last executing test programs:

24.768787977s ago: executing program 3 (id=917):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f00000001c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
mount$9p_rdma(&(0x7f0000000000), &(0x7f0000000200)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f00000002c0)={'trans=rdma,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@sq={'sq', 0x3d, 0x800}}], [{@hash}, {@pcr={'pcr', 0x3d, 0x6}}, {@fowner_lt}, {@subj_type={'subj_type', 0x3d, ')'}}, {@appraise}]}})

24.737064148s ago: executing program 3 (id=920):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0xffff, 0x2, @loopback, 0x840000}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_256={{0x304}, "76f7bc3e4ae1c84c", "af193cff4810ba5ac120d096eb00a312a303000000000080fffffff39a00", "00ff7c00", "bc3a20b10f4ad11e"}, 0x38)
close(r1)

24.675629399s ago: executing program 3 (id=923):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000d00)='kfree\x00', r0}, 0x18)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r1, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port1\x00', 0x0, 0x120000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

24.63849601s ago: executing program 3 (id=924):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000bc0000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000640)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x10003, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x40505330, 0x0)
syz_clone3(&(0x7f00000002c0)={0x230a8000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0x0], 0x1}, 0x58)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000004c0)={0x18, 0x0, 0x1, 0x1000000, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x200000000200}, 0x18)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a300000000014000780050015000000000008001240000000000d000300686173683a6e657400000000050005000a000000050004"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040800}, 0x8d0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r6 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r6, 0x4c04, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x4, 0x8001, 0x0, 0x0, 0x19, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4117639c2eb4b78c66ee677df701905b9aafab4afaaf755a3f6a004", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000", [0x0, 0x2]})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={{0x14}, [@NFT_MSG_DELSET={0x0, 0xb, 0xa, 0x3, 0x0, 0x0, {0x5, 0x0, 0x3}, [@NFTA_SET_TABLE={0x0, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWSET={0x6c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3f}, @NFTA_SET_EXPRESSIONS={0x28, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}, {0x10, 0x1, 0x0, 0x1, @counter={{0xc}, @void}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xa8}}, 0x20050800)

24.311587265s ago: executing program 3 (id=935):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
listxattr(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x7, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000400000000dfffff1918120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00'}, 0x10)
socket$netlink(0x10, 0x3, 0x8000000004)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000000c0)={{0xffffffffffffffff, <r2=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)='%-010d \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={r2}, 0x4)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r3, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r4 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f0000007940), 0x55, 0x30, 0x0)
sendmmsg(r4, &(0x7f0000001500), 0x588, 0x0)

23.96822124s ago: executing program 3 (id=949):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r2, &(0x7f0000000380)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "a05c7b5d3cd1b0f200002000fdf700071400"})
syz_open_pts(r2, 0x0)

23.966635731s ago: executing program 32 (id=949):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r2, &(0x7f0000000380)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "a05c7b5d3cd1b0f200002000fdf700071400"})
syz_open_pts(r2, 0x0)

1.876135499s ago: executing program 1 (id=1542):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_io_uring_setup(0x1725, &(0x7f0000000100)={0x0, 0x5255, 0x0, 0x80400002, 0x2d4}, &(0x7f0000000300)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000240)=0xfffffc04, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_MKDIRAT={0x25, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x84, 0x0, 0x1})
io_uring_enter(r1, 0x8ba, 0x696d, 0x20, 0x0, 0x0) (fail_nth: 1)

1.85152545s ago: executing program 5 (id=1545):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000400)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xe}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.82686181s ago: executing program 1 (id=1546):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_io_uring_setup(0x1725, &(0x7f0000000100)={0x0, 0x5255, 0x0, 0x80400002, 0x2d4}, &(0x7f0000000300)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000240)=0xfffffc04, 0x0, 0x4)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
ppoll(&(0x7f0000001240)=[{r4}], 0x1, 0x0, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_MKDIRAT={0x25, 0x2, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r1, 0x8ba, 0x696d, 0x20, 0x0, 0x0)

1.791448851s ago: executing program 5 (id=1551):
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000600)={0x0, 0x5885, 0x800, 0x0, 0xffffffff}, &(0x7f0000000340), &(0x7f0000000380))
dup(r0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000002c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001040)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r1}, &(0x7f0000000800), &(0x7f0000000840)=r2}, 0x20)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)

1.776051111s ago: executing program 5 (id=1552):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000500000000000000", @ANYRES32=0x0, @ANYRES32], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
lstat(0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f00000002c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
socket(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="4000000010001ffffcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000010240000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r4], 0x40}}, 0x4000)

1.530461215s ago: executing program 2 (id=1554):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmctl$SHM_LOCK(r0, 0xb)
shmat(r0, &(0x7f0000ffd000/0x1000)=nil, 0x7000)
shmctl$SHM_UNLOCK(r0, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x800000000000000}, 0x18)
r2 = getpgrp(0x0)
sched_getaffinity(r2, 0x8, &(0x7f0000000180))

1.442905846s ago: executing program 5 (id=1555):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_config_ext={0x6, 0xff}, 0x400, 0xffffffff, 0x6, 0x4, 0x0, 0x1, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r2}, 0x18)
write$selinux_context(r0, &(0x7f0000000340)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000001001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000180)="391f00001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

1.441821737s ago: executing program 2 (id=1565):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
close(r0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x110e22fff7)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000880)='+}[@\x00')
close(r0)

1.403583747s ago: executing program 5 (id=1556):
r0 = syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x789, &(0x7f0000001240)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1db)
r3 = creat(&(0x7f0000000000)='./file2\x00', 0x1)
fsetxattr$security_selinux(r3, &(0x7f0000000380), &(0x7f00000003c0)='system_u:object_r:agp_device_t:s0\x00', 0x22, 0x1)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000009c0)={r3, 0x20, &(0x7f0000000980)={&(0x7f0000000800)=""/220, 0xdc, <r4=>0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x27, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
writev(r2, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x100000}], 0x1)

1.355225047s ago: executing program 2 (id=1559):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_ro(r2, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f0000000200)=0x1, 0x12)
write$cgroup_int(r3, &(0x7f00000000c0), 0x12)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0xb)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x4d0, 0x0, 0x25, 0x148, 0x340, 0x60, 0x438, 0x2a8, 0x2a8, 0x438, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x20, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x8001}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x530)

1.25130787s ago: executing program 2 (id=1560):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000540), r0)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000580)={0x28, r1, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x20008041}, 0x20004880)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4, 0x0, 0x7}, 0x18)
ioctl$TIOCMIWAIT(r3, 0x5453, 0x7cb7562f2d67)
getresgid(&(0x7f0000000040), &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0))
r6 = getegid()
getresuid(&(0x7f00000004c0)=<r7=>0x0, &(0x7f0000000500), &(0x7f0000000540))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000580)={0x0, 0x0, <r8=>0x0}, &(0x7f00000005c0)=0xc)
r9 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073727a3100000000080041007369770014003300626f6e643000000000"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
r10 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000bc0)={&(0x7f0000000340)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000240)="a50769f9b1", 0x5}, {&(0x7f00000003c0)="e2bb1ed63a57576cc2dcd86b8604be154e8a7600393346db8d", 0x19}], 0x2, &(0x7f0000000ac0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, r6}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r7, r8}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r9, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r10, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}], 0xe8, 0x200400d1}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x70f9a000)
r11 = syz_io_uring_setup(0x19d1, &(0x7f00000003c0)={0x0, 0x0, 0x10100, 0x8000004, 0x8000000}, &(0x7f0000000080)=<r12=>0x0, &(0x7f0000000040)=<r13=>0x0)
syz_io_uring_submit(r12, r13, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r11, 0xa3d, 0x0, 0x0, 0x0, 0xff39)
statx(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x800, 0x100, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0})
getgroups(0x3, &(0x7f0000000380)=[r5, r6, r14])

1.20344587s ago: executing program 4 (id=1561):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r2=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="4d7e00000000000000edb7a1002a0000000812b9bb9ba71bd37798002f00e3960068320137512f175e85319f15fa2998bc355608000c", @ANYRES32=r2, @ANYBLOB="06000600000000000600040000000000"], 0x50}, 0x4, 0x700000000000000, 0x0, 0x4040000}, 0x0)
r3 = syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f00000002c0)='./file1\x00', 0x0, &(0x7f00000006c0)={[{@auto_da_alloc}, {@errors_remount}, {@bh}, {@discard}, {@noload}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}], [{@func={'func', 0x3d, 'BPRM_CHECK'}}]}, 0x3, 0x4eb, &(0x7f0000001680)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
creat(&(0x7f00000001c0)='./file1\x00', 0x2)
acct(&(0x7f0000000080)='./file1\x00')
acct(0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000d80)='./file1\x00', 0x44042, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r5)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r5, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x14, r6, 0x8, 0x70bd27, 0x25dfdbfc, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x60000810}, 0x10040)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000007c0)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x14615, 0xef}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ENCRYPT={0x5, 0x7, 0x4}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r8 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r8, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
bind$inet6(r8, &(0x7f0000000140)={0xa, 0x4e22, 0x81, @mcast2, 0x1b8e1d41}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYRES16=r8, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000300)={'bond0\x00', <r10=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000003c0)=ANY=[@ANYRES64=r3, @ANYRESHEX=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3f, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffddb, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='kfree\x00'}, 0x18)
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@newqdisc={0x34, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r10, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_pfifo_fast={0xf}]}, 0x34}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x20900, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)

973.697724ms ago: executing program 1 (id=1562):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000400)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xe}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)

900.208165ms ago: executing program 0 (id=1563):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, &(0x7f0000000000)=""/31}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

899.736035ms ago: executing program 4 (id=1564):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, &(0x7f0000000000)=""/31}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

892.474215ms ago: executing program 1 (id=1566):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000500000000000000", @ANYRES32=0x0, @ANYRES32], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
lstat(0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f00000002c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
socket(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="4000000010001ffffcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000010240000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r4], 0x40}}, 0x4000)

663.897539ms ago: executing program 4 (id=1567):
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
r0 = socket$kcm(0x21, 0xd, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
socket$kcm(0x2, 0xa, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000008000000000000000000000018190000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70200000000000085000000860000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
creat(&(0x7f0000000240)='./bus\x00', 0xc2)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000400)='./bus\x00', 0xe, &(0x7f0000000680)={[{@nolazytime}, {@lazytime}, {@i_version}, {@bsdgroups}, {@lazytime}, {@noload}]}, 0x3, 0x45c, &(0x7f0000002400)="$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")
socket$inet(0x2, 0x1, 0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='kmem_cache_free\x00'}, 0x18)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e22, @empty}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mq_unlink(0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)

642.624669ms ago: executing program 0 (id=1568):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
set_mempolicy(0x1, 0x0, 0x5)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10)
setsockopt$inet_buf(r2, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x2, 0x12, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

509.373162ms ago: executing program 1 (id=1569):
mount$9p_tcp(0x0, &(0x7f0000000300)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000004c0), 0x8, 0x0)

489.185762ms ago: executing program 0 (id=1570):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
close(r0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x110e22fff7)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000880)='+}[@\x00')
close(r0)

463.245452ms ago: executing program 5 (id=1580):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000200)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000f200000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x16)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSPASS(r2, 0x40107447, &(0x7f0000000240)={0x0, 0x0})

462.585872ms ago: executing program 1 (id=1571):
r0 = syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x789, &(0x7f0000001240)="$eJzs3M9rG2caAOB3JlacH96VF/awe8kuJJBAiGzHl+RU91J6CQQCvabGHhvjsRUsObXdQJzeCoU0vrSlUNp7j70WQvoH9FYCLfTWQ6G0qXtoe1GRLCuJIylKYkeJ+zww1veNvpn3fWfkzzPgUQB/W/+v/0gihiLiYkQUm+vTiDjYaB2KWN8at3nv2lR9SaJWu/RzUt8sNmvF1r6S5uvRaGwS/4mIO4WI0+88GreyujY/mefZUrM/Ul24MlJZXTsztzA5m81mi2Pj50fPjY+fGx3ftVpPvHH+8K2vX9vY+OaL6s1jA2eSmGjUHc3adi3QA7aOSSEmdqxf3ItgfZT0MGbgOeQBAEB39ev8A81rs0IU40C3qzQXcAAAAPBSqg3WevVHzyMBAACAF0wS/c4AAAAA2Fvb/wew/WzvXj0H28lPr0bEcLv4A41niCMORSEijmwmDz1+kGxtBs9k/UZE3J5o8/nr5Ynm7kbvNw/vzh7Zbbfr889Eu/knbc0/0Wb+Gdj+7oRn1Hn+ux//QIf572KPMb785L+FjvFvVFbePdYuftKKn3SI/2aP8W9uvHer03u1zyJOtv37kzwUq8v3Q4zMzOXtfrVa6d7589TdzvVHHHkkfpI0oibd67/SY/1vb/46v94l/qnj3c//VvzBh7arfybeb+aRRsSt5mu9v7EjxvGFb796NHKyvh1/usPxb3/+X2/V/2mP9X//+eBKj0MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgIY2IoUjSUqudpqVSxNGI+HccSfNypXp6pry8OF1/L2I4CunMXJ6NRkRxq5/U+2ON9v3+2R398Yj413eHt4LO5VlpqpxP97t4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWo5GxFAkaSki0oj4rZimpVK/swIAAAB23XC/EwAAAAD2nPt/AAAA2P+e9v4/2eU8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgH3t4oUL9aW2ee/aVL0/fXV1eb589cx0VpkvLSxPlabKS1dKs+XybJ6VpsoLj9tfGhFj52N5ZaSaVaojldW1ywvl5cXq5bmFydnsclZ4LlUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwpIYaS5KWIiJttNO0VIr4R0QMRyGZmcuz0Yj4Z0TcLRYG6/2xficNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADArqusrs1P5nm29HI3avurnJ4bkUS8AGl0aHzUPCvdxiTrEXn2Q3Nkn1JNm+GfZT9Plvz1xxyWfjf+14e5CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/qusrs1P5nm2VOl3JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPRX+mMSEfXlZPHE0M53Dya/FxuvEfHWx5c+WJmsVpfG6ut/aa2vfthcf/aBDa8/zxoAAABg33vlSQZv36dv38cDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD0qrK6Nj+Z59nSHjbiRr+rBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnsZfAQAA//9bFLc7")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1db)
r3 = creat(&(0x7f0000000000)='./file2\x00', 0x1)
fsetxattr$security_selinux(r3, &(0x7f0000000380), &(0x7f00000003c0)='system_u:object_r:agp_device_t:s0\x00', 0x22, 0x1)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000009c0)={r3, 0x20, &(0x7f0000000980)={0x0, 0x0, <r4=>0x0, &(0x7f0000000900)=""/49, 0x31}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x27, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
writev(r2, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x100000}], 0x1)

443.136642ms ago: executing program 2 (id=1572):
ioprio_set$pid(0x2, 0x0, 0x0)
io_setup(0x7, &(0x7f0000000280)=<r0=>0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
mkdir(0x0, 0x0)
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000200)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce8100036c00fc08000000000200875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
r6 = openat$sysfs(0xffffff9c, &(0x7f00000000c0)='/sys/power/wakeup_count', 0x42, 0x0)
io_submit(r0, 0x1, &(0x7f0000000500)=[&(0x7f0000000040)={0x0, 0x0, 0x2000, 0x1, 0x0, r6, 0x0, 0x0, 0x4}])

393.279603ms ago: executing program 4 (id=1573):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000400)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xe}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)

392.208403ms ago: executing program 0 (id=1574):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000180)='oom_adj\x00')
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000140)='1', 0x1}], 0x1)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000200)='./file0/../file0\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1adc51, 0x0)
mount$tmpfs(0x0, &(0x7f0000000240)='./file0/../file0\x00', &(0x7f00000001c0), 0x105a001, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)

260.606695ms ago: executing program 0 (id=1575):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='kmem_cache_free\x00', r0, 0x0, 0x800000000000000}, 0x18)
r1 = getpgrp(0x0)
sched_getaffinity(r1, 0x8, &(0x7f0000000180)) (fail_nth: 5)

260.255755ms ago: executing program 2 (id=1576):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000400)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xe}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)

259.628076ms ago: executing program 4 (id=1577):
r0 = fcntl$getown(0xffffffffffffffff, 0x9)
wait4(r0, &(0x7f0000000000), 0x8, &(0x7f0000000040))
r1 = msgget$private(0x0, 0x140)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000100)={{{@in=@empty, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0, <r3=>0x0}}, {{@in6=@private1}, 0x0, @in=@remote}}, &(0x7f0000000200)=0xe8)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000240)=<r4=>0x0)
lstat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
msgctl$IPC_SET(r1, 0x1, &(0x7f0000000340)={{0x1, r3, 0xee00, r4, r5, 0x108}, 0x0, 0x0, 0x5, 0x5, 0x0, 0x8, 0x6, 0x4, 0xff5c, 0x3ff, r0, r0})
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f00000003c0)=[@in6={0xa, 0x4e23, 0x8, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1}, @in={0x2, 0x4e24, @broadcast}, @in={0x2, 0x4e24, @loopback}], 0x3c)
r7 = msgget(0x1, 0x82)
msgctl$IPC_INFO(r7, 0x3, &(0x7f0000000400)=""/216)
r8 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000540), 0x1, 0x0)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000500), r8)
r10 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000580)=0xffffffffffffffff, 0x4)
fstat(r10, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, <r11=>0x0})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000006c0)={{r8}, &(0x7f0000000640), &(0x7f0000000680)=r8}, 0x20)
openat(r8, &(0x7f0000000700)='./file0\x00', 0x80, 0x28)
waitid$P_PIDFD(0x3, r8, &(0x7f0000000740), 0x40000000, &(0x7f00000007c0))
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r8, 0xc018937b, &(0x7f0000000880)={{0x1, 0x1, 0x18, <r12=>r6, {r11, r5}}, './file0\x00'})
ioctl$sock_SIOCGPGRP(r12, 0x8904, &(0x7f0000000a00)=<r13=>0x0)
syz_clone3(&(0x7f0000000a80)={0x204000000, &(0x7f00000008c0), &(0x7f0000000900), &(0x7f0000000940), {0x6}, &(0x7f0000000980)=""/37, 0x25, &(0x7f00000009c0)=""/19, &(0x7f0000000a40)=[r0, r0, r0, r13, r0], 0x5, {r8}}, 0x58)
ioctl$ifreq_SIOCGIFINDEX_team(r12, 0x8933, &(0x7f0000000b40)={'team0\x00', <r14=>0x0})
sendmsg$ETHTOOL_MSG_TSINFO_GET(r12, &(0x7f0000000c40)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000b80)={0x68, r9, 0x3fb87dcf72f787c, 0x70bd29, 0x25dfdbff, {}, [@HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x50}, 0x20000810)
r15 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r12, 0x84, 0xa, &(0x7f0000000c80)={0x40, 0x7, 0x208, 0xd331, 0x6, 0xfffffffb, 0x9, 0x10000, <r16=>0x0}, &(0x7f0000000cc0)=0x20)
setsockopt$inet_sctp_SCTP_RESET_ASSOC(r15, 0x84, 0x78, &(0x7f0000000d00)=r16, 0x4)
ioctl$sock_SIOCOUTQ(r12, 0x5411, &(0x7f0000000d40))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000dc0)=@mpls_getroute={0x64, 0x1a, 0x200, 0x70bd25, 0x25dfdbff, {0x1c, 0x20, 0x20, 0x7, 0xfe, 0x2, 0x0, 0x0, 0x600}, [@RTA_OIF={0x8, 0x4, r2}, @RTA_VIA={0x14, 0x12, {0x11, "800f621517ddafd99ad3db194773"}}, @RTA_TTL_PROPAGATE={0x5}, @RTA_TTL_PROPAGATE={0x5, 0x1a, 0x7f}, @RTA_MULTIPATH={0xc, 0x9, {0x6, 0x0, 0x0, r14}}, @RTA_TTL_PROPAGATE={0x5, 0x1a, 0x9}, @RTA_OIF={0x8, 0x4, r14}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000085}, 0x840)
io_uring_register$IORING_REGISTER_BUFFERS(r8, 0x0, &(0x7f0000000ec0), 0x0)
msgctl$IPC_INFO(r7, 0x3, &(0x7f0000000f00)=""/187)

7.9766ms ago: executing program 4 (id=1578):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@getstats={0x1c, 0x5e, 0x1, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x3}}, 0x1c}, 0x1, 0x0, 0x0, 0x4888}, 0x4000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000feffffff000000000000000300000000000000000300000000000000000000000000000300000000040000000300000000000000000000000000000b030000000000"], 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
chdir(&(0x7f0000000b80)='./file0\x00')
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000180)={0x0, 0x2}, 0x8)
openat$bsg(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, 0x0)
rt_sigsuspend(&(0x7f0000000200)={[0x2]}, 0x8)
eventfd(0x7f800)

0s ago: executing program 0 (id=1579):
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000600)={0x0, 0x5885, 0x800, 0x0, 0xffffffff}, &(0x7f0000000340), &(0x7f0000000380))
dup(r0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000002c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001040)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r1}, &(0x7f0000000800), &(0x7f0000000840)=r2}, 0x20)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)

kernel console output (not intermixed with test programs):

: cannot create timer (-22)
[   60.437289][ T5129] team0: Device ipvlan0 failed to register rx_handler
[   60.565165][ T5149] xt_TPROXY: Can be used only with -p tcp or -p udp
[   60.632967][ T5157] netlink: 8 bytes leftover after parsing attributes in process `syz.2.563'.
[   60.705551][ T5161] ALSA: seq fatal error: cannot create timer (-22)
[   60.736451][ T5170] Zero length message leads to an empty skb
[   60.900586][ T5178] ALSA: seq fatal error: cannot create timer (-19)
[   61.229552][ T5203] ALSA: seq fatal error: cannot create timer (-22)
[   61.297853][ T5205] loop2: detected capacity change from 0 to 8192
[   61.785184][ T5234] loop1: detected capacity change from 0 to 2048
[   62.003089][ T5235] loop2: detected capacity change from 0 to 2048
[   62.049421][ T5234] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.176129][ T5244] loop3: detected capacity change from 0 to 2048
[   62.197674][ T5235]  loop2: p1 < > p3
[   62.202033][ T5235] loop2: p3 size 134217728 extends beyond EOD, truncated
[   62.284957][ T5244] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.303401][ T5244] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.318352][ T5244] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #16: comm syz.3.596: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   62.346248][ T5244] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.596: bg 0: block 345: padding at end of block bitmap is not set
[   62.391981][ T5234] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2 with max blocks 1 with error 28
[   62.404315][ T5234] EXT4-fs (loop1): This should not happen!! Data will be lost
[   62.404315][ T5234] 
[   62.413955][ T5234] EXT4-fs (loop1): Total free blocks count 0
[   62.420015][ T5234] EXT4-fs (loop1): Free/Dirty block details
[   62.425929][ T5234] EXT4-fs (loop1): free_blocks=0
[   62.430964][ T5234] EXT4-fs (loop1): dirty_blocks=0
[   62.436032][ T5234] EXT4-fs (loop1): Block reservation details
[   62.442065][ T5234] EXT4-fs (loop1): i_reserved_data_blocks=0
[   62.456905][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.594834][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.710544][ T5273] netlink: 12 bytes leftover after parsing attributes in process `syz.4.606'.
[   62.767701][ T5282] ALSA: seq fatal error: cannot create timer (-22)
[   62.982605][ T5301] loop4: detected capacity change from 0 to 1024
[   62.999993][ T5301] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   63.028395][ T5301] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   63.039332][ T5301] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (53380!=20869)
[   63.049899][   T29] kauditd_printk_skb: 751 callbacks suppressed
[   63.049914][   T29] audit: type=1326 audit(2000000020.991:3097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5294 comm="syz.0.617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   63.079494][   T29] audit: type=1326 audit(2000000020.991:3098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5294 comm="syz.0.617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   63.102929][   T29] audit: type=1326 audit(2000000020.991:3099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5294 comm="syz.0.617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   63.124194][ T5309] FAULT_INJECTION: forcing a failure.
[   63.124194][ T5309] name failslab, interval 1, probability 0, space 0, times 0
[   63.126222][   T29] audit: type=1326 audit(2000000020.991:3100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5294 comm="syz.0.617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   63.138796][ T5309] CPU: 1 UID: 0 PID: 5309 Comm: syz.2.623 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   63.138828][ T5309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   63.138841][ T5309] Call Trace:
[   63.138849][ T5309]  <TASK>
[   63.138858][ T5309]  dump_stack_lvl+0xf6/0x150
[   63.138885][ T5309]  dump_stack+0x15/0x1a
[   63.138922][ T5309]  should_fail_ex+0x261/0x270
[   63.138952][ T5309]  should_failslab+0x8f/0xb0
[   63.138978][ T5309]  kmem_cache_alloc_noprof+0x59/0x340
[   63.139012][ T5309]  ? mas_alloc_nodes+0x1f4/0x4a0
[   63.139046][ T5309]  mas_alloc_nodes+0x1f4/0x4a0
[   63.139079][ T5309]  mas_preallocate+0x48d/0x6b0
[   63.139115][ T5309]  __split_vma+0x23e/0x630
[   63.139154][ T5309]  vma_modify+0x105/0x200
[   63.139182][ T5309]  vma_modify_policy+0x10a/0x140
[   63.139219][ T5309]  mbind_range+0x1d2/0x480
[   63.139244][ T5309]  __se_sys_mbind+0x76c/0xfe0
[   63.139290][ T5309]  __x64_sys_mbind+0x78/0x90
[   63.139323][ T5309]  x64_sys_call+0x13be/0x2e10
[   63.139355][ T5309]  do_syscall_64+0xc9/0x1a0
[   63.139384][ T5309]  ? clear_bhb_loop+0x25/0x80
[   63.139409][ T5309]  ? clear_bhb_loop+0x25/0x80
[   63.139434][ T5309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.139458][ T5309] RIP: 0033:0x7f4574b6e169
[   63.139475][ T5309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.139496][ T5309] RSP: 002b:00007f45731d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[   63.139518][ T5309] RAX: ffffffffffffffda RBX: 00007f4574d95fa0 RCX: 00007f4574b6e169
[   63.139532][ T5309] RDX: 0000000000000004 RSI: 0000000000800000 RDI: 0000200000001000
[   63.139546][ T5309] RBP: 00007f45731d7090 R08: 0000000000000000 R09: 0000000000000000
[   63.139560][ T5309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.139574][ T5309] R13: 0000000000000000 R14: 00007f4574d95fa0 R15: 00007ffd275ef068
[   63.139596][ T5309]  </TASK>
[   63.203415][ T5301] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   63.204207][   T29] audit: type=1326 audit(2000000021.001:3101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5294 comm="syz.0.617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   63.211037][ T5301] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   63.214168][   T29] audit: type=1326 audit(2000000021.001:3102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5294 comm="syz.0.617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   63.364598][ T5315] __nla_validate_parse: 3 callbacks suppressed
[   63.364614][ T5315] netlink: 8 bytes leftover after parsing attributes in process `syz.2.624'.
[   63.367429][   T29] audit: type=1326 audit(2000000021.001:3103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5294 comm="syz.0.617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   63.464802][   T29] audit: type=1326 audit(2000000021.001:3104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5294 comm="syz.0.617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   63.488194][   T29] audit: type=1326 audit(2000000021.001:3105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5294 comm="syz.0.617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   63.511599][   T29] audit: type=1326 audit(2000000021.001:3106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5294 comm="syz.0.617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   63.535559][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.621128][ T5328] netlink: 12 bytes leftover after parsing attributes in process `syz.2.632'.
[   63.656549][ T5333] loop3: detected capacity change from 0 to 2048
[   63.673902][ T5330] loop1: detected capacity change from 0 to 2048
[   63.675131][ T5335] ALSA: seq fatal error: cannot create timer (-22)
[   63.689709][ T5333] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.707595][ T5330] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.722882][ T5333] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.762748][ T5333] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #16: comm syz.3.635: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   63.826220][ T5333] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.635: bg 0: block 345: padding at end of block bitmap is not set
[   63.880881][ T5353] netlink: 132 bytes leftover after parsing attributes in process `syz.0.640'.
[   63.915164][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.432632][ T5391] netlink: 132 bytes leftover after parsing attributes in process `syz.3.656'.
[   64.461967][ T5393] ALSA: seq fatal error: cannot create timer (-22)
[   64.855685][ T5416] netlink: 8 bytes leftover after parsing attributes in process `syz.2.666'.
[   64.883475][ T5418] netlink: 132 bytes leftover after parsing attributes in process `syz.4.667'.
[   64.897292][ T5416] macvtap0: entered promiscuous mode
[   64.907425][ T5416] macvtap0: left promiscuous mode
[   64.969195][ T5422] ALSA: seq fatal error: cannot create timer (-22)
[   65.145592][ T5438] loop2: detected capacity change from 0 to 2048
[   65.223698][ T5438]  loop2: p1 < > p4
[   65.261198][ T5438] loop2: p4 size 8388608 extends beyond EOD, truncated
[   65.755523][ T5449] loop4: detected capacity change from 0 to 2048
[   65.784007][ T5449]  loop4: p1 < > p3
[   65.793566][ T5449] loop4: p3 size 134217728 extends beyond EOD, truncated
[   65.982052][ T5455] loop2: detected capacity change from 0 to 164
[   66.028858][ T5455] bio_check_eod: 7 callbacks suppressed
[   66.028872][ T5455] syz.2.681: attempt to access beyond end of device
[   66.028872][ T5455] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   66.050830][ T5457] ALSA: seq fatal error: cannot create timer (-22)
[   66.066061][ T5455] syz.2.681: attempt to access beyond end of device
[   66.066061][ T5455] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[   66.199026][ T5465] netlink: 16 bytes leftover after parsing attributes in process `syz.3.686'.
[   66.243571][ T5469] netlink: 132 bytes leftover after parsing attributes in process `syz.3.688'.
[   66.551439][ T5482] ALSA: seq fatal error: cannot create timer (-22)
[   66.575651][ T5478] netlink: 8 bytes leftover after parsing attributes in process `syz.3.694'.
[   66.646053][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.676965][ T5490] netlink: 16 bytes leftover after parsing attributes in process `syz.1.699'.
[   67.062124][ T5509] loop4: detected capacity change from 0 to 2048
[   67.140477][ T5509]  loop4: p1 < > p3
[   67.163721][ T5509] loop4: p3 size 134217728 extends beyond EOD, truncated
[   67.421228][ T5531] loop1: detected capacity change from 0 to 2048
[   67.479825][ T5531] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.498592][ T5531] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.510565][ T5550] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.725' sets config #0
[   67.572713][ T5531] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #16: comm syz.1.719: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   67.661130][ T5531] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.719: bg 0: block 345: padding at end of block bitmap is not set
[   67.725061][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.838871][ T5580] FAULT_INJECTION: forcing a failure.
[   67.838871][ T5580] name failslab, interval 1, probability 0, space 0, times 0
[   67.851610][ T5580] CPU: 0 UID: 0 PID: 5580 Comm: syz.0.738 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   67.851675][ T5580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   67.851754][ T5580] Call Trace:
[   67.851761][ T5580]  <TASK>
[   67.851768][ T5580]  dump_stack_lvl+0xf6/0x150
[   67.851793][ T5580]  dump_stack+0x15/0x1a
[   67.851810][ T5580]  should_fail_ex+0x261/0x270
[   67.851831][ T5580]  should_failslab+0x8f/0xb0
[   67.851853][ T5580]  kmem_cache_alloc_noprof+0x59/0x340
[   67.852010][ T5580]  ? security_inode_alloc+0x37/0x100
[   67.852043][ T5580]  security_inode_alloc+0x37/0x100
[   67.852072][ T5580]  inode_init_always_gfp+0x4a2/0x4f0
[   67.852089][ T5580]  ? __pfx_proc_alloc_inode+0x10/0x10
[   67.852109][ T5580]  alloc_inode+0x86/0x170
[   67.852277][ T5580]  new_inode+0x1e/0xe0
[   67.852295][ T5580]  proc_pid_make_inode+0x1d/0xd0
[   67.852317][ T5580]  proc_map_files_instantiate+0x74/0x120
[   67.852338][ T5580]  proc_fill_cache+0x1bd/0x240
[   67.852418][ T5580]  ? __pfx_proc_map_files_instantiate+0x10/0x10
[   67.852442][ T5580]  proc_map_files_readdir+0x59b/0x6a0
[   67.852474][ T5580]  iterate_dir+0x11d/0x310
[   67.852509][ T5580]  __se_sys_getdents64+0x8c/0x1b0
[   67.852567][ T5580]  ? __pfx_filldir64+0x10/0x10
[   67.852596][ T5580]  __x64_sys_getdents64+0x43/0x50
[   67.852625][ T5580]  x64_sys_call+0x1110/0x2e10
[   67.852679][ T5580]  do_syscall_64+0xc9/0x1a0
[   67.852706][ T5580]  ? clear_bhb_loop+0x25/0x80
[   67.852745][ T5580]  ? clear_bhb_loop+0x25/0x80
[   67.852843][ T5580]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.852864][ T5580] RIP: 0033:0x7f1048a2e169
[   67.852880][ T5580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.852900][ T5580] RSP: 002b:00007f1047097038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   67.852917][ T5580] RAX: ffffffffffffffda RBX: 00007f1048c55fa0 RCX: 00007f1048a2e169
[   67.852928][ T5580] RDX: 0000000000001002 RSI: 0000200000002f40 RDI: 0000000000000004
[   67.852938][ T5580] RBP: 00007f1047097090 R08: 0000000000000000 R09: 0000000000000000
[   67.852965][ T5580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   67.852978][ T5580] R13: 0000000000000000 R14: 00007f1048c55fa0 R15: 00007ffc12778f08
[   67.853038][ T5580]  </TASK>
[   68.092078][   T29] kauditd_printk_skb: 344 callbacks suppressed
[   68.092156][   T29] audit: type=1400 audit(2000000026.041:3451): avc:  denied  { create } for  pid=5575 comm="syz.4.737" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   68.128572][   T29] audit: type=1400 audit(2000000026.071:3452): avc:  denied  { write } for  pid=5570 comm="syz.1.732" name="001" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   68.151368][   T29] audit: type=1400 audit(2000000026.071:3453): avc:  denied  { read } for  pid=5584 comm="syz.3.741" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   68.174055][   T29] audit: type=1400 audit(2000000026.071:3454): avc:  denied  { open } for  pid=5584 comm="syz.3.741" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   68.197384][   T29] audit: type=1400 audit(2000000026.081:3455): avc:  denied  { write } for  pid=5575 comm="syz.4.737" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   68.228130][   T29] audit: type=1400 audit(2000000026.181:3456): avc:  denied  { create } for  pid=5586 comm="syz.2.742" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   68.247669][   T29] audit: type=1400 audit(2000000026.181:3457): avc:  denied  { write } for  pid=5586 comm="syz.2.742" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   68.277610][   T29] audit: type=1400 audit(2000000026.231:3458): avc:  denied  { create } for  pid=5588 comm="syz.0.743" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   68.298162][   T29] audit: type=1400 audit(2000000026.251:3459): avc:  denied  { connect } for  pid=5588 comm="syz.0.743" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   68.318025][   T29] audit: type=1400 audit(2000000026.271:3460): avc:  denied  { write } for  pid=5590 comm="syz.3.745" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   68.482608][ T5613] __nla_validate_parse: 9 callbacks suppressed
[   68.482621][ T5613] netlink: 132 bytes leftover after parsing attributes in process `syz.2.754'.
[   68.529257][ T5614] loop4: detected capacity change from 0 to 2048
[   68.579943][ T5623] ALSA: seq fatal error: cannot create timer (-22)
[   68.586787][ T5614]  loop4: p1 < > p4
[   68.592366][ T5614] loop4: p4 size 8388608 extends beyond EOD, truncated
[   68.612227][ T5625] netlink: 8 bytes leftover after parsing attributes in process `syz.0.759'.
[   68.690857][ T5631] FAULT_INJECTION: forcing a failure.
[   68.690857][ T5631] name failslab, interval 1, probability 0, space 0, times 0
[   68.703518][ T5631] CPU: 1 UID: 0 PID: 5631 Comm: syz.2.762 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   68.703594][ T5631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   68.703609][ T5631] Call Trace:
[   68.703658][ T5631]  <TASK>
[   68.703667][ T5631]  dump_stack_lvl+0xf6/0x150
[   68.703689][ T5631]  dump_stack+0x15/0x1a
[   68.703704][ T5631]  should_fail_ex+0x261/0x270
[   68.703725][ T5631]  should_failslab+0x8f/0xb0
[   68.703748][ T5631]  __kmalloc_node_track_caller_noprof+0xaa/0x410
[   68.703809][ T5631]  ? sidtab_sid2str_get+0xb8/0x140
[   68.703827][ T5631]  ? vsnprintf+0x84d/0x8a0
[   68.703856][ T5631]  kmemdup_noprof+0x2b/0x70
[   68.703892][ T5631]  sidtab_sid2str_get+0xb8/0x140
[   68.703912][ T5631]  security_sid_to_context_core+0x1eb/0x2f0
[   68.704008][ T5631]  security_sid_to_context+0x27/0x30
[   68.704047][ T5631]  selinux_lsmprop_to_secctx+0x6c/0xf0
[   68.704071][ T5631]  security_lsmprop_to_secctx+0x40/0x80
[   68.704192][ T5631]  audit_log_task_context+0x7a/0x180
[   68.704248][ T5631]  audit_log_task+0xfb/0x250
[   68.704277][ T5631]  ? kstrtouint+0x7b/0xc0
[   68.704302][ T5631]  audit_seccomp+0x62/0x100
[   68.704378][ T5631]  __seccomp_filter+0x694/0x10e0
[   68.704403][ T5631]  ? vfs_write+0x669/0x950
[   68.704431][ T5631]  __secure_computing+0x7e/0x150
[   68.704454][ T5631]  syscall_trace_enter+0xcf/0x1f0
[   68.704481][ T5631]  ? fpregs_assert_state_consistent+0x83/0xa0
[   68.704578][ T5631]  do_syscall_64+0xaa/0x1a0
[   68.704607][ T5631]  ? clear_bhb_loop+0x25/0x80
[   68.704674][ T5631]  ? clear_bhb_loop+0x25/0x80
[   68.704707][ T5631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.704732][ T5631] RIP: 0033:0x7f4574b6e169
[   68.704748][ T5631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.704768][ T5631] RSP: 002b:00007f45731d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[   68.704790][ T5631] RAX: ffffffffffffffda RBX: 00007f4574d95fa0 RCX: 00007f4574b6e169
[   68.704804][ T5631] RDX: 0000000000018ff2 RSI: 000020000001a240 RDI: 0000000000000009
[   68.704889][ T5631] RBP: 00007f45731d7090 R08: 0000000000000000 R09: 0000000000000000
[   68.704902][ T5631] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001
[   68.704916][ T5631] R13: 0000000000000000 R14: 00007f4574d95fa0 R15: 00007ffd275ef068
[   68.704937][ T5631]  </TASK>
[   68.968889][ T5639] loop2: detected capacity change from 0 to 512
[   68.985174][ T5639] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   68.993681][ T5639] EXT4-fs (loop2): orphan cleanup on readonly fs
[   69.000391][ T5639] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.765: invalid indirect mapped block 256 (level 2)
[   69.024150][ T5641] IPVS: stopping master sync thread 5644 ...
[   69.032189][ T5639] EXT4-fs (loop2): 2 truncates cleaned up
[   69.040429][ T5639] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   69.060202][ T5639] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[   69.090084][ T5651] ALSA: seq fatal error: cannot create timer (-22)
[   69.113053][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.153103][ T5655] loop2: detected capacity change from 0 to 256
[   69.354353][ T5677] FAULT_INJECTION: forcing a failure.
[   69.354353][ T5677] name failslab, interval 1, probability 0, space 0, times 0
[   69.367104][ T5677] CPU: 0 UID: 0 PID: 5677 Comm: syz.2.781 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   69.367164][ T5677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   69.367175][ T5677] Call Trace:
[   69.367181][ T5677]  <TASK>
[   69.367188][ T5677]  dump_stack_lvl+0xf6/0x150
[   69.367211][ T5677]  dump_stack+0x15/0x1a
[   69.367228][ T5677]  should_fail_ex+0x261/0x270
[   69.367252][ T5677]  should_failslab+0x8f/0xb0
[   69.367272][ T5677]  __kmalloc_node_track_caller_noprof+0xaa/0x410
[   69.367365][ T5677]  ? sidtab_sid2str_get+0xb8/0x140
[   69.367385][ T5677]  ? vsnprintf+0x84d/0x8a0
[   69.367418][ T5677]  kmemdup_noprof+0x2b/0x70
[   69.367541][ T5677]  sidtab_sid2str_get+0xb8/0x140
[   69.367559][ T5677]  security_sid_to_context_core+0x1eb/0x2f0
[   69.367603][ T5677]  security_sid_to_context+0x27/0x30
[   69.367651][ T5677]  selinux_lsmprop_to_secctx+0x6c/0xf0
[   69.367673][ T5677]  security_lsmprop_to_secctx+0x40/0x80
[   69.367741][ T5677]  audit_log_task_context+0x7a/0x180
[   69.367776][ T5677]  audit_log_task+0xfb/0x250
[   69.367851][ T5677]  ? kstrtouint+0x7b/0xc0
[   69.367906][ T5677]  audit_seccomp+0x62/0x100
[   69.367933][ T5677]  __seccomp_filter+0x694/0x10e0
[   69.367956][ T5677]  ? vfs_write+0x669/0x950
[   69.367978][ T5677]  __secure_computing+0x7e/0x150
[   69.368053][ T5677]  syscall_trace_enter+0xcf/0x1f0
[   69.368071][ T5677]  ? fpregs_assert_state_consistent+0x83/0xa0
[   69.368097][ T5677]  do_syscall_64+0xaa/0x1a0
[   69.368172][ T5677]  ? clear_bhb_loop+0x25/0x80
[   69.368188][ T5677]  ? clear_bhb_loop+0x25/0x80
[   69.368210][ T5677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.368231][ T5677] RIP: 0033:0x7f4574b6e169
[   69.368321][ T5677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.368339][ T5677] RSP: 002b:00007f45731d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000122
[   69.368357][ T5677] RAX: ffffffffffffffda RBX: 00007f4574d95fa0 RCX: 00007f4574b6e169
[   69.368370][ T5677] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   69.368381][ T5677] RBP: 00007f45731d7090 R08: 0000000000000000 R09: 0000000000000000
[   69.368393][ T5677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.368403][ T5677] R13: 0000000000000000 R14: 00007f4574d95fa0 R15: 00007ffd275ef068
[   69.368454][ T5677]  </TASK>
[   69.403387][ T5681] netlink: 16 bytes leftover after parsing attributes in process `syz.4.782'.
[   69.422552][ T5682] netlink: 8 bytes leftover after parsing attributes in process `syz.1.784'.
[   69.584128][ T5679] netlink: 4 bytes leftover after parsing attributes in process `syz.1.784'.
[   69.714756][ T5693] loop2: detected capacity change from 0 to 2048
[   69.745367][ T5693] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.758581][ T5698] netlink: 8 bytes leftover after parsing attributes in process `syz.1.790'.
[   69.775594][ T5693] ext4 filesystem being mounted at /173/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.798160][ T5693] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #16: comm syz.2.789: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   69.829468][ T5693] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.789: bg 0: block 345: padding at end of block bitmap is not set
[   69.861080][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.910002][ T5711] netlink: 132 bytes leftover after parsing attributes in process `syz.0.795'.
[   70.107991][ T5719] loop1: detected capacity change from 0 to 2048
[   70.154856][ T5720] ALSA: seq fatal error: cannot create timer (-22)
[   70.184098][ T5719]  loop1: p1 < > p3
[   70.188869][ T5719] loop1: p3 size 134217728 extends beyond EOD, truncated
[   70.360505][ T5727] netlink: 8 bytes leftover after parsing attributes in process `syz.3.801'.
[   70.517983][ T5737] loop3: detected capacity change from 0 to 256
[   70.536873][ T5739] netlink: 16 bytes leftover after parsing attributes in process `syz.4.808'.
[   70.597831][ T5753] sctp: [Deprecated]: syz.4.815 (pid 5753) Use of int in max_burst socket option.
[   70.597831][ T5753] Use struct sctp_assoc_value instead
[   70.624056][ T5755] netlink: 8 bytes leftover after parsing attributes in process `syz.3.816'.
[   70.858706][ T5789] veth1_macvtap: left promiscuous mode
[   70.870417][ T5789] macsec0: entered promiscuous mode
[   70.875679][ T5789] macsec0: entered allmulticast mode
[   70.885629][ T5789] veth1_macvtap: entered promiscuous mode
[   70.891466][ T5789] veth1_macvtap: entered allmulticast mode
[   71.127259][ T5800] loop3: detected capacity change from 0 to 2048
[   71.275466][ T5800]  loop3: p1 < > p3
[   71.333679][ T5800] loop3: p3 size 134217728 extends beyond EOD, truncated
[   71.413175][ T5810] FAULT_INJECTION: forcing a failure.
[   71.413175][ T5810] name failslab, interval 1, probability 0, space 0, times 0
[   71.425986][ T5810] CPU: 1 UID: 0 PID: 5810 Comm: syz.2.839 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   71.426014][ T5810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   71.426058][ T5810] Call Trace:
[   71.426063][ T5810]  <TASK>
[   71.426068][ T5810]  dump_stack_lvl+0xf6/0x150
[   71.426092][ T5810]  dump_stack+0x15/0x1a
[   71.426109][ T5810]  should_fail_ex+0x261/0x270
[   71.426134][ T5810]  should_failslab+0x8f/0xb0
[   71.426210][ T5810]  __kvmalloc_node_noprof+0x12c/0x520
[   71.426235][ T5810]  ? simple_xattr_set+0x6e/0x2a0
[   71.426263][ T5810]  simple_xattr_set+0x6e/0x2a0
[   71.426287][ T5810]  ? strlen+0x19/0x30
[   71.426360][ T5810]  shmem_xattr_handler_set+0x129/0x220
[   71.426390][ T5810]  ? __pfx_shmem_xattr_handler_set+0x10/0x10
[   71.426414][ T5810]  __vfs_setxattr+0x2e5/0x310
[   71.426443][ T5810]  __vfs_setxattr_noperm+0xed/0x420
[   71.426513][ T5810]  __vfs_setxattr_locked+0x1af/0x1d0
[   71.426550][ T5810]  vfs_setxattr+0x142/0x290
[   71.426611][ T5810]  file_setxattr+0x139/0x1b0
[   71.426626][ T5810]  path_setxattrat+0x2c8/0x320
[   71.426666][ T5810]  __x64_sys_fsetxattr+0x6d/0x80
[   71.426684][ T5810]  x64_sys_call+0x2bad/0x2e10
[   71.426738][ T5810]  do_syscall_64+0xc9/0x1a0
[   71.426764][ T5810]  ? clear_bhb_loop+0x25/0x80
[   71.426785][ T5810]  ? clear_bhb_loop+0x25/0x80
[   71.426802][ T5810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.426818][ T5810] RIP: 0033:0x7f4574b6e169
[   71.426829][ T5810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.426864][ T5810] RSP: 002b:00007f45731d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[   71.426926][ T5810] RAX: ffffffffffffffda RBX: 00007f4574d95fa0 RCX: 00007f4574b6e169
[   71.426938][ T5810] RDX: 0000200000000280 RSI: 0000200000000240 RDI: 0000000000000003
[   71.426950][ T5810] RBP: 00007f45731d7090 R08: 0000000000000000 R09: 0000000000000000
[   71.426962][ T5810] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001
[   71.426973][ T5810] R13: 0000000000000000 R14: 00007f4574d95fa0 R15: 00007ffd275ef068
[   71.426992][ T5810]  </TASK>
[   72.325448][ T5859] loop1: detected capacity change from 0 to 2048
[   72.365907][ T5859]  loop1: p1 < > p3
[   72.393481][ T5859] loop1: p3 size 134217728 extends beyond EOD, truncated
[   72.978094][ T5929] loop1: detected capacity change from 0 to 2048
[   73.025210][ T5929]  loop1: p1 < > p4
[   73.029607][ T5929] loop1: p4 size 8388608 extends beyond EOD, truncated
[   73.158439][   T29] kauditd_printk_skb: 327 callbacks suppressed
[   73.158452][   T29] audit: type=1326 audit(2000000031.071:3786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5920 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78dd3e169 code=0x7ffc0000
[   73.187983][   T29] audit: type=1326 audit(2000000031.071:3787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5920 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78dd3e169 code=0x7ffc0000
[   73.211317][   T29] audit: type=1326 audit(2000000031.071:3788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5920 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fd78dd3e169 code=0x7ffc0000
[   73.234716][   T29] audit: type=1326 audit(2000000031.071:3789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5920 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78dd3e169 code=0x7ffc0000
[   73.258025][   T29] audit: type=1326 audit(2000000031.071:3790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5920 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78dd3e169 code=0x7ffc0000
[   73.281471][   T29] audit: type=1326 audit(2000000031.071:3791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5920 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd78dd3e169 code=0x7ffc0000
[   73.304852][   T29] audit: type=1326 audit(2000000031.071:3792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5920 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78dd3e169 code=0x7ffc0000
[   73.328155][   T29] audit: type=1326 audit(2000000031.071:3793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5920 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78dd3e169 code=0x7ffc0000
[   73.351451][   T29] audit: type=1326 audit(2000000031.071:3794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5920 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fd78dd3e169 code=0x7ffc0000
[   73.374958][   T29] audit: type=1326 audit(2000000031.091:3795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5920 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd78dd3e169 code=0x7ffc0000
[   73.628083][ T5961] __nla_validate_parse: 12 callbacks suppressed
[   73.628147][ T5961] netlink: 72 bytes leftover after parsing attributes in process `syz.0.907'.
[   73.866740][ T5971] loop4: detected capacity change from 0 to 2048
[   73.924039][ T5971]  loop4: p1 < > p3
[   73.929058][ T5971] loop4: p3 size 134217728 extends beyond EOD, truncated
[   74.311071][ T5992] netlink: 48 bytes leftover after parsing attributes in process `syz.2.921'.
[   74.377949][ T5998] loop3: detected capacity change from 0 to 1024
[   74.378560][ T6000] loop1: detected capacity change from 0 to 164
[   74.385761][ T5998] EXT4-fs: Ignoring removed nobh option
[   74.396223][ T5998] EXT4-fs: Ignoring removed bh option
[   74.404866][ T6000] syz.1.925: attempt to access beyond end of device
[   74.404866][ T6000] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   74.421507][ T6000] syz.1.925: attempt to access beyond end of device
[   74.421507][ T6000] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   74.511702][ T5998] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.596339][ T6019] loop1: detected capacity change from 0 to 164
[   74.615453][ T5998] loop3: detected capacity change from 1024 to 64
[   74.634661][ T6019] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   74.658033][ T6019] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   74.669408][ T3315] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 16: comm syz-executor: path /165/file1: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=33619980, rec_len=46, size=1024 fake=0
[   74.692121][ T6019] Symlink component flag not implemented
[   74.697813][ T6019] Symlink component flag not implemented
[   74.713565][ T6019] Symlink component flag not implemented (7)
[   74.719570][ T6019] Symlink component flag not implemented (116)
[   74.730230][ T6027] netlink: 16 bytes leftover after parsing attributes in process `syz.4.936'.
[   74.750975][ T3968] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.781832][ T6004] kmmpd-loop3: attempt to access beyond end of device
[   74.781832][ T6004] loop3: rw=14337, sector=128, nr_sectors = 2 limit=64
[   74.795485][ T6004] buffer_io_error: 6 callbacks suppressed
[   74.795497][ T6004] Buffer I/O error on dev loop3, logical block 64, lost sync page write
[   74.948936][ T6052] loop4: detected capacity change from 0 to 2048
[   74.964650][ T6052] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.976732][ T6052] ext4 filesystem being mounted at /201/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.004751][   T31] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.234223][ T6057] loop2: detected capacity change from 0 to 2048
[   75.253235][   T31] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.282516][ T6057]  loop2: p1 < > p3
[   75.293553][ T6057] loop2: p3 size 134217728 extends beyond EOD, truncated
[   75.412578][ T6067] netlink: 8 bytes leftover after parsing attributes in process `syz.0.953'.
[   75.438369][   T31] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.516765][ T6078] netlink: 'syz.0.958': attribute type 1 has an invalid length.
[   75.560852][ T6078] SELinux: failed to load policy
[   75.586308][   T31] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.627179][ T6085] netlink: 48 bytes leftover after parsing attributes in process `syz.1.959'.
[   75.643195][ T6056] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.948: bg 0: block 345: padding at end of block bitmap is not set
[   75.660821][ T6056] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   75.673410][ T6056] EXT4-fs (loop4): This should not happen!! Data will be lost
[   75.673410][ T6056] 
[   75.692559][   T12] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   75.705332][   T12] EXT4-fs (loop4): This should not happen!! Data will be lost
[   75.705332][   T12] 
[   75.738655][   T12] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   75.751410][   T12] EXT4-fs (loop4): This should not happen!! Data will be lost
[   75.751410][   T12] 
[   75.761107][   T12] EXT4-fs (loop4): Total free blocks count 0
[   75.767139][   T12] EXT4-fs (loop4): Free/Dirty block details
[   75.773521][   T12] EXT4-fs (loop4): free_blocks=0
[   75.796765][ T6089] loop2: detected capacity change from 0 to 164
[   75.821032][   T31] bridge_slave_1: left allmulticast mode
[   75.826817][   T31] bridge_slave_1: left promiscuous mode
[   75.832451][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.838777][ T6089] syz.2.961: attempt to access beyond end of device
[   75.838777][ T6089] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   75.854293][ T6089] syz.2.961: attempt to access beyond end of device
[   75.854293][ T6089] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[   75.884407][   T31] bridge_slave_0: left allmulticast mode
[   75.890180][   T31] bridge_slave_0: left promiscuous mode
[   75.895901][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.915153][ T6094] netlink: 8 bytes leftover after parsing attributes in process `syz.1.964'.
[   75.938757][ T6096] netlink: 8 bytes leftover after parsing attributes in process `syz.2.965'.
[   76.000979][ T6104] loop2: detected capacity change from 0 to 2048
[   76.015314][ T6104] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.027980][   T31] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   76.038592][ T6104] ext4 filesystem being mounted at /221/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.050704][   T31] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   76.064290][ T6113] loop4: detected capacity change from 0 to 164
[   76.071866][   T31] bond0 (unregistering): Released all slaves
[   76.091365][   T31] bond1 (unregistering): (slave veth3): Releasing backup interface
[   76.091354][ T6113] syz.4.971: attempt to access beyond end of device
[   76.091354][ T6113] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   76.091416][ T6113] syz.4.971: attempt to access beyond end of device
[   76.091416][ T6113] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[   76.143856][ T6116] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #16: comm syz.2.968: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   76.171994][   T31] bond1 (unregistering): Released all slaves
[   76.199590][ T6122] loop4: detected capacity change from 0 to 164
[   76.226771][ T6122] syz.4.975: attempt to access beyond end of device
[   76.226771][ T6122] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   76.254146][ T6122] syz.4.975: attempt to access beyond end of device
[   76.254146][ T6122] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[   76.310795][ T6061] chnl_net:caif_netlink_parms(): no params data found
[   76.338903][   T31] hsr_slave_0: left promiscuous mode
[   76.408267][ T6116] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.968: bg 0: block 345: padding at end of block bitmap is not set
[   76.422915][ T6116] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   76.435558][ T6116] EXT4-fs (loop2): This should not happen!! Data will be lost
[   76.435558][ T6116] 
[   76.447308][   T31] hsr_slave_1: left promiscuous mode
[   76.453102][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   76.460588][   T31] batman_adv: batadv0: Removing interface: batadv_slave_0
[   76.471169][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   76.475325][ T3853] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   76.478653][   T31] batman_adv: batadv0: Removing interface: batadv_slave_1
[   76.491272][ T3853] EXT4-fs (loop2): This should not happen!! Data will be lost
[   76.491272][ T3853] 
[   76.511549][   T31] veth1_macvtap: left promiscuous mode
[   76.519766][   T31] veth0_macvtap: left promiscuous mode
[   76.526292][   T31] veth1_vlan: left promiscuous mode
[   76.532137][   T31] veth0_vlan: left promiscuous mode
[   76.550050][ T3853] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   76.562849][ T3853] EXT4-fs (loop2): This should not happen!! Data will be lost
[   76.562849][ T3853] 
[   76.572516][ T3853] EXT4-fs (loop2): Total free blocks count 0
[   76.578530][ T3853] EXT4-fs (loop2): Free/Dirty block details
[   76.584447][ T3853] EXT4-fs (loop2): free_blocks=0
[   76.654204][   T31] team0 (unregistering): Port device team_slave_1 removed
[   76.674361][   T31] team0 (unregistering): Port device team_slave_0 removed
[   76.723813][ T6143] netlink: 8 bytes leftover after parsing attributes in process `syz.4.984'.
[   76.788519][ T6061] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.795630][ T6061] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.805845][ T6061] bridge_slave_0: entered allmulticast mode
[   76.820965][ T6061] bridge_slave_0: entered promiscuous mode
[   76.856288][ T6061] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.863536][ T6061] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.870910][ T6061] bridge_slave_1: entered allmulticast mode
[   76.877274][ T6061] bridge_slave_1: entered promiscuous mode
[   76.896228][ T6061] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.906530][ T6061] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.937522][ T6154] netlink: 20 bytes leftover after parsing attributes in process `syz.0.990'.
[   76.948274][ T6160] FAULT_INJECTION: forcing a failure.
[   76.948274][ T6160] name failslab, interval 1, probability 0, space 0, times 0
[   76.960964][ T6160] CPU: 1 UID: 0 PID: 6160 Comm: syz.1.992 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   76.960988][ T6160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   76.961000][ T6160] Call Trace:
[   76.961007][ T6160]  <TASK>
[   76.961014][ T6160]  dump_stack_lvl+0xf6/0x150
[   76.961039][ T6160]  dump_stack+0x15/0x1a
[   76.961056][ T6160]  should_fail_ex+0x261/0x270
[   76.961137][ T6160]  should_failslab+0x8f/0xb0
[   76.961160][ T6160]  kmem_cache_alloc_noprof+0x59/0x340
[   76.961258][ T6160]  ? getname_flags+0x81/0x3b0
[   76.961282][ T6160]  getname_flags+0x81/0x3b0
[   76.961307][ T6160]  __x64_sys_rename+0x40/0x70
[   76.961381][ T6160]  x64_sys_call+0x2cd9/0x2e10
[   76.961405][ T6160]  do_syscall_64+0xc9/0x1a0
[   76.961446][ T6160]  ? clear_bhb_loop+0x25/0x80
[   76.961497][ T6160]  ? clear_bhb_loop+0x25/0x80
[   76.961518][ T6160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.961538][ T6160] RIP: 0033:0x7f8d2d0de169
[   76.961552][ T6160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.961569][ T6160] RSP: 002b:00007f8d2b747038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[   76.961586][ T6160] RAX: ffffffffffffffda RBX: 00007f8d2d305fa0 RCX: 00007f8d2d0de169
[   76.961643][ T6160] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000200000000040
[   76.961698][ T6160] RBP: 00007f8d2b747090 R08: 0000000000000000 R09: 0000000000000000
[   76.961710][ T6160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.961721][ T6160] R13: 0000000000000000 R14: 00007f8d2d305fa0 R15: 00007fffc4b4fc78
[   76.961812][ T6160]  </TASK>
[   77.128957][ T6061] team0: Port device team_slave_0 added
[   77.140451][ T6061] team0: Port device team_slave_1 added
[   77.186640][ T6171] netlink: 8 bytes leftover after parsing attributes in process `syz.4.997'.
[   77.186945][ T6061] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.202494][ T6061] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.228421][ T6061] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.245761][ T6061] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.252742][ T6061] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.278750][ T6061] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.292783][ T6167] loop1: detected capacity change from 0 to 164
[   77.300425][ T6176] loop2: detected capacity change from 0 to 2048
[   77.310490][ T6167] syz.1.994: attempt to access beyond end of device
[   77.310490][ T6167] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   77.341178][ T6061] hsr_slave_0: entered promiscuous mode
[   77.347242][ T6061] hsr_slave_1: entered promiscuous mode
[   77.348249][ T6176]  loop2: p1 < > p4
[   77.353092][ T6061] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.359974][ T6176] loop2: p4 size 8388608 extends beyond EOD, truncated
[   77.372881][ T6178] loop1: detected capacity change from 0 to 2048
[   77.375516][ T6061] Cannot create hsr debugfs directory
[   77.385320][ T6178] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.413801][ T6178] ext4 filesystem being mounted at /190/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.486075][ T6188] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #16: comm syz.1.999: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   77.542542][ T6061] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   77.695037][ T6061] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   77.706297][ T6061] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   77.722958][ T6061] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   77.729915][ T6188] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.999: bg 0: block 345: padding at end of block bitmap is not set
[   77.751424][ T6061] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.758500][ T6061] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.765834][ T6061] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.772905][ T6061] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.786231][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.793319][ T6188] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   77.805912][ T6188] EXT4-fs (loop1): This should not happen!! Data will be lost
[   77.805912][ T6188] 
[   77.815930][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.836413][   T12] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   77.849206][   T12] EXT4-fs (loop1): This should not happen!! Data will be lost
[   77.849206][   T12] 
[   77.887258][ T6061] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.909471][ T6061] 8021q: adding VLAN 0 to HW filter on device team0
[   77.928201][ T1773] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.935275][ T1773] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.960717][ T1773] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.967911][ T1773] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.973078][   T12] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   77.987884][   T12] EXT4-fs (loop1): This should not happen!! Data will be lost
[   77.987884][   T12] 
[   77.997615][   T12] EXT4-fs (loop1): Total free blocks count 0
[   78.003612][   T12] EXT4-fs (loop1): Free/Dirty block details
[   78.009500][   T12] EXT4-fs (loop1): free_blocks=0
[   78.020809][ T6061] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   78.031183][ T6061] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   78.070863][ T6209] smc: net device bond0 applied user defined pnetid SYZ2
[   78.078185][ T6209] smc: net device bond0 erased user defined pnetid SYZ2
[   78.137688][ T6061] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.164681][ T6218] netlink: 'syz.4.1015': attribute type 1 has an invalid length.
[   78.191682][   T29] kauditd_printk_skb: 248 callbacks suppressed
[   78.191697][   T29] audit: type=1400 audit(2000000036.141:4044): avc:  denied  { create } for  pid=6224 comm="syz.1.1013" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   78.209273][ T6218] 8021q: adding VLAN 0 to HW filter on device bond1
[   78.234292][ T6226] loop1: detected capacity change from 0 to 1024
[   78.235410][   T29] audit: type=1400 audit(2000000036.181:4045): avc:  denied  { setopt } for  pid=6224 comm="syz.1.1013" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   78.245541][ T6226] EXT4-fs: Ignoring removed nobh option
[   78.265972][ T6226] EXT4-fs: Ignoring removed bh option
[   78.276546][ T6231] 8021q: adding VLAN 0 to HW filter on device bond1
[   78.290324][ T6231] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[   78.290821][ T6226] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.302323][ T6231] bond1: (slave wireguard0): Error -95 calling set_mac_address
[   78.441433][ T6061] veth0_vlan: entered promiscuous mode
[   78.452083][ T6251] loop2: detected capacity change from 0 to 2048
[   78.454174][   T29] audit: type=1400 audit(2000000036.411:4046): avc:  denied  { read write } for  pid=6255 comm="syz.4.1024" name="usbmon6" dev="devtmpfs" ino=160 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   78.470792][ T6061] veth1_vlan: entered promiscuous mode
[   78.482264][   T29] audit: type=1400 audit(2000000036.411:4047): avc:  denied  { open } for  pid=6255 comm="syz.4.1024" path="/dev/usbmon6" dev="devtmpfs" ino=160 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   78.517405][ T6256] loop4: detected capacity change from 0 to 256
[   78.536148][ T6061] veth0_macvtap: entered promiscuous mode
[   78.536209][ T6251] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.543344][ T6061] veth1_macvtap: entered promiscuous mode
[   78.562960][ T6061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.573603][ T6061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.583488][ T6061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.593928][ T6061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.593925][ T6251] ext4 filesystem being mounted at /228/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.614329][ T6061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.624765][ T6061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.634622][ T6061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.645037][ T6061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.655570][   T29] audit: type=1326 audit(2000000036.541:4048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6244 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   78.655655][ T6061] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.678984][   T29] audit: type=1326 audit(2000000036.541:4049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6244 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   78.709757][   T29] audit: type=1326 audit(2000000036.611:4050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6244 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   78.733209][   T29] audit: type=1326 audit(2000000036.611:4051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6244 comm="syz.0.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   78.758696][ T6061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.769295][ T6061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.769309][ T6061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.769325][ T6061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.769336][ T6061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.769389][ T6061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.769400][ T6061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.769415][ T6061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.770084][ T6061] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.840958][ T6264] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #16: comm syz.2.1022: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   78.849056][ T6061] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.873586][ T6061] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.873700][ T6061] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.873725][ T6061] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.910887][   T29] audit: type=1400 audit(2000000036.861:4052): avc:  denied  { write } for  pid=6224 comm="syz.1.1013" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   78.940937][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.958900][   T29] audit: type=1400 audit(2000000036.911:4053): avc:  denied  { mounton } for  pid=6061 comm="syz-executor" path="/root/syzkaller.sAqCnV/syz-tmp" dev="sda1" ino=1950 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   79.017855][ T6274] __nla_validate_parse: 1 callbacks suppressed
[   79.017869][ T6274] netlink: 16 bytes leftover after parsing attributes in process `syz.5.950'.
[   79.060803][ T6277] loop4: detected capacity change from 0 to 164
[   79.199165][ T6263] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1022: bg 0: block 345: padding at end of block bitmap is not set
[   79.233458][ T6263] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   79.246073][ T6263] EXT4-fs (loop2): This should not happen!! Data will be lost
[   79.246073][ T6263] 
[   79.257884][ T6301] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1040'.
[   79.279457][   T31] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   79.292184][   T31] EXT4-fs (loop2): This should not happen!! Data will be lost
[   79.292184][   T31] 
[   79.339960][ T1773] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   79.352813][ T1773] EXT4-fs (loop2): This should not happen!! Data will be lost
[   79.352813][ T1773] 
[   79.362616][ T1773] EXT4-fs (loop2): Total free blocks count 0
[   79.368633][ T1773] EXT4-fs (loop2): Free/Dirty block details
[   79.374655][ T1773] EXT4-fs (loop2): free_blocks=0
[   79.450292][ T6323] loop1: detected capacity change from 0 to 2048
[   79.465486][ T6323] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.477679][ T6323] ext4 filesystem being mounted at /201/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.521288][ T6330] loop4: detected capacity change from 0 to 2048
[   79.552121][ T6331] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #16: comm syz.1.1052: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   79.583686][ T6330]  loop4: p1 < > p4
[   79.587990][ T6330] loop4: p4 size 8388608 extends beyond EOD, truncated
[   79.607240][ T6334] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1054'.
[   79.996805][ T6331] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1052: bg 0: block 345: padding at end of block bitmap is not set
[   80.190622][ T6364] loop2: detected capacity change from 0 to 2048
[   80.233896][ T6364]  loop2: p1 < > p3
[   80.239137][ T6331] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   80.251757][ T6331] EXT4-fs (loop1): This should not happen!! Data will be lost
[   80.251757][ T6331] 
[   80.267597][ T6364] loop2: p3 size 134217728 extends beyond EOD, truncated
[   80.389076][   T41] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   80.401921][   T41] EXT4-fs (loop1): This should not happen!! Data will be lost
[   80.401921][   T41] 
[   80.423023][ T6372] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1071'.
[   80.440699][ T6373] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1070'.
[   80.498085][   T31] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   80.510907][   T31] EXT4-fs (loop1): This should not happen!! Data will be lost
[   80.510907][   T31] 
[   80.520662][   T31] EXT4-fs (loop1): Total free blocks count 0
[   80.526671][   T31] EXT4-fs (loop1): Free/Dirty block details
[   80.532572][   T31] EXT4-fs (loop1): free_blocks=0
[   80.642857][ T6394] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1082'.
[   80.676778][ T6396] loop1: detected capacity change from 0 to 164
[   80.686672][ T6396] bio_check_eod: 3 callbacks suppressed
[   80.686687][ T6396] syz.1.1074: attempt to access beyond end of device
[   80.686687][ T6396] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   80.707399][ T6396] syz.1.1074: attempt to access beyond end of device
[   80.707399][ T6396] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   80.742085][ T6400] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1084'.
[   80.801395][ T6403] loop1: detected capacity change from 0 to 2048
[   80.878711][ T6403] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.922552][ T6403] ext4 filesystem being mounted at /203/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.987587][ T6426] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #16: comm syz.1.1085: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   81.072935][ T6430] loop4: detected capacity change from 0 to 164
[   81.100337][ T6430] syz.4.1096: attempt to access beyond end of device
[   81.100337][ T6430] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   81.133395][ T6430] syz.4.1096: attempt to access beyond end of device
[   81.133395][ T6430] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[   81.329388][ T6426] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1085: bg 0: block 345: padding at end of block bitmap is not set
[   81.350701][ T6426] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   81.363307][ T6426] EXT4-fs (loop1): This should not happen!! Data will be lost
[   81.363307][ T6426] 
[   81.382264][ T1773] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   81.395069][ T1773] EXT4-fs (loop1): This should not happen!! Data will be lost
[   81.395069][ T1773] 
[   81.444947][ T6456] loop4: detected capacity change from 0 to 164
[   81.453366][ T6456] syz.4.1108: attempt to access beyond end of device
[   81.453366][ T6456] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   81.473376][ T6456] syz.4.1108: attempt to access beyond end of device
[   81.473376][ T6456] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[   81.490550][ T1773] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   81.503371][ T1773] EXT4-fs (loop1): This should not happen!! Data will be lost
[   81.503371][ T1773] 
[   81.513025][ T1773] EXT4-fs (loop1): Total free blocks count 0
[   81.519029][ T1773] EXT4-fs (loop1): Free/Dirty block details
[   81.525023][ T1773] EXT4-fs (loop1): free_blocks=0
[   81.605986][ T6474] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1117'.
[   81.718775][ T6482] netlink: 'syz.2.1121': attribute type 1 has an invalid length.
[   81.733854][ T6482] 8021q: adding VLAN 0 to HW filter on device bond1
[   81.781724][ T6495] loop5: detected capacity change from 0 to 164
[   81.788827][ T6482] 8021q: adding VLAN 0 to HW filter on device bond1
[   81.796642][ T6482] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[   81.808642][ T6482] bond1: (slave wireguard0): Error -95 calling set_mac_address
[   81.824416][ T6495] syz.5.1126: attempt to access beyond end of device
[   81.824416][ T6495] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   81.842905][ T6495] syz.5.1126: attempt to access beyond end of device
[   81.842905][ T6495] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[   81.939133][ T6502] loop1: detected capacity change from 0 to 2048
[   81.971690][ T6507] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1132'.
[   81.993898][ T6502]  loop1: p1 < > p4
[   82.001152][ T6502] loop1: p4 size 8388608 extends beyond EOD, truncated
[   82.065694][ T6519] loop1: detected capacity change from 0 to 128
[   82.098297][ T6519] FAT-fs (loop1): bogus number of reserved sectors
[   82.105077][ T6519] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[   82.114386][ T6519] FAT-fs (loop1): Can't find a valid FAT filesystem
[   82.180074][ T6519] loop1: detected capacity change from 0 to 2048
[   82.186706][ T6519] EXT4-fs: Ignoring removed bh option
[   82.212760][ T6532] netlink: 'syz.2.1141': attribute type 1 has an invalid length.
[   82.221615][ T6519] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.238393][ T6532] 8021q: adding VLAN 0 to HW filter on device bond2
[   82.274533][ T6532] 8021q: adding VLAN 0 to HW filter on device bond2
[   82.281711][ T6532] bond2: (slave wireguard0): The slave device specified does not support setting the MAC address
[   82.295719][ T6532] bond2: (slave wireguard0): Error -95 calling set_mac_address
[   82.509593][ T6538] loop5: detected capacity change from 0 to 2048
[   82.553748][ T6538]  loop5: p1 < > p3
[   82.558454][ T6538] loop5: p3 size 134217728 extends beyond EOD, truncated
[   82.812870][ T6550] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1146'.
[   83.011172][ T1773] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   83.064950][ T1773] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   83.077309][ T1773] EXT4-fs (loop1): This should not happen!! Data will be lost
[   83.077309][ T1773] 
[   83.086984][ T1773] EXT4-fs (loop1): Total free blocks count 0
[   83.092962][ T1773] EXT4-fs (loop1): Free/Dirty block details
[   83.098991][ T1773] EXT4-fs (loop1): free_blocks=2415919104
[   83.104768][ T1773] EXT4-fs (loop1): dirty_blocks=8208
[   83.110064][ T1773] EXT4-fs (loop1): Block reservation details
[   83.116079][ T1773] EXT4-fs (loop1): i_reserved_data_blocks=513
[   83.131788][ T1773] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[   83.202675][   T29] kauditd_printk_skb: 411 callbacks suppressed
[   83.202690][   T29] audit: type=1326 audit(2000000041.151:4465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6563 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   83.249551][   T29] audit: type=1326 audit(2000000041.191:4466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6563 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   83.279450][ T6583] loop4: detected capacity change from 0 to 164
[   83.287153][ T6583] syz.4.1162: attempt to access beyond end of device
[   83.287153][ T6583] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   83.301500][ T6583] syz.4.1162: attempt to access beyond end of device
[   83.301500][ T6583] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[   83.460547][ T6608] loop5: detected capacity change from 0 to 512
[   83.480827][   T29] audit: type=1326 audit(2000000041.431:4467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6612 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   83.533347][   T29] audit: type=1326 audit(2000000041.431:4468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6612 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   83.556835][   T29] audit: type=1326 audit(2000000041.431:4469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6612 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   83.580571][   T29] audit: type=1326 audit(2000000041.431:4470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6612 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   83.604009][   T29] audit: type=1326 audit(2000000041.441:4471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6612 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   83.627645][   T29] audit: type=1326 audit(2000000041.441:4472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6612 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   83.651135][   T29] audit: type=1326 audit(2000000041.441:4473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6612 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   83.685391][ T6608] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.705114][ T6608] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.778822][ T6631] netlink: 'syz.0.1180': attribute type 1 has an invalid length.
[   83.826406][ T6631] 8021q: adding VLAN 0 to HW filter on device bond1
[   83.836370][   T29] audit: type=1326 audit(2000000041.671:4474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6629 comm="syz.1.1181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d2d0de169 code=0x7ffc0000
[   83.887032][ T6628] 8021q: adding VLAN 0 to HW filter on device bond1
[   83.930859][ T6628] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[   83.956335][ T6628] bond1: (slave wireguard0): Error -95 calling set_mac_address
[   83.985638][ T6647] netlink: 'syz.2.1186': attribute type 1 has an invalid length.
[   84.033099][ T6647] 8021q: adding VLAN 0 to HW filter on device bond3
[   84.068622][ T6647] 8021q: adding VLAN 0 to HW filter on device bond3
[   84.109425][ T6647] bond3: (slave wireguard0): The slave device specified does not support setting the MAC address
[   84.133589][ T6659] __nla_validate_parse: 2 callbacks suppressed
[   84.133602][ T6659] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1192'.
[   84.298491][ T6670] FAULT_INJECTION: forcing a failure.
[   84.298491][ T6670] name failslab, interval 1, probability 0, space 0, times 0
[   84.311244][ T6670] CPU: 1 UID: 0 PID: 6670 Comm: syz.1.1196 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   84.311277][ T6670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   84.311291][ T6670] Call Trace:
[   84.311297][ T6670]  <TASK>
[   84.311304][ T6670]  dump_stack_lvl+0xf6/0x150
[   84.311327][ T6670]  dump_stack+0x15/0x1a
[   84.311341][ T6670]  should_fail_ex+0x261/0x270
[   84.311374][ T6670]  should_failslab+0x8f/0xb0
[   84.311397][ T6670]  __kvmalloc_node_noprof+0x12c/0x520
[   84.311427][ T6670]  ? seq_read_iter+0x143/0x970
[   84.311458][ T6670]  seq_read_iter+0x143/0x970
[   84.311507][ T6670]  kernfs_fop_read_iter+0xc3/0x320
[   84.311532][ T6670]  ? __kmalloc_noprof+0x1eb/0x410
[   84.311559][ T6670]  ? copy_splice_read+0xb8/0x5d0
[   84.311655][ T6670]  copy_splice_read+0x390/0x5d0
[   84.311688][ T6670]  ? __pfx_copy_splice_read+0x10/0x10
[   84.311716][ T6670]  splice_direct_to_actor+0x26c/0x680
[   84.311746][ T6670]  ? __pfx_direct_splice_actor+0x10/0x10
[   84.311838][ T6670]  do_splice_direct+0xd9/0x150
[   84.311861][ T6670]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   84.311891][ T6670]  do_sendfile+0x40a/0x690
[   84.311933][ T6670]  __x64_sys_sendfile64+0x113/0x160
[   84.311981][ T6670]  x64_sys_call+0xfc3/0x2e10
[   84.312003][ T6670]  do_syscall_64+0xc9/0x1a0
[   84.312029][ T6670]  ? clear_bhb_loop+0x25/0x80
[   84.312052][ T6670]  ? clear_bhb_loop+0x25/0x80
[   84.312132][ T6670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.312149][ T6670] RIP: 0033:0x7f8d2d0de169
[   84.312160][ T6670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.312175][ T6670] RSP: 002b:00007f8d2b747038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   84.312191][ T6670] RAX: ffffffffffffffda RBX: 00007f8d2d305fa0 RCX: 00007f8d2d0de169
[   84.312204][ T6670] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[   84.312216][ T6670] RBP: 00007f8d2b747090 R08: 0000000000000000 R09: 0000000000000000
[   84.312226][ T6670] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[   84.312312][ T6670] R13: 0000000000000000 R14: 00007f8d2d305fa0 R15: 00007fffc4b4fc78
[   84.312329][ T6670]  </TASK>
[   84.531980][ T6647] bond3: (slave wireguard0): Error -95 calling set_mac_address
[   84.789000][ T6690] tls_set_device_offload_rx: netdev not found
[   84.832278][ T6685] loop4: detected capacity change from 0 to 512
[   84.840007][ T6685] EXT4-fs: inline encryption not supported
[   84.858378][ T6685] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   84.866902][ T6685] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   84.875954][ T6685] EXT4-fs (loop4): blocks per group (39) and clusters per group (32768) inconsistent
[   84.975810][ T6700] FAULT_INJECTION: forcing a failure.
[   84.975810][ T6700] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.988941][ T6700] CPU: 1 UID: 0 PID: 6700 Comm: syz.2.1209 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   84.988964][ T6700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   84.988977][ T6700] Call Trace:
[   84.988981][ T6700]  <TASK>
[   84.988987][ T6700]  dump_stack_lvl+0xf6/0x150
[   84.989042][ T6700]  dump_stack+0x15/0x1a
[   84.989055][ T6700]  should_fail_ex+0x261/0x270
[   84.989074][ T6700]  should_fail+0xb/0x10
[   84.989090][ T6700]  should_fail_usercopy+0x1a/0x20
[   84.989115][ T6700]  _copy_from_user+0x1c/0xa0
[   84.989201][ T6700]  copy_msghdr_from_user+0x54/0x2b0
[   84.989234][ T6700]  ? __fget_files+0x186/0x1c0
[   84.989304][ T6700]  __sys_sendmsg+0x141/0x240
[   84.989342][ T6700]  __x64_sys_sendmsg+0x46/0x50
[   84.989434][ T6700]  x64_sys_call+0x26f3/0x2e10
[   84.989453][ T6700]  do_syscall_64+0xc9/0x1a0
[   84.989519][ T6700]  ? clear_bhb_loop+0x25/0x80
[   84.989541][ T6700]  ? clear_bhb_loop+0x25/0x80
[   84.989564][ T6700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.989586][ T6700] RIP: 0033:0x7f4574b6e169
[   84.989672][ T6700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.989689][ T6700] RSP: 002b:00007f45731d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   84.989709][ T6700] RAX: ffffffffffffffda RBX: 00007f4574d95fa0 RCX: 00007f4574b6e169
[   84.989721][ T6700] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000003
[   84.989751][ T6700] RBP: 00007f45731d7090 R08: 0000000000000000 R09: 0000000000000000
[   84.989763][ T6700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.989810][ T6700] R13: 0000000000000000 R14: 00007f4574d95fa0 R15: 00007ffd275ef068
[   84.989826][ T6700]  </TASK>
[   85.213703][ T6704] loop2: detected capacity change from 0 to 1024
[   85.220423][ T6704] EXT4-fs: Ignoring removed orlov option
[   85.226234][ T6704] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.274335][ T6704] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.306020][ T6704] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1211'.
[   85.318066][ T6704] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1211'.
[   85.430561][ T6724] loop1: detected capacity change from 0 to 2048
[   85.442717][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.484225][ T6724]  loop1: p1 < > p4
[   85.493828][ T6724] loop1: p4 size 8388608 extends beyond EOD, truncated
[   85.759777][ T6755] 9pnet: Could not find request transport: r
[   85.834662][ T6759] loop1: detected capacity change from 0 to 2048
[   86.039748][ T6759]  loop1: p1 < > p4
[   86.044439][ T6759] loop1: p4 size 8388608 extends beyond EOD, truncated
[   86.251015][ T6061] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.339383][ T6793] loop1: detected capacity change from 0 to 2048
[   86.399521][ T6793]  loop1: p1 < > p4
[   86.404242][ T6793] loop1: p4 size 8388608 extends beyond EOD, truncated
[   86.612753][ T6829] loop2: detected capacity change from 0 to 2048
[   86.670837][ T6834] netlink: 'syz.5.1270': attribute type 1 has an invalid length.
[   86.674872][ T6829]  loop2: p1 < > p4
[   86.684137][ T6834] 8021q: adding VLAN 0 to HW filter on device bond1
[   86.684189][ T6829] loop2: p4 size 8388608 extends beyond EOD, truncated
[   86.715381][ T6834] 8021q: adding VLAN 0 to HW filter on device bond1
[   86.742813][ T6834] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[   86.780045][ T6834] bond1: (slave wireguard0): Error -95 calling set_mac_address
[   86.889859][ T6845] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1274'.
[   87.132226][ T6861] loop1: detected capacity change from 0 to 2048
[   87.281906][ T6869] loop2: detected capacity change from 0 to 2048
[   87.409874][ T6861]  loop1: p1 < > p3
[   87.414089][ T6861] loop1: p3 size 134217728 extends beyond EOD, truncated
[   87.422882][ T6869]  loop2: p1 < > p4
[   87.432064][ T6869] loop2: p4 size 8388608 extends beyond EOD, truncated
[   87.447603][ T6877] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1287'.
[   87.476362][ T6879] loop4: detected capacity change from 0 to 164
[   87.787008][ T6902] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1300'.
[   87.812714][ T6904] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1301'.
[   87.852362][ T6906] loop2: detected capacity change from 0 to 2048
[   87.871089][ T6908] loop4: detected capacity change from 0 to 164
[   87.905994][ T6906]  loop2: p1 < > p4
[   87.917269][ T6906] loop2: p4 size 8388608 extends beyond EOD, truncated
[   87.990021][ T6920] loop5: detected capacity change from 0 to 2048
[   88.008310][ T6920] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.020868][ T6920] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.097895][ T6932] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #16: comm syz.5.1309: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   88.226510][   T29] kauditd_printk_skb: 314 callbacks suppressed
[   88.226527][   T29] audit: type=1326 audit(2000000046.171:4789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6926 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574b6e169 code=0x7ffc0000
[   88.256108][   T29] audit: type=1326 audit(2000000046.171:4790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6926 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574b6e169 code=0x7ffc0000
[   88.314939][   T29] audit: type=1326 audit(2000000046.241:4791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.1.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d2d0de169 code=0x7ffc0000
[   88.338409][   T29] audit: type=1326 audit(2000000046.241:4792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.1.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d2d0de169 code=0x7ffc0000
[   88.361821][   T29] audit: type=1326 audit(2000000046.241:4793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.1.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f8d2d0de169 code=0x7ffc0000
[   88.385142][   T29] audit: type=1326 audit(2000000046.241:4794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.1.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d2d0de169 code=0x7ffc0000
[   88.408745][   T29] audit: type=1326 audit(2000000046.241:4795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.1.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d2d0de169 code=0x7ffc0000
[   88.432187][   T29] audit: type=1326 audit(2000000046.251:4796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.1.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f8d2d0de169 code=0x7ffc0000
[   88.449707][ T6945] loop1: detected capacity change from 0 to 2048
[   88.455640][   T29] audit: type=1326 audit(2000000046.251:4797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.1.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d2d0de169 code=0x7ffc0000
[   88.485344][   T29] audit: type=1326 audit(2000000046.251:4798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6935 comm="syz.1.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d2d0de169 code=0x7ffc0000
[   88.547719][ T6933] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1309: bg 0: block 345: padding at end of block bitmap is not set
[   88.562519][ T6933] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   88.575231][ T6933] EXT4-fs (loop5): This should not happen!! Data will be lost
[   88.575231][ T6933] 
[   88.587236][ T6945] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.599765][ T6945] ext4 filesystem being mounted at /243/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.647763][ T1773] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   88.660516][ T1773] EXT4-fs (loop5): This should not happen!! Data will be lost
[   88.660516][ T1773] 
[   88.680649][ T6951] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #16: comm syz.1.1315: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   88.701397][ T6949] loop4: detected capacity change from 0 to 164
[   88.789065][ T6958] loop4: detected capacity change from 0 to 2048
[   88.803083][ T1773] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   88.815928][ T1773] EXT4-fs (loop5): This should not happen!! Data will be lost
[   88.815928][ T1773] 
[   88.825590][ T1773] EXT4-fs (loop5): Total free blocks count 0
[   88.831583][ T1773] EXT4-fs (loop5): Free/Dirty block details
[   88.837498][ T1773] EXT4-fs (loop5): free_blocks=0
[   88.893610][ T6958]  loop4: p1 < > p4
[   88.897960][ T6958] loop4: p4 size 8388608 extends beyond EOD, truncated
[   88.972366][ T6970] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1327'.
[   89.031301][ T6977] loop2: detected capacity change from 0 to 164
[   89.040858][ T6977] syz.2.1330: attempt to access beyond end of device
[   89.040858][ T6977] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   89.055783][ T6977] syz.2.1330: attempt to access beyond end of device
[   89.055783][ T6977] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[   89.072124][ T6956] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1315: bg 0: block 345: padding at end of block bitmap is not set
[   89.089000][ T6956] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   89.101646][ T6956] EXT4-fs (loop1): This should not happen!! Data will be lost
[   89.101646][ T6956] 
[   89.145277][ T6984] loop4: detected capacity change from 0 to 164
[   89.157670][ T6984] syz.4.1334: attempt to access beyond end of device
[   89.157670][ T6984] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   89.173154][ T6984] syz.4.1334: attempt to access beyond end of device
[   89.173154][ T6984] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[   89.215479][ T3853] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   89.228407][ T3853] EXT4-fs (loop1): This should not happen!! Data will be lost
[   89.228407][ T3853] 
[   89.247362][ T6988] loop5: detected capacity change from 0 to 2048
[   89.276354][ T6988] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.313279][ T6988] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.332821][ T1773] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   89.345593][ T1773] EXT4-fs (loop1): This should not happen!! Data will be lost
[   89.345593][ T1773] 
[   89.355304][ T1773] EXT4-fs (loop1): Total free blocks count 0
[   89.361351][ T1773] EXT4-fs (loop1): Free/Dirty block details
[   89.367264][ T1773] EXT4-fs (loop1): free_blocks=0
[   89.446555][ T6996] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #16: comm syz.5.1336: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   89.556208][ T6999] loop1: detected capacity change from 0 to 512
[   89.633884][ T6999] EXT4-fs: Ignoring removed mblk_io_submit option
[   89.641635][ T6999] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   89.725475][ T6999] EXT4-fs (loop1): 1 truncate cleaned up
[   89.731612][ T6999] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.743445][ T6996] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1336: bg 0: block 345: padding at end of block bitmap is not set
[   89.766737][ T7003] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1339'.
[   89.778710][ T6996] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   89.791330][ T6996] EXT4-fs (loop5): This should not happen!! Data will be lost
[   89.791330][ T6996] 
[   89.804478][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.830986][   T31] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   89.843750][   T31] EXT4-fs (loop5): This should not happen!! Data will be lost
[   89.843750][   T31] 
[   89.889981][   T31] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   89.902796][   T31] EXT4-fs (loop5): This should not happen!! Data will be lost
[   89.902796][   T31] 
[   89.912569][   T31] EXT4-fs (loop5): Total free blocks count 0
[   89.918568][   T31] EXT4-fs (loop5): Free/Dirty block details
[   89.924660][   T31] EXT4-fs (loop5): free_blocks=0
[   90.063196][ T7022] loop1: detected capacity change from 0 to 164
[   90.083021][ T7022] syz.1.1347: attempt to access beyond end of device
[   90.083021][ T7022] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   90.098955][ T7022] syz.1.1347: attempt to access beyond end of device
[   90.098955][ T7022] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   90.254150][ T7052] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1361'.
[   90.367688][ T7067] loop1: detected capacity change from 0 to 512
[   90.455907][ T7081] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1374'.
[   90.553714][ T7067] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   90.580926][ T7067] ext4 filesystem being mounted at /253/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.811871][ T7093] loop4: detected capacity change from 0 to 2048
[   90.884439][ T7093]  loop4: p1 < > p3
[   90.889123][ T7093] loop4: p3 size 134217728 extends beyond EOD, truncated
[   91.057769][ T3446] IPVS: starting estimator thread 0...
[   91.082902][ T7067] EXT4-fs: Ignoring removed orlov option
[   91.101439][ T7109] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1386'.
[   91.111057][ T7067] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   91.127557][ T7114] loop4: detected capacity change from 0 to 2048
[   91.153329][ T7107] IPVS: using max 2928 ests per chain, 146400 per kthread
[   91.160621][ T7067] EXT4-fs (loop1): can't enable nombcache during remount
[   91.167749][ T7116] loop5: detected capacity change from 0 to 2048
[   91.180963][ T7067] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1368'.
[   91.207935][ T7116] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.227944][ T7116] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.241458][ T7114] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.255206][ T7114] ext4 filesystem being mounted at /316/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.289640][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   91.319284][ T7130] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #16: comm syz.5.1389: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   91.370393][ T7131] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #16: comm syz.4.1387: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   91.529266][ T7144] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1399'.
[   91.586926][ T7133] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1389: bg 0: block 345: padding at end of block bitmap is not set
[   91.627728][ T7133] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   91.640364][ T7133] EXT4-fs (loop5): This should not happen!! Data will be lost
[   91.640364][ T7133] 
[   91.682294][ T3853] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   91.695150][ T3853] EXT4-fs (loop5): This should not happen!! Data will be lost
[   91.695150][ T3853] 
[   91.729075][ T7131] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1387: bg 0: block 345: padding at end of block bitmap is not set
[   91.744165][ T7131] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   91.752290][ T3853] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   91.756726][ T7131] EXT4-fs (loop4): This should not happen!! Data will be lost
[   91.756726][ T7131] 
[   91.769411][ T3853] EXT4-fs (loop5): This should not happen!! Data will be lost
[   91.769411][ T3853] 
[   91.789057][ T3853] EXT4-fs (loop5): Total free blocks count 0
[   91.795419][ T3853] EXT4-fs (loop5): Free/Dirty block details
[   91.801327][ T3853] EXT4-fs (loop5): free_blocks=0
[   91.831875][ T3853] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   91.844696][ T3853] EXT4-fs (loop4): This should not happen!! Data will be lost
[   91.844696][ T3853] 
[   91.960302][ T3853] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   91.973157][ T3853] EXT4-fs (loop4): This should not happen!! Data will be lost
[   91.973157][ T3853] 
[   91.982850][ T3853] EXT4-fs (loop4): Total free blocks count 0
[   91.988966][ T3853] EXT4-fs (loop4): Free/Dirty block details
[   91.994958][ T3853] EXT4-fs (loop4): free_blocks=0
[   92.017220][ T7164] loop5: detected capacity change from 0 to 164
[   92.053416][ T7164] syz.5.1406: attempt to access beyond end of device
[   92.053416][ T7164] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   92.087239][ T7164] syz.5.1406: attempt to access beyond end of device
[   92.087239][ T7164] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[   92.110242][ T7168] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1410'.
[   92.149751][ T7174] netlink: 'syz.4.1412': attribute type 1 has an invalid length.
[   92.205935][ T7174] 8021q: adding VLAN 0 to HW filter on device bond2
[   92.235985][ T7188] loop2: detected capacity change from 0 to 2048
[   92.254982][ T7175] 8021q: adding VLAN 0 to HW filter on device bond2
[   92.262389][ T7175] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address
[   92.294757][ T7175] bond2: (slave vxcan3): Error -95 calling set_mac_address
[   92.314589][ T7188] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.338757][ T7188] ext4 filesystem being mounted at /308/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.559678][ T7197] loop5: detected capacity change from 0 to 2048
[   92.573292][ T7205] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #16: comm syz.2.1418: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   92.613816][ T7197]  loop5: p1 < > p3
[   92.618181][ T7197] loop5: p3 size 134217728 extends beyond EOD, truncated
[   92.726957][ T7214] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1426'.
[   92.804511][ T7217] loop1: detected capacity change from 0 to 164
[   92.819785][ T7217] syz.1.1425: attempt to access beyond end of device
[   92.819785][ T7217] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   92.834224][ T7205] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1418: bg 0: block 345: padding at end of block bitmap is not set
[   92.849474][ T7205] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   92.862021][ T7205] EXT4-fs (loop2): This should not happen!! Data will be lost
[   92.862021][ T7205] 
[   92.880210][ T3853] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   92.892934][ T3853] EXT4-fs (loop2): This should not happen!! Data will be lost
[   92.892934][ T3853] 
[   92.903820][ T7217] syz.1.1425: attempt to access beyond end of device
[   92.903820][ T7217] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   92.936272][ T3853] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   92.949014][ T3853] EXT4-fs (loop2): This should not happen!! Data will be lost
[   92.949014][ T3853] 
[   92.958741][ T3853] EXT4-fs (loop2): Total free blocks count 0
[   92.964754][ T3853] EXT4-fs (loop2): Free/Dirty block details
[   92.970979][ T3853] EXT4-fs (loop2): free_blocks=0
[   93.068939][ T7229] pim6reg1: entered promiscuous mode
[   93.074496][ T7229] pim6reg1: entered allmulticast mode
[   93.081083][ T7229] FAULT_INJECTION: forcing a failure.
[   93.081083][ T7229] name failslab, interval 1, probability 0, space 0, times 0
[   93.093708][ T7229] CPU: 1 UID: 0 PID: 7229 Comm: syz.4.1432 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   93.093738][ T7229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   93.093829][ T7229] Call Trace:
[   93.093834][ T7229]  <TASK>
[   93.093840][ T7229]  dump_stack_lvl+0xf6/0x150
[   93.093866][ T7229]  dump_stack+0x15/0x1a
[   93.093882][ T7229]  should_fail_ex+0x261/0x270
[   93.093908][ T7229]  should_failslab+0x8f/0xb0
[   93.093932][ T7229]  __kmalloc_cache_noprof+0x55/0x320
[   93.093997][ T7229]  ? __hw_addr_add_ex+0x15a/0x430
[   93.094019][ T7229]  __hw_addr_add_ex+0x15a/0x430
[   93.094039][ T7229]  dev_mc_add+0x63/0xa0
[   93.094061][ T7229]  igmp_group_added+0xfd/0x570
[   93.094161][ T7229]  ____ip_mc_inc_group+0x4a3/0x5d0
[   93.094202][ T7229]  ip_mc_up+0xbb/0x150
[   93.094235][ T7229]  inetdev_event+0xa3e/0xc70
[   93.094263][ T7229]  ? ib_netdevice_event+0x215/0x370
[   93.094289][ T7229]  ? __pfx_arp_netdev_event+0x10/0x10
[   93.094312][ T7229]  ? __pfx_inetdev_event+0x10/0x10
[   93.094361][ T7229]  raw_notifier_call_chain+0x6f/0x1d0
[   93.094398][ T7229]  call_netdevice_notifiers_info+0xae/0x100
[   93.094432][ T7229]  __dev_notify_flags+0x101/0x1a0
[   93.094479][ T7229]  netif_change_flags+0xab/0xd0
[   93.094508][ T7229]  dev_change_flags+0xde/0x1a0
[   93.094534][ T7229]  ? strcmp+0x21/0x50
[   93.094562][ T7229]  dev_ifsioc+0x5de/0xb20
[   93.094719][ T7229]  ? __rcu_read_unlock+0x4e/0x70
[   93.094741][ T7229]  dev_ioctl+0x7d6/0xa20
[   93.094769][ T7229]  sock_do_ioctl+0x121/0x220
[   93.094880][ T7229]  sock_ioctl+0x436/0x630
[   93.094941][ T7229]  ? __pfx_sock_ioctl+0x10/0x10
[   93.094972][ T7229]  __se_sys_ioctl+0xc9/0x140
[   93.095006][ T7229]  __x64_sys_ioctl+0x43/0x50
[   93.095038][ T7229]  x64_sys_call+0x168d/0x2e10
[   93.095132][ T7229]  do_syscall_64+0xc9/0x1a0
[   93.095159][ T7229]  ? clear_bhb_loop+0x25/0x80
[   93.095183][ T7229]  ? clear_bhb_loop+0x25/0x80
[   93.095204][ T7229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.095227][ T7229] RIP: 0033:0x7f91a997e169
[   93.095243][ T7229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.095276][ T7229] RSP: 002b:00007f91a7fe7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   93.095298][ T7229] RAX: ffffffffffffffda RBX: 00007f91a9ba5fa0 RCX: 00007f91a997e169
[   93.095331][ T7229] RDX: 0000200000000140 RSI: 0000000000008914 RDI: 0000000000000008
[   93.095370][ T7229] RBP: 00007f91a7fe7090 R08: 0000000000000000 R09: 0000000000000000
[   93.095462][ T7229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   93.095476][ T7229] R13: 0000000000000000 R14: 00007f91a9ba5fa0 R15: 00007ffd75530838
[   93.095497][ T7229]  </TASK>
[   93.379759][   T29] kauditd_printk_skb: 206 callbacks suppressed
[   93.379772][   T29] audit: type=1400 audit(2000000051.331:5005): avc:  denied  { create } for  pid=7235 comm="syz.1.1434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   93.408779][ T7236] loop1: detected capacity change from 0 to 512
[   93.428195][ T7236] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.441418][ T7236] ext4 filesystem being mounted at /267/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.462735][   T29] audit: type=1400 audit(2000000051.411:5006): avc:  denied  { setopt } for  pid=7235 comm="syz.1.1434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   93.494323][   T29] audit: type=1400 audit(2000000051.411:5007): avc:  denied  { read } for  pid=7235 comm="syz.1.1434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   93.538784][ T7236] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.1434: corrupted inode contents
[   93.552040][ T7236] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #2: comm syz.1.1434: mark_inode_dirty error
[   93.565606][ T7252] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1438'.
[   93.565774][ T7236] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.1434: corrupted inode contents
[   93.606578][ T7236] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.1434: mark_inode_dirty error
[   93.635702][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.647053][ T7258] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1440'.
[   93.665362][ T3380] IPVS: starting estimator thread 0...
[   93.679659][   T29] audit: type=1400 audit(2000000051.631:5008): avc:  denied  { remount } for  pid=7256 comm="syz.0.1441" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   93.706982][ T7260] loop5: detected capacity change from 0 to 2048
[   93.738570][ T7260] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.743088][ T7270] loop4: detected capacity change from 0 to 1024
[   93.757244][ T7261] IPVS: using max 2304 ests per chain, 115200 per kthread
[   93.764954][ T7260] ext4 filesystem being mounted at /69/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.804628][ T7270] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.832200][ T7283] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #16: comm syz.5.1443: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   93.850786][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.855034][ T7282] loop1: detected capacity change from 0 to 164
[   93.889172][   T29] audit: type=1400 audit(2000000051.841:5009): avc:  denied  { write } for  pid=7284 comm="syz.4.1450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   93.889192][ T7285] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   93.889808][ T7285] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[   93.971521][   T29] audit: type=1400 audit(2000000051.921:5010): avc:  denied  { create } for  pid=7284 comm="syz.4.1450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   94.144393][ T7283] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1443: bg 0: block 345: padding at end of block bitmap is not set
[   94.159465][ T7283] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   94.172059][ T7283] EXT4-fs (loop5): This should not happen!! Data will be lost
[   94.172059][ T7283] 
[   94.183014][   T29] audit: type=1400 audit(2000000052.091:5011): avc:  denied  { ioctl } for  pid=7296 comm="syz.0.1453" path="socket:[16372]" dev="sockfs" ino=16372 ioctlcmd=0x89e5 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   94.213183][   T12] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   94.225980][   T12] EXT4-fs (loop5): This should not happen!! Data will be lost
[   94.225980][   T12] 
[   94.260994][   T12] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   94.273775][   T12] EXT4-fs (loop5): This should not happen!! Data will be lost
[   94.273775][   T12] 
[   94.283475][   T12] EXT4-fs (loop5): Total free blocks count 0
[   94.289456][   T12] EXT4-fs (loop5): Free/Dirty block details
[   94.295377][   T12] EXT4-fs (loop5): free_blocks=0
[   94.505113][ T7325] smc: net device bond0 applied user defined pnetid SYZ2
[   94.586864][   T29] audit: type=1400 audit(2000000052.541:5012): avc:  denied  { name_bind } for  pid=7335 comm="syz.2.1471" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   94.615034][ T7336] loop2: detected capacity change from 0 to 512
[   94.631820][ T7340] loop5: detected capacity change from 0 to 2048
[   94.673259][ T7340] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.686364][ T7336] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.1471: corrupted in-inode xattr: invalid ea_ino
[   94.727786][ T7340] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.745127][ T7336] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.1471: couldn't read orphan inode 15 (err -117)
[   94.779212][ T7336] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.843370][   T29] audit: type=1400 audit(2000000052.791:5013): avc:  denied  { mounton } for  pid=7335 comm="syz.2.1471" path="/315/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0/file0" dev="loop2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   94.892254][ T7357] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #16: comm syz.5.1473: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   94.958892][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.087601][ T7375] __nla_validate_parse: 5 callbacks suppressed
[   95.087665][ T7375] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1486'.
[   95.227440][ T7363] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1473: bg 0: block 345: padding at end of block bitmap is not set
[   95.255045][ T7363] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   95.267735][ T7363] EXT4-fs (loop5): This should not happen!! Data will be lost
[   95.267735][ T7363] 
[   95.307640][ T1773] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   95.320393][ T1773] EXT4-fs (loop5): This should not happen!! Data will be lost
[   95.320393][ T1773] 
[   95.340191][ T7404] loop2: detected capacity change from 0 to 164
[   95.367556][ T7404] bio_check_eod: 2 callbacks suppressed
[   95.367571][ T7404] syz.2.1499: attempt to access beyond end of device
[   95.367571][ T7404] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   95.379592][ T7406] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1500'.
[   95.388959][ T1773] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   95.408675][ T1773] EXT4-fs (loop5): This should not happen!! Data will be lost
[   95.408675][ T1773] 
[   95.418338][ T1773] EXT4-fs (loop5): Total free blocks count 0
[   95.424332][ T1773] EXT4-fs (loop5): Free/Dirty block details
[   95.430221][ T1773] EXT4-fs (loop5): free_blocks=0
[   95.436715][ T7404] syz.2.1499: attempt to access beyond end of device
[   95.436715][ T7404] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[   95.500481][ T7418] loop1: detected capacity change from 0 to 164
[   95.514707][ T7417] loop2: detected capacity change from 0 to 512
[   95.535768][ T7418] syz.1.1505: attempt to access beyond end of device
[   95.535768][ T7418] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   95.562559][ T7418] syz.1.1505: attempt to access beyond end of device
[   95.562559][ T7418] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   95.594085][ T7417] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.634308][ T7427] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1508'.
[   95.659169][ T7417] ext4 filesystem being mounted at /322/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.721768][ T7435] FAULT_INJECTION: forcing a failure.
[   95.721768][ T7435] name failslab, interval 1, probability 0, space 0, times 0
[   95.734549][ T7435] CPU: 1 UID: 0 PID: 7435 Comm: syz.2.1506 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   95.734576][ T7435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   95.734589][ T7435] Call Trace:
[   95.734601][ T7435]  <TASK>
[   95.734656][ T7435]  dump_stack_lvl+0xf6/0x150
[   95.734681][ T7435]  dump_stack+0x15/0x1a
[   95.734698][ T7435]  should_fail_ex+0x261/0x270
[   95.734722][ T7435]  should_failslab+0x8f/0xb0
[   95.734745][ T7435]  kmem_cache_alloc_noprof+0x59/0x340
[   95.734780][ T7435]  ? alloc_empty_file+0x78/0x200
[   95.734853][ T7435]  alloc_empty_file+0x78/0x200
[   95.734881][ T7435]  path_openat+0x6f/0x2000
[   95.734911][ T7435]  ? _parse_integer_limit+0x167/0x180
[   95.734937][ T7435]  ? kstrtoull+0x115/0x140
[   95.735005][ T7435]  ? kstrtouint+0x7b/0xc0
[   95.735025][ T7435]  do_filp_open+0x115/0x240
[   95.735066][ T7435]  do_sys_openat2+0xaa/0x110
[   95.735152][ T7435]  __x64_sys_openat+0xf8/0x120
[   95.735182][ T7435]  x64_sys_call+0x1ac/0x2e10
[   95.735204][ T7435]  do_syscall_64+0xc9/0x1a0
[   95.735307][ T7435]  ? clear_bhb_loop+0x25/0x80
[   95.735330][ T7435]  ? clear_bhb_loop+0x25/0x80
[   95.735352][ T7435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.735373][ T7435] RIP: 0033:0x7f4574b6cad0
[   95.735406][ T7435] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   95.735467][ T7435] RSP: 002b:00007f45731b5f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   95.735486][ T7435] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4574b6cad0
[   95.735499][ T7435] RDX: 0000000000000000 RSI: 00007f4574bf0b80 RDI: 00000000ffffff9c
[   95.735512][ T7435] RBP: 00007f4574bf0b80 R08: 0000000000000000 R09: 0000000000000000
[   95.735524][ T7435] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   95.735535][ T7435] R13: 0000000000000000 R14: 00007f4574d96080 R15: 00007ffd275ef068
[   95.735549][ T7435]  </TASK>
[   95.940549][ T7417] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.1506: corrupted inode contents
[   95.954009][ T7438] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1511'.
[   95.983089][ T7417] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #2: comm syz.2.1506: mark_inode_dirty error
[   96.005012][ T7417] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.1506: corrupted inode contents
[   96.027213][ T7417] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.1506: mark_inode_dirty error
[   96.072394][ T7444] loop4: detected capacity change from 0 to 164
[   96.080462][ T7444] syz.4.1515: attempt to access beyond end of device
[   96.080462][ T7444] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   96.105574][ T7444] syz.4.1515: attempt to access beyond end of device
[   96.105574][ T7444] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[   96.125793][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.316057][ T7467] tipc: Started in network mode
[   96.320980][ T7467] tipc: Node identity ac14140f, cluster identity 4711
[   96.327975][ T7467] tipc: New replicast peer: 10.1.1.2
[   96.333400][ T7467] tipc: Enabled bearer <udp:s>, priority 10
[   96.342868][   T29] audit: type=1400 audit(2000000054.291:5014): avc:  denied  { write } for  pid=7464 comm="syz.5.1525" name="udplite" dev="proc" ino=4026533519 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   96.495560][ T7482] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1533'.
[   96.571189][ T7493] FAULT_INJECTION: forcing a failure.
[   96.571189][ T7493] name failslab, interval 1, probability 0, space 0, times 0
[   96.583900][ T7493] CPU: 1 UID: 0 PID: 7493 Comm: syz.4.1537 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   96.583990][ T7493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   96.584003][ T7493] Call Trace:
[   96.584010][ T7493]  <TASK>
[   96.584018][ T7493]  dump_stack_lvl+0xf6/0x150
[   96.584042][ T7493]  dump_stack+0x15/0x1a
[   96.584055][ T7493]  should_fail_ex+0x261/0x270
[   96.584076][ T7493]  should_failslab+0x8f/0xb0
[   96.584107][ T7493]  __kmalloc_cache_noprof+0x55/0x320
[   96.584140][ T7493]  ? rtm_new_nexthop+0x1586/0x4340
[   96.584184][ T7493]  rtm_new_nexthop+0x1586/0x4340
[   96.584214][ T7493]  ? bpf_perf_event_read+0xe2/0x150
[   96.584314][ T7493]  ? __rcu_read_unlock+0x34/0x70
[   96.584347][ T7493]  ? security_capable+0x81/0x90
[   96.584438][ T7493]  ? ns_capable+0x7d/0xb0
[   96.584466][ T7493]  ? __pfx_rtm_new_nexthop+0x10/0x10
[   96.584499][ T7493]  rtnetlink_rcv_msg+0x65a/0x740
[   96.584532][ T7493]  ? should_fail_ex+0xd7/0x270
[   96.584557][ T7493]  ? ref_tracker_free+0x3b8/0x420
[   96.584587][ T7493]  netlink_rcv_skb+0x12f/0x230
[   96.584606][ T7493]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   96.584713][ T7493]  rtnetlink_rcv+0x1c/0x30
[   96.584770][ T7493]  netlink_unicast+0x605/0x6c0
[   96.584896][ T7493]  netlink_sendmsg+0x609/0x720
[   96.584924][ T7493]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.585001][ T7493]  __sock_sendmsg+0x140/0x180
[   96.585038][ T7493]  ____sys_sendmsg+0x350/0x4e0
[   96.585064][ T7493]  __sys_sendmsg+0x1a0/0x240
[   96.585101][ T7493]  __x64_sys_sendmsg+0x46/0x50
[   96.585198][ T7493]  x64_sys_call+0x26f3/0x2e10
[   96.585219][ T7493]  do_syscall_64+0xc9/0x1a0
[   96.585248][ T7493]  ? clear_bhb_loop+0x25/0x80
[   96.585280][ T7493]  ? clear_bhb_loop+0x25/0x80
[   96.585317][ T7493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.585407][ T7493] RIP: 0033:0x7f91a997e169
[   96.585424][ T7493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.585445][ T7493] RSP: 002b:00007f91a7fe7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   96.585467][ T7493] RAX: ffffffffffffffda RBX: 00007f91a9ba5fa0 RCX: 00007f91a997e169
[   96.585481][ T7493] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[   96.585495][ T7493] RBP: 00007f91a7fe7090 R08: 0000000000000000 R09: 0000000000000000
[   96.585508][ T7493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.585522][ T7493] R13: 0000000000000000 R14: 00007f91a9ba5fa0 R15: 00007ffd75530838
[   96.585620][ T7493]  </TASK>
[   96.879982][ T7495] siw: device registration error -23
[   97.247276][ T7520] pim6reg1: entered promiscuous mode
[   97.252561][ T7520] pim6reg1: entered allmulticast mode
[   97.276824][ T7530] FAULT_INJECTION: forcing a failure.
[   97.276824][ T7530] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.289942][ T7530] CPU: 0 UID: 0 PID: 7530 Comm: syz.2.1553 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   97.289983][ T7530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   97.289993][ T7530] Call Trace:
[   97.290009][ T7530]  <TASK>
[   97.290014][ T7530]  dump_stack_lvl+0xf6/0x150
[   97.290033][ T7530]  dump_stack+0x15/0x1a
[   97.290045][ T7530]  should_fail_ex+0x261/0x270
[   97.290064][ T7530]  should_fail+0xb/0x10
[   97.290080][ T7530]  should_fail_usercopy+0x1a/0x20
[   97.290148][ T7530]  _copy_from_user+0x1c/0xa0
[   97.290171][ T7530]  copy_msghdr_from_user+0x54/0x2b0
[   97.290198][ T7530]  do_recvmmsg+0x24d/0x6e0
[   97.290283][ T7530]  ? __bpf_trace_sys_enter+0x10/0x30
[   97.290301][ T7530]  __x64_sys_recvmmsg+0xe4/0x170
[   97.290322][ T7530]  x64_sys_call+0x1b90/0x2e10
[   97.290339][ T7530]  do_syscall_64+0xc9/0x1a0
[   97.290358][ T7530]  ? clear_bhb_loop+0x25/0x80
[   97.290503][ T7530]  ? clear_bhb_loop+0x25/0x80
[   97.290519][ T7530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.290535][ T7530] RIP: 0033:0x7f4574b6e169
[   97.290603][ T7530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.290617][ T7530] RSP: 002b:00007f45731d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   97.290631][ T7530] RAX: ffffffffffffffda RBX: 00007f4574d95fa0 RCX: 00007f4574b6e169
[   97.290641][ T7530] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000003
[   97.290650][ T7530] RBP: 00007f45731d7090 R08: 0000000000000000 R09: 0000000000000000
[   97.290659][ T7530] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[   97.290668][ T7530] R13: 0000000000000000 R14: 00007f4574d95fa0 R15: 00007ffd275ef068
[   97.290698][ T7530]  </TASK>
[   97.470040][   T23] tipc: Node number set to 2886997007
[   97.616786][ T7539] loop5: detected capacity change from 0 to 2048
[   97.627640][ T7542] netlink: 'syz.0.1558': attribute type 4 has an invalid length.
[   97.635591][ T7542] FAULT_INJECTION: forcing a failure.
[   97.635591][ T7542] name failslab, interval 1, probability 0, space 0, times 0
[   97.648409][ T7542] CPU: 0 UID: 0 PID: 7542 Comm: syz.0.1558 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   97.648432][ T7542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   97.648474][ T7542] Call Trace:
[   97.648480][ T7542]  <TASK>
[   97.648487][ T7542]  dump_stack_lvl+0xf6/0x150
[   97.648511][ T7542]  dump_stack+0x15/0x1a
[   97.648528][ T7542]  should_fail_ex+0x261/0x270
[   97.648610][ T7542]  should_failslab+0x8f/0xb0
[   97.648633][ T7542]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   97.648720][ T7542]  ? __alloc_skb+0x10d/0x320
[   97.648741][ T7542]  __alloc_skb+0x10d/0x320
[   97.648761][ T7542]  rtmsg_ifinfo_build_skb+0x63/0x1b0
[   97.648838][ T7542]  ? __pfx_rtnetlink_event+0x10/0x10
[   97.648871][ T7542]  rtnetlink_event+0x180/0x200
[   97.648900][ T7542]  raw_notifier_call_chain+0x6f/0x1d0
[   97.648937][ T7542]  call_netdevice_notifiers_info+0xae/0x100
[   97.648973][ T7542]  netif_set_mtu_ext+0x28e/0x370
[   97.648990][ T7542]  do_setlink+0x82d/0x2430
[   97.649022][ T7542]  ? _raw_spin_unlock+0x26/0x50
[   97.649053][ T7542]  ? finish_task_switch+0xb5/0x2b0
[   97.649092][ T7542]  ? __schedule+0x809/0xb70
[   97.649191][ T7542]  ? __cond_resched+0x53/0x90
[   97.649307][ T7542]  ? __cond_resched+0x53/0x90
[   97.649375][ T7542]  rtnl_setlink+0x2fd/0x440
[   97.649428][ T7542]  ? security_capable+0x81/0x90
[   97.649510][ T7542]  ? ns_capable+0x7d/0xb0
[   97.649546][ T7542]  ? __pfx_rtnl_setlink+0x10/0x10
[   97.649651][ T7542]  rtnetlink_rcv_msg+0x65a/0x740
[   97.649674][ T7542]  ? ref_tracker_free+0x3b8/0x420
[   97.649706][ T7542]  ? __dev_queue_xmit+0x18b/0x20b0
[   97.649775][ T7542]  netlink_rcv_skb+0x12f/0x230
[   97.649792][ T7542]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   97.649828][ T7542]  rtnetlink_rcv+0x1c/0x30
[   97.649857][ T7542]  netlink_unicast+0x605/0x6c0
[   97.649967][ T7542]  netlink_sendmsg+0x609/0x720
[   97.649994][ T7542]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.650016][ T7542]  __sock_sendmsg+0x140/0x180
[   97.650116][ T7542]  sock_write_iter+0x186/0x1c0
[   97.650181][ T7542]  do_iter_readv_writev+0x40d/0x4b0
[   97.650210][ T7542]  vfs_writev+0x2da/0x880
[   97.650316][ T7542]  ? __seccomp_filter+0x694/0x10e0
[   97.650345][ T7542]  do_writev+0xf7/0x230
[   97.650372][ T7542]  __x64_sys_writev+0x45/0x50
[   97.650392][ T7542]  x64_sys_call+0x1d68/0x2e10
[   97.650415][ T7542]  do_syscall_64+0xc9/0x1a0
[   97.650441][ T7542]  ? clear_bhb_loop+0x25/0x80
[   97.650493][ T7542]  ? clear_bhb_loop+0x25/0x80
[   97.650512][ T7542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.650533][ T7542] RIP: 0033:0x7f1048a2e169
[   97.650548][ T7542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.650625][ T7542] RSP: 002b:00007f1047097038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   97.650642][ T7542] RAX: ffffffffffffffda RBX: 00007f1048c55fa0 RCX: 00007f1048a2e169
[   97.650656][ T7542] RDX: 0000000000000001 RSI: 00002000000003c0 RDI: 0000000000000007
[   97.650669][ T7542] RBP: 00007f1047097090 R08: 0000000000000000 R09: 0000000000000000
[   97.650681][ T7542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   97.650693][ T7542] R13: 0000000000000000 R14: 00007f1048c55fa0 R15: 00007ffc12778f08
[   97.650719][ T7542]  </TASK>
[   97.652476][ T7539] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.813524][ T7551] loop4: detected capacity change from 0 to 512
[   97.818713][ T7539] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.822944][ T7551] EXT4-fs: Ignoring removed bh option
[   97.883622][ T7552] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #16: comm syz.5.1556: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   97.958048][ T7549] siw: device registration error -23
[   97.960025][ T7551] ext2: Unknown parameter 'func'
[   98.222121][ T7552] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1556: bg 0: block 345: padding at end of block bitmap is not set
[   98.254175][ T7552] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   98.266770][ T7552] EXT4-fs (loop5): This should not happen!! Data will be lost
[   98.266770][ T7552] 
[   98.317691][ T1773] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   98.330638][ T1773] EXT4-fs (loop5): This should not happen!! Data will be lost
[   98.330638][ T1773] 
[   98.367876][ T7569] loop4: detected capacity change from 0 to 512
[   98.378493][ T1773] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   98.391350][ T1773] EXT4-fs (loop5): This should not happen!! Data will be lost
[   98.391350][ T1773] 
[   98.401015][ T1773] EXT4-fs (loop5): Total free blocks count 0
[   98.407142][ T1773] EXT4-fs (loop5): Free/Dirty block details
[   98.413073][ T1773] EXT4-fs (loop5): free_blocks=0
[   98.413506][ T7569] EXT4-fs: Ignoring removed i_version option
[   98.418096][   T29] kauditd_printk_skb: 74 callbacks suppressed
[   98.418111][   T29] audit: type=1400 audit(2000000056.361:5089): avc:  denied  { mounton } for  pid=7568 comm="syz.4.1567" path="/359/bus" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   98.435735][ T7569] EXT4-fs: Mount option(s) incompatible with ext2
[   98.476410][   T29] audit: type=1400 audit(2000000056.411:5090): avc:  denied  { setopt } for  pid=7570 comm="syz.0.1568" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   98.572784][ T7579] loop1: detected capacity change from 0 to 2048
[   98.573298][   T29] audit: type=1400 audit(2000000056.521:5091): avc:  denied  { unmount } for  pid=3306 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   98.620122][   T29] audit: type=1400 audit(2000000056.571:5092): avc:  denied  { mount } for  pid=7585 comm="syz.0.1574" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   98.621920][ T7586] syz.0.1574 (7586): /proc/7585/oom_adj is deprecated, please use /proc/7585/oom_score_adj instead.
[   98.644083][ T7579] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.665689][ T7579] ext4 filesystem being mounted at /281/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.669869][   T29] audit: type=1400 audit(2000000056.621:5093): avc:  denied  { mounton } for  pid=7585 comm="syz.0.1574" path="/334/file0" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:devpts_t tclass=dir permissive=1
[   98.698321][   T29] audit: type=1400 audit(2000000056.621:5094): avc:  denied  { unmount } for  pid=7585 comm="syz.0.1574" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   98.754383][ T7591] FAULT_INJECTION: forcing a failure.
[   98.754383][ T7591] name failslab, interval 1, probability 0, space 0, times 0
[   98.767131][ T7591] CPU: 1 UID: 0 PID: 7591 Comm: syz.0.1575 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   98.767161][ T7591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   98.767174][ T7591] Call Trace:
[   98.767181][ T7591]  <TASK>
[   98.767188][ T7591]  dump_stack_lvl+0xf6/0x150
[   98.767214][ T7591]  dump_stack+0x15/0x1a
[   98.767312][ T7591]  should_fail_ex+0x261/0x270
[   98.767334][ T7591]  should_failslab+0x8f/0xb0
[   98.767369][ T7591]  __kmalloc_cache_noprof+0x55/0x320
[   98.767400][ T7591]  ? audit_log_d_path+0x8e/0x150
[   98.767507][ T7591]  audit_log_d_path+0x8e/0x150
[   98.767532][ T7591]  audit_log_d_path_exe+0x42/0x70
[   98.767562][ T7591]  audit_log_task+0x1f1/0x250
[   98.767630][ T7591]  ? kstrtouint+0x7b/0xc0
[   98.767649][ T7591]  audit_seccomp+0x62/0x100
[   98.767697][ T7591]  __seccomp_filter+0x694/0x10e0
[   98.767718][ T7591]  ? vfs_write+0x669/0x950
[   98.767738][ T7591]  __secure_computing+0x7e/0x150
[   98.767754][ T7591]  syscall_trace_enter+0xcf/0x1f0
[   98.767788][ T7591]  ? fpregs_assert_state_consistent+0x83/0xa0
[   98.767891][ T7591]  do_syscall_64+0xaa/0x1a0
[   98.767914][ T7591]  ? clear_bhb_loop+0x25/0x80
[   98.767932][ T7591]  ? clear_bhb_loop+0x25/0x80
[   98.767948][ T7591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.768038][ T7591] RIP: 0033:0x7f1048a2e169
[   98.768054][ T7591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.768072][ T7591] RSP: 002b:00007f1047097038 EFLAGS: 00000246 ORIG_RAX: 00000000000000cc
[   98.768088][ T7591] RAX: ffffffffffffffda RBX: 00007f1048c55fa0 RCX: 00007f1048a2e169
[   98.768098][ T7591] RDX: 0000200000000180 RSI: 0000000000000008 RDI: 000000000000030b
[   98.768107][ T7591] RBP: 00007f1047097090 R08: 0000000000000000 R09: 0000000000000000
[   98.768119][ T7591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.768130][ T7591] R13: 0000000000000000 R14: 00007f1048c55fa0 R15: 00007ffc12778f08
[   98.768149][ T7591]  </TASK>
[   98.768468][ T7594] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #16: comm syz.1.1571: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   98.987306][   T29] audit: type=1400 audit(2000000056.701:5095): avc:  denied  { bind } for  pid=7592 comm="syz.4.1577" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   99.006703][   T29] audit: type=1400 audit(2000000056.701:5096): avc:  denied  { name_bind } for  pid=7592 comm="syz.4.1577" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   99.028582][   T29] audit: type=1400 audit(2000000056.701:5097): avc:  denied  { node_bind } for  pid=7592 comm="syz.4.1577" saddr=fc02::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[   99.050636][   T29] audit: type=1326 audit(2000000056.701:5098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7590 comm="syz.0.1575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1048a2e169 code=0x7ffc0000
[   99.090715][ T7600] ==================================================================
[   99.098826][ T7600] BUG: KCSAN: data-race in call_rcu / mtree_range_walk
[   99.105695][ T7600] 
[   99.108017][ T7600] write to 0xffff88810419ef10 of 8 bytes by task 7601 on cpu 0:
[   99.115646][ T7600]  call_rcu+0x3d/0x430
[   99.119739][ T7600]  mas_wmb_replace+0xcea/0x1510
[   99.124612][ T7600]  mas_wr_store_entry+0x158c/0x2460
[   99.129808][ T7600]  mas_store_prealloc+0x6d5/0x960
[   99.134847][ T7600]  vma_iter_store_new+0x1d3/0x210
[   99.139882][ T7600]  mmap_region+0xe0c/0x1490
[   99.144394][ T7600]  do_mmap+0x9ef/0xc80
[   99.148456][ T7600]  vm_mmap_pgoff+0x16d/0x2d0
[   99.153072][ T7600]  ksys_mmap_pgoff+0x28a/0x340
[   99.157843][ T7600]  x64_sys_call+0x1945/0x2e10
[   99.162524][ T7600]  do_syscall_64+0xc9/0x1a0
[   99.167044][ T7600]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.172943][ T7600] 
[   99.175261][ T7600] read to 0xffff88810419ef10 of 8 bytes by task 7600 on cpu 1:
[   99.182789][ T7600]  mtree_range_walk+0x1b3/0x460
[   99.187637][ T7600]  mas_walk+0x16e/0x320
[   99.191782][ T7600]  lock_vma_under_rcu+0xa7/0x340
[   99.196716][ T7600]  exc_page_fault+0x150/0x6a0
[   99.201384][ T7600]  asm_exc_page_fault+0x26/0x30
[   99.206224][ T7600] 
[   99.208532][ T7600] value changed: 0x00007f104849ffff -> 0xffffffff8561e830
[   99.215626][ T7600] 
[   99.217940][ T7600] Reported by Kernel Concurrency Sanitizer on:
[   99.224078][ T7600] CPU: 1 UID: 0 PID: 7600 Comm: syz.0.1579 Not tainted 6.15.0-rc2-syzkaller-00400-g3088d26962e8 #0 PREEMPT(voluntary) 
[   99.236482][ T7600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   99.246528][ T7600] ==================================================================
[   99.284791][ T7597] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1571: bg 0: block 345: padding at end of block bitmap is not set
[   99.299322][ T7597] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   99.311971][ T7597] EXT4-fs (loop1): This should not happen!! Data will be lost
[   99.311971][ T7597] 
[   99.330055][ T1773] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   99.342800][ T1773] EXT4-fs (loop1): This should not happen!! Data will be lost
[   99.342800][ T1773] 
[   99.369673][ T1773] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   99.382454][ T1773] EXT4-fs (loop1): This should not happen!! Data will be lost
[   99.382454][ T1773] 
[   99.392115][ T1773] EXT4-fs (loop1): Total free blocks count 0
[   99.398244][ T1773] EXT4-fs (loop1): Free/Dirty block details
[   99.404205][ T1773] EXT4-fs (loop1): free_blocks=0