last executing test programs:

56.964368044s ago: executing program 4 (id=283):
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB=',fscontextt'])
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f0000000080)={0xfff7, 0xa600})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x50000)
write$sndseq(r2, &(0x7f0000000100)=[{0x7, 0x4, 0xb, 0x5, @tick=0x3ff, {0x4, 0x10}, {0x6, 0x1}, @addr={0x4, 0xba}}, {0x40, 0x2e, 0x7f, 0x7f, @time={0x7fff, 0x101}, {0xf4, 0x49}, {0x10, 0x6}, @result={0xd, 0x5}}, {0xc, 0xa9, 0x0, 0x0, @tick=0x4, {0x6, 0x5}, {0x0, 0x1}, @addr={0x1, 0xdb}}, {0xb, 0x1, 0xf8, 0x3, @time={0xa5, 0xffffffff}, {0x47, 0xfe}, {0x2, 0x6}, @time=@tick=0x8}, {0x3, 0x9, 0x8, 0x6, @tick=0x3, {0x4, 0x1}, {0x1, 0x1}, @control={0x2, 0xec, 0x1}}], 0x8c)
r3 = socket(0x5, 0xa, 0x7570)
setsockopt$netlink_NETLINK_CAP_ACK(r3, 0x10e, 0xa, &(0x7f0000000080)=0x5, 0x4)

56.434049282s ago: executing program 4 (id=291):
r0 = socket$netlink(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="36ee2cc70c", 0x5}], 0x1}, 0x4800)
ioctl$SIOCSIFHWADDR(r1, 0x8905, &(0x7f0000000340)={'pim6reg0\x00', @remote})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r4, 0x0, 0x3}, 0x18)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r7 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x9000)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', <r8=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r7, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffff9}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004000}, 0x24040840)

55.439029678s ago: executing program 4 (id=304):
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000140)={<r2=>0xffffffffffffffff}, 0x13f, 0xa}}, 0x20)
close_range(r0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x80002, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', &(0x7f0000000540)=ANY=[@ANYBLOB="fdff001300020000000300000000120032060000000000000000000096766a3009000000080000"], &(0x7f0000000580), 0x1600)
sched_setscheduler(0x0, 0x0, &(0x7f0000000040)=0x9)
r3 = getpid()
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0xffffc001)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee4, 0x50, r1, 0x8000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYRES16, @ANYBLOB="422870857c6ae639229d651d30d378f40fa6a6b63c17f39eb02eac50cdee6386cf18e832e03285d9dff24c7276af6eefb3377efd81dd4842b5b268b98d4d9d8dac839b603f439d0f9ca592638904892d366cc297239a00df361ce854f9", @ANYBLOB="625839fa6d468bc3a0e618d586855d5ab9261ce5b9652782a30c258e5d53963dc85a845e8804ab017964bb74b39dc3d922c22f2f7b4ca21a6af480392799769deebc56c6138eaa6b0871be974d508a5b780d02330889b6d902bae9a111cf6fc7660302e261527e99a2979b7677907ac3252fa32a2aa40b956771e0ac1acde9fd67b9beda8585e74b40d22361e7dc96a41d7b850578ba200e90d37380fc3db5c968e79e3af59fd9374e591f728379a1066de78f61b6101eddfb8abb705d6a8ff824b7a5ed0d98536e1a3f99e8c612023810514f4d7f521288eaa0d4462eeb9493556ebb48e6", @ANYRES8=r2, @ANYRES32=r3, @ANYRES32=r2], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x12, 0xc, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r7}, 0x0, 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xffa0)
perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x52, 0x6, 0x18, 0x1, 0x0, 0x6, 0x88192, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x5, 0x3, @perf_bp={&(0x7f0000000380)}, 0x10000, 0x1, 0x36, 0x5, 0x800, 0x6, 0xe, 0x0, 0x0, 0x0, 0x57}, r3, 0xb, 0xffffffffffffffff, 0x1)
unshare(0x62040200)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x581140, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
r8 = syz_open_procfs(0x0, 0x0)
fchdir(r8)

54.999772885s ago: executing program 4 (id=310):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000a40000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x5, &(0x7f0000001040)=ANY=[@ANYBLOB="180000000000000000000000060000008500000061000000850000000800000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r2, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x320e, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000380), 0xde, 0x52d, &(0x7f0000001500)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mount$bind(&(0x7f0000000340)='./file1\x00', &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x1000000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x800048, &(0x7f0000000680)=ANY=[@ANYBLOB='seclabel,d'])

54.438198174s ago: executing program 4 (id=315):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x80, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x7}, {}, {0x7, 0xe}}, [@filter_kind_options=@f_fw={{0x7}, {0x54, 0x2, [@TCA_FW_ACT={0x50, 0x4, [@m_vlan={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x3513, 0x6, 0xffffffffffffffff, 0xb6b9, 0x3}, 0x1}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)

50.777494183s ago: executing program 4 (id=367):
syz_init_net_socket$x25(0x9, 0x5, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
socket$kcm(0x2, 0xa, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r4}, &(0x7f0000000240), &(0x7f00000003c0)=r7}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r6, r2, 0x25, 0x2, @void}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000340)={@random="6ea88d319b8c", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x43, 0x4e22, 0x8}}}}}, 0x0)

50.777175363s ago: executing program 32 (id=367):
syz_init_net_socket$x25(0x9, 0x5, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
socket$kcm(0x2, 0xa, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r4}, &(0x7f0000000240), &(0x7f00000003c0)=r7}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r6, r2, 0x25, 0x2, @void}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000340)={@random="6ea88d319b8c", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x43, 0x4e22, 0x8}}}}}, 0x0)

3.72664769s ago: executing program 5 (id=1231):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000040850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x80, 0xea5a)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x515002, 0xc6)

3.631124222s ago: executing program 5 (id=1233):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
gettid()
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
fsetxattr(r1, &(0x7f0000000480)=@random={'system.', 'batadv_slave_0\x00'}, &(0x7f00000004c0)='TIPCv2\x00', 0x7, 0x1)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000080000000017"], 0x54}}, 0x0)

3.162222379s ago: executing program 5 (id=1238):
socket$netlink(0x10, 0x3, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x3b, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x41, 0x41, 0x4, 0x66, 0x0, 0x40, 0x12521, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x20003, 0x800000000003}, 0x1100, 0x5, 0x0, 0x3, 0x800000000006, 0x5, 0xfffb, 0x0, 0x0, 0x0, 0x48d}, 0x0, 0x10, 0xffffffffffffffff, 0x8)
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000047c0)=""/4095, 0xfff}, {&(0x7f00000020c0)=""/4089, 0xff9}, {0x0}, {&(0x7f0000000840)=""/243, 0xf3}, {&(0x7f0000000180)=""/52, 0x34}], 0x5}, 0x0)
sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000fc0)="5c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3651f60a84c9f4d4938037e70e4509c5bb00000000e513aeac9bf2bee150d5fe86", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r1 = epoll_create1(0x0)
r2 = socket$inet6_dccp(0xa, 0x6, 0x0)
connect$inet(r2, &(0x7f0000000a80)={0x2, 0x4e24, @multicast2}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r3, 0x84, 0xf, &(0x7f0000000180)={0x0, @in6={{0xa, 0x4e24, 0x400, @mcast2, 0xfc}}, 0x8, 0x7f, 0x6, 0x36, 0x2}, &(0x7f0000000040)=0x98)
r4 = socket(0x22, 0x6, 0x1)
r5 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r5, &(0x7f0000000100)={0xa000000d})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000002140)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff0200}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1b, &(0x7f0000002140)={0x1, &(0x7f00000000c0)=[{0x6}]})
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f00000000c0)={0x20002003})
epoll_pwait(r5, &(0x7f0000000280)=[{}, {}], 0x2, 0x1, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000240)=ANY=[@ANYRES8], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='sys_exit\x00', r6}, 0x90)
connect$netlink(0xffffffffffffffff, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
r7 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r7, &(0x7f0000000340)=@name={0x1e, 0x2, 0x3, {{0x2, 0x4}, 0x2}}, 0x10)
r8 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r8, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r7, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r7, &(0x7f0000000400)={&(0x7f00000008c0), 0x58, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x20)
ioctl$SIOCX25SDTEFACILITIES(r4, 0x89eb, &(0x7f00000003c0)={0xe8a, 0xfffb, 0x7fff, 0x2, 0x8, 0x6, 0x20, "219b7c14b8d5b78f33bcba28c4413a4e7d4a775c", "f5086687575f371b425b81a73ac2ba248fed081d"})

3.009082702s ago: executing program 5 (id=1240):
r0 = socket(0x10, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000340)=@gcm_128={{0x304}, "a6341a1a379332f5", "1fd33cb95d66a1781f31bf07fd2ae874", "62266bd8", "d1b29b99d21d88a2"}, 0x28)
write$binfmt_script(r1, &(0x7f0000000780)={'#! ', './file0'}, 0xb)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
close_range(r0, r1, 0x0)

2.965342812s ago: executing program 5 (id=1241):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f00000003c0)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r4, &(0x7f0000000040)={0x23, 0x0, 0x0, 0x1}, 0x10)
ioctl$SIOCPNENABLEPIPE(r4, 0x89ed, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x101)
r5 = syz_io_uring_setup(0xe42, &(0x7f0000000140)={0x0, 0x2119, 0x400}, &(0x7f0000000240)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)={0x0, 0x0, 0x32}, &(0x7f0000000500)='./file0\x00', 0x18})
io_uring_enter(r5, 0x6f58, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f00000000c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r10}, 0x10)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r8, @ANYBLOB=',wfdno=', @ANYRESHEX=r9])
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r11}, 0x18)
r12 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r12, &(0x7f00000004c0)={0x2, 0x0, @multicast1, 0x1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {@minixdf}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

2.820995045s ago: executing program 5 (id=1245):
socket$packet(0x11, 0x2, 0x300)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x1, 0xb, 0x100005, 0x400002, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000300)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @remote}, 0x14)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff})
sendmmsg$sock(r3, &(0x7f00000044c0), 0x4000000000001c0, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000500)=ANY=[], 0x0)

2.49438004s ago: executing program 0 (id=1254):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x2, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000008000000080009000200000008000b"], 0x24}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x14}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

2.449086451s ago: executing program 0 (id=1255):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x2d)
r7 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x1e, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x50, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r7, &(0x7f0000000240)='asymmetric\x00', 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000200)={'geneve0\x00'})
ioctl$sock_SIOCBRDELBR(r9, 0x89a2, &(0x7f0000000200)='bridge0\x00')

1.824436241s ago: executing program 3 (id=1261):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000400000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000e41621eb70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)

1.777372901s ago: executing program 3 (id=1262):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0xcb, 0x44464f, 0x1, 0x0, 0x0)
pipe2(&(0x7f0000000200)={0x0, <r1=>0x0}, 0x0)
pipe2(&(0x7f0000000000)={<r2=>0x0, 0x0}, 0x0)
splice(r2, 0x0, r1, 0x0, 0xe4, 0x0)
r3 = syz_genetlink_get_family_id$smc(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x80, 0x0, @mcast1, 0x8}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0x5}, 0x1c)
r5 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x34f}, &(0x7f00000002c0)=<r6=>0x0, &(0x7f0000000080)=<r7=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r5, 0x47bc, 0x0, 0x0, 0x0, 0x0)
sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000129bd7000fedbdf250300000005000400020000000900010073797a31000000000900010073797a30000000000900030073797a300000000014000200776730000000000000000000000000000500040002000000dc71203f3ca153d1e24772fd232f77af50570f"], 0x5c}, 0x1, 0x0, 0x0, 0x20004000}, 0x2000c000)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000500)={[{@jqfmt_vfsv1}, {}, {@barrier_val}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@block_validity}, {@acl}, {@noinit_itable}]}, 0xfc, 0x58f, &(0x7f0000000cc0)="$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")
unlink(&(0x7f0000000180)='./file1\x00')

1.423570597s ago: executing program 0 (id=1263):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fffffff, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = creat(&(0x7f0000000300)='./file0\x00', 0xe5)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r2, &(0x7f0000001880)="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", 0x45c)
r4 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r3, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r4, 0x0, 0x0}, 0x10)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r5)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r7=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}], 0x1, &(0x7f00000000c0)=[@sndinfo={0x20, 0x84, 0x2, {0xa, 0x4, 0x28, 0x200000b, r7}}], 0x20, 0x2400e044}, 0x0)

1.152814431s ago: executing program 2 (id=1268):
bind$qrtr(0xffffffffffffffff, &(0x7f0000000500)={0x2a, 0x1, 0x7ffe}, 0xc)

1.077647683s ago: executing program 2 (id=1269):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143441, 0x98)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
mount(0x0, &(0x7f0000000300)='./file1\x00', &(0x7f00000003c0)='ramfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000180), 0x1, 0x512, &(0x7f0000000c40)="$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")

1.071052433s ago: executing program 1 (id=1270):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./bus\x00', 0x101042, 0xa)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="24000000200099f0000000000000000002", 0x11)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="021380ee02"], 0x10}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0xffffffffa0018000, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020300090c00000000420b00000000000200130002000000000000000000001f0300060000000051020049e4f0000001c99a00000000000002000100002000100000000200000000030005"], 0x60}}, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r2, &(0x7f0000000180), 0x32bc45944b084a6, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x9, 0xc, &(0x7f0000000100)=ANY=[@ANYRES16=r0, @ANYRESOCT=0x0, @ANYRES64=r0, @ANYRESOCT=r0], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r3}, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0/../file0\x00', 0xffffffffffffffff, 0x1000, 0x1})
io_uring_enter(0xffffffffffffffff, 0x22e0, 0xaddf, 0x2, 0x0, 0x0)

918.895705ms ago: executing program 2 (id=1271):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYRES64], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000002880)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000700), &(0x7f00000000c0), 0xff, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0500000004000000032000000c"], 0x50)
r3 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fc, 0x301)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000080)={'tunl0\x00', &(0x7f0000000580)={'gre0\x00', <r5=>0x0, 0x8, 0x83c7, 0xa1, 0x9, {{0x1b, 0x4, 0x2, 0x5, 0x6c, 0x66, 0x0, 0xe, 0x29, 0x0, @remote, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@generic={0x44, 0x5, "9daf89"}, @timestamp_prespec={0x44, 0xc, 0xaf, 0x3, 0x6, [{@loopback, 0x5}]}, @timestamp_addr={0x44, 0x2c, 0x59, 0x1, 0x6, [{@dev={0xac, 0x14, 0x14, 0x30}, 0x7729}, {@private=0xa010100, 0x7}, {@multicast2, 0x3}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x7}, {@local, 0x4}]}, @generic={0x83, 0x4, "da0e"}, @timestamp={0x44, 0x14, 0x7f, 0x0, 0x6, [0x6, 0x7f, 0xa96, 0x2]}]}}}}})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r5, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6, 0x0, 0xfffffffffffffffe}, 0x18)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r7, 0x0)
r8 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r7, &(0x7f00000006c0)={0x10000000})
ioctl$USBDEVFS_REAPURB(r3, 0x4008550c, &(0x7f0000000180))
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0x4, 0x40, &(0x7f0000000000)={0x4b5a9da54893e123, 0x14, 0x8, 0x2}, 0x8, 0x7, 0x200, 0x0, 0x0, 0x20000, 0x0})
ioperm(0x0, 0x2, 0x7e)
seccomp$SECCOMP_SET_MODE_FILTER(0xffffc90000000000, 0x4, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000540)={{r2}, &(0x7f00000003c0), &(0x7f0000000500)='%ps    \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r9}, 0x10)
prlimit64(0x0, 0x9, &(0x7f0000000d80)={0x3, 0x1c88000000}, 0x0)
ioperm(0x7fffffff, 0x101, 0x10001)
io_setup(0xffff, &(0x7f0000001080))

918.161086ms ago: executing program 1 (id=1281):
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x801, @void, @value}, 0x94)
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r1 = dup2(r0, r0)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
shutdown(r2, 0x1)
setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f0000000040)=0x1, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200e2f7ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x15, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
renameat2(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0xffffffffffffffff, &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00'], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
sendto$inet6(r4, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3}, 0x3}, 0x1c)

873.621236ms ago: executing program 3 (id=1272):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000040000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000e41621eb70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)

866.856706ms ago: executing program 3 (id=1273):
r0 = socket(0x10, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000340)=@gcm_128={{0x304}, "a6341a1a379332f5", "1fd33cb95d66a1781f31bf07fd2ae874", "62266bd8", "d1b29b99d21d88a2"}, 0x28)
write$binfmt_script(r1, &(0x7f0000000780)={'#! ', './file0'}, 0xb)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
close_range(r0, r1, 0x0)

831.225817ms ago: executing program 1 (id=1274):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./bus\x00', 0x101042, 0xa)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="24000000200099f0000000000000000002", 0x11)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="021380ee02"], 0x10}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0xffffffffa0018000, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020300090c00000000420b00000000000200130002000000000000000000001f0300060000000051020049e4f0000001c99a00000000000002000100002000100000000200000000030005"], 0x60}}, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r2, &(0x7f0000000180), 0x32bc45944b084a6, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x9, 0xc, &(0x7f0000000100)=ANY=[@ANYRES16=r0, @ANYRESOCT=0x0, @ANYRES64=r0, @ANYRESOCT=r0], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r3}, 0x10)
r4 = syz_io_uring_setup(0x10a, &(0x7f0000000140)={0x0, 0x9381, 0x80, 0x7ffff, 0x2000088}, &(0x7f00000004c0)=<r5=>0x0, &(0x7f0000000200)=<r6=>0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0/../file0\x00', 0xffffffffffffffff, 0x1000, 0x1})
io_uring_enter(r4, 0x22e0, 0xaddf, 0x2, 0x0, 0x0)

819.746687ms ago: executing program 3 (id=1275):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x780, 0x144)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)

780.558517ms ago: executing program 1 (id=1276):
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x801, @void, @value}, 0x94)
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r1 = dup2(r0, r0)
write$tun(r1, 0x0, 0x46)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r2, &(0x7f00000025c0)=[{{&(0x7f0000000000)={0xa, 0x4a22, 0x0, @private1={0xfc, 0x1, '\x00', 0x3}}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000040)='P', 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r2, 0x1)
r3 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r4=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={r4, 0x5}, 0x8)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r1, 0x84, 0x5, &(0x7f0000000000)={r4, @in6={{0xa, 0x4e21, 0xffffffff, @private1={0xfc, 0x1, '\x00', 0x1}, 0x7}}}, 0x84)
setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f0000000040)=0x1, 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200e2f7ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x15, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
renameat2(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0xffffffffffffffff, &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00'], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3}, 0x3}, 0x1c)

779.677037ms ago: executing program 3 (id=1277):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x2d)
r7 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x1e, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x50, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r7, &(0x7f0000000240)='asymmetric\x00', 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000200)={'geneve0\x00'})
ioctl$sock_SIOCBRDELBR(r9, 0x89a2, &(0x7f0000000200)='bridge0\x00')

464.093102ms ago: executing program 2 (id=1278):
r0 = socket(0x10, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000340)=@gcm_128={{0x304}, "a6341a1a379332f5", "1fd33cb95d66a1781f31bf07fd2ae874", "62266bd8", "d1b29b99d21d88a2"}, 0x28)
write$binfmt_script(r1, &(0x7f0000000780)={'#! ', './file0'}, 0xb)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
close_range(r0, r1, 0x0)

366.506464ms ago: executing program 1 (id=1279):
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x801, @void, @value}, 0x94)
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r1 = dup2(r0, r0)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
shutdown(r2, 0x1)
setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f0000000040)=0x1, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200e2f7ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x15, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
renameat2(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0xffffffffffffffff, &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00'], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
sendto$inet6(r4, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3}, 0x3}, 0x1c)

240.695806ms ago: executing program 2 (id=1280):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
bind$qrtr(r0, 0x0, 0x0)

117.087268ms ago: executing program 0 (id=1282):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./bus\x00', 0x101042, 0xa)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="24000000200099f0000000000000000002", 0x11)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="021380ee02"], 0x10}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0xffffffffa0018000, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020300090c00000000420b00000000000200130002000000000000000000001f0300060000000051020049e4f0000001c99a00000000000002000100002000100000000200000000030005"], 0x60}}, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r2, &(0x7f0000000180), 0x32bc45944b084a6, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x9, 0xc, &(0x7f0000000100)=ANY=[@ANYRES16=r0, @ANYRESOCT=0x0, @ANYRES64=r0, @ANYRESOCT=r0], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r3}, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0/../file0\x00', 0xffffffffffffffff, 0x1000, 0x1})
io_uring_enter(0xffffffffffffffff, 0x22e0, 0xaddf, 0x2, 0x0, 0x0)

116.461938ms ago: executing program 1 (id=1283):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143441, 0x98)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
mount(0x0, &(0x7f0000000300)='./file1\x00', &(0x7f00000003c0)='ramfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000180), 0x1, 0x512, &(0x7f0000000c40)="$eJzs3W1rZFcdAPD/vcmk2d3UTFVkLdgWW9ktujNJY9so0lYQfVVQ6/s1JpMQMsmEzKRuQtEsfgBBRAU/gG8EP4Ag+xFEWND3oqKI7upL3St35kbzMJMMySSzTn4/OJlz7sP5n3PJ3LkPh3sDuLJeioh3ImIsIl6NiOlielqk2OukfLnHjz5YzFMSWfbe35JIimn7deXl8Yi4Uaw2GRFf/0rEt5LjcZs7u2sL9XptqyhXW+ub1ebO7p3V9YWV2kptY25u9o35N+dfn5/JCufqZzki3vrSn370/Z99+a1ffebbv7/7l9vfyZv1hY912h0Ri+cK0EOn7lJ7W+zLt9HWRQQbkrw/pbFhtwIAgH7kx/gfjohPto//p2OsfTQHAAAAjJLs7an4VxKRAQAAACMrjYipSNJKMRZgKtK0UumM4f1oXE/rjWbr08uN7Y2lfF5EOUrp8mq9NlOMFS5HKcnLs8UY2/3ya0fKcxHxXET8cPpau1xZbNSXhn3xAwAAAK6IGy8ePv//53TazgMAAAAjptyzAAAAAIwKp/wAAAAw+pz/AwAAwEj76rvv5inbf4/30vs722uN9+8s1ZprlfXtxcpiY2uzstJorLSf2bd+Wn31RmPzs7Gxfa/aqjVb1ebO7t31xvZG6+7qoVdgAwAAAJfouRcf/C6JiL3PX2unKJ4DCHDIH4fdAGCQxobdAGBoxofdAGBoSqcuYQ8Boy45Zf7xwTuda4Xx64tpDwAAMHi3Pn78/v9EMe/0awPA/zNjfQDg6nF3D66u0llHAN4cdEuAYflQ5+OZXvN7Pryjj/v/nWsMWXamhgEAAAMz1U5JWimO06ciTSuViGfbrwUoJcur9dpMcX7w2+nSM3l5tr1mcuqYYQAAAAAAAAAAAAAAAAAAAAAAAACgI8uSyAAAAICRFpH+OWk/zT/i1vQrU4evDhx569dP3/vxvYVWa2s2YiL5+3Q+aSIiWj8ppr+WeSUAAAAAPAU65+nF5+ywWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAqHn86IPF/XSZcf/6xYgod4s/HpPtz8koRcT1fyQxfmC9JCLGBhB/735E3OwWP4knWZaVi1Z0i3/tguOX25ume/w0Im4MID5cZQ/y/c873b5/abzU/uz+/Rsv0nn13v+l/93/jfXY/zx7pNzL8w9/Ue0Z/37E8+Pd9z/78ZNO/EMh8sLLffbxm9/Y3e0640CV3eIfjFVtrW9Wmzu7d1bXF1ZqK7WNubnZN+bfnH99fqa6vFqvFX+7hvnBJ3755KT+X+8Rv3y4/8e2/yt99T6Lfz+89+gjnUKpW/zbL3f//b3ZI35a/PZ9qsjn82/t5/c6+YNe+PlvXjip/0s9+j95Sv9v99X/+NyrX/veH7rOObY1AIDL0NzZXVuo12tbJ2Qm+1jmkjNvPx3NGGAmno5mDCuTfbfz/3i+es65+rFMdp7Vx2MAzZg49j0di7NWmETs5XX1+Q8JAACMmP8d9J90BwkAAAAAAAAAAAAAAAAAAAC4SGd8LNlkRPS98NGYe8PpKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAif4TAAD//4RX0Xo=")

57.669049ms ago: executing program 2 (id=1284):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000040000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000e41621eb70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)

44.272829ms ago: executing program 0 (id=1285):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a38500000070000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$chown(0x4, r1, 0xee00, 0x0)

0s ago: executing program 0 (id=1286):
socket$kcm(0x2, 0xa, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000240), &(0x7f00000003c0)=r5}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r4, r1, 0x25, 0x2, @void}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000340)={@random="6ea88d319b8c", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x43, 0x4e22, 0x8}}}}}, 0x0)

kernel console output (not intermixed with test programs):

 unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.475663][   T29] audit: type=1400 audit(1745383849.614:1483): avc:  denied  { bind } for  pid=5265 comm="syz.1.511" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   69.495082][   T29] audit: type=1400 audit(1745383849.614:1484): avc:  denied  { name_bind } for  pid=5265 comm="syz.1.511" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[   69.515920][   T29] audit: type=1400 audit(1745383849.614:1485): avc:  denied  { node_bind } for  pid=5265 comm="syz.1.511" saddr=ff02::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[   69.567328][ T5266] tap0: tun_chr_ioctl cmd 1074812118
[   69.576491][ T5282] loop0: detected capacity change from 0 to 512
[   69.594055][ T5282] journal_path: Non-blockdev passed as './bus'
[   69.600328][ T5282] EXT4-fs: error: could not find journal device path
[   69.664051][ T5277] siw: device registration error -23
[   69.677773][ T5286] loop3: detected capacity change from 0 to 512
[   69.686818][ T5277] loop5: detected capacity change from 0 to 512
[   69.690430][ T5286] journal_path: Non-blockdev passed as './bus'
[   69.699336][ T5286] EXT4-fs: error: could not find journal device path
[   69.703485][ T5277] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   69.811295][ T5277] EXT4-fs (loop5): 1 truncate cleaned up
[   69.817408][ T5277] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.848088][ T5296] loop3: detected capacity change from 0 to 1024
[   69.888212][ T5298] loop0: detected capacity change from 0 to 512
[   70.022655][ T5276] netlink: 596 bytes leftover after parsing attributes in process `syz.2.515'.
[   70.032734][ T5276] dccp_invalid_packet: P.Data Offset(0) too small
[   70.085391][ T5298] EXT4-fs (loop0): 1 orphan inode deleted
[   70.092836][ T5298] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.213476][ T5298] ext4 filesystem being mounted at /45/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.279196][ T5277] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.496710][ T3396] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[   70.536831][ T5298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.999295][ T5342] netlink: 'syz.3.532': attribute type 1 has an invalid length.
[   71.085012][ T5340] loop0: detected capacity change from 0 to 512
[   71.131931][ T5340] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   71.368427][ T5340] EXT4-fs (loop0): 1 truncate cleaned up
[   71.844090][ T5373] netlink: 4 bytes leftover after parsing attributes in process `syz.3.539'.
[   71.857509][ T5340] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.869812][ T5373] bond0: (slave bond_slave_0): Releasing backup interface
[   71.892792][ T5340] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.984454][ T5379] FAULT_INJECTION: forcing a failure.
[   71.984454][ T5379] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.997668][ T5379] CPU: 1 UID: 0 PID: 5379 Comm: syz.1.541 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   71.997697][ T5379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   71.997709][ T5379] Call Trace:
[   71.997716][ T5379]  <TASK>
[   71.997725][ T5379]  dump_stack_lvl+0xf6/0x150
[   71.997752][ T5379]  dump_stack+0x15/0x1a
[   71.997796][ T5379]  should_fail_ex+0x261/0x270
[   71.997824][ T5379]  should_fail+0xb/0x10
[   71.997848][ T5379]  should_fail_usercopy+0x1a/0x20
[   71.997873][ T5379]  _copy_from_iter+0xd8/0xd10
[   71.997899][ T5379]  ? kmalloc_reserve+0x16e/0x190
[   71.997933][ T5379]  ? __build_skb_around+0x199/0x1f0
[   71.997952][ T5379]  ? __alloc_skb+0x227/0x320
[   71.997969][ T5379]  ? __virt_addr_valid+0x1ed/0x250
[   71.998025][ T5379]  ? __check_object_size+0x367/0x510
[   71.998057][ T5379]  netlink_sendmsg+0x492/0x720
[   71.998082][ T5379]  ? __pfx_netlink_sendmsg+0x10/0x10
[   71.998102][ T5379]  __sock_sendmsg+0x140/0x180
[   71.998198][ T5379]  ____sys_sendmsg+0x350/0x4e0
[   71.998242][ T5379]  __sys_sendmsg+0x1a0/0x240
[   71.998282][ T5379]  __x64_sys_sendmsg+0x46/0x50
[   71.998305][ T5379]  x64_sys_call+0x26f3/0x2e10
[   71.998410][ T5379]  do_syscall_64+0xc9/0x1a0
[   71.998435][ T5379]  ? clear_bhb_loop+0x25/0x80
[   71.998457][ T5379]  ? clear_bhb_loop+0x25/0x80
[   71.998478][ T5379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.998549][ T5379] RIP: 0033:0x7f8d3755e169
[   71.998563][ T5379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.998606][ T5379] RSP: 002b:00007f8d35bc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   71.998623][ T5379] RAX: ffffffffffffffda RBX: 00007f8d37785fa0 RCX: 00007f8d3755e169
[   71.998635][ T5379] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[   71.998646][ T5379] RBP: 00007f8d35bc7090 R08: 0000000000000000 R09: 0000000000000000
[   71.998657][ T5379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.998668][ T5379] R13: 0000000000000000 R14: 00007f8d37785fa0 R15: 00007ffe8efc5978
[   71.998736][ T5379]  </TASK>
[   72.700500][ T5407] FAULT_INJECTION: forcing a failure.
[   72.700500][ T5407] name failslab, interval 1, probability 0, space 0, times 0
[   72.713298][ T5407] CPU: 0 UID: 0 PID: 5407 Comm: syz.3.550 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   72.713341][ T5407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   72.713398][ T5407] Call Trace:
[   72.713405][ T5407]  <TASK>
[   72.713412][ T5407]  dump_stack_lvl+0xf6/0x150
[   72.713439][ T5407]  dump_stack+0x15/0x1a
[   72.713502][ T5407]  should_fail_ex+0x261/0x270
[   72.713529][ T5407]  should_failslab+0x8f/0xb0
[   72.713555][ T5407]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   72.713639][ T5407]  ? __alloc_skb+0x10d/0x320
[   72.713663][ T5407]  __alloc_skb+0x10d/0x320
[   72.713686][ T5407]  pfkey_sendmsg+0x825/0x950
[   72.713736][ T5407]  ? __pfx_pfkey_sendmsg+0x10/0x10
[   72.713843][ T5407]  __sock_sendmsg+0x140/0x180
[   72.713879][ T5407]  ____sys_sendmsg+0x350/0x4e0
[   72.713924][ T5407]  __sys_sendmsg+0x1a0/0x240
[   72.713969][ T5407]  __x64_sys_sendmsg+0x46/0x50
[   72.713994][ T5407]  x64_sys_call+0x26f3/0x2e10
[   72.714068][ T5407]  do_syscall_64+0xc9/0x1a0
[   72.714123][ T5407]  ? clear_bhb_loop+0x25/0x80
[   72.714147][ T5407]  ? clear_bhb_loop+0x25/0x80
[   72.714237][ T5407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.714284][ T5407] RIP: 0033:0x7f7fac8fe169
[   72.714301][ T5407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.714336][ T5407] RSP: 002b:00007f7faaf67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   72.714362][ T5407] RAX: ffffffffffffffda RBX: 00007f7facb25fa0 RCX: 00007f7fac8fe169
[   72.714373][ T5407] RDX: 0000000000000040 RSI: 00002000000007c0 RDI: 0000000000000004
[   72.714384][ T5407] RBP: 00007f7faaf67090 R08: 0000000000000000 R09: 0000000000000000
[   72.714397][ T5407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.714411][ T5407] R13: 0000000000000000 R14: 00007f7facb25fa0 R15: 00007ffe76736ab8
[   72.714433][ T5407]  </TASK>
[   72.787984][ T5412] loop2: detected capacity change from 0 to 512
[   72.808478][ T5414] loop0: detected capacity change from 0 to 512
[   72.816211][ T5412] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   73.007549][ T5416] bridge0: port 3(geneve0) entered blocking state
[   73.014218][ T5416] bridge0: port 3(geneve0) entered disabled state
[   73.020964][ T5416] geneve0: entered allmulticast mode
[   73.027165][ T5416] geneve0: entered promiscuous mode
[   73.032752][ T5416] bridge0: port 3(geneve0) entered blocking state
[   73.039196][ T5416] bridge0: port 3(geneve0) entered forwarding state
[   73.204386][ T5420] loop3: detected capacity change from 0 to 512
[   73.212988][ T5420] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   73.238292][ T5412] EXT4-fs (loop2): 1 truncate cleaned up
[   73.246145][ T5420] EXT4-fs (loop3): 1 truncate cleaned up
[   73.253142][ T5420] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.275543][ T5412] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.301996][ T5414] EXT4-fs (loop0): 1 orphan inode deleted
[   73.310637][ T5414] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.323453][  T126] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[   73.335751][ T5414] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.341706][ T5412] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.347012][ T5420] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.371012][ T5414] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.595642][ T5454] netlink: 60 bytes leftover after parsing attributes in process `syz.2.566'.
[   73.628041][ T5457] loop3: detected capacity change from 0 to 512
[   73.646453][ T5457] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   73.682931][ T5466] netlink: 'syz.0.568': attribute type 1 has an invalid length.
[   73.696590][ T5457] EXT4-fs (loop3): 1 truncate cleaned up
[   73.719003][ T5472] loop5: detected capacity change from 0 to 128
[   73.730460][ T5457] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.743818][ T5472] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[   73.755186][ T5457] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.772974][ T5469] pim6reg1: entered promiscuous mode
[   73.778310][ T5469] pim6reg1: entered allmulticast mode
[   73.879904][   T29] kauditd_printk_skb: 155 callbacks suppressed
[   73.886405][   T29] audit: type=1400 audit(1745383854.014:1639): avc:  denied  { unmount } for  pid=4719 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   73.906970][ T3396] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[   73.917121][   T29] audit: type=1400 audit(1745383854.024:1640): avc:  denied  { read } for  pid=2985 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   73.939236][   T29] audit: type=1400 audit(1745383854.024:1641): avc:  denied  { search } for  pid=2985 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   73.961038][   T29] audit: type=1400 audit(1745383854.024:1642): avc:  denied  { open } for  pid=2985 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   73.983695][   T29] audit: type=1400 audit(1745383854.024:1643): avc:  denied  { getattr } for  pid=2985 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   74.053718][ T5479] loop2: detected capacity change from 0 to 512
[   74.070801][ T5477] loop5: detected capacity change from 0 to 4096
[   74.100587][ T5477] EXT4-fs: Ignoring removed nomblk_io_submit option
[   74.118930][ T5479] EXT4-fs (loop2): 1 orphan inode deleted
[   74.127469][ T5479] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.150162][ T3396] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   74.154701][ T5479] ext4 filesystem being mounted at /125/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.160043][ T3396] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[   74.172134][   T29] audit: type=1400 audit(1745383854.184:1644): avc:  denied  { mounton } for  pid=5478 comm="syz.2.572" path="/125/file1" dev="tmpfs" ino=702 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   74.204510][   T29] audit: type=1400 audit(1745383854.184:1645): avc:  denied  { mount } for  pid=5478 comm="syz.2.572" name="/" dev="ramfs" ino=11901 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   74.255936][ T5477] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.269210][ T5479] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.316397][   T29] audit: type=1400 audit(1745383854.454:1646): avc:  denied  { append } for  pid=5475 comm="syz.5.571" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   74.322568][ T5477] Quota error (device loop5): do_check_range: Getting dqdh_prev_free 16715264 out of range 0-8
[   74.413568][ T5483] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   74.434496][ T5477] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.571: Failed to acquire dquot type 0
[   74.495440][ T5487] loop0: detected capacity change from 0 to 512
[   74.504647][ T5487] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   74.527019][ T5487] EXT4-fs (loop0): 1 truncate cleaned up
[   74.542593][ T4719] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.542792][ T5487] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.593021][ T5487] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.626447][ T5496] netlink: 60 bytes leftover after parsing attributes in process `syz.1.579'.
[   74.707073][ T5501] loop0: detected capacity change from 0 to 512
[   74.733843][ T5501] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   74.968039][ T5530] FAULT_INJECTION: forcing a failure.
[   74.968039][ T5530] name failslab, interval 1, probability 0, space 0, times 0
[   74.980845][ T5530] CPU: 0 UID: 0 PID: 5530 Comm: syz.1.591 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   74.980881][ T5530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   74.980893][ T5530] Call Trace:
[   74.980899][ T5530]  <TASK>
[   74.980906][ T5530]  dump_stack_lvl+0xf6/0x150
[   74.980929][ T5530]  dump_stack+0x15/0x1a
[   74.980963][ T5530]  should_fail_ex+0x261/0x270
[   74.980988][ T5530]  should_failslab+0x8f/0xb0
[   74.981008][ T5530]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   74.981044][ T5530]  ? dup_task_struct+0x6e/0x6e0
[   74.981071][ T5530]  dup_task_struct+0x6e/0x6e0
[   74.981158][ T5530]  ? kstrtoull+0x115/0x140
[   74.981184][ T5530]  copy_process+0x39e/0x1f60
[   74.981213][ T5530]  ? __rcu_read_unlock+0x4e/0x70
[   74.981307][ T5530]  kernel_clone+0x168/0x5d0
[   74.981340][ T5530]  __x64_sys_clone+0xe9/0x120
[   74.981379][ T5530]  x64_sys_call+0x2dc9/0x2e10
[   74.981404][ T5530]  do_syscall_64+0xc9/0x1a0
[   74.981428][ T5530]  ? clear_bhb_loop+0x25/0x80
[   74.981457][ T5530]  ? clear_bhb_loop+0x25/0x80
[   74.981480][ T5530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.981504][ T5530] RIP: 0033:0x7f8d3755e169
[   74.981518][ T5530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.981535][ T5530] RSP: 002b:00007f8d35bc6fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   74.981673][ T5530] RAX: ffffffffffffffda RBX: 00007f8d37785fa0 RCX: 00007f8d3755e169
[   74.981688][ T5530] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000640c7000
[   74.981777][ T5530] RBP: 00007f8d35bc7090 R08: 0000000000000000 R09: 0000000000000000
[   74.981791][ T5530] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   74.981805][ T5530] R13: 0000000000000000 R14: 00007f8d37785fa0 R15: 00007ffe8efc5978
[   74.981827][ T5530]  </TASK>
[   75.202492][ T5529] loop5: detected capacity change from 0 to 2048
[   75.238772][ T5539] netlink: 60 bytes leftover after parsing attributes in process `syz.1.594'.
[   75.249046][ T5529] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.270268][ T5529] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.343966][ T5541] loop1: detected capacity change from 0 to 512
[   75.375683][ T5541] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   75.430492][ T5541] EXT4-fs (loop1): 1 truncate cleaned up
[   75.469267][ T5541] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.498174][ T5541] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.530291][ T5542] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm +}[@: bg 0: block 345: padding at end of block bitmap is not set
[   75.565852][ T5542] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117
[   75.578486][ T5542] EXT4-fs (loop5): This should not happen!! Data will be lost
[   75.578486][ T5542] 
[   75.596302][   T31] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 256 with max blocks 2048 with error 117
[   75.609042][   T31] EXT4-fs (loop5): This should not happen!! Data will be lost
[   75.609042][   T31] 
[   75.681944][   T31] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2305 with max blocks 1800 with error 28
[   75.694906][   T31] EXT4-fs (loop5): This should not happen!! Data will be lost
[   75.694906][   T31] 
[   75.705457][   T31] EXT4-fs (loop5): Total free blocks count 0
[   75.711516][   T31] EXT4-fs (loop5): Free/Dirty block details
[   75.717514][   T31] EXT4-fs (loop5): free_blocks=0
[   75.946456][ T5573] loop2: detected capacity change from 0 to 512
[   75.955884][ T5576] loop5: detected capacity change from 0 to 128
[   75.997758][ T5575] loop0: detected capacity change from 0 to 512
[   76.005258][ T5575] journal_path: Non-blockdev passed as './bus'
[   76.011473][ T5575] EXT4-fs: error: could not find journal device path
[   76.144749][ T5573] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.237594][ T5573] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.324719][ T5585] syz.5.605: attempt to access beyond end of device
[   76.324719][ T5585] loop5: rw=2049, sector=153, nr_sectors = 8 limit=128
[   76.361734][ T5585] syz.5.605: attempt to access beyond end of device
[   76.361734][ T5585] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[   76.382525][ T5591] loop0: detected capacity change from 0 to 512
[   76.389400][ T5585] syz.5.605: attempt to access beyond end of device
[   76.389400][ T5585] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[   76.403629][ T5585] syz.5.605: attempt to access beyond end of device
[   76.403629][ T5585] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[   76.420593][ T5585] syz.5.605: attempt to access beyond end of device
[   76.420593][ T5585] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[   76.435141][ T5585] syz.5.605: attempt to access beyond end of device
[   76.435141][ T5585] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[   76.455317][ T5591] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.471815][ T5591] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.482574][ T5585] syz.5.605: attempt to access beyond end of device
[   76.482574][ T5585] loop5: rw=2049, sector=249, nr_sectors = 8 limit=128
[   76.498539][ T5585] syz.5.605: attempt to access beyond end of device
[   76.498539][ T5585] loop5: rw=2049, sector=265, nr_sectors = 8 limit=128
[   76.520260][ T5585] syz.5.605: attempt to access beyond end of device
[   76.520260][ T5585] loop5: rw=2049, sector=281, nr_sectors = 8 limit=128
[   76.523400][ T5591] EXT4-fs (loop0): shut down requested (0)
[   76.533812][ T5585] syz.5.605: attempt to access beyond end of device
[   76.533812][ T5585] loop5: rw=2049, sector=297, nr_sectors = 8 limit=128
[   76.552995][ T5585] Buffer I/O error on dev loop5, logical block 353, lost async page write
[   76.561727][ T5585] Buffer I/O error on dev loop5, logical block 354, lost async page write
[   76.572583][ T5585] Buffer I/O error on dev loop5, logical block 355, lost async page write
[   76.577844][ T5591] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   76.581278][ T5585] Buffer I/O error on dev loop5, logical block 356, lost async page write
[   76.600740][ T5591] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   76.611449][ T5585] Buffer I/O error on dev loop5, logical block 357, lost async page write
[   76.625058][ T5585] Buffer I/O error on dev loop5, logical block 358, lost async page write
[   76.635698][ T5585] Buffer I/O error on dev loop5, logical block 359, lost async page write
[   76.699512][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.724847][ T4288] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.866546][ T5636] loop1: detected capacity change from 0 to 512
[   76.876112][ T5636] journal_path: Non-blockdev passed as './bus'
[   76.882386][ T5636] EXT4-fs: error: could not find journal device path
[   76.932672][ T5641] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[   76.982101][ T5641] SELinux: failed to load policy
[   76.983549][ T5647] netlink: 'syz.0.626': attribute type 2 has an invalid length.
[   76.994814][ T5647] netlink: 'syz.0.626': attribute type 1 has an invalid length.
[   77.002642][ T5647] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.626'.
[   77.243650][ T5682] loop5: detected capacity change from 0 to 512
[   77.282856][ T5682] EXT4-fs (loop5): 1 orphan inode deleted
[   77.294182][ T5688] loop2: detected capacity change from 0 to 512
[   77.300342][ T5682] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.319912][ T5688] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   77.330480][   T31] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[   77.359477][ T5688] EXT4-fs (loop2): 1 truncate cleaned up
[   77.367013][ T5682] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.381572][ T5688] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.394597][ T5695] openvswitch: netlink: Message has 6 unknown bytes.
[   77.405347][ T5682] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.428572][ T5688] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.567634][ T5709] loop0: detected capacity change from 0 to 512
[   77.604197][ T5709] EXT4-fs (loop0): 1 orphan inode deleted
[   77.617984][ T5709] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.630964][  T126] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[   77.649944][ T5709] ext4 filesystem being mounted at /72/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.662108][ T5709] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.755399][ T5737] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[   77.776545][ T5737] SELinux: failed to load policy
[   78.063075][ T5772] netlink: 96 bytes leftover after parsing attributes in process `syz.5.652'.
[   78.074538][ T5774] loop0: detected capacity change from 0 to 512
[   78.297578][ T5774] EXT4-fs (loop0): 1 orphan inode deleted
[   78.326396][ T5774] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.397432][ T5774] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.478713][   T31] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[   78.522668][ T5774] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.564849][ T5803] loop3: detected capacity change from 0 to 512
[   78.573273][ T5803] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   78.604068][ T5810] loop0: detected capacity change from 0 to 512
[   78.611833][ T5803] EXT4-fs (loop3): 1 truncate cleaned up
[   78.618215][ T5803] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.623339][ T5811] netlink: 60 bytes leftover after parsing attributes in process `syz.2.658'.
[   78.630723][ T5810] journal_path: Non-blockdev passed as './bus'
[   78.642612][ T5805] netlink: 60 bytes leftover after parsing attributes in process `syz.2.658'.
[   78.645328][ T5810] EXT4-fs: error: could not find journal device path
[   78.681812][ T5803] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.823250][ T5836] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[   78.892512][ T5846] loop3: detected capacity change from 0 to 512
[   78.893950][ T5836] SELinux: failed to load policy
[   78.905975][ T5846] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   78.953472][ T5852] loop2: detected capacity change from 0 to 512
[   78.992245][ T5846] EXT4-fs (loop3): 1 truncate cleaned up
[   78.998374][ T5846] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.018319][ T5852] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   79.037995][ T5852] EXT4-fs (loop2): 1 truncate cleaned up
[   79.041617][ T5855] loop5: detected capacity change from 0 to 512
[   79.050642][ T5846] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.060406][ T5852] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.076883][ T5850] siw: device registration error -23
[   79.086257][ T5855] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   79.113892][ T5852] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.161377][ T5855] EXT4-fs (loop5): 1 truncate cleaned up
[   79.204926][ T5855] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.229735][   T29] kauditd_printk_skb: 174 callbacks suppressed
[   79.229751][   T29] audit: type=1400 audit(1745383859.364:1817): avc:  denied  { read write } for  pid=5869 comm="syz.3.671" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   79.283465][ T5855] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.297550][ T5870] FAULT_INJECTION: forcing a failure.
[   79.297550][ T5870] name failslab, interval 1, probability 0, space 0, times 0
[   79.310241][ T5870] CPU: 0 UID: 0 PID: 5870 Comm: syz.3.671 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   79.310326][ T5870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   79.310341][ T5870] Call Trace:
[   79.310349][ T5870]  <TASK>
[   79.310358][ T5870]  dump_stack_lvl+0xf6/0x150
[   79.310416][ T5870]  dump_stack+0x15/0x1a
[   79.310436][ T5870]  should_fail_ex+0x261/0x270
[   79.310464][ T5870]  should_failslab+0x8f/0xb0
[   79.310488][ T5870]  __kmalloc_cache_noprof+0x55/0x320
[   79.310524][ T5870]  ? alloc_netdev_mqs+0x843/0xac0
[   79.310554][ T5870]  alloc_netdev_mqs+0x843/0xac0
[   79.310664][ T5870]  rtnl_create_link+0x232/0x720
[   79.310692][ T5870]  rtnl_newlink_create+0x14f/0x640
[   79.310786][ T5870]  ? security_capable+0x81/0x90
[   79.310874][ T5870]  ? netlink_ns_capable+0x88/0xa0
[   79.310914][ T5870]  rtnl_newlink+0xf38/0x12d0
[   79.310956][ T5870]  ? xa_load+0xbd/0xe0
[   79.310989][ T5870]  ? __memcg_slab_free_hook+0xc9/0x1e0
[   79.311044][ T5870]  ? mod_objcg_state+0x3f6/0x530
[   79.311078][ T5870]  ? __rcu_read_unlock+0x4e/0x70
[   79.311102][ T5870]  ? avc_has_perm_noaudit+0x1cc/0x210
[   79.311172][ T5870]  ? selinux_capable+0x1f9/0x260
[   79.311205][ T5870]  ? security_capable+0x81/0x90
[   79.311225][ T5870]  ? ns_capable+0x7d/0xb0
[   79.311308][ T5870]  ? __pfx_rtnl_newlink+0x10/0x10
[   79.311344][ T5870]  rtnetlink_rcv_msg+0x65a/0x740
[   79.311378][ T5870]  ? should_fail_ex+0xd7/0x270
[   79.311401][ T5870]  ? ref_tracker_free+0x3b8/0x420
[   79.311425][ T5870]  netlink_rcv_skb+0x12f/0x230
[   79.311450][ T5870]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   79.311494][ T5870]  rtnetlink_rcv+0x1c/0x30
[   79.311523][ T5870]  netlink_unicast+0x605/0x6c0
[   79.311633][ T5870]  netlink_sendmsg+0x609/0x720
[   79.311666][ T5870]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.311690][ T5870]  __sock_sendmsg+0x140/0x180
[   79.311750][ T5870]  ____sys_sendmsg+0x350/0x4e0
[   79.311780][ T5870]  __sys_sendmsg+0x1a0/0x240
[   79.311826][ T5870]  __x64_sys_sendmsg+0x46/0x50
[   79.311853][ T5870]  x64_sys_call+0x26f3/0x2e10
[   79.311876][ T5870]  do_syscall_64+0xc9/0x1a0
[   79.311904][ T5870]  ? clear_bhb_loop+0x25/0x80
[   79.311924][ T5870]  ? clear_bhb_loop+0x25/0x80
[   79.311947][ T5870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.312031][ T5870] RIP: 0033:0x7f7fac8fe169
[   79.312049][ T5870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.312071][ T5870] RSP: 002b:00007f7faaf67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.312088][ T5870] RAX: ffffffffffffffda RBX: 00007f7facb25fa0 RCX: 00007f7fac8fe169
[   79.312100][ T5870] RDX: 0000000000000810 RSI: 0000200000000280 RDI: 0000000000000005
[   79.312111][ T5870] RBP: 00007f7faaf67090 R08: 0000000000000000 R09: 0000000000000000
[   79.312122][ T5870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   79.312185][ T5870] R13: 0000000000000000 R14: 00007f7facb25fa0 R15: 00007ffe76736ab8
[   79.312206][ T5870]  </TASK>
[   79.323223][ T5874] loop1: detected capacity change from 0 to 512
[   79.634722][ T5882] loop0: detected capacity change from 0 to 512
[   79.644902][ T5882] journal_path: Non-blockdev passed as './bus'
[   79.652041][ T5882] EXT4-fs: error: could not find journal device path
[   79.717893][ T5874] EXT4-fs (loop1): 1 orphan inode deleted
[   79.723761][ T5883] netlink: 60 bytes leftover after parsing attributes in process `syz.3.674'.
[   79.733114][ T5881] netlink: 60 bytes leftover after parsing attributes in process `syz.3.674'.
[   79.752441][ T3396] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   79.762241][ T3396] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[   79.819341][ T5874] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.850100][ T5874] ext4 filesystem being mounted at /138/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.920960][ T5874] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.012182][ T5897] loop0: detected capacity change from 0 to 256
[   80.202493][   T29] audit: type=1400 audit(1745383860.344:1818): avc:  denied  { connect } for  pid=5907 comm="syz.5.693" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   80.223090][   T29] audit: type=1400 audit(1745383860.344:1819): avc:  denied  { write } for  pid=5907 comm="syz.5.693" path="socket:[13427]" dev="sockfs" ino=13427 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   80.246596][   T29] audit: type=1400 audit(1745383860.344:1820): avc:  denied  { name_connect } for  pid=5907 comm="syz.5.693" dest=18978 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   80.330334][   T29] audit: type=1400 audit(1745383860.454:1821): avc:  denied  { shutdown } for  pid=5907 comm="syz.5.693" lport=48437 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   80.661843][   T29] audit: type=1400 audit(1745383860.794:1822): avc:  denied  { name_bind } for  pid=5936 comm="syz.2.695" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   80.683735][   T29] audit: type=1400 audit(1745383860.794:1823): avc:  denied  { node_bind } for  pid=5936 comm="syz.2.695" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   80.752333][ T5941] loop3: detected capacity change from 0 to 512
[   80.803362][ T5941] EXT4-fs (loop3): 1 orphan inode deleted
[   80.816365][ T5955] loop1: detected capacity change from 0 to 512
[   80.819933][ T5941] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.836039][ T5955] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   80.837154][ T3396] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   80.855710][ T3396] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[   80.885196][ T5955] EXT4-fs (loop1): 1 truncate cleaned up
[   80.891685][ T5941] ext4 filesystem being mounted at /142/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.918124][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.927898][ T5955] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.972325][   T29] audit: type=1400 audit(1745383861.104:1824): avc:  denied  { accept } for  pid=5951 comm="syz.5.703" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   80.993467][ T5955] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.064835][ T5967] FAULT_INJECTION: forcing a failure.
[   81.064835][ T5967] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   81.077984][ T5967] CPU: 0 UID: 0 PID: 5967 Comm: syz.1.709 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   81.078019][ T5967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   81.078035][ T5967] Call Trace:
[   81.078043][ T5967]  <TASK>
[   81.078050][ T5967]  dump_stack_lvl+0xf6/0x150
[   81.078073][ T5967]  dump_stack+0x15/0x1a
[   81.078090][ T5967]  should_fail_ex+0x261/0x270
[   81.078165][ T5967]  should_fail+0xb/0x10
[   81.078186][ T5967]  should_fail_usercopy+0x1a/0x20
[   81.078216][ T5967]  _copy_from_user+0x1c/0xa0
[   81.078251][ T5967]  move_addr_to_kernel+0x8c/0x130
[   81.078288][ T5967]  copy_msghdr_from_user+0x280/0x2b0
[   81.078336][ T5967]  __sys_sendmsg+0x141/0x240
[   81.078383][ T5967]  __x64_sys_sendmsg+0x46/0x50
[   81.078488][ T5967]  x64_sys_call+0x26f3/0x2e10
[   81.078515][ T5967]  do_syscall_64+0xc9/0x1a0
[   81.078542][ T5967]  ? clear_bhb_loop+0x25/0x80
[   81.078566][ T5967]  ? clear_bhb_loop+0x25/0x80
[   81.078592][ T5967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.078651][ T5967] RIP: 0033:0x7f8d3755e169
[   81.078667][ T5967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.078689][ T5967] RSP: 002b:00007f8d35bc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   81.078711][ T5967] RAX: ffffffffffffffda RBX: 00007f8d37785fa0 RCX: 00007f8d3755e169
[   81.078726][ T5967] RDX: 0000000000000060 RSI: 0000200000000080 RDI: 0000000000000006
[   81.078738][ T5967] RBP: 00007f8d35bc7090 R08: 0000000000000000 R09: 0000000000000000
[   81.078823][ T5967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.078837][ T5967] R13: 0000000000000000 R14: 00007f8d37785fa0 R15: 00007ffe8efc5978
[   81.078860][ T5967]  </TASK>
[   81.105056][ T5968] loop5: detected capacity change from 0 to 512
[   81.229191][ T5975] loop1: detected capacity change from 0 to 512
[   81.231774][ T5968] EXT4-fs: Ignoring removed mblk_io_submit option
[   81.301216][ T5968] EXT4-fs (loop5): failed to initialize system zone (-117)
[   81.309091][ T5968] EXT4-fs (loop5): mount failed
[   81.363102][ T5975] EXT4-fs (loop1): 1 orphan inode deleted
[   81.385204][ T5975] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.398078][ T4295] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[   81.413074][ T5975] ext4 filesystem being mounted at /148/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.429331][ T5987] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   81.479499][ T5996] netlink: 8 bytes leftover after parsing attributes in process `syz.3.715'.
[   81.488491][ T5996] netlink: 8 bytes leftover after parsing attributes in process `syz.3.715'.
[   81.504920][ T6000] loop1: detected capacity change from 0 to 512
[   81.542190][ T6000] journal_path: Non-blockdev passed as './bus'
[   81.548407][ T6000] EXT4-fs: error: could not find journal device path
[   81.709882][ T6016] netlink: 'syz.3.736': attribute type 21 has an invalid length.
[   81.719915][ T6016] netlink: 156 bytes leftover after parsing attributes in process `syz.3.736'.
[   81.729082][ T6016] netlink: 4 bytes leftover after parsing attributes in process `syz.3.736'.
[   82.188706][ T6033] loop2: detected capacity change from 0 to 512
[   82.242321][ T6033] EXT4-fs (loop2): 1 orphan inode deleted
[   82.285974][ T6033] ext4 filesystem being mounted at /156/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.550350][  T126] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[   82.612844][ T6040] loop3: detected capacity change from 0 to 512
[   82.619489][ T6040] journal_path: Non-blockdev passed as './bus'
[   82.625816][ T6040] EXT4-fs: error: could not find journal device path
[   82.756530][ T6061] netlink: 'syz.3.743': attribute type 1 has an invalid length.
[   82.858496][ T6061] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[   82.890975][ T6074] FAULT_INJECTION: forcing a failure.
[   82.890975][ T6074] name failslab, interval 1, probability 0, space 0, times 0
[   82.912203][ T6074] CPU: 1 UID: 0 PID: 6074 Comm: syz.0.747 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   82.912237][ T6074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   82.912252][ T6074] Call Trace:
[   82.912261][ T6074]  <TASK>
[   82.912345][ T6074]  dump_stack_lvl+0xf6/0x150
[   82.912374][ T6074]  dump_stack+0x15/0x1a
[   82.912448][ T6074]  should_fail_ex+0x261/0x270
[   82.912476][ T6074]  should_failslab+0x8f/0xb0
[   82.912503][ T6074]  __kmalloc_node_track_caller_noprof+0xaa/0x410
[   82.912611][ T6074]  ? v9fs_session_init+0x4e/0xdb0
[   82.912692][ T6074]  kstrdup+0x3d/0xd0
[   82.912719][ T6074]  v9fs_session_init+0x4e/0xdb0
[   82.912740][ T6074]  ? obj_cgroup_charge+0xc6/0x170
[   82.912773][ T6074]  ? strcmp+0x21/0x50
[   82.912802][ T6074]  ? should_fail_ex+0xd7/0x270
[   82.912826][ T6074]  ? should_failslab+0x8f/0xb0
[   82.912847][ T6074]  ? __kmalloc_cache_noprof+0x18d/0x320
[   82.912957][ T6074]  ? v9fs_mount+0x56/0x580
[   82.913051][ T6074]  v9fs_mount+0x6c/0x580
[   82.913082][ T6074]  ? __pfx_v9fs_mount+0x10/0x10
[   82.913110][ T6074]  legacy_get_tree+0x77/0xd0
[   82.913150][ T6074]  vfs_get_tree+0x56/0x1e0
[   82.913171][ T6074]  do_new_mount+0x246/0x6b0
[   82.913224][ T6074]  path_mount+0x49b/0xb30
[   82.913339][ T6074]  __se_sys_mount+0x28f/0x2e0
[   82.913367][ T6074]  __x64_sys_mount+0x67/0x80
[   82.913385][ T6074]  x64_sys_call+0xd11/0x2e10
[   82.913405][ T6074]  do_syscall_64+0xc9/0x1a0
[   82.913433][ T6074]  ? clear_bhb_loop+0x25/0x80
[   82.913501][ T6074]  ? clear_bhb_loop+0x25/0x80
[   82.913527][ T6074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.913547][ T6074] RIP: 0033:0x7fcae468e169
[   82.913561][ T6074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.913578][ T6074] RSP: 002b:00007fcae2cf7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   82.913597][ T6074] RAX: ffffffffffffffda RBX: 00007fcae48b5fa0 RCX: 00007fcae468e169
[   82.913668][ T6074] RDX: 00002000000002c0 RSI: 0000200000000280 RDI: 0000200000000100
[   82.913683][ T6074] RBP: 00007fcae2cf7090 R08: 0000200000000300 R09: 0000000000000000
[   82.913698][ T6074] R10: 000000000000008c R11: 0000000000000246 R12: 0000000000000002
[   82.913713][ T6074] R13: 0000000000000000 R14: 00007fcae48b5fa0 R15: 00007ffd5e587b68
[   82.913737][ T6074]  </TASK>
[   83.355314][ T6085] loop1: detected capacity change from 0 to 512
[   83.403793][ T6085] journal_path: Non-blockdev passed as './bus'
[   83.410082][ T6085] EXT4-fs: error: could not find journal device path
[   83.729753][ T6108] netlink: 'syz.2.761': attribute type 1 has an invalid length.
[   83.762823][ T6108] openvswitch: netlink: Message has 6 unknown bytes.
[   83.849066][ T6121] loop0: detected capacity change from 0 to 512
[   83.862069][ T6110] netlink: 64 bytes leftover after parsing attributes in process `syz.1.762'.
[   83.873403][ T6121] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   83.881641][ T6110] netlink: 8 bytes leftover after parsing attributes in process `syz.1.762'.
[   83.907379][ T6121] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00cc128, mo2=0002]
[   83.925618][ T6121] System zones: 1-12
[   83.934017][ T6121] EXT4-fs (loop0): 1 truncate cleaned up
[   84.063113][ T6108] loop2: detected capacity change from 0 to 128
[   84.236862][ T6143] loop0: detected capacity change from 0 to 164
[   84.272347][   T29] kauditd_printk_skb: 97 callbacks suppressed
[   84.272363][   T29] audit: type=1400 audit(1745383864.414:1920): avc:  denied  { mount } for  pid=6142 comm="syz.0.774" name="/" dev="loop0" ino=1920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   84.323913][ T6149] loop1: detected capacity change from 0 to 512
[   84.337994][ T6147] xt_recent: hitcount (16777216) is larger than allowed maximum (65535)
[   84.380218][ T6149] EXT4-fs (loop1): 1 orphan inode deleted
[   84.398254][   T29] audit: type=1400 audit(1745383864.414:1921): avc:  denied  { create } for  pid=6146 comm="syz.5.776" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   84.417901][   T29] audit: type=1400 audit(1745383864.414:1922): avc:  denied  { write } for  pid=6146 comm="syz.5.776" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   84.419054][  T126] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   84.437239][   T29] audit: type=1400 audit(1745383864.464:1923): avc:  denied  { name_connect } for  pid=6142 comm="syz.0.774" dest=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1
[   84.437270][   T29] audit: type=1400 audit(1745383864.474:1924): avc:  denied  { setopt } for  pid=6146 comm="syz.5.776" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   84.447007][  T126] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[   84.468460][   T29] audit: type=1400 audit(1745383864.494:1925): avc:  denied  { unmount } for  pid=4288 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   84.523880][ T6149] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.708518][   T29] audit: type=1400 audit(1745383864.844:1926): avc:  denied  { sys_module } for  pid=6166 comm="syz.5.787" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   84.742473][ T6185] netlink: 16 bytes leftover after parsing attributes in process `syz.5.787'.
[   84.770587][ T6185] netlink: 88 bytes leftover after parsing attributes in process `syz.5.787'.
[   84.785194][ T6189] loop2: detected capacity change from 0 to 512
[   84.822228][ T6190] loop1: detected capacity change from 0 to 512
[   84.831753][ T6189] EXT4-fs (loop2): 1 orphan inode deleted
[   84.840056][ T6190] journal_path: Non-blockdev passed as './bus'
[   84.846314][ T6190] EXT4-fs: error: could not find journal device path
[   84.853251][   T37] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   84.863209][   T37] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[   84.884477][ T6189] ext4 filesystem being mounted at /167/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.921184][   T29] audit: type=1400 audit(1745383865.044:1927): avc:  denied  { write } for  pid=6197 comm="syz.5.799" name="event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   85.164629][ T6228] loop1: detected capacity change from 0 to 512
[   85.174750][ T6228] journal_path: Non-blockdev passed as './bus'
[   85.181093][ T6228] EXT4-fs: error: could not find journal device path
[   85.221598][ T6232] loop2: detected capacity change from 0 to 512
[   85.274762][ T6232] EXT4-fs (loop2): 1 orphan inode deleted
[   85.286405][ T6232] ext4 filesystem being mounted at /171/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.297081][ T6244] netlink: 16 bytes leftover after parsing attributes in process `syz.0.813'.
[   85.297508][  T126] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[   85.324888][ T6230] netlink: 88 bytes leftover after parsing attributes in process `syz.0.813'.
[   85.486091][ T6271] loop3: detected capacity change from 0 to 512
[   85.486410][ T6271] journal_path: Non-blockdev passed as './bus'
[   85.486429][ T6271] EXT4-fs: error: could not find journal device path
[   85.809131][ T6307] siw: device registration error -23
[   85.910239][ T6307] loop1: detected capacity change from 0 to 512
[   86.006058][ T6307] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   86.128810][ T6307] EXT4-fs (loop1): 1 truncate cleaned up
[   86.136246][ T6323] loop5: detected capacity change from 0 to 164
[   86.151318][ T6323] FAULT_INJECTION: forcing a failure.
[   86.151318][ T6323] name failslab, interval 1, probability 0, space 0, times 0
[   86.164107][ T6323] CPU: 0 UID: 0 PID: 6323 Comm: syz.5.836 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   86.164206][ T6323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   86.164218][ T6323] Call Trace:
[   86.164225][ T6323]  <TASK>
[   86.164232][ T6323]  dump_stack_lvl+0xf6/0x150
[   86.164260][ T6323]  dump_stack+0x15/0x1a
[   86.164280][ T6323]  should_fail_ex+0x261/0x270
[   86.164309][ T6323]  should_failslab+0x8f/0xb0
[   86.164393][ T6323]  __kmalloc_cache_noprof+0x55/0x320
[   86.164426][ T6323]  ? sctp_association_new+0x71/0x1280
[   86.164456][ T6323]  ? __list_add_valid_or_report+0x38/0xe0
[   86.164495][ T6323]  sctp_association_new+0x71/0x1280
[   86.164562][ T6323]  sctp_connect_new_asoc+0x1c4/0x3c0
[   86.164598][ T6323]  sctp_sendmsg+0xe96/0x1870
[   86.164639][ T6323]  ? __pfx_sctp_sendmsg+0x10/0x10
[   86.164708][ T6323]  inet_sendmsg+0xc5/0xd0
[   86.164743][ T6323]  __sock_sendmsg+0x102/0x180
[   86.164858][ T6323]  __sys_sendto+0x1aa/0x230
[   86.164930][ T6323]  __x64_sys_sendto+0x78/0x90
[   86.164955][ T6323]  x64_sys_call+0x2bcb/0x2e10
[   86.164980][ T6323]  do_syscall_64+0xc9/0x1a0
[   86.165086][ T6323]  ? clear_bhb_loop+0x25/0x80
[   86.165111][ T6323]  ? clear_bhb_loop+0x25/0x80
[   86.165155][ T6323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.165175][ T6323] RIP: 0033:0x7fda80ace169
[   86.165189][ T6323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.165206][ T6323] RSP: 002b:00007fda7f137038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   86.165228][ T6323] RAX: ffffffffffffffda RBX: 00007fda80cf5fa0 RCX: 00007fda80ace169
[   86.165242][ T6323] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000004
[   86.165256][ T6323] RBP: 00007fda7f137090 R08: 0000200000000080 R09: 000000000000001c
[   86.165268][ T6323] R10: 0000000000000051 R11: 0000000000000246 R12: 0000000000000001
[   86.165337][ T6323] R13: 0000000000000000 R14: 00007fda80cf5fa0 R15: 00007ffd19d42638
[   86.165360][ T6323]  </TASK>
[   86.647204][ T6326] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   87.542413][ T6367] netlink: 60 bytes leftover after parsing attributes in process `syz.3.846'.
[   87.551800][ T6361] netlink: 60 bytes leftover after parsing attributes in process `syz.3.846'.
[   87.642360][ T6372] loop5: detected capacity change from 0 to 512
[   87.660662][ T6372] journal_path: Non-blockdev passed as './bus'
[   87.666891][ T6372] EXT4-fs: error: could not find journal device path
[   87.728510][ T6385] loop3: detected capacity change from 0 to 512
[   87.728868][ T6385] journal_path: Non-blockdev passed as './bus'
[   87.728886][ T6385] EXT4-fs: error: could not find journal device path
[   87.812907][ T6393] loop3: detected capacity change from 0 to 512
[   87.869712][ T6393] EXT4-fs (loop3): 1 orphan inode deleted
[   87.884406][  T126] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[   87.915046][ T6393] ext4 filesystem being mounted at /177/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.147581][ T6429] siw: device registration error -23
[   88.186403][ T6429] loop3: detected capacity change from 0 to 512
[   88.307297][ T6429] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   88.653803][ T6429] EXT4-fs (loop3): 1 truncate cleaned up
[   88.969759][ T6481] delete_channel: no stack
[   89.019089][ T6481] delete_channel: no stack
[   89.368237][ T6509] siw: device registration error -23
[   89.384880][ T6497] netlink: 64 bytes leftover after parsing attributes in process `syz.5.869'.
[   89.443298][ T6509] loop0: detected capacity change from 0 to 512
[   89.453486][ T6508] netlink: 8 bytes leftover after parsing attributes in process `syz.5.869'.
[   89.461678][ T6509] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   89.521509][ T6509] EXT4-fs (loop0): 1 truncate cleaned up
[   89.770787][ T6539] netlink: 96 bytes leftover after parsing attributes in process `syz.5.881'.
[   89.937302][ T6544] loop1: detected capacity change from 0 to 512
[   89.972205][   T29] kauditd_printk_skb: 144 callbacks suppressed
[   89.972224][   T29] audit: type=1400 audit(1745383870.114:2070): avc:  denied  { bind } for  pid=6538 comm="syz.5.881" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   90.155323][   T29] audit: type=1400 audit(1745383870.144:2071): avc:  denied  { write } for  pid=6538 comm="syz.5.881" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   90.263816][ T6543] infiniband syz!: set active
[   90.268556][ T6543] infiniband syz!: added team_slave_0
[   90.322366][ T6543] RDS/IB: syz!: added
[   90.326608][ T6543] smc: adding ib device syz! with port count 1
[   90.338370][ T6543] smc:    ib device syz! port 1 has pnetid 
[   90.539698][ T6558] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   90.771660][ T6573] loop2: detected capacity change from 0 to 512
[   90.801588][ T6573] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   90.817434][ T6573] EXT4-fs (loop2): 1 truncate cleaned up
[   90.914441][ T6583] loop1: detected capacity change from 0 to 512
[   91.373563][ T6583] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   91.398224][ T6583] EXT4-fs (loop1): 1 truncate cleaned up
[   91.427724][ T6600] netlink: 4 bytes leftover after parsing attributes in process `syz.2.900'.
[   91.438708][ T6603] netlink: 60 bytes leftover after parsing attributes in process `syz.3.899'.
[   91.448238][ T6596] netlink: 60 bytes leftover after parsing attributes in process `syz.3.899'.
[   91.463910][   T29] audit: type=1400 audit(1745383871.604:2072): avc:  denied  { read } for  pid=6598 comm="syz.2.900" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   91.486567][   T29] audit: type=1400 audit(1745383871.604:2073): avc:  denied  { open } for  pid=6598 comm="syz.2.900" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   91.583353][ T6607] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   91.612952][ T6608] FAULT_INJECTION: forcing a failure.
[   91.612952][ T6608] name failslab, interval 1, probability 0, space 0, times 0
[   91.625712][ T6608] CPU: 0 UID: 0 PID: 6608 Comm: syz.2.901 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   91.625804][ T6608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   91.625820][ T6608] Call Trace:
[   91.625883][ T6608]  <TASK>
[   91.625892][ T6608]  dump_stack_lvl+0xf6/0x150
[   91.625921][ T6608]  dump_stack+0x15/0x1a
[   91.625941][ T6608]  should_fail_ex+0x261/0x270
[   91.625971][ T6608]  should_failslab+0x8f/0xb0
[   91.625996][ T6608]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   91.626031][ T6608]  ? __alloc_skb+0x10d/0x320
[   91.626096][ T6608]  __alloc_skb+0x10d/0x320
[   91.626118][ T6608]  netlink_alloc_large_skb+0xad/0xe0
[   91.626203][ T6608]  netlink_sendmsg+0x3da/0x720
[   91.626234][ T6608]  ? __pfx_netlink_sendmsg+0x10/0x10
[   91.626253][ T6608]  __sock_sendmsg+0x140/0x180
[   91.626287][ T6608]  ____sys_sendmsg+0x350/0x4e0
[   91.626400][ T6608]  __sys_sendmsg+0x1a0/0x240
[   91.626447][ T6608]  __x64_sys_sendmsg+0x46/0x50
[   91.626475][ T6608]  x64_sys_call+0x26f3/0x2e10
[   91.626497][ T6608]  do_syscall_64+0xc9/0x1a0
[   91.626521][ T6608]  ? clear_bhb_loop+0x25/0x80
[   91.626558][ T6608]  ? clear_bhb_loop+0x25/0x80
[   91.626657][ T6608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.626677][ T6608] RIP: 0033:0x7fa0b48ce169
[   91.626695][ T6608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.626717][ T6608] RSP: 002b:00007fa0b2f16038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   91.626812][ T6608] RAX: ffffffffffffffda RBX: 00007fa0b4af6080 RCX: 00007fa0b48ce169
[   91.626896][ T6608] RDX: 0000000000000840 RSI: 00002000000002c0 RDI: 0000000000000003
[   91.626909][ T6608] RBP: 00007fa0b2f16090 R08: 0000000000000000 R09: 0000000000000000
[   91.626926][ T6608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.626937][ T6608] R13: 0000000000000000 R14: 00007fa0b4af6080 R15: 00007ffd3c7585a8
[   91.626956][ T6608]  </TASK>
[   91.830629][    C1] bridge0: received packet on geneve0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   91.836125][ T6614] loop3: detected capacity change from 0 to 512
[   91.842118][    C1] bridge0: received packet on geneve0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   91.864868][ T6614] journal_path: Non-blockdev passed as './bus'
[   91.871112][ T6614] EXT4-fs: error: could not find journal device path
[   91.920217][ T6605] rdma_rxe: rxe_newlink: failed to add team_slave_0
[   92.074946][ T6626] loop1: detected capacity change from 0 to 512
[   92.106271][   T29] audit: type=1400 audit(1745383872.244:2074): avc:  denied  { create } for  pid=6627 comm="syz.0.912" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   92.142766][ T6628] loop0: detected capacity change from 0 to 512
[   92.164683][ T6628] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   92.167014][ T6626] EXT4-fs (loop1): 1 orphan inode deleted
[   92.180713][ T1669] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   92.190639][ T1669] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[   92.200291][ T6632] loop3: detected capacity change from 0 to 512
[   92.209131][ T6632] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   92.242929][ T6626] ext4 filesystem being mounted at /195/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.276198][ T6628] EXT4-fs (loop0): 1 truncate cleaned up
[   92.298712][ T6632] EXT4-fs (loop3): 1 truncate cleaned up
[   92.322989][ T6640] loop5: detected capacity change from 0 to 512
[   92.376758][ T6640] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   92.421806][ T6640] EXT4-fs (loop5): 1 truncate cleaned up
[   92.452687][   T29] audit: type=1400 audit(1745383872.594:2075): avc:  denied  { bind } for  pid=6627 comm="syz.0.912" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   92.488631][ T6654] netlink: 60 bytes leftover after parsing attributes in process `syz.3.917'.
[   92.498175][ T6644] netlink: 60 bytes leftover after parsing attributes in process `syz.3.917'.
[   92.536297][ T6659] loop1: detected capacity change from 0 to 512
[   92.551170][ T6659] journal_path: Non-blockdev passed as './bus'
[   92.557402][ T6659] EXT4-fs: error: could not find journal device path
[   92.707382][ T6675] loop2: detected capacity change from 0 to 512
[   92.725536][ T6679] loop5: detected capacity change from 0 to 512
[   92.735667][ T6677] loop3: detected capacity change from 0 to 512
[   92.760193][ T6679] EXT4-fs (loop5): 1 orphan inode deleted
[   92.769750][ T6675] EXT4-fs (loop2): 1 orphan inode deleted
[   92.772575][ T6687] loop1: detected capacity change from 0 to 512
[   92.782654][ T6679] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.790429][ T6675] ext4 filesystem being mounted at /194/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.794234][ T6687] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   92.815639][ T6465] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   92.825467][ T6465] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[   92.837837][ T6465] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   92.840583][ T6687] EXT4-fs (loop1): 1 truncate cleaned up
[   92.847782][ T6465] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[   92.860076][ T6677] EXT4-fs (loop3): 1 orphan inode deleted
[   92.868205][ T6465] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   92.874257][ T6677] ext4 filesystem being mounted at /195/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.880536][ T6465] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[   92.985003][ T6697] loop5: detected capacity change from 0 to 512
[   93.000419][ T6697] journal_path: Non-blockdev passed as './bus'
[   93.006639][ T6697] EXT4-fs: error: could not find journal device path
[   93.033804][ T6703] netlink: 60 bytes leftover after parsing attributes in process `syz.0.935'.
[   93.044672][ T6695] netlink: 60 bytes leftover after parsing attributes in process `syz.0.935'.
[   93.130807][ T6702] ip6gre1: entered allmulticast mode
[   93.226611][ T6713] bridge0: port 3(geneve0) entered blocking state
[   93.233123][ T6713] bridge0: port 3(geneve0) entered disabled state
[   93.239731][ T6713] geneve0: entered allmulticast mode
[   93.246161][ T6713] geneve0: entered promiscuous mode
[   93.251842][ T6713] bridge0: port 3(geneve0) entered blocking state
[   93.258295][ T6713] bridge0: port 3(geneve0) entered forwarding state
[   93.689516][ T6721] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   93.877039][ T6725] FAULT_INJECTION: forcing a failure.
[   93.877039][ T6725] name failslab, interval 1, probability 0, space 0, times 0
[   93.889840][ T6725] CPU: 1 UID: 0 PID: 6725 Comm: syz.3.948 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   93.889867][ T6725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   93.889879][ T6725] Call Trace:
[   93.889885][ T6725]  <TASK>
[   93.889892][ T6725]  dump_stack_lvl+0xf6/0x150
[   93.889998][ T6725]  dump_stack+0x15/0x1a
[   93.890063][ T6725]  should_fail_ex+0x261/0x270
[   93.890092][ T6725]  should_failslab+0x8f/0xb0
[   93.890157][ T6725]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   93.890191][ T6725]  ? __alloc_skb+0x10d/0x320
[   93.890216][ T6725]  __alloc_skb+0x10d/0x320
[   93.890240][ T6725]  netlink_alloc_large_skb+0xad/0xe0
[   93.890279][ T6725]  netlink_sendmsg+0x3da/0x720
[   93.890404][ T6725]  ? __pfx_netlink_sendmsg+0x10/0x10
[   93.890429][ T6725]  __sock_sendmsg+0x140/0x180
[   93.890466][ T6725]  ____sys_sendmsg+0x350/0x4e0
[   93.890493][ T6725]  __sys_sendmsg+0x1a0/0x240
[   93.890538][ T6725]  __x64_sys_sendmsg+0x46/0x50
[   93.890560][ T6725]  x64_sys_call+0x26f3/0x2e10
[   93.890583][ T6725]  do_syscall_64+0xc9/0x1a0
[   93.890614][ T6725]  ? clear_bhb_loop+0x25/0x80
[   93.890642][ T6725]  ? clear_bhb_loop+0x25/0x80
[   93.890698][ T6725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.890718][ T6725] RIP: 0033:0x7f7fac8fe169
[   93.890732][ T6725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.890749][ T6725] RSP: 002b:00007f7faaf67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   93.890848][ T6725] RAX: ffffffffffffffda RBX: 00007f7facb25fa0 RCX: 00007f7fac8fe169
[   93.890859][ T6725] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000003
[   93.890870][ T6725] RBP: 00007f7faaf67090 R08: 0000000000000000 R09: 0000000000000000
[   93.890896][ T6725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.890910][ T6725] R13: 0000000000000000 R14: 00007f7facb25fa0 R15: 00007ffe76736ab8
[   93.890932][ T6725]  </TASK>
[   94.136464][ T6727] loop0: detected capacity change from 0 to 512
[   94.168936][ T6727] EXT4-fs (loop0): 1 orphan inode deleted
[   94.175509][ T6727] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.186640][ T4295] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[   94.213403][ T6740] loop3: detected capacity change from 0 to 512
[   94.268169][ T6744] loop2: detected capacity change from 0 to 512
[   94.278453][ T6740] EXT4-fs (loop3): 1 orphan inode deleted
[   94.291712][ T6744] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   94.291887][ T6740] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.302208][ T4295] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[   94.352698][ T6744] EXT4-fs (loop2): 1 truncate cleaned up
[   94.369306][ T6753] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   94.371310][    C0] bridge0: received packet on geneve0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   94.381059][    C1] bridge0: received packet on geneve0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[   94.511227][ T6769] netlink: 'syz.2.965': attribute type 21 has an invalid length.
[   94.519207][ T6769] __nla_validate_parse: 2 callbacks suppressed
[   94.519219][ T6769] netlink: 156 bytes leftover after parsing attributes in process `syz.2.965'.
[   94.534510][ T6769] netlink: 4 bytes leftover after parsing attributes in process `syz.2.965'.
[   94.576059][ T6776] FAULT_INJECTION: forcing a failure.
[   94.576059][ T6776] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.589352][ T6776] CPU: 0 UID: 0 PID: 6776 Comm: syz.1.969 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   94.589414][ T6776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   94.589428][ T6776] Call Trace:
[   94.589435][ T6776]  <TASK>
[   94.589443][ T6776]  dump_stack_lvl+0xf6/0x150
[   94.589473][ T6776]  dump_stack+0x15/0x1a
[   94.589493][ T6776]  should_fail_ex+0x261/0x270
[   94.589567][ T6776]  should_fail+0xb/0x10
[   94.589591][ T6776]  should_fail_usercopy+0x1a/0x20
[   94.589648][ T6776]  _copy_to_user+0x20/0xa0
[   94.589757][ T6776]  simple_read_from_buffer+0xb2/0x130
[   94.589797][ T6776]  proc_fail_nth_read+0x103/0x140
[   94.589837][ T6776]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   94.589886][ T6776]  vfs_read+0x1b2/0x710
[   94.590013][ T6776]  ? __rcu_read_unlock+0x4e/0x70
[   94.590034][ T6776]  ? __fget_files+0x186/0x1c0
[   94.590056][ T6776]  ksys_read+0xeb/0x1b0
[   94.590077][ T6776]  __x64_sys_read+0x42/0x50
[   94.590099][ T6776]  x64_sys_call+0x2a3b/0x2e10
[   94.590158][ T6776]  do_syscall_64+0xc9/0x1a0
[   94.590188][ T6776]  ? clear_bhb_loop+0x25/0x80
[   94.590262][ T6776]  ? clear_bhb_loop+0x25/0x80
[   94.590352][ T6776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.590377][ T6776] RIP: 0033:0x7f8d3755cb7c
[   94.590402][ T6776] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   94.590471][ T6776] RSP: 002b:00007f8d35bc7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   94.590493][ T6776] RAX: ffffffffffffffda RBX: 00007f8d37785fa0 RCX: 00007f8d3755cb7c
[   94.590508][ T6776] RDX: 000000000000000f RSI: 00007f8d35bc70a0 RDI: 0000000000000005
[   94.590522][ T6776] RBP: 00007f8d35bc7090 R08: 0000000000000000 R09: 0000000000000000
[   94.590537][ T6776] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.590575][ T6776] R13: 0000000000000000 R14: 00007f8d37785fa0 R15: 00007ffe8efc5978
[   94.590650][ T6776]  </TASK>
[   94.895772][ T6787] FAULT_INJECTION: forcing a failure.
[   94.895772][ T6787] name failslab, interval 1, probability 0, space 0, times 0
[   94.908695][ T6787] CPU: 0 UID: 0 PID: 6787 Comm: syz.3.974 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   94.908752][ T6787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   94.908764][ T6787] Call Trace:
[   94.908770][ T6787]  <TASK>
[   94.908777][ T6787]  dump_stack_lvl+0xf6/0x150
[   94.908831][ T6787]  dump_stack+0x15/0x1a
[   94.908846][ T6787]  should_fail_ex+0x261/0x270
[   94.908876][ T6787]  should_failslab+0x8f/0xb0
[   94.908901][ T6787]  __kmalloc_noprof+0xad/0x410
[   94.908925][ T6787]  ? kernfs_fop_write_iter+0xe1/0x2d0
[   94.908972][ T6787]  ? selinux_file_permission+0x22d/0x360
[   94.908999][ T6787]  kernfs_fop_write_iter+0xe1/0x2d0
[   94.909064][ T6787]  vfs_write+0x79b/0x950
[   94.909086][ T6787]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[   94.909198][ T6787]  ksys_write+0xeb/0x1b0
[   94.909237][ T6787]  __x64_sys_write+0x42/0x50
[   94.909258][ T6787]  x64_sys_call+0x2a45/0x2e10
[   94.909345][ T6787]  do_syscall_64+0xc9/0x1a0
[   94.909375][ T6787]  ? clear_bhb_loop+0x25/0x80
[   94.909400][ T6787]  ? clear_bhb_loop+0x25/0x80
[   94.909469][ T6787]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.909495][ T6787] RIP: 0033:0x7f7fac8fe169
[   94.909512][ T6787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.909532][ T6787] RSP: 002b:00007f7faaf67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   94.909553][ T6787] RAX: ffffffffffffffda RBX: 00007f7facb25fa0 RCX: 00007f7fac8fe169
[   94.909606][ T6787] RDX: 0000000000000012 RSI: 0000200000000000 RDI: 0000000000000003
[   94.909617][ T6787] RBP: 00007f7faaf67090 R08: 0000000000000000 R09: 0000000000000000
[   94.909631][ T6787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.909644][ T6787] R13: 0000000000000000 R14: 00007f7facb25fa0 R15: 00007ffe76736ab8
[   94.909706][ T6787]  </TASK>
[   95.215545][ T6760] loop0: detected capacity change from 0 to 1024
[   95.243980][   T29] kauditd_printk_skb: 95 callbacks suppressed
[   95.243997][   T29] audit: type=1400 audit(1745383875.384:2169): avc:  denied  { mounton } for  pid=6759 comm="syz.0.962" path="/130/bus/bus" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   95.518477][ T6821] loop5: detected capacity change from 0 to 512
[   95.536059][   T29] audit: type=1326 audit(1745383875.674:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6822 comm="syz.1.988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d3755e169 code=0x7ffc0000
[   95.559456][   T29] audit: type=1326 audit(1745383875.674:2171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6822 comm="syz.1.988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d3755e169 code=0x7ffc0000
[   95.582826][   T29] audit: type=1326 audit(1745383875.674:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6822 comm="syz.1.988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8d3755e169 code=0x7ffc0000
[   95.606180][   T29] audit: type=1326 audit(1745383875.674:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6822 comm="syz.1.988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d3755e169 code=0x7ffc0000
[   95.629577][   T29] audit: type=1326 audit(1745383875.674:2174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6822 comm="syz.1.988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d3755e169 code=0x7ffc0000
[   95.653228][   T29] audit: type=1326 audit(1745383875.674:2175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6822 comm="syz.1.988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8d3755e169 code=0x7ffc0000
[   95.654416][ T6821] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   95.676944][   T29] audit: type=1326 audit(1745383875.674:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6822 comm="syz.1.988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d3755e169 code=0x7ffc0000
[   95.676990][   T29] audit: type=1326 audit(1745383875.674:2177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6822 comm="syz.1.988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d3755e169 code=0x7ffc0000
[   95.677112][   T29] audit: type=1326 audit(1745383875.674:2178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6822 comm="syz.1.988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f8d3755e169 code=0x7ffc0000
[   95.781599][ T6823] loop1: detected capacity change from 0 to 512
[   95.796088][ T6836] loop3: detected capacity change from 0 to 512
[   95.808626][ T6823] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   95.848004][ T6829] ip6gre1: entered allmulticast mode
[   95.870815][ T6821] EXT4-fs (loop5): 1 truncate cleaned up
[   95.912466][ T6836] ext4 filesystem being mounted at /211/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.926159][ T6823] ext4 filesystem being mounted at /216/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.979404][ T6823] bio_check_eod: 10 callbacks suppressed
[   95.979422][ T6823] syz.1.988: attempt to access beyond end of device
[   95.979422][ T6823] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   96.043383][ T6851] loop3: detected capacity change from 0 to 512
[   96.051101][ T6851] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   96.074589][ T6851] EXT4-fs (loop3): 1 truncate cleaned up
[   96.198574][ T6865] netlink: 60 bytes leftover after parsing attributes in process `syz.0.997'.
[   96.207770][ T6858] netlink: 60 bytes leftover after parsing attributes in process `syz.0.997'.
[   96.421571][ T6881] FAULT_INJECTION: forcing a failure.
[   96.421571][ T6881] name failslab, interval 1, probability 0, space 0, times 0
[   96.434363][ T6881] CPU: 1 UID: 0 PID: 6881 Comm: syz.1.1006 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   96.434393][ T6881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   96.434461][ T6881] Call Trace:
[   96.434468][ T6881]  <TASK>
[   96.434475][ T6881]  dump_stack_lvl+0xf6/0x150
[   96.434503][ T6881]  dump_stack+0x15/0x1a
[   96.434578][ T6881]  should_fail_ex+0x261/0x270
[   96.434607][ T6881]  should_failslab+0x8f/0xb0
[   96.434628][ T6881]  kmem_cache_alloc_noprof+0x59/0x340
[   96.434656][ T6881]  ? skb_clone+0x154/0x1f0
[   96.434688][ T6881]  skb_clone+0x154/0x1f0
[   96.434790][ T6881]  __netlink_deliver_tap+0x2bd/0x4f0
[   96.434817][ T6881]  netlink_unicast+0x69e/0x6c0
[   96.434858][ T6881]  netlink_sendmsg+0x609/0x720
[   96.434884][ T6881]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.434907][ T6881]  __sock_sendmsg+0x140/0x180
[   96.435040][ T6881]  ____sys_sendmsg+0x350/0x4e0
[   96.435071][ T6881]  __sys_sendmsg+0x1a0/0x240
[   96.435115][ T6881]  __x64_sys_sendmsg+0x46/0x50
[   96.435144][ T6881]  x64_sys_call+0x26f3/0x2e10
[   96.435250][ T6881]  do_syscall_64+0xc9/0x1a0
[   96.435276][ T6881]  ? clear_bhb_loop+0x25/0x80
[   96.435387][ T6881]  ? clear_bhb_loop+0x25/0x80
[   96.435412][ T6881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.435438][ T6881] RIP: 0033:0x7f8d3755e169
[   96.435455][ T6881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.435478][ T6881] RSP: 002b:00007f8d35bc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   96.435500][ T6881] RAX: ffffffffffffffda RBX: 00007f8d37785fa0 RCX: 00007f8d3755e169
[   96.435515][ T6881] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000003
[   96.435569][ T6881] RBP: 00007f8d35bc7090 R08: 0000000000000000 R09: 0000000000000000
[   96.435583][ T6881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.435596][ T6881] R13: 0000000000000000 R14: 00007f8d37785fa0 R15: 00007ffe8efc5978
[   96.435616][ T6881]  </TASK>
[   96.756664][ T6890] loop3: detected capacity change from 0 to 512
[   96.798034][ T6890] EXT4-fs (loop3): 1 orphan inode deleted
[   96.810683][ T6890] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.818684][   T51] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[   96.945378][ T6907] loop3: detected capacity change from 0 to 512
[   96.966613][ T6907] journal_path: Non-blockdev passed as './bus'
[   96.972859][ T6907] EXT4-fs: error: could not find journal device path
[   96.982202][ T6908] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1013'.
[   97.007103][ T6903] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1013'.
[   97.214502][ T6923] FAULT_INJECTION: forcing a failure.
[   97.214502][ T6923] name failslab, interval 1, probability 0, space 0, times 0
[   97.227259][ T6923] CPU: 0 UID: 0 PID: 6923 Comm: syz.2.1020 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   97.227373][ T6923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   97.227501][ T6923] Call Trace:
[   97.227509][ T6923]  <TASK>
[   97.227517][ T6923]  dump_stack_lvl+0xf6/0x150
[   97.227578][ T6923]  dump_stack+0x15/0x1a
[   97.227596][ T6923]  should_fail_ex+0x261/0x270
[   97.227623][ T6923]  should_failslab+0x8f/0xb0
[   97.227653][ T6923]  kmem_cache_alloc_noprof+0x59/0x340
[   97.227740][ T6923]  ? skb_clone+0x154/0x1f0
[   97.227846][ T6923]  skb_clone+0x154/0x1f0
[   97.227875][ T6923]  __netlink_deliver_tap+0x2bd/0x4f0
[   97.227905][ T6923]  netlink_unicast+0x69e/0x6c0
[   97.227946][ T6923]  netlink_sendmsg+0x609/0x720
[   97.228009][ T6923]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.228032][ T6923]  __sock_sendmsg+0x140/0x180
[   97.228068][ T6923]  ____sys_sendmsg+0x350/0x4e0
[   97.228101][ T6923]  __sys_sendmsg+0x1a0/0x240
[   97.228219][ T6923]  __x64_sys_sendmsg+0x46/0x50
[   97.228297][ T6923]  x64_sys_call+0x26f3/0x2e10
[   97.228324][ T6923]  do_syscall_64+0xc9/0x1a0
[   97.228355][ T6923]  ? clear_bhb_loop+0x25/0x80
[   97.228381][ T6923]  ? clear_bhb_loop+0x25/0x80
[   97.228412][ T6923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.228482][ T6923] RIP: 0033:0x7fa0b48ce169
[   97.228500][ T6923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.228522][ T6923] RSP: 002b:00007fa0b2f37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   97.228544][ T6923] RAX: ffffffffffffffda RBX: 00007fa0b4af5fa0 RCX: 00007fa0b48ce169
[   97.228558][ T6923] RDX: 0000000000000000 RSI: 0000200000000840 RDI: 0000000000000003
[   97.228580][ T6923] RBP: 00007fa0b2f37090 R08: 0000000000000000 R09: 0000000000000000
[   97.228594][ T6923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.228670][ T6923] R13: 0000000000000000 R14: 00007fa0b4af5fa0 R15: 00007ffd3c7585a8
[   97.228694][ T6923]  </TASK>
[   97.537395][ T6936] FAULT_INJECTION: forcing a failure.
[   97.537395][ T6936] name failslab, interval 1, probability 0, space 0, times 0
[   97.550159][ T6936] CPU: 0 UID: 0 PID: 6936 Comm: syz.3.1025 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[   97.550192][ T6936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   97.550207][ T6936] Call Trace:
[   97.550214][ T6936]  <TASK>
[   97.550222][ T6936]  dump_stack_lvl+0xf6/0x150
[   97.550245][ T6936]  dump_stack+0x15/0x1a
[   97.550339][ T6936]  should_fail_ex+0x261/0x270
[   97.550370][ T6936]  should_failslab+0x8f/0xb0
[   97.550442][ T6936]  __kvmalloc_node_noprof+0x12c/0x520
[   97.550471][ T6936]  ? bpf_test_run_xdp_live+0x120/0x1050
[   97.550493][ T6936]  bpf_test_run_xdp_live+0x120/0x1050
[   97.550517][ T6936]  ? synchronize_rcu_expedited+0x6d5/0x790
[   97.550578][ T6936]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   97.550612][ T6936]  ? __pfx_autoremove_wake_function+0x10/0x10
[   97.550649][ T6936]  ? bpf_dispatcher_xdp+0x800/0x1000
[   97.550669][ T6936]  ? synchronize_rcu+0x4a/0x320
[   97.550724][ T6936]  ? bpf_dispatcher_xdp+0x800/0x1000
[   97.550743][ T6936]  ? bpf_dispatcher_xdp+0x800/0x1000
[   97.550809][ T6936]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   97.550842][ T6936]  bpf_prog_test_run_xdp+0x526/0x8e0
[   97.550861][ T6936]  ? __rcu_read_unlock+0x4e/0x70
[   97.550884][ T6936]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   97.550909][ T6936]  bpf_prog_test_run+0x20e/0x3a0
[   97.551004][ T6936]  __sys_bpf+0x440/0x800
[   97.551038][ T6936]  __x64_sys_bpf+0x43/0x50
[   97.551067][ T6936]  x64_sys_call+0x23da/0x2e10
[   97.551105][ T6936]  do_syscall_64+0xc9/0x1a0
[   97.551136][ T6936]  ? clear_bhb_loop+0x25/0x80
[   97.551161][ T6936]  ? clear_bhb_loop+0x25/0x80
[   97.551220][ T6936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.551243][ T6936] RIP: 0033:0x7f7fac8fe169
[   97.551258][ T6936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.551322][ T6936] RSP: 002b:00007f7faaf67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   97.551402][ T6936] RAX: ffffffffffffffda RBX: 00007f7facb25fa0 RCX: 00007f7fac8fe169
[   97.551415][ T6936] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[   97.551430][ T6936] RBP: 00007f7faaf67090 R08: 0000000000000000 R09: 0000000000000000
[   97.551444][ T6936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.551457][ T6936] R13: 0000000000000000 R14: 00007f7facb25fa0 R15: 00007ffe76736ab8
[   97.551598][ T6936]  </TASK>
[   97.564078][ T6940] loop5: detected capacity change from 0 to 512
[   97.904271][ T6940] journal_path: Non-blockdev passed as './bus'
[   97.910615][ T6940] EXT4-fs: error: could not find journal device path
[   97.941194][ T6951] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1028'.
[   97.950678][ T6947] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1028'.
[   99.153396][ T6968] netlink: 'syz.1.1038': attribute type 10 has an invalid length.
[   99.161763][ T6970] loop5: detected capacity change from 0 to 512
[   99.168881][ T6963] bridge0: port 3(geneve0) entered blocking state
[   99.175463][ T6963] bridge0: port 3(geneve0) entered disabled state
[   99.182101][ T6963] geneve0: entered allmulticast mode
[   99.188271][ T6970] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   99.202788][ T6963] geneve0: entered promiscuous mode
[   99.212278][ T6968] batman_adv: batadv0: Adding interface: team0
[   99.213651][ T6970] EXT4-fs (loop5): 1 truncate cleaned up
[   99.218475][ T6968] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.227936][ T6970] EXT4-fs mount: 57 callbacks suppressed
[   99.228032][ T6970] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.249583][ T6968] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   99.268454][ T6970] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.442321][ T6994] loop1: detected capacity change from 0 to 512
[   99.468570][ T6994] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.482550][ T7000] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1047'.
[   99.492643][ T6988] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1047'.
[   99.512030][ T6994] ext4 filesystem being mounted at /230/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.552219][ T6985] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.1045: corrupted inode contents
[   99.564878][ T6993] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1049'.
[   99.589703][ T6985] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #2: comm syz.1.1045: mark_inode_dirty error
[   99.639462][ T6985] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.1045: corrupted inode contents
[   99.671637][ T6985] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.1045: mark_inode_dirty error
[   99.686256][ T6999] loop5: detected capacity change from 0 to 512
[   99.694748][ T6999] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   99.706127][ T6999] EXT4-fs (loop5): 1 truncate cleaned up
[   99.715551][ T6999] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.743766][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.753519][ T6999] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.044572][ T7038] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1061'.
[  100.086344][ T7037] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1061'.
[  100.147776][ T7044] loop5: detected capacity change from 0 to 512
[  100.160210][ T7044] EXT4-fs: Ignoring removed mblk_io_submit option
[  100.313562][ T7050] loop0: detected capacity change from 0 to 128
[  100.328704][ T7044] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -13
[  100.380754][ T7050] FAT-fs (loop0): Directory bread(block 162) failed
[  100.397015][ T7044] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #13: comm syz.5.1063: attempt to clear invalid blocks 2 len 1
[  100.450425][ T7042] syzkaller0: entered promiscuous mode
[  100.456091][ T7042] syzkaller0: entered allmulticast mode
[  100.471686][ T7050] FAT-fs (loop0): Directory bread(block 163) failed
[  100.493993][ T7044] EXT4-fs (loop5): Remounting filesystem read-only
[  100.502550][ T7050] FAT-fs (loop0): Directory bread(block 164) failed
[  100.513712][ T7044] EXT4-fs (loop5): 1 truncate cleaned up
[  100.520953][ T7047] bridge0: port 3(geneve0) entered blocking state
[  100.527503][ T7047] bridge0: port 3(geneve0) entered disabled state
[  100.534121][ T7047] geneve0: entered allmulticast mode
[  100.540575][ T7047] geneve0: entered promiscuous mode
[  100.546132][ T7047] bridge0: port 3(geneve0) entered blocking state
[  100.552671][ T7047] bridge0: port 3(geneve0) entered forwarding state
[  100.612459][ T7050] FAT-fs (loop0): Directory bread(block 165) failed
[  100.631762][ T7050] FAT-fs (loop0): Directory bread(block 166) failed
[  100.646094][ T7050] FAT-fs (loop0): Directory bread(block 167) failed
[  100.657091][ T7050] FAT-fs (loop0): Directory bread(block 168) failed
[  100.664058][ T7050] FAT-fs (loop0): Directory bread(block 169) failed
[  100.671226][ T7044] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.681419][ T7050] FAULT_INJECTION: forcing a failure.
[  100.681419][ T7050] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.696737][ T7050] CPU: 1 UID: 0 PID: 7050 Comm: syz.0.1064 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[  100.696764][ T7050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  100.696779][ T7050] Call Trace:
[  100.696786][ T7050]  <TASK>
[  100.696794][ T7050]  dump_stack_lvl+0xf6/0x150
[  100.696819][ T7050]  dump_stack+0x15/0x1a
[  100.696834][ T7050]  should_fail_ex+0x261/0x270
[  100.696897][ T7050]  should_fail+0xb/0x10
[  100.696927][ T7050]  should_fail_usercopy+0x1a/0x20
[  100.696958][ T7050]  strncpy_from_user+0x25/0x230
[  100.696999][ T7050]  ? getname_flags+0x81/0x3b0
[  100.697030][ T7050]  getname_flags+0xb0/0x3b0
[  100.697091][ T7050]  do_sys_openat2+0x65/0x110
[  100.697125][ T7050]  __x64_sys_openat+0xf8/0x120
[  100.697159][ T7050]  x64_sys_call+0x1ac/0x2e10
[  100.697186][ T7050]  do_syscall_64+0xc9/0x1a0
[  100.697262][ T7050]  ? clear_bhb_loop+0x25/0x80
[  100.697403][ T7050]  ? clear_bhb_loop+0x25/0x80
[  100.697424][ T7050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.697449][ T7050] RIP: 0033:0x7fcae468e169
[  100.697463][ T7050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.697480][ T7050] RSP: 002b:00007fcae2cf7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  100.697572][ T7050] RAX: ffffffffffffffda RBX: 00007fcae48b5fa0 RCX: 00007fcae468e169
[  100.697587][ T7050] RDX: 0000000000044042 RSI: 0000200000000d80 RDI: ffffffffffffff9c
[  100.697601][ T7050] RBP: 00007fcae2cf7090 R08: 0000000000000000 R09: 0000000000000000
[  100.697615][ T7050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.697627][ T7050] R13: 0000000000000000 R14: 00007fcae48b5fa0 R15: 00007ffd5e587b68
[  100.697645][ T7050]  </TASK>
[  100.731480][   T29] kauditd_printk_skb: 180 callbacks suppressed
[  100.731499][   T29] audit: type=1400 audit(1745383880.874:2358): avc:  denied  { read write } for  pid=7043 comm="syz.5.1063" name="uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  100.929105][ T7058] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  100.995407][   T29] audit: type=1400 audit(1745383881.014:2359): avc:  denied  { quotaon } for  pid=7043 comm="syz.5.1063" name="file0" dev="loop5" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  101.017765][   T29] audit: type=1400 audit(1745383881.044:2360): avc:  denied  { open } for  pid=7043 comm="syz.5.1063" path="/dev/uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  101.060397][ T4719] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.085096][   T29] audit: type=1326 audit(1745383881.224:2361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.3.1068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fac8fe169 code=0x7ffc0000
[  101.108867][   T29] audit: type=1326 audit(1745383881.224:2362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.3.1068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fac8fe169 code=0x7ffc0000
[  101.222928][ T7071] loop5: detected capacity change from 0 to 512
[  101.229681][ T7071] journal_path: Non-blockdev passed as './bus'
[  101.235917][ T7071] EXT4-fs: error: could not find journal device path
[  101.282930][   T29] audit: type=1326 audit(1745383881.244:2363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.3.1068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=433 compat=0 ip=0x7f7fac8fe169 code=0x7ffc0000
[  101.306667][   T29] audit: type=1326 audit(1745383881.244:2364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.3.1068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fac8fe169 code=0x7ffc0000
[  101.330206][   T29] audit: type=1326 audit(1745383881.244:2365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.3.1068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fac8fe169 code=0x7ffc0000
[  101.353689][   T29] audit: type=1326 audit(1745383881.244:2366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.3.1068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7f7fac8fe169 code=0x7ffc0000
[  101.377181][   T29] audit: type=1326 audit(1745383881.244:2367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7059 comm="syz.3.1068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fac8fe169 code=0x7ffc0000
[  101.458751][ T7083] siw: device registration error -23
[  101.492573][ T7084] loop0: detected capacity change from 0 to 512
[  101.555957][ T7083] loop5: detected capacity change from 0 to 512
[  101.671328][ T7084] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  101.698750][ T7083] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  101.798807][ T7084] EXT4-fs (loop0): 1 truncate cleaned up
[  101.805206][ T7084] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.819116][ T7083] EXT4-fs (loop5): 1 truncate cleaned up
[  101.828210][ T7084] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.836401][ T7083] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.861383][ T7083] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.909010][ T7099] netlink: 132 bytes leftover after parsing attributes in process `wg1'.
[  101.932923][ T7099] netlink: 52 bytes leftover after parsing attributes in process `wg1'.
[  101.988687][ T6031] team0: Port device team_slave_0 removed
[  101.995143][ T7097] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1076'.
[  102.012818][ T7102] syz.1.1078 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  102.068250][ T7102] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7102 comm=syz.1.1078
[  102.080826][ T7102] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7102 comm=syz.1.1078
[  102.124208][ T7106] wireguard0: entered promiscuous mode
[  102.129775][ T7106] wireguard0: entered allmulticast mode
[  102.254286][ T7115] loop2: detected capacity change from 0 to 512
[  102.299456][ T7120] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1083'.
[  102.301089][ T7115] EXT4-fs (loop2): 1 orphan inode deleted
[  102.308692][ T7117] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1083'.
[  102.323699][   T51] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  102.359526][ T7115] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.450757][ T7128] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1085'.
[  102.460050][ T7123] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1085'.
[  102.462084][ T7115] ext4 filesystem being mounted at /216/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.525635][ T7115] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.539107][ T7132] netlink: 'syz.3.1089': attribute type 21 has an invalid length.
[  102.697693][ T7145] bridge0: port 3(geneve0) entered blocking state
[  102.704374][ T7145] bridge0: port 3(geneve0) entered disabled state
[  102.711139][ T7145] geneve0: entered allmulticast mode
[  102.717508][ T7145] geneve0: entered promiscuous mode
[  102.722972][ T7145] bridge0: port 3(geneve0) entered blocking state
[  102.729500][ T7145] bridge0: port 3(geneve0) entered forwarding state
[  102.968427][ T7151] loop3: detected capacity change from 0 to 512
[  103.000219][ T7151] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  103.037675][ T7151] EXT4-fs (loop3): 1 truncate cleaned up
[  103.037952][ T7152] loop1: detected capacity change from 0 to 512
[  103.050757][ T7151] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.064622][ T7152] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  103.077595][ T7151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.247770][ T7169] loop3: detected capacity change from 0 to 512
[  103.264461][ T7169] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  103.369660][ T7169] EXT4-fs (loop3): 1 truncate cleaned up
[  103.392332][ T7169] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.429012][ T7169] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.468051][ T7188] FAULT_INJECTION: forcing a failure.
[  103.468051][ T7188] name failslab, interval 1, probability 0, space 0, times 0
[  103.480729][ T7188] CPU: 1 UID: 0 PID: 7188 Comm: syz.2.1105 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[  103.480758][ T7188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  103.480771][ T7188] Call Trace:
[  103.480778][ T7188]  <TASK>
[  103.480785][ T7188]  dump_stack_lvl+0xf6/0x150
[  103.480810][ T7188]  dump_stack+0x15/0x1a
[  103.480860][ T7188]  should_fail_ex+0x261/0x270
[  103.480884][ T7188]  should_failslab+0x8f/0xb0
[  103.480922][ T7188]  kmem_cache_alloc_noprof+0x59/0x340
[  103.480951][ T7188]  ? audit_log_start+0x37f/0x6e0
[  103.481025][ T7188]  audit_log_start+0x37f/0x6e0
[  103.481058][ T7188]  audit_seccomp+0x49/0x100
[  103.481151][ T7188]  __seccomp_filter+0x694/0x10e0
[  103.481176][ T7188]  ? lookup_ioctx+0x25/0x1f0
[  103.481200][ T7188]  ? __get_user_nocheck_8+0x20/0x20
[  103.481229][ T7188]  __secure_computing+0x7e/0x150
[  103.481252][ T7188]  syscall_trace_enter+0xcf/0x1f0
[  103.481316][ T7188]  ? fpregs_assert_state_consistent+0x83/0xa0
[  103.481424][ T7188]  do_syscall_64+0xaa/0x1a0
[  103.481470][ T7188]  ? clear_bhb_loop+0x25/0x80
[  103.481495][ T7188]  ? clear_bhb_loop+0x25/0x80
[  103.481521][ T7188]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.481546][ T7188] RIP: 0033:0x7fa0b48ccb7c
[  103.481564][ T7188] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  103.481586][ T7188] RSP: 002b:00007fa0b2f37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  103.481639][ T7188] RAX: ffffffffffffffda RBX: 00007fa0b4af5fa0 RCX: 00007fa0b48ccb7c
[  103.481653][ T7188] RDX: 000000000000000f RSI: 00007fa0b2f370a0 RDI: 0000000000000006
[  103.481667][ T7188] RBP: 00007fa0b2f37090 R08: 0000000000000000 R09: 0000000000000000
[  103.481681][ T7188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.481723][ T7188] R13: 0000000000000000 R14: 00007fa0b4af5fa0 R15: 00007ffd3c7585a8
[  103.481745][ T7188]  </TASK>
[  104.152063][ T7229] FAULT_INJECTION: forcing a failure.
[  104.152063][ T7229] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  104.165188][ T7229] CPU: 0 UID: 0 PID: 7229 Comm: syz.5.1121 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[  104.165216][ T7229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  104.165228][ T7229] Call Trace:
[  104.165235][ T7229]  <TASK>
[  104.165243][ T7229]  dump_stack_lvl+0xf6/0x150
[  104.165311][ T7229]  dump_stack+0x15/0x1a
[  104.165379][ T7229]  should_fail_ex+0x261/0x270
[  104.165407][ T7229]  should_fail+0xb/0x10
[  104.165429][ T7229]  should_fail_usercopy+0x1a/0x20
[  104.165527][ T7229]  _copy_from_user+0x1c/0xa0
[  104.165554][ T7229]  copy_from_sockptr+0x65/0xb0
[  104.165639][ T7229]  do_tcp_getsockopt+0x251/0x1ab0
[  104.165686][ T7229]  ? _parse_integer+0x27/0x30
[  104.165759][ T7229]  ? kstrtoull+0x115/0x140
[  104.165775][ T7229]  ? __rcu_read_unlock+0x4e/0x70
[  104.165826][ T7229]  ? avc_has_perm_noaudit+0x1cc/0x210
[  104.165851][ T7229]  ? avc_has_perm+0xd6/0x150
[  104.165875][ T7229]  tcp_getsockopt+0x73/0xe0
[  104.165894][ T7229]  sock_common_getsockopt+0x5b/0x70
[  104.165951][ T7229]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  104.165989][ T7229]  do_sock_getsockopt+0x1fc/0x290
[  104.166042][ T7229]  __x64_sys_getsockopt+0x13f/0x1c0
[  104.166074][ T7229]  x64_sys_call+0x128f/0x2e10
[  104.166101][ T7229]  do_syscall_64+0xc9/0x1a0
[  104.166209][ T7229]  ? clear_bhb_loop+0x25/0x80
[  104.166231][ T7229]  ? clear_bhb_loop+0x25/0x80
[  104.166255][ T7229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.166276][ T7229] RIP: 0033:0x7fda80ace169
[  104.166294][ T7229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.166316][ T7229] RSP: 002b:00007fda7f137038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  104.166374][ T7229] RAX: ffffffffffffffda RBX: 00007fda80cf5fa0 RCX: 00007fda80ace169
[  104.166390][ T7229] RDX: 000000000000001c RSI: 0000000000000006 RDI: 0000000000000003
[  104.166404][ T7229] RBP: 00007fda7f137090 R08: 00002000000000c0 R09: 0000000000000000
[  104.166418][ T7229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.166432][ T7229] R13: 0000000000000000 R14: 00007fda80cf5fa0 R15: 00007ffd19d42638
[  104.166451][ T7229]  </TASK>
[  104.494055][ T7249] loop3: detected capacity change from 0 to 512
[  104.543372][ T7249] EXT4-fs (loop3): 1 orphan inode deleted
[  104.560794][ T6031] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:9: Failed to release dquot type 1
[  104.575676][ T7249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.613919][ T7253] __nla_validate_parse: 8 callbacks suppressed
[  104.613934][ T7253] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1128'.
[  104.631252][ T7249] ext4 filesystem being mounted at /246/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.642810][ T7249] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.687999][ T7262] loop3: detected capacity change from 0 to 512
[  104.692510][ T7264] netlink: 132 bytes leftover after parsing attributes in process `wg1'.
[  104.695307][ T7262] journal_path: Non-blockdev passed as './bus'
[  104.708982][ T7262] EXT4-fs: error: could not find journal device path
[  104.722494][ T7264] netlink: 52 bytes leftover after parsing attributes in process `wg1'.
[  104.813235][ T7275] loop0: detected capacity change from 0 to 128
[  104.937337][ T7287] loop5: detected capacity change from 0 to 512
[  104.954808][ T7291] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1145'.
[  104.983005][ T7287] EXT4-fs (loop5): 1 orphan inode deleted
[  105.002949][ T6465] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:11: Failed to release dquot type 1
[  105.024112][ T7287] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.039061][ T7287] ext4 filesystem being mounted at /125/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.050559][ T7298] loop1: detected capacity change from 0 to 512
[  105.054160][ T7287] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.058699][ T7298] journal_path: Non-blockdev passed as './bus'
[  105.072109][ T7298] EXT4-fs: error: could not find journal device path
[  105.090423][ T7300] netlink: 332 bytes leftover after parsing attributes in process `syz.2.1148'.
[  105.204408][ T7316] loop1: detected capacity change from 0 to 128
[  105.250279][ T7319] FAULT_INJECTION: forcing a failure.
[  105.250279][ T7319] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.263413][ T7319] CPU: 1 UID: 0 PID: 7319 Comm: syz.0.1155 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[  105.263441][ T7319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  105.263455][ T7319] Call Trace:
[  105.263462][ T7319]  <TASK>
[  105.263550][ T7319]  dump_stack_lvl+0xf6/0x150
[  105.263576][ T7319]  dump_stack+0x15/0x1a
[  105.263591][ T7319]  should_fail_ex+0x261/0x270
[  105.263614][ T7319]  should_fail+0xb/0x10
[  105.263634][ T7319]  should_fail_usercopy+0x1a/0x20
[  105.263697][ T7319]  _copy_to_user+0x20/0xa0
[  105.263740][ T7319]  simple_read_from_buffer+0xb2/0x130
[  105.263849][ T7319]  proc_fail_nth_read+0x103/0x140
[  105.263892][ T7319]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  105.263933][ T7319]  vfs_read+0x1b2/0x710
[  105.263966][ T7319]  ? __rcu_read_unlock+0x4e/0x70
[  105.263988][ T7319]  ? __fget_files+0x186/0x1c0
[  105.264075][ T7319]  ksys_read+0xeb/0x1b0
[  105.264093][ T7319]  __x64_sys_read+0x42/0x50
[  105.264110][ T7319]  x64_sys_call+0x2a3b/0x2e10
[  105.264142][ T7319]  do_syscall_64+0xc9/0x1a0
[  105.264167][ T7319]  ? clear_bhb_loop+0x25/0x80
[  105.264186][ T7319]  ? clear_bhb_loop+0x25/0x80
[  105.264206][ T7319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.264274][ T7319] RIP: 0033:0x7fcae468cb7c
[  105.264292][ T7319] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  105.264310][ T7319] RSP: 002b:00007fcae2cf7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  105.264327][ T7319] RAX: ffffffffffffffda RBX: 00007fcae48b5fa0 RCX: 00007fcae468cb7c
[  105.264393][ T7319] RDX: 000000000000000f RSI: 00007fcae2cf70a0 RDI: 0000000000000006
[  105.264408][ T7319] RBP: 00007fcae2cf7090 R08: 0000000000000000 R09: 0000000000000000
[  105.264421][ T7319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.264435][ T7319] R13: 0000000000000000 R14: 00007fcae48b5fa0 R15: 00007ffd5e587b68
[  105.264458][ T7319]  </TASK>
[  105.309399][ T7321] loop3: detected capacity change from 0 to 8192
[  105.321804][ T7321] syz.3.1156: attempt to access beyond end of device
[  105.321804][ T7321] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  105.322184][ T7321] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1)
[  105.322264][ T7321] FAT-fs (loop3): Filesystem has been set read-only
[  105.322701][ T7321] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1)
[  105.322949][ T7321] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1)
[  105.361942][ T7327] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1157'.
[  105.363337][ T7323] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1157'.
[  105.435296][ T7329] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1160'.
[  105.449773][ T7333] loop2: detected capacity change from 0 to 512
[  105.481720][ T7333] EXT4-fs (loop2): 1 orphan inode deleted
[  105.492085][ T6031] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:9: Failed to release dquot type 1
[  105.516047][ T7333] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.682605][ T7333] ext4 filesystem being mounted at /234/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.704540][ T7333] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.763137][ T7347] loop0: detected capacity change from 0 to 512
[  105.777111][ T7349] loop3: detected capacity change from 0 to 512
[  105.791081][ T7349] journal_path: Non-blockdev passed as './bus'
[  105.797339][ T7349] EXT4-fs: error: could not find journal device path
[  105.807889][ T7347] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  105.846460][ T7347] EXT4-fs (loop0): 1 truncate cleaned up
[  105.858621][ T7352] loop2: detected capacity change from 0 to 512
[  105.886901][ T7347] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.906320][ T7352] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  105.917098][   T29] kauditd_printk_skb: 251 callbacks suppressed
[  105.917113][   T29] audit: type=1400 audit(1745383886.054:2613): avc:  denied  { connect } for  pid=7362 comm="syz.1.1169" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  105.945551][ T7352] EXT4-fs (loop2): 1 truncate cleaned up
[  105.954395][ T7352] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.967740][ T7347] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.970822][ T7352] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.004003][   T29] audit: type=1400 audit(1745383886.094:2614): avc:  denied  { ioctl } for  pid=7362 comm="syz.1.1169" path="socket:[16767]" dev="sockfs" ino=16767 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  106.033207][ T7363] 9pnet_fd: Insufficient options for proto=fd
[  106.125419][ T7366] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1171'.
[  106.267199][ T7383] loop1: detected capacity change from 0 to 512
[  106.293448][ T7383] journal_path: Non-blockdev passed as './bus'
[  106.299675][ T7383] EXT4-fs: error: could not find journal device path
[  106.457320][   T29] audit: type=1400 audit(1745383886.594:2615): avc:  denied  { execute } for  pid=7393 comm="syz.3.1182" path="/258/file0/bus" dev="ramfs" ino=16826 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  106.520598][   T29] audit: type=1400 audit(1745383886.664:2616): avc:  denied  { unmount } for  pid=3311 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  106.553499][ T7399] netlink: 'syz.5.1184': attribute type 10 has an invalid length.
[  106.573756][ T7399] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  106.594440][   T29] audit: type=1326 audit(1745383886.684:2617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7396 comm="syz.5.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda80ace169 code=0x7ffc0000
[  106.617954][   T29] audit: type=1326 audit(1745383886.684:2618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7396 comm="syz.5.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda80ace169 code=0x7ffc0000
[  106.641448][   T29] audit: type=1326 audit(1745383886.684:2619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7396 comm="syz.5.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7fda80ace169 code=0x7ffc0000
[  106.664918][   T29] audit: type=1326 audit(1745383886.684:2620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7396 comm="syz.5.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda80ace169 code=0x7ffc0000
[  106.688493][   T29] audit: type=1326 audit(1745383886.684:2621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7396 comm="syz.5.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda80ace169 code=0x7ffc0000
[  106.712009][   T29] audit: type=1326 audit(1745383886.694:2622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7396 comm="syz.5.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fda80ace169 code=0x7ffc0000
[  106.907159][ T7412] FAULT_INJECTION: forcing a failure.
[  106.907159][ T7412] name failslab, interval 1, probability 0, space 0, times 0
[  106.919873][ T7412] CPU: 0 UID: 0 PID: 7412 Comm: syz.3.1191 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[  106.919906][ T7412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  106.919992][ T7412] Call Trace:
[  106.920001][ T7412]  <TASK>
[  106.920011][ T7412]  dump_stack_lvl+0xf6/0x150
[  106.920039][ T7412]  dump_stack+0x15/0x1a
[  106.920059][ T7412]  should_fail_ex+0x261/0x270
[  106.920088][ T7412]  should_failslab+0x8f/0xb0
[  106.920114][ T7412]  __kmalloc_node_track_caller_noprof+0xaa/0x410
[  106.920219][ T7412]  ? cond_bools_copy+0x30/0x80
[  106.920349][ T7412]  kmemdup_noprof+0x2b/0x70
[  106.920385][ T7412]  cond_bools_copy+0x30/0x80
[  106.920415][ T7412]  hashtab_duplicate+0x132/0x370
[  106.920448][ T7412]  ? __pfx_cond_bools_copy+0x10/0x10
[  106.920506][ T7412]  ? __pfx_cond_bools_destroy+0x10/0x10
[  106.920537][ T7412]  cond_policydb_dup+0xd9/0x500
[  106.920615][ T7412]  security_set_bools+0xa8/0x350
[  106.920638][ T7412]  sel_commit_bools_write+0x1ed/0x270
[  106.920690][ T7412]  vfs_writev+0x3f3/0x880
[  106.920718][ T7412]  ? get_pid_task+0x94/0xd0
[  106.920738][ T7412]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  106.920795][ T7412]  ? mutex_lock+0xd/0x40
[  106.920815][ T7412]  do_writev+0xf7/0x230
[  106.920852][ T7412]  __x64_sys_writev+0x45/0x50
[  106.920876][ T7412]  x64_sys_call+0x1d68/0x2e10
[  106.920903][ T7412]  do_syscall_64+0xc9/0x1a0
[  106.920977][ T7412]  ? clear_bhb_loop+0x25/0x80
[  106.921002][ T7412]  ? clear_bhb_loop+0x25/0x80
[  106.921061][ T7412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.921081][ T7412] RIP: 0033:0x7f7fac8fe169
[  106.921100][ T7412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.921117][ T7412] RSP: 002b:00007f7faaf67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  106.921137][ T7412] RAX: ffffffffffffffda RBX: 00007f7facb25fa0 RCX: 00007f7fac8fe169
[  106.921151][ T7412] RDX: 0000000000000001 RSI: 00002000000025c0 RDI: 0000000000000006
[  106.921181][ T7412] RBP: 00007f7faaf67090 R08: 0000000000000000 R09: 0000000000000000
[  106.921243][ T7412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  106.921257][ T7412] R13: 0000000000000000 R14: 00007f7facb25fa0 R15: 00007ffe76736ab8
[  106.921280][ T7412]  </TASK>
[  107.197357][ T7415] loop5: detected capacity change from 0 to 512
[  107.220266][ T7415] journal_path: Non-blockdev passed as './bus'
[  107.226511][ T7415] EXT4-fs: error: could not find journal device path
[  107.382187][ T7432] FAULT_INJECTION: forcing a failure.
[  107.382187][ T7432] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.395303][ T7432] CPU: 1 UID: 0 PID: 7432 Comm: syz.3.1199 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[  107.395328][ T7432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  107.395343][ T7432] Call Trace:
[  107.395357][ T7432]  <TASK>
[  107.395365][ T7432]  dump_stack_lvl+0xf6/0x150
[  107.395395][ T7432]  dump_stack+0x15/0x1a
[  107.395415][ T7432]  should_fail_ex+0x261/0x270
[  107.395441][ T7432]  should_fail+0xb/0x10
[  107.395459][ T7432]  should_fail_usercopy+0x1a/0x20
[  107.395486][ T7432]  _copy_from_iter+0xd8/0xd10
[  107.395522][ T7432]  ? kmalloc_reserve+0x16e/0x190
[  107.395578][ T7432]  ? __build_skb_around+0x199/0x1f0
[  107.395680][ T7432]  ? __alloc_skb+0x227/0x320
[  107.395702][ T7432]  ? __virt_addr_valid+0x1ed/0x250
[  107.395719][ T7432]  ? __check_object_size+0x367/0x510
[  107.395750][ T7432]  netlink_sendmsg+0x492/0x720
[  107.395777][ T7432]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.395833][ T7432]  __sock_sendmsg+0x140/0x180
[  107.395865][ T7432]  ____sys_sendmsg+0x350/0x4e0
[  107.395896][ T7432]  __sys_sendmsg+0x1a0/0x240
[  107.396014][ T7432]  __x64_sys_sendmsg+0x46/0x50
[  107.396170][ T7432]  x64_sys_call+0x26f3/0x2e10
[  107.396194][ T7432]  do_syscall_64+0xc9/0x1a0
[  107.396225][ T7432]  ? clear_bhb_loop+0x25/0x80
[  107.396252][ T7432]  ? clear_bhb_loop+0x25/0x80
[  107.396332][ T7432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.396455][ T7432] RIP: 0033:0x7f7fac8fe169
[  107.396469][ T7432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.396491][ T7432] RSP: 002b:00007f7faaf67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.396513][ T7432] RAX: ffffffffffffffda RBX: 00007f7facb25fa0 RCX: 00007f7fac8fe169
[  107.396528][ T7432] RDX: 0000000000004000 RSI: 00002000000000c0 RDI: 0000000000000005
[  107.396542][ T7432] RBP: 00007f7faaf67090 R08: 0000000000000000 R09: 0000000000000000
[  107.396633][ T7432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.396648][ T7432] R13: 0000000000000000 R14: 00007f7facb25fa0 R15: 00007ffe76736ab8
[  107.396730][ T7432]  </TASK>
[  107.618315][ T7435] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1198'.
[  107.710168][ T7442] loop5: detected capacity change from 0 to 512
[  107.740130][ T7442] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  107.765804][ T7442] EXT4-fs (loop5): 1 truncate cleaned up
[  107.827474][ T7442] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.901831][ T7460] IPVS: Error joining to the multicast group
[  107.937142][ T7460] vlan2: entered allmulticast mode
[  107.944379][ T7442] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.101740][ T7477] loop2: detected capacity change from 0 to 512
[  108.109823][ T7477] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  108.544448][ T7507] loop2: detected capacity change from 0 to 512
[  108.551885][ T7509] loop0: detected capacity change from 0 to 512
[  108.573442][ T7507] EXT4-fs (loop2): 1 orphan inode deleted
[  108.579720][ T7507] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.592654][ T6031] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:9: Failed to release dquot type 1
[  108.596918][ T7507] ext4 filesystem being mounted at /244/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.612528][ T7509] EXT4-fs (loop0): 1 orphan inode deleted
[  108.621756][ T6031] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:9: Failed to release dquot type 1
[  108.654390][ T7509] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.681473][ T7509] ext4 filesystem being mounted at /185/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.708696][ T7509] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.718727][ T7507] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.032394][ T7544] loop0: detected capacity change from 0 to 512
[  109.177086][ T7536] siw: device registration error -23
[  109.214365][ T7544] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  109.268321][ T7544] EXT4-fs (loop0): 1 truncate cleaned up
[  109.293552][ T7544] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.340403][ T7544] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.524656][ T7562] 9pnet_fd: Insufficient options for proto=fd
[  109.676015][ T7578] loop3: detected capacity change from 0 to 512
[  109.716943][ T7578] EXT4-fs (loop3): 1 orphan inode deleted
[  109.732309][ T6468] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:12: Failed to release dquot type 1
[  109.744479][ T7578] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.761710][ T7591] __nla_validate_parse: 10 callbacks suppressed
[  109.761726][ T7591] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1250'.
[  109.777560][ T7585] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1250'.
[  109.800894][ T7578] ext4 filesystem being mounted at /274/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.857626][ T7578] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.897627][ T7590] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  109.926897][ T7590] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[  110.134835][ T7604] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1258'.
[  110.631732][ T7612] FAULT_INJECTION: forcing a failure.
[  110.631732][ T7612] name failslab, interval 1, probability 0, space 0, times 0
[  110.644426][ T7612] CPU: 0 UID: 0 PID: 7612 Comm: syz.1.1260 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[  110.644454][ T7612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  110.644471][ T7612] Call Trace:
[  110.644479][ T7612]  <TASK>
[  110.644488][ T7612]  dump_stack_lvl+0xf6/0x150
[  110.644513][ T7612]  dump_stack+0x15/0x1a
[  110.644531][ T7612]  should_fail_ex+0x261/0x270
[  110.644560][ T7612]  should_failslab+0x8f/0xb0
[  110.644579][ T7612]  kmem_cache_alloc_noprof+0x59/0x340
[  110.644605][ T7612]  ? vm_area_dup+0x32/0x260
[  110.644624][ T7612]  vm_area_dup+0x32/0x260
[  110.644642][ T7612]  __split_vma+0xf9/0x630
[  110.644679][ T7612]  vms_gather_munmap_vmas+0x171/0x790
[  110.644704][ T7612]  ? mas_walk+0x204/0x320
[  110.644727][ T7612]  mmap_region+0x46f/0x1490
[  110.644762][ T7612]  ? mntput+0x49/0x70
[  110.644792][ T7612]  ? terminate_walk+0x271/0x290
[  110.644827][ T7612]  do_mmap+0x9ef/0xc80
[  110.644853][ T7612]  vm_mmap_pgoff+0x16d/0x2d0
[  110.644886][ T7612]  ksys_mmap_pgoff+0x28a/0x340
[  110.644906][ T7612]  x64_sys_call+0x1945/0x2e10
[  110.644927][ T7612]  do_syscall_64+0xc9/0x1a0
[  110.644953][ T7612]  ? clear_bhb_loop+0x25/0x80
[  110.644972][ T7612]  ? clear_bhb_loop+0x25/0x80
[  110.644991][ T7612]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.645015][ T7612] RIP: 0033:0x7f8d3755e169
[  110.645033][ T7612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.645052][ T7612] RSP: 002b:00007f8d35bc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  110.645069][ T7612] RAX: ffffffffffffffda RBX: 00007f8d37785fa0 RCX: 00007f8d3755e169
[  110.645080][ T7612] RDX: 000000000000001e RSI: 0000000000003000 RDI: 0000200000002000
[  110.645091][ T7612] RBP: 00007f8d35bc7090 R08: 0000000000000008 R09: 0000000000000000
[  110.645103][ T7612] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001
[  110.645114][ T7612] R13: 0000000000000000 R14: 00007f8d37785fa0 R15: 00007ffe8efc5978
[  110.645133][ T7612]  </TASK>
[  110.921286][ T7611] uprobe: syz.1.1260:7611 failed to unregister, leaking uprobe
[  110.968114][ T7620] loop2: detected capacity change from 0 to 512
[  110.993952][ T7620] EXT4-fs (loop2): 1 orphan inode deleted
[  111.001739][ T7620] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.014504][   T31] __quota_error: 31 callbacks suppressed
[  111.014516][   T31] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  111.030026][   T31] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  111.042404][ T7620] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.042598][ T6465] bridge_slave_1: left allmulticast mode
[  111.058590][ T6465] bridge_slave_1: left promiscuous mode
[  111.064299][ T6465] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.092040][ T7620] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.111161][ T6465] bridge_slave_0: left allmulticast mode
[  111.116956][ T6465] bridge_slave_0: left promiscuous mode
[  111.122800][ T6465] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.193132][ T7628] ref_ctr increment failed for inode: 0x5f8 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff88810442f380
[  111.212382][ T7627] uprobe: syz.1.1266:7627 failed to unregister, leaking uprobe
[  111.246546][ T6465] dvmrp0 (unregistering): left allmulticast mode
[  111.271037][ T7634] loop2: detected capacity change from 0 to 512
[  111.306414][ T7634] EXT4-fs (loop2): 1 orphan inode deleted
[  111.322795][ T6465] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  111.331583][ T6468] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  111.341373][ T6468] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:12: Failed to release dquot type 1
[  111.360252][ T7634] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.383756][ T6465] bond0 (unregistering): Released all slaves
[  111.390483][ T7634] ext4 filesystem being mounted at /256/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.408571][ T7634] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.579994][ T6465] hsr_slave_0: left promiscuous mode
[  111.587258][ T6465] hsr_slave_1: left promiscuous mode
[  111.605129][ T6465] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  111.612658][ T6465] batman_adv: batadv0: Removing interface: batadv_slave_0
[  111.684308][ T7654] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  111.692405][ T6465] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  111.699805][ T6465] batman_adv: batadv0: Removing interface: batadv_slave_1
[  111.714236][ T7654] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[  111.751534][ T6465] veth1_macvtap: left promiscuous mode
[  111.760134][ T6465] veth0_macvtap: left promiscuous mode
[  111.772279][ T6465] veth1_vlan: left promiscuous mode
[  111.784832][ T6465] veth0_vlan: left promiscuous mode
[  112.283304][ T7668] loop1: detected capacity change from 0 to 512
[  112.298946][ T6465] team0 (unregistering): Port device team_slave_1 removed
[  112.316830][ T6465] team0 (unregistering): Port device team_slave_0 removed
[  112.337430][ T7668] EXT4-fs (loop1): 1 orphan inode deleted
[  112.348235][ T7668] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.362269][   T51] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  112.372103][   T51] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[  112.372110][ T7668] ext4 filesystem being mounted at /282/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.372249][   T51] ==================================================================
[  112.372295][   T51] BUG: KCSAN: data-race in data_push_tail / vsnprintf
[  112.372352][   T51] 
[  112.372362][   T51] write to 0xffffffff88e4bed8 of 1 bytes by task 7668 on cpu 0:
[  112.372383][   T51]  vsnprintf+0x84d/0x8a0
[  112.372420][   T51]  vscnprintf+0x42/0x90
[  112.372457][   T51]  printk_sprint+0x30/0x2d0
[  112.372497][   T51]  vprintk_store+0x583/0x860
[  112.372536][   T51]  vprintk_emit+0x1a0/0x6c0
[  112.372574][   T51]  vprintk_default+0x26/0x30
[  112.372597][   T51]  vprintk+0x1d/0x30
[  112.372626][   T51]  _printk+0x7f/0xb0
[  112.372654][   T51]  mnt_warn_timestamp_expiry+0x1cd/0x210
[  112.372688][   T51]  do_new_mount+0x32c/0x6b0
[  112.372708][   T51]  path_mount+0x49b/0xb30
[  112.372745][   T51]  __se_sys_mount+0x28f/0x2e0
[  112.372764][   T51]  __x64_sys_mount+0x67/0x80
[  112.372783][   T51]  x64_sys_call+0xd11/0x2e10
[  112.372805][   T51]  do_syscall_64+0xc9/0x1a0
[  112.372834][   T51]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.372859][   T51] 
[  112.372867][   T51] read to 0xffffffff88e4bed8 of 8 bytes by task 51 on cpu 1:
[  112.372887][   T51]  data_push_tail+0x107/0x440
[  112.372926][   T51]  data_alloc+0xbd/0x2c0
[  112.372960][   T51]  prb_reserve+0x86a/0xb80
[  112.372990][   T51]  vprintk_store+0x552/0x860
[  112.373029][   T51]  vprintk_emit+0x1a0/0x6c0
[  112.373067][   T51]  vprintk_default+0x26/0x30
[  112.373089][   T51]  vprintk+0x1d/0x30
[  112.373118][   T51]  _printk+0x7f/0xb0
[  112.373144][   T51]  __ext4_error+0x259/0x340
[  112.373169][   T51]  ext4_release_dquot+0x2fd/0x480
[  112.373201][   T51]  quota_release_workfn+0x254/0x540
[  112.373231][   T51]  process_scheduled_works+0x4de/0xa20
[  112.373268][   T51]  worker_thread+0x52c/0x710
[  112.373303][   T51]  kthread+0x4b7/0x540
[  112.373325][   T51]  ret_from_fork+0x4b/0x60
[  112.373346][   T51]  ret_from_fork_asm+0x1a/0x30
[  112.373374][   T51] 
[  112.373382][   T51] value changed: 0x00000000ffffe613 -> 0x00000000ffffe600
[  112.373398][   T51] 
[  112.373406][   T51] Reported by Kernel Concurrency Sanitizer on:
[  112.373422][   T51] CPU: 1 UID: 0 PID: 51 Comm: kworker/u8:3 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[  112.373455][   T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  112.373473][   T51] Workqueue: events_unbound quota_release_workfn
[  112.373500][   T51] ==================================================================
[  112.673299][ T7668] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.