last executing test programs:

3.154173038s ago: executing program 4 (id=1121):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='mm_vmscan_write_folio\x00', r0, 0x0, 0x200}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x64, 0x1, 0x1, 0x801, 0x0, 0x0, {0x7}, [@CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x13cb}, @CTA_LABELS_MASK={0x28, 0x17, [0x7, 0x4, 0x3f, 0x9, 0x9d, 0x10001, 0x1, 0x67f5ac3a, 0x1]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @private2}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x24048040}, 0x800)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000300000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000000))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r5, 0x0, 0x415}, 0x18)
unshare(0x64000600)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000fcdbdf2503"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x40)

1.936083744s ago: executing program 4 (id=1132):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000c00), 0xffffffffffffffff)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000001200)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000011c0)={&(0x7f0000001180)={0x34, r0, 0x20, 0x70bd25, 0x25dfdbff, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x4081}, 0x10)
signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0x3]}, 0x8, 0x80000)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100", @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000005000000b7040000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0xc0a85320, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000201000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000280)={0x4, 0x11, 0x9c66, 0x0, 0xd})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x5, 0xffffffffffffffff, 0x8)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r5 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11fc1)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x4, 0x80400, 0x2004, 0x7fc})
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f00000003c0)={[{@usrquota}, {@noblock_validity}, {@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@debug}, {@errors_remount}]}, 0x6, 0x5fc, &(0x7f0000000600)="$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")
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r2, 0x0)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x0, &(0x7f0000000240)={0x0, 0xf, 0x4, 0x360}, 0x8, 0x9, 0x80, 0x0, 0x3, 0xfe, 0x0})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet6_mptcp_buf(r1, 0x11c, 0x3, &(0x7f0000000300)=""/216, &(0x7f0000000040)=0xd8)
syz_open_dev$vcsa(&(0x7f0000000580), 0xffffffff, 0x841)

1.114577335s ago: executing program 4 (id=1154):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x70, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x200000001300, 0x200000001330], 0x0, 0x0, &(0x7f0000001300)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff000000000000000000000000872ab0a700000000000000000000000000000000000000000000000000000000fcffffff00000000"]}, 0x108)

1.032165586s ago: executing program 3 (id=1158):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r0}, 0x10)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f0000000140)=[{{0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}], 0x10)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, 0x0, 0x0)

998.890497ms ago: executing program 4 (id=1160):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r0, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r1, &(0x7f0000002300)={&(0x7f0000000040)=@id={0x1e, 0x3, 0x0, {0x4e22, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x44}, 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x200}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0xbc}}, 0x0)
sendmsg$tipc(r1, &(0x7f00000000c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x480c0}, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000, 0x0, 0x2, 0x0, 0x88}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r4}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$inet_sctp(r6, &(0x7f0000003280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000008400660b35c40000060000009f00000000000000"], 0x18, 0x200408c4}, 0x400c000)
accept4(r0, 0x0, 0x0, 0x400000000000000)

964.730957ms ago: executing program 2 (id=1161):
r0 = syz_clone(0x24308000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)

930.552517ms ago: executing program 3 (id=1162):
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
clock_settime(0xffffffa1, 0x0)

928.797317ms ago: executing program 2 (id=1163):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_open_procfs(0x0, &(0x7f00000021c0)='maps\x00')
preadv(r0, &(0x7f0000000200)=[{&(0x7f0000000240)=""/173, 0xad}, {&(0x7f0000003240)=""/4128, 0x1020}], 0x2, 0x800, 0x9)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYRESDEC], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001bc0)={0x6, 0x10, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000010000000000000001000100b7080000000000007b8af8ff00000000b70800000c0000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0020f54d404d0000b70500000800000085000000a50000009000000000000000000085017c90c3205fb2c7ba880000000000000000e31e1363cf9dc743dfd057b4692a17f4a82ac2fc2a5112d9b21c66afa7db66c542013b2baf2ffaed3e4b36a05934d0c2d786517c22730f6d186d386cab5983f8f89929a5c0b0f3aa123c98ee267a33e6d8268f65053b6652bc63048c9c"], &(0x7f0000000500)='syzkaller\x00', 0x4, 0x1000, &(0x7f0000000780)=""/4096, 0x41100, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000001a80)={0x7, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001b80)=[r1, r0, 0xffffffffffffffff], 0x0, 0x10, 0x7fffffff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000000000b7030000000000008500000070"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r5, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x7c42273793ca46ce)
getdents(r7, &(0x7f0000001fc0)=""/184, 0xb8)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r8, 0x8955, &(0x7f0000000040)={{0x2, 0x0, @multicast2}, {0x0, @link_local}, 0x0, {0x2, 0x0, @multicast1}, 'team_slave_0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000001c0), 0x4)

868.378419ms ago: executing program 3 (id=1165):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000c00), 0xffffffffffffffff)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000001200)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000011c0)={&(0x7f0000001180)={0x34, r0, 0x20, 0x70bd25, 0x25dfdbff, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x4081}, 0x10)
signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0x3]}, 0x8, 0x80000)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100", @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000005000000b7040000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0xc0a85320, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000201000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000280)={0x4, 0x11, 0x9c66, 0x0, 0xd})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x5, 0xffffffffffffffff, 0x8)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r5 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11fc1)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x4, 0x80400, 0x2004, 0x7fc})
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f00000003c0)={[{@usrquota}, {@noblock_validity}, {@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@debug}, {@errors_remount}]}, 0x6, 0x5fc, &(0x7f0000000600)="$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")
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r2, 0x0)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x0, &(0x7f0000000240)={0x0, 0xf, 0x4, 0x360}, 0x8, 0x9, 0x80, 0x0, 0x3, 0xfe, 0x0})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet6_mptcp_buf(r1, 0x11c, 0x3, &(0x7f0000000300)=""/216, &(0x7f0000000040)=0xd8)
syz_open_dev$vcsa(&(0x7f0000000580), 0xffffffff, 0x841)

868.088939ms ago: executing program 4 (id=1166):
mknod$loop(0x0, 0x6000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b5c8f96acf40d05636bc9be4162a7446497a7aab1435925d61e2bef2792888f25c2d3e1dd667e298"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f00000001c0)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}]}, &(0x7f0000000300)='GPL\x00', 0x9, 0x1, &(0x7f0000000340)=""/1, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
io_submit(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000400)='./file0\x00', 0x410c84, &(0x7f00000003c0)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x4}}]}, 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r4, 0x402, 0x8)
r5 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10)
fcntl$notify(r5, 0x402, 0x1a)
close(r5)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYRES16=r0], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$binfmt_register(0xffffffffffffffff, &(0x7f0000000000)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x6, 0x3a, 'E', 0x3a, '@{@$\x9a$^', 0x3a, './file2', 0x3a, [0x46, 0x43, 0x43]}, 0x32)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)

860.731948ms ago: executing program 1 (id=1168):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r0, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r1, &(0x7f0000002300)={&(0x7f0000000040)=@id={0x1e, 0x3, 0x0, {0x4e22, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x44}, 0x4)
sendmsg$tipc(r1, &(0x7f00000000c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x480c0}, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000, 0x0, 0x2, 0x0, 0x88}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
accept4(r0, 0x0, 0x0, 0x400000000000000) (fail_nth: 2)

580.665032ms ago: executing program 0 (id=1169):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000000000f02000000000000000000000d0100000000005f"], 0x0, 0x34, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0x40ffffffff}, 0x1100, 0x5, 0x3a65, 0x5, 0x0, 0x5, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x44800)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000114000000110001"], 0x64}}, 0x0)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r2, &(0x7f0000000140)={&(0x7f0000000700), 0x14, &(0x7f0000000100)={0x0}, 0x7}, 0x0)
ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000))
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x60}, {0x16}]})
r3 = getpid()
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000180)='./file2\x00', 0x4a0c, &(0x7f0000003240)=ANY=[], 0x6, 0x36b, &(0x7f0000000540)="$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")
close_range(r0, 0xffffffffffffffff, 0x0)

499.782593ms ago: executing program 1 (id=1170):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x70, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x200000001300, 0x200000001330], 0x0, 0x0, &(0x7f0000001300)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff000000000000000000000000872ab0a700000000000000000000000000000000000000000000000000000000fcffffff00000000"]}, 0x108)

499.287603ms ago: executing program 1 (id=1171):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close(0x3)
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102)
io_setup(0x8, &(0x7f0000004200)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
io_submit(r2, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
dup(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='mm_page_alloc\x00', r0}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00'}, 0x10)
getcwd(&(0x7f0000000280)=""/101, 0x65)

440.803354ms ago: executing program 2 (id=1172):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_GET_PCI(r1, 0x5393, &(0x7f0000000000))

371.857705ms ago: executing program 2 (id=1173):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x76, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000680)='kfree\x00', r1}, 0x18)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, &(0x7f0000000340), &(0x7f0000000300)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0)
r7 = syz_open_dev$evdev(&(0x7f00000000c0), 0x1, 0x109002)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
ioctl$EVIOCGLED(r7, 0x80404519, &(0x7f0000000140)=""/89)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0x3)
syz_emit_ethernet(0x0, 0x0, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x18583, 0x0)
ioctl$VT_GETMODE(r8, 0x5601, &(0x7f00000004c0))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='br_fdb_add\x00'}, 0x10)
r9 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r10, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYRES16=r9, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
set_mempolicy(0x2, &(0x7f0000000040)=0xfffffffffffffff1, 0x5)
ioctl$TIOCSSOFTCAR(r6, 0x541a, &(0x7f0000000100)=0x80000000)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="600000001000030500"/20, @ANYBLOB="1546010000000000380012800e000100697036677265746170000000240002800400120014000700ff0200000000000000000000000000010800150015e5040008000a00", @ANYRES16], 0x60}}, 0x0)
setsockopt(r2, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)

323.890596ms ago: executing program 3 (id=1174):
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="00bda500667be200"/28, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000b00)=ANY=[@ANYBLOB="1800000000000000000bbe63a0d9000002000000001811000044a464651e28060091025a387233df58eb0dac73818c959d36ab86ff507a81b217754e5f9a1a5889f284582a14e5bb6c19706c1585", @ANYRES64=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @empty}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r1, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
r2 = openat$selinux_create(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40100, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r4}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})
write$selinux_create(r2, &(0x7f0000000080)=@access={'system_u:object_r:pam_exec_t:s0', 0x20, 'system_u:system_r:kernel_t:s0', 0x20, 0x6}, 0x53)
r5 = socket$inet6(0xa, 0x800000000000002, 0x0)
getsockopt$inet6_buf(r5, 0x29, 0x3d, 0x0, &(0x7f0000000240))
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r7, 0x107, 0xf, &(0x7f0000000100)=0xa, 0x4)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r8=>0x0})
sendto$packet(r7, &(0x7f0000000180)="0b036800e0ff64000200475400f6a13bb10000000800894f4820", 0x1a, 0x0, &(0x7f0000000140)={0x11, 0x0, r8, 0x1, 0xff, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYRES64=r6, @ANYRESDEC=r5, @ANYBLOB="abfb16613ca4fbacef87a020d2ccd8f1bed4d5c13c8284bf86f2cafe627ddfb8eaa49a4c3acf8f6e7538a16d3084aea3b9a57763781de5f836e49831b954e2b193e17737679d99c393d30de808", @ANYRES16=r5, @ANYRES64], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000000), 0x1, 0x4d8, &(0x7f0000000540)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r10 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x108, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
close(r10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200, @void, @value}, 0x94)

323.440356ms ago: executing program 0 (id=1175):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00'}, 0x10)
clock_settime(0xffffffa1, 0x0)

274.986606ms ago: executing program 1 (id=1176):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close(0x3)
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102)
io_setup(0x8, &(0x7f0000004200)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
io_submit(r2, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
r4 = dup(r1)
ioctl$USBDEVFS_SUBMITURB(r4, 0x8038550a, &(0x7f0000000100)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xffff}, 0x10007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='mm_page_alloc\x00', r0}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00'}, 0x10)
timer_create(0xb, &(0x7f0000000ac0)={0x0, 0x25, 0x1, @tid=0xffffffffffffffff}, &(0x7f0000000b00)=<r6=>0x0)
timer_delete(r6)

274.546936ms ago: executing program 3 (id=1177):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095", @ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0b00000005000000050000000900000001000000", @ANYRES32, @ANYBLOB="00000001010000000000000000362f2507af4bbd6100000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x7, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ppoll(0x0, 0xfeff, 0x0, 0x0, 0x0)
socket$rds(0x15, 0x5, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
getsockopt(r3, 0x200000000114, 0x2715, 0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e24, @multicast1}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000380)={0x1, &(0x7f0000000340)=[{0x8, 0x4, 0x0, 0x2}]})
poll(&(0x7f00000003c0)=[{r6, 0x101}, {r4, 0x4}, {r7, 0xc0}, {r0, 0x890}, {r1}], 0x5, 0x6)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r8}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x5d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @perf_config_ext={0x5}, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r10 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080))
ioctl$PAGEMAP_SCAN(r10, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00006e7000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f00000006c0)=[{0xa128, 0x1, 0x5}], 0x1, 0x0, 0x0, 0x18, 0x1, 0x2})
connect$inet(r4, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
shutdown(r4, 0x1)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, 0x16, 0x1, 0x0, 0x0, {0xa}}, 0x14}}, 0x0)

265.286847ms ago: executing program 2 (id=1178):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2(&(0x7f00000000c0)={<r3=>0xffffffffffffffff}, 0x80)
read$snapshot(r2, &(0x7f0000000900)=""/4096, 0x1000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'ipvlan0\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_SET(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYRES64=r0, @ANYRES16=r2, @ANYRES16=r2, @ANYRES32], 0x38}, 0x1, 0x0, 0x0, 0x4000814}, 0x0)
ioctl$sock_inet6_SIOCDELRT(r3, 0x890c, &(0x7f0000000100)={@ipv4={'\x00', '\xff\xff', @broadcast}, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @empty}, 0x1, 0x9, 0x5, 0x800, 0x69, 0x80000224, r5})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x18)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000040))
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000400)=0x11)

254.451156ms ago: executing program 0 (id=1179):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095", @ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0b00000005000000050000000900000001000000", @ANYRES32, @ANYBLOB="00000001010000000000000000362f2507af4bbd6100000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x7, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ppoll(0x0, 0xfeff, 0x0, 0x0, 0x0)
socket$rds(0x15, 0x5, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
getsockopt(r3, 0x200000000114, 0x2715, 0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e24, @multicast1}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000380)={0x1, &(0x7f0000000340)=[{0x8, 0x4, 0x0, 0x2}]})
poll(&(0x7f00000003c0)=[{r6, 0x101}, {r4, 0x4}, {r7, 0xc0}, {r0, 0x890}, {r1}], 0x5, 0x6)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r8}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x5d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @perf_config_ext={0x5}, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r10 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080))
ioctl$PAGEMAP_SCAN(r10, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00006e7000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f00000006c0)=[{0xa128, 0x1, 0x5}], 0x1, 0x0, 0x0, 0x18, 0x1, 0x2})
connect$inet(r4, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
shutdown(r4, 0x1)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, 0x16, 0x1, 0x0, 0x0, {0xa}}, 0x14}}, 0x0)

217.133957ms ago: executing program 2 (id=1180):
mknod$loop(0x0, 0x6000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b5c8f96acf40d05636bc9be4162a7446497a7aab1435925d61e2bef2792888f25c2d3e1dd667e2"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f00000001c0)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}]}, &(0x7f0000000300)='GPL\x00', 0x9, 0x1, &(0x7f0000000340)=""/1, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
io_submit(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000400)='./file0\x00', 0x410c84, &(0x7f00000003c0)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x4}}]}, 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r4, 0x402, 0x8)
r5 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10)
fcntl$notify(r5, 0x402, 0x1a)
close(r5)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYRES16=r0], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$binfmt_register(0xffffffffffffffff, &(0x7f0000000000)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x6, 0x3a, 'E', 0x3a, '@{@$\x9a$^', 0x3a, './file2', 0x3a, [0x46, 0x43, 0x43]}, 0x32)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)

156.643828ms ago: executing program 0 (id=1181):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x8000000000000}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000600)={'#! ', './bus'}, 0x9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff})
ioctl$FIDEDUPERANGE(r3, 0xc0189436, &(0x7f00000005c0)=ANY=[@ANYBLOB="fdffffffffcf3b316b9cffffffffffff7f"])
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r4, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x9}, 0x1c)
sendto$inet6(r4, &(0x7f0000000300), 0xfdef, 0x3b00, 0x0, 0xfffffffffffffdfd)

102.009989ms ago: executing program 1 (id=1182):
io_uring_register$IORING_UNREGISTER_PBUF_RING(0xffffffffffffffff, 0x17, &(0x7f0000002200)={&(0x7f0000003000)={[{&(0x7f0000000280)="e4f62b", 0x3, 0x3}]}, 0x1, 0x2}, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5393, &(0x7f0000000000))

101.357769ms ago: executing program 0 (id=1183):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_GET_PCI(r1, 0x5393, &(0x7f0000000000))

60.802459ms ago: executing program 1 (id=1184):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_open_procfs(0x0, &(0x7f00000021c0)='maps\x00')
preadv(r0, &(0x7f0000000200)=[{&(0x7f0000000240)=""/173, 0xad}, {&(0x7f0000003240)=""/4128, 0x1020}], 0x2, 0x800, 0x9)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYRESDEC], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001bc0)={0x6, 0x10, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000010000000000000001000100b7080000000000007b8af8ff00000000b70800000c0000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0020f54d404d0000b70500000800000085000000a50000009000000000000000000085017c90c3205fb2c7ba880000000000000000e31e1363cf9dc743dfd057b4692a17f4a82ac2fc2a5112d9b21c66afa7db66c542013b2baf2ffaed3e4b36a05934d0c2d786517c22730f6d186d386cab5983f8f89929a5c0b0f3aa123c98ee267a33e6d8268f65053b6652bc63048c9c"], &(0x7f0000000500)='syzkaller\x00', 0x4, 0x1000, &(0x7f0000000780)=""/4096, 0x41100, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000001a80)={0x7, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001b80)=[r1, r0, 0xffffffffffffffff], 0x0, 0x10, 0x7fffffff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000000000b7030000000000008500000070"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r6, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x7c42273793ca46ce)
getdents(r7, &(0x7f0000001fc0)=""/184, 0xb8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000300)='neigh_update\x00', r2}, 0x10)

60.193479ms ago: executing program 3 (id=1185):
r0 = socket$igmp(0x2, 0x3, 0x2)
syz_init_net_socket$llc(0x1a, 0x2, 0x0)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd1, &(0x7f00000000c0)=0x2, 0x4)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000080)={0x1, 0x4, 0xb, 0x3202, @vifc_lcl_addr=@broadcast, @broadcast}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, 0x0, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, 0x0, 0x0)
bind$inet6(r4, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
sendto$inet6(r4, 0x0, 0x0, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)
shutdown(r4, 0x1)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000017f03e3f7000000006ee2ffca1b1f0000000504c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120c00010005080c00bdad01409bbc7a46e39a8285dcdf12176679df069163ce955fed0009d78f0a947ee2b49e33538afaeb2713f450ebd010a20ff27fff", 0x89}], 0x1}, 0x0)
r6 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'veth0_to_hsr\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
bind$packet(r6, &(0x7f0000000080)={0x11, 0x4, r7, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x14)
sendmsg$nl_route_sched(r8, &(0x7f00000003c0)={0x0, 0x300, &(0x7f00000007c0)={&(0x7f0000000780)=@getchain={0x24, 0x11, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r7, {0xd}, {0xfff1, 0xfff2}, {0x0, 0xe}}}, 0x24}}, 0x40000)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000240)={'team_slave_0\x00', <r9=>0x0})
r10 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'vlan1\x00', <r11=>0x0})
sendmsg$nl_route(r10, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x28, 0x68, 0x1, 0x0, 0xfffffffe, {0xa, 0x0, 0xb}, [@NHA_ENCAP_TYPE={0x6, 0x7, 0x7}, @NHA_OIF={0x8, 0x5, r11}]}, 0x28}, 0x1, 0x0, 0x0, 0x4040}, 0x90)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0xa0, 0x0, 0x20, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_HEADER={0x78, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}, @ETHTOOL_A_STRSET_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x4008000}, 0x8c0)
sendto$inet6(r1, &(0x7f0000000040)='\x00', 0x1, 0x20000045, &(0x7f0000000340)={0xa, 0x2, 0x396, @empty}, 0x1c)
ioctl$SIOCGETMIFCNT_IN6(r0, 0x89e0, &(0x7f00000004c0))

44.311949ms ago: executing program 0 (id=1186):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r0}, 0x10)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f0000000140)=[{{0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}], 0x10)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, 0x0, 0x0)

0s ago: executing program 4 (id=1187):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close(0x3)
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102)
io_setup(0x8, &(0x7f0000004200)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
io_submit(r2, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
dup(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='mm_page_alloc\x00', r0}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00'}, 0x10)
getcwd(&(0x7f0000000280)=""/101, 0x65)

kernel console output (not intermixed with test programs):

c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.284770][ T5311] RSP: 002b:00007fdce6bb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   89.284795][ T5311] RAX: ffffffffffffffda RBX: 00007fdce8775fa0 RCX: 00007fdce854e969
[   89.284813][ T5311] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
[   89.284829][ T5311] RBP: 00007fdce6bb7090 R08: 0000000000000000 R09: 0000000000000000
[   89.284899][ T5311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.285121][ T5311] R13: 0000000000000000 R14: 00007fdce8775fa0 R15: 00007ffc5dcac948
[   89.285148][ T5311]  </TASK>
[   89.553570][ T5316] loop1: detected capacity change from 0 to 1024
[   89.624462][ T5316] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.649564][ T5325] 9pnet_fd: Insufficient options for proto=fd
[   89.760535][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.843651][ T5332] loop4: detected capacity change from 0 to 2048
[   89.858375][ T5334] loop0: detected capacity change from 0 to 2048
[   89.883800][ T3543]  loop4: p1 < > p4
[   89.889671][ T3543] loop4: p4 size 8388608 extends beyond EOD, truncated
[   89.902844][ T5334] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.935543][ T5332]  loop4: p1 < > p4
[   89.947891][ T5332] loop4: p4 size 8388608 extends beyond EOD, truncated
[   90.014129][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   90.028232][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   90.069861][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   90.070019][ T3309] udevd[3309]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   90.107002][ T5348] loop1: detected capacity change from 0 to 512
[   90.146257][ T5348] EXT4-fs (loop1): 1 orphan inode deleted
[   90.161668][ T4506] __quota_error: 262 callbacks suppressed
[   90.161687][ T4506] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   90.167619][ T5348] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.168169][ T4506] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:46: Failed to release dquot type 1
[   90.231127][ T5348] ext4 filesystem being mounted at /99/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.257396][ T5353] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.269541][ T5353] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.321847][ T5358] Invalid ELF header magic: != ELF
[   90.322019][   T29] audit: type=1400 audit(1747911524.147:2946): avc:  denied  { module_load } for  pid=5351 comm="syz.4.547" path="/sys/kernel/notes" dev="sysfs" ino=211 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[   90.360431][ T5348] vhci_hcd: invalid port number 96
[   90.365906][ T5348] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[   90.560137][   T29] audit: type=1326 audit(1747911524.377:2947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5362 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   90.606041][   T29] audit: type=1326 audit(1747911524.407:2948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5362 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   90.633144][   T29] audit: type=1326 audit(1747911524.407:2949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5362 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   90.659989][   T29] audit: type=1326 audit(1747911524.407:2950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5362 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   90.684614][   T29] audit: type=1326 audit(1747911524.407:2951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5362 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   90.710671][   T29] audit: type=1326 audit(1747911524.407:2952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5362 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   90.737279][   T29] audit: type=1326 audit(1747911524.407:2953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5362 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   90.764004][   T29] audit: type=1326 audit(1747911524.407:2954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5362 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   90.792552][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.830853][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.869299][ T5373] netlink: 'syz.3.553': attribute type 27 has an invalid length.
[   90.880260][ T5371] loop0: detected capacity change from 0 to 2048
[   90.884212][ T5374] xt_TCPMSS: Only works on TCP SYN packets
[   90.899200][ T5374] loop1: detected capacity change from 0 to 512
[   90.914179][ T5371]  loop0: p1 < > p4
[   90.921049][ T5371] loop0: p4 size 8388608 extends beyond EOD, truncated
[   90.940643][ T3005]  loop0: p1 < > p4
[   90.949991][ T3005] loop0: p4 size 8388608 extends beyond EOD, truncated
[   90.959325][ T5373] erspan0: left allmulticast mode
[   90.980942][ T5374] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.022599][ T5374] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.064821][ T5374] netlink: 'syz.1.550': attribute type 1 has an invalid length.
[   91.077348][ T5373] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.085501][ T5373] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.119469][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   91.139873][ T5382] loop2: detected capacity change from 0 to 128
[   91.179157][ T5384] loop4: detected capacity change from 0 to 2048
[   91.253342][ T3543]  loop4: p1 < > p4
[   91.254340][ T3543] loop4: p4 size 8388608 extends beyond EOD, truncated
[   91.268069][ T5373] wg2: left promiscuous mode
[   91.268095][ T5373] wg2: left allmulticast mode
[   91.316057][ T5373] team_slave_0: left promiscuous mode
[   91.316085][ T5373] team_slave_0: left allmulticast mode
[   91.354533][ T5384]  loop4: p1 < > p4
[   91.357744][ T5384] loop4: p4 size 8388608 extends beyond EOD, truncated
[   91.470323][ T5373] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   91.479537][ T5373] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   91.488751][ T5373] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   91.498022][ T5373] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   91.512704][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   91.525734][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   91.553091][ T5373] veth3: left promiscuous mode
[   91.558518][ T1041] lo speed is unknown, defaulting to 1000
[   91.564537][ T1041] syz0: Port: 1 Link DOWN
[   91.595901][ T5374] 8021q: adding VLAN 0 to HW filter on device bond1
[   91.623740][ T5387] bond1: (slave veth0_to_bond): making interface the new active one
[   91.643760][ T5387] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[   91.666079][ T5392] vlan2: entered allmulticast mode
[   91.671508][ T5392] veth1: entered allmulticast mode
[   91.696286][ T5392] veth1: entered promiscuous mode
[   91.709897][ T5392] veth1: left promiscuous mode
[   91.723423][ T5392] bond1: (slave vlan2): Enslaving as an active interface with an up link
[   91.756186][ T5400] syz.2.554: attempt to access beyond end of device
[   91.756186][ T5400] loop2: rw=0, sector=121, nr_sectors = 120 limit=128
[   91.826304][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.868882][ T4493] kworker/u8:34: attempt to access beyond end of device
[   91.868882][ T4493] loop2: rw=1, sector=241, nr_sectors = 800 limit=128
[   91.956398][ T5425] loop0: detected capacity change from 0 to 2048
[   91.986062][ T5427] loop4: detected capacity change from 0 to 2048
[   91.986390][ T5427] ext4: Unknown parameter 'noacl'
[   91.997850][ T5425] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.083334][ T5439] netlink: 'syz.4.563': attribute type 1 has an invalid length.
[   92.091587][ T5439] __nla_validate_parse: 3 callbacks suppressed
[   92.091605][ T5439] netlink: 224 bytes leftover after parsing attributes in process `syz.4.563'.
[   92.112661][ T5433] netlink: 12 bytes leftover after parsing attributes in process `syz.2.564'.
[   92.170641][ T5446] loop1: detected capacity change from 0 to 128
[   92.180660][ T5446] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   92.214998][ T5446] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   92.285319][ T5446] FAULT_INJECTION: forcing a failure.
[   92.285319][ T5446] name failslab, interval 1, probability 0, space 0, times 0
[   92.298985][ T5446] CPU: 1 UID: 0 PID: 5446 Comm: syz.1.568 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[   92.299088][ T5446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   92.299105][ T5446] Call Trace:
[   92.299128][ T5446]  <TASK>
[   92.299142][ T5446]  __dump_stack+0x1d/0x30
[   92.299170][ T5446]  dump_stack_lvl+0xe8/0x140
[   92.299226][ T5446]  dump_stack+0x15/0x1b
[   92.299242][ T5446]  should_fail_ex+0x265/0x280
[   92.299355][ T5446]  should_failslab+0x8c/0xb0
[   92.299395][ T5446]  __kmalloc_noprof+0xa5/0x3e0
[   92.299432][ T5446]  ? iter_file_splice_write+0xfe/0x970
[   92.299465][ T5446]  iter_file_splice_write+0xfe/0x970
[   92.299512][ T5446]  ? __pfx_iter_file_splice_write+0x10/0x10
[   92.299545][ T5446]  direct_splice_actor+0x153/0x2a0
[   92.299652][ T5446]  ? filemap_splice_read+0x1/0x6b0
[   92.299693][ T5446]  splice_direct_to_actor+0x30f/0x680
[   92.299767][ T5446]  ? __pfx_direct_splice_actor+0x10/0x10
[   92.299872][ T5446]  do_splice_direct+0xda/0x150
[   92.299904][ T5446]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   92.299939][ T5446]  do_sendfile+0x380/0x640
[   92.299970][ T5446]  __x64_sys_sendfile64+0x105/0x150
[   92.300023][ T5446]  x64_sys_call+0xb39/0x2fb0
[   92.300051][ T5446]  do_syscall_64+0xd0/0x1a0
[   92.300078][ T5446]  ? clear_bhb_loop+0x40/0x90
[   92.300205][ T5446]  ? clear_bhb_loop+0x40/0x90
[   92.300278][ T5446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.300304][ T5446] RIP: 0033:0x7ff0ab79e969
[   92.300319][ T5446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.300338][ T5446] RSP: 002b:00007ff0a9e07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   92.300377][ T5446] RAX: ffffffffffffffda RBX: 00007ff0ab9c5fa0 RCX: 00007ff0ab79e969
[   92.300395][ T5446] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[   92.300412][ T5446] RBP: 00007ff0a9e07090 R08: 0000000000000000 R09: 0000000000000000
[   92.300427][ T5446] R10: 000000000003ffff R11: 0000000000000246 R12: 0000000000000001
[   92.300444][ T5446] R13: 0000000000000000 R14: 00007ff0ab9c5fa0 R15: 00007ffd9f2939b8
[   92.300478][ T5446]  </TASK>
[   92.301550][ T5453] sctp: [Deprecated]: syz.3.570 (pid 5453) Use of int in maxseg socket option.
[   92.301550][ T5453] Use struct sctp_assoc_value instead
[   92.546691][ T5453] netlink: 'syz.3.570': attribute type 1 has an invalid length.
[   92.566854][ T4484] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   92.646711][ T5464] loop1: detected capacity change from 0 to 128
[   92.789406][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.844768][ T5475] lo speed is unknown, defaulting to 1000
[   92.863643][ T5477] loop0: detected capacity change from 0 to 512
[   92.879876][ T5467] syz.1.572: attempt to access beyond end of device
[   92.879876][ T5467] loop1: rw=0, sector=121, nr_sectors = 120 limit=128
[   92.922394][ T4496] kworker/u8:37: attempt to access beyond end of device
[   92.922394][ T4496] loop1: rw=1, sector=241, nr_sectors = 800 limit=128
[   92.942595][ T5485] FAULT_INJECTION: forcing a failure.
[   92.942595][ T5485] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.944744][ T5477] EXT4-fs (loop0): 1 orphan inode deleted
[   92.956207][ T5485] CPU: 0 UID: 0 PID: 5485 Comm: syz.4.579 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[   92.956245][ T5485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   92.956262][ T5485] Call Trace:
[   92.956272][ T5485]  <TASK>
[   92.956301][ T5485]  __dump_stack+0x1d/0x30
[   92.956333][ T5485]  dump_stack_lvl+0xe8/0x140
[   92.956360][ T5485]  dump_stack+0x15/0x1b
[   92.956384][ T5485]  should_fail_ex+0x265/0x280
[   92.956488][ T5485]  should_fail+0xb/0x20
[   92.956529][ T5485]  should_fail_usercopy+0x1a/0x20
[   92.956558][ T5485]  _copy_from_user+0x1c/0xb0
[   92.956667][ T5485]  scsi_ioctl+0x32c/0x1500
[   92.956811][ T5485]  ? do_vfs_ioctl+0x993/0x15b0
[   92.956908][ T5485]  sg_ioctl+0x12fb/0x1360
[   92.957004][ T5485]  ? __pfx_sg_ioctl+0x10/0x10
[   92.957044][ T5485]  __se_sys_ioctl+0xcb/0x140
[   92.957077][ T5485]  __x64_sys_ioctl+0x43/0x50
[   92.957170][ T5485]  x64_sys_call+0x19a8/0x2fb0
[   92.957201][ T5485]  do_syscall_64+0xd0/0x1a0
[   92.957236][ T5485]  ? clear_bhb_loop+0x40/0x90
[   92.957318][ T5485]  ? clear_bhb_loop+0x40/0x90
[   92.957356][ T5485]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.957435][ T5485] RIP: 0033:0x7f4f5de4e969
[   92.957457][ T5485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.957482][ T5485] RSP: 002b:00007f4f5c4b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   92.957510][ T5485] RAX: ffffffffffffffda RBX: 00007f4f5e075fa0 RCX: 00007f4f5de4e969
[   92.957527][ T5485] RDX: 0000200000000000 RSI: 0000000000005393 RDI: 0000000000000006
[   92.957545][ T5485] RBP: 00007f4f5c4b7090 R08: 0000000000000000 R09: 0000000000000000
[   92.957613][ T5485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.957630][ T5485] R13: 0000000000000000 R14: 00007f4f5e075fa0 R15: 00007ffcf67201a8
[   92.957656][ T5485]  </TASK>
[   92.986061][ T4496] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:37: Failed to release dquot type 1
[   93.009355][ T5487] netlink: 32 bytes leftover after parsing attributes in process `syz.1.580'.
[   93.029661][ T5477] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.234958][ T5489] SELinux:  Context system_u:object_r:tzdata_exec_t:s0 is not valid (left unmapped).
[   93.268925][ T5496] loop1: detected capacity change from 0 to 2048
[   93.370628][ T3543]  loop1: p1 < > p4
[   93.375282][ T5477] vhci_hcd: invalid port number 96
[   93.380589][ T5477] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[   93.392576][ T3543] loop1: p4 size 8388608 extends beyond EOD, truncated
[   93.433042][ T5496]  loop1: p1 < > p4
[   93.452878][ T5496] loop1: p4 size 8388608 extends beyond EOD, truncated
[   93.796680][ T5502] netlink: 32 bytes leftover after parsing attributes in process `syz.2.585'.
[   94.025786][ T5505] loop1: detected capacity change from 0 to 2048
[   94.107096][ T5509] SELinux:  Context unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 is not valid (left unmapped).
[   94.346171][ T5516] loop0: detected capacity change from 0 to 2048
[   94.401778][ T5516]  loop0: p1 < > p4
[   94.417272][ T5507] Falling back ldisc for ttyS3.
[   94.430230][ T5516] loop0: p4 size 8388608 extends beyond EOD, truncated
[   94.479091][ T3005]  loop0: p1 < > p4
[   94.516944][ T3005] loop0: p4 size 8388608 extends beyond EOD, truncated
[   94.593109][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   94.603020][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   94.608964][ T5522] loop2: detected capacity change from 0 to 128
[   94.705278][ T3005]  loop0: p1 < > p4
[   94.715607][ T3005] loop0: p4 size 8388608 extends beyond EOD, truncated
[   94.782823][ T5526] FAULT_INJECTION: forcing a failure.
[   94.782823][ T5526] name failslab, interval 1, probability 0, space 0, times 0
[   94.796934][ T5526] CPU: 0 UID: 0 PID: 5526 Comm: syz.4.592 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[   94.796971][ T5526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   94.796984][ T5526] Call Trace:
[   94.796990][ T5526]  <TASK>
[   94.796998][ T5526]  __dump_stack+0x1d/0x30
[   94.797028][ T5526]  dump_stack_lvl+0xe8/0x140
[   94.797114][ T5526]  dump_stack+0x15/0x1b
[   94.797131][ T5526]  should_fail_ex+0x265/0x280
[   94.797235][ T5526]  should_failslab+0x8c/0xb0
[   94.797329][ T5526]  kmem_cache_alloc_node_noprof+0x57/0x320
[   94.797358][ T5526]  ? __alloc_skb+0x101/0x320
[   94.797392][ T5526]  __alloc_skb+0x101/0x320
[   94.797507][ T5526]  netlink_alloc_large_skb+0xba/0xf0
[   94.797539][ T5526]  netlink_sendmsg+0x3cf/0x6b0
[   94.797561][ T5526]  ? __pfx_netlink_sendmsg+0x10/0x10
[   94.797588][ T5526]  __sock_sendmsg+0x145/0x180
[   94.797671][ T5526]  ____sys_sendmsg+0x31e/0x4e0
[   94.797695][ T5526]  ___sys_sendmsg+0x17b/0x1d0
[   94.797781][ T5526]  __x64_sys_sendmsg+0xd4/0x160
[   94.797838][ T5526]  x64_sys_call+0x2999/0x2fb0
[   94.797867][ T5526]  do_syscall_64+0xd0/0x1a0
[   94.797894][ T5526]  ? clear_bhb_loop+0x40/0x90
[   94.797938][ T5526]  ? clear_bhb_loop+0x40/0x90
[   94.797964][ T5526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.797993][ T5526] RIP: 0033:0x7f4f5de4e969
[   94.798088][ T5526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.798113][ T5526] RSP: 002b:00007f4f5c4b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   94.798135][ T5526] RAX: ffffffffffffffda RBX: 00007f4f5e075fa0 RCX: 00007f4f5de4e969
[   94.798152][ T5526] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[   94.798169][ T5526] RBP: 00007f4f5c4b7090 R08: 0000000000000000 R09: 0000000000000000
[   94.798185][ T5526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.798199][ T5526] R13: 0000000000000000 R14: 00007f4f5e075fa0 R15: 00007ffcf67201a8
[   94.798218][ T5526]  </TASK>
[   95.132847][ T3005]  loop0: p1 < > p4
[   95.138539][ T3005] loop0: p4 size 8388608 extends beyond EOD, truncated
[   95.192725][ T5531] netlink: 4 bytes leftover after parsing attributes in process `syz.4.594'.
[   95.210897][   T29] kauditd_printk_skb: 79 callbacks suppressed
[   95.210915][   T29] audit: type=1326 audit(1747911527.023:3033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5535 comm="syz.3.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   95.248599][   T29] audit: type=1326 audit(1747911527.023:3034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5535 comm="syz.3.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   95.296042][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   95.317364][   T29] audit: type=1326 audit(1747911527.103:3035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5535 comm="syz.3.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   95.334167][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   95.346545][   T29] audit: type=1326 audit(1747911527.103:3036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5535 comm="syz.3.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   95.385862][   T29] audit: type=1326 audit(1747911527.103:3037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5535 comm="syz.3.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   95.415220][   T29] audit: type=1326 audit(1747911527.103:3038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5535 comm="syz.3.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   95.445148][   T29] audit: type=1326 audit(1747911527.103:3039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5535 comm="syz.3.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   95.471938][   T29] audit: type=1326 audit(1747911527.103:3040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5535 comm="syz.3.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   95.498903][   T29] audit: type=1326 audit(1747911527.103:3041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5535 comm="syz.3.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   95.528018][   T29] audit: type=1326 audit(1747911527.103:3042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5535 comm="syz.3.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[   95.657211][ T5548] lo speed is unknown, defaulting to 1000
[   95.680227][ T5539] syz.2.591: attempt to access beyond end of device
[   95.680227][ T5539] loop2: rw=0, sector=121, nr_sectors = 120 limit=128
[   95.738701][ T5550] loop4: detected capacity change from 0 to 8192
[   95.762026][ T4500] kworker/u8:40: attempt to access beyond end of device
[   95.762026][ T4500] loop2: rw=1, sector=241, nr_sectors = 800 limit=128
[   95.815914][ T5550]  loop4: p2 p3 p4
[   95.820713][ T5550] loop4: p2 start 32769 is beyond EOD, truncated
[   95.828719][ T5550] loop4: p3 start 458496 is beyond EOD, truncated
[   95.835596][ T5550] loop4: p4 start 198639616 is beyond EOD, truncated
[   95.852487][ T5555] loop0: detected capacity change from 0 to 512
[   95.895323][ T5555] EXT4-fs (loop0): 1 orphan inode deleted
[   95.919411][ T4487] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:30: Failed to release dquot type 1
[   95.933963][ T5555] ext4 filesystem being mounted at /113/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.943506][ T5563] FAULT_INJECTION: forcing a failure.
[   95.943506][ T5563] name failslab, interval 1, probability 0, space 0, times 0
[   95.958208][ T5563] CPU: 1 UID: 0 PID: 5563 Comm: syz.2.603 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[   95.958241][ T5563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   95.958256][ T5563] Call Trace:
[   95.958264][ T5563]  <TASK>
[   95.958274][ T5563]  __dump_stack+0x1d/0x30
[   95.958373][ T5563]  dump_stack_lvl+0xe8/0x140
[   95.958393][ T5563]  dump_stack+0x15/0x1b
[   95.958509][ T5563]  should_fail_ex+0x265/0x280
[   95.958551][ T5563]  should_failslab+0x8c/0xb0
[   95.958604][ T5563]  kmem_cache_alloc_node_noprof+0x57/0x320
[   95.958649][ T5563]  ? __alloc_skb+0x101/0x320
[   95.958693][ T5563]  __alloc_skb+0x101/0x320
[   95.958752][ T5563]  netlink_alloc_large_skb+0xba/0xf0
[   95.958809][ T5563]  netlink_sendmsg+0x3cf/0x6b0
[   95.958840][ T5563]  ? __pfx_netlink_sendmsg+0x10/0x10
[   95.958880][ T5563]  __sock_sendmsg+0x145/0x180
[   95.958993][ T5563]  ____sys_sendmsg+0x31e/0x4e0
[   95.959025][ T5563]  ___sys_sendmsg+0x17b/0x1d0
[   95.959126][ T5563]  __x64_sys_sendmsg+0xd4/0x160
[   95.959163][ T5563]  x64_sys_call+0x2999/0x2fb0
[   95.959191][ T5563]  do_syscall_64+0xd0/0x1a0
[   95.959277][ T5563]  ? clear_bhb_loop+0x40/0x90
[   95.959300][ T5563]  ? clear_bhb_loop+0x40/0x90
[   95.959322][ T5563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.959346][ T5563] RIP: 0033:0x7fdce854e969
[   95.959365][ T5563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.959407][ T5563] RSP: 002b:00007fdce6bb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   95.959431][ T5563] RAX: ffffffffffffffda RBX: 00007fdce8775fa0 RCX: 00007fdce854e969
[   95.959444][ T5563] RDX: 0000000000000800 RSI: 0000200000000200 RDI: 0000000000000003
[   95.959458][ T5563] RBP: 00007fdce6bb7090 R08: 0000000000000000 R09: 0000000000000000
[   95.959470][ T5563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.959482][ T5563] R13: 0000000000000000 R14: 00007fdce8775fa0 R15: 00007ffc5dcac948
[   95.959505][ T5563]  </TASK>
[   96.196674][ T5568] FAULT_INJECTION: forcing a failure.
[   96.196674][ T5568] name failslab, interval 1, probability 0, space 0, times 0
[   96.211755][ T5568] CPU: 1 UID: 0 PID: 5568 Comm: syz.1.605 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[   96.211805][ T5568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   96.211863][ T5568] Call Trace:
[   96.211872][ T5568]  <TASK>
[   96.211884][ T5568]  __dump_stack+0x1d/0x30
[   96.211977][ T5568]  dump_stack_lvl+0xe8/0x140
[   96.212004][ T5568]  dump_stack+0x15/0x1b
[   96.212035][ T5568]  should_fail_ex+0x265/0x280
[   96.212142][ T5568]  should_failslab+0x8c/0xb0
[   96.212178][ T5568]  kmem_cache_alloc_noprof+0x50/0x310
[   96.212202][ T5568]  ? dst_alloc+0xbd/0x100
[   96.212243][ T5568]  dst_alloc+0xbd/0x100
[   96.212264][ T5568]  ip_route_output_key_hash_rcu+0xebb/0x13d0
[   96.212333][ T5568]  ip_route_output_flow+0x7b/0x130
[   96.212433][ T5568]  udp_sendmsg+0x118b/0x13a0
[   96.212470][ T5568]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   96.212562][ T5568]  ? avc_has_perm+0xd3/0x150
[   96.212595][ T5568]  ? __pfx_udp_sendmsg+0x10/0x10
[   96.212619][ T5568]  inet_sendmsg+0xac/0xd0
[   96.212654][ T5568]  __sock_sendmsg+0x102/0x180
[   96.212767][ T5568]  sock_sendmsg+0xc1/0x130
[   96.212808][ T5568]  splice_to_socket+0x5fe/0x9a0
[   96.212983][ T5568]  ? __pfx_splice_to_socket+0x10/0x10
[   96.213009][ T5568]  direct_splice_actor+0x153/0x2a0
[   96.213095][ T5568]  ? copy_splice_read+0x1/0x5f0
[   96.213117][ T5568]  splice_direct_to_actor+0x30f/0x680
[   96.213145][ T5568]  ? __pfx_direct_splice_actor+0x10/0x10
[   96.213186][ T5568]  do_splice_direct+0xda/0x150
[   96.213298][ T5568]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   96.213334][ T5568]  do_sendfile+0x380/0x640
[   96.213366][ T5568]  __x64_sys_sendfile64+0x105/0x150
[   96.213413][ T5568]  x64_sys_call+0xb39/0x2fb0
[   96.213504][ T5568]  do_syscall_64+0xd0/0x1a0
[   96.213539][ T5568]  ? clear_bhb_loop+0x40/0x90
[   96.213562][ T5568]  ? clear_bhb_loop+0x40/0x90
[   96.213649][ T5568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.213679][ T5568] RIP: 0033:0x7ff0ab79e969
[   96.213696][ T5568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.213719][ T5568] RSP: 002b:00007ff0a9e07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   96.213744][ T5568] RAX: ffffffffffffffda RBX: 00007ff0ab9c5fa0 RCX: 00007ff0ab79e969
[   96.213759][ T5568] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000007
[   96.213835][ T5568] RBP: 00007ff0a9e07090 R08: 0000000000000000 R09: 0000000000000000
[   96.213852][ T5568] R10: 0000020000023893 R11: 0000000000000246 R12: 0000000000000001
[   96.213869][ T5568] R13: 0000000000000000 R14: 00007ff0ab9c5fa0 R15: 00007ffd9f2939b8
[   96.213897][ T5568]  </TASK>
[   96.556942][ T5570] loop2: detected capacity change from 0 to 2048
[   96.859108][ T5593] loop1: detected capacity change from 0 to 512
[   96.867587][ T5593] EXT4-fs: Ignoring removed nobh option
[   96.877086][ T5593] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.614: invalid indirect mapped block 256 (level 2)
[   96.896114][ T5593] EXT4-fs (loop1): 2 truncates cleaned up
[   96.931257][ T5596] netlink: 4 bytes leftover after parsing attributes in process `syz.4.613'.
[   96.943780][ T5593] netlink: 60 bytes leftover after parsing attributes in process `syz.1.614'.
[   96.945269][ T5596] random: crng reseeded on system resumption
[   96.954194][ T5593] unsupported nlmsg_type 40
[   97.004086][ T5597] loop4: detected capacity change from 0 to 128
[   97.061067][ T5596] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   97.116242][ T5601] loop1: detected capacity change from 0 to 512
[   97.139674][ T5596] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   97.162705][ T5601] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[   97.220283][ T5601] EXT4-fs (loop1): 1 truncate cleaned up
[   97.283958][ T5609] loop1: detected capacity change from 0 to 164
[   97.299587][ T5609] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   97.360715][ T5612] loop0: detected capacity change from 0 to 1024
[   97.371391][ T5612] EXT4-fs: Ignoring removed orlov option
[   97.381700][ T5612] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   97.534665][ T5620] loop0: detected capacity change from 0 to 512
[   97.543248][ T5620] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   97.567078][ T5620] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[   97.577122][ T5620] EXT4-fs (loop0): orphan cleanup on readonly fs
[   97.585637][ T5620] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.623: bg 0: block 361: padding at end of block bitmap is not set
[   97.606575][ T5620] EXT4-fs (loop0): Remounting filesystem read-only
[   97.615478][ T5620] EXT4-fs (loop0): 1 truncate cleaned up
[   97.631136][ T5620] netlink: 20 bytes leftover after parsing attributes in process `syz.0.623'.
[   97.777190][ T5628] loop4: detected capacity change from 0 to 512
[   97.821415][ T5628] EXT4-fs: Ignoring removed mblk_io_submit option
[   97.834860][ T5628] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   97.855788][ T5628] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   97.865807][ T5628] EXT4-fs (loop4): orphan cleanup on readonly fs
[   97.875644][ T5628] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.626: Invalid block bitmap block 0 in block_group 0
[   97.892383][ T5628] EXT4-fs (loop4): Remounting filesystem read-only
[   97.900293][ T5628] EXT4-fs (loop4): 1 orphan inode deleted
[   98.021184][ T5645] loop0: detected capacity change from 0 to 128
[   98.082157][ T5649] sch_tbf: burst 128 is lower than device ip6tnl0 mtu (1452) !
[   98.181758][ T5655] loop2: detected capacity change from 0 to 2048
[   98.233957][ T5541]  loop2: p1 < > p4
[   98.240428][ T5541] loop2: p4 size 8388608 extends beyond EOD, truncated
[   98.272743][ T5655]  loop2: p1 < > p4
[   98.285352][ T5650] syz.0.632: attempt to access beyond end of device
[   98.285352][ T5650] loop0: rw=0, sector=121, nr_sectors = 120 limit=128
[   98.287813][ T5664] netlink: 'syz.3.639': attribute type 1 has an invalid length.
[   98.300478][ T5655] loop2: p4 size 8388608 extends beyond EOD, truncated
[   98.325509][ T5667] loop4: detected capacity change from 0 to 512
[   98.343433][ T5668] Driver unsupported XDP return value 0 on prog  (id 541) dev N/A, expect packet loss!
[   98.381586][ T5667] EXT4-fs (loop4): 1 orphan inode deleted
[   98.401643][ T5667] ext4 filesystem being mounted at /123/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.406712][ T5674] loop1: detected capacity change from 0 to 512
[   98.419295][ T4496] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:37: Failed to release dquot type 1
[   98.435602][ T4506] kworker/u8:46: attempt to access beyond end of device
[   98.435602][ T4506] loop0: rw=1, sector=241, nr_sectors = 800 limit=128
[   98.454060][ T3005]  loop2: p1 < > p4
[   98.460330][ T3005] loop2: p4 size 8388608 extends beyond EOD, truncated
[   98.483718][ T5674] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[   98.514520][ T5541] udevd[5541]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   98.522018][ T5667] vhci_hcd: invalid port number 96
[   98.532511][ T5667] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[   98.546922][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   98.559090][ T5674] EXT4-fs (loop1): 1 truncate cleaned up
[   98.559808][ T5684] netlink: 88 bytes leftover after parsing attributes in process `syz.0.643'.
[   98.586687][ T5541] udevd[5541]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   98.592827][ T5684] qrtr: Invalid version 255
[   98.608679][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   98.752617][ T5700] pimreg: entered allmulticast mode
[   98.764821][ T5700] pimreg: left allmulticast mode
[   98.805865][ T5702] loop2: detected capacity change from 0 to 2048
[   98.835173][ T5702] netlink: 20 bytes leftover after parsing attributes in process `syz.2.652'.
[   98.846447][ T5702] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=37117 sclass=netlink_route_socket pid=5702 comm=syz.2.652
[   98.965194][ T5715] FAULT_INJECTION: forcing a failure.
[   98.965194][ T5715] name failslab, interval 1, probability 0, space 0, times 0
[   98.979243][ T5715] CPU: 1 UID: 0 PID: 5715 Comm: syz.0.656 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[   98.979275][ T5715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   98.979332][ T5715] Call Trace:
[   98.979341][ T5715]  <TASK>
[   98.979350][ T5715]  __dump_stack+0x1d/0x30
[   98.979374][ T5715]  dump_stack_lvl+0xe8/0x140
[   98.979398][ T5715]  dump_stack+0x15/0x1b
[   98.979418][ T5715]  should_fail_ex+0x265/0x280
[   98.979522][ T5715]  ? resv_map_alloc+0x32/0x190
[   98.979615][ T5715]  should_failslab+0x8c/0xb0
[   98.979656][ T5715]  __kmalloc_cache_noprof+0x4c/0x320
[   98.979756][ T5715]  ? vfs_write+0x75e/0x8d0
[   98.979793][ T5715]  resv_map_alloc+0x32/0x190
[   98.979819][ T5715]  hugetlbfs_get_inode+0x67/0x370
[   98.979852][ T5715]  hugetlb_file_setup+0x192/0x3d0
[   98.979972][ T5715]  ksys_mmap_pgoff+0x157/0x310
[   98.980046][ T5715]  x64_sys_call+0x1602/0x2fb0
[   98.980068][ T5715]  do_syscall_64+0xd0/0x1a0
[   98.980156][ T5715]  ? clear_bhb_loop+0x40/0x90
[   98.980179][ T5715]  ? clear_bhb_loop+0x40/0x90
[   98.980243][ T5715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.980271][ T5715] RIP: 0033:0x7fbbe7e5e969
[   98.980290][ T5715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.980351][ T5715] RSP: 002b:00007fbbe64c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   98.980377][ T5715] RAX: ffffffffffffffda RBX: 00007fbbe8085fa0 RCX: 00007fbbe7e5e969
[   98.980394][ T5715] RDX: 0000000000000000 RSI: 0000000001400000 RDI: 0000200000000000
[   98.980411][ T5715] RBP: 00007fbbe64c7090 R08: ffffffffffffffff R09: 0000000000000000
[   98.980428][ T5715] R10: 00000000000c3072 R11: 0000000000000246 R12: 0000000000000001
[   98.980445][ T5715] R13: 0000000000000000 R14: 00007fbbe8085fa0 R15: 00007fff7b6067b8
[   98.980465][ T5715]  </TASK>
[   99.182437][ T5718] loop2: detected capacity change from 0 to 128
[   99.238901][ T5721] loop1: detected capacity change from 0 to 1024
[   99.345852][ T5736] loop4: detected capacity change from 0 to 2048
[   99.380831][ T5740] loop1: detected capacity change from 0 to 2048
[   99.409098][ T5736]  loop4: p1 < > p4
[   99.413803][ T5541]  loop1: p1 < > p4
[   99.414001][ T5736] loop4: p4 size 8388608 extends beyond EOD, truncated
[   99.426854][ T5541] loop1: p4 size 8388608 extends beyond EOD, truncated
[   99.448209][ T3005]  loop4: p1 < > p4
[   99.454483][ T3005] loop4: p4 size 8388608 extends beyond EOD, truncated
[   99.470599][ T5740]  loop1: p1 < > p4
[   99.490123][ T5740] loop1: p4 size 8388608 extends beyond EOD, truncated
[   99.574962][ T5745] loop4: detected capacity change from 0 to 512
[   99.595613][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   99.610816][ T5540] udevd[5540]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   99.658927][ T5745] EXT4-fs (loop4): 1 orphan inode deleted
[   99.664066][ T5718] syz.2.654: attempt to access beyond end of device
[   99.664066][ T5718] loop2: rw=0, sector=121, nr_sectors = 120 limit=128
[   99.674492][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   99.682400][ T4484] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:27: Failed to release dquot type 1
[   99.713595][ T5745] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.723411][ T5540] udevd[5540]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   99.734854][ T5751] loop1: detected capacity change from 0 to 164
[   99.762761][ T5745] vhci_hcd: invalid port number 96
[   99.768825][ T5745] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[   99.779828][ T5751] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   99.793619][ T4484] kworker/u8:27: attempt to access beyond end of device
[   99.793619][ T4484] loop2: rw=1, sector=241, nr_sectors = 800 limit=128
[   99.821741][ T5751] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   99.832214][ T5751] Symlink component flag not implemented
[   99.841074][ T5751] Symlink component flag not implemented
[   99.868840][ T5751] Symlink component flag not implemented (7)
[   99.875862][ T5751] Symlink component flag not implemented (116)
[  100.140436][ T5778] loop2: detected capacity change from 0 to 2048
[  100.181922][ T5541]  loop2: p1 < > p4
[  100.187728][ T5541] loop2: p4 size 8388608 extends beyond EOD, truncated
[  100.198873][ T5778]  loop2: p1 < > p4
[  100.204769][ T5778] loop2: p4 size 8388608 extends beyond EOD, truncated
[  100.225827][ T3005]  loop2: p1 < > p4
[  100.231677][ T3005] loop2: p4 size 8388608 extends beyond EOD, truncated
[  100.256504][   T29] kauditd_printk_skb: 277 callbacks suppressed
[  100.256520][   T29] audit: type=1326 audit(1747911528.075:3314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5796 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[  100.291143][   T29] audit: type=1326 audit(1747911528.115:3315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5796 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[  100.315967][   T29] audit: type=1326 audit(1747911528.115:3316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5796 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[  100.341219][   T29] audit: type=1326 audit(1747911528.115:3317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5796 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[  100.368672][   T29] audit: type=1326 audit(1747911528.195:3318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5796 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[  100.378225][ T3005]  loop2: p1 < > p4
[  100.394808][   T29] audit: type=1326 audit(1747911528.195:3319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5796 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[  100.429296][   T29] audit: type=1326 audit(1747911528.195:3320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5796 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb856eee969 code=0x7ffc0000
[  100.459716][ T3005] loop2: p4 size 8388608 extends beyond EOD, truncated
[  100.470801][ T5793] loop1: detected capacity change from 0 to 128
[  100.512566][ T5541] udevd[5541]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  100.525195][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  100.547199][ T5541] udevd[5541]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  100.577417][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  100.633095][ T5805] FAULT_INJECTION: forcing a failure.
[  100.633095][ T5805] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.650007][ T5805] CPU: 1 UID: 0 PID: 5805 Comm: syz.2.687 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  100.650125][ T5805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.650142][ T5805] Call Trace:
[  100.650150][ T5805]  <TASK>
[  100.650160][ T5805]  __dump_stack+0x1d/0x30
[  100.650187][ T5805]  dump_stack_lvl+0xe8/0x140
[  100.650213][ T5805]  dump_stack+0x15/0x1b
[  100.650263][ T5805]  should_fail_ex+0x265/0x280
[  100.650307][ T5805]  should_fail+0xb/0x20
[  100.650343][ T5805]  should_fail_usercopy+0x1a/0x20
[  100.650392][ T5805]  _copy_from_user+0x1c/0xb0
[  100.650496][ T5805]  scsi_ioctl+0x32c/0x1500
[  100.650530][ T5805]  ? do_vfs_ioctl+0x993/0x15b0
[  100.650555][ T5805]  sg_ioctl+0x12fb/0x1360
[  100.650585][ T5805]  ? __pfx_sg_ioctl+0x10/0x10
[  100.650624][ T5805]  __se_sys_ioctl+0xcb/0x140
[  100.650659][ T5805]  __x64_sys_ioctl+0x43/0x50
[  100.650688][ T5805]  x64_sys_call+0x19a8/0x2fb0
[  100.650716][ T5805]  do_syscall_64+0xd0/0x1a0
[  100.650752][ T5805]  ? clear_bhb_loop+0x40/0x90
[  100.650780][ T5805]  ? clear_bhb_loop+0x40/0x90
[  100.650836][ T5805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.650856][ T5805] RIP: 0033:0x7fdce854e969
[  100.650873][ T5805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.650913][ T5805] RSP: 002b:00007fdce6bb7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  100.650938][ T5805] RAX: ffffffffffffffda RBX: 00007fdce8775fa0 RCX: 00007fdce854e969
[  100.650955][ T5805] RDX: 0000200000000000 RSI: 0000000000005393 RDI: 0000000000000007
[  100.650973][ T5805] RBP: 00007fdce6bb7090 R08: 0000000000000000 R09: 0000000000000000
[  100.650989][ T5805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.651004][ T5805] R13: 0000000000000000 R14: 00007fdce8775fa0 R15: 00007ffc5dcac948
[  100.651023][ T5805]  </TASK>
[  100.896405][ T5541] udevd[5541]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  100.896956][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  101.081140][ T5823] FAULT_INJECTION: forcing a failure.
[  101.081140][ T5823] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.095593][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: syz.0.697 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  101.095668][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  101.095685][ T5823] Call Trace:
[  101.095692][ T5823]  <TASK>
[  101.095700][ T5823]  __dump_stack+0x1d/0x30
[  101.095734][ T5823]  dump_stack_lvl+0xe8/0x140
[  101.095754][ T5823]  dump_stack+0x15/0x1b
[  101.095776][ T5823]  should_fail_ex+0x265/0x280
[  101.095813][ T5823]  should_fail+0xb/0x20
[  101.095851][ T5823]  should_fail_usercopy+0x1a/0x20
[  101.095872][ T5823]  _copy_from_user+0x1c/0xb0
[  101.095952][ T5823]  do_sys_poll+0x148/0xbc0
[  101.096030][ T5823]  ? timespec64_add_safe+0x106/0x150
[  101.096050][ T5823]  ? set_user_sigmask+0x84/0x190
[  101.096072][ T5823]  __se_sys_ppoll+0x1b9/0x200
[  101.096154][ T5823]  __x64_sys_ppoll+0x67/0x80
[  101.096209][ T5823]  x64_sys_call+0x2de5/0x2fb0
[  101.096302][ T5823]  do_syscall_64+0xd0/0x1a0
[  101.096332][ T5823]  ? clear_bhb_loop+0x40/0x90
[  101.096364][ T5823]  ? clear_bhb_loop+0x40/0x90
[  101.096396][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.096424][ T5823] RIP: 0033:0x7fbbe7e5e969
[  101.096456][ T5823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.096531][ T5823] RSP: 002b:00007fbbe64c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  101.096575][ T5823] RAX: ffffffffffffffda RBX: 00007fbbe8085fa0 RCX: 00007fbbe7e5e969
[  101.096593][ T5823] RDX: 0000200000000300 RSI: 0000000000000025 RDI: 0000200000000d40
[  101.096609][ T5823] RBP: 00007fbbe64c7090 R08: 0000000000000000 R09: 0000000000000000
[  101.096635][ T5823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.096651][ T5823] R13: 0000000000000000 R14: 00007fbbe8085fa0 R15: 00007fff7b6067b8
[  101.096689][ T5823]  </TASK>
[  101.174077][ T5826] loop1: detected capacity change from 0 to 2048
[  101.182472][   T29] audit: type=1326 audit(1747911528.995:3321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5827 comm="syz.0.699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  101.182580][   T29] audit: type=1326 audit(1747911528.995:3322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5827 comm="syz.0.699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  101.182614][   T29] audit: type=1326 audit(1747911528.995:3323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5827 comm="syz.0.699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  101.212357][ T5541]  loop1: p1 < > p4
[  101.213207][ T5541] loop1: p4 size 8388608 extends beyond EOD, truncated
[  101.218876][ T5830] loop0: detected capacity change from 0 to 128
[  101.221442][ T5826]  loop1: p1 < > p4
[  101.223055][ T5826] loop1: p4 size 8388608 extends beyond EOD, truncated
[  101.236241][ T5830] ext4 filesystem being mounted at /134/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  101.389930][ T5842] netlink: 8 bytes leftover after parsing attributes in process `syz.3.701'.
[  101.390735][ T5541] udevd[5541]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  101.392616][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  101.398950][ T5843] netlink: 16 bytes leftover after parsing attributes in process `syz.1.703'.
[  101.411371][ T5840] netlink: 16 bytes leftover after parsing attributes in process `syz.1.703'.
[  101.441595][ T5843] dummy0: entered promiscuous mode
[  101.765694][ T5850] loop0: detected capacity change from 0 to 128
[  101.773758][ T5850] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  101.788824][ T5850] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  101.799907][ T5843] macsec1: entered promiscuous mode
[  101.848395][ T5843] macsec1: entered allmulticast mode
[  101.868479][ T5843] dummy0: entered allmulticast mode
[  101.893732][ T5843] dummy0: left allmulticast mode
[  101.901056][ T5843] dummy0: left promiscuous mode
[  101.933465][ T4496] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  101.984839][ T5852] loop0: detected capacity change from 0 to 128
[  102.141073][ T5854] loop1: detected capacity change from 0 to 128
[  102.307820][ T5855] syz.0.705: attempt to access beyond end of device
[  102.307820][ T5855] loop0: rw=0, sector=121, nr_sectors = 120 limit=128
[  102.420732][ T5883] loop2: detected capacity change from 0 to 512
[  102.435186][ T4484] kworker/u8:27: attempt to access beyond end of device
[  102.435186][ T4484] loop0: rw=1, sector=241, nr_sectors = 800 limit=128
[  102.463086][ T5888] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 20001 - 0
[  102.472328][ T5888] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 20001 - 0
[  102.482255][ T5888] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 20001 - 0
[  102.485663][ T5887] loop4: detected capacity change from 0 to 2048
[  102.492010][ T5888] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 20001 - 0
[  102.510392][ T5883] EXT4-fs (loop2): 1 orphan inode deleted
[  102.533832][ T4501] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:41: Failed to release dquot type 1
[  102.546748][ T5887]  loop4: p1 < > p4
[  102.552544][ T5887] loop4: p4 size 8388608 extends beyond EOD, truncated
[  102.562603][ T5883] ext4 filesystem being mounted at /142/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.598006][ T5894] loop0: detected capacity change from 0 to 512
[  102.606190][ T5894] EXT4-fs: Ignoring removed oldalloc option
[  102.614117][ T5894] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  102.634378][ T3005]  loop4: p1 < > p4
[  102.638809][ T5894] EXT4-fs (loop0): orphan cleanup on readonly fs
[  102.646122][ T5894] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.716: Failed to acquire dquot type 1
[  102.659754][ T3005] loop4: p4 size 8388608 extends beyond EOD, truncated
[  102.661373][ T5874] syz.1.707: attempt to access beyond end of device
[  102.661373][ T5874] loop1: rw=0, sector=121, nr_sectors = 120 limit=128
[  102.691662][ T5894] EXT4-fs (loop0): 1 truncate cleaned up
[  102.717032][ T3642] udevd[3642]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  102.728594][ T5541] udevd[5541]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  102.766313][ T5883] vhci_hcd: invalid port number 96
[  102.771824][ T5883] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  102.827105][ T4500] kworker/u8:40: attempt to access beyond end of device
[  102.827105][ T4500] loop1: rw=1, sector=241, nr_sectors = 800 limit=128
[  102.879122][ T5906] FAULT_INJECTION: forcing a failure.
[  102.879122][ T5906] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  102.879161][ T5906] CPU: 1 UID: 0 PID: 5906 Comm: syz.1.721 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  102.879192][ T5906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  102.879279][ T5906] Call Trace:
[  102.879286][ T5906]  <TASK>
[  102.879365][ T5906]  __dump_stack+0x1d/0x30
[  102.879387][ T5906]  dump_stack_lvl+0xe8/0x140
[  102.879406][ T5906]  dump_stack+0x15/0x1b
[  102.879423][ T5906]  should_fail_ex+0x265/0x280
[  102.879612][ T5906]  should_fail+0xb/0x20
[  102.879654][ T5906]  should_fail_usercopy+0x1a/0x20
[  102.879681][ T5906]  _copy_from_user+0x1c/0xb0
[  102.879704][ T5906]  ___sys_sendmsg+0xc1/0x1d0
[  102.879804][ T5906]  __sys_sendmmsg+0x178/0x300
[  102.879842][ T5906]  __x64_sys_sendmmsg+0x57/0x70
[  102.879872][ T5906]  x64_sys_call+0x2f2f/0x2fb0
[  102.880035][ T5906]  do_syscall_64+0xd0/0x1a0
[  102.880064][ T5906]  ? clear_bhb_loop+0x40/0x90
[  102.880134][ T5906]  ? clear_bhb_loop+0x40/0x90
[  102.880160][ T5906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.880181][ T5906] RIP: 0033:0x7ff0ab79e969
[  102.880195][ T5906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.880219][ T5906] RSP: 002b:00007ff0a9e07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  102.880300][ T5906] RAX: ffffffffffffffda RBX: 00007ff0ab9c5fa0 RCX: 00007ff0ab79e969
[  102.880317][ T5906] RDX: 3284b164842c97f7 RSI: 0000200000000c40 RDI: 0000000000000006
[  102.880387][ T5906] RBP: 00007ff0a9e07090 R08: 0000000000000000 R09: 0000000000000000
[  102.880400][ T5906] R10: 0000000000008014 R11: 0000000000000246 R12: 0000000000000001
[  102.880498][ T5906] R13: 0000000000000000 R14: 00007ff0ab9c5fa0 R15: 00007ffd9f2939b8
[  102.880526][ T5906]  </TASK>
[  102.956110][ T5911] nftables ruleset with unbound chain
[  102.999401][ T5915] netlink: 'syz.1.724': attribute type 4 has an invalid length.
[  102.999452][ T5915] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.724'.
[  103.005965][ T5913] loop4: detected capacity change from 0 to 2048
[  103.392884][ T3325] EXT4-fs unmount: 34 callbacks suppressed
[  103.393019][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.410991][ T5928] lo speed is unknown, defaulting to 1000
[  103.495876][ T5930] loop1: detected capacity change from 0 to 128
[  103.519103][ T5930] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  103.609796][ T5930] ext4 filesystem being mounted at /137/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  103.634122][ T5935] netlink: 'syz.0.731': attribute type 10 has an invalid length.
[  103.668420][ T3321] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  103.800375][ T5944] loop1: detected capacity change from 0 to 1024
[  103.834898][ T5944] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.871317][ T5948] netlink: 8 bytes leftover after parsing attributes in process `syz.1.735'.
[  103.925327][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.954899][ T5951] loop2: detected capacity change from 0 to 1024
[  103.969469][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.000062][ T5952] netlink: 28 bytes leftover after parsing attributes in process `syz.0.739'.
[  104.009476][ T5952] netlink: 28 bytes leftover after parsing attributes in process `syz.0.739'.
[  104.038562][ T5951] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.067151][ T5961] loop1: detected capacity change from 0 to 512
[  104.095916][ T5965] netlink: 'syz.3.742': attribute type 1 has an invalid length.
[  104.100499][ T5963] sch_tbf: burst 128 is lower than device ip6tnl0 mtu (1452) !
[  104.131089][ T5963] loop4: detected capacity change from 0 to 512
[  104.152474][ T5963] EXT4-fs: Ignoring removed orlov option
[  104.172459][ T5961] EXT4-fs (loop1): 1 orphan inode deleted
[  104.175963][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.190959][ T5961] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.204600][ T4496] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:37: Failed to release dquot type 1
[  104.204637][ T5961] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.221136][ T5963] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  104.271129][ T5961] vhci_hcd: invalid port number 96
[  104.276907][ T5961] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  104.308655][ T5963] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  104.338673][ T5982] loop0: detected capacity change from 0 to 2048
[  104.383341][ T5982] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.401097][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.495569][   T36] Process accounting resumed
[  104.558510][ T5997] loop4: detected capacity change from 0 to 1024
[  104.603679][ T5997] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.638637][ T3393] Process accounting resumed
[  104.742217][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.752071][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.846317][ T6014] loop4: detected capacity change from 0 to 2048
[  104.883674][ T6012] loop2: detected capacity change from 0 to 128
[  104.934189][ T5541]  loop4: p1 < > p4
[  104.946154][ T5541] loop4: p4 size 8388608 extends beyond EOD, truncated
[  104.962794][ T6014]  loop4: p1 < > p4
[  104.972026][ T6014] loop4: p4 size 8388608 extends beyond EOD, truncated
[  105.185227][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.320117][ T6017] syz.2.758: attempt to access beyond end of device
[  105.320117][ T6017] loop2: rw=0, sector=121, nr_sectors = 120 limit=128
[  105.361732][ T6028] loop4: detected capacity change from 0 to 512
[  105.417880][ T4500] kworker/u8:40: attempt to access beyond end of device
[  105.417880][ T4500] loop2: rw=1, sector=241, nr_sectors = 800 limit=128
[  105.463041][   T29] kauditd_printk_skb: 128 callbacks suppressed
[  105.463062][   T29] audit: type=1400 audit(1747911530.276:3448): avc:  denied  { read } for  pid=6037 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=482 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  105.494451][   T29] audit: type=1400 audit(1747911530.276:3449): avc:  denied  { open } for  pid=6037 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=482 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  105.520775][   T29] audit: type=1400 audit(1747911530.276:3450): avc:  denied  { getattr } for  pid=6037 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=482 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  105.549011][ T6036] loop1: detected capacity change from 0 to 256
[  105.612706][ T6055] loop0: detected capacity change from 0 to 512
[  105.620776][ T6028] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.622481][ T6036] FAULT_INJECTION: forcing a failure.
[  105.622481][ T6036] name failslab, interval 1, probability 0, space 0, times 0
[  105.646753][ T6036] CPU: 0 UID: 0 PID: 6036 Comm: syz.1.766 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  105.646810][ T6036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  105.646826][ T6036] Call Trace:
[  105.646833][ T6036]  <TASK>
[  105.646842][ T6036]  __dump_stack+0x1d/0x30
[  105.646868][ T6036]  dump_stack_lvl+0xe8/0x140
[  105.646899][ T6036]  dump_stack+0x15/0x1b
[  105.646921][ T6036]  should_fail_ex+0x265/0x280
[  105.646960][ T6036]  should_failslab+0x8c/0xb0
[  105.647008][ T6036]  kmem_cache_alloc_noprof+0x50/0x310
[  105.647035][ T6036]  ? getname_flags+0x80/0x3b0
[  105.647088][ T6036]  getname_flags+0x80/0x3b0
[  105.647128][ T6036]  __x64_sys_rename+0x33/0x70
[  105.647264][ T6036]  x64_sys_call+0x2aee/0x2fb0
[  105.647286][ T6036]  do_syscall_64+0xd0/0x1a0
[  105.647311][ T6036]  ? clear_bhb_loop+0x40/0x90
[  105.647336][ T6036]  ? clear_bhb_loop+0x40/0x90
[  105.647394][ T6036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.647420][ T6036] RIP: 0033:0x7ff0ab79e969
[  105.647435][ T6036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.647460][ T6036] RSP: 002b:00007ff0a9e07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  105.647499][ T6036] RAX: ffffffffffffffda RBX: 00007ff0ab9c5fa0 RCX: 00007ff0ab79e969
[  105.647544][ T6036] RDX: 0000000000000000 RSI: 0000200000000f40 RDI: 00002000000003c0
[  105.647561][ T6036] RBP: 00007ff0a9e07090 R08: 0000000000000000 R09: 0000000000000000
[  105.647577][ T6036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.647593][ T6036] R13: 0000000000000000 R14: 00007ff0ab9c5fa0 R15: 00007ffd9f2939b8
[  105.647613][ T6036]  </TASK>
[  105.647903][   T29] audit: type=1400 audit(1747911530.396:3451): avc:  denied  { write } for  pid=6034 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=481 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  105.712138][ T6028] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.715326][   T29] audit: type=1400 audit(1747911530.396:3452): avc:  denied  { add_name } for  pid=6034 comm="dhcpcd-run-hook" name="resolv.conf.cfttyS3.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  105.825977][ T6032] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[  105.826640][   T29] audit: type=1400 audit(1747911530.396:3453): avc:  denied  { create } for  pid=6034 comm="dhcpcd-run-hook" name="resolv.conf.cfttyS3.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  105.854774][ T6032] audit: out of memory in audit_log_start
[  105.866562][   T29] audit: type=1400 audit(1747911530.396:3454): avc:  denied  { write } for  pid=6034 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.cfttyS3.link" dev="tmpfs" ino=6327 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  105.963252][   T29] audit: type=1400 audit(1747911530.396:3455): avc:  denied  { append } for  pid=6034 comm="dhcpcd-run-hook" name="resolv.conf.cfttyS3.link" dev="tmpfs" ino=6327 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  106.012147][ T6055] EXT4-fs (loop0): 1 orphan inode deleted
[  106.013111][ T4501] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:41: Failed to release dquot type 1
[  106.022641][ T6055] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.047224][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.111839][ T6055] ext4 filesystem being mounted at /148/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.183208][ T6079] loop1: detected capacity change from 0 to 2048
[  106.203983][ T6055] vhci_hcd: invalid port number 96
[  106.209728][ T6055] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  106.225825][ T5541]  loop1: p1 < > p4
[  106.235001][ T6090] netlink: 4 bytes leftover after parsing attributes in process `syz.2.774'.
[  106.237713][ T5541] loop1: p4 size 8388608 extends beyond EOD, truncated
[  106.253716][ T6090] random: crng reseeded on system resumption
[  106.285394][ T6081] loop4: detected capacity change from 0 to 128
[  106.354010][ T6079]  loop1: p1 < > p4
[  106.358970][ T6079] loop1: p4 size 8388608 extends beyond EOD, truncated
[  106.368419][ T6093] loop2: detected capacity change from 0 to 128
[  106.380090][ T3005]  loop1: p1 < > p4
[  106.386126][ T3005] loop1: p4 size 8388608 extends beyond EOD, truncated
[  106.425597][ T6093] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  106.461871][ T5541] udevd[5541]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  106.475338][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  106.488244][ T6093] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  106.538831][ T5541] udevd[5541]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  106.553616][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  106.610905][ T3543] udevd[3543]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  106.633745][ T5541] udevd[5541]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  106.725786][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.769526][ T6106] loop1: detected capacity change from 0 to 128
[  106.833157][ T3005] udevd[3005]: worker [5541] terminated by signal 33 (Unknown signal 33)
[  106.852266][ T6106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.778'.
[  106.861630][ T6106] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  106.870058][ T6106] batman_adv: batadv0: Removing interface: batadv_slave_0
[  106.884502][ T6106] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  106.891355][ T3005] udevd[3005]: worker [5541] failed while handling '/devices/virtual/block/loop1'
[  106.892658][ T6106] batman_adv: batadv0: Removing interface: batadv_slave_1
[  106.929293][ T6112] loop0: detected capacity change from 0 to 2048
[  106.957652][ T6112] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.980428][ T3005] udevd[3005]: worker [3543] terminated by signal 33 (Unknown signal 33)
[  107.048960][ T3005] udevd[3005]: worker [3543] failed while handling '/devices/virtual/block/loop0'
[  107.072200][ T6098] syz.4.770: attempt to access beyond end of device
[  107.072200][ T6098] loop4: rw=0, sector=121, nr_sectors = 120 limit=128
[  107.126903][ T4484] kworker/u8:27: attempt to access beyond end of device
[  107.126903][ T4484] loop4: rw=1, sector=241, nr_sectors = 784 limit=128
[  107.143739][ T6118] netlink: 256 bytes leftover after parsing attributes in process `gtp'.
[  107.192065][ T6122] loop2: detected capacity change from 0 to 512
[  107.212556][ T6122] EXT4-fs (loop2): 1 orphan inode deleted
[  107.231801][ T6122] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.233106][ T4484] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:27: Failed to release dquot type 1
[  107.276045][ T6122] ext4 filesystem being mounted at /156/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.293512][ T6128] loop1: detected capacity change from 0 to 1024
[  107.342866][ T6128] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.353848][ T6132] netlink: 8 bytes leftover after parsing attributes in process `syz.4.785'.
[  107.409301][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.488533][ T6122] vhci_hcd: invalid port number 96
[  107.493877][ T6122] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  107.497345][ T6137] loop4: detected capacity change from 0 to 512
[  107.552561][ T6137] EXT4-fs (loop4): 1 orphan inode deleted
[  107.571418][ T4506] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:46: Failed to release dquot type 1
[  107.580940][ T6137] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.590001][ T6143] loop1: detected capacity change from 0 to 512
[  107.620321][ T6137] ext4 filesystem being mounted at /151/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.724604][ T6143] EXT4-fs (loop1): 1 orphan inode deleted
[  107.751420][ T4484] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:27: Failed to release dquot type 1
[  107.767077][ T6143] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.786663][ T6137] vhci_hcd: invalid port number 96
[  107.792682][ T6137] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  107.811629][ T6143] ext4 filesystem being mounted at /152/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.931404][ T6143] vhci_hcd: invalid port number 96
[  107.939331][ T6143] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  108.021369][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.087473][ T6149] loop2: detected capacity change from 0 to 1024
[  108.118674][ T6149] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.146567][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.190915][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.320504][ T6155] loop0: detected capacity change from 0 to 2048
[  108.402318][ T6155] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.455057][ T6164] loop2: detected capacity change from 0 to 2048
[  108.497357][ T6164] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.606502][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.623250][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.745870][ T6173] loop1: detected capacity change from 0 to 128
[  108.772936][ T6175] vcan1: entered promiscuous mode
[  109.411182][ T6177] syz.1.796: attempt to access beyond end of device
[  109.411182][ T6177] loop1: rw=0, sector=121, nr_sectors = 120 limit=128
[  109.490740][ T4500] kworker/u8:40: attempt to access beyond end of device
[  109.490740][ T4500] loop1: rw=1, sector=241, nr_sectors = 800 limit=128
[  109.528269][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.614574][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.632770][ T6188] loop1: detected capacity change from 0 to 1024
[  109.689298][ T6188] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.697780][ T6185] loop0: detected capacity change from 0 to 8192
[  109.730607][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.832501][ T6200] netlink: 'syz.0.806': attribute type 1 has an invalid length.
[  109.966197][ T6208] loop0: detected capacity change from 0 to 2048
[  110.021535][ T5540]  loop0: p1 < > p4
[  110.030465][ T5540] loop0: p4 size 8388608 extends beyond EOD, truncated
[  110.049776][ T6208]  loop0: p1 < > p4
[  110.060673][ T6208] loop0: p4 size 8388608 extends beyond EOD, truncated
[  110.102067][ T6211] SELinux: failed to load policy
[  110.307286][ T6218] loop0: detected capacity change from 0 to 1024
[  110.343114][ T6218] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.452593][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.581258][   T29] kauditd_printk_skb: 141 callbacks suppressed
[  110.581273][   T29] audit: type=1326 audit(1747911530.398:3593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm="syz.1.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  110.615087][   T29] audit: type=1326 audit(1747911530.398:3594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm="syz.1.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  110.639831][   T29] audit: type=1326 audit(1747911530.398:3595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm="syz.1.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  110.665090][   T29] audit: type=1326 audit(1747911530.398:3596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm="syz.1.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  110.689375][   T29] audit: type=1326 audit(1747911530.398:3597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm="syz.1.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  110.714794][   T29] audit: type=1326 audit(1747911529.535:3598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm="syz.1.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  110.791799][   T29] audit: type=1326 audit(1747911529.605:3599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm="syz.1.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  110.816835][   T29] audit: type=1326 audit(1747911529.605:3600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6223 comm="syz.1.816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  111.522506][ T6241] netlink: 12 bytes leftover after parsing attributes in process `syz.3.822'.
[  111.534236][ T6241] netlink: 48 bytes leftover after parsing attributes in process `syz.3.822'.
[  111.546787][ T6243] loop4: detected capacity change from 0 to 1024
[  111.596419][ T6243] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.634958][   T29] audit: type=1326 audit(1747911530.455:3601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6242 comm="syz.4.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f5de4e969 code=0x7ffc0000
[  111.659735][   T29] audit: type=1326 audit(1747911530.455:3602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6242 comm="syz.4.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7f4f5de4e969 code=0x7ffc0000
[  111.677310][ T6243] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  111.700026][ T6243] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 51 with max blocks 1 with error 28
[  111.713398][ T6243] EXT4-fs (loop4): This should not happen!! Data will be lost
[  111.713398][ T6243] 
[  111.723954][ T6243] EXT4-fs (loop4): Total free blocks count 0
[  111.730171][ T6243] EXT4-fs (loop4): Free/Dirty block details
[  111.736378][ T6243] EXT4-fs (loop4): free_blocks=68451041280
[  111.742642][ T6243] EXT4-fs (loop4): dirty_blocks=32
[  111.748706][ T6243] EXT4-fs (loop4): Block reservation details
[  111.754829][ T6243] EXT4-fs (loop4): i_reserved_data_blocks=2
[  111.805328][ T6247] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 52 with error 28
[  111.863020][ T6249] loop1: detected capacity change from 0 to 2048
[  111.921867][ T3306]  loop1: p1 < > p4
[  111.943247][ T6256] loop4: detected capacity change from 0 to 128
[  111.961498][ T3306] loop1: p4 size 8388608 extends beyond EOD, truncated
[  111.979078][ T6259] loop2: detected capacity change from 0 to 128
[  112.000314][ T6249]  loop1: p1 < > p4
[  112.010249][ T6249] loop1: p4 size 8388608 extends beyond EOD, truncated
[  112.047223][ T3005]  loop1: p1 < > p4
[  112.052295][ T3005] loop1: p4 size 8388608 extends beyond EOD, truncated
[  112.152723][ T6267] loop0: detected capacity change from 0 to 2048
[  112.155173][ T5540] udevd[5540]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  112.171772][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  112.182536][ T3642]  loop0: p1 < > p4
[  112.191056][ T3642] loop0: p4 size 8388608 extends beyond EOD, truncated
[  112.202519][ T6267]  loop0: p1 < > p4
[  112.207398][ T6267] loop0: p4 size 8388608 extends beyond EOD, truncated
[  112.218728][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  112.285969][ T5540] udevd[5540]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  112.322180][ T3005]  loop0: p1 < > p4
[  112.327023][ T3005] loop0: p4 size 8388608 extends beyond EOD, truncated
[  112.349470][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  112.369498][ T6269] loop1: detected capacity change from 0 to 2048
[  112.385896][ T6268] syz.4.827: attempt to access beyond end of device
[  112.385896][ T6268] loop4: rw=0, sector=121, nr_sectors = 120 limit=128
[  112.402520][ T5540] udevd[5540]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  112.432482][ T6277] loop0: detected capacity change from 0 to 1024
[  112.441333][ T4506] kworker/u8:46: attempt to access beyond end of device
[  112.441333][ T4506] loop4: rw=1, sector=241, nr_sectors = 800 limit=128
[  112.458405][ T6277] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  112.478526][ T6269] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.512617][ T6277] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  112.546508][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  112.609197][ T6277] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  112.643503][ T6277] EXT4-fs (loop0): orphan cleanup on readonly fs
[  112.651198][ T6277] EXT4-fs error (device loop0): ext4_read_inode_bitmap:167: comm syz.0.831: Inode bitmap for bg 0 marked uninitialized
[  112.659772][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  112.685345][ T6277] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  112.730472][ T6270] syz.2.829: attempt to access beyond end of device
[  112.730472][ T6270] loop2: rw=2049, sector=185, nr_sectors = 56 limit=128
[  112.751998][ T6269] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.830: bg 0: block 234: padding at end of block bitmap is not set
[  112.776945][ T6269] EXT4-fs (loop1): Remounting filesystem read-only
[  112.827416][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.841440][ T4506] kworker/u8:46: attempt to access beyond end of device
[  112.841440][ T4506] loop2: rw=1, sector=241, nr_sectors = 800 limit=128
[  112.898907][ T6291] loop1: detected capacity change from 0 to 512
[  112.908468][ T6277] EXT4-fs (loop0): ext4_remount: Checksum for group 0 failed (32298!=35945)
[  112.959424][ T6291] EXT4-fs (loop1): 1 orphan inode deleted
[  112.966739][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.967013][ T6291] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.977008][ T4506] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:46: Failed to release dquot type 1
[  113.002184][ T6291] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.063892][ T6303] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  113.074091][ T6304] EXT4-fs error (device loop1): ext4_lookup:1793: inode #2: comm syz.1.846: deleted inode referenced: 16
[  113.123104][ T6303] netlink: 8 bytes leftover after parsing attributes in process `syz.0.837'.
[  113.134602][ T6303] netlink: 4 bytes leftover after parsing attributes in process `syz.0.837'.
[  113.147367][ T6303] wireguard0: entered promiscuous mode
[  113.153254][ T6303] wireguard0: entered allmulticast mode
[  113.184043][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.231583][ T6309] loop1: detected capacity change from 0 to 1024
[  113.255916][ T6309] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.292787][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.327804][ T6315] loop1: detected capacity change from 0 to 2048
[  113.353492][ T6315]  loop1: p1 < > p4
[  113.358342][ T6315] loop1: p4 size 8388608 extends beyond EOD, truncated
[  113.388767][ T6317] loop0: detected capacity change from 0 to 1024
[  113.423291][ T6317] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.466008][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  113.471695][ T6321] syzkaller0: entered promiscuous mode
[  113.477922][ T5540] udevd[5540]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  113.482067][ T6321] syzkaller0: entered allmulticast mode
[  113.507905][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.577195][ T6325] loop1: detected capacity change from 0 to 512
[  113.594540][ T6325] EXT4-fs (loop1): 1 orphan inode deleted
[  113.607988][ T6327] syzkaller0: entered promiscuous mode
[  113.614083][ T6327] syzkaller0: entered allmulticast mode
[  113.619195][ T6325] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.632877][ T4496] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:37: Failed to release dquot type 1
[  113.646592][ T6325] ext4 filesystem being mounted at /170/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.690205][ T6331] loop4: detected capacity change from 0 to 2048
[  113.696083][ T6325] vhci_hcd: invalid port number 96
[  113.701920][ T6325] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  113.772264][ T6333] loop0: detected capacity change from 0 to 128
[  113.784348][ T6331] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.914069][ T6342] syzkaller0: entered promiscuous mode
[  113.920049][ T6342] syzkaller0: entered allmulticast mode
[  113.950097][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.969909][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.053293][ T6352] loop4: detected capacity change from 0 to 1024
[  114.096948][ T6349] loop1: detected capacity change from 0 to 2048
[  114.156976][ T6349] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.176107][ T6357] loop2: detected capacity change from 0 to 512
[  114.211244][ T6352] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.264357][ T6357] EXT4-fs (loop2): 1 orphan inode deleted
[  114.282216][ T6357] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.301343][ T4484] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:27: Failed to release dquot type 1
[  114.334793][ T6357] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.352985][ T6353] syz.0.849: attempt to access beyond end of device
[  114.352985][ T6353] loop0: rw=0, sector=121, nr_sectors = 120 limit=128
[  114.424357][ T6357] vhci_hcd: invalid port number 96
[  114.430128][ T6357] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  114.438821][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.514390][ T4484] kworker/u8:27: attempt to access beyond end of device
[  114.514390][ T4484] loop0: rw=1, sector=241, nr_sectors = 800 limit=128
[  114.569415][ T6369] netlink: 256 bytes leftover after parsing attributes in process `syz.4.858'.
[  114.594343][ T6370] loop0: detected capacity change from 0 to 2048
[  114.661614][ T3642]  loop0: p1 < > p4
[  114.666253][ T3642] loop0: p4 size 8388608 extends beyond EOD, truncated
[  114.678612][ T6370]  loop0: p1 < > p4
[  114.691993][ T6370] loop0: p4 size 8388608 extends beyond EOD, truncated
[  114.692035][ T6374] loop4: detected capacity change from 0 to 1024
[  114.727584][ T6374] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.798541][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.979063][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.999191][ T6385] loop4: detected capacity change from 0 to 128
[  115.043251][ T3321] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.069938][ T6390] team_slave_0: entered promiscuous mode
[  115.077000][ T6390] team_slave_0: entered allmulticast mode
[  115.317035][ T6419] syzkaller0: entered promiscuous mode
[  115.322799][ T6419] syzkaller0: entered allmulticast mode
[  115.408534][ T6431] netlink: 256 bytes leftover after parsing attributes in process `syz.1.885'.
[  115.419381][ T6427] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  115.451176][ T6427] netlink: 8 bytes leftover after parsing attributes in process `syz.2.883'.
[  115.461387][ T6427] netlink: 4 bytes leftover after parsing attributes in process `syz.2.883'.
[  115.480622][ T6427] wireguard0: entered promiscuous mode
[  115.486929][ T6427] wireguard0: entered allmulticast mode
[  115.503137][ T6397] syz.4.863: attempt to access beyond end of device
[  115.503137][ T6397] loop4: rw=0, sector=121, nr_sectors = 120 limit=128
[  115.554891][ T6441] netlink: 4 bytes leftover after parsing attributes in process `syz.3.888'.
[  115.565944][ T4487] kworker/u8:30: attempt to access beyond end of device
[  115.565944][ T4487] loop4: rw=1, sector=241, nr_sectors = 800 limit=128
[  115.610211][ T6446] loop4: detected capacity change from 0 to 512
[  115.628886][ T6446] EXT4-fs (loop4): blocks per group (255) and clusters per group (8192) inconsistent
[  115.673386][ T6446] netlink: 8 bytes leftover after parsing attributes in process `syz.4.890'.
[  115.684569][ T6446] netlink: 'syz.4.890': attribute type 1 has an invalid length.
[  115.693469][ T6446] netlink: 'syz.4.890': attribute type 2 has an invalid length.
[  115.705850][ T6449] loop2: detected capacity change from 0 to 128
[  115.747197][ T6454] syzkaller0: entered promiscuous mode
[  115.753195][ T6454] syzkaller0: entered allmulticast mode
[  115.874491][   T29] kauditd_printk_skb: 170 callbacks suppressed
[  115.874510][   T29] audit: type=1326 audit(1747911535.695:3770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6464 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  115.921985][   T29] audit: type=1326 audit(1747911535.725:3771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6464 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  115.946956][   T29] audit: type=1326 audit(1747911535.725:3772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6464 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  115.970968][   T29] audit: type=1326 audit(1747911535.725:3773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6464 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  115.995642][   T29] audit: type=1326 audit(1747911535.735:3774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6464 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  116.020742][   T29] audit: type=1326 audit(1747911535.735:3775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6464 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  116.046191][   T29] audit: type=1326 audit(1747911535.735:3776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6464 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  116.071070][   T29] audit: type=1326 audit(1747911535.735:3777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6464 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  116.095849][   T29] audit: type=1326 audit(1747911535.735:3778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6464 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  116.122627][   T29] audit: type=1326 audit(1747911535.735:3779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6464 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  116.270602][ T6489] lo speed is unknown, defaulting to 1000
[  116.543648][ T6498] __nla_validate_parse: 3 callbacks suppressed
[  116.543693][ T6498] netlink: 4 bytes leftover after parsing attributes in process `syz.0.905'.
[  116.705227][ T6498] random: crng reseeded on system resumption
[  116.712487][ T6502] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  116.760268][ T6505] loop0: detected capacity change from 0 to 128
[  116.997483][ T6521] loop2: detected capacity change from 0 to 512
[  117.044111][ T6529] FAULT_INJECTION: forcing a failure.
[  117.044111][ T6529] name failslab, interval 1, probability 0, space 0, times 0
[  117.057802][ T6529] CPU: 0 UID: 0 PID: 6529 Comm: syz.4.913 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  117.057840][ T6529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  117.057858][ T6529] Call Trace:
[  117.057867][ T6529]  <TASK>
[  117.057878][ T6529]  __dump_stack+0x1d/0x30
[  117.057906][ T6529]  dump_stack_lvl+0xe8/0x140
[  117.057938][ T6529]  dump_stack+0x15/0x1b
[  117.057960][ T6529]  should_fail_ex+0x265/0x280
[  117.058064][ T6529]  should_failslab+0x8c/0xb0
[  117.058102][ T6529]  kmem_cache_alloc_node_noprof+0x57/0x320
[  117.058124][ T6529]  ? __alloc_skb+0x101/0x320
[  117.058223][ T6529]  __alloc_skb+0x101/0x320
[  117.058331][ T6529]  ? audit_log_start+0x365/0x6c0
[  117.058372][ T6529]  audit_log_start+0x380/0x6c0
[  117.058416][ T6529]  audit_seccomp+0x48/0x100
[  117.058493][ T6529]  ? __seccomp_filter+0x68c/0x10d0
[  117.058557][ T6529]  __seccomp_filter+0x69d/0x10d0
[  117.058584][ T6529]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  117.058627][ T6529]  ? vfs_write+0x75e/0x8d0
[  117.058667][ T6529]  __secure_computing+0x82/0x150
[  117.058754][ T6529]  syscall_trace_enter+0xcf/0x1e0
[  117.058786][ T6529]  do_syscall_64+0xaa/0x1a0
[  117.058852][ T6529]  ? clear_bhb_loop+0x40/0x90
[  117.058880][ T6529]  ? clear_bhb_loop+0x40/0x90
[  117.058908][ T6529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.058937][ T6529] RIP: 0033:0x7f4f5de4e969
[  117.058956][ T6529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.059003][ T6529] RSP: 002b:00007f4f5c4b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  117.059029][ T6529] RAX: ffffffffffffffda RBX: 00007f4f5e075fa0 RCX: 00007f4f5de4e969
[  117.059043][ T6529] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  117.059055][ T6529] RBP: 00007f4f5c4b7090 R08: 0000000000000000 R09: 0000000000000000
[  117.059068][ T6529] R10: 0400000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.059086][ T6529] R13: 0000000000000000 R14: 00007f4f5e075fa0 R15: 00007ffcf67201a8
[  117.059167][ T6529]  </TASK>
[  117.301788][ T6535] loop0: detected capacity change from 0 to 512
[  117.341961][ T6521] EXT4-fs (loop2): 1 orphan inode deleted
[  117.348542][ T6521] ext4 filesystem being mounted at /175/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.381413][ T4500] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:40: Failed to release dquot type 1
[  117.382981][ T6535] EXT4-fs (loop0): 1 orphan inode deleted
[  117.400104][ T6535] ext4 filesystem being mounted at /177/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.421999][ T4500] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:40: Failed to release dquot type 1
[  117.470217][ T6535] vhci_hcd: invalid port number 96
[  117.470254][ T6535] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  117.475675][ T6521] vhci_hcd: invalid port number 96
[  117.489622][ T6521] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  117.600232][ T6548] lo speed is unknown, defaulting to 1000
[  117.636948][ T6553] netlink: 978 bytes leftover after parsing attributes in process `syz.3.918'.
[  117.641002][ T6550] syzkaller0: entered promiscuous mode
[  117.653210][ T6550] syzkaller0: entered allmulticast mode
[  117.763668][ T6558] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  117.938779][ T6570] loop1: detected capacity change from 0 to 128
[  118.125343][ T6577] syz.1.929: attempt to access beyond end of device
[  118.125343][ T6577] loop1: rw=0, sector=121, nr_sectors = 120 limit=128
[  118.194045][ T6591] syzkaller0: entered promiscuous mode
[  118.199590][ T6591] syzkaller0: entered allmulticast mode
[  118.206638][ T4484] kworker/u8:27: attempt to access beyond end of device
[  118.206638][ T4484] loop1: rw=1, sector=241, nr_sectors = 800 limit=128
[  118.245926][ T6597] FAULT_INJECTION: forcing a failure.
[  118.245926][ T6597] name failslab, interval 1, probability 0, space 0, times 0
[  118.259204][ T6597] CPU: 1 UID: 0 PID: 6597 Comm: syz.1.937 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  118.259309][ T6597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  118.259323][ T6597] Call Trace:
[  118.259328][ T6597]  <TASK>
[  118.259336][ T6597]  __dump_stack+0x1d/0x30
[  118.259440][ T6597]  dump_stack_lvl+0xe8/0x140
[  118.259483][ T6597]  dump_stack+0x15/0x1b
[  118.259506][ T6597]  should_fail_ex+0x265/0x280
[  118.259553][ T6597]  should_failslab+0x8c/0xb0
[  118.259591][ T6597]  __kmalloc_noprof+0xa5/0x3e0
[  118.259610][ T6597]  ? rds_message_alloc+0x45/0x120
[  118.259709][ T6597]  rds_message_alloc+0x45/0x120
[  118.259740][ T6597]  rds_sendmsg+0x860/0x14a0
[  118.259782][ T6597]  ? __pfx_rds_sendmsg+0x10/0x10
[  118.259852][ T6597]  __sock_sendmsg+0x145/0x180
[  118.259886][ T6597]  ____sys_sendmsg+0x31e/0x4e0
[  118.259955][ T6597]  ___sys_sendmsg+0x17b/0x1d0
[  118.260059][ T6597]  __x64_sys_sendmsg+0xd4/0x160
[  118.260160][ T6597]  x64_sys_call+0x2999/0x2fb0
[  118.260187][ T6597]  do_syscall_64+0xd0/0x1a0
[  118.260212][ T6597]  ? clear_bhb_loop+0x40/0x90
[  118.260267][ T6597]  ? clear_bhb_loop+0x40/0x90
[  118.260384][ T6597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.260414][ T6597] RIP: 0033:0x7ff0ab79e969
[  118.260433][ T6597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.260456][ T6597] RSP: 002b:00007ff0a9e07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.260475][ T6597] RAX: ffffffffffffffda RBX: 00007ff0ab9c5fa0 RCX: 00007ff0ab79e969
[  118.260487][ T6597] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  118.260503][ T6597] RBP: 00007ff0a9e07090 R08: 0000000000000000 R09: 0000000000000000
[  118.260516][ T6597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.260602][ T6597] R13: 0000000000000000 R14: 00007ff0ab9c5fa0 R15: 00007ffd9f2939b8
[  118.260637][ T6597]  </TASK>
[  118.490770][ T6601] loop1: detected capacity change from 0 to 1024
[  118.663062][ T6611] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  118.742412][ T6611] netlink: 8 bytes leftover after parsing attributes in process `syz.1.942'.
[  118.751652][ T6611] netlink: 4 bytes leftover after parsing attributes in process `syz.1.942'.
[  118.772434][ T6611] wireguard0: entered promiscuous mode
[  118.778495][ T6611] wireguard0: entered allmulticast mode
[  118.923867][ T6625] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6625 comm=syz.2.947
[  119.137829][ T6630] syzkaller0: entered promiscuous mode
[  119.143861][ T6630] syzkaller0: entered allmulticast mode
[  119.331492][ T6646] lo speed is unknown, defaulting to 1000
[  119.437093][ T6646] netlink: 256 bytes leftover after parsing attributes in process `+}[@'.
[  119.540594][ T6650] netlink: 4 bytes leftover after parsing attributes in process `syz.4.955'.
[  119.644169][ T6650] random: crng reseeded on system resumption
[  119.821560][ T6650] loop4: detected capacity change from 0 to 128
[  119.836188][ T6659] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  119.858937][ T6659] netlink: 4 bytes leftover after parsing attributes in process `syz.1.959'.
[  119.980996][ T6668] loop1: detected capacity change from 0 to 2048
[  120.018299][ T6670] program syz.2.960 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  120.036527][ T6670] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  120.155149][ T6672] lo speed is unknown, defaulting to 1000
[  120.357417][ T6694] loop4: detected capacity change from 0 to 512
[  120.416586][ T6694] EXT4-fs (loop4): 1 orphan inode deleted
[  120.426567][ T6694] ext4 filesystem being mounted at /191/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.441674][ T4493] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:34: Failed to release dquot type 1
[  120.524304][ T6694] vhci_hcd: invalid port number 96
[  120.530371][ T6694] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  120.658343][ T6703] netlink: 96 bytes leftover after parsing attributes in process `syz.3.973'.
[  120.730912][ T6707] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6707 comm=syz.2.974
[  120.891472][   T29] kauditd_printk_skb: 389 callbacks suppressed
[  120.891488][   T29] audit: type=1400 audit(1747911538.720:4164): avc:  denied  { unmount } for  pid=3325 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  120.950421][ T6721] vti0: entered promiscuous mode
[  120.962510][   T29] audit: type=1400 audit(1747911538.780:4165): avc:  denied  { execute } for  pid=6720 comm="syz.0.981" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=14443 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  120.962582][   T29] audit: type=1400 audit(1747911538.780:4166): avc:  denied  { override_creds } for  pid=6720 comm="syz.0.981" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  120.978934][   T29] audit: type=1326 audit(1747911538.800:4167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6726 comm="syz.2.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdce854e969 code=0x7ffc0000
[  121.026391][ T6729] loop1: detected capacity change from 0 to 1024
[  121.051764][   T29] audit: type=1326 audit(1747911538.800:4168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6726 comm="syz.2.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdce854e969 code=0x7ffc0000
[  121.107130][ T6737] FAULT_INJECTION: forcing a failure.
[  121.107130][ T6737] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  121.120480][ T6737] CPU: 0 UID: 0 PID: 6737 Comm: syz.0.987 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  121.120513][ T6737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  121.120527][ T6737] Call Trace:
[  121.120536][ T6737]  <TASK>
[  121.120545][ T6737]  __dump_stack+0x1d/0x30
[  121.120566][ T6737]  dump_stack_lvl+0xe8/0x140
[  121.120609][ T6737]  dump_stack+0x15/0x1b
[  121.120626][ T6737]  should_fail_ex+0x265/0x280
[  121.120670][ T6737]  should_fail+0xb/0x20
[  121.120702][ T6737]  should_fail_usercopy+0x1a/0x20
[  121.120738][ T6737]  _copy_from_user+0x1c/0xb0
[  121.120766][ T6737]  ___sys_sendmsg+0xc1/0x1d0
[  121.120813][ T6737]  __x64_sys_sendmsg+0xd4/0x160
[  121.120868][ T6737]  x64_sys_call+0x2999/0x2fb0
[  121.120896][ T6737]  do_syscall_64+0xd0/0x1a0
[  121.120925][ T6737]  ? clear_bhb_loop+0x40/0x90
[  121.120950][ T6737]  ? clear_bhb_loop+0x40/0x90
[  121.121051][ T6737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.121073][ T6737] RIP: 0033:0x7fbbe7e5e969
[  121.121098][ T6737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.121117][ T6737] RSP: 002b:00007fbbe64c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.121136][ T6737] RAX: ffffffffffffffda RBX: 00007fbbe8085fa0 RCX: 00007fbbe7e5e969
[  121.121149][ T6737] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000005
[  121.121212][ T6737] RBP: 00007fbbe64c7090 R08: 0000000000000000 R09: 0000000000000000
[  121.121228][ T6737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.121297][ T6737] R13: 0000000000000000 R14: 00007fbbe8085fa0 R15: 00007fff7b6067b8
[  121.121317][ T6737]  </TASK>
[  121.303295][   T29] audit: type=1326 audit(1747911538.840:4169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6726 comm="syz.2.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdce854e969 code=0x7ffc0000
[  121.327188][   T29] audit: type=1326 audit(1747911538.840:4170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6726 comm="syz.2.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdce854e969 code=0x7ffc0000
[  121.352033][   T29] audit: type=1326 audit(1747911538.840:4171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6726 comm="syz.2.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdce854e969 code=0x7ffc0000
[  121.375898][   T29] audit: type=1326 audit(1747911538.930:4172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6726 comm="syz.2.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdce854e969 code=0x7ffc0000
[  121.399730][   T29] audit: type=1326 audit(1747911538.930:4173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6726 comm="syz.2.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdce854e969 code=0x7ffc0000
[  121.450845][ T6739] loop2: detected capacity change from 0 to 2048
[  121.492237][ T5540]  loop2: p1 < > p4
[  121.497163][ T5540] loop2: p4 size 8388608 extends beyond EOD, truncated
[  121.510159][ T6739]  loop2: p1 < > p4
[  121.515810][ T6745] loop0: detected capacity change from 0 to 128
[  121.521015][ T6739] loop2: p4 size 8388608 extends beyond EOD, truncated
[  121.564353][ T6747] netlink: 4 bytes leftover after parsing attributes in process `syz.1.990'.
[  121.611602][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  121.620611][ T5540] udevd[5540]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  121.623886][ T6747] random: crng reseeded on system resumption
[  121.650410][ T6752] lo speed is unknown, defaulting to 1000
[  121.704105][ T6750] loop1: detected capacity change from 0 to 128
[  121.721740][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  121.743505][ T5540] udevd[5540]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  121.955817][ T6776] FAULT_INJECTION: forcing a failure.
[  121.955817][ T6776] name failslab, interval 1, probability 0, space 0, times 0
[  121.968677][ T6776] CPU: 0 UID: 0 PID: 6776 Comm: syz.2.1003 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  121.968711][ T6776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  121.968724][ T6776] Call Trace:
[  121.968731][ T6776]  <TASK>
[  121.968739][ T6776]  __dump_stack+0x1d/0x30
[  121.968767][ T6776]  dump_stack_lvl+0xe8/0x140
[  121.968860][ T6776]  dump_stack+0x15/0x1b
[  121.968877][ T6776]  should_fail_ex+0x265/0x280
[  121.968920][ T6776]  should_failslab+0x8c/0xb0
[  121.969012][ T6776]  __kvmalloc_node_noprof+0x126/0x4d0
[  121.969051][ T6776]  ? alloc_netdev_mqs+0x73f/0xab0
[  121.969081][ T6776]  alloc_netdev_mqs+0x73f/0xab0
[  121.969104][ T6776]  rtnl_create_link+0x239/0x710
[  121.969166][ T6776]  rtnl_newlink_create+0x151/0x630
[  121.969229][ T6776]  ? __list_del_entry_valid_or_report+0x65/0x130
[  121.969273][ T6776]  rtnl_newlink+0xf29/0x12d0
[  121.969362][ T6776]  ? bpf_trace_run3+0x12c/0x1d0
[  121.969398][ T6776]  ? __kfree_skb+0x109/0x150
[  121.969484][ T6776]  ? __memcg_slab_free_hook+0xb7/0x1c0
[  121.969520][ T6776]  ? __kfree_skb+0x109/0x150
[  121.969590][ T6776]  ? __rcu_read_unlock+0x4f/0x70
[  121.969619][ T6776]  ? avc_has_perm_noaudit+0x1b1/0x200
[  121.969650][ T6776]  ? selinux_capable+0x1f9/0x270
[  121.969720][ T6776]  ? security_capable+0x83/0x90
[  121.969764][ T6776]  ? ns_capable+0x7d/0xb0
[  121.969787][ T6776]  ? __pfx_rtnl_newlink+0x10/0x10
[  121.969865][ T6776]  rtnetlink_rcv_msg+0x5fe/0x6d0
[  121.969907][ T6776]  netlink_rcv_skb+0x123/0x220
[  121.969951][ T6776]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  121.970129][ T6776]  rtnetlink_rcv+0x1c/0x30
[  121.970161][ T6776]  netlink_unicast+0x5a1/0x670
[  121.970196][ T6776]  netlink_sendmsg+0x58b/0x6b0
[  121.970301][ T6776]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.970324][ T6776]  __sock_sendmsg+0x145/0x180
[  121.970352][ T6776]  ____sys_sendmsg+0x31e/0x4e0
[  121.970419][ T6776]  ___sys_sendmsg+0x17b/0x1d0
[  121.970492][ T6776]  __x64_sys_sendmsg+0xd4/0x160
[  121.970526][ T6776]  x64_sys_call+0x2999/0x2fb0
[  121.970548][ T6776]  do_syscall_64+0xd0/0x1a0
[  121.970651][ T6776]  ? clear_bhb_loop+0x40/0x90
[  121.970673][ T6776]  ? clear_bhb_loop+0x40/0x90
[  121.970701][ T6776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.970728][ T6776] RIP: 0033:0x7fdce854e969
[  121.970748][ T6776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.970776][ T6776] RSP: 002b:00007fdce6bb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.970798][ T6776] RAX: ffffffffffffffda RBX: 00007fdce8775fa0 RCX: 00007fdce854e969
[  121.970888][ T6776] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  121.970905][ T6776] RBP: 00007fdce6bb7090 R08: 0000000000000000 R09: 0000000000000000
[  121.970922][ T6776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  121.970939][ T6776] R13: 0000000000000000 R14: 00007fdce8775fa0 R15: 00007ffc5dcac948
[  121.970967][ T6776]  </TASK>
[  122.284790][ T6772] lo speed is unknown, defaulting to 1000
[  122.325048][ T6781] netlink: 256 bytes leftover after parsing attributes in process `+}[@'.
[  122.555256][ T6797] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1006'.
[  122.567432][ T6797] geneve1: entered promiscuous mode
[  122.574512][ T6797] geneve1: left promiscuous mode
[  122.607220][ T6812] netdevsim netdevsim3: Direct firmware load for ./file0 failed with error -2
[  122.647035][ T6814] loop4: detected capacity change from 0 to 2048
[  122.692641][ T5540]  loop4: p1 < > p4
[  122.711031][ T5540] loop4: p4 size 8388608 extends beyond EOD, truncated
[  122.745862][ T6814]  loop4: p1 < > p4
[  122.751799][ T6814] loop4: p4 size 8388608 extends beyond EOD, truncated
[  122.813842][ T6822] lo speed is unknown, defaulting to 1000
[  122.826315][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  122.844514][ T6830] loop4: detected capacity change from 0 to 512
[  122.852654][ T6828] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1025'.
[  122.874149][ T5540] udevd[5540]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  122.902003][ T6830] EXT4-fs (loop4): 1 orphan inode deleted
[  122.910162][ T6830] ext4 filesystem being mounted at /198/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.938399][ T4500] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:40: Failed to release dquot type 1
[  122.964238][ T5540] udevd[5540]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  122.966724][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  123.012623][ T6830] vhci_hcd: invalid port number 96
[  123.018106][ T6830] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  123.243709][ T6855] netlink: 'syz.4.1033': attribute type 3 has an invalid length.
[  123.308737][ T6863] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1038'.
[  123.403673][ T6865] loop4: detected capacity change from 0 to 128
[  123.418747][ T6869] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  123.447812][ T6869] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1041'.
[  123.457176][ T6869] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1041'.
[  123.496156][ T6869] wireguard1: entered promiscuous mode
[  123.501792][ T6869] wireguard1: entered allmulticast mode
[  123.726841][ T6882] loop0: detected capacity change from 0 to 128
[  123.807070][ T6886] loop1: detected capacity change from 0 to 1024
[  123.816545][ T6891] loop4: detected capacity change from 0 to 2048
[  123.830275][ T6886] EXT4-fs: Ignoring removed bh option
[  123.849425][ T6886] EXT4-fs: inline encryption not supported
[  123.856078][ T6886] EXT4-fs: Ignoring removed i_version option
[  123.863809][ T6886] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  123.876772][ T3306]  loop4: p1 < > p4
[  123.885608][ T3306] loop4: p4 size 8388608 extends beyond EOD, truncated
[  123.896495][ T6891]  loop4: p1 < > p4
[  123.906297][ T6891] loop4: p4 size 8388608 extends beyond EOD, truncated
[  123.919790][ T6886] EXT4-fs error (device loop1): ext4_map_blocks:709: inode #3: block 1: comm syz.1.1047: lblock 1 mapped to illegal pblock 1 (length 1)
[  123.977998][ T5540] udevd[5540]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  123.990585][ T6886] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.1047: Failed to acquire dquot type 0
[  124.013959][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  124.025103][ T6903] FAULT_INJECTION: forcing a failure.
[  124.025103][ T6903] name failslab, interval 1, probability 0, space 0, times 0
[  124.037078][ T6886] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.1047: Freeing blocks not in datazone - block = 0, count = 4096
[  124.040693][ T6903] CPU: 1 UID: 0 PID: 6903 Comm: syz.4.1052 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  124.040735][ T6903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  124.040817][ T6903] Call Trace:
[  124.040826][ T6903]  <TASK>
[  124.040835][ T6903]  __dump_stack+0x1d/0x30
[  124.040856][ T6903]  dump_stack_lvl+0xe8/0x140
[  124.040875][ T6903]  dump_stack+0x15/0x1b
[  124.040899][ T6903]  should_fail_ex+0x265/0x280
[  124.040968][ T6903]  should_failslab+0x8c/0xb0
[  124.041011][ T6903]  kmem_cache_alloc_node_noprof+0x57/0x320
[  124.041089][ T6903]  ? __alloc_skb+0x101/0x320
[  124.041127][ T6903]  __alloc_skb+0x101/0x320
[  124.041194][ T6903]  pfkey_sendmsg+0xd7/0x900
[  124.041239][ T6903]  ? avc_has_perm+0xd3/0x150
[  124.041267][ T6903]  ? selinux_socket_sendmsg+0x175/0x1b0
[  124.041319][ T6903]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  124.041362][ T6903]  __sock_sendmsg+0x145/0x180
[  124.041400][ T6903]  ____sys_sendmsg+0x31e/0x4e0
[  124.041492][ T6903]  ___sys_sendmsg+0x17b/0x1d0
[  124.041612][ T6903]  __x64_sys_sendmsg+0xd4/0x160
[  124.041646][ T6903]  x64_sys_call+0x2999/0x2fb0
[  124.041676][ T6903]  do_syscall_64+0xd0/0x1a0
[  124.041738][ T6903]  ? clear_bhb_loop+0x40/0x90
[  124.041832][ T6903]  ? clear_bhb_loop+0x40/0x90
[  124.041877][ T6903]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.041906][ T6903] RIP: 0033:0x7f4f5de4e969
[  124.041926][ T6903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.041952][ T6903] RSP: 002b:00007f4f5c4b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  124.041977][ T6903] RAX: ffffffffffffffda RBX: 00007f4f5e075fa0 RCX: 00007f4f5de4e969
[  124.041995][ T6903] RDX: 0000000000040010 RSI: 0000200000000800 RDI: 0000000000000003
[  124.042013][ T6903] RBP: 00007f4f5c4b7090 R08: 0000000000000000 R09: 0000000000000000
[  124.042074][ T6903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.042091][ T6903] R13: 0000000000000000 R14: 00007f4f5e075fa0 R15: 00007ffcf67201a8
[  124.042117][ T6903]  </TASK>
[  124.058488][ T6894] syz.0.1045: attempt to access beyond end of device
[  124.058488][ T6894] loop0: rw=0, sector=121, nr_sectors = 120 limit=128
[  124.078967][ T6886] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.1047: Invalid inode bitmap blk 0 in block_group 0
[  124.295373][ T4487] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:30: lblock 1 mapped to illegal pblock 1 (length 1)
[  124.295505][ T6886] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  124.318935][ T6886] EXT4-fs (loop1): 1 orphan inode deleted
[  124.326307][ T4487] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:30: Failed to release dquot type 0
[  124.361331][ T4487] kworker/u8:30: attempt to access beyond end of device
[  124.361331][ T4487] loop0: rw=1, sector=241, nr_sectors = 800 limit=128
[  124.447458][ T6912] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  124.462865][ T6914] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  124.493443][ T6914] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1056'.
[  124.503014][ T6914] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1056'.
[  124.515576][ T6914] wireguard1: entered promiscuous mode
[  124.521101][ T6914] wireguard1: entered allmulticast mode
[  124.569018][ T6924] loop2: detected capacity change from 0 to 1024
[  124.774264][ T6941] loop1: detected capacity change from 0 to 2048
[  124.801713][ T5540]  loop1: p1 < > p4
[  124.809341][ T5540] loop1: p4 size 8388608 extends beyond EOD, truncated
[  124.827590][ T6941]  loop1: p1 < > p4
[  124.834225][ T6949] netlink: 'syz.0.1070': attribute type 1 has an invalid length.
[  124.838341][ T6941] loop1: p4 size 8388608 extends beyond EOD, truncated
[  124.921414][ T3005]  loop1: p1 < > p4
[  124.926393][ T3005] loop1: p4 size 8388608 extends beyond EOD, truncated
[  125.132027][ T6977] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1079'.
[  125.139483][ T6974] loop2: detected capacity change from 0 to 2048
[  125.212823][ T6981] loop1: detected capacity change from 0 to 512
[  125.246224][ T6984] loop4: detected capacity change from 0 to 1024
[  125.282641][ T6974]  loop2: p1 < > p4
[  125.294787][ T6981] EXT4-fs (loop1): 1 orphan inode deleted
[  125.301001][ T6974] loop2: p4 size 8388608 extends beyond EOD, truncated
[  125.312309][ T6981] ext4 filesystem being mounted at /214/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.324791][ T4484] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:27: Failed to release dquot type 1
[  125.380486][ T6981] vhci_hcd: invalid port number 96
[  125.386384][ T6981] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  125.507677][ T6991] lo speed is unknown, defaulting to 1000
[  125.815020][ T7002] loop4: detected capacity change from 0 to 128
[  126.237186][ T7015] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  126.238249][   T29] kauditd_printk_skb: 336 callbacks suppressed
[  126.238267][   T29] audit: type=1326 audit(1747911549.059:4505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7017 comm="syz.1.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  126.294316][   T29] audit: type=1326 audit(1747911549.099:4506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7017 comm="syz.1.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  126.318054][   T29] audit: type=1326 audit(1747911549.099:4507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7017 comm="syz.1.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  126.342312][   T29] audit: type=1326 audit(1747911549.099:4508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7017 comm="syz.1.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  126.366602][   T29] audit: type=1326 audit(1747911549.099:4509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7017 comm="syz.1.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  126.391759][   T29] audit: type=1326 audit(1747911549.099:4510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7017 comm="syz.1.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  126.416882][   T29] audit: type=1326 audit(1747911549.099:4511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7017 comm="syz.1.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  126.440787][   T29] audit: type=1326 audit(1747911549.099:4512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7017 comm="syz.1.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  126.461245][ T7021] loop1: detected capacity change from 0 to 2048
[  126.464557][   T29] audit: type=1326 audit(1747911549.099:4513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7017 comm="syz.1.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0ab79e969 code=0x7ffc0000
[  126.525374][ T7027] loop0: detected capacity change from 0 to 1024
[  126.674719][   T29] audit: type=1326 audit(1747911549.469:4514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7026 comm="syz.0.1106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbe7e5e969 code=0x7ffc0000
[  126.858406][ T7039] loop4: detected capacity change from 0 to 512
[  126.916312][ T7039] EXT4-fs (loop4): 1 orphan inode deleted
[  126.932801][ T4484] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:27: Failed to release dquot type 1
[  127.001675][ T7039] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.089281][ T7039] vhci_hcd: invalid port number 96
[  127.094506][ T7039] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  127.279382][ T7053] loop2: detected capacity change from 0 to 128
[  127.289666][ T7059] netlink: 'syz.0.1107': attribute type 3 has an invalid length.
[  127.354712][ T7061] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  127.490131][ T7075] loop0: detected capacity change from 0 to 1024
[  127.547068][ T7072] loop1: detected capacity change from 0 to 8192
[  127.643626][ T7091] netlink: 'syz.2.1120': attribute type 3 has an invalid length.
[  127.752930][ T7095] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  127.890054][ T7102] lo speed is unknown, defaulting to 1000
[  127.923754][ T7098] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  128.505004][ T7104] lo speed is unknown, defaulting to 1000
[  128.574902][ T7104] __nla_validate_parse: 2 callbacks suppressed
[  128.574922][ T7104] netlink: 256 bytes leftover after parsing attributes in process `+}[@'.
[  128.830260][ T7116] loop1: detected capacity change from 0 to 1024
[  128.881503][ T7124] loop4: detected capacity change from 0 to 512
[  128.960370][ T7124] EXT4-fs (loop4): 1 orphan inode deleted
[  128.972267][ T4496] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:37: Failed to release dquot type 1
[  128.988436][ T7124] ext4 filesystem being mounted at /212/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.024733][ T7131] loop0: detected capacity change from 0 to 128
[  129.046228][ T7137] netlink: 87 bytes leftover after parsing attributes in process `syz.3.1134'.
[  129.097991][ T7124] vhci_hcd: invalid port number 96
[  129.103274][ T7124] vhci_hcd: default hub control req: 000f v0004 i0060 l0
[  129.142894][ T7144] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  129.151981][ T7148] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  129.238407][ T7155] loop0: detected capacity change from 0 to 1024
[  129.469773][ T7173] FAULT_INJECTION: forcing a failure.
[  129.469773][ T7173] name failslab, interval 1, probability 0, space 0, times 0
[  129.482566][ T7173] CPU: 0 UID: 0 PID: 7173 Comm: syz.0.1150 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  129.482665][ T7173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  129.482682][ T7173] Call Trace:
[  129.482689][ T7173]  <TASK>
[  129.482699][ T7173]  __dump_stack+0x1d/0x30
[  129.482725][ T7173]  dump_stack_lvl+0xe8/0x140
[  129.482744][ T7173]  dump_stack+0x15/0x1b
[  129.482831][ T7173]  should_fail_ex+0x265/0x280
[  129.482873][ T7173]  should_failslab+0x8c/0xb0
[  129.482951][ T7173]  kmem_cache_alloc_noprof+0x50/0x310
[  129.482971][ T7173]  ? copy_fs_struct+0x31/0x110
[  129.483079][ T7173]  copy_fs_struct+0x31/0x110
[  129.483113][ T7173]  __se_sys_setns+0x342/0xf10
[  129.483161][ T7173]  __x64_sys_setns+0x31/0x40
[  129.483242][ T7173]  x64_sys_call+0x2e95/0x2fb0
[  129.483264][ T7173]  do_syscall_64+0xd0/0x1a0
[  129.483288][ T7173]  ? clear_bhb_loop+0x40/0x90
[  129.483317][ T7173]  ? clear_bhb_loop+0x40/0x90
[  129.483416][ T7173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.483445][ T7173] RIP: 0033:0x7fbbe7e5e969
[  129.483516][ T7173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.483540][ T7173] RSP: 002b:00007fbbe64c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[  129.483576][ T7173] RAX: ffffffffffffffda RBX: 00007fbbe8085fa0 RCX: 00007fbbe7e5e969
[  129.483593][ T7173] RDX: 0000000000000000 RSI: 0000000024020000 RDI: 0000000000000003
[  129.483606][ T7173] RBP: 00007fbbe64c7090 R08: 0000000000000000 R09: 0000000000000000
[  129.483623][ T7173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.483639][ T7173] R13: 0000000000000000 R14: 00007fbbe8085fa0 R15: 00007fff7b6067b8
[  129.483713][ T7173]  </TASK>
[  129.752639][ T7184] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  129.961018][ T7207] loop4: detected capacity change from 0 to 2048
[  129.972749][ T7212] FAULT_INJECTION: forcing a failure.
[  129.972749][ T7212] name failslab, interval 1, probability 0, space 0, times 0
[  129.988460][ T7212] CPU: 0 UID: 0 PID: 7212 Comm: syz.1.1168 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  129.988547][ T7212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  129.988561][ T7212] Call Trace:
[  129.988569][ T7212]  <TASK>
[  129.988578][ T7212]  __dump_stack+0x1d/0x30
[  129.988605][ T7212]  dump_stack_lvl+0xe8/0x140
[  129.988691][ T7212]  dump_stack+0x15/0x1b
[  129.988709][ T7212]  should_fail_ex+0x265/0x280
[  129.988743][ T7212]  should_failslab+0x8c/0xb0
[  129.988850][ T7212]  kmem_cache_alloc_noprof+0x50/0x310
[  129.988876][ T7212]  ? security_inode_alloc+0x37/0x100
[  129.988907][ T7212]  security_inode_alloc+0x37/0x100
[  129.988929][ T7212]  inode_init_always_gfp+0x4b7/0x500
[  129.989043][ T7212]  ? __pfx_sock_alloc_inode+0x10/0x10
[  129.989079][ T7212]  alloc_inode+0x58/0x170
[  129.989113][ T7212]  do_accept+0xa0/0x3a0
[  129.989157][ T7212]  ? __fget_files+0x3c/0x1c0
[  129.989275][ T7212]  __sys_accept4+0xbf/0x140
[  129.989318][ T7212]  __x64_sys_accept4+0x51/0x60
[  129.989359][ T7212]  x64_sys_call+0x23d5/0x2fb0
[  129.989389][ T7212]  do_syscall_64+0xd0/0x1a0
[  129.989419][ T7212]  ? clear_bhb_loop+0x40/0x90
[  129.989483][ T7212]  ? clear_bhb_loop+0x40/0x90
[  129.989512][ T7212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.989680][ T7212] RIP: 0033:0x7ff0ab79e969
[  129.989696][ T7212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.989714][ T7212] RSP: 002b:00007ff0a9e07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  129.989739][ T7212] RAX: ffffffffffffffda RBX: 00007ff0ab9c5fa0 RCX: 00007ff0ab79e969
[  129.989756][ T7212] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  129.989772][ T7212] RBP: 00007ff0a9e07090 R08: 0000000000000000 R09: 0000000000000000
[  129.989797][ T7212] R10: 0400000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.989813][ T7212] R13: 0000000000000000 R14: 00007ff0ab9c5fa0 R15: 00007ffd9f2939b8
[  129.989896][ T7212]  </TASK>
[  130.257521][ T7217] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1169'.
[  130.302641][ T7217] random: crng reseeded on system resumption
[  130.373533][ T7226] loop0: detected capacity change from 0 to 128
[  130.480193][ T7228] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1173'.
[  130.518661][ T7232] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  130.601484][ T7242] loop2: detected capacity change from 0 to 2048
[  130.740028][ T7255] pimreg2: entered allmulticast mode
[  130.796974][ T4500] ==================================================================
[  130.805120][ T4500] BUG: KCSAN: data-race in copy_page_from_iter_atomic / copy_page_from_iter_atomic
[  130.814446][ T4500] 
[  130.816780][ T4500] write to 0xffff8881f964b165 of 3 bytes by task 7251 on cpu 0:
[  130.824439][ T4500]  copy_page_from_iter_atomic+0x77f/0xff0
[  130.830220][ T4500]  generic_perform_write+0x2c2/0x490
[  130.835590][ T4500]  ext4_buffered_write_iter+0x1ee/0x3c0
[  130.841194][ T4500]  ext4_file_write_iter+0x383/0xf00
[  130.846613][ T4500]  iter_file_splice_write+0x5ef/0x970
[  130.852458][ T4500]  direct_splice_actor+0x153/0x2a0
[  130.857622][ T4500]  splice_direct_to_actor+0x30f/0x680
[  130.863034][ T4500]  do_splice_direct+0xda/0x150
[  130.867854][ T4500]  do_sendfile+0x380/0x640
[  130.872378][ T4500]  __x64_sys_sendfile64+0x105/0x150
[  130.877618][ T4500]  x64_sys_call+0xb39/0x2fb0
[  130.882405][ T4500]  do_syscall_64+0xd0/0x1a0
[  130.886936][ T4500]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.892839][ T4500] 
[  130.895164][ T4500] read to 0xffff8881f964b000 of 2048 bytes by task 4500 on cpu 1:
[  130.903232][ T4500]  copy_page_from_iter_atomic+0x77f/0xff0
[  130.908995][ T4500]  generic_perform_write+0x2c2/0x490
[  130.914402][ T4500]  shmem_file_write_iter+0xc5/0xf0
[  130.919543][ T4500]  lo_rw_aio+0x5fa/0x7c0
[  130.923807][ T4500]  loop_process_work+0x52d/0xa60
[  130.928853][ T4500]  loop_workfn+0x31/0x40
[  130.933115][ T4500]  process_scheduled_works+0x4cb/0x9d0
[  130.938593][ T4500]  worker_thread+0x582/0x770
[  130.943204][ T4500]  kthread+0x486/0x510
[  130.947279][ T4500]  ret_from_fork+0x4b/0x60
[  130.951704][ T4500]  ret_from_fork_asm+0x1a/0x30
[  130.956571][ T4500] 
[  130.958914][ T4500] Reported by Kernel Concurrency Sanitizer on:
[  130.965068][ T4500] CPU: 1 UID: 0 PID: 4500 Comm: kworker/u8:40 Not tainted 6.15.0-rc7-syzkaller-00014-gd608703fcdd9 #0 PREEMPT(voluntary) 
[  130.977752][ T4500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  130.987816][ T4500] Workqueue: loop2 loop_workfn
[  130.992605][ T4500] ==================================================================
[  131.019316][ T7255] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1185'.