134] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.012713][ T7234] bond3: entered promiscuous mode
[  110.018331][ T7234] bond3: entered allmulticast mode
[  110.024150][ T7234] 8021q: adding VLAN 0 to HW filter on device bond3
[  110.034612][ T7234] bond3 (unregistering): Released all slaves
[  110.046917][ T7237] netlink: 'syz.0.889': attribute type 3 has an invalid length.
[  110.146156][ T7241] loop1: detected capacity change from 0 to 128
[  110.161042][ T7241] bio_check_eod: 63 callbacks suppressed
[  110.161145][ T7241] syz.1.891: attempt to access beyond end of device
[  110.161145][ T7241] loop1: rw=0, sector=2065, nr_sectors = 1 limit=128
[  110.183187][ T7241] buffer_io_error: 62 callbacks suppressed
[  110.183201][ T7241] Buffer I/O error on dev loop1, logical block 2065, async page read
[  110.215125][ T7241] syz.1.891: attempt to access beyond end of device
[  110.215125][ T7241] loop1: rw=0, sector=2066, nr_sectors = 1 limit=128
[  110.232678][ T7241] Buffer I/O error on dev loop1, logical block 2066, async page read
[  110.244497][ T7241] syz.1.891: attempt to access beyond end of device
[  110.244497][ T7241] loop1: rw=0, sector=2067, nr_sectors = 1 limit=128
[  110.259439][ T7241] Buffer I/O error on dev loop1, logical block 2067, async page read
[  110.294581][ T7241] syz.1.891: attempt to access beyond end of device
[  110.294581][ T7241] loop1: rw=0, sector=2068, nr_sectors = 1 limit=128
[  110.314782][ T7241] Buffer I/O error on dev loop1, logical block 2068, async page read
[  110.326983][ T7241] syz.1.891: attempt to access beyond end of device
[  110.326983][ T7241] loop1: rw=0, sector=2069, nr_sectors = 1 limit=128
[  110.343062][ T7241] Buffer I/O error on dev loop1, logical block 2069, async page read
[  110.354195][ T7241] syz.1.891: attempt to access beyond end of device
[  110.354195][ T7241] loop1: rw=0, sector=2070, nr_sectors = 1 limit=128
[  110.368482][ T7241] Buffer I/O error on dev loop1, logical block 2070, async page read
[  110.378199][ T7241] syz.1.891: attempt to access beyond end of device
[  110.378199][ T7241] loop1: rw=0, sector=2071, nr_sectors = 1 limit=128
[  110.394075][ T7241] Buffer I/O error on dev loop1, logical block 2071, async page read
[  110.403891][ T7241] syz.1.891: attempt to access beyond end of device
[  110.403891][ T7241] loop1: rw=0, sector=2072, nr_sectors = 1 limit=128
[  110.419204][ T7241] Buffer I/O error on dev loop1, logical block 2072, async page read
[  110.429977][ T7241] syz.1.891: attempt to access beyond end of device
[  110.429977][ T7241] loop1: rw=0, sector=2065, nr_sectors = 1 limit=128
[  110.445279][ T7241] Buffer I/O error on dev loop1, logical block 2065, async page read
[  110.454518][ T7241] syz.1.891: attempt to access beyond end of device
[  110.454518][ T7241] loop1: rw=0, sector=2066, nr_sectors = 1 limit=128
[  110.468472][ T7241] Buffer I/O error on dev loop1, logical block 2066, async page read
[  110.611967][ T7250] loop2: detected capacity change from 0 to 1024
[  110.636391][ T7250] EXT4-fs: Ignoring removed orlov option
[  110.657798][ T7250] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.970377][ T7259] loop4: detected capacity change from 0 to 1024
[  110.988184][ T7259] EXT4-fs: Ignoring removed orlov option
[  111.010234][ T7259] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.245929][ T7270] netlink: 4 bytes leftover after parsing attributes in process `syz.1.898'.
[  111.274575][ T7272] netlink: 'syz.3.900': attribute type 3 has an invalid length.
[  111.400012][ T7276] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  111.455619][ T7278] netlink: 4 bytes leftover after parsing attributes in process `syz.3.903'.
[  111.590488][ T7286] loop1: detected capacity change from 0 to 128
[  111.811597][ T3330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.845050][ T7289] bond2: entered promiscuous mode
[  111.850707][ T7289] bond2: entered allmulticast mode
[  111.879927][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.895662][ T7289] 8021q: adding VLAN 0 to HW filter on device bond2
[  111.928507][ T7292] loop2: detected capacity change from 0 to 512
[  111.957464][ T7289] bond2 (unregistering): Released all slaves
[  111.959307][ T7292] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.990981][ T7296] loop4: detected capacity change from 0 to 512
[  111.991010][ T7292] ext4 filesystem being mounted at /179/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.007377][ T7296] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  112.036637][ T3330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.049745][ T7296] EXT4-fs (loop4): 1 truncate cleaned up
[  112.062114][ T7300] netlink: 4 bytes leftover after parsing attributes in process `syz.0.910'.
[  112.063065][ T7296] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.103889][ T7296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.155835][ T7305] netlink: 4 bytes leftover after parsing attributes in process `syz.2.911'.
[  112.188738][ T7312] netlink: 'syz.0.913': attribute type 3 has an invalid length.
[  112.437645][ T7329] loop0: detected capacity change from 0 to 128
[  112.691025][ T7345] netlink: 4 bytes leftover after parsing attributes in process `syz.4.927'.
[  112.759893][ T7351] netlink: 'syz.4.929': attribute type 3 has an invalid length.
[  112.795975][ T7353] netlink: 24 bytes leftover after parsing attributes in process `syz.4.930'.
[  112.810288][ T7353] loop4: detected capacity change from 0 to 512
[  112.820509][ T7353] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  112.842929][ T7353] EXT4-fs (loop4): 1 truncate cleaned up
[  112.850061][ T7353] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.866135][ T7353] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.104239][ T7358] loop4: detected capacity change from 0 to 1024
[  113.125426][ T7358] EXT4-fs: Ignoring removed orlov option
[  113.161104][ T7358] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.415013][ T7371] bond1: entered promiscuous mode
[  113.420489][ T7371] bond1: entered allmulticast mode
[  113.426897][ T7371] 8021q: adding VLAN 0 to HW filter on device bond1
[  113.438670][ T7371] bond1 (unregistering): Released all slaves
[  113.468886][ T7358] ==================================================================
[  113.477654][ T7358] BUG: KCSAN: data-race in filemap_write_and_wait_range / xas_set_mark
[  113.486991][ T7358] 
[  113.489350][ T7358] write to 0xffff888106f64b84 of 4 bytes by task 7366 on cpu 0:
[  113.498398][ T7358]  xas_set_mark+0x12b/0x140
[  113.503509][ T7358]  __folio_start_writeback+0x1dd/0x430
[  113.509692][ T7358]  ext4_bio_write_folio+0x590/0x9d0
[  113.515367][ T7358]  mpage_process_page_bufs+0x46c/0x5b0
[  113.521367][ T7358]  mpage_prepare_extent_to_map+0x775/0xb80
[  113.527553][ T7358]  ext4_do_writepages+0xa25/0x2270
[  113.533057][ T7358]  ext4_writepages+0x176/0x300
[  113.539707][ T7358]  do_writepages+0x1d2/0x480
[  113.545126][ T7358]  file_write_and_wait_range+0x156/0x2c0
[  113.551528][ T7358]  generic_buffers_fsync_noflush+0x45/0x120
[  113.558449][ T7358]  ext4_sync_file+0x1ab/0x690
[  113.563702][ T7358]  vfs_fsync_range+0x10a/0x130
[  113.569129][ T7358]  ext4_buffered_write_iter+0x34f/0x3c0
[  113.575093][ T7358]  ext4_file_write_iter+0xdbf/0xf00
[  113.581438][ T7358]  iter_file_splice_write+0x5ef/0x970
[  113.587642][ T7358]  direct_splice_actor+0x153/0x2a0
[  113.593358][ T7358]  splice_direct_to_actor+0x30f/0x680
[  113.599691][ T7358]  do_splice_direct+0xda/0x150
[  113.605246][ T7358]  do_sendfile+0x380/0x640
[  113.610646][ T7358]  __x64_sys_sendfile64+0x105/0x150
[  113.616201][ T7358]  x64_sys_call+0xb39/0x2fb0
[  113.621626][ T7358]  do_syscall_64+0xd0/0x1a0
[  113.626536][ T7358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.633240][ T7358] 
[  113.636177][ T7358] read to 0xffff888106f64b84 of 4 bytes by task 7358 on cpu 1:
[  113.644391][ T7358]  filemap_write_and_wait_range+0xfc/0x340
[  113.650510][ T7358]  filemap_invalidate_pages+0xa4/0x1a0
[  113.656779][ T7358]  kiocb_invalidate_pages+0x6e/0x80
[  113.662270][ T7358]  __iomap_dio_rw+0x5d4/0x1250
[  113.667590][ T7358]  iomap_dio_rw+0x40/0x90
[  113.672043][ T7358]  ext4_file_write_iter+0xad9/0xf00
[  113.677459][ T7358]  iter_file_splice_write+0x5ef/0x970
[  113.684632][ T7358]  direct_splice_actor+0x153/0x2a0
[  113.690045][ T7358]  splice_direct_to_actor+0x30f/0x680
[  113.695878][ T7358]  do_splice_direct+0xda/0x150
[  113.701009][ T7358]  do_sendfile+0x380/0x640
[  113.706447][ T7358]  __x64_sys_sendfile64+0x105/0x150
[  113.711971][ T7358]  x64_sys_call+0xb39/0x2fb0
[  113.716770][ T7358]  do_syscall_64+0xd0/0x1a0
[  113.721667][ T7358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.728226][ T7358] 
[  113.731704][ T7358] value changed: 0x0a000021 -> 0x04000021
[  113.737957][ T7358] 
[  113.740458][ T7358] Reported by Kernel Concurrency Sanitizer on:
[  113.747589][ T7358] CPU: 1 UID: 0 PID: 7358 Comm: syz.4.932 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(voluntary) 
[  113.762486][ T7358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  113.773790][ T7358] ==================================================================
[  114.065692][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.