last executing test programs:

1m59.718143081s ago: executing program 0 (id=597):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
geteuid()

1m59.689854564s ago: executing program 0 (id=599):
r0 = socket$inet(0x2b, 0x801, 0x0)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
dup(0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001b80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
name_to_handle_at(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1200)
fcntl$lock(r2, 0x25, &(0x7f0000000540)={0x2, 0x0, 0x6e, 0x6})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89n\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zp\xadbdY\xdcz\xc6lo\xd0\xc7\'CT')
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x10092, &(0x7f0000000080)={[{@nodioread_nolock}]}, 0xff, 0x249, &(0x7f0000000880)="$eJzs3T9oM2UcB/DvXRJr3jfIqy6C+AdERAvldRNcXifhBSlFRFChIuKitEJtcWudXBx0VunkUsTN6ihdiosiOFXtUBdBi4PFQYdIcqnUNuKf1Jz0Ph+43F1yz/2e4+77JBkuCdBYV5JcS9JKMpukk6Q4ucHd1XRltLrZ3V1M+v3HfyyG21XrleN2l5NsJHkoyU5Z5MV2srb99MHPe4/e98Zq5973tp/qTvUgRw4P9h87enf+9Q+vP7j2+Zffzxe5lt4fjuv8FWOeaxfJLf9Fsf+Jol13D/g7Fl794KtB7m9Ncs8w/52UqU7emys37HTywDt/1vatH764fZp9Bc5fv98ZvAdu9IHGKZP0UpRzSarlspybqz7Df926VL60vPLK7AvLq0vP1z1SAedl+L3345mPLp/K/3etKv/AxdVL9p9Y2PpmsHzUqrs3wFTcUc0G+Z99dv3+yD80jvxDc8k/NJf8Q3PJPzTSTOQfGk3+obnkH5pL/qG55B+a62T+AYBm6c+cuSW4GP4sAHDh1T3+AAAAAAAAAAAAAAAAAAAAZ212dxePp2nV/PTt5PCRJO1x9VvD/yNObhw+XvqpGGz2u6JqNpFn7ppwBxN6v+a7r2/6tqbC3Wr22Z011R9ZX0o2Xktytd0+e/0Vo+vv37v5L17vPDdhgX+oOLX+8JPTrX/ar1v11r++l3wyGH+ujht/ytw2nI8ff3qD8zdh/Zd/mXAHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAATM1vAQAA//8mi2g4")

1m59.631211428s ago: executing program 0 (id=601):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000300)={'#! ', '', [{0x20, 'memory.events\x00'}]}, 0x13)
perf_event_open(&(0x7f0000000140)={0x8, 0x80, 0x7, 0x0, 0x0, 0x3, 0x82, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xf}, 0x8080, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x10000000000007}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x2)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x1e, 0x12, r3, 0x0)

1m59.446955743s ago: executing program 0 (id=608):
syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f00000007c0)='./file1\x00', 0x4108a5, &(0x7f0000000340), 0x1, 0x785, &(0x7f0000001600)="$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")
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x167842, 0x19)
fcntl$notify(r0, 0x402, 0x28)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='\xac\xed\x00\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975efb4519d864d984dcb3a1dcafa1124a6b004029a706478df3be2438d2e35e6ca674dc190143a0b6f7db3408c0c08011e5d8f54711a0bd410ab53a15b1596cb77d2b58df2d8d8"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000340)='mountinfo\x00')
r3 = syz_io_uring_setup(0x35f, &(0x7f0000000380)={0x0, 0xc23d, 0x1800, 0x0, 0xf5, 0x0, r2}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x2200}})
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000002c0)='sched_kthread_work_queue_work\x00', r7}, 0x10)
socketpair(0xf, 0x3, 0x2, &(0x7f00000001c0))
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r8 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r8, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r9 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r9, 0x0, 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x205)
prctl$PR_SET_NAME(0xf, &(0x7f0000000040)='kmem_cache_free\x00')
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x1400, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000014c0)={'vcan0\x00', <r10=>0x0})
sendmsg$nl_xfrm(r2, &(0x7f0000001540)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001500)={&(0x7f0000001dc0)=@updpolicy={0x1f0, 0x19, 0x100, 0x70bd25, 0x25dfdbfb, {{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e24, 0x3, 0x4e24, 0x0, 0xa, 0x20, 0x80, 0x6, r10, 0xee00}, {0x3, 0x100000000, 0x101, 0x7, 0x7ff, 0x0, 0xffffffffffffffff, 0x5}, {0x4, 0xab81, 0xc60, 0x1}, 0x10, 0x6e6bb5}, [@algo_auth={0x52, 0x1, {{'sha3-224-generic\x00'}, 0x50, "f9d04e90195a402c94ad"}}, @etimer_thresh={0x8, 0xc, 0x6}, @policy_type={0xa, 0x10, {0x1}}, @algo_comp={0x71, 0x3, {{'lzs\x00'}, 0x148, "0202b55456335c30a9801817a22a71389b38238c8ab7a840f1f6a077f4fac0013fe6f52a27302bc839"}}, @replay_esn_val={0x3c, 0x17, {0x8, 0x70bd28, 0x70bd2a, 0x70bd26, 0x70bd25, 0x280000, [0xff, 0x80000001, 0x40, 0xff, 0x8, 0x3, 0xbd, 0x2]}}, @srcaddr={0x14, 0xd, @in=@loopback}, @policy_type={0xa}]}, 0x1f0}, 0x1, 0x0, 0x0, 0x4104}, 0x29851)

1m59.198664083s ago: executing program 0 (id=609):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[], 0xff2e)
r1 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x3)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100002001800000000000000000ff850000007b00000095"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x46}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)

1m58.630847088s ago: executing program 0 (id=617):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r1, &(0x7f0000000380)={0x2, 0x4e25, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x10)
sendmmsg(r1, &(0x7f0000006140)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000740)="65c6d96326a8", 0x6}], 0x1}}], 0x1, 0x4000)

1m58.630486178s ago: executing program 32 (id=617):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r1, &(0x7f0000000380)={0x2, 0x4e25, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x10)
sendmmsg(r1, &(0x7f0000006140)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000740)="65c6d96326a8", 0x6}], 0x1}}], 0x1, 0x4000)

3.493845593s ago: executing program 5 (id=2459):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000340)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
unshare(0x2c060000)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x2}, 0x8}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x8, &(0x7f0000000080)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
fcntl$notify(0xffffffffffffffff, 0x402, 0x5)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)
r5 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r5, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r6=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x33, &(0x7f0000000640)={0x1, &(0x7f0000000680)=[{0x6, 0x13, 0x0, 0x2}]}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000060000000800000001"], 0x48)
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@newqdisc={0x6c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r7, {}, {0x1, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x3c, 0x2, {{0x9, 0x3, 0x0, 0x6, 0xfffffffe, 0x22}, [@TCA_NETEM_RATE64={0xc, 0x8, 0xe61c6a5c983a3b82}, @TCA_NETEM_RATE={0x14, 0x6, {0xe1, 0x79d, 0x0, 0x3}}]}}}]}, 0x6c}}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xb, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r7, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
unshare(0x2c020400)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)

3.39234881s ago: executing program 5 (id=2462):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
signalfd(0xffffffffffffffff, &(0x7f0000000500)={[0x5]}, 0x8)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x1, 0x3ce, &(0x7f00000004c0)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000850000005000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)

3.341045484s ago: executing program 5 (id=2466):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000200), 0x100)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000340)={0x0, 0x0, 0x10100}, &(0x7f00000002c0)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0x2def, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000280)={{0x1}})
readv(r0, &(0x7f0000000140)=[{&(0x7f0000000000)=""/47, 0x2f}], 0x1)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000c80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1800011, &(0x7f0000000100)={[{@nombcache}, {@sysvgroups}, {@norecovery}, {@abort}, {@nombcache}]}, 0x28, 0x5fb, &(0x7f00000004c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r7 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x4, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x42000000)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYRES16=r5], 0x0, 0x42c, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3f, 0x0, 0x0, 0x0, 0xb}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r8}, &(0x7f0000000180), &(0x7f00000001c0)=r7}, 0x20)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r9}, 0x10)
r10 = syz_init_net_socket$llc(0x1a, 0x802, 0x0)
bind$llc(r10, &(0x7f0000000000)={0x1a, 0x0, 0x1, 0x0, 0x3, 0x4a}, 0x10)
close(r10)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r11}, 0x9)
socket$inet6_sctp(0xa, 0x5, 0x84)

2.842622354s ago: executing program 2 (id=2473):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000340)={<r1=>0x0, 0x9}, &(0x7f0000000380)=0x8)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000000)={<r2=>r1, 0x9}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000080)={r2, 0x4, 0x30}, 0xc)

2.777041589s ago: executing program 2 (id=2474):
unshare(0x22020600)
quotactl_fd$Q_SYNC(0xffffffffffffffff, 0xffffffff80000101, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'veth0_virt_wifi\x00', 0x2000000}, 0x18)

2.689758186s ago: executing program 2 (id=2477):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf090000000000005509010000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r3=>0x0})
bind$can_raw(r2, &(0x7f0000000480)={0x1d, r3}, 0x10)
close(r2)

2.608441833s ago: executing program 2 (id=2480):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000080)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f00000000c0)=ANY=[@ANYRESHEX, @ANYRES32, @ANYBLOB="0000000000060000b7080000feffffff7b8af800bfa200000000000007020000f8ffffffb703000008000000b704001a00000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
write$tun(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="001c86dd0700100000004000000060ec97000fc83c00fe8000000000000000000000000000aaff020000000000000000000000000001"], 0xffe)

2.555708357s ago: executing program 5 (id=2482):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000cc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x4}}], 0x18}}], 0x1, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCBRDELBR(r1, 0x89a2, &(0x7f0000000200)='bridge0\x00')
ioctl$sock_SIOCBRDELBR(r0, 0x89a3, &(0x7f0000000200)='bridge0\x00')
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_int(r2, 0x0, 0x5, &(0x7f0000000080)=0x9, 0x4)

2.499446042s ago: executing program 1 (id=2483):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffa}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x16, 0x0, 0x4, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
acct(0x0)

2.455424665s ago: executing program 2 (id=2486):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=<r3=>r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYRES8=r1, @ANYRES8=r2, @ANYRESHEX=r3, @ANYRES8=r0, @ANYRESOCT=0x0, @ANYRESHEX=r1, @ANYRES64=r1, @ANYBLOB, @ANYRES32=r3, @ANYRES8=r2], 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r5, 0x0, 0x2}, 0x18)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
r7 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
ioctl$USBDEVFS_SUBMITURB(r7, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x0, &(0x7f0000000240)={0x0, 0x0, 0xfffc, 0x360}, 0x8, 0x9, 0x80, 0x0, 0x0, 0x101, 0x0})
write$P9_RLERRORu(r1, &(0x7f00000002c0)={0xe, 0x7, 0x2, {{0x1, '9'}, 0x4}}, 0xe)
close_range(r6, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB="020300030c00000000000000000000000100090000000000030006006c0000000200000000000000000000000000800002000100000000000002060b00000000030005000000000002000000000000000000000000000000010018"], 0x60}, 0x1, 0x7}, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51)
r9 = semget$private(0x0, 0x0, 0x200)
semctl$GETALL(r9, 0x0, 0xd, &(0x7f0000000200)=""/81)
ioctl$FS_IOC_FSSETXATTR(r8, 0x401c5820, &(0x7f0000000080)={0x8})
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r11}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200), 0x3, 0x42f, &(0x7f0000000940)="$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")
unlink(&(0x7f0000000180)='./file1\x00')
r12 = io_uring_setup(0x115c, &(0x7f0000000440)={0x0, 0x8270, 0x40, 0x3, 0x117})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x5, &(0x7f00000000c0)=@framed={{0x6a, 0xa, 0x0, 0xffc4, 0x2, 0x71, 0x10, 0x69, 0x3}, [@cb_func={0x18, 0xa, 0x4, 0x0, 0x2}]}, 0x0}, 0x94)
io_uring_register$IORING_REGISTER_FILES(r12, 0x1e, &(0x7f0000000000)=[r12], 0x1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r8, 0x6, 0x16, &(0x7f0000000280)=[@window={0x3, 0x2, 0x9}, @mss={0x2, 0x1}, @timestamp, @mss={0x2, 0xb}, @sack_perm, @mss={0x2, 0x9}], 0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)

2.3960565s ago: executing program 1 (id=2487):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8514, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x203, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB], 0x7c}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
accept(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r2, &(0x7f0000002300)={&(0x7f0000000040)=@id={0x1e, 0x3, 0x0, {0x4e22, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8005}, 0x4)
sendmsg$tipc(r2, &(0x7f00000002c0)={&(0x7f00000000c0)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x480c0}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
accept4(r0, 0x0, 0x0, 0x400000000000000)

2.14258026s ago: executing program 2 (id=2488):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r1, 0x0, 0x7}, 0x18)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000f80)="d8000000180081064e81f782db4cb904021d0800fd007c05e8fe50a10a000700014002020c600e41b0000900ac000a0501000000160012000a00ff150048035c3b61c1d67f6f94007134cf6efb8007a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667daffffffffff1f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5b7276505de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000001008af26c8b7b55f4d2a6823a45", 0xd8}], 0x1}, 0x40080)

2.100531194s ago: executing program 1 (id=2491):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r0, 0x10ada85e65c25359, 0xfffffffd, 0x25dfdbfd, {{0x6b}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0x6, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x9}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8441}, 0x4000000)

2.063932866s ago: executing program 5 (id=2493):
socket$nl_route(0x10, 0x3, 0x0)
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fd/3\x00')
getdents64(r0, &(0x7f0000002f40)=""/4098, 0x1002)
ioctl$USBDEVFS_CLEAR_HALT(r0, 0x80045515, &(0x7f0000000840)={0x4, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x8040, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000040)={0x0, 0xffffffff, 0x1, 0x0, 0x90, "ff00f7000000000000000020af88008300"})
r2 = syz_open_pts(r1, 0x141601)
r3 = gettid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000580)={0x2, 0x3, 0x0, 0x3, 0x11, 0x0, 0x700, 0x0, [@sadb_x_kmaddress={0x8, 0x19, 0x0, @in6={0xa, 0x4e20, 0x3, @local, 0x4}, @in6={0xa, 0x4e24, 0x101, @loopback, 0x9}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_x_nat_t_type={0x1, 0x14, 0x8}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x88}, 0x1, 0x7}, 0x10)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
write(r2, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000080)={0x400008, 0x1ffffffe, 0x0, 0x200007, 0x19, "680c1acfa4a5000000070000faffffff000800"})
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(r5, 0x0, &(0x7f0000001480))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000b00)=@newtfilter={0xb0, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xfffa}, {}, {0x5, 0xfff9}}, [@filter_kind_options=@f_route={{0xa}, {0x80, 0x2, [@TCA_ROUTE4_POLICE={0x10, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}]}, @TCA_ROUTE4_TO={0x8, 0x2, 0x5c}, @TCA_ROUTE4_POLICE={0x5c, 0x5, [@TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_TBF={0x3c, 0x1, {0x4, 0x2, 0x0, 0x79, 0x1ff, {0x7f, 0x2, 0x4, 0x8, 0x401, 0x4}, {0x9, 0x2, 0x8, 0x43, 0x5, 0x7}, 0x48, 0xbc, 0x9}}, @TCA_POLICE_RESULT={0x8, 0x5, 0x35d}, @TCA_POLICE_AVRATE={0x8, 0x4, 0xc}]}, @TCA_ROUTE4_IIF={0x8}]}}]}, 0xb0}}, 0x24000000)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2.048401358s ago: executing program 1 (id=2494):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x2}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x2c, 0x10, 0x1, 0x0, 0x1000000, {0x0, 0x0, 0x0, 0x0, {0x9}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8c0}, 0x0)

1.978332223s ago: executing program 1 (id=2496):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$AUDIT_LIST_RULES(r1, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x10, 0x3f5, 0x10, 0x70bd26, 0x25dfdbfb, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x4}, 0x801)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bridge_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@bridge_newvlan={0x18, 0x70, 0x239, 0x70bd2a, 0x25dfdbfb, {0x7, 0x0, 0x0, r3}}, 0x18}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0b0000000000090014846fbb9f758ce2000001000000000000"], 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r6, 0x0, 0x2}, 0x18)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x3, 0x0, 0x3, 0x10, 0x0, 0x70bd2c, 0x25dfdbfc, [@sadb_key={0x2, 0x9, 0x8, 0x0, "1c"}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x2}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x7}}]}, 0x80}, 0x1, 0x7}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r11, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
r12 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r12, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r12, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r13 = socket(0x10, 0x3, 0x0)
getsockname$packet(r12, &(0x7f0000000100)={0x11, 0x0, <r14=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r13, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r14, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0xffffffffffffffdb, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000740)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000700)={&(0x7f00000008c0)={0x164, 0x0, 0x800, 0x70bd2d, 0x25dfdbfb, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x164}, 0x1, 0x0, 0x0, 0x40000}, 0x4000010)
sendmsg$NL80211_CMD_VENDOR(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="a1ab00000000000000003200000008001781"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r9, 0x10e, 0x7, &(0x7f0000000300)={0x0, 0x0, 0x4, 0x2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000d0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffefb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r15 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r15, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)

1.901877019s ago: executing program 1 (id=2498):
fsopen(&(0x7f0000000000)='9p\x00', 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r4, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x60, &(0x7f0000000140)={&(0x7f00000009c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x0)

1.13955559s ago: executing program 5 (id=2505):
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c)
sendmmsg$inet(r0, &(0x7f0000001040)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000000800)="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", 0x2d2}, {&(0x7f0000000bc0)="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", 0x1e8}, {&(0x7f0000000500)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859207067c10aa7352abbdf98e9bf033a3184a11e84639d3b9164d9c5d729f3dd409d39ff041e657c8df70e1607d553bbece82c0609a7f367cd939f790732e8d2310e876fcb299cd44b72bda697035b7b475bc35afbb483db39ac864dbee0c9760c22a1d32d83588afd7c994652413b22db76874ca052ef2013317eb7fcc5677e9d69f04b5b846c58570565e5133b2636e47ef668d0f7070fd0c3c3adc9aed345a3a19c24abf202b001fcdf35", 0xcb}], 0x3, 0x0, 0x0, 0x900}}], 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x80, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x14, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000200)={0x8, &(0x7f00000001c0)=[{0x7, 0x3, 0xd0, 0x6d78aea5}, {0x0, 0x50, 0x5, 0x4}, {0x0, 0x1, 0x2, 0x9}, {0xb1b2, 0xe2, 0x3, 0x80000001}, {0x6, 0x6, 0x2, 0x4}, {0x6, 0xe, 0x7f, 0x7}, {0x810, 0x7, 0x1, 0x5}, {0x348, 0x0, 0x1, 0x3}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b701000000000000850000006d00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4, 0x0, 0x5}, 0x18)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r5, 0xc0105500, &(0x7f0000000000)={0x80, 0x6, 0x301, 0x0, 0xe0, 0x101, 0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r7=>0x0})
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
set_mempolicy(0xa000, 0x0, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
syz_clone(0x200000, &(0x7f0000000280)="f6fbd6aecbf8377305fdb44ec353ecd14199c864feb8b041fac98f4ef4769eb698a2bf510077bbb0ba647d5355a8f398dd509a5a0d1b6f34464becb23c5f7d44d09945c4486ecd9142abf4e35c5582081a881015f83fc2c73e053fb67b15ce34ad48d15b85eeef87c51d9e78e6712518aa073fc2bfb2d83b2ed4e0ae", 0x7c, &(0x7f0000000380), &(0x7f00000003c0), &(0x7f0000000400)="bdfc43b9")
sendmsg$nl_generic(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYBLOB="1c0000003e000701fcfffffffedbdf25017c0000060004"], 0x1c}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=r7, @ANYRES32=r2, @ANYBLOB="00000000000000800000000000000000000000000000010000000000"], 0x50)

1.13211941s ago: executing program 4 (id=2506):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x2}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x2c, 0x10, 0x1, 0x0, 0x1000000, {0x0, 0x0, 0x0, 0x0, {0x9}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8c0}, 0x0)

1.128977151s ago: executing program 3 (id=2507):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0009}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
readv(r0, 0x0, 0x0)
r1 = open(0x0, 0x60840, 0x0)
fcntl$setsig(r1, 0xa, 0x13)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, r2, 0x0, 0x4, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1c0000000700000001000100490000000100000055e04ddba1cbe971189822caa015c38e495c6cea1eb8d12841ff6ef5d0c8b1c978152394811630", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r5 = socket(0x11, 0x3, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'gre0\x00', <r7=>0x0})
bind$packet(r5, &(0x7f0000000180)={0x11, 0x0, r7}, 0x14)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
sendmsg$netlink(r5, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="02017d29012918000e3580009f0001140000002f0600ac141414e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88942a31f48597e36e039b1c599db6e466749c2d4c8303a0f7fbda34fb8825f80200e3c0aba61f6304a80500ffffca88faca"], 0xdd12}], 0x1}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xd, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r10}, 0x10)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x5c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x5c}}, 0x0)
fcntl$setlease(r1, 0x400, 0x0)

1.01130384s ago: executing program 4 (id=2508):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$AUDIT_LIST_RULES(r1, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x10, 0x3f5, 0x10, 0x70bd26, 0x25dfdbfb, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x4}, 0x801)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bridge_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@bridge_newvlan={0x18, 0x70, 0x239, 0x70bd2a, 0x25dfdbfb, {0x7, 0x0, 0x0, r3}}, 0x18}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0b0000000000090014846fbb9f758ce2000001000000000000"], 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r6, 0x0, 0x2}, 0x18)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x3, 0x0, 0x3, 0x10, 0x0, 0x70bd2c, 0x25dfdbfc, [@sadb_key={0x2, 0x9, 0x8, 0x0, "1c"}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x2}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x7}}]}, 0x80}, 0x1, 0x7}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r11, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
r12 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r12, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r12, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r13 = socket(0x10, 0x3, 0x0)
getsockname$packet(r12, &(0x7f0000000100)={0x11, 0x0, <r14=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r13, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r14, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0xffffffffffffffdb, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000740)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000700)={&(0x7f00000008c0)={0x164, 0x0, 0x800, 0x70bd2d, 0x25dfdbfb, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x164}, 0x1, 0x0, 0x0, 0x40000}, 0x4000010)
sendmsg$NL80211_CMD_VENDOR(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="a1ab00000000000000003200000008001781"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r9, 0x10e, 0x7, &(0x7f0000000300)={0x0, 0x0, 0x4, 0x2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000d0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffefb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r15 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r15, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)

840.405564ms ago: executing program 3 (id=2509):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffa}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x16, 0x0, 0x4, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
acct(0x0)

839.645524ms ago: executing program 4 (id=2510):
r0 = socket$netlink(0x10, 0x3, 0xb)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2fffffffd}, 0xc)
close(r0)

760.18165ms ago: executing program 4 (id=2511):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYRES32], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./bus\x00', 0x1c5902, 0x2d)
write(r0, &(0x7f0000004200)='|', 0x1)
sendfile(r2, r1, 0x0, 0x7ffff000)
fallocate(r0, 0x0, 0x0, 0x1001f0)

747.448961ms ago: executing program 3 (id=2512):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/cgroup.procs\x00', 0xe02, 0x1c0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, 0x0, 0x3a)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000014c0)={0xffffffffffffffff, 0xe0, &(0x7f00000013c0)={0x0, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000001200)=[0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x2, 0x3, &(0x7f00000017c0)=[0x0], &(0x7f0000001280)=[0x0, 0x0, 0x0], 0x0, 0xd3, &(0x7f00000012c0)=[{}, {}], 0x10, 0x10, &(0x7f0000001300), &(0x7f0000001340), 0x8, 0x8c, 0x8, 0xffae, &(0x7f00000016c0)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000001580)={0x4, 0x10, &(0x7f0000001640)=ANY=[@ANYBLOB="18110000", @ANYRESDEC=r5, @ANYRES64=r4], &(0x7f00000010c0)='syzkaller\x00', 0x100, 0xc6, &(0x7f0000001100)=""/198, 0x40f00, 0x0, '\x00', r5, @fallback=0x1, 0xffffffffffffffff, 0x8, &(0x7f0000001500)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000001540)={0x1, 0x9, 0x33, 0x8}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x876c}, 0x94)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
r9 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
writev(r6, &(0x7f00000008c0)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f8864f0", 0x13}, {&(0x7f0000000100)='\x00\x00\x00\x00', 0x4}, {&(0x7f0000000800)="38c8114fa3db529ed03bcef7ec2ea72ff78e04927d241dea66ff7487527450271f5eecbf1ef4f33ddcdcbb7f", 0x2c}], 0x3)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r10, 0x0, 0x401}, 0x11)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000006000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000}, 0x94)
sendmsg$key(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000c80)=ANY=[@ANYBLOB="020a000002"], 0x10}}, 0x0)

477.579063ms ago: executing program 4 (id=2513):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b70200"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r3=>0x0})
bind$can_raw(r2, &(0x7f0000000480)={0x1d, r3}, 0x10)
close(r2)

477.030003ms ago: executing program 3 (id=2514):
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000200)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6}}, './file0\x00'})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x10}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6b}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_io_uring_setup(0x2f90, &(0x7f0000000180)={0x0, 0xc383, 0x3010, 0x2, 0x200004}, &(0x7f0000000100), &(0x7f0000000140))
r2 = epoll_create(0xaf2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
epoll_pwait2(r2, &(0x7f0000000280)=[{}], 0x1, 0x0, 0x0, 0x0) (fail_nth: 6)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000080)={0xe000200f})
openat$selinux_attr(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1f, 0x4f, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x81, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x56}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r4}, 0x18)
unlinkat(0xffffffffffffff9c, 0x0, 0x200)

372.442421ms ago: executing program 4 (id=2515):
socket$nl_route(0x10, 0x3, 0x0)
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fd/3\x00')
getdents64(r0, &(0x7f0000002f40)=""/4098, 0x1002)
ioctl$USBDEVFS_CLEAR_HALT(r0, 0x80045515, &(0x7f0000000840)={0x4, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x8040, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000040)={0x0, 0xffffffff, 0x1, 0x0, 0x90, "ff00f7000000000000000020af88008300"})
r2 = syz_open_pts(r1, 0x141601)
r3 = gettid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000580)={0x2, 0x3, 0x0, 0x3, 0x11, 0x0, 0x700, 0x0, [@sadb_x_kmaddress={0x8, 0x19, 0x0, @in6={0xa, 0x4e20, 0x3, @local, 0x4}, @in6={0xa, 0x4e24, 0x101, @loopback, 0x9}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_x_nat_t_type={0x1, 0x14, 0x8}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x88}, 0x1, 0x7}, 0x10)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
write(r2, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000080)={0x400008, 0x1ffffffe, 0x0, 0x200007, 0x19, "680c1acfa4a5000000070000faffffff000800"})
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(r5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000b00)=@newtfilter={0xb0, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xfffa}, {}, {0x5, 0xfff9}}, [@filter_kind_options=@f_route={{0xa}, {0x80, 0x2, [@TCA_ROUTE4_POLICE={0x10, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}]}, @TCA_ROUTE4_TO={0x8, 0x2, 0x5c}, @TCA_ROUTE4_POLICE={0x5c, 0x5, [@TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_TBF={0x3c, 0x1, {0x4, 0x2, 0x0, 0x79, 0x1ff, {0x7f, 0x2, 0x4, 0x8, 0x401, 0x4}, {0x9, 0x2, 0x8, 0x43, 0x5, 0x7}, 0x48, 0xbc, 0x9}}, @TCA_POLICE_RESULT={0x8, 0x5, 0x35d}, @TCA_POLICE_AVRATE={0x8, 0x4, 0xc}]}, @TCA_ROUTE4_IIF={0x8}]}}]}, 0xb0}}, 0x24000000)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)

20.361609ms ago: executing program 3 (id=2516):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002e0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f0000000bc0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

0s ago: executing program 3 (id=2517):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r5, 0x402, 0x8000001f)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x4)
fcntl$notify(r6, 0x402, 0x8000003d)
close_range(r5, r6, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x50)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f00000004c0)={r7, 0x0, 0x0}, 0x20)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYRES8, @ANYRES16=0x0, @ANYRES8, @ANYRESDEC], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x1, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000004000000000000000000850000007a000000950000000000000017732537dc68f1a36863e26525"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r10 = socket$packet(0x11, 0x1, 0x300)
setsockopt$sock_attach_bpf(r10, 0x1, 0x32, &(0x7f0000000080)=r9, 0x4)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r8, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r0, 0x10ada85e65c25359, 0xfffffffd, 0x25dfdbfd, {{0x6b}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0x6, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x9}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8441}, 0x4000000)

kernel console output (not intermixed with test programs):

I: 0000000000000567 RDI: 0000000000000004
[  133.961182][ T8672] RBP: 00007f77a440f090 R08: 0000000000000000 R09: 0000000000000000
[  133.961195][ T8672] R10: 0000000000000042 R11: 0000000000000246 R12: 0000000000000001
[  133.961208][ T8672] R13: 00007f77a5be6038 R14: 00007f77a5be5fa0 R15: 00007fff6e6456b8
[  133.961246][ T8672]  </TASK>
[  133.968069][ T8665] loop3: detected capacity change from 0 to 8192
[  134.273153][ T8665]  loop3: p1 p2 p3
[  134.276938][ T8665] loop3: p1 start 51379968 is beyond EOD, truncated
[  134.295621][ T8682] loop4: detected capacity change from 0 to 164
[  134.311255][ T8682] iso9660: Corrupted directory entry in block 4 of inode 1792
[  134.334000][ T8665] loop3: p3 size 100663552 extends beyond EOD, truncated
[  134.394253][ T8691] netlink: '+}[@': attribute type 13 has an invalid length.
[  134.409636][ T8691] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  134.425202][ T3391] lo speed is unknown, defaulting to 1000
[  134.474719][ T8697] netlink: 'syz.3.1861': attribute type 7 has an invalid length.
[  134.518685][ T8701] loop2: detected capacity change from 0 to 128
[  134.531124][ T8701] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  134.534266][ T8704] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1863'.
[  134.556735][ T8701] FAULT_INJECTION: forcing a failure.
[  134.556735][ T8701] name failslab, interval 1, probability 0, space 0, times 0
[  134.569697][ T8701] CPU: 1 UID: 0 PID: 8701 Comm: wÞ£ÿ Not tainted syzkaller #0 PREEMPT(voluntary) 
[  134.569751][ T8701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  134.569776][ T8701] Call Trace:
[  134.569783][ T8701]  <TASK>
[  134.569790][ T8701]  __dump_stack+0x1d/0x30
[  134.569810][ T8701]  dump_stack_lvl+0xe8/0x140
[  134.569849][ T8701]  dump_stack+0x15/0x1b
[  134.569875][ T8701]  should_fail_ex+0x265/0x280
[  134.569897][ T8701]  should_failslab+0x8c/0xb0
[  134.569919][ T8701]  kmem_cache_alloc_noprof+0x50/0x310
[  134.569943][ T8701]  ? __es_insert_extent+0x508/0xee0
[  134.570020][ T8701]  __es_insert_extent+0x508/0xee0
[  134.570089][ T8701]  ? _raw_spin_unlock_irq+0x26/0x50
[  134.570111][ T8701]  ? loop_queue_rq+0x5e3/0x680
[  134.570165][ T8701]  ? should_fail_ex+0xdb/0x280
[  134.570184][ T8701]  ext4_es_insert_extent+0x435/0x1c10
[  134.570216][ T8701]  ? ext4_find_extent+0x16b/0x7a0
[  134.570343][ T8701]  ext4_ext_map_blocks+0x172b/0x38a0
[  134.570372][ T8701]  ? __blk_flush_plug+0x262/0x2a0
[  134.570395][ T8701]  ? css_rstat_updated+0xb7/0x240
[  134.570425][ T8701]  ? ktime_get+0x1eb/0x210
[  134.570526][ T8701]  ? __rcu_read_unlock+0x4f/0x70
[  134.570580][ T8701]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  134.570642][ T8701]  ext4_map_query_blocks+0xa8/0x480
[  134.570674][ T8701]  ext4_map_blocks+0x330/0xd00
[  134.570707][ T8701]  ? __ext4_journal_start_sb+0x131/0x300
[  134.570732][ T8701]  ext4_iomap_begin+0x88d/0xe00
[  134.570795][ T8701]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  134.570889][ T8701]  iomap_iter+0x332/0x730
[  134.571040][ T8701]  ? should_failslab+0x8c/0xb0
[  134.571115][ T8701]  __iomap_dio_rw+0x708/0x1250
[  134.571145][ T8701]  ? ext4_journal_check_start+0x11a/0x1b0
[  134.571167][ T8701]  iomap_dio_rw+0x40/0x90
[  134.571187][ T8701]  ext4_file_write_iter+0xad9/0xf00
[  134.571240][ T8701]  do_iter_readv_writev+0x49c/0x540
[  134.571271][ T8701]  vfs_writev+0x2df/0x8b0
[  134.571310][ T8701]  __se_sys_pwritev2+0xfc/0x1c0
[  134.571337][ T8701]  __x64_sys_pwritev2+0x67/0x80
[  134.571366][ T8701]  x64_sys_call+0x2c55/0x2ff0
[  134.571449][ T8701]  do_syscall_64+0xd2/0x200
[  134.571479][ T8701]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  134.571500][ T8701]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  134.571579][ T8701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.571604][ T8701] RIP: 0033:0x7fbfc72eebe9
[  134.571621][ T8701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.571641][ T8701] RSP: 002b:00007fbfc5d57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  134.571737][ T8701] RAX: ffffffffffffffda RBX: 00007fbfc7525fa0 RCX: 00007fbfc72eebe9
[  134.571748][ T8701] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000006
[  134.571760][ T8701] RBP: 00007fbfc5d57090 R08: 000000000000ff01 R09: 0000000000000003
[  134.571771][ T8701] R10: 0000000000007c00 R11: 0000000000000246 R12: 0000000000000001
[  134.571785][ T8701] R13: 00007fbfc7526038 R14: 00007fbfc7525fa0 R15: 00007ffe8c283608
[  134.571805][ T8701]  </TASK>
[  134.873911][ T8704] loop4: detected capacity change from 0 to 128
[  134.895809][ T8708] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  134.903686][ T8708] SELinux: failed to load policy
[  134.966766][ T8704] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  134.981707][ T3304] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  135.007019][ T3303] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  136.257679][ T8729] netlink: '+}[@': attribute type 13 has an invalid length.
[  136.513320][ T8729] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  136.668825][ T8744] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  136.720647][ T8744] loop3: detected capacity change from 0 to 256
[  136.736613][ T8746] loop2: detected capacity change from 0 to 164
[  136.928344][ T8751] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=8751 comm=syz.1.1879
[  136.955209][ T8752] 9pnet_fd: Insufficient options for proto=fd
[  137.002939][ T8733] netlink: 'syz.5.1874': attribute type 7 has an invalid length.
[  137.080384][ T8760] netlink: 'syz.1.1883': attribute type 7 has an invalid length.
[  137.167331][ T8775] loop3: detected capacity change from 0 to 512
[  137.174625][ T8775] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  137.205035][ T8775] EXT4-fs (loop3): can't mount with journal_async_commit, fs mounted w/o journal
[  137.465592][ T8785] netlink: 'syz.4.1892': attribute type 7 has an invalid length.
[  137.643551][ T8789] loop4: detected capacity change from 0 to 128
[  137.672036][ T8789] netlink: 'syz.4.1894': attribute type 10 has an invalid length.
[  137.703149][ T8789] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  137.714567][ T8795] cgroup: Unknown subsys name 'cpuset'
[  137.754053][ T8799] loop4: detected capacity change from 0 to 512
[  137.760659][ T8799] EXT4-fs: Ignoring removed nobh option
[  137.768120][ T8799] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.1897: iget: bad i_size value: 38620345925642
[  137.803123][ T8799] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1897: couldn't read orphan inode 15 (err -117)
[  137.810495][ T8807] FAULT_INJECTION: forcing a failure.
[  137.810495][ T8807] name failslab, interval 1, probability 0, space 0, times 0
[  137.817328][ T8799] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.827798][ T8807] CPU: 1 UID: 0 PID: 8807 Comm: syz.3.1900 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  137.827863][ T8807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  137.827876][ T8807] Call Trace:
[  137.827883][ T8807]  <TASK>
[  137.827891][ T8807]  __dump_stack+0x1d/0x30
[  137.827913][ T8807]  dump_stack_lvl+0xe8/0x140
[  137.827933][ T8807]  dump_stack+0x15/0x1b
[  137.828015][ T8807]  should_fail_ex+0x265/0x280
[  137.828037][ T8807]  should_failslab+0x8c/0xb0
[  137.828061][ T8807]  kmem_cache_alloc_noprof+0x50/0x310
[  137.828087][ T8807]  ? getname_flags+0x80/0x3b0
[  137.828112][ T8807]  ? get_pid_task+0x96/0xd0
[  137.828175][ T8807]  getname_flags+0x80/0x3b0
[  137.828201][ T8807]  do_mq_open+0xd9/0x4f0
[  137.828222][ T8807]  ? __rcu_read_unlock+0x4f/0x70
[  137.828243][ T8807]  ? __fget_files+0x184/0x1c0
[  137.828309][ T8807]  __x64_sys_mq_open+0xcb/0x100
[  137.828332][ T8807]  x64_sys_call+0x8c6/0x2ff0
[  137.828353][ T8807]  do_syscall_64+0xd2/0x200
[  137.828502][ T8807]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  137.828525][ T8807]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  137.828585][ T8807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.828606][ T8807] RIP: 0033:0x7fd3d7eaebe9
[  137.828622][ T8807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.828640][ T8807] RSP: 002b:00007fd3d690f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f0
[  137.828661][ T8807] RAX: ffffffffffffffda RBX: 00007fd3d80e5fa0 RCX: 00007fd3d7eaebe9
[  137.828739][ T8807] RDX: 00000000000001f0 RSI: 0000000000000040 RDI: 0000000000000000
[  137.828752][ T8807] RBP: 00007fd3d690f090 R08: 0000000000000000 R09: 0000000000000000
[  137.828764][ T8807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.828777][ T8807] R13: 00007fd3d80e6038 R14: 00007fd3d80e5fa0 R15: 00007ffd328814e8
[  137.828795][ T8807]  </TASK>
[  137.909445][ T8811] loop3: detected capacity change from 0 to 512
[  138.098348][ T8816] loop5: detected capacity change from 0 to 512
[  138.113286][ T8816] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.129810][ T8811] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.145136][ T8799] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.1897: bg 0: block 5: invalid block bitmap
[  138.158069][ T8799] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 16 with error 28
[  138.170409][ T8799] EXT4-fs (loop4): This should not happen!! Data will be lost
[  138.170409][ T8799] 
[  138.180149][ T8799] EXT4-fs (loop4): Total free blocks count 0
[  138.186199][ T8799] EXT4-fs (loop4): Free/Dirty block details
[  138.192296][ T8799] EXT4-fs (loop4): free_blocks=0
[  138.197251][ T8799] EXT4-fs (loop4): dirty_blocks=3500
[  138.202616][ T8799] EXT4-fs (loop4): Block reservation details
[  138.208637][ T8799] EXT4-fs (loop4): i_reserved_data_blocks=3500
[  138.264408][ T8826] lo speed is unknown, defaulting to 1000
[  138.288003][   T51] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 16 with max blocks 2048 with error 28
[  138.385057][ T8838] FAULT_INJECTION: forcing a failure.
[  138.385057][ T8838] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.398364][ T8838] CPU: 0 UID: 0 PID: 8838 Comm: syz.1.1908 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  138.398396][ T8838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  138.398409][ T8838] Call Trace:
[  138.398416][ T8838]  <TASK>
[  138.398485][ T8838]  __dump_stack+0x1d/0x30
[  138.398507][ T8838]  dump_stack_lvl+0xe8/0x140
[  138.398527][ T8838]  dump_stack+0x15/0x1b
[  138.398544][ T8838]  should_fail_ex+0x265/0x280
[  138.398567][ T8838]  should_fail+0xb/0x20
[  138.398599][ T8838]  should_fail_usercopy+0x1a/0x20
[  138.398648][ T8838]  _copy_from_user+0x1c/0xb0
[  138.398715][ T8838]  kstrtouint_from_user+0x69/0xf0
[  138.398739][ T8838]  ? 0xffffffff81000000
[  138.398752][ T8838]  ? selinux_file_permission+0x1e4/0x320
[  138.398813][ T8838]  proc_fail_nth_write+0x50/0x160
[  138.398874][ T8838]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  138.398903][ T8838]  vfs_write+0x269/0x960
[  138.398960][ T8838]  ? vfs_read+0x4e6/0x770
[  138.398982][ T8838]  ? __rcu_read_unlock+0x4f/0x70
[  138.399004][ T8838]  ? __fget_files+0x184/0x1c0
[  138.399030][ T8838]  ksys_write+0xda/0x1a0
[  138.399100][ T8838]  __x64_sys_write+0x40/0x50
[  138.399133][ T8838]  x64_sys_call+0x27fe/0x2ff0
[  138.399155][ T8838]  do_syscall_64+0xd2/0x200
[  138.399184][ T8838]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  138.399301][ T8838]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  138.399372][ T8838]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.399395][ T8838] RIP: 0033:0x7f7b4b42d69f
[  138.399412][ T8838] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  138.399432][ T8838] RSP: 002b:00007f7b49e97030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  138.399454][ T8838] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7b4b42d69f
[  138.399493][ T8838] RDX: 0000000000000001 RSI: 00007f7b49e970a0 RDI: 0000000000000005
[  138.399506][ T8838] RBP: 00007f7b49e97090 R08: 0000000000000000 R09: 0000000000000000
[  138.399519][ T8838] R10: 000000007a680000 R11: 0000000000000293 R12: 0000000000000001
[  138.399532][ T8838] R13: 00007f7b4b666038 R14: 00007f7b4b665fa0 R15: 00007ffc71954258
[  138.399551][ T8838]  </TASK>
[  138.404412][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.516158][   T29] kauditd_printk_skb: 319 callbacks suppressed
[  138.516174][   T29] audit: type=1326 audit(138.499:9801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8841 comm="syz.2.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  138.553328][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.563659][   T29] audit: type=1326 audit(138.509:9802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8841 comm="syz.2.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  138.684634][   T29] audit: type=1326 audit(138.509:9803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8841 comm="syz.2.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  138.707572][   T29] audit: type=1326 audit(138.509:9804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8841 comm="syz.2.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  138.730479][   T29] audit: type=1326 audit(138.509:9805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8841 comm="syz.2.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  138.753553][   T29] audit: type=1326 audit(138.509:9806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8841 comm="syz.2.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  138.776394][   T29] audit: type=1326 audit(138.509:9807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8841 comm="syz.2.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  138.799405][   T29] audit: type=1326 audit(138.509:9808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8841 comm="syz.2.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  138.822738][   T29] audit: type=1326 audit(138.509:9809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8841 comm="syz.2.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  138.845661][   T29] audit: type=1326 audit(138.509:9810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8841 comm="syz.2.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  138.938838][ T8851] __nla_validate_parse: 1 callbacks suppressed
[  138.938910][ T8851] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  139.113141][ T8869] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1921'.
[  139.122342][ T8869] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1921'.
[  139.197623][ T8869] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1921'.
[  139.218338][ T8869] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1921'.
[  139.227543][ T8869] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1921'.
[  139.256810][ T8869] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1921'.
[  139.269575][ T8871] netlink: 'syz.4.1922': attribute type 3 has an invalid length.
[  139.278899][ T8871] netlink: 'syz.4.1922': attribute type 3 has an invalid length.
[  139.307087][ T8914] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1924'.
[  139.339936][ T8869] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1921'.
[  139.348987][ T8869] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1921'.
[  139.683157][ T8964] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=32787 sclass=netlink_route_socket pid=8964 comm=syz.4.1934
[  139.708777][ T8966] loop5: detected capacity change from 0 to 512
[  139.738079][ T8966] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.120358][ T8986] netlink: 'syz.1.1942': attribute type 7 has an invalid length.
[  140.168528][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.248465][ T8993] FAULT_INJECTION: forcing a failure.
[  140.248465][ T8993] name failslab, interval 1, probability 0, space 0, times 0
[  140.261411][ T8993] CPU: 0 UID: 0 PID: 8993 Comm: syz.1.1945 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  140.261444][ T8993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  140.261455][ T8993] Call Trace:
[  140.261461][ T8993]  <TASK>
[  140.261468][ T8993]  __dump_stack+0x1d/0x30
[  140.261488][ T8993]  dump_stack_lvl+0xe8/0x140
[  140.261508][ T8993]  dump_stack+0x15/0x1b
[  140.261526][ T8993]  should_fail_ex+0x265/0x280
[  140.261549][ T8993]  ? resv_map_alloc+0x57/0x190
[  140.261578][ T8993]  should_failslab+0x8c/0xb0
[  140.261602][ T8993]  __kmalloc_cache_noprof+0x4c/0x320
[  140.261629][ T8993]  resv_map_alloc+0x57/0x190
[  140.261657][ T8993]  hugetlb_reserve_pages+0x1ab/0xc00
[  140.261684][ T8993]  hugetlbfs_file_mmap+0x27e/0x340
[  140.261716][ T8993]  mmap_region+0xfad/0x1630
[  140.261755][ T8993]  do_mmap+0x9b3/0xbe0
[  140.261802][ T8993]  vm_mmap_pgoff+0x17a/0x2e0
[  140.261836][ T8993]  ksys_mmap_pgoff+0x2d0/0x310
[  140.261871][ T8993]  x64_sys_call+0x14a3/0x2ff0
[  140.261893][ T8993]  do_syscall_64+0xd2/0x200
[  140.261922][ T8993]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  140.261943][ T8993]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  140.261967][ T8993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.261988][ T8993] RIP: 0033:0x7f7b4b42ebe9
[  140.262006][ T8993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.262024][ T8993] RSP: 002b:00007f7b49e97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  140.262047][ T8993] RAX: ffffffffffffffda RBX: 00007f7b4b665fa0 RCX: 00007f7b4b42ebe9
[  140.262061][ T8993] RDX: 0000000000000002 RSI: 0000000000800000 RDI: 0000200000800000
[  140.262076][ T8993] RBP: 00007f7b49e97090 R08: ffffffffffffffff R09: 0000000000000000
[  140.262090][ T8993] R10: 0000000000042032 R11: 0000000000000246 R12: 0000000000000002
[  140.262104][ T8993] R13: 00007f7b4b666038 R14: 00007f7b4b665fa0 R15: 00007ffc71954258
[  140.262121][ T8993]  </TASK>
[  140.483063][ T8995] serio: Serial port ptm0
[  140.733537][ T9013] loop5: detected capacity change from 0 to 1764
[  140.858491][ T9017] iso9660: Corrupted directory entry in block 2 of inode 1920
[  141.412606][ T9032] loop3: detected capacity change from 0 to 1024
[  141.587175][ T9044] loop3: detected capacity change from 0 to 1024
[  141.596001][ T9044] EXT4-fs: Ignoring removed bh option
[  142.641957][ T9052] FAULT_INJECTION: forcing a failure.
[  142.641957][ T9052] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  142.655229][ T9052] CPU: 1 UID: 0 PID: 9052 Comm: syz.1.1966 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  142.655258][ T9052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  142.655271][ T9052] Call Trace:
[  142.655278][ T9052]  <TASK>
[  142.655285][ T9052]  __dump_stack+0x1d/0x30
[  142.655333][ T9052]  dump_stack_lvl+0xe8/0x140
[  142.655352][ T9052]  dump_stack+0x15/0x1b
[  142.655368][ T9052]  should_fail_ex+0x265/0x280
[  142.655427][ T9052]  should_fail+0xb/0x20
[  142.655447][ T9052]  should_fail_usercopy+0x1a/0x20
[  142.655557][ T9052]  _copy_from_user+0x1c/0xb0
[  142.655655][ T9052]  ___sys_sendmsg+0xc1/0x1d0
[  142.655796][ T9052]  __x64_sys_sendmsg+0xd4/0x160
[  142.655826][ T9052]  x64_sys_call+0x191e/0x2ff0
[  142.655918][ T9052]  do_syscall_64+0xd2/0x200
[  142.655950][ T9052]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  142.655977][ T9052]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  142.656063][ T9052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.656190][ T9052] RIP: 0033:0x7f7b4b42ebe9
[  142.656205][ T9052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.656224][ T9052] RSP: 002b:00007f7b49e97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  142.656248][ T9052] RAX: ffffffffffffffda RBX: 00007f7b4b665fa0 RCX: 00007f7b4b42ebe9
[  142.656263][ T9052] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000003
[  142.656277][ T9052] RBP: 00007f7b49e97090 R08: 0000000000000000 R09: 0000000000000000
[  142.656292][ T9052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.656305][ T9052] R13: 00007f7b4b666038 R14: 00007f7b4b665fa0 R15: 00007ffc71954258
[  142.656334][ T9052]  </TASK>
[  142.836960][ T9055] loop4: detected capacity change from 0 to 512
[  142.845143][ T9055] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  142.855618][ T9044] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[  142.883679][ T9044] FAULT_INJECTION: forcing a failure.
[  142.883679][ T9044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  142.896891][ T9044] CPU: 1 UID: 0 PID: 9044 Comm: syz.3.1963 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  142.896963][ T9044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  142.896974][ T9044] Call Trace:
[  142.896981][ T9044]  <TASK>
[  142.896988][ T9044]  __dump_stack+0x1d/0x30
[  142.897014][ T9044]  dump_stack_lvl+0xe8/0x140
[  142.897036][ T9044]  dump_stack+0x15/0x1b
[  142.897056][ T9044]  should_fail_ex+0x265/0x280
[  142.897082][ T9044]  should_fail+0xb/0x20
[  142.897101][ T9044]  should_fail_usercopy+0x1a/0x20
[  142.897123][ T9044]  strncpy_from_user+0x25/0x230
[  142.897156][ T9044]  path_setxattrat+0xeb/0x310
[  142.897235][ T9044]  __x64_sys_setxattr+0x6e/0x90
[  142.897256][ T9044]  x64_sys_call+0xad2/0x2ff0
[  142.897280][ T9044]  do_syscall_64+0xd2/0x200
[  142.897311][ T9044]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  142.897368][ T9044]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  142.897393][ T9044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.897416][ T9044] RIP: 0033:0x7fd3d7eaebe9
[  142.897434][ T9044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.897474][ T9044] RSP: 002b:00007fd3d690f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  142.897493][ T9044] RAX: ffffffffffffffda RBX: 00007fd3d80e5fa0 RCX: 00007fd3d7eaebe9
[  142.897506][ T9044] RDX: 0000200000000380 RSI: 0000200000000340 RDI: 0000200000000300
[  142.897517][ T9044] RBP: 00007fd3d690f090 R08: 0000000000000000 R09: 0000000000000000
[  142.897530][ T9044] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[  142.897545][ T9044] R13: 00007fd3d80e6038 R14: 00007fd3d80e5fa0 R15: 00007ffd328814e8
[  142.897565][ T9044]  </TASK>
[  142.912882][ T9057] lo speed is unknown, defaulting to 1000
[  142.920850][ T9055] EXT4-fs (loop4): can't mount with journal_async_commit, fs mounted w/o journal
[  143.070034][ T9067] netlink: '+}[@': attribute type 13 has an invalid length.
[  143.078270][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  143.104977][ T9067] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  143.253225][ T9083] netlink: 'syz.4.1976': attribute type 7 has an invalid length.
[  143.288382][ T9075] loop3: detected capacity change from 0 to 2048
[  143.291794][ T9085] loop5: detected capacity change from 0 to 1024
[  143.312782][ T9085] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  143.332932][ T9075] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.362134][ T9085] EXT4-fs error (device loop5): ext4_free_blocks:6696: comm syz.5.1978: Freeing blocks not in datazone - block = 0, count = 16
[  143.367437][ T9091] lo speed is unknown, defaulting to 1000
[  143.444504][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  143.651170][   T29] kauditd_printk_skb: 57 callbacks suppressed
[  143.651186][   T29] audit: type=1326 audit(143.639:9868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9113 comm="syz.2.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  143.691125][   T29] audit: type=1326 audit(143.659:9869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9113 comm="syz.2.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  143.713469][ T9111] lo speed is unknown, defaulting to 1000
[  143.714104][   T29] audit: type=1326 audit(143.669:9870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9113 comm="syz.2.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  143.742801][   T29] audit: type=1326 audit(143.669:9871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9113 comm="syz.2.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  143.765730][   T29] audit: type=1326 audit(143.669:9872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9113 comm="syz.2.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  143.788812][   T29] audit: type=1326 audit(143.679:9873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9113 comm="syz.2.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  143.811792][   T29] audit: type=1326 audit(143.679:9874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9113 comm="syz.2.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  143.879806][   T29] audit: type=1326 audit(143.819:9875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9113 comm="syz.2.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  143.902921][   T29] audit: type=1326 audit(143.819:9876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9113 comm="syz.2.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  143.926017][   T29] audit: type=1326 audit(143.819:9877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9113 comm="syz.2.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc72eebe9 code=0x7ffc0000
[  144.036509][ T9125] netlink: 'syz.2.1990': attribute type 7 has an invalid length.
[  144.045922][ T9116] lo speed is unknown, defaulting to 1000
[  144.071853][ T9075] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1970: bg 0: block 234: padding at end of block bitmap is not set
[  144.114025][ T9075] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 117
[  144.126657][ T9075] EXT4-fs (loop3): This should not happen!! Data will be lost
[  144.126657][ T9075] 
[  144.173971][ T9127] lo speed is unknown, defaulting to 1000
[  144.223645][ T9135] netlink: 'syz.1.1993': attribute type 7 has an invalid length.
[  144.256493][ T8954] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  144.269347][ T8954] EXT4-fs (loop3): This should not happen!! Data will be lost
[  144.269347][ T8954] 
[  144.279103][ T8954] EXT4-fs (loop3): Total free blocks count 0
[  144.285121][ T8954] EXT4-fs (loop3): Free/Dirty block details
[  144.291059][ T8954] EXT4-fs (loop3): free_blocks=0
[  144.296014][ T8954] EXT4-fs (loop3): dirty_blocks=6160
[  144.301333][ T8954] EXT4-fs (loop3): Block reservation details
[  144.961882][ T9159] __nla_validate_parse: 3 callbacks suppressed
[  144.961900][ T9159] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2002'.
[  145.468709][ T9165] lo speed is unknown, defaulting to 1000
[  145.580920][ T9180] netlink: '+}[@': attribute type 13 has an invalid length.
[  145.694964][ T9180] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  145.739292][ T9187] loop5: detected capacity change from 0 to 512
[  145.746224][ T9187] EXT4-fs: Ignoring removed nobh option
[  145.746613][ T9183] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2012'.
[  145.768220][ T9187] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.2013: iget: bad i_size value: 38620345925642
[  145.791982][ T9187] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.2013: couldn't read orphan inode 15 (err -117)
[  145.818821][ T9187] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.879529][ T9194] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2014'.
[  146.116086][ T9187] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.2013: bg 0: block 5: invalid block bitmap
[  146.162406][ T9204] lo speed is unknown, defaulting to 1000
[  146.560827][ T9187] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 16 with error 28
[  146.573422][ T9187] EXT4-fs (loop5): This should not happen!! Data will be lost
[  146.573422][ T9187] 
[  146.583238][ T9187] EXT4-fs (loop5): Total free blocks count 0
[  146.589243][ T9187] EXT4-fs (loop5): Free/Dirty block details
[  146.595214][ T9187] EXT4-fs (loop5): free_blocks=0
[  146.600177][ T9187] EXT4-fs (loop5): dirty_blocks=2328
[  146.605546][ T9187] EXT4-fs (loop5): Block reservation details
[  146.611615][ T9187] EXT4-fs (loop5): i_reserved_data_blocks=2328
[  146.637720][ T8951] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 16 with max blocks 2048 with error 28
[  146.981104][ T9226] FAULT_INJECTION: forcing a failure.
[  146.981104][ T9226] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.994430][ T9226] CPU: 1 UID: 0 PID: 9226 Comm: syz.3.2025 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  146.994455][ T9226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  146.994467][ T9226] Call Trace:
[  146.994472][ T9226]  <TASK>
[  146.994480][ T9226]  __dump_stack+0x1d/0x30
[  146.994504][ T9226]  dump_stack_lvl+0xe8/0x140
[  146.994526][ T9226]  dump_stack+0x15/0x1b
[  146.994551][ T9226]  should_fail_ex+0x265/0x280
[  146.994575][ T9226]  should_fail+0xb/0x20
[  146.994592][ T9226]  should_fail_usercopy+0x1a/0x20
[  146.994738][ T9226]  _copy_from_user+0x1c/0xb0
[  146.994765][ T9226]  kstrtouint_from_user+0x69/0xf0
[  146.994785][ T9226]  ? 0xffffffff81000000
[  146.994797][ T9226]  ? selinux_file_permission+0x1e4/0x320
[  146.994819][ T9226]  proc_fail_nth_write+0x50/0x160
[  146.994905][ T9226]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  146.994928][ T9226]  vfs_write+0x269/0x960
[  146.995008][ T9226]  ? vfs_read+0x4e6/0x770
[  146.995026][ T9226]  ? __rcu_read_unlock+0x4f/0x70
[  146.995045][ T9226]  ? __fget_files+0x184/0x1c0
[  146.995126][ T9226]  ksys_write+0xda/0x1a0
[  146.995150][ T9226]  __x64_sys_write+0x40/0x50
[  146.995176][ T9226]  x64_sys_call+0x27fe/0x2ff0
[  146.995199][ T9226]  do_syscall_64+0xd2/0x200
[  146.995272][ T9226]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  146.995376][ T9226]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  146.995399][ T9226]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.995487][ T9226] RIP: 0033:0x7fd3d7ead69f
[  146.995501][ T9226] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  146.995520][ T9226] RSP: 002b:00007fd3d690f030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  146.995543][ T9226] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd3d7ead69f
[  146.995558][ T9226] RDX: 0000000000000001 RSI: 00007fd3d690f0a0 RDI: 0000000000000007
[  146.995570][ T9226] RBP: 00007fd3d690f090 R08: 0000000000000000 R09: 0000000000000000
[  146.995609][ T9226] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  146.995622][ T9226] R13: 00007fd3d80e6038 R14: 00007fd3d80e5fa0 R15: 00007ffd328814e8
[  146.995638][ T9226]  </TASK>
[  147.312693][ T9221] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2023'.
[  147.579029][ T9232] lo speed is unknown, defaulting to 1000
[  147.607278][ T9242] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2029'.
[  147.712246][ T9252] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2033'.
[  147.743741][ T9257] netlink: 'syz.3.2034': attribute type 7 has an invalid length.
[  147.766589][ T9252] vlan2: entered promiscuous mode
[  147.771822][ T9252] batadv0: entered promiscuous mode
[  147.801419][ T9263] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2038'.
[  149.626703][ T9282] lo speed is unknown, defaulting to 1000
[  149.666014][ T9285] loop4: detected capacity change from 0 to 512
[  149.680594][ T9285] EXT4-fs: Ignoring removed nobh option
[  149.708418][ T9285] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.2044: iget: bad i_size value: 38620345925642
[  149.735720][ T9285] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.2044: couldn't read orphan inode 15 (err -117)
[  149.780635][ T9289] bridge0: port 3(macsec1) entered blocking state
[  149.781194][ T9285] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.787189][ T9289] bridge0: port 3(macsec1) entered disabled state
[  149.833059][ T9289] macsec1: entered allmulticast mode
[  149.839934][ T9289] macsec1: left allmulticast mode
[  149.863990][ T9297] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2049'.
[  149.906006][   T29] kauditd_printk_skb: 153 callbacks suppressed
[  149.906023][   T29] audit: type=1400 audit(149.889:10031): avc:  denied  { setopt } for  pid=9301 comm="syz.3.2050" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  149.934771][ T9303] netlink: 5 bytes leftover after parsing attributes in process `syz.3.2050'.
[  149.953564][ T9306] loop5: detected capacity change from 0 to 512
[  149.961218][ T9303] 1ªî{X¹¦: renamed from 
30ªî{X¹¦ (while UP)
[  149.971098][ T9307] random: crng reseeded on system resumption
[  149.972613][ T9303] A link change request failed with some changes committed already. Interface 
31ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  149.998636][   T29] audit: type=1400 audit(149.919:10032): avc:  denied  { write } for  pid=9301 comm="syz.3.2050" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  150.025143][ T9285] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2044: bg 0: block 5: invalid block bitmap
[  150.031001][ T9310] loop3: detected capacity change from 0 to 512
[  150.039546][ T9285] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 16 with error 28
[  150.044871][ T9306] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.056426][ T9285] EXT4-fs (loop4): This should not happen!! Data will be lost
[  150.056426][ T9285] 
[  150.078448][ T9285] EXT4-fs (loop4): Total free blocks count 0
[  150.084527][ T9285] EXT4-fs (loop4): Free/Dirty block details
[  150.090493][ T9285] EXT4-fs (loop4): free_blocks=0
[  150.095501][ T9285] EXT4-fs (loop4): dirty_blocks=1096
[  150.100830][ T9285] EXT4-fs (loop4): Block reservation details
[  150.106867][ T9285] EXT4-fs (loop4): i_reserved_data_blocks=1096
[  150.302322][ T8952] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 16 with max blocks 1076 with error 28
[  150.425859][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.474334][   T29] audit: type=1326 audit(150.459:10033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9322 comm="syz.4.2058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d225eebe9 code=0x7ffc0000
[  150.515674][   T29] audit: type=1326 audit(150.459:10034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9322 comm="syz.4.2058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f1d225eebe9 code=0x7ffc0000
[  150.538666][   T29] audit: type=1326 audit(150.459:10035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9322 comm="syz.4.2058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d225eebe9 code=0x7ffc0000
[  150.562116][   T29] audit: type=1326 audit(150.479:10036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9322 comm="syz.4.2058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f1d225eebe9 code=0x7ffc0000
[  150.585015][   T29] audit: type=1326 audit(150.479:10037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9322 comm="syz.4.2058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d225eebe9 code=0x7ffc0000
[  150.608069][   T29] audit: type=1326 audit(150.479:10038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9322 comm="syz.4.2058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d225eebe9 code=0x7ffc0000
[  150.631119][   T29] audit: type=1326 audit(150.479:10039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9322 comm="syz.4.2058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f1d225eebe9 code=0x7ffc0000
[  150.654047][   T29] audit: type=1326 audit(150.479:10040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9322 comm="syz.4.2058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d225eebe9 code=0x7ffc0000
[  151.230452][ T9336] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2056'.
[  151.443452][ T9358] mmap: syz.5.2067 (9358) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  151.480769][ T9348] lo speed is unknown, defaulting to 1000
[  151.982931][ T9382] netlink: 'syz.5.2072': attribute type 10 has an invalid length.
[  152.001101][ T9382] team0: Device hsr_slave_0 failed to register rx_handler
[  152.097545][ T9373] loop4: detected capacity change from 0 to 1024
[  152.173918][ T9373] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  152.185021][ T9373] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  152.248206][ T9373] JBD2: no valid journal superblock found
[  152.254253][ T9373] EXT4-fs (loop4): Could not load journal inode
[  152.273743][ T9394] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2073'.
[  152.282844][ T9394] netlink: 'syz.3.2073': attribute type 7 has an invalid length.
[  152.290594][ T9394] netlink: 'syz.3.2073': attribute type 8 has an invalid length.
[  152.298861][ T9394] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2073'.
[  152.323331][ T9373] loop4: detected capacity change from 0 to 512
[  152.331594][ T9373] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  152.352740][ T9373] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.368635][ T9390] loop3: detected capacity change from 0 to 1024
[  152.377548][ T9373] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.2070: corrupted xattr block 19: overlapping e_value 
[  152.378104][ T9390] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  152.395251][ T9373] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  152.402693][ T9390] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  152.414209][ T9373] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.2070: corrupted xattr block 19: overlapping e_value 
[  152.433603][ T9390] JBD2: no valid journal superblock found
[  152.440929][ T9390] EXT4-fs (loop3): Could not load journal inode
[  152.449685][ T9373] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  152.461060][ T9373] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.2070: corrupted xattr block 19: overlapping e_value 
[  152.477393][ T9376] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.2070: corrupted xattr block 19: overlapping e_value 
[  152.492166][ T9376] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.2070: corrupted xattr block 19: overlapping e_value 
[  152.510482][ T9376] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  152.536364][ T9418] IPv6: Can't replace route, no match found
[  152.595285][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.630336][ T9431] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2077'.
[  152.651784][ T9431] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2077'.
[  152.767404][ T9425] hsr0: entered promiscuous mode
[  152.774716][ T9423] hsr0: left promiscuous mode
[  152.832369][ T9459] loop3: detected capacity change from 0 to 512
[  152.840189][ T9459] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  152.951513][ T9459] EXT4-fs (loop3): can't mount with journal_async_commit, fs mounted w/o journal
[  154.667066][ T9568] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2092'.
[  154.821964][ T9568] hsr_slave_0: left promiscuous mode
[  154.827985][ T9568] hsr_slave_1: left promiscuous mode
[  155.643336][ T9565] kexec: Could not allocate control_code_buffer
[  155.964021][ T9598] lo speed is unknown, defaulting to 1000
[  156.036487][ T9605] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  156.644701][   T29] kauditd_printk_skb: 87 callbacks suppressed
[  156.644718][   T29] audit: type=1400 audit(156.629:10128): avc:  denied  { map } for  pid=9618 comm="syz.4.2110" path="/dev/bus/usb/007/001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  156.677095][ T9619] vhci_hcd: invalid port number 96
[  156.682413][ T9619] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  157.036531][ T9633] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  157.049551][   T29] audit: type=1400 audit(157.029:10129): avc:  denied  { read } for  pid=9625 comm="syz.2.2113" name="ptp0" dev="devtmpfs" ino=246 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  157.072187][   T29] audit: type=1400 audit(157.029:10130): avc:  denied  { open } for  pid=9625 comm="syz.2.2113" path="/dev/ptp0" dev="devtmpfs" ino=246 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  157.095282][   T29] audit: type=1400 audit(157.029:10131): avc:  denied  { ioctl } for  pid=9625 comm="syz.2.2113" path="/dev/ptp0" dev="devtmpfs" ino=246 ioctlcmd=0x3d0c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  157.312187][ T9645] lo speed is unknown, defaulting to 1000
[  157.744417][ T9670] loop5: detected capacity change from 0 to 256
[  157.753171][ T9670] FAT-fs (loop5): bogus sectors per cluster 0
[  157.759331][ T9670] FAT-fs (loop5): This doesn't look like a DOS 1.x volume; no bootstrapping code
[  157.768520][ T9670] FAT-fs (loop5): Can't find a valid FAT filesystem
[  157.798869][ T9672] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  157.875411][ T9666] FAULT_INJECTION: forcing a failure.
[  157.875411][ T9666] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.888601][ T9666] CPU: 1 UID: 0 PID: 9666 Comm: syz.1.2125 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  157.888634][ T9666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  157.888649][ T9666] Call Trace:
[  157.888690][ T9666]  <TASK>
[  157.888699][ T9666]  __dump_stack+0x1d/0x30
[  157.888721][ T9666]  dump_stack_lvl+0xe8/0x140
[  157.888743][ T9666]  dump_stack+0x15/0x1b
[  157.888763][ T9666]  should_fail_ex+0x265/0x280
[  157.888860][ T9666]  should_fail+0xb/0x20
[  157.888879][ T9666]  should_fail_usercopy+0x1a/0x20
[  157.888905][ T9666]  _copy_to_user+0x20/0xa0
[  157.888939][ T9666]  simple_read_from_buffer+0xb5/0x130
[  157.888990][ T9666]  proc_fail_nth_read+0x10e/0x150
[  157.889015][ T9666]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  157.889063][ T9666]  vfs_read+0x1a8/0x770
[  157.889087][ T9666]  ? __rcu_read_unlock+0x4f/0x70
[  157.889109][ T9666]  ? __fget_files+0x184/0x1c0
[  157.889130][ T9666]  ? finish_task_switch+0xad/0x2b0
[  157.889179][ T9666]  ksys_read+0xda/0x1a0
[  157.889205][ T9666]  __x64_sys_read+0x40/0x50
[  157.889230][ T9666]  x64_sys_call+0x27bc/0x2ff0
[  157.889252][ T9666]  do_syscall_64+0xd2/0x200
[  157.889317][ T9666]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  157.889381][ T9666]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  157.889406][ T9666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.889502][ T9666] RIP: 0033:0x7f7b4b42d5fc
[  157.889583][ T9666] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  157.889603][ T9666] RSP: 002b:00007f7b49e55030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  157.889627][ T9666] RAX: ffffffffffffffda RBX: 00007f7b4b666180 RCX: 00007f7b4b42d5fc
[  157.889641][ T9666] RDX: 000000000000000f RSI: 00007f7b49e550a0 RDI: 0000000000000004
[  157.889652][ T9666] RBP: 00007f7b49e55090 R08: 0000000000000000 R09: 0000000000000000
[  157.889664][ T9666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  157.889675][ T9666] R13: 00007f7b4b666218 R14: 00007f7b4b666180 R15: 00007ffc71954258
[  157.889698][ T9666]  </TASK>
[  158.203421][ T9686] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2131'.
[  158.281222][ T9690] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2134'.
[  158.297249][ T9692] loop4: detected capacity change from 0 to 512
[  158.304927][ T9692] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  158.311429][ T9694] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2136'.
[  158.331283][ T9692] EXT4-fs (loop4): can't mount with journal_async_commit, fs mounted w/o journal
[  158.365350][ T9701] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  158.388920][ T9703] loop4: detected capacity change from 0 to 512
[  158.395390][   T29] audit: type=1326 audit(158.369:10132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9702 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d225eebe9 code=0x7ffc0000
[  158.417955][   T29] audit: type=1326 audit(158.369:10133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9702 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d225eebe9 code=0x7ffc0000
[  158.423718][ T9703] EXT4-fs (loop4): orphan cleanup on readonly fs
[  158.440439][   T29] audit: type=1326 audit(158.369:10134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9702 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1d225eebe9 code=0x7ffc0000
[  158.448040][ T9703] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm GPL: bad orphan inode 13
[  158.469128][   T29] audit: type=1326 audit(158.369:10135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9702 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1d225eec23 code=0x7ffc0000
[  158.500753][   T29] audit: type=1326 audit(158.369:10136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9702 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1d225ed69f code=0x7ffc0000
[  158.522948][   T29] audit: type=1326 audit(158.369:10137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9702 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f1d225eec77 code=0x7ffc0000
[  158.530810][ T9707] netlink: 'syz.3.2141': attribute type 21 has an invalid length.
[  158.552267][ T9703] ext4_test_bit(bit=12, block=18) = 1
[  158.558446][ T9703] is_bad_inode(inode)=0
[  158.562776][ T9703] NEXT_ORPHAN(inode)=2130706432
[  158.567661][ T9703] max_ino=32
[  158.570903][ T9703] i_nlink=1
[  158.571517][ T9703] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  158.602000][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.685420][ T9717] loop4: detected capacity change from 0 to 128
[  158.698566][ T9717] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  158.706536][ T9717] FAT-fs (loop4): Filesystem has been set read-only
[  158.722291][ T9717] syz.4.2142: attempt to access beyond end of device
[  158.722291][ T9717] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  158.737889][ T9717] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  158.745907][ T9717] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  158.757824][ T9717] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  158.759630][ T9720] FAULT_INJECTION: forcing a failure.
[  158.759630][ T9720] name failslab, interval 1, probability 0, space 0, times 0
[  158.765791][ T9717] syz.4.2142: attempt to access beyond end of device
[  158.765791][ T9717] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  158.778520][ T9720] CPU: 1 UID: 0 PID: 9720 Comm: syz.2.2144 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  158.778549][ T9720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  158.778561][ T9720] Call Trace:
[  158.778566][ T9720]  <TASK>
[  158.778574][ T9720]  __dump_stack+0x1d/0x30
[  158.778669][ T9720]  dump_stack_lvl+0xe8/0x140
[  158.778689][ T9720]  dump_stack+0x15/0x1b
[  158.778705][ T9720]  should_fail_ex+0x265/0x280
[  158.778726][ T9720]  should_failslab+0x8c/0xb0
[  158.778750][ T9720]  kmem_cache_alloc_noprof+0x50/0x310
[  158.778808][ T9720]  ? __anon_vma_prepare+0x70/0x2f0
[  158.778826][ T9720]  ? __alloc_frozen_pages_noprof+0x188/0x360
[  158.778859][ T9720]  __anon_vma_prepare+0x70/0x2f0
[  158.778878][ T9720]  do_wp_page+0x1926/0x24e0
[  158.778921][ T9720]  ? __lruvec_stat_mod_folio+0xd6/0x120
[  158.778947][ T9720]  ? css_rstat_updated+0xb7/0x240
[  158.778974][ T9720]  ? __rcu_read_lock+0x37/0x50
[  158.779113][ T9720]  handle_mm_fault+0x77d/0x2c20
[  158.779141][ T9720]  do_user_addr_fault+0x636/0x1090
[  158.779173][ T9720]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  158.779265][ T9720]  exc_page_fault+0x62/0xa0
[  158.779288][ T9720]  asm_exc_page_fault+0x26/0x30
[  158.779311][ T9720] RIP: 0033:0x7fbfc71b0ba3
[  158.779326][ T9720] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  158.779344][ T9720] RSP: 002b:00007fbfc5d564a0 EFLAGS: 00010202
[  158.779361][ T9720] RAX: 0000000000000400 RBX: 00007fbfc5d56540 RCX: 00007fbfbd937000
[  158.779373][ T9720] RDX: 00007fbfc5d566e0 RSI: 0000000000000009 RDI: 00007fbfc5d565e0
[  158.779386][ T9720] RBP: 00000000000000f9 R08: 0000000000000008 R09: 00000000000000aa
[  158.779440][ T9720] R10: 00000000000000c0 R11: 00007fbfc5d56540 R12: 0000000000000001
[  158.779452][ T9720] R13: 00007fbfc738da20 R14: 0000000000000020 R15: 00007fbfc5d565e0
[  158.779469][ T9720]  </TASK>
[  158.779479][ T9720] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  158.802173][ T9717] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  158.815274][ T9718] syz.4.2142: attempt to access beyond end of device
[  158.815274][ T9718] loop4: rw=0, sector=2065, nr_sectors = 1 limit=128
[  158.815635][ T9717] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  158.818575][ T9718] Buffer I/O error on dev loop4, logical block 2065, async page read
[  159.027303][ T9718] syz.4.2142: attempt to access beyond end of device
[  159.027303][ T9718] loop4: rw=0, sector=2066, nr_sectors = 1 limit=128
[  159.040570][ T9718] Buffer I/O error on dev loop4, logical block 2066, async page read
[  159.055412][ T9725] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2146'.
[  159.065046][ T9718] syz.4.2142: attempt to access beyond end of device
[  159.065046][ T9718] loop4: rw=0, sector=2067, nr_sectors = 1 limit=128
[  159.078342][ T9718] Buffer I/O error on dev loop4, logical block 2067, async page read
[  159.104928][ T9727] loop5: detected capacity change from 0 to 512
[  159.111476][ T9718] syz.4.2142: attempt to access beyond end of device
[  159.111476][ T9718] loop4: rw=0, sector=2068, nr_sectors = 1 limit=128
[  159.124867][ T9718] Buffer I/O error on dev loop4, logical block 2068, async page read
[  159.136984][ T9718] syz.4.2142: attempt to access beyond end of device
[  159.136984][ T9718] loop4: rw=0, sector=2069, nr_sectors = 1 limit=128
[  159.150356][ T9718] Buffer I/O error on dev loop4, logical block 2069, async page read
[  159.158845][ T9718] syz.4.2142: attempt to access beyond end of device
[  159.158845][ T9718] loop4: rw=0, sector=2070, nr_sectors = 1 limit=128
[  159.172330][ T9718] Buffer I/O error on dev loop4, logical block 2070, async page read
[  159.180548][ T9727] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  159.189219][ T9718] syz.4.2142: attempt to access beyond end of device
[  159.189219][ T9718] loop4: rw=0, sector=2071, nr_sectors = 1 limit=128
[  159.202590][ T9718] Buffer I/O error on dev loop4, logical block 2071, async page read
[  159.210925][ T9718] syz.4.2142: attempt to access beyond end of device
[  159.210925][ T9718] loop4: rw=0, sector=2072, nr_sectors = 1 limit=128
[  159.224302][ T9718] Buffer I/O error on dev loop4, logical block 2072, async page read
[  159.227789][ T9729] netlink: 'syz.3.2147': attribute type 3 has an invalid length.
[  159.232727][ T9718] Buffer I/O error on dev loop4, logical block 2065, async page read
[  159.240209][ T9729] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2147'.
[  159.243554][ T9727] EXT4-fs (loop5): can't mount with journal_async_commit, fs mounted w/o journal
[  159.265856][ T9718] Buffer I/O error on dev loop4, logical block 2066, async page read
[  159.491529][ T9740] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  159.598563][ T9746] IPVS: Error connecting to the multicast addr
[  159.639888][ T9746] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2153'.
[  159.697552][ T9749] loop5: detected capacity change from 0 to 128
[  159.708491][ T9749] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  159.722511][ T9749] EXT4-fs warning (device loop5): ext4_dirblock_csum_verify:375: inode #11: comm syz.5.2155: No space for directory leaf checksum. Please run e2fsck -D.
[  159.738029][ T9749] EXT4-fs error (device loop5): __ext4_find_entry:1626: inode #11: comm syz.5.2155: checksumming directory block 0
[  159.761067][ T9753] netlink: 'syz.4.2156': attribute type 7 has an invalid length.
[  159.769973][ T5254] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  159.855596][ T9761] loop5: detected capacity change from 0 to 512
[  159.869167][ T9761] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  159.887696][ T9761] EXT4-fs (loop5): can't mount with journal_async_commit, fs mounted w/o journal
[  160.029461][ T9785] FAULT_INJECTION: forcing a failure.
[  160.029461][ T9785] name failslab, interval 1, probability 0, space 0, times 0
[  160.042415][ T9785] CPU: 0 UID: 0 PID: 9785 Comm: syz.2.2169 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  160.042443][ T9785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  160.042456][ T9785] Call Trace:
[  160.042464][ T9785]  <TASK>
[  160.042474][ T9785]  __dump_stack+0x1d/0x30
[  160.042540][ T9785]  dump_stack_lvl+0xe8/0x140
[  160.042559][ T9785]  dump_stack+0x15/0x1b
[  160.042579][ T9785]  should_fail_ex+0x265/0x280
[  160.042604][ T9785]  should_failslab+0x8c/0xb0
[  160.042702][ T9785]  kmem_cache_alloc_noprof+0x50/0x310
[  160.042729][ T9785]  ? __anon_vma_prepare+0xcd/0x2f0
[  160.042752][ T9785]  __anon_vma_prepare+0xcd/0x2f0
[  160.042774][ T9785]  do_wp_page+0x1926/0x24e0
[  160.042821][ T9785]  ? __rcu_read_lock+0x37/0x50
[  160.042848][ T9785]  handle_mm_fault+0x77d/0x2c20
[  160.042877][ T9785]  do_user_addr_fault+0x636/0x1090
[  160.042945][ T9785]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  160.042981][ T9785]  exc_page_fault+0x62/0xa0
[  160.043009][ T9785]  asm_exc_page_fault+0x26/0x30
[  160.043189][ T9785] RIP: 0033:0x7fbfc71b0ba3
[  160.043205][ T9785] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  160.043222][ T9785] RSP: 002b:00007fbfc5d564a0 EFLAGS: 00010202
[  160.043300][ T9785] RAX: 0000000000000400 RBX: 00007fbfc5d56540 RCX: 00007fbfbd937000
[  160.043314][ T9785] RDX: 00007fbfc5d566e0 RSI: 0000000000000009 RDI: 00007fbfc5d565e0
[  160.043329][ T9785] RBP: 00000000000000f9 R08: 0000000000000008 R09: 00000000000000aa
[  160.043343][ T9785] R10: 00000000000000c0 R11: 00007fbfc5d56540 R12: 0000000000000001
[  160.043358][ T9785] R13: 00007fbfc738da20 R14: 0000000000000020 R15: 00007fbfc5d565e0
[  160.043386][ T9785]  </TASK>
[  160.043398][ T9785] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  160.690958][ T9822] FAULT_INJECTION: forcing a failure.
[  160.690958][ T9822] name failslab, interval 1, probability 0, space 0, times 0
[  160.703678][ T9822] CPU: 0 UID: 0 PID: 9822 Comm: syz.2.2178 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  160.703709][ T9822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  160.703721][ T9822] Call Trace:
[  160.703727][ T9822]  <TASK>
[  160.703734][ T9822]  __dump_stack+0x1d/0x30
[  160.703755][ T9822]  dump_stack_lvl+0xe8/0x140
[  160.703772][ T9822]  dump_stack+0x15/0x1b
[  160.703788][ T9822]  should_fail_ex+0x265/0x280
[  160.703808][ T9822]  should_failslab+0x8c/0xb0
[  160.703830][ T9822]  kmem_cache_alloc_bulk_noprof+0x5b/0x410
[  160.703858][ T9822]  ? should_failslab+0x8c/0xb0
[  160.703882][ T9822]  ? kmem_cache_alloc_noprof+0x186/0x310
[  160.703910][ T9822]  ? mas_alloc_nodes+0x265/0x520
[  160.703936][ T9822]  mas_alloc_nodes+0x333/0x520
[  160.703961][ T9822]  mas_preallocate+0x33e/0x520
[  160.703988][ T9822]  __split_vma+0x240/0x650
[  160.704021][ T9822]  ? obj_cgroup_charge_account+0x122/0x1a0
[  160.704049][ T9822]  ? should_fail_ex+0x30/0x280
[  160.704068][ T9822]  vms_gather_munmap_vmas+0x17a/0x7b0
[  160.704092][ T9822]  ? mas_find+0x608/0x700
[  160.704116][ T9822]  ? __rcu_read_unlock+0x34/0x70
[  160.704137][ T9822]  mmap_region+0x53f/0x1630
[  160.704163][ T9822]  ? sidtab_context_to_sid+0x5d/0x5e0
[  160.704183][ T9822]  ? mls_compute_sid+0x139/0x560
[  160.704211][ T9822]  ? mls_context_isvalid+0x85/0x1f0
[  160.704249][ T9822]  do_mmap+0x9b3/0xbe0
[  160.704283][ T9822]  vm_mmap_pgoff+0x17a/0x2e0
[  160.704313][ T9822]  ksys_mmap_pgoff+0x2d0/0x310
[  160.704341][ T9822]  x64_sys_call+0x14a3/0x2ff0
[  160.704362][ T9822]  do_syscall_64+0xd2/0x200
[  160.704390][ T9822]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  160.704413][ T9822]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  160.704436][ T9822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.704456][ T9822] RIP: 0033:0x7fbfc72eebe9
[  160.704471][ T9822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.704489][ T9822] RSP: 002b:00007fbfc5d36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  160.704511][ T9822] RAX: ffffffffffffffda RBX: 00007fbfc7526090 RCX: 00007fbfc72eebe9
[  160.704523][ T9822] RDX: 000000000000000b RSI: 0000000000c00000 RDI: 0000200000400000
[  160.704535][ T9822] RBP: 00007fbfc5d36090 R08: ffffffffffffffff R09: 0000000000000000
[  160.704548][ T9822] R10: 0000000000059032 R11: 0000000000000246 R12: 0000000000000002
[  160.704561][ T9822] R13: 00007fbfc7526128 R14: 00007fbfc7526090 R15: 00007ffe8c283608
[  160.704579][ T9822]  </TASK>
[  161.967219][ T9848] loop5: detected capacity change from 0 to 512
[  161.976581][   T29] kauditd_printk_skb: 51 callbacks suppressed
[  161.976656][   T29] audit: type=1326 audit(161.959:10189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3d7eaebe9 code=0x7ffc0000
[  162.052840][   T29] audit: type=1326 audit(161.959:10190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3d7eaebe9 code=0x7ffc0000
[  162.075838][   T29] audit: type=1326 audit(161.959:10191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3d7eaebe9 code=0x7ffc0000
[  162.098992][   T29] audit: type=1326 audit(161.959:10192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3d7eaebe9 code=0x7ffc0000
[  162.122025][   T29] audit: type=1326 audit(161.959:10193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3d7eaebe9 code=0x7ffc0000
[  162.145067][   T29] audit: type=1326 audit(161.959:10194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3d7eaebe9 code=0x7ffc0000
[  162.168196][   T29] audit: type=1326 audit(161.959:10195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3d7eaebe9 code=0x7ffc0000
[  162.191128][   T29] audit: type=1326 audit(161.959:10196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3d7eaebe9 code=0x7ffc0000
[  162.214024][   T29] audit: type=1326 audit(161.959:10197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3d7eaebe9 code=0x7ffc0000
[  162.238056][   T29] audit: type=1326 audit(161.959:10198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9854 comm="syz.3.2193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3d7eaebe9 code=0x7ffc0000
[  162.261368][ T9853] loop4: detected capacity change from 0 to 8192
[  162.262174][ T9848] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  162.282107][ T9870] lo speed is unknown, defaulting to 1000
[  162.288937][ T9848] EXT4-fs (loop5): orphan cleanup on readonly fs
[  162.305494][ T9848] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.2191: corrupted inode contents
[  162.327722][ T9848] EXT4-fs (loop5): Remounting filesystem read-only
[  162.344562][ T9848] EXT4-fs (loop5): 1 truncate cleaned up
[  162.350398][ T8954] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  162.361002][ T8954] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  162.382070][ T8954] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  162.396543][ T9853] lo speed is unknown, defaulting to 1000
[  162.396935][ T9848] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  162.550949][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.968292][ T9908] IPVS: Error connecting to the multicast addr
[  163.000256][ T9911] __nla_validate_parse: 5 callbacks suppressed
[  163.000274][ T9911] netlink: 256 bytes leftover after parsing attributes in process `syz.5.2210'.
[  163.114517][ T9918] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  163.114517][ T9918]    program syz.5.2212 not setting count and/or reply_len properly
[  163.169781][ T9929] FAULT_INJECTION: forcing a failure.
[  163.169781][ T9929] name failslab, interval 1, probability 0, space 0, times 0
[  163.182585][ T9929] CPU: 1 UID: 0 PID: 9929 Comm: syz.1.2215 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  163.182616][ T9929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  163.182690][ T9929] Call Trace:
[  163.182697][ T9929]  <TASK>
[  163.182703][ T9929]  __dump_stack+0x1d/0x30
[  163.182724][ T9929]  dump_stack_lvl+0xe8/0x140
[  163.182741][ T9929]  dump_stack+0x15/0x1b
[  163.182755][ T9929]  should_fail_ex+0x265/0x280
[  163.182774][ T9929]  should_failslab+0x8c/0xb0
[  163.182796][ T9929]  kmem_cache_alloc_noprof+0x50/0x310
[  163.182881][ T9929]  ? security_file_alloc+0x32/0x100
[  163.182909][ T9929]  security_file_alloc+0x32/0x100
[  163.182985][ T9929]  init_file+0x5c/0x1d0
[  163.183020][ T9929]  alloc_empty_file+0x8b/0x200
[  163.183068][ T9929]  alloc_file_pseudo+0xc6/0x160
[  163.183095][ T9929]  sock_alloc_file+0x9c/0x1e0
[  163.183119][ T9929]  __sys_socket+0x116/0x180
[  163.183145][ T9929]  __x64_sys_socket+0x3f/0x50
[  163.183225][ T9929]  x64_sys_call+0x1147/0x2ff0
[  163.183244][ T9929]  do_syscall_64+0xd2/0x200
[  163.183284][ T9929]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  163.183306][ T9929]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  163.183330][ T9929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.183349][ T9929] RIP: 0033:0x7f7b4b42ebe9
[  163.183363][ T9929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.183441][ T9929] RSP: 002b:00007f7b49e97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  163.183460][ T9929] RAX: ffffffffffffffda RBX: 00007f7b4b665fa0 RCX: 00007f7b4b42ebe9
[  163.183472][ T9929] RDX: 0000000000000088 RSI: 0000000000000002 RDI: 000000000000000a
[  163.183483][ T9929] RBP: 00007f7b49e97090 R08: 0000000000000000 R09: 0000000000000000
[  163.183494][ T9929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  163.183505][ T9929] R13: 00007f7b4b666038 R14: 00007f7b4b665fa0 R15: 00007ffc71954258
[  163.183580][ T9929]  </TASK>
[  163.528812][ T9944] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  163.564568][ T9947] loop5: detected capacity change from 0 to 512
[  163.604141][ T9947] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.052081][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.288848][ T9968] loop4: detected capacity change from 0 to 512
[  164.305484][ T9968] EXT4-fs: Ignoring removed nobh option
[  164.321917][ T9968] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.2228: iget: bad i_size value: 38620345925642
[  164.344885][ T9968] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.2228: couldn't read orphan inode 15 (err -117)
[  164.443265][ T9968] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.578923][ T9968] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2228: bg 0: block 5: invalid block bitmap
[  164.617534][ T9968] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 16 with error 28
[  164.629861][ T9968] EXT4-fs (loop4): This should not happen!! Data will be lost
[  164.629861][ T9968] 
[  164.639627][ T9968] EXT4-fs (loop4): Total free blocks count 0
[  164.645646][ T9968] EXT4-fs (loop4): Free/Dirty block details
[  164.651612][ T9968] EXT4-fs (loop4): free_blocks=0
[  164.656579][ T9968] EXT4-fs (loop4): dirty_blocks=1716
[  164.661901][ T9968] EXT4-fs (loop4): Block reservation details
[  164.667912][ T9968] EXT4-fs (loop4): i_reserved_data_blocks=1716
[  164.803929][ T8951] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 16 with max blocks 1696 with error 28
[  164.887754][ T9999] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2238'.
[  164.889622][T10001] netlink: 'syz.5.2239': attribute type 7 has an invalid length.
[  164.908540][ T9999] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  165.101890][T10014] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2246'.
[  165.164876][T10027] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  165.459021][T10034] lo speed is unknown, defaulting to 1000
[  165.601884][T10034] loop5: detected capacity change from 0 to 2048
[  165.637201][T10034] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: writeback.
[  165.877628][T10046] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2255'.
[  165.926379][T10048] netlink: 'syz.4.2256': attribute type 7 has an invalid length.
[  166.049787][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  166.154730][T10065] FAULT_INJECTION: forcing a failure.
[  166.154730][T10065] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  166.168189][T10065] CPU: 0 UID: 0 PID: 10065 Comm: syz.2.2261 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  166.168299][T10065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  166.168312][T10065] Call Trace:
[  166.168319][T10065]  <TASK>
[  166.168327][T10065]  __dump_stack+0x1d/0x30
[  166.168429][T10065]  dump_stack_lvl+0xe8/0x140
[  166.168449][T10065]  dump_stack+0x15/0x1b
[  166.168467][T10065]  should_fail_ex+0x265/0x280
[  166.168540][T10065]  should_fail+0xb/0x20
[  166.168559][T10065]  should_fail_usercopy+0x1a/0x20
[  166.168583][T10065]  _copy_from_user+0x1c/0xb0
[  166.168685][T10065]  get_user_ifreq+0x53/0x110
[  166.168745][T10065]  sock_ioctl+0x54e/0x610
[  166.168773][T10065]  ? __pfx_sock_ioctl+0x10/0x10
[  166.168801][T10065]  __se_sys_ioctl+0xcb/0x140
[  166.168821][T10065]  __x64_sys_ioctl+0x43/0x50
[  166.168850][T10065]  x64_sys_call+0x1816/0x2ff0
[  166.168894][T10065]  do_syscall_64+0xd2/0x200
[  166.168983][T10065]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  166.169010][T10065]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  166.169037][T10065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.169060][T10065] RIP: 0033:0x7fbfc72eebe9
[  166.169076][T10065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.169169][T10065] RSP: 002b:00007fbfc5d57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  166.169190][T10065] RAX: ffffffffffffffda RBX: 00007fbfc7525fa0 RCX: 00007fbfc72eebe9
[  166.169204][T10065] RDX: 0000200000001040 RSI: 00000000000089f1 RDI: 0000000000000003
[  166.169217][T10065] RBP: 00007fbfc5d57090 R08: 0000000000000000 R09: 0000000000000000
[  166.169230][T10065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  166.169242][T10065] R13: 00007fbfc7526038 R14: 00007fbfc7525fa0 R15: 00007ffe8c283608
[  166.169261][T10065]  </TASK>
[  166.429752][T10064] loop5: detected capacity change from 0 to 1024
[  166.452255][T10075] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2267'.
[  166.593785][T10064] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  166.638490][T10064] JBD2: no valid journal superblock found
[  166.644324][T10064] EXT4-fs (loop5): Could not load journal inode
[  166.659487][T10082] netlink: 'syz.4.2269': attribute type 7 has an invalid length.
[  166.672613][T10087] FAULT_INJECTION: forcing a failure.
[  166.672613][T10087] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  166.685706][T10087] CPU: 1 UID: 0 PID: 10087 Comm: syz.2.2271 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  166.685737][T10087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  166.685751][T10087] Call Trace:
[  166.685759][T10087]  <TASK>
[  166.685768][T10087]  __dump_stack+0x1d/0x30
[  166.685792][T10087]  dump_stack_lvl+0xe8/0x140
[  166.685810][T10087]  dump_stack+0x15/0x1b
[  166.685825][T10087]  should_fail_ex+0x265/0x280
[  166.685880][T10087]  should_fail+0xb/0x20
[  166.685908][T10087]  should_fail_usercopy+0x1a/0x20
[  166.685995][T10087]  _copy_from_user+0x1c/0xb0
[  166.686027][T10087]  ___sys_sendmsg+0xc1/0x1d0
[  166.686122][T10087]  __x64_sys_sendmsg+0xd4/0x160
[  166.686193][T10087]  x64_sys_call+0x191e/0x2ff0
[  166.686273][T10087]  do_syscall_64+0xd2/0x200
[  166.686340][T10087]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  166.686365][T10087]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  166.686395][T10087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.686420][T10087] RIP: 0033:0x7fbfc72eebe9
[  166.686437][T10087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.686461][T10087] RSP: 002b:00007fbfc5d57038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  166.686482][T10087] RAX: ffffffffffffffda RBX: 00007fbfc7525fa0 RCX: 00007fbfc72eebe9
[  166.686494][T10087] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  166.686506][T10087] RBP: 00007fbfc5d57090 R08: 0000000000000000 R09: 0000000000000000
[  166.686518][T10087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  166.686549][T10087] R13: 00007fbfc7526038 R14: 00007fbfc7525fa0 R15: 00007ffe8c283608
[  166.686570][T10087]  </TASK>
[  166.924804][T10095] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2274'.
[  166.996197][T10099] loop5: detected capacity change from 0 to 512
[  167.003450][T10099] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  167.018638][T10099] EXT4-fs (loop5): orphan cleanup on readonly fs
[  167.029536][T10099] EXT4-fs warning (device loop5): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  167.044232][T10099] EXT4-fs (loop5): Cannot turn on quotas: error -22
[  167.050980][T10099] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.2277: bad orphan inode 768
[  167.062868][T10099] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  167.087549][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.098591][T10111] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2281'.
[  167.135453][T10118] loop4: detected capacity change from 0 to 164
[  167.144675][T10118] iso9660: Corrupted directory entry in block 4 of inode 1792
[  167.395821][   T29] kauditd_printk_skb: 287 callbacks suppressed
[  167.395838][   T29] audit: type=1400 audit(167.379:10480): avc:  denied  { mounton } for  pid=10140 comm="syz.2.2293" path="/458/file0" dev="tmpfs" ino=2414 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  167.401925][T10145] netlink: 'syz.1.2294': attribute type 7 has an invalid length.
[  167.482714][T10149] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2295'.
[  167.589841][   T29] audit: type=1326 audit(167.569:10481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10155 comm="syz.1.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  167.612861][   T29] audit: type=1326 audit(167.569:10482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10155 comm="syz.1.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  167.635833][   T29] audit: type=1326 audit(167.569:10483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10155 comm="syz.1.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  167.658925][   T29] audit: type=1326 audit(167.569:10484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10155 comm="syz.1.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  167.682043][   T29] audit: type=1326 audit(167.569:10485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10155 comm="syz.1.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  167.705166][   T29] audit: type=1326 audit(167.569:10486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10155 comm="syz.1.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  167.728295][   T29] audit: type=1326 audit(167.569:10487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10155 comm="syz.1.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  167.853505][T10161] loop4: detected capacity change from 0 to 512
[  167.855091][   T29] audit: type=1326 audit(167.569:10488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10155 comm="syz.1.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  167.883060][   T29] audit: type=1326 audit(167.569:10489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10155 comm="syz.1.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  167.911749][T10163] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2299'.
[  167.934133][T10161] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.121956][T10161] EXT4-fs error (device loop4): ext4_lookup:1787: inode #12: comm syz.4.2298: iget: bad i_size value: 2533274857506816
[  168.230224][T10171] lo speed is unknown, defaulting to 1000
[  168.325670][T10179] SELinux:  policydb string SE Li does not match my string SE Linux
[  168.333928][T10179] SELinux: failed to load policy
[  168.352338][T10182] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2306'.
[  168.373434][T10185] netlink: 'syz.5.2307': attribute type 7 has an invalid length.
[  168.445853][T10187] ALSA: seq fatal error: cannot create timer (-19)
[  168.691813][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.154514][T10218] SELinux:  policydb string SE Li does not match my string SE Linux
[  169.177399][T10218] SELinux: failed to load policy
[  169.198797][T10220] netlink: 'syz.3.2318': attribute type 7 has an invalid length.
[  169.276176][T10222] netlink: 'syz.1.2319': attribute type 7 has an invalid length.
[  169.380584][T10227] IPVS: Error connecting to the multicast addr
[  169.431492][T10224] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2320'.
[  169.459045][T10229] loop5: detected capacity change from 0 to 512
[  169.466170][T10224] netlink: 'syz.3.2320': attribute type 6 has an invalid length.
[  169.493215][T10229] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  169.538886][T10229] EXT4-fs (loop5): 1 truncate cleaned up
[  169.546643][T10229] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.678309][T10240] loop4: detected capacity change from 0 to 512
[  169.690513][T10240] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  169.722316][T10240] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  169.738205][T10240] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #11: comm syz.4.2326: corrupted inode contents
[  169.750614][T10240] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #11: comm syz.4.2326: mark_inode_dirty error
[  169.763530][T10240] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2326: invalid indirect mapped block 1 (level 1)
[  169.777071][T10240] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #11: comm syz.4.2326: corrupted inode contents
[  169.790578][T10240] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  169.799517][T10240] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #11: comm syz.4.2326: corrupted inode contents
[  169.812861][T10240] EXT4-fs error (device loop4): ext4_truncate:4666: inode #11: comm syz.4.2326: mark_inode_dirty error
[  169.824292][T10240] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  169.834580][T10240] EXT4-fs (loop4): 1 truncate cleaned up
[  169.841034][T10240] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.891474][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.197644][T10250] loop4: detected capacity change from 0 to 512
[  170.225069][T10250] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.389294][T10257] SELinux:  policydb string SE Li does not match my string SE Linux
[  170.397584][T10257] SELinux: failed to load policy
[  170.437222][T10261] FAULT_INJECTION: forcing a failure.
[  170.437222][T10261] name failslab, interval 1, probability 0, space 0, times 0
[  170.449944][T10261] CPU: 1 UID: 0 PID: 10261 Comm: syz.2.2332 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  170.449980][T10261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  170.449994][T10261] Call Trace:
[  170.450001][T10261]  <TASK>
[  170.450010][T10261]  __dump_stack+0x1d/0x30
[  170.450034][T10261]  dump_stack_lvl+0xe8/0x140
[  170.450055][T10261]  dump_stack+0x15/0x1b
[  170.450074][T10261]  should_fail_ex+0x265/0x280
[  170.450175][T10261]  should_failslab+0x8c/0xb0
[  170.450201][T10261]  __kmalloc_noprof+0xa5/0x3e0
[  170.450224][T10261]  ? sk_prot_alloc+0xa8/0x190
[  170.450245][T10261]  sk_prot_alloc+0xa8/0x190
[  170.450269][T10261]  sk_alloc+0x34/0x360
[  170.450362][T10261]  pfkey_create+0xd7/0x3a0
[  170.450390][T10261]  __sock_create+0x2ec/0x5b0
[  170.450464][T10261]  __sys_socketpair+0x170/0x430
[  170.450495][T10261]  ? ksys_write+0x192/0x1a0
[  170.450520][T10261]  __x64_sys_socketpair+0x52/0x60
[  170.450554][T10261]  x64_sys_call+0x2bf2/0x2ff0
[  170.450580][T10261]  do_syscall_64+0xd2/0x200
[  170.450640][T10261]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  170.450671][T10261]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  170.450762][T10261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.450784][T10261] RIP: 0033:0x7fbfc72eebe9
[  170.450798][T10261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.450815][T10261] RSP: 002b:00007fbfc5d57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  170.450833][T10261] RAX: ffffffffffffffda RBX: 00007fbfc7525fa0 RCX: 00007fbfc72eebe9
[  170.450882][T10261] RDX: 0000000000000002 RSI: 0000000000000003 RDI: 000000000000000f
[  170.450894][T10261] RBP: 00007fbfc5d57090 R08: 0000000000000000 R09: 0000000000000000
[  170.450904][T10261] R10: 00002000000001c0 R11: 0000000000000246 R12: 0000000000000001
[  170.450915][T10261] R13: 00007fbfc7526038 R14: 00007fbfc7525fa0 R15: 00007ffe8c283608
[  170.450958][T10261]  </TASK>
[  170.645427][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.658074][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.703033][T10270] FAULT_INJECTION: forcing a failure.
[  170.703033][T10270] name failslab, interval 1, probability 0, space 0, times 0
[  170.704584][T10267] loop5: detected capacity change from 0 to 512
[  170.715754][T10270] CPU: 1 UID: 0 PID: 10270 Comm: syz.3.2337 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  170.715815][T10270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  170.715827][T10270] Call Trace:
[  170.715833][T10270]  <TASK>
[  170.715841][T10270]  __dump_stack+0x1d/0x30
[  170.715865][T10270]  dump_stack_lvl+0xe8/0x140
[  170.715884][T10270]  dump_stack+0x15/0x1b
[  170.715902][T10270]  should_fail_ex+0x265/0x280
[  170.715935][T10270]  ? audit_log_d_path+0x8d/0x150
[  170.715963][T10270]  should_failslab+0x8c/0xb0
[  170.715987][T10270]  __kmalloc_cache_noprof+0x4c/0x320
[  170.716050][T10270]  audit_log_d_path+0x8d/0x150
[  170.716101][T10270]  audit_log_d_path_exe+0x42/0x70
[  170.716130][T10270]  audit_log_task+0x1e9/0x250
[  170.716209][T10270]  audit_seccomp+0x61/0x100
[  170.716267][T10270]  ? __seccomp_filter+0x68c/0x10d0
[  170.716369][T10270]  __seccomp_filter+0x69d/0x10d0
[  170.716405][T10270]  ? __list_add_valid_or_report+0x38/0xe0
[  170.716432][T10270]  ? __set_next_task_fair+0x5b/0x150
[  170.716452][T10270]  ? tracing_record_taskinfo_sched_switch+0x71/0x260
[  170.716491][T10270]  ? _raw_spin_unlock+0x26/0x50
[  170.716514][T10270]  __secure_computing+0x82/0x150
[  170.716534][T10270]  syscall_trace_enter+0xcf/0x1e0
[  170.716566][T10270]  do_syscall_64+0xac/0x200
[  170.716738][T10270]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  170.716761][T10270]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  170.716786][T10270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.716808][T10270] RIP: 0033:0x7fd3d7ead5fc
[  170.716824][T10270] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  170.716843][T10270] RSP: 002b:00007fd3d690f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  170.716869][T10270] RAX: ffffffffffffffda RBX: 00007fd3d80e5fa0 RCX: 00007fd3d7ead5fc
[  170.716882][T10270] RDX: 000000000000000f RSI: 00007fd3d690f0a0 RDI: 0000000000000006
[  170.716894][T10270] RBP: 00007fd3d690f090 R08: 0000000000000000 R09: 0000000000000000
[  170.716975][T10270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  170.716987][T10270] R13: 00007fd3d80e6038 R14: 00007fd3d80e5fa0 R15: 00007ffd328814e8
[  170.717005][T10270]  </TASK>
[  170.944264][T10267] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  170.977151][T10267] EXT4-fs (loop5): 1 orphan inode deleted
[  170.982991][T10267] EXT4-fs (loop5): 1 truncate cleaned up
[  170.991665][T10284] SELinux:  policydb string SE Linu does not match my string SE Linux
[  171.000287][T10267] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.016079][T10284] SELinux: failed to load policy
[  171.036967][T10275] FAULT_INJECTION: forcing a failure.
[  171.036967][T10275] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  171.050126][T10275] CPU: 0 UID: 0 PID: 10275 Comm: syz.2.2338 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  171.050212][T10275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  171.050222][T10275] Call Trace:
[  171.050294][T10275]  <TASK>
[  171.050301][T10275]  __dump_stack+0x1d/0x30
[  171.050322][T10275]  dump_stack_lvl+0xe8/0x140
[  171.050338][T10275]  dump_stack+0x15/0x1b
[  171.050399][T10275]  should_fail_ex+0x265/0x280
[  171.050418][T10275]  should_fail+0xb/0x20
[  171.050433][T10275]  should_fail_usercopy+0x1a/0x20
[  171.050513][T10275]  copy_folio_from_iter_atomic+0x278/0x11b0
[  171.050615][T10275]  ? shmem_write_begin+0xa8/0x190
[  171.050632][T10275]  ? shmem_write_begin+0xe1/0x190
[  171.050649][T10275]  generic_perform_write+0x2c2/0x490
[  171.050681][T10275]  shmem_file_write_iter+0xc5/0xf0
[  171.050716][T10275]  do_iter_readv_writev+0x49c/0x540
[  171.050741][T10275]  vfs_writev+0x2df/0x8b0
[  171.050827][T10275]  __se_sys_pwritev2+0xfc/0x1c0
[  171.050892][T10275]  __x64_sys_pwritev2+0x67/0x80
[  171.050914][T10275]  x64_sys_call+0x2c55/0x2ff0
[  171.050932][T10275]  do_syscall_64+0xd2/0x200
[  171.050991][T10275]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  171.051012][T10275]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  171.051034][T10275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.051133][T10275] RIP: 0033:0x7fbfc72eebe9
[  171.051148][T10275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.051164][T10275] RSP: 002b:00007fbfc5d57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  171.051182][T10275] RAX: ffffffffffffffda RBX: 00007fbfc7525fa0 RCX: 00007fbfc72eebe9
[  171.051194][T10275] RDX: 0000000000000001 RSI: 00002000000001c0 RDI: 0000000000000007
[  171.051267][T10275] RBP: 00007fbfc5d57090 R08: 0000000000000000 R09: 0000000000000001
[  171.051278][T10275] R10: 0000000000000e7b R11: 0000000000000246 R12: 0000000000000002
[  171.051289][T10275] R13: 00007fbfc7526038 R14: 00007fbfc7525fa0 R15: 00007ffe8c283608
[  171.051304][T10275]  </TASK>
[  171.268398][T10267] EXT4-fs error (device loop5): ext4_search_dir:1474: inode #12: block 7: comm syz.5.2333: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[  171.301555][T10267] EXT4-fs (loop5): Remounting filesystem read-only
[  171.430009][T10301] IPVS: Error connecting to the multicast addr
[  171.463922][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.548418][T10313] netlink: 'syz.4.2351': attribute type 7 has an invalid length.
[  171.783168][T10326] SELinux:  policydb string SE Linu does not match my string SE Linux
[  171.800005][T10326] SELinux: failed to load policy
[  172.078299][T10336] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  172.386717][T10348] loop5: detected capacity change from 0 to 512
[  172.395528][T10348] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.458731][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.477734][T10351] FAULT_INJECTION: forcing a failure.
[  172.477734][T10351] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.491054][T10351] CPU: 1 UID: 0 PID: 10351 Comm: syz.5.2365 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  172.491086][T10351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  172.491099][T10351] Call Trace:
[  172.491110][T10351]  <TASK>
[  172.491118][T10351]  __dump_stack+0x1d/0x30
[  172.491140][T10351]  dump_stack_lvl+0xe8/0x140
[  172.491157][T10351]  dump_stack+0x15/0x1b
[  172.491172][T10351]  should_fail_ex+0x265/0x280
[  172.491192][T10351]  should_fail+0xb/0x20
[  172.491269][T10351]  should_fail_usercopy+0x1a/0x20
[  172.491289][T10351]  _copy_from_iter+0xd2/0xe80
[  172.491348][T10351]  ? __pfx_woken_wake_function+0x10/0x10
[  172.491368][T10351]  ? iov_iter_revert+0x14a/0x300
[  172.491396][T10351]  file_tty_write+0x31d/0x690
[  172.491451][T10351]  ? __pfx_tty_write+0x10/0x10
[  172.491480][T10351]  tty_write+0x25/0x30
[  172.491516][T10351]  vfs_write+0x52a/0x960
[  172.491540][T10351]  ksys_write+0xda/0x1a0
[  172.491619][T10351]  __x64_sys_write+0x40/0x50
[  172.491717][T10351]  x64_sys_call+0x27fe/0x2ff0
[  172.491741][T10351]  do_syscall_64+0xd2/0x200
[  172.491802][T10351]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  172.491826][T10351]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  172.491939][T10351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.492023][T10351] RIP: 0033:0x7f77a59aebe9
[  172.492039][T10351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.492059][T10351] RSP: 002b:00007f77a440f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  172.492082][T10351] RAX: ffffffffffffffda RBX: 00007f77a5be5fa0 RCX: 00007f77a59aebe9
[  172.492102][T10351] RDX: 00000000fffffedf RSI: 0000200000000000 RDI: 0000000000000007
[  172.492190][T10351] RBP: 00007f77a440f090 R08: 0000000000000000 R09: 0000000000000000
[  172.492199][T10351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  172.492207][T10351] R13: 00007f77a5be6038 R14: 00007f77a5be5fa0 R15: 00007fff6e6456b8
[  172.492220][T10351]  </TASK>
[  172.766970][T10358] SELinux:  policydb string SE Linu does not match my string SE Linux
[  172.778105][T10358] SELinux: failed to load policy
[  172.844422][T10370] loop4: detected capacity change from 0 to 512
[  172.852341][T10370] EXT4-fs: Ignoring removed mblk_io_submit option
[  172.859075][T10370] EXT4-fs: Ignoring removed nomblk_io_submit option
[  172.867942][T10370] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  172.876447][T10370] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  172.950404][T10377] netlink: 'syz.3.2374': attribute type 7 has an invalid length.
[  172.960571][T10370] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2372: Allocating blocks 41-42 which overlap fs metadata
[  172.976629][T10370] __quota_error: 182 callbacks suppressed
[  172.976645][T10370] Quota error (device loop4): write_blk: dquota write failed
[  172.982602][T10382] loop5: detected capacity change from 0 to 512
[  172.989902][T10370] Quota error (device loop4): find_free_dqentry: Can't write quota data block 5
[  173.011010][T10370] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  173.021818][T10382] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.110215][T10370] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2372: Failed to acquire dquot type 1
[  173.123050][T10370] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  173.137639][T10370] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #12: comm syz.4.2372: corrupted inode contents
[  173.158544][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.168075][T10370] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #12: comm syz.4.2372: mark_inode_dirty error
[  173.180030][T10370] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #12: comm syz.4.2372: corrupted inode contents
[  173.192425][T10370] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.2372: mark_inode_dirty error
[  173.204212][T10370] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #12: comm syz.4.2372: corrupted inode contents
[  173.219643][T10370] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  173.228506][T10370] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #12: comm syz.4.2372: corrupted inode contents
[  173.243017][T10370] EXT4-fs error (device loop4): ext4_truncate:4666: inode #12: comm syz.4.2372: mark_inode_dirty error
[  173.283378][T10370] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  173.294522][T10370] EXT4-fs (loop4): 1 truncate cleaned up
[  173.301275][T10370] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.338143][   T29] audit: type=1326 audit(173.319:10672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10394 comm="syz.1.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  173.361353][   T29] audit: type=1326 audit(173.319:10673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10394 comm="syz.1.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  173.385284][   T29] audit: type=1326 audit(173.319:10674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10394 comm="syz.1.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  173.413207][T10395] openvswitch: netlink: Flow key attr not present in new flow.
[  173.474935][T10395] siw: device registration error -23
[  173.490880][   T29] audit: type=1326 audit(173.319:10675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10394 comm="syz.1.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  173.513936][   T29] audit: type=1326 audit(173.399:10676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10394 comm="syz.1.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f7b4b42ebe9 code=0x7ffc0000
[  173.536991][   T29] audit: type=1326 audit(173.399:10677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10394 comm="syz.1.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7b4b42ec23 code=0x7ffc0000
[  173.559827][   T29] audit: type=1326 audit(173.399:10678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10394 comm="syz.1.2380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7b4b42ec23 code=0x7ffc0000
[  173.591288][T10406] SELinux:  policydb version 133 does not match my version range 15-35
[  173.603209][T10406] SELinux: failed to load policy
[  173.712745][T10417] netlink: 'syz.3.2388': attribute type 7 has an invalid length.
[  173.765477][T10423] loop5: detected capacity change from 0 to 512
[  173.780088][T10423] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.840221][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.868085][T10428] lo speed is unknown, defaulting to 1000
[  173.912501][T10434] FAULT_INJECTION: forcing a failure.
[  173.912501][T10434] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  173.925950][T10434] CPU: 1 UID: 0 PID: 10434 Comm: syz.4.2392 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  173.926032][T10434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  173.926046][T10434] Call Trace:
[  173.926053][T10434]  <TASK>
[  173.926141][T10434]  __dump_stack+0x1d/0x30
[  173.926164][T10434]  dump_stack_lvl+0xe8/0x140
[  173.926215][T10434]  dump_stack+0x15/0x1b
[  173.926310][T10434]  should_fail_ex+0x265/0x280
[  173.926333][T10434]  should_fail_alloc_page+0xf2/0x100
[  173.926419][T10434]  __alloc_frozen_pages_noprof+0xff/0x360
[  173.926490][T10434]  alloc_pages_mpol+0xb3/0x250
[  173.926524][T10434]  vma_alloc_folio_noprof+0x1aa/0x300
[  173.926696][T10434]  do_wp_page+0x5db/0x24e0
[  173.926736][T10434]  ? css_rstat_updated+0xb7/0x240
[  173.926768][T10434]  ? __rcu_read_lock+0x37/0x50
[  173.926823][T10434]  handle_mm_fault+0x77d/0x2c20
[  173.926856][T10434]  do_user_addr_fault+0x636/0x1090
[  173.926893][T10434]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  173.927005][T10434]  exc_page_fault+0x62/0xa0
[  173.927031][T10434]  asm_exc_page_fault+0x26/0x30
[  173.927053][T10434] RIP: 0033:0x7f1d224b0c50
[  173.927143][T10434] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[  173.927162][T10434] RSP: 002b:00007f1d2104e4a0 EFLAGS: 00010202
[  173.927179][T10434] RAX: 0000000000005005 RBX: 00007f1d2104e540 RCX: 0000000000000013
[  173.927193][T10434] RDX: 00000000000003ff RSI: 0000000000000400 RDI: 00007f1d2104e5e0
[  173.927221][T10434] RBP: 0000000000000014 R08: 00007f1d18c2f000 R09: 0000000000000004
[  173.927234][T10434] R10: 0000200000000542 R11: 0000000000000474 R12: 0000000000000301
[  173.927248][T10434] R13: 00007f1d2268da20 R14: 0000000000000013 R15: 00007f1d2104e5e0
[  173.927267][T10434]  </TASK>
[  173.927346][T10434] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  173.979075][T10436] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2394'.
[  174.022480][T10438] SELinux:  policydb version 133 does not match my version range 15-35
[  174.028686][T10434] loop4: detected capacity change from 0 to 512
[  174.033904][T10438] SELinux: failed to load policy
[  174.039066][T10436] team1 (uninitialized): Failed to send options change via netlink (err -105)
[  174.159190][T10436] team1: entered promiscuous mode
[  174.164336][T10436] team1: entered allmulticast mode
[  174.167455][T10443] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2396'.
[  174.178594][T10434] EXT4-fs error (device loop4): ext4_xattr_inode_iget:442: comm syz.4.2392: error while reading EA inode 32 err=-116
[  174.201976][T10434] EXT4-fs (loop4): Remounting filesystem read-only
[  174.203572][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.208530][T10434] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  174.228020][T10434] EXT4-fs (loop4): 1 orphan inode deleted
[  174.234631][T10434] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.282033][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.326501][T10454] netlink: 'syz.4.2400': attribute type 7 has an invalid length.
[  174.384761][T10460] IPVS: Error connecting to the multicast addr
[  174.423567][T10469] SELinux:  policydb version 133 does not match my version range 15-35
[  174.439380][T10464] lo speed is unknown, defaulting to 1000
[  174.445559][T10469] SELinux: failed to load policy
[  174.478110][T10476] FAULT_INJECTION: forcing a failure.
[  174.478110][T10476] name failslab, interval 1, probability 0, space 0, times 0
[  174.491041][T10476] CPU: 0 UID: 0 PID: 10476 Comm: syz.3.2409 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  174.491067][T10476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  174.491085][T10476] Call Trace:
[  174.491092][T10476]  <TASK>
[  174.491101][T10476]  __dump_stack+0x1d/0x30
[  174.491127][T10476]  dump_stack_lvl+0xe8/0x140
[  174.491149][T10476]  dump_stack+0x15/0x1b
[  174.491212][T10476]  should_fail_ex+0x265/0x280
[  174.491232][T10476]  should_failslab+0x8c/0xb0
[  174.491257][T10476]  kmem_cache_alloc_node_noprof+0x57/0x320
[  174.491289][T10476]  ? __alloc_skb+0x101/0x320
[  174.491312][T10476]  __alloc_skb+0x101/0x320
[  174.491399][T10476]  tc_ctl_action+0x64b/0x830
[  174.491441][T10476]  ? __pfx_tc_ctl_action+0x10/0x10
[  174.491523][T10476]  rtnetlink_rcv_msg+0x65a/0x6d0
[  174.491549][T10476]  netlink_rcv_skb+0x123/0x220
[  174.491632][T10476]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  174.491669][T10476]  rtnetlink_rcv+0x1c/0x30
[  174.491697][T10476]  netlink_unicast+0x5bd/0x690
[  174.491777][T10476]  netlink_sendmsg+0x58b/0x6b0
[  174.491799][T10476]  ? __pfx_netlink_sendmsg+0x10/0x10
[  174.491819][T10476]  __sock_sendmsg+0x145/0x180
[  174.491849][T10476]  ____sys_sendmsg+0x31e/0x4e0
[  174.491925][T10476]  ___sys_sendmsg+0x17b/0x1d0
[  174.491962][T10476]  __x64_sys_sendmsg+0xd4/0x160
[  174.491991][T10476]  x64_sys_call+0x191e/0x2ff0
[  174.492068][T10476]  do_syscall_64+0xd2/0x200
[  174.492103][T10476]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  174.492124][T10476]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  174.492203][T10476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.492248][T10476] RIP: 0033:0x7fd3d7eaebe9
[  174.492264][T10476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.492337][T10476] RSP: 002b:00007fd3d690f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  174.492379][T10476] RAX: ffffffffffffffda RBX: 00007fd3d80e5fa0 RCX: 00007fd3d7eaebe9
[  174.492395][T10476] RDX: 0000000000000000 RSI: 0000200000007940 RDI: 0000000000000003
[  174.492407][T10476] RBP: 00007fd3d690f090 R08: 0000000000000000 R09: 0000000000000000
[  174.492419][T10476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  174.492506][T10476] R13: 00007fd3d80e6038 R14: 00007fd3d80e5fa0 R15: 00007ffd328814e8
[  174.492526][T10476]  </TASK>
[  174.768481][T10485] FAULT_INJECTION: forcing a failure.
[  174.768481][T10485] name failslab, interval 1, probability 0, space 0, times 0
[  174.781275][T10485] CPU: 0 UID: 0 PID: 10485 Comm: syz.4.2413 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  174.781363][T10485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  174.781391][T10485] Call Trace:
[  174.781401][T10485]  <TASK>
[  174.781410][T10485]  __dump_stack+0x1d/0x30
[  174.781431][T10485]  dump_stack_lvl+0xe8/0x140
[  174.781449][T10485]  dump_stack+0x15/0x1b
[  174.781464][T10485]  should_fail_ex+0x265/0x280
[  174.781561][T10485]  should_failslab+0x8c/0xb0
[  174.781599][T10485]  kmem_cache_alloc_noprof+0x50/0x310
[  174.781628][T10485]  ? audit_log_start+0x365/0x6c0
[  174.781659][T10485]  audit_log_start+0x365/0x6c0
[  174.781734][T10485]  audit_seccomp+0x48/0x100
[  174.781756][T10485]  ? __seccomp_filter+0x68c/0x10d0
[  174.781775][T10485]  __seccomp_filter+0x69d/0x10d0
[  174.781801][T10485]  ? __list_add_valid_or_report+0x38/0xe0
[  174.781827][T10485]  ? __set_next_task_fair+0x5b/0x150
[  174.781877][T10485]  ? tracing_record_taskinfo_sched_switch+0x71/0x260
[  174.781908][T10485]  ? _raw_spin_unlock+0x26/0x50
[  174.781933][T10485]  __secure_computing+0x82/0x150
[  174.782019][T10485]  syscall_trace_enter+0xcf/0x1e0
[  174.782045][T10485]  do_syscall_64+0xac/0x200
[  174.782069][T10485]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  174.782134][T10485]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  174.782164][T10485]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.782266][T10485] RIP: 0033:0x7f1d225ed5fc
[  174.782350][T10485] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  174.782367][T10485] RSP: 002b:00007f1d2104f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  174.782389][T10485] RAX: ffffffffffffffda RBX: 00007f1d22825fa0 RCX: 00007f1d225ed5fc
[  174.782405][T10485] RDX: 000000000000000f RSI: 00007f1d2104f0a0 RDI: 0000000000000006
[  174.782461][T10485] RBP: 00007f1d2104f090 R08: 0000000000000000 R09: 0000000000000000
[  174.782475][T10485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  174.782488][T10485] R13: 00007f1d22826038 R14: 00007f1d22825fa0 R15: 00007ffdaa0a0158
[  174.782506][T10485]  </TASK>
[  175.043243][T10480] netlink: 80 bytes leftover after parsing attributes in process `syz.5.2410'.
[  175.071344][T10488] netlink: 100 bytes leftover after parsing attributes in process `syz.1.2414'.
[  175.108275][T10494] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1011 sclass=netlink_route_socket pid=10494 comm=syz.2.2415
[  175.313730][T10515] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4)
[  175.320491][T10515] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  175.328269][T10515] vhci_hcd vhci_hcd.0: Device attached
[  175.353688][T10516] vhci_hcd: connection closed
[  175.353846][ T8952] vhci_hcd: stop threads
[  175.363016][ T8952] vhci_hcd: release socket
[  175.367534][ T8952] vhci_hcd: disconnect device
[  175.675706][T10525] FAULT_INJECTION: forcing a failure.
[  175.675706][T10525] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  175.689402][T10525] CPU: 1 UID: 0 PID: 10525 Comm: syz.1.2424 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  175.689433][T10525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  175.689516][T10525] Call Trace:
[  175.689522][T10525]  <TASK>
[  175.689533][T10525]  __dump_stack+0x1d/0x30
[  175.689586][T10525]  dump_stack_lvl+0xe8/0x140
[  175.689638][T10525]  dump_stack+0x15/0x1b
[  175.689655][T10525]  should_fail_ex+0x265/0x280
[  175.689678][T10525]  should_fail+0xb/0x20
[  175.689770][T10525]  should_fail_usercopy+0x1a/0x20
[  175.689794][T10525]  _copy_from_user+0x1c/0xb0
[  175.689825][T10525]  ___sys_sendmsg+0xc1/0x1d0
[  175.689861][T10525]  __sys_sendmmsg+0x178/0x300
[  175.689905][T10525]  __x64_sys_sendmmsg+0x57/0x70
[  175.689925][T10525]  x64_sys_call+0x1c4a/0x2ff0
[  175.689945][T10525]  do_syscall_64+0xd2/0x200
[  175.689973][T10525]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  175.690057][T10525]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  175.690122][T10525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.690146][T10525] RIP: 0033:0x7f7b4b42ebe9
[  175.690162][T10525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.690178][T10525] RSP: 002b:00007f7b49e97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  175.690197][T10525] RAX: ffffffffffffffda RBX: 00007f7b4b665fa0 RCX: 00007f7b4b42ebe9
[  175.690279][T10525] RDX: 000000000800001d RSI: 0000200000007fc0 RDI: 0000000000000003
[  175.690293][T10525] RBP: 00007f7b49e97090 R08: 0000000000000000 R09: 0000000000000000
[  175.690305][T10525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.690316][T10525] R13: 00007f7b4b666038 R14: 00007f7b4b665fa0 R15: 00007ffc71954258
[  175.690333][T10525]  </TASK>
[  176.112312][T10542] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2428'.
[  176.178950][T10549] loop4: detected capacity change from 0 to 128
[  176.200202][T10549] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  176.321216][T10561] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2434'.
[  176.375933][T10559] lo speed is unknown, defaulting to 1000
[  176.508338][T10569] lo speed is unknown, defaulting to 1000
[  176.736565][T10581] FAULT_INJECTION: forcing a failure.
[  176.736565][T10581] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.749753][T10581] CPU: 1 UID: 0 PID: 10581 Comm: syz.2.2439 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  176.749805][T10581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  176.749815][T10581] Call Trace:
[  176.749822][T10581]  <TASK>
[  176.749829][T10581]  __dump_stack+0x1d/0x30
[  176.749864][T10581]  dump_stack_lvl+0xe8/0x140
[  176.749881][T10581]  dump_stack+0x15/0x1b
[  176.749895][T10581]  should_fail_ex+0x265/0x280
[  176.749914][T10581]  should_fail+0xb/0x20
[  176.749950][T10581]  should_fail_usercopy+0x1a/0x20
[  176.749970][T10581]  _copy_from_user+0x1c/0xb0
[  176.750037][T10581]  memdup_user+0x5e/0xd0
[  176.750059][T10581]  __se_sys_kexec_load+0x109/0x160
[  176.750095][T10581]  __x64_sys_kexec_load+0x55/0x70
[  176.750111][T10581]  x64_sys_call+0x2898/0x2ff0
[  176.750201][T10581]  do_syscall_64+0xd2/0x200
[  176.750225][T10581]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  176.750291][T10581]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  176.750314][T10581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.750332][T10581] RIP: 0033:0x7fbfc72eebe9
[  176.750346][T10581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.750362][T10581] RSP: 002b:00007fbfc5d36038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[  176.750416][T10581] RAX: ffffffffffffffda RBX: 00007fbfc7526090 RCX: 00007fbfc72eebe9
[  176.750427][T10581] RDX: 00002000000002c0 RSI: 0000000000000000 RDI: 0000000000003e00
[  176.750438][T10581] RBP: 00007fbfc5d36090 R08: 0000000000000000 R09: 0000000000000000
[  176.750473][T10581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.750484][T10581] R13: 00007fbfc7526128 R14: 00007fbfc7526090 R15: 00007ffe8c283608
[  176.750499][T10581]  </TASK>
[  177.142537][ T3303] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  177.640349][T10604] tmpfs: Bad value for 'mpol'
[  177.705640][T10608] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  177.782760][T10611] netlink: 'syz.3.2451': attribute type 7 has an invalid length.
[  177.823729][T10614] IPVS: Error connecting to the multicast addr
[  178.102385][   T29] kauditd_printk_skb: 448 callbacks suppressed
[  178.102404][   T29] audit: type=1400 audit(178.089:11125): avc:  denied  { create } for  pid=10623 comm="syz.1.2455" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  178.139788][   T29] audit: type=1400 audit(178.089:11126): avc:  denied  { map_create } for  pid=10623 comm="syz.1.2455" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  178.158639][   T29] audit: type=1400 audit(178.089:11127): avc:  denied  { map_read } for  pid=10623 comm="syz.1.2455" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  178.177298][   T29] audit: type=1400 audit(178.089:11128): avc:  denied  { prog_load } for  pid=10623 comm="syz.1.2455" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  178.196015][   T29] audit: type=1400 audit(178.089:11129): avc:  denied  { bpf } for  pid=10623 comm="syz.1.2455" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  178.216192][   T29] audit: type=1400 audit(178.089:11130): avc:  denied  { perfmon } for  pid=10623 comm="syz.1.2455" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  178.236743][   T29] audit: type=1400 audit(178.089:11131): avc:  denied  { prog_run } for  pid=10623 comm="syz.1.2455" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  178.270327][   T29] audit: type=1400 audit(178.239:11132): avc:  denied  { prog_load } for  pid=10617 comm="syz.3.2454" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  178.289123][   T29] audit: type=1400 audit(178.249:11133): avc:  denied  { bpf } for  pid=10617 comm="syz.3.2454" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  178.309621][   T29] audit: type=1400 audit(178.249:11134): avc:  denied  { perfmon } for  pid=10617 comm="syz.3.2454" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  178.336448][T10624] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2455'.
[  178.360575][T10624] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2455'.
[  178.477262][T10642] loop5: detected capacity change from 0 to 512
[  178.499150][T10642] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.530622][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.606017][T10651] netlink: 'syz.4.2465': attribute type 7 has an invalid length.
[  178.640214][T10661] loop5: detected capacity change from 0 to 1024
[  178.658738][T10661] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  178.679654][T10661] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  178.710865][T10661] EXT4-fs (loop5): invalid journal inode
[  178.729445][T10661] EXT4-fs (loop5): can't get journal size
[  178.762026][T10661] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  178.836795][T10668] lo speed is unknown, defaulting to 1000
[  179.036883][T10654] lo speed is unknown, defaulting to 1000
[  179.184577][T10680] netlink: 'syz.4.2475': attribute type 7 has an invalid length.
[  179.269595][T10689] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  179.305734][ T5254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.310153][T10689] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  179.369421][T10697] bridge0: port 3(gretap0) entered blocking state
[  179.376130][T10697] bridge0: port 3(gretap0) entered disabled state
[  179.388787][T10697] gretap0: entered allmulticast mode
[  179.427796][T10697] gretap0: entered promiscuous mode
[  179.430061][T10702] FAULT_INJECTION: forcing a failure.
[  179.430061][T10702] name failslab, interval 1, probability 0, space 0, times 0
[  179.445744][T10702] CPU: 0 UID: 0 PID: 10702 Comm: syz.3.2485 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  179.445775][T10702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  179.445788][T10702] Call Trace:
[  179.445795][T10702]  <TASK>
[  179.445802][T10702]  __dump_stack+0x1d/0x30
[  179.445838][T10702]  dump_stack_lvl+0xe8/0x140
[  179.445859][T10702]  dump_stack+0x15/0x1b
[  179.445876][T10702]  should_fail_ex+0x265/0x280
[  179.445898][T10702]  should_failslab+0x8c/0xb0
[  179.445922][T10702]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  179.446011][T10702]  ? sock_alloc_inode+0x34/0xa0
[  179.446043][T10702]  ? __pfx_sock_alloc_inode+0x10/0x10
[  179.446071][T10702]  sock_alloc_inode+0x34/0xa0
[  179.446123][T10702]  alloc_inode+0x3d/0x170
[  179.446154][T10702]  do_accept+0xa0/0x3a0
[  179.446184][T10702]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  179.446218][T10702]  __sys_accept4+0xbf/0x140
[  179.446274][T10702]  __x64_sys_accept4+0x51/0x60
[  179.446307][T10702]  x64_sys_call+0x2ed3/0x2ff0
[  179.446330][T10702]  do_syscall_64+0xd2/0x200
[  179.446376][T10702]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  179.446400][T10702]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  179.446423][T10702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.446494][T10702] RIP: 0033:0x7fd3d7eaebe9
[  179.446514][T10702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.446534][T10702] RSP: 002b:00007fd3d690f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  179.446556][T10702] RAX: ffffffffffffffda RBX: 00007fd3d80e5fa0 RCX: 00007fd3d7eaebe9
[  179.446570][T10702] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  179.446614][T10702] RBP: 00007fd3d690f090 R08: 0000000000000000 R09: 0000000000000000
[  179.446628][T10702] R10: 0400000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.446642][T10702] R13: 00007fd3d80e6038 R14: 00007fd3d80e5fa0 R15: 00007ffd328814e8
[  179.446660][T10702]  </TASK>
[  179.460900][T10697] bridge0: port 3(gretap0) entered blocking state
[  179.509489][T10708] vhci_hcd: invalid port number 96
[  179.510623][T10697] bridge0: port 3(gretap0) entered forwarding state
[  179.516218][T10708] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  179.526482][T10704] gretap0: left allmulticast mode
[  179.678155][T10704] gretap0: left promiscuous mode
[  179.683268][T10704] bridge0: port 3(gretap0) entered disabled state
[  179.855821][T10731] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  179.905752][T10735] loop4: detected capacity change from 0 to 128
[  179.924335][T10734] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2496'.
[  179.938292][T10735] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  180.326805][T10756] FAULT_INJECTION: forcing a failure.
[  180.326805][T10756] name failslab, interval 1, probability 0, space 0, times 0
[  180.339604][T10756] CPU: 0 UID: 0 PID: 10756 Comm: syz.3.2503 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  180.339729][T10756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  180.339743][T10756] Call Trace:
[  180.339750][T10756]  <TASK>
[  180.339758][T10756]  __dump_stack+0x1d/0x30
[  180.339778][T10756]  dump_stack_lvl+0xe8/0x140
[  180.339795][T10756]  dump_stack+0x15/0x1b
[  180.339812][T10756]  should_fail_ex+0x265/0x280
[  180.339918][T10756]  ? newseg+0x17a/0x670
[  180.339944][T10756]  should_failslab+0x8c/0xb0
[  180.339969][T10756]  __kmalloc_cache_noprof+0x4c/0x320
[  180.340001][T10756]  ? get_pid_task+0x96/0xd0
[  180.340021][T10756]  newseg+0x17a/0x670
[  180.340047][T10756]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  180.340079][T10756]  ipcget+0x33d/0x4f0
[  180.340177][T10756]  ? fput+0x8f/0xc0
[  180.340288][T10756]  __x64_sys_shmget+0xa5/0xd0
[  180.340317][T10756]  x64_sys_call+0x2cef/0x2ff0
[  180.340349][T10756]  do_syscall_64+0xd2/0x200
[  180.340380][T10756]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  180.340403][T10756]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  180.340465][T10756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.340488][T10756] RIP: 0033:0x7fd3d7eaebe9
[  180.340506][T10756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.340525][T10756] RSP: 002b:00007fd3d690f038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d
[  180.340548][T10756] RAX: ffffffffffffffda RBX: 00007fd3d80e5fa0 RCX: 00007fd3d7eaebe9
[  180.340563][T10756] RDX: 0000000000000000 RSI: fffffffffeffffff RDI: 0000000000000000
[  180.340600][T10756] RBP: 00007fd3d690f090 R08: 0000000000000000 R09: 0000000000000000
[  180.340611][T10756] R10: 0000200000ffc000 R11: 0000000000000246 R12: 0000000000000001
[  180.340623][T10756] R13: 00007fd3d80e6038 R14: 00007fd3d80e5fa0 R15: 00007ffd328814e8
[  180.340639][T10756]  </TASK>
[  180.744502][ T3303] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  180.802271][T10764] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  180.964730][T10770] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2508'.
[  181.201453][T10777] loop4: detected capacity change from 0 to 2048
[  181.235105][T10777] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.356902][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.480192][T10783] FAULT_INJECTION: forcing a failure.
[  181.480192][T10783] name failslab, interval 1, probability 0, space 0, times 0
[  181.492893][T10783] CPU: 1 UID: 0 PID: 10783 Comm: syz.3.2514 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  181.492922][T10783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  181.492933][T10783] Call Trace:
[  181.492940][T10783]  <TASK>
[  181.492947][T10783]  __dump_stack+0x1d/0x30
[  181.492971][T10783]  dump_stack_lvl+0xe8/0x140
[  181.492992][T10783]  dump_stack+0x15/0x1b
[  181.493012][T10783]  should_fail_ex+0x265/0x280
[  181.493072][T10783]  should_failslab+0x8c/0xb0
[  181.493101][T10783]  kmem_cache_alloc_noprof+0x50/0x310
[  181.493244][T10783]  ? audit_log_start+0x365/0x6c0
[  181.493287][T10783]  audit_log_start+0x365/0x6c0
[  181.493343][T10783]  ? __wake_up+0x88/0xb0
[  181.493375][T10783]  audit_seccomp+0x48/0x100
[  181.493446][T10783]  ? __seccomp_filter+0x68c/0x10d0
[  181.493537][T10783]  __seccomp_filter+0x69d/0x10d0
[  181.493601][T10783]  __secure_computing+0x82/0x150
[  181.493657][T10783]  syscall_trace_enter+0xcf/0x1e0
[  181.493693][T10783]  do_syscall_64+0xac/0x200
[  181.493790][T10783]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  181.493812][T10783]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  181.493841][T10783]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.493861][T10783] RIP: 0033:0x7fd3d7ead5fc
[  181.493958][T10783] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  181.494038][T10783] RSP: 002b:00007fd3d690f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  181.494061][T10783] RAX: ffffffffffffffda RBX: 00007fd3d80e5fa0 RCX: 00007fd3d7ead5fc
[  181.494076][T10783] RDX: 000000000000000f RSI: 00007fd3d690f0a0 RDI: 0000000000000007
[  181.494089][T10783] RBP: 00007fd3d690f090 R08: 0000000000000000 R09: 0000000000000000
[  181.494100][T10783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  181.494111][T10783] R13: 00007fd3d80e6038 R14: 00007fd3d80e5fa0 R15: 00007ffd328814e8
[  181.494131][T10783]  </TASK>
[  181.981015][ T5254] ==================================================================
[  181.989149][ T5254] BUG: KCSAN: data-race in shmem_add_to_page_cache / shmem_getattr
[  181.997085][ T5254] 
[  181.999442][ T5254] read-write to 0xffff88811a61d988 of 8 bytes by task 10771 on cpu 1:
[  182.007610][ T5254]  shmem_add_to_page_cache+0x414/0x530
[  182.013270][ T5254]  shmem_get_folio_gfp+0x4e8/0xd60
[  182.018407][ T5254]  shmem_write_begin+0xa8/0x190
[  182.023273][ T5254]  generic_perform_write+0x181/0x490
[  182.028571][ T5254]  shmem_file_write_iter+0xc5/0xf0
[  182.033695][ T5254]  __kernel_write_iter+0x2d6/0x540
[  182.038817][ T5254]  dump_user_range+0x61e/0x8f0
[  182.043584][ T5254]  elf_core_dump+0x1e00/0x1f90
[  182.048366][ T5254]  coredump_write+0xb0d/0xe30
[  182.053651][ T5254]  vfs_coredump+0x142f/0x20c0
[  182.058351][ T5254]  get_signal+0xd85/0xf70
[  182.062699][ T5254]  arch_do_signal_or_restart+0x96/0x480
[  182.068258][ T5254]  irqentry_exit_to_user_mode+0x5e/0xa0
[  182.073815][ T5254]  irqentry_exit+0x12/0x50
[  182.078254][ T5254]  exc_general_protection+0x15b/0x1f0
[  182.083640][ T5254]  asm_exc_general_protection+0x26/0x30
[  182.089196][ T5254] 
[  182.091522][ T5254] read to 0xffff88811a61d988 of 8 bytes by task 5254 on cpu 0:
[  182.099062][ T5254]  shmem_getattr+0x68/0x200
[  182.103568][ T5254]  vfs_getattr_nosec+0x143/0x1e0
[  182.108515][ T5254]  vfs_statx+0x113/0x390
[  182.112776][ T5254]  vfs_fstatat+0x115/0x170
[  182.117196][ T5254]  __se_sys_newfstatat+0x55/0x260
[  182.122224][ T5254]  __x64_sys_newfstatat+0x55/0x70
[  182.127251][ T5254]  x64_sys_call+0x135a/0x2ff0
[  182.131925][ T5254]  do_syscall_64+0xd2/0x200
[  182.136445][ T5254]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.142351][ T5254] 
[  182.144683][ T5254] value changed: 0x0000000000002528 -> 0x000000000000252d
[  182.151868][ T5254] 
[  182.154195][ T5254] Reported by Kernel Concurrency Sanitizer on:
[  182.160347][ T5254] CPU: 0 UID: 0 PID: 5254 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  182.170240][ T5254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[  182.180358][ T5254] ==================================================================
[  182.218546][T10799] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.