last executing test programs:

4.148784139s ago: executing program 1 (id=1300):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
socket(0x10, 0x3, 0x0)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x1018000, &(0x7f00000009c0)=ANY=[@ANYRES8=0x0, @ANYRES64, @ANYRES16=0x0, @ANYRESOCT, @ANYRESOCT=r4, @ANYRESDEC], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
socket$inet_mptcp(0x2, 0x1, 0x106)
r5 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="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", 0x12d, r5)

2.189426173s ago: executing program 2 (id=1328):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000000), 0x4)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000900)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280"], 0x44}}, 0x0)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000540)={0x11, 0x4, 0xc, 0x5, @vifc_lcl_ifindex, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)

1.547820021s ago: executing program 2 (id=1337):
r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r3, 0xc0182101, &(0x7f0000000180)={0x0, 0x0, 0x7f})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000540)={<r4=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000080)={r4, 0x3, r3})
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
r5 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x8, 0x8, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0}, 0x2804, 0x0, 0x0, 0x3, 0x400, 0x10001, 0x1, 0x0, 0x0, 0x0, 0x1c0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
r7 = inotify_init1(0x0)
read(r7, 0x0, 0x0)
close(r7)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a0b040000000000000000020000054c00048018000180080001006f7366000c000280080001400000000430000180080001006e61740024000280080001400f0000010800034000000014080002400000000208000440000000150900010073797a30000000000900020073797a32"], 0xa0}, 0x1, 0x0, 0x0, 0x850}, 0x0)
write$tun(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0xa8)
r8 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x1e, r0, 0xffffffffffffffff, r8, 0x0)

1.547190361s ago: executing program 4 (id=1338):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
pwrite64(r0, &(0x7f0000000080)='3', 0x1, 0x0)

1.506325951s ago: executing program 4 (id=1340):
set_mempolicy(0x2, &(0x7f0000000000)=0x7, 0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x4)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000140)={0x4200, 0x3, 0x5}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000010c0)=ANY=[@ANYBLOB="200000001600010a00000000000000000a0000000c0000800800", @ANYRES16=r1], 0x20}, 0x1, 0x0, 0x0, 0x20040041}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r3, 0x84, 0x17, &(0x7f00000002c0)={0x0, 0x1, 0x1, "cd"}, 0x9)
close(r3)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x4008, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")

1.491883941s ago: executing program 0 (id=1341):
accept4(0xffffffffffffffff, 0x0, &(0x7f0000000080), 0x0)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x12)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={0x0, r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018", @ANYBLOB="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", @ANYBLOB="0000000000000000b7080000000000007b8af80900100000bfa200000000000007020000f8ffffffb70300000800ffffffbf000000000000850000000300000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, 0x0)
r2 = timerfd_create(0x7, 0x0)
timerfd_gettime(r2, &(0x7f0000000000))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="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"/276], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
r6 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
write$cgroup_subtree(r7, &(0x7f0000002340)=ANY=[@ANYRES8, @ANYRES8, @ANYBLOB="f0f0e603319b5a6a4527569957413b689c19b8f7f3ce902c86a09c7f5c0cb859c12508ad420e957a22fee0413868cd004800ba0842e78267d7ecad934d487702567d0dcfde7881207cf11af015ee54711a5982d3369e569c608727e186a46ccf753be07af9be53fa43651613ae28bcf704590cf1ccd7e270a751b658f81d1b9ea8e821830965fcd056d2611b10c881a49c0de6a3baa1258e26f94833bf2076a3506f18ae1fab0f7d142f8f4c5ce4bdff481f80b86c23cbf4f9a2ff7921ec14e6a1c9376456f7ad9d3ac7eb810424e6d8f9f569f5b95b650070a82c60010337d2505b52eda733e0136994b0317d5d61d9df04a110a77661b5aca2bee98f1de9a3241f2ee789bbb6be925f52d2a80b10024a4b928c967ab472fe1b822faec681ac773801b5eda8ea4759da23e9ac9db778f303455bccc339de504c00bcf3a5570ada59101946efda"], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r7, 0x0)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10)

1.184546295s ago: executing program 4 (id=1343):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000000)={0x8, 'vlan1\x00', {'vlan0\x00'}, 0x8})
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
mknod$loop(0x0, 0x6000, 0x0)
r1 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4}, &(0x7f00000003c0)=<r2=>0x0, &(0x7f0000000580)=<r3=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r1, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
pipe(&(0x7f0000000440)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
splice(r6, 0x0, r5, 0x0, 0x10000008ebc, 0x0)
splice(r4, 0x0, r7, 0x0, 0x25a5, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000380)=ANY=[], 0x15)
r8 = socket(0x400000000010, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r10, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
setsockopt$inet_mreqn(r5, 0x0, 0x23, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x30}, r10}, 0xc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000009c0)="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", 0x350}, {0x0}, {&(0x7f0000000140)="bd", 0x1}], 0x3, 0x0, 0x60}, 0x0)

1.135189236s ago: executing program 0 (id=1346):
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendto$inet6(r0, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) (fail_nth: 2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1.064031347s ago: executing program 0 (id=1347):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b00000"], 0x0, 0xfffffffe, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb95, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
syz_usbip_server_init(0x2)

790.319251ms ago: executing program 3 (id=1348):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x5e, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='projid_map\x00')
lseek(r2, 0xc17, 0x1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r3}, 0x10)
dup2(r0, r1)

770.903971ms ago: executing program 3 (id=1349):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
mkdir(&(0x7f00000008c0)='./file0\x00', 0x0)
llistxattr(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)

752.295931ms ago: executing program 3 (id=1350):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0xffffffff}, 0x1100, 0x5dd8, 0x3a65, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = syz_io_uring_setup(0x10b, &(0x7f0000000580)={0x0, 0xd736, 0x8, 0x1, 0x3}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x80, 0x6000})
io_uring_enter(r0, 0x6a4f, 0x4053, 0x22, 0x0, 0x0)
unshare(0x2040600)
gettid()
bpf$MAP_CREATE(0xe4ffffff00000000, &(0x7f0000004440)=@base={0x4, 0x4, 0x4, 0x40007, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
epoll_create1(0x80000)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x40000, 0x0)
ioctl$TCFLSH(r0, 0x540b, 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
futex(0x0, 0x3, 0x0, &(0x7f0000fd7ff0)={0x77359400}, 0x0, 0xfffffffd)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000000000)={'syztnl1\x00', &(0x7f00000000c0)={'gretap0\x00', 0x0, 0x40, 0x40, 0x80000001, 0xc, {{0x9, 0x4, 0x2, 0x2f, 0x24, 0x66, 0x0, 0x8, 0x29, 0x0, @multicast1, @dev={0xac, 0x14, 0x14, 0x1e}, {[@lsrr={0x83, 0xf, 0xba, [@loopback, @loopback, @broadcast]}]}}}}})
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

665.692162ms ago: executing program 1 (id=1351):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000160000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000003c0)='mm_page_alloc\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000050000000000000000000024000a20000000000a1f000000000000000000010000000900010073797a300000000058000000030a0104000000000000000001000000090003803d2175fbe782c2002c00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b400000000014000480100001800b0001006e756d67656e00000900010073797a30"], 0x122}}, 0x10)

636.700612ms ago: executing program 1 (id=1352):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
mkdir(&(0x7f00000008c0)='./file0\x00', 0x0)
llistxattr(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)

617.240312ms ago: executing program 2 (id=1353):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x8, &(0x7f0000000000)=[{&(0x7f0000000340)="5c00000013006bcd9e3fe3dc4e48aa31086b8703140000001f03000000330000040014000d000a000d0000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x840)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x50, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x14, 0x11, 0x0, 0x1, @limit={{0xa}, @val={0x4}}}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x98}}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

603.934742ms ago: executing program 1 (id=1354):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63940d0124fc602f6e35400c000200001ec00037153e370a00018025581d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)

594.555783ms ago: executing program 3 (id=1355):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "7f12ddc1517600"})
syz_open_pts(r0, 0x4000)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000980)=@newtclass={0xa0, 0x28, 0x100, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0xf, 0x6}, {0x3, 0xfff3}, {0x2, 0xffe0}}, [@tclass_kind_options=@c_sfb={0x8}, @TCA_RATE={0x6, 0x5, {0xf, 0x6}}, @tclass_kind_options=@c_sfq={0x8}, @TCA_RATE={0x6, 0x5, {0x7, 0x2}}, @TCA_RATE={0x6, 0x5, {0x62, 0x2}}, @TCA_RATE={0x6, 0x5, {0x22, 0x5}}, @TCA_RATE={0x6, 0x5, {0x7, 0x8}}, @tclass_kind_options=@c_qfq={{0x8}, {0x3c, 0x2, [@TCA_QFQ_WEIGHT={0x8, 0x1, 0x7ff}, @TCA_QFQ_LMAX={0x8, 0x2, 0x3ff}, @TCA_QFQ_WEIGHT={0x8, 0x1, 0x76}, @TCA_QFQ_WEIGHT={0x8, 0x1, 0x1ff}, @TCA_QFQ_WEIGHT={0x8, 0x1, 0x7c}, @TCA_QFQ_LMAX={0x8, 0x2, 0xff}, @TCA_QFQ_WEIGHT={0x8, 0x1, 0x1}]}}]}, 0xa0}}, 0x0)
r4 = socket(0x11, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r6=>0x0})
bind$packet(r4, &(0x7f0000000180)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @remote}, 0x14)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@gettfilter={0x2c, 0x2e, 0x2, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {0x0, 0x10}, {0xa}, {0x2, 0x3}}, [{0x8, 0xb, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x44}, 0x20000000)
r7 = syz_open_pts(r0, 0x0)
ioctl$TIOCVHANGUP(r7, 0x5437, 0x0)
syz_mount_image$ext4(&(0x7f00000010c0)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x200000, &(0x7f0000000300)={[{@user_xattr}, {@dioread_lock}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x1}}, {@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@lazytime}, {@noblock_validity}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x54d, &(0x7f0000000400)="$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")
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r10, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c00000008001240000000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x5, "cb4672ac02132ca6"})
ioctl$TIOCGPTPEER(r0, 0x5441, 0x0)

577.149383ms ago: executing program 2 (id=1356):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63940d0124fc602f6e35400c000200001ec00037153e370a00018025581d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0) (fail_nth: 1)

573.093693ms ago: executing program 1 (id=1357):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x71, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f00000000c0)={0xa3, 0xd, 0x4, 0xfe, 0xe0, 0xfeff, 0x0})

536.205643ms ago: executing program 2 (id=1358):
r0 = io_uring_setup(0x201612, &(0x7f0000000200)={0x0, 0xbce5, 0x8})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYRES16=r0, @ANYBLOB="545b5df307425f599fb58edc54fd592cd5a1b2367ee8b7585bd0ce314c41af82243ea913", @ANYRES8=r0, @ANYRES64=r1, @ANYRES32=r1, @ANYRESHEX=r2], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000540)={0x3, 0x0, 0x0, 'queue1\x00'})
syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13580, 0x0, 0xfffffffe}, 0x0, 0x0)
write$sndseq(r5, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x16, 0xf, &(0x7f00000003c0)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [], {{0x6, 0x1, 0xd, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r7, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000200)="9e36d448b388dd965f7a3312779a", 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x50)
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f0000001580)={0x1, 0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000000040)=""/168, 0xa8}], &(0x7f0000001540)=[0x2]}, 0x20)

457.444814ms ago: executing program 4 (id=1359):
r0 = socket$igmp(0x2, 0x3, 0x2)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000900)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280"], 0x44}}, 0x0)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000540)={0x11, 0x4, 0xc, 0x5, @vifc_lcl_ifindex, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)

456.465294ms ago: executing program 0 (id=1360):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
mkdir(&(0x7f00000008c0)='./file0\x00', 0x0)
llistxattr(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)

417.413505ms ago: executing program 0 (id=1361):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r1, &(0x7f00000005c0)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_MESH(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x24, r4, 0x1, 0xfffffffe, 0x25dfdbfe, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x24}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r5 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x3, 0x800000000001}, 0x1180, 0x5dd8, 0x0, 0x8, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = creat(&(0x7f0000000640)='./file1\x00', 0x148)
connect$pppoe(r6, &(0x7f0000000680)={0x18, 0x0, {0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x26}, 'ip6gre0\x00'}}, 0x1e)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r7)
r8 = socket$inet6_dccp(0xa, 0x6, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0f000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000fdffffff000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b0af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r10, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x7ffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ppoll(&(0x7f0000000080)=[{r8, 0x2310}], 0x1, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffc}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x20000c4, &(0x7f0000000080), 0x1, 0x553, &(0x7f0000001080)="$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")
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r1, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb3226b0ca75d135ebd8cae46fb83b71c103e1fdcb1934fd1d28b4916abe2c44e26ea72be426c27052e816212096000155788943b846746ccb492175fc9e01", 0xf4}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587d38436637e702ae18eeccefdcd7a3cdd7bfc327b5d619b57d56afe1628b65e2948af5ee0e3f52746a5aff58bb7c6d253a58bf745584d1bc19fe5e42b5534eab9e9d2587b413e81f68b60f56130f82b327f5fe900e3e107bc6b783d1d23a056426d6502133386b51e657046c1c43a2a2c4a7611ee6592a5ee08700d24d832163b3def", 0xe8}, {0x0}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882907ab089ee65d16a6c6f5c666dad31257fb48b66d940a3819d0809971e", 0x33}, {&(0x7f0000000740)="f52ec22aafecc37a6d9995f1afb5c1727f223f9b84451a110b1dfbf19cc7ed183ba93f6d55645001887fc999262b9c938e22ef5ec46b4b1b535060dcca5cff1f0e5a1d9b32cef2b6e0a61af7968dc1759c4d901867d7d6e9f2521f6a1578e1cc2fbf58837a2633c0b8299192718c61227412dafd01e899723b33735bbec3e1429117362acc4139fc3565f183bd5568f47f4bc416adb360fdd9c497c2ad2ffe1ad738f4c073f1378d2b455e61844076a4a97ac1e13e2fb300ae69d55c501f96dcc39bf7ed835cc866f0fbd8", 0xcb}, {&(0x7f0000000200)="057322e18609ed78266492c2a2ae3f0c0f3f6394c53de2727898d209dcb274efec9fc9995189ead7bf00148d091675fa045479985e4f644d258d0aa4a69618eb08ba045907a549ed83b88863c73d859acf1d16d599c71547", 0x58}], 0x6}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000e80)="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", 0x12a}], 0x1}}], 0x2, 0xc0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r1, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

390.508415ms ago: executing program 2 (id=1362):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
socket(0x10, 0x3, 0x0)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x1018000, &(0x7f00000009c0)=ANY=[@ANYRES8=0x0, @ANYRES64, @ANYRES16=0x0, @ANYRESOCT, @ANYRESOCT=r4, @ANYRESDEC], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
socket$inet_mptcp(0x2, 0x1, 0x106)
r5 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="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", 0x12d, r5)

295.905296ms ago: executing program 3 (id=1363):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x4b, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r2}, &(0x7f0000000800), &(0x7f0000000840)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r4}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

294.897777ms ago: executing program 1 (id=1364):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000000780)={0x0, 0x0, {}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000010c0)=@newlink={0x38, 0x10, 0xc3b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0x0, 0x1006}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x38}}, 0x40080c0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
unshare(0x68040200)

222.480317ms ago: executing program 4 (id=1365):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x1d6}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x6000000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
r3 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
write$binfmt_register(r3, &(0x7f0000000440)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)
syz_emit_ethernet(0x46, &(0x7f0000000400)=ANY=[@ANYBLOB="ff6bc2000000bbbbbbbbbbbb0800451000380080000000019078ac1e0001ac1414aa030490781206183f25000000006700000089000064010101e00000020018630100000003"], 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
read$hiddev(r4, &(0x7f00000000c0)=""/4092, 0xffc)
pread64(r4, &(0x7f00000013c0)=""/208, 0xd0, 0x800)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001140)={0x11, 0x4, &(0x7f0000001200)=ANY=[@ANYRES8=0x0, @ANYRES8=0x0, @ANYRESOCT, @ANYRESHEX=r1], &(0x7f0000001240)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000200)={[{@noblock_validity}, {@errors_remount}, {@sysvgroups}, {@norecovery}, {@oldalloc}, {@orlov}, {@oldalloc}, {@auto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x580, &(0x7f0000001b40)="$eJzs3U1rVFcfAPD/nUx8fx4jiLRdlICLWqwTk/TFQkG7LK1UaPd2SK5BMnEkMxGTCuqibropUiilQukH6L5L6RfopxBaQYqEdtFNyp3c0TGTmcQ4dkbn94Or59xzJ+eee+45+Z+5EyaAoTWe/VOIeDUivkkiDraUFSMvHF8/bvXhtZlsS2Jt7bM/k0jyfc3jk/z//XnmlYj49auI44X2emvLK/PlSiVdzPMT9YXLE7XllRMXF8pz6Vx6aWp6+tQ701Pvv/duz9r65rm/v//07kenvj66+t3P9w/dTuJMHMjLWtvxDG60ZsZjPL8mo3Fmw4GTPahskCT9PgF2ZCQf56ORzQEHYyQf9cDL73pErAFDKjH+YUg144Dm2r5H6+AXxoMP1xdA7e0vrr83Ensaa6N9q8kTK6NsvTvWg/qzOn75487tbIst3oe43oP6AJpu3IyIk8Vi+/yX5PPfzp1svHnc3cY6hu33D/TT3Sz+eWuz+KfwKP6JTeKf/ZuM3Z3YevwX7vegmo6y+O+DTePfR1PX2Eie+18j5htNLlyspCcj4v8RcSxGd2f5bs9zTq3eW+tU1hr/ZVtWfzMWzM/jfnH3k6+ZLdfLz9LmVg9uRrz2OP5Nom3+39OIdTf2f3Y9zm2zjiPpndc7lW3d/mhZqvQ+Al77KeKNTfv/8ROtpPvzyYnG/TDRvCva/XXryG+d6t9G+5+rrP/3dW//WNL6vLb29HX8uOeftFPZTu//XcnnjfSufN/Vcr2+OBmxK/mkff/U49c2883js/YfO9p9/tvs/t8bEV9ss/23Dt/qeOgg9P/sU/X/0yfuffzlD53q317/v91IHcv3bGf+2+4JPsu1AwAAAAAAgEFTiIgDEWOlR+lCoVRa/3zH4dhXqFRr9eMXqkuXZhvHxViMFppPug+2fB5iMv88bDM/tSE/HRGHIuLbkb2NfGmmWpntd+MBAAAAAAAAAAAAAAAAAABgQOxv/M1/Utj49/+Z30f6fXbAc+crv2F4bTn+e/FNT8BA8vsfhpfxD8PL+IfhZfzD8DL+YXh1Gf+mBnjJGeQwvIx/AAAAAAAAAAAAAAAAAAAAAAAAAAAA6KlzZ89m29rqw2szWX72yvLSfPXKidm0Nl9aWJopzVQXL5fmqtW5SlqaqS5s9fMq1erlyalYujpRT2v1idryyvmF6tKl+vmLC+W59Hw6+p+0CgAAAAAAAAAAAAAAAAAAAF4steWV+XKlki5KdEycjoE4jR0nkq16+XR+M7QVFfKCbi8v9r+BL22i2PXKP99EHyclAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANjg3wAAAP//IAU3iQ==")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f0000000000), &(0x7f0000000080)=ANY=[], 0x835, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
socket$packet(0x11, 0x2, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x5, 0x0)
munlockall()
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r6, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "810000cc2b000000000000fa25ffff00ffffff"})
r7 = syz_open_pts(r6, 0x141601)
fcntl$setstatus(r7, 0x4, 0x102800)
ioctl$TCFLSH(r6, 0x540b, 0x0)

182.681948ms ago: executing program 3 (id=1366):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x1d6}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x6000000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
r3 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
write$binfmt_register(r3, &(0x7f0000000440)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)
syz_emit_ethernet(0x46, &(0x7f0000000400)=ANY=[@ANYBLOB="ff6bc2000000bbbbbbbbbbbb0800451000380080000000019078ac1e0001ac1414aa030490781206183f25000000006700000089000064010101e00000020018630100000003"], 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
read$hiddev(r4, &(0x7f00000000c0)=""/4092, 0xffc)
pread64(r4, &(0x7f00000013c0)=""/208, 0xd0, 0x800)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001140)={0x11, 0x4, &(0x7f0000001200)=ANY=[@ANYRES8=0x0, @ANYRES8=0x0, @ANYRESOCT, @ANYRESHEX=r1], &(0x7f0000001240)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000200)={[{@noblock_validity}, {@errors_remount}, {@sysvgroups}, {@norecovery}, {@oldalloc}, {@orlov}, {@oldalloc}, {@auto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x580, &(0x7f0000001b40)="$eJzs3U1rVFcfAPD/nUx8fx4jiLRdlICLWqwTk/TFQkG7LK1UaPd2SK5BMnEkMxGTCuqibropUiilQukH6L5L6RfopxBaQYqEdtFNyp3c0TGTmcQ4dkbn94Or59xzJ+eee+45+Z+5EyaAoTWe/VOIeDUivkkiDraUFSMvHF8/bvXhtZlsS2Jt7bM/k0jyfc3jk/z//XnmlYj49auI44X2emvLK/PlSiVdzPMT9YXLE7XllRMXF8pz6Vx6aWp6+tQ701Pvv/duz9r65rm/v//07kenvj66+t3P9w/dTuJMHMjLWtvxDG60ZsZjPL8mo3Fmw4GTPahskCT9PgF2ZCQf56ORzQEHYyQf9cDL73pErAFDKjH+YUg144Dm2r5H6+AXxoMP1xdA7e0vrr83Ensaa6N9q8kTK6NsvTvWg/qzOn75487tbIst3oe43oP6AJpu3IyIk8Vi+/yX5PPfzp1svHnc3cY6hu33D/TT3Sz+eWuz+KfwKP6JTeKf/ZuM3Z3YevwX7vegmo6y+O+DTePfR1PX2Eie+18j5htNLlyspCcj4v8RcSxGd2f5bs9zTq3eW+tU1hr/ZVtWfzMWzM/jfnH3k6+ZLdfLz9LmVg9uRrz2OP5Nom3+39OIdTf2f3Y9zm2zjiPpndc7lW3d/mhZqvQ+Al77KeKNTfv/8ROtpPvzyYnG/TDRvCva/XXryG+d6t9G+5+rrP/3dW//WNL6vLb29HX8uOeftFPZTu//XcnnjfSufN/Vcr2+OBmxK/mkff/U49c2883js/YfO9p9/tvs/t8bEV9ss/23Dt/qeOgg9P/sU/X/0yfuffzlD53q317/v91IHcv3bGf+2+4JPsu1AwAAAAAAgEFTiIgDEWOlR+lCoVRa/3zH4dhXqFRr9eMXqkuXZhvHxViMFppPug+2fB5iMv88bDM/tSE/HRGHIuLbkb2NfGmmWpntd+MBAAAAAAAAAAAAAAAAAABgQOxv/M1/Utj49/+Z30f6fXbAc+crv2F4bTn+e/FNT8BA8vsfhpfxD8PL+IfhZfzD8DL+YXh1Gf+mBnjJGeQwvIx/AAAAAAAAAAAAAAAAAAAAAAAAAAAA6KlzZ89m29rqw2szWX72yvLSfPXKidm0Nl9aWJopzVQXL5fmqtW5SlqaqS5s9fMq1erlyalYujpRT2v1idryyvmF6tKl+vmLC+W59Hw6+p+0CgAAAAAAAAAAAAAAAAAAAF4steWV+XKlki5KdEycjoE4jR0nkq16+XR+M7QVFfKCbi8v9r+BL22i2PXKP99EHyclAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANjg3wAAAP//IAU3iQ==")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f0000000000), &(0x7f0000000080)=ANY=[], 0x835, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
socket$packet(0x11, 0x2, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x5, 0x0)
munlockall()
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r6, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "810000cc2b000000000000fa25ffff00ffffff"})
r7 = syz_open_pts(r6, 0x141601)
fcntl$setstatus(r7, 0x4, 0x102800)
ioctl$TCFLSH(r6, 0x540b, 0x0)

150.221498ms ago: executing program 0 (id=1367):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x600e7180, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000a80)='kfree\x00', r3, 0x0, 0x1d}, 0x18)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0xfffffffd, 0x300, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}]}, [{}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x20000}, {}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x20000000, 0x7fffffff, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x1000000}, {0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {0xfffffff9, 0x0, 0x0, 0x0, 0x2}, {}, {}, {0x3}, {0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {0x80000000, 0x0, 0xfffffffd}, {}, {0x100000}, {0x0, 0x4000}, {0xfffffffe}, {0x1}, {0xd5, 0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0x0, 0x0, 0x1}, {0x2000000}, {}, {0x0, 0x1}, {}, {0x0, 0x10}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4, 0x6}, {0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x10}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, {0x0, 0x0, 0x4}, {0x3}, {0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {}, {0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x4, 0x4, 0x0, 0x0, 0x0, 0xfffffffc}, {0x4, 0xffffffff}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x400000}, {0x814, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x0, 0x1, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x8000000}, {0x4}, {0x0, 0x0, 0x0, 0xfffffff9}, {}, {0x0, 0x0, 0x0, 0x100, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x2}, {0x8}, {}, {}, {0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x10000}, {0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, {0x0, 0x0, 0x1, 0x0, 0xd}], [{0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}}, 0x0)
sendmmsg$inet(r1, &(0x7f0000002f00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20004000)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000000c0)=0x400, 0x4)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r5, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r5, &(0x7f0000000040), 0x0, 0x0, 0x0)
fremovexattr(r5, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00')
recvfrom$inet(r5, &(0x7f0000000040)=""/39, 0x27, 0x0, &(0x7f0000000080)={0x2, 0x4e21, @remote}, 0x10)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r6, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00', 0x0, 0x41005, 0x0, 0x1, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x4})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
read$hiddev(r7, &(0x7f00000000c0)=""/4092, 0xffc)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r9}, 0x10)
io_setup(0x4082, &(0x7f0000000380)=<r10=>0x0)
io_pgetevents(r10, 0x0, 0x0, 0x0, 0x0, 0x0)
pread64(r7, &(0x7f00000013c0)=""/208, 0xd0, 0x800)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r6, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port1\x00', 0x0, 0x1048, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

0s ago: executing program 4 (id=1368):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u}]}})

kernel console output (not intermixed with test programs):

1.462': attribute type 13 has an invalid length.
[   63.858806][ T4925] loop4: detected capacity change from 0 to 256
[   63.865586][ T4925] vfat: Unknown parameter 'ÿÿ'
[   63.940678][   T29] kauditd_printk_skb: 34 callbacks suppressed
[   63.946872][   T29] audit: type=1326 audit(1748170451.528:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4937 comm="syz.4.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   63.970225][   T29] audit: type=1326 audit(1748170451.528:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4937 comm="syz.4.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   63.985304][ T4944] loop3: detected capacity change from 0 to 512
[   63.993487][   T29] audit: type=1326 audit(1748170451.528:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4937 comm="syz.4.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   64.031160][ T4944] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   64.054407][   T29] audit: type=1326 audit(1748170451.538:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4937 comm="syz.4.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   64.106763][ T4944] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c019, mo2=0002]
[   64.117074][ T4953] netlink: 'syz.2.479': attribute type 13 has an invalid length.
[   64.128515][ T4944] System zones: 1-12
[   64.133340][ T4944] EXT4-fs (loop3): 1 truncate cleaned up
[   64.175061][ T4963] loop3: detected capacity change from 0 to 256
[   64.182545][ T4963] vfat: Unknown parameter 'ÿÿ'
[   64.210089][ T4962] loop1: detected capacity change from 0 to 512
[   64.232632][ T4962] ext4 filesystem being mounted at /120/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   64.253783][ T4973] loop0: detected capacity change from 0 to 512
[   64.263727][ T4973] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   64.277277][ T4973] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c019, mo2=0002]
[   64.285465][ T4973] System zones: 1-12
[   64.290274][ T4973] EXT4-fs (loop0): 1 truncate cleaned up
[   64.406433][ T4985] netlink: 'syz.1.490': attribute type 10 has an invalid length.
[   64.414324][ T4985] batadv0: entered promiscuous mode
[   64.419577][ T4985] batadv0: entered allmulticast mode
[   64.426065][ T4985] bond0: (slave batadv0): Releasing backup interface
[   64.437885][ T4985] bridge0: port 3(batadv0) entered blocking state
[   64.444585][ T4985] bridge0: port 3(batadv0) entered disabled state
[   64.551296][   T51] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[   64.560763][   T51] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[   64.642303][ T5003] loop2: detected capacity change from 0 to 164
[   64.649466][ T5003] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   64.658822][ T5003] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   64.668377][ T5003] Symlink component flag not implemented
[   64.674173][ T5003] Symlink component flag not implemented
[   64.680004][ T5003] Symlink component flag not implemented (7)
[   64.686083][ T5003] Symlink component flag not implemented (116)
[   64.705285][ T5006] netlink: 'syz.0.500': attribute type 13 has an invalid length.
[   64.718798][ T5008] loop3: detected capacity change from 0 to 512
[   64.734535][ T5008] ext4 filesystem being mounted at /88/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   64.868885][ T5026] netlink: 'syz.0.507': attribute type 10 has an invalid length.
[   64.882080][ T5022] wireguard0: entered promiscuous mode
[   64.887690][ T5022] wireguard0: entered allmulticast mode
[   64.971275][ T5028] bond6: entered promiscuous mode
[   64.976452][ T5028] bond6: entered allmulticast mode
[   64.983222][ T5028] 8021q: adding VLAN 0 to HW filter on device bond6
[   65.070199][ T5037] netlink: 'syz.4.512': attribute type 13 has an invalid length.
[   65.100396][ T5041] loop3: detected capacity change from 0 to 512
[   65.116090][ T5041] ext4 filesystem being mounted at /92/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   65.182069][ T5052] netlink: 'syz.3.518': attribute type 10 has an invalid length.
[   65.192997][ T5048] netlink: 'syz.2.517': attribute type 13 has an invalid length.
[   65.239748][ T5057] wireguard0: entered promiscuous mode
[   65.245547][ T5057] wireguard0: entered allmulticast mode
[   65.475744][ T5078] loop3: detected capacity change from 0 to 512
[   65.495006][ T5078] ext4 filesystem being mounted at /96/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   65.647559][ T5097] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   65.654128][ T5097] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   65.661949][ T5097] vhci_hcd vhci_hcd.0: Device attached
[   65.668689][ T5098] vhci_hcd: connection closed
[   65.668749][   T12] vhci_hcd: stop threads
[   65.677876][   T12] vhci_hcd: release socket
[   65.682469][   T12] vhci_hcd: disconnect device
[   66.286189][ T5107] bond6: entered promiscuous mode
[   66.291449][ T5107] bond6: entered allmulticast mode
[   66.296844][ T5107] 8021q: adding VLAN 0 to HW filter on device bond6
[   66.748700][ T5121] loop2: detected capacity change from 0 to 512
[   66.765653][ T5126] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[   66.768775][ T5121] ext4 filesystem being mounted at /92/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.772194][ T5126] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   66.772301][ T5126] vhci_hcd vhci_hcd.0: Device attached
[   66.817212][ T5130] vhci_hcd: connection closed
[   66.817268][   T51] vhci_hcd: stop threads
[   66.826319][   T51] vhci_hcd: release socket
[   66.828538][ T5128] binfmt_misc: register: failed to install interpreter file ./file2
[   66.830773][   T51] vhci_hcd: disconnect device
[   66.956794][ T5137] loop1: detected capacity change from 0 to 1024
[   66.964887][ T5137] EXT4-fs: Ignoring removed oldalloc option
[   66.970857][ T5137] EXT4-fs: Ignoring removed orlov option
[   66.976586][ T5137] EXT4-fs: Ignoring removed oldalloc option
[   66.982539][ T5137] EXT4-fs: Ignoring removed nomblk_io_submit option
[   67.005773][ T5137] EXT4-fs error (device loop1): ext4_xattr_set_entry:1660: inode #13: comm syz.1.544: corrupted xattr entries
[   67.018724][ T5137] EXT4-fs (loop1): Remounting filesystem read-only
[   67.025641][ T5137] EXT4-fs warning (device loop1): ext4_xattr_ibody_set:2272: inode #18: comm syz.1.544: dec ref error=-30
[   67.378212][ T5152] loop0: detected capacity change from 0 to 256
[   67.384934][ T5152] vfat: Unknown parameter 'ÿÿ'
[   67.513467][ T5162] loop0: detected capacity change from 0 to 512
[   67.520624][ T5162] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   67.541652][ T5162] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c019, mo2=0002]
[   67.549718][ T5162] System zones: 1-12
[   67.554152][ T5162] EXT4-fs (loop0): 1 truncate cleaned up
[   67.625677][ T5169] __nla_validate_parse: 12 callbacks suppressed
[   67.625700][ T5169] netlink: 76 bytes leftover after parsing attributes in process `syz.0.555'.
[   67.654809][ T5174] loop4: detected capacity change from 0 to 512
[   67.662394][ T5174] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   67.674949][ T5174] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c019, mo2=0002]
[   67.680346][ T5176] netlink: 76 bytes leftover after parsing attributes in process `syz.0.559'.
[   67.683205][ T5174] System zones: 1-12
[   67.696545][ T5174] EXT4-fs (loop4): 1 truncate cleaned up
[   67.799234][ T5188] wireguard0: entered promiscuous mode
[   67.804810][ T5188] wireguard0: entered allmulticast mode
[   67.904136][ T5194] loop4: detected capacity change from 0 to 512
[   67.911374][ T5194] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   67.932834][ T5194] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c019, mo2=0002]
[   67.941204][ T5194] System zones: 1-12
[   67.946007][ T5194] EXT4-fs (loop4): 1 truncate cleaned up
[   67.984154][ T5199] loop4: detected capacity change from 0 to 512
[   68.008803][ T5199] ext4 filesystem being mounted at /127/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   68.058718][   T29] audit: type=1400 audit(1748170455.648:328): avc:  denied  { mount } for  pid=5208 comm="syz.0.572" name="/" dev="configfs" ino=573 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   68.084184][ T5209] netlink: 8 bytes leftover after parsing attributes in process `syz.0.572'.
[   68.104625][ T5211] FAULT_INJECTION: forcing a failure.
[   68.104625][ T5211] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.117766][   T29] audit: type=1400 audit(1748170455.678:329): avc:  denied  { write } for  pid=5208 comm="syz.0.572" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[   68.117871][   T29] audit: type=1400 audit(1748170455.678:330): avc:  denied  { search } for  pid=5208 comm="syz.0.572" name="/" dev="configfs" ino=573 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   68.136864][ T5211] CPU: 0 UID: 0 PID: 5211 Comm: syz.4.571 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[   68.136900][ T5211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   68.136917][ T5211] Call Trace:
[   68.136926][ T5211]  <TASK>
[   68.136938][ T5211]  __dump_stack+0x1d/0x30
[   68.136969][ T5211]  dump_stack_lvl+0xe8/0x140
[   68.137073][ T5211]  dump_stack+0x15/0x1b
[   68.137096][ T5211]  should_fail_ex+0x265/0x280
[   68.137187][ T5211]  should_fail+0xb/0x20
[   68.137229][ T5211]  should_fail_usercopy+0x1a/0x20
[   68.137297][ T5211]  _copy_from_user+0x1c/0xb0
[   68.137329][ T5211]  proc_ioctl_default+0x43/0xa0
[   68.137374][ T5211]  usbdev_ioctl+0xe97/0x1710
[   68.137413][ T5211]  ? __pfx_usbdev_ioctl+0x10/0x10
[   68.137450][ T5211]  __se_sys_ioctl+0xcb/0x140
[   68.137504][ T5211]  __x64_sys_ioctl+0x43/0x50
[   68.137534][ T5211]  x64_sys_call+0x19a8/0x2fb0
[   68.137564][ T5211]  do_syscall_64+0xd0/0x1a0
[   68.137633][ T5211]  ? clear_bhb_loop+0x40/0x90
[   68.137663][ T5211]  ? clear_bhb_loop+0x40/0x90
[   68.137693][ T5211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.137740][ T5211] RIP: 0033:0x7f438cdde969
[   68.137767][ T5211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.137791][ T5211] RSP: 002b:00007f438b447038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   68.137827][ T5211] RAX: ffffffffffffffda RBX: 00007f438d005fa0 RCX: 00007f438cdde969
[   68.137845][ T5211] RDX: 0000200000000000 RSI: 00000000c0105512 RDI: 0000000000000006
[   68.137927][ T5211] RBP: 00007f438b447090 R08: 0000000000000000 R09: 0000000000000000
[   68.137943][ T5211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.137960][ T5211] R13: 0000000000000000 R14: 00007f438d005fa0 R15: 00007ffde0a61988
[   68.137986][ T5211]  </TASK>
[   68.343696][   T29] audit: type=1400 audit(1748170455.778:331): avc:  denied  { firmware_load } for  pid=5208 comm="syz.0.572" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[   68.372972][ T5216] loop3: detected capacity change from 0 to 512
[   68.379621][ T5216] EXT4-fs: Ignoring removed oldalloc option
[   68.387602][ T5216] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c02c, mo2=0002]
[   68.395915][ T5216] System zones: 1-12
[   68.399983][ T5216] EXT4-fs (loop3): orphan cleanup on readonly fs
[   68.406981][ T5216] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.574: Parent and EA inode have the same ino 15
[   68.419568][ T5216] EXT4-fs (loop3): Remounting filesystem read-only
[   68.426148][ T5216] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[   68.436440][   T29] audit: type=1326 audit(1748170456.018:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5218 comm="syz.4.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   68.436864][ T5223] loop4: detected capacity change from 0 to 1024
[   68.459685][   T29] audit: type=1326 audit(1748170456.018:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5218 comm="syz.4.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   68.459771][ T5216] EXT4-fs (loop3): 1 orphan inode deleted
[   68.622306][ T5236] wireguard0: entered promiscuous mode
[   68.627858][ T5236] wireguard0: entered allmulticast mode
[   68.762254][ T5255] netlink: 76 bytes leftover after parsing attributes in process `syz.3.585'.
[   68.822961][ T5257] program syz.2.586 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   68.994830][ T5264] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[   69.003762][ T5264] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[   69.012659][ T5264] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[   69.021559][ T5264] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[   69.250829][   T29] kauditd_printk_skb: 18 callbacks suppressed
[   69.250845][   T29] audit: type=1326 audit(1748170456.808:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5271 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   69.280379][   T29] audit: type=1326 audit(1748170456.808:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5271 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   69.303731][   T29] audit: type=1326 audit(1748170456.808:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5271 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   69.576067][ T5283] validate_nla: 3 callbacks suppressed
[   69.576085][ T5283] netlink: 'syz.0.594': attribute type 13 has an invalid length.
[   69.690889][ T5279] wireguard0: entered promiscuous mode
[   69.696453][ T5279] wireguard0: entered allmulticast mode
[   69.858304][ T5290] netlink: 8 bytes leftover after parsing attributes in process `syz.1.597'.
[   69.867797][ T5290] netlink: 8 bytes leftover after parsing attributes in process `syz.1.597'.
[   69.919059][ T5296] netlink: 'syz.4.599': attribute type 10 has an invalid length.
[   69.926989][ T5296] netlink: 40 bytes leftover after parsing attributes in process `syz.4.599'.
[   69.995731][ T5290] bond4: entered promiscuous mode
[   70.001971][ T5290] bond4: entered allmulticast mode
[   70.021682][ T5290] 8021q: adding VLAN 0 to HW filter on device bond4
[   70.058243][ T5294] pimreg: entered allmulticast mode
[   70.078221][ T5289] pimreg: left allmulticast mode
[   70.111351][   T29] audit: type=1326 audit(1748170457.698:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5298 comm="syz.0.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   70.186311][ T5308] loop4: detected capacity change from 0 to 512
[   70.189661][ T5299] loop0: detected capacity change from 0 to 1024
[   70.210804][   T29] audit: type=1326 audit(1748170457.708:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5303 comm="syz.4.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   70.234255][   T29] audit: type=1326 audit(1748170457.708:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5303 comm="syz.4.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   70.257735][   T29] audit: type=1326 audit(1748170457.708:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5298 comm="syz.0.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   70.262165][ T5315] loop3: detected capacity change from 0 to 512
[   70.281152][   T29] audit: type=1326 audit(1748170457.708:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5298 comm="syz.0.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa770cfe9a3 code=0x7ffc0000
[   70.310612][   T29] audit: type=1326 audit(1748170457.708:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5298 comm="syz.0.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa770cfd41f code=0x7ffc0000
[   70.333804][   T29] audit: type=1326 audit(1748170457.708:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5298 comm="syz.0.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fa770cfe9f7 code=0x7ffc0000
[   70.348998][ T5315] ext4 filesystem being mounted at /113/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.360339][ T5308] ext4 filesystem being mounted at /137/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.423701][ T5325] netlink: 'syz.4.610': attribute type 13 has an invalid length.
[   70.439899][ T5327] loop3: detected capacity change from 0 to 512
[   70.473924][ T5327] ext4 filesystem being mounted at /114/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.666881][ T5347] loop4: detected capacity change from 0 to 256
[   70.673597][ T5347] vfat: Unknown parameter 'ÿÿ'
[   70.776373][ T5357] loop4: detected capacity change from 0 to 512
[   70.803166][ T5357] ext4 filesystem being mounted at /147/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.839429][ T5361] netlink: 'syz.4.623': attribute type 13 has an invalid length.
[   70.924245][ T5363] loop4: detected capacity change from 0 to 512
[   70.964020][ T5363] EXT4-fs mount: 56 callbacks suppressed
[   70.964040][ T5363] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.982344][ T5363] ext4 filesystem being mounted at /149/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.997105][ T5367] netlink: 'syz.0.625': attribute type 13 has an invalid length.
[   71.008237][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.093633][ T5379] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[   71.100372][ T5379] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   71.108125][ T5379] vhci_hcd vhci_hcd.0: Device attached
[   71.114719][ T5380] vhci_hcd: connection closed
[   71.114889][ T3422] vhci_hcd: stop threads
[   71.116144][ T5383] loop0: detected capacity change from 0 to 256
[   71.119644][ T3422] vhci_hcd: release socket
[   71.119656][ T3422] vhci_hcd: disconnect device
[   71.139906][ T5383] vfat: Unknown parameter 'ÿÿ'
[   71.169895][ T5386] loop0: detected capacity change from 0 to 512
[   71.183185][ T5386] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.196046][ T5386] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.217101][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.363229][ T5393] loop2: detected capacity change from 0 to 1024
[   71.382876][ T5393] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.395568][ T5393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.406510][ T5391] loop0: detected capacity change from 0 to 128
[   71.440083][ T5397] loop3: detected capacity change from 0 to 512
[   71.462822][ T5397] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.475418][ T5397] ext4 filesystem being mounted at /116/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.497533][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.524549][ T5401] loop3: detected capacity change from 0 to 512
[   71.543025][ T5401] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.556437][ T5401] ext4 filesystem being mounted at /117/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.580297][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.626673][   T23] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   71.635351][   T23] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   71.678772][ T5413] netlink: 'syz.3.642': attribute type 13 has an invalid length.
[   71.687237][ T5413] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0
[   71.696381][ T5413] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0
[   71.705532][ T5413] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 20000 - 0
[   71.714686][ T5413] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 20000 - 0
[   71.996332][ T5423] loop4: detected capacity change from 0 to 512
[   72.012829][ T5423] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.025604][ T5423] ext4 filesystem being mounted at /154/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   72.048379][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.068189][ T5429] netlink: 8 bytes leftover after parsing attributes in process `syz.4.648'.
[   72.077400][ T5429] netlink: 8 bytes leftover after parsing attributes in process `syz.4.648'.
[   72.093972][ T5429] bond7: entered promiscuous mode
[   72.099169][ T5429] bond7: entered allmulticast mode
[   72.104694][ T5429] 8021q: adding VLAN 0 to HW filter on device bond7
[   72.238124][ T5442] netlink: 'syz.2.653': attribute type 13 has an invalid length.
[   72.252089][ T5438] loop4: detected capacity change from 0 to 512
[   72.259129][ T5438] EXT4-fs: Ignoring removed oldalloc option
[   72.266906][ T5438] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c02c, mo2=0002]
[   72.275410][ T5438] System zones: 1-12
[   72.279633][ T5438] EXT4-fs (loop4): orphan cleanup on readonly fs
[   72.286788][ T5438] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.651: Parent and EA inode have the same ino 15
[   72.299311][ T5438] EXT4-fs (loop4): Remounting filesystem read-only
[   72.305997][ T5438] EXT4-fs warning (device loop4): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[   72.318424][ T5438] EXT4-fs (loop4): 1 orphan inode deleted
[   72.324916][ T5438] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   72.348589][ T5448] netlink: 'syz.0.654': attribute type 13 has an invalid length.
[   72.359480][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.418619][ T5459] vlan2: entered allmulticast mode
[   72.433279][ T5454] loop2: detected capacity change from 0 to 512
[   72.440198][ T5454] EXT4-fs: Ignoring removed oldalloc option
[   72.449940][ T5462] netlink: 76 bytes leftover after parsing attributes in process `syz.0.660'.
[   72.458197][ T5454] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c02c, mo2=0002]
[   72.467141][ T5454] System zones: 1-12
[   72.471458][ T5454] EXT4-fs (loop2): orphan cleanup on readonly fs
[   72.478975][ T5454] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.657: Parent and EA inode have the same ino 15
[   72.515027][ T5454] EXT4-fs (loop2): Remounting filesystem read-only
[   72.521658][ T5454] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[   72.536403][ T5466] loop1: detected capacity change from 0 to 164
[   72.564909][ T5466] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   72.581186][ T5454] EXT4-fs (loop2): 1 orphan inode deleted
[   72.587651][ T5466] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   72.603729][ T5454] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   72.616336][ T5466] Symlink component flag not implemented
[   72.622076][ T5466] Symlink component flag not implemented
[   72.637057][ T5459] netlink: '+}[@': attribute type 4 has an invalid length.
[   72.659337][ T5468] wireguard0: entered promiscuous mode
[   72.664974][ T5468] wireguard0: entered allmulticast mode
[   72.670799][ T5466] Symlink component flag not implemented (7)
[   72.676847][ T5466] Symlink component flag not implemented (116)
[   72.689794][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.785211][ T5459] netlink: '+}[@': attribute type 4 has an invalid length.
[   72.820500][ T5479] loop1: detected capacity change from 0 to 256
[   72.827692][ T5479] vfat: Unknown parameter 'ÿÿ'
[   72.857543][ T5483] netlink: 8 bytes leftover after parsing attributes in process `syz.0.668'.
[   72.866427][ T5483] netlink: 8 bytes leftover after parsing attributes in process `syz.0.668'.
[   72.890354][ T5485] netlink: 76 bytes leftover after parsing attributes in process `syz.3.669'.
[   72.932907][ T5483] bond7: entered promiscuous mode
[   72.938245][ T5483] bond7: entered allmulticast mode
[   72.945152][ T5483] 8021q: adding VLAN 0 to HW filter on device bond7
[   73.050667][ T5505] netlink: 76 bytes leftover after parsing attributes in process `syz.1.674'.
[   73.063803][ T5511] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[   73.070369][ T5511] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   73.078007][ T5511] vhci_hcd vhci_hcd.0: Device attached
[   73.091478][ T5502] netlink: 76 bytes leftover after parsing attributes in process `syz.0.673'.
[   73.155943][ T5512] vhci_hcd: connection closed
[   73.156138][   T51] vhci_hcd: stop threads
[   73.165294][   T51] vhci_hcd: release socket
[   73.169737][   T51] vhci_hcd: disconnect device
[   73.195028][ T5521] FAULT_INJECTION: forcing a failure.
[   73.195028][ T5521] name failslab, interval 1, probability 0, space 0, times 0
[   73.207827][ T5521] CPU: 1 UID: 0 PID: 5521 Comm: syz.0.680 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[   73.207865][ T5521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   73.207883][ T5521] Call Trace:
[   73.207891][ T5521]  <TASK>
[   73.207956][ T5521]  __dump_stack+0x1d/0x30
[   73.207978][ T5521]  dump_stack_lvl+0xe8/0x140
[   73.208043][ T5521]  dump_stack+0x15/0x1b
[   73.208064][ T5521]  should_fail_ex+0x265/0x280
[   73.208107][ T5521]  ? __se_sys_mount+0xef/0x2e0
[   73.208134][ T5521]  should_failslab+0x8c/0xb0
[   73.208200][ T5521]  __kmalloc_cache_noprof+0x4c/0x320
[   73.208225][ T5521]  ? memdup_user+0x99/0xd0
[   73.208247][ T5521]  __se_sys_mount+0xef/0x2e0
[   73.208274][ T5521]  ? fput+0x8f/0xc0
[   73.208364][ T5521]  ? ksys_write+0x16e/0x1a0
[   73.208393][ T5521]  __x64_sys_mount+0x67/0x80
[   73.208422][ T5521]  x64_sys_call+0xd36/0x2fb0
[   73.208477][ T5521]  do_syscall_64+0xd0/0x1a0
[   73.208502][ T5521]  ? clear_bhb_loop+0x40/0x90
[   73.208530][ T5521]  ? clear_bhb_loop+0x40/0x90
[   73.208567][ T5521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.208589][ T5521] RIP: 0033:0x7fa770cfe969
[   73.208605][ T5521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.208623][ T5521] RSP: 002b:00007fa76f367038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   73.208714][ T5521] RAX: ffffffffffffffda RBX: 00007fa770f25fa0 RCX: 00007fa770cfe969
[   73.208800][ T5521] RDX: 0000200000000100 RSI: 0000200000000500 RDI: 0000000000000000
[   73.208813][ T5521] RBP: 00007fa76f367090 R08: 0000200000000a40 R09: 0000000000000000
[   73.208825][ T5521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.208838][ T5521] R13: 0000000000000000 R14: 00007fa770f25fa0 R15: 00007ffe6a2c9cd8
[   73.208902][ T5521]  </TASK>
[   73.437745][ T5526] loop3: detected capacity change from 0 to 164
[   73.446002][ T5526] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   73.455648][ T5526] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   73.465370][ T5526] Symlink component flag not implemented
[   73.471154][ T5526] Symlink component flag not implemented
[   73.477113][ T5526] Symlink component flag not implemented (7)
[   73.483200][ T5526] Symlink component flag not implemented (116)
[   73.545909][ T5535] netlink: 76 bytes leftover after parsing attributes in process `syz.4.686'.
[   73.599034][ T5543] FAULT_INJECTION: forcing a failure.
[   73.599034][ T5543] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.612210][ T5543] CPU: 1 UID: 0 PID: 5543 Comm: syz.3.689 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[   73.612329][ T5543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   73.612346][ T5543] Call Trace:
[   73.612355][ T5543]  <TASK>
[   73.612372][ T5543]  __dump_stack+0x1d/0x30
[   73.612399][ T5543]  dump_stack_lvl+0xe8/0x140
[   73.612421][ T5543]  dump_stack+0x15/0x1b
[   73.612438][ T5543]  should_fail_ex+0x265/0x280
[   73.612495][ T5543]  should_fail+0xb/0x20
[   73.612533][ T5543]  should_fail_usercopy+0x1a/0x20
[   73.612628][ T5543]  _copy_to_user+0x20/0xa0
[   73.612659][ T5543]  simple_read_from_buffer+0xb5/0x130
[   73.612686][ T5543]  proc_fail_nth_read+0x100/0x140
[   73.612723][ T5543]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   73.612759][ T5543]  vfs_read+0x19d/0x6f0
[   73.612904][ T5543]  ? __rcu_read_unlock+0x4f/0x70
[   73.612934][ T5543]  ? __fget_files+0x184/0x1c0
[   73.612977][ T5543]  ksys_read+0xda/0x1a0
[   73.613029][ T5543]  __x64_sys_read+0x40/0x50
[   73.613062][ T5543]  x64_sys_call+0x2d77/0x2fb0
[   73.613136][ T5543]  do_syscall_64+0xd0/0x1a0
[   73.613166][ T5543]  ? clear_bhb_loop+0x40/0x90
[   73.613211][ T5543]  ? clear_bhb_loop+0x40/0x90
[   73.613239][ T5543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.613303][ T5543] RIP: 0033:0x7f31b5ded37c
[   73.613322][ T5543] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   73.613345][ T5543] RSP: 002b:00007f31b4457030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   73.613368][ T5543] RAX: ffffffffffffffda RBX: 00007f31b6015fa0 RCX: 00007f31b5ded37c
[   73.613381][ T5543] RDX: 000000000000000f RSI: 00007f31b44570a0 RDI: 0000000000000007
[   73.613394][ T5543] RBP: 00007f31b4457090 R08: 0000000000000000 R09: 0000000000000000
[   73.613406][ T5543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.613419][ T5543] R13: 0000000000000000 R14: 00007f31b6015fa0 R15: 00007ffdbb3e8698
[   73.613519][ T5543]  </TASK>
[   73.968073][ T5552] SELinux: ebitmap: truncated map
[   73.975452][ T5552] SELinux: failed to load policy
[   74.061305][ T5550] program syz.3.692 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   74.093535][ T5561] loop1: detected capacity change from 0 to 512
[   74.103076][ T5561] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   74.127747][ T5564] netlink: 8 bytes leftover after parsing attributes in process `syz.2.698'.
[   74.136642][ T5564] netlink: 8 bytes leftover after parsing attributes in process `syz.2.698'.
[   74.142917][ T5561] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c019, mo2=0002]
[   74.154760][ T5561] System zones: 1-12
[   74.160184][ T5561] EXT4-fs (loop1): 1 truncate cleaned up
[   74.164697][ T5564] bond4: entered promiscuous mode
[   74.166540][ T5561] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.170932][ T5564] bond4: entered allmulticast mode
[   74.189976][ T5564] 8021q: adding VLAN 0 to HW filter on device bond4
[   74.210963][ T5569] pimreg: entered allmulticast mode
[   74.225706][ T5563] pimreg: left allmulticast mode
[   74.233369][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.257431][ T5571] netlink: 8 bytes leftover after parsing attributes in process `syz.1.700'.
[   74.268542][ T5571] netlink: 8 bytes leftover after parsing attributes in process `syz.1.700'.
[   74.369973][ T5584] FAULT_INJECTION: forcing a failure.
[   74.369973][ T5584] name failslab, interval 1, probability 0, space 0, times 0
[   74.382720][ T5584] CPU: 0 UID: 0 PID: 5584 Comm: syz.2.705 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[   74.382756][ T5584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   74.382773][ T5584] Call Trace:
[   74.382780][ T5584]  <TASK>
[   74.382788][ T5584]  __dump_stack+0x1d/0x30
[   74.382817][ T5584]  dump_stack_lvl+0xe8/0x140
[   74.382838][ T5584]  dump_stack+0x15/0x1b
[   74.382916][ T5584]  should_fail_ex+0x265/0x280
[   74.382960][ T5584]  should_failslab+0x8c/0xb0
[   74.382999][ T5584]  __kmalloc_cache_node_noprof+0x54/0x320
[   74.383091][ T5584]  ? __get_vm_area_node+0x106/0x1d0
[   74.383126][ T5584]  __get_vm_area_node+0x106/0x1d0
[   74.383157][ T5584]  __vmalloc_node_range_noprof+0x26a/0xdf0
[   74.383239][ T5584]  ? kernel_read_file+0x2c3/0x500
[   74.383290][ T5584]  ? selinux_kernel_load_from_file+0x221/0x260
[   74.383523][ T5584]  ? kernel_read_file+0x2c3/0x500
[   74.383638][ T5584]  vmalloc_noprof+0x5e/0x70
[   74.383663][ T5584]  ? kernel_read_file+0x2c3/0x500
[   74.383701][ T5584]  kernel_read_file+0x2c3/0x500
[   74.383788][ T5584]  __se_sys_finit_module+0x2d3/0x460
[   74.383845][ T5584]  __x64_sys_finit_module+0x3e/0x50
[   74.383890][ T5584]  x64_sys_call+0x2029/0x2fb0
[   74.383975][ T5584]  do_syscall_64+0xd0/0x1a0
[   74.384004][ T5584]  ? clear_bhb_loop+0x40/0x90
[   74.384033][ T5584]  ? clear_bhb_loop+0x40/0x90
[   74.384063][ T5584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.384205][ T5584] RIP: 0033:0x7fd06bd2e969
[   74.384225][ T5584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.384249][ T5584] RSP: 002b:00007fd06a397038 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[   74.384302][ T5584] RAX: ffffffffffffffda RBX: 00007fd06bf55fa0 RCX: 00007fd06bd2e969
[   74.384319][ T5584] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   74.384335][ T5584] RBP: 00007fd06a397090 R08: 0000000000000000 R09: 0000000000000000
[   74.384352][ T5584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.384368][ T5584] R13: 0000000000000000 R14: 00007fd06bf55fa0 R15: 00007ffee1b4a228
[   74.384459][ T5584]  </TASK>
[   74.384470][ T5584] syz.2.705: vmalloc error: size 4096, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null)
[   74.463467][ T5571] bond5: entered promiscuous mode
[   74.469346][ T5584] ,cpuset=/,mems_allowed=0
[   74.469489][ T5584] CPU: 0 UID: 0 PID: 5584 Comm: syz.2.705 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[   74.469526][ T5584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   74.469542][ T5584] Call Trace:
[   74.469549][ T5584]  <TASK>
[   74.469558][ T5584]  __dump_stack+0x1d/0x30
[   74.469585][ T5584]  dump_stack_lvl+0xe8/0x140
[   74.469612][ T5584]  dump_stack+0x15/0x1b
[   74.469714][ T5584]  warn_alloc+0x12b/0x1a0
[   74.469757][ T5584]  __vmalloc_node_range_noprof+0x28e/0xdf0
[   74.469805][ T5584]  ? selinux_kernel_load_from_file+0x221/0x260
[   74.469892][ T5584]  ? kernel_read_file+0x2c3/0x500
[   74.469932][ T5584]  vmalloc_noprof+0x5e/0x70
[   74.470038][ T5584]  ? kernel_read_file+0x2c3/0x500
[   74.470140][ T5584]  kernel_read_file+0x2c3/0x500
[   74.470190][ T5584]  __se_sys_finit_module+0x2d3/0x460
[   74.470252][ T5584]  __x64_sys_finit_module+0x3e/0x50
[   74.470373][ T5584]  x64_sys_call+0x2029/0x2fb0
[   74.470401][ T5584]  do_syscall_64+0xd0/0x1a0
[   74.470507][ T5584]  ? clear_bhb_loop+0x40/0x90
[   74.470537][ T5584]  ? clear_bhb_loop+0x40/0x90
[   74.470596][ T5584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.470625][ T5584] RIP: 0033:0x7fd06bd2e969
[   74.470652][ T5584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.470677][ T5584] RSP: 002b:00007fd06a397038 EFLAGS: 00000246 ORIG_RAX: 0000000000000139
[   74.470706][ T5584] RAX: ffffffffffffffda RBX: 00007fd06bf55fa0 RCX: 00007fd06bd2e969
[   74.470724][ T5584] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   74.470740][ T5584] RBP: 00007fd06a397090 R08: 0000000000000000 R09: 0000000000000000
[   74.470808][ T5584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.470825][ T5584] R13: 0000000000000000 R14: 00007fd06bf55fa0 R15: 00007ffee1b4a228
[   74.470851][ T5584]  </TASK>
[   74.470899][ T5584] Mem-Info:
[   74.475648][ T5571] bond5: entered allmulticast mode
[   74.479156][ T5584] active_anon:5016 inactive_anon:0 isolated_anon:0
[   74.479156][ T5584]  active_file:6325 inactive_file:2199 isolated_file:0
[   74.479156][ T5584]  unevictable:0 dirty:364 writeback:0
[   74.479156][ T5584]  slab_reclaimable:2955 slab_unreclaimable:97625
[   74.479156][ T5584]  mapped:29090 shmem:175 pagetables:1675
[   74.479156][ T5584]  sec_pagetables:0 bounce:0
[   74.479156][ T5584]  kernel_misc_reclaimable:0
[   74.479156][ T5584]  free:1788415 free_pcp:5477 free_cma:0
[   74.479240][ T5584] Node 0 active_anon:20064kB inactive_anon:0kB active_file:25300kB inactive_file:8796kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:116360kB dirty:1456kB writeback:0kB shmem:700kB writeback_tmp:0kB kernel_stack:3728kB pagetables:6700kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   74.479302][ T5584] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   74.479415][ T5584] lowmem_reserve[]: 0 2884 7863 7863
[   74.501628][ T5571] 8021q: adding VLAN 0 to HW filter on device bond5
[   74.504687][ T5584] 
[   74.504696][ T5584] Node 0 DMA32 free:2949928kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953560kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:100kB free_cma:0kB
[   74.504827][ T5584] lowmem_reserve[]: 0 0 4978 4978
[   74.504863][ T5584] Node 0 Normal free:4188372kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:20064kB inactive_anon:0kB active_file:25300kB inactive_file:8796kB unevictable:0kB writepending:1456kB present:5242880kB managed:5098244kB mlocked:0kB bounce:0kB free_pcp:18256kB local_pcp:7976kB free_cma:0kB
[   74.569838][ T5578] pimreg: entered allmulticast mode
[   74.573939][ T5584] lowmem_reserve[]:
[   74.585895][ T5570] pimreg: left allmulticast mode
[   74.590469][ T5584]  0 0 0 0
[   75.016287][ T5584] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   75.029327][ T5584] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 1*16kB (M) 4*32kB (M) 2*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949928kB
[   75.045520][ T5584] Node 0 Normal: 81*4kB (UME) 58*8kB (ME) 16*16kB (ME) 25*32kB (ME) 47*64kB (UME) 49*128kB (UME) 21*256kB (UME) 6*512kB (M) 7*1024kB (UME) 6*2048kB (UME) 1013*4096kB (M) = 4188276kB
[   75.063811][ T5584] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[   75.073166][ T5584] 8729 total pagecache pages
[   75.077967][ T5584] 0 pages in swap cache
[   75.082317][ T5584] Free swap  = 124996kB
[   75.086549][ T5584] Total swap = 124996kB
[   75.090852][ T5584] 2097051 pages RAM
[   75.094684][ T5584] 0 pages HighMem/MovableOnly
[   75.099964][ T5584] 80260 pages reserved
[   75.155679][ T5594] FAULT_INJECTION: forcing a failure.
[   75.155679][ T5594] name failslab, interval 1, probability 0, space 0, times 0
[   75.168522][ T5594] CPU: 0 UID: 0 PID: 5594 Comm: syz.2.708 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[   75.168560][ T5594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   75.168576][ T5594] Call Trace:
[   75.168584][ T5594]  <TASK>
[   75.168614][ T5594]  __dump_stack+0x1d/0x30
[   75.168641][ T5594]  dump_stack_lvl+0xe8/0x140
[   75.168667][ T5594]  dump_stack+0x15/0x1b
[   75.168689][ T5594]  should_fail_ex+0x265/0x280
[   75.168797][ T5594]  ? io_provide_buffers+0x132/0x3f0
[   75.168825][ T5594]  should_failslab+0x8c/0xb0
[   75.168862][ T5594]  __kmalloc_cache_noprof+0x4c/0x320
[   75.168890][ T5594]  io_provide_buffers+0x132/0x3f0
[   75.168921][ T5594]  __io_issue_sqe+0xfe/0x2e0
[   75.169117][ T5594]  ? io_assign_file+0x56/0x200
[   75.169151][ T5594]  io_issue_sqe+0x53/0x970
[   75.169188][ T5594]  ? io_provide_buffers_prep+0x1c7/0x1f0
[   75.169214][ T5594]  io_submit_sqes+0x64c/0x1000
[   75.169311][ T5594]  __se_sys_io_uring_enter+0x1c1/0x1b70
[   75.169370][ T5594]  ? __rcu_read_unlock+0x4f/0x70
[   75.169455][ T5594]  ? get_pid_task+0x96/0xd0
[   75.169483][ T5594]  ? proc_fail_nth_write+0x12d/0x160
[   75.169519][ T5594]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   75.169554][ T5594]  ? vfs_write+0x75e/0x8d0
[   75.169602][ T5594]  ? __rcu_read_unlock+0x4f/0x70
[   75.169645][ T5594]  ? __fget_files+0x184/0x1c0
[   75.169685][ T5594]  ? fput+0x8f/0xc0
[   75.169712][ T5594]  __x64_sys_io_uring_enter+0x78/0x90
[   75.169821][ T5594]  x64_sys_call+0x28c8/0x2fb0
[   75.169850][ T5594]  do_syscall_64+0xd0/0x1a0
[   75.169881][ T5594]  ? clear_bhb_loop+0x40/0x90
[   75.170085][ T5594]  ? clear_bhb_loop+0x40/0x90
[   75.170107][ T5594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.170129][ T5594] RIP: 0033:0x7fd06bd2e969
[   75.170146][ T5594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.170164][ T5594] RSP: 002b:00007fd06a397038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   75.170226][ T5594] RAX: ffffffffffffffda RBX: 00007fd06bf55fa0 RCX: 00007fd06bd2e969
[   75.170239][ T5594] RDX: 0000000000000000 RSI: 00000000000047fa RDI: 0000000000000005
[   75.170252][ T5594] RBP: 00007fd06a397090 R08: 0000000000000000 R09: 0000000000000000
[   75.170268][ T5594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.170296][ T5594] R13: 0000000000000000 R14: 00007fd06bf55fa0 R15: 00007ffee1b4a228
[   75.170321][ T5594]  </TASK>
[   75.294219][ T5600] validate_nla: 2 callbacks suppressed
[   75.294306][ T5600] netlink: 'syz.1.710': attribute type 10 has an invalid length.
[   75.476269][ T5606] loop4: detected capacity change from 0 to 512
[   75.483625][ T5606] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   75.497748][ T5606] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c019, mo2=0002]
[   75.505880][ T5606] System zones: 1-12
[   75.512583][ T5606] EXT4-fs (loop4): 1 truncate cleaned up
[   75.518716][ T5606] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.529433][ T5614] bond6: entered promiscuous mode
[   75.535872][ T5614] bond6: entered allmulticast mode
[   75.542508][ T5614] 8021q: adding VLAN 0 to HW filter on device bond6
[   75.555249][ T5614] pimreg: entered allmulticast mode
[   75.561804][ T5613] pimreg: left allmulticast mode
[   75.574318][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.602730][ T5618] binfmt_misc: register: failed to install interpreter file ./file2
[   75.735490][ T5627] loop4: detected capacity change from 0 to 1024
[   75.743676][ T5627] EXT4-fs: Ignoring removed oldalloc option
[   75.749660][ T5627] EXT4-fs: Ignoring removed orlov option
[   75.755399][ T5627] EXT4-fs: Ignoring removed oldalloc option
[   75.761495][ T5627] EXT4-fs: Ignoring removed nomblk_io_submit option
[   75.815657][ T5627] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.849115][ T5627] EXT4-fs error (device loop4): ext4_xattr_set_entry:1660: inode #13: comm syz.4.715: corrupted xattr entries
[   75.864946][ T5627] EXT4-fs (loop4): Remounting filesystem read-only
[   75.872036][ T5627] EXT4-fs warning (device loop4): ext4_xattr_ibody_set:2272: inode #18: comm syz.4.715: dec ref error=-30
[   75.928419][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.967470][ T5637] FAULT_INJECTION: forcing a failure.
[   75.967470][ T5637] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.981091][ T5637] CPU: 1 UID: 0 PID: 5637 Comm: syz.4.719 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[   75.981129][ T5637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   75.981147][ T5637] Call Trace:
[   75.981156][ T5637]  <TASK>
[   75.981167][ T5637]  __dump_stack+0x1d/0x30
[   75.981190][ T5637]  dump_stack_lvl+0xe8/0x140
[   75.981210][ T5637]  dump_stack+0x15/0x1b
[   75.981285][ T5637]  should_fail_ex+0x265/0x280
[   75.981390][ T5637]  should_fail+0xb/0x20
[   75.981433][ T5637]  should_fail_usercopy+0x1a/0x20
[   75.981461][ T5637]  _copy_from_user+0x1c/0xb0
[   75.981485][ T5637]  sel_write_load+0x192/0x380
[   75.981559][ T5637]  ? __pfx_sel_write_load+0x10/0x10
[   75.981584][ T5637]  vfs_write+0x266/0x8d0
[   75.981612][ T5637]  ? __rcu_read_unlock+0x4f/0x70
[   75.981635][ T5637]  ? __fget_files+0x184/0x1c0
[   75.981743][ T5637]  ksys_write+0xda/0x1a0
[   75.981782][ T5637]  __x64_sys_write+0x40/0x50
[   75.981877][ T5637]  x64_sys_call+0x2cdd/0x2fb0
[   75.981901][ T5637]  do_syscall_64+0xd0/0x1a0
[   75.981968][ T5637]  ? clear_bhb_loop+0x40/0x90
[   75.981999][ T5637]  ? clear_bhb_loop+0x40/0x90
[   75.982029][ T5637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.982055][ T5637] RIP: 0033:0x7f438cdde969
[   75.982105][ T5637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.982123][ T5637] RSP: 002b:00007f438b447038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   75.982179][ T5637] RAX: ffffffffffffffda RBX: 00007f438d005fa0 RCX: 00007f438cdde969
[   75.982196][ T5637] RDX: 0000000000002000 RSI: 0000200000000000 RDI: 0000000000000006
[   75.982213][ T5637] RBP: 00007f438b447090 R08: 0000000000000000 R09: 0000000000000000
[   75.982302][ T5637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.982315][ T5637] R13: 0000000000000000 R14: 00007f438d005fa0 R15: 00007ffde0a61988
[   75.982401][ T5637]  </TASK>
[   76.190653][ T5639] loop3: detected capacity change from 0 to 128
[   76.221381][ T5643] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[   76.227948][ T5643] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   76.235697][ T5643] vhci_hcd vhci_hcd.0: Device attached
[   76.241782][ T5644] vhci_hcd: connection closed
[   76.241898][   T12] vhci_hcd: stop threads
[   76.250849][   T12] vhci_hcd: release socket
[   76.255268][   T12] vhci_hcd: disconnect device
[   76.275845][ T5647] netlink: 'syz.4.723': attribute type 10 has an invalid length.
[   76.311597][ T5649] binfmt_misc: register: failed to install interpreter file ./file2
[   76.423097][ T5654] netlink: 'syz.2.726': attribute type 13 has an invalid length.
[   76.445056][ T5655] loop4: detected capacity change from 0 to 1024
[   76.452982][ T5655] EXT4-fs: Ignoring removed oldalloc option
[   76.458943][ T5655] EXT4-fs: Ignoring removed orlov option
[   76.464786][ T5655] EXT4-fs: Ignoring removed oldalloc option
[   76.470781][ T5655] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.569648][ T5655] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.696180][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.844659][ T5690] netlink: 'syz.4.731': attribute type 13 has an invalid length.
[   76.943751][ T5681] bond5: entered promiscuous mode
[   76.950102][ T5681] bond5: entered allmulticast mode
[   76.963382][ T5681] 8021q: adding VLAN 0 to HW filter on device bond5
[   77.014264][ T5691] pimreg: entered allmulticast mode
[   77.023250][ T5680] pimreg: left allmulticast mode
[   77.134372][ T5727] bond8: entered promiscuous mode
[   77.139473][ T5727] bond8: entered allmulticast mode
[   77.145182][ T5727] 8021q: adding VLAN 0 to HW filter on device bond8
[   77.175443][ T5731] binfmt_misc: register: failed to install interpreter file ./file2
[   77.188825][ T5735] netlink: 'syz.4.739': attribute type 13 has an invalid length.
[   77.356954][ T5747] loop2: detected capacity change from 0 to 1024
[   77.363828][ T5747] EXT4-fs: Ignoring removed oldalloc option
[   77.369813][ T5747] EXT4-fs: Ignoring removed orlov option
[   77.375555][ T5747] EXT4-fs: Ignoring removed oldalloc option
[   77.381572][ T5747] EXT4-fs: Ignoring removed nomblk_io_submit option
[   77.502060][ T5747] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.717724][ T5775] bond6: entered promiscuous mode
[   77.724225][ T5775] bond6: entered allmulticast mode
[   77.735222][ T5775] 8021q: adding VLAN 0 to HW filter on device bond6
[   77.754944][ T5780] pimreg: entered allmulticast mode
[   77.771238][ T5774] pimreg: left allmulticast mode
[   77.778567][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.801874][ T5782] wireguard0: entered promiscuous mode
[   77.807397][ T5782] wireguard0: entered allmulticast mode
[   77.876293][ T5787] loop0: detected capacity change from 0 to 128
[   77.958231][   T29] kauditd_printk_skb: 62 callbacks suppressed
[   77.958251][   T29] audit: type=1326 audit(1748170465.548:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5788 comm="syz.3.746" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f31b5dee969 code=0x0
[   78.040850][ T5794] netlink: 'syz.2.747': attribute type 13 has an invalid length.
[   78.048852][ T5791] wireguard0: entered promiscuous mode
[   78.054602][ T5791] wireguard0: entered allmulticast mode
[   78.232156][ T5801] __nla_validate_parse: 12 callbacks suppressed
[   78.232179][ T5801] netlink: 76 bytes leftover after parsing attributes in process `syz.1.749'.
[   78.238607][ T5799] loop2: detected capacity change from 0 to 512
[   78.250795][ T5799] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   78.289214][ T5803] loop4: detected capacity change from 0 to 1024
[   78.290799][   T29] audit: type=1326 audit(1748170465.878:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5802 comm="syz.4.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   78.319119][   T29] audit: type=1326 audit(1748170465.878:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5802 comm="syz.4.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   78.343221][   T29] audit: type=1326 audit(1748170465.878:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5802 comm="syz.4.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f438cdde9a3 code=0x7ffc0000
[   78.366532][   T29] audit: type=1326 audit(1748170465.878:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5802 comm="syz.4.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f438cddd41f code=0x7ffc0000
[   78.389857][   T29] audit: type=1326 audit(1748170465.878:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5802 comm="syz.4.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f438cdde9f7 code=0x7ffc0000
[   78.413210][   T29] audit: type=1326 audit(1748170465.878:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5802 comm="syz.4.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f438cddd2d0 code=0x7ffc0000
[   78.436521][   T29] audit: type=1326 audit(1748170465.878:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5802 comm="syz.4.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f438cdde56b code=0x7ffc0000
[   78.460801][   T29] audit: type=1326 audit(1748170465.888:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5802 comm="syz.4.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f438cddd5ca code=0x7ffc0000
[   78.484068][   T29] audit: type=1326 audit(1748170465.888:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5802 comm="syz.4.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f438cddd5ca code=0x7ffc0000
[   78.512722][ T5803] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.526008][ T5799] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c019, mo2=0002]
[   78.534572][ T5799] System zones: 1-12
[   78.539210][ T5799] EXT4-fs (loop2): 1 truncate cleaned up
[   78.559584][ T5799] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.605777][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.632485][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.669714][ T5812] loop1: detected capacity change from 0 to 512
[   78.693660][ T5812] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   78.719699][ T5812] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   78.737408][ T5816] binfmt_misc: register: failed to install interpreter file ./file2
[   78.751971][ T5812] EXT4-fs (loop1): 1 truncate cleaned up
[   78.758477][ T5812] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.965247][ T5822] loop2: detected capacity change from 0 to 1024
[   78.985390][ T5822] EXT4-fs: Ignoring removed oldalloc option
[   78.991424][ T5822] EXT4-fs: Ignoring removed orlov option
[   78.997226][ T5822] EXT4-fs: Ignoring removed oldalloc option
[   79.003286][ T5822] EXT4-fs: Ignoring removed nomblk_io_submit option
[   79.084554][ T5822] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.349322][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.408647][ T5844] netlink: 'syz.2.758': attribute type 13 has an invalid length.
[   79.539947][ T5859] netlink: 12 bytes leftover after parsing attributes in process `syz.2.759'.
[   80.033434][ T5916] netlink: 'syz.4.761': attribute type 10 has an invalid length.
[   80.045192][ T5916] batadv0: left allmulticast mode
[   80.050355][ T5916] batadv0: left promiscuous mode
[   80.055731][ T5916] bridge0: port 3(batadv0) entered disabled state
[   80.071013][ T5916] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.087013][ T5921] netlink: 'syz.4.761': attribute type 10 has an invalid length.
[   80.094934][ T5921] netlink: 40 bytes leftover after parsing attributes in process `syz.4.761'.
[   80.101661][ T5916] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   80.114127][ T5921] batadv0: entered promiscuous mode
[   80.119379][ T5921] batadv0: entered allmulticast mode
[   80.136805][ T5921] bond0: (slave batadv0): Releasing backup interface
[   80.147421][ T5921] bridge0: port 3(batadv0) entered blocking state
[   80.154028][ T5921] bridge0: port 3(batadv0) entered disabled state
[   80.252448][ T5932] capability: warning: `syz.4.762' uses deprecated v2 capabilities in a way that may be insecure
[   80.267806][ T5932] loop4: detected capacity change from 0 to 128
[   80.277378][ T5932] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   80.290023][ T5932] ext4 filesystem being mounted at /179/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   80.400796][ T5948] vhci_hcd: invalid port number 254
[   80.406138][ T5948] vhci_hcd: GetPortErrorCount req not supported for USB 2.0 roothub
[   80.450153][ T5954] netlink: 76 bytes leftover after parsing attributes in process `syz.0.763'.
[   80.581459][ T5972] netlink: 'syz.2.770': attribute type 13 has an invalid length.
[   80.642022][   T37] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[   80.651408][   T37] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[   80.756624][ T5985] binfmt_misc: register: failed to install interpreter file ./file2
[   80.878653][ T5992] netlink: 8 bytes leftover after parsing attributes in process `syz.0.776'.
[   81.016928][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.108635][ T3317] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   81.124364][ T6000] netlink: 76 bytes leftover after parsing attributes in process `syz.1.779'.
[   81.164354][ T6004] netlink: 'syz.4.780': attribute type 13 has an invalid length.
[   81.196333][ T6008] netlink: 'syz.2.783': attribute type 10 has an invalid length.
[   81.206864][ T6008] netlink: 'syz.2.783': attribute type 10 has an invalid length.
[   81.214810][ T6008] netlink: 40 bytes leftover after parsing attributes in process `syz.2.783'.
[   81.230284][ T6008] batadv0: entered promiscuous mode
[   81.235817][ T6008] batadv0: entered allmulticast mode
[   81.241823][ T6008] bond0: (slave batadv0): Releasing backup interface
[   81.249056][ T6008] bridge0: port 3(batadv0) entered blocking state
[   81.255571][ T6008] bridge0: port 3(batadv0) entered disabled state
[   81.267674][ T6012] loop4: detected capacity change from 0 to 512
[   81.271765][ T6014] netlink: 8 bytes leftover after parsing attributes in process `syz.1.784'.
[   81.274771][ T6012] EXT4-fs: Ignoring removed oldalloc option
[   81.291879][ T6012] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c02c, mo2=0002]
[   81.300083][ T6012] System zones: 1-12
[   81.304487][ T6012] EXT4-fs (loop4): orphan cleanup on readonly fs
[   81.311495][ T6012] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.785: Parent and EA inode have the same ino 15
[   81.324019][ T6012] EXT4-fs (loop4): Remounting filesystem read-only
[   81.330591][ T6012] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   81.334901][ T6019] netlink: 76 bytes leftover after parsing attributes in process `syz.2.787'.
[   81.343828][ T6012] EXT4-fs warning (device loop4): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[   81.363742][ T6012] EXT4-fs (loop4): 1 orphan inode deleted
[   81.369975][ T6012] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   81.396065][ T6022] netlink: 8 bytes leftover after parsing attributes in process `syz.2.788'.
[   81.407840][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.438329][ T6025] loop4: detected capacity change from 0 to 2048
[   81.472665][ T6022] bond6: entered promiscuous mode
[   81.473959][ T6025] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.478318][ T6022] bond6: entered allmulticast mode
[   81.500678][ T6022] 8021q: adding VLAN 0 to HW filter on device bond6
[   81.523124][ T6026] pimreg: entered allmulticast mode
[   81.532242][ T6021] pimreg: left allmulticast mode
[   81.552210][ T6025] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   81.567157][ T6025] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1386 with error 28
[   81.579819][ T6025] EXT4-fs (loop4): This should not happen!! Data will be lost
[   81.579819][ T6025] 
[   81.589634][ T6025] EXT4-fs (loop4): Total free blocks count 0
[   81.595695][ T6025] EXT4-fs (loop4): Free/Dirty block details
[   81.601886][ T6025] EXT4-fs (loop4): free_blocks=2415919104
[   81.607707][ T6025] EXT4-fs (loop4): dirty_blocks=1392
[   81.613090][ T6025] EXT4-fs (loop4): Block reservation details
[   81.619066][ T6025] EXT4-fs (loop4): i_reserved_data_blocks=87
[   81.681439][   T31] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[   81.690747][   T31] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[   81.748142][ T6036] binfmt_misc: register: failed to install interpreter file ./file2
[   81.802626][ T1842] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   81.874591][ T6039] loop4: detected capacity change from 0 to 512
[   81.932125][ T6039] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.952406][ T6040] loop0: detected capacity change from 0 to 1024
[   81.959086][ T6040] EXT4-fs: Ignoring removed oldalloc option
[   81.965102][ T6040] EXT4-fs: Ignoring removed orlov option
[   81.968143][ T6039] ext4 filesystem being mounted at /183/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   81.970778][ T6040] EXT4-fs: Ignoring removed oldalloc option
[   81.970815][ T6040] EXT4-fs: Ignoring removed nomblk_io_submit option
[   82.133817][ T6040] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.148961][ T6052] netlink: 'syz.3.795': attribute type 13 has an invalid length.
[   82.171820][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.194546][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.219039][ T6056] wireguard0: entered promiscuous mode
[   82.224757][ T6056] wireguard0: entered allmulticast mode
[   82.242808][ T6054] loop4: detected capacity change from 0 to 1024
[   82.274945][ T6054] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.289619][ T6054] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.363223][ T6079] loop0: detected capacity change from 0 to 512
[   82.370617][ T6079] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   82.384927][ T6079] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   82.398531][ T6079] EXT4-fs (loop0): 1 truncate cleaned up
[   82.405814][ T6079] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.432890][ T6085] program syz.1.805 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   82.462693][ T6084] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[   82.469274][ T6084] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   82.477049][ T6084] vhci_hcd vhci_hcd.0: Device attached
[   82.485345][ T6085] loop1: detected capacity change from 0 to 8192
[   82.489040][ T6088] smc: net device bond0 applied user defined pnetid SYZ2
[   82.505859][ T6086] vhci_hcd: connection closed
[   82.506106][   T31] vhci_hcd: stop threads
[   82.515211][   T31] vhci_hcd: release socket
[   82.519858][   T31] vhci_hcd: disconnect device
[   82.605805][ T6100] bond7: entered promiscuous mode
[   82.611205][ T6100] bond7: entered allmulticast mode
[   82.616738][ T6100] 8021q: adding VLAN 0 to HW filter on device bond7
[   82.628716][ T6100] pimreg: entered allmulticast mode
[   82.634995][ T6099] pimreg: left allmulticast mode
[   82.727868][ T6118] binfmt_misc: register: failed to install interpreter file ./file2
[   82.951878][ T6145] netlink: 'syz.2.810': attribute type 13 has an invalid length.
[   83.073647][ T6166] loop3: detected capacity change from 0 to 512
[   83.083018][ T6166] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   83.101767][ T6166] EXT4-fs (loop3): 1 truncate cleaned up
[   83.113444][ T6166] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.149939][ T6174] binfmt_misc: register: failed to install interpreter file ./file2
[   83.310599][ T6192] FAULT_INJECTION: forcing a failure.
[   83.310599][ T6192] name failslab, interval 1, probability 0, space 0, times 0
[   83.323405][ T6192] CPU: 1 UID: 0 PID: 6192 Comm: syz.1.818 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[   83.323443][ T6192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   83.323460][ T6192] Call Trace:
[   83.323469][ T6192]  <TASK>
[   83.323478][ T6192]  __dump_stack+0x1d/0x30
[   83.323506][ T6192]  dump_stack_lvl+0xe8/0x140
[   83.323604][ T6192]  dump_stack+0x15/0x1b
[   83.323628][ T6192]  should_fail_ex+0x265/0x280
[   83.323677][ T6192]  should_failslab+0x8c/0xb0
[   83.323769][ T6192]  kmem_cache_alloc_noprof+0x50/0x310
[   83.323801][ T6192]  ? getname_flags+0x80/0x3b0
[   83.323837][ T6192]  getname_flags+0x80/0x3b0
[   83.323880][ T6192]  vfs_fstatat+0x43/0x160
[   83.323933][ T6192]  __se_sys_newfstatat+0x55/0x260
[   83.323970][ T6192]  ? __fget_files+0x184/0x1c0
[   83.324010][ T6192]  ? fput+0x8f/0xc0
[   83.324034][ T6192]  ? ksys_write+0x16e/0x1a0
[   83.324103][ T6192]  __x64_sys_newfstatat+0x55/0x70
[   83.324125][ T6192]  x64_sys_call+0x2c22/0x2fb0
[   83.324154][ T6192]  do_syscall_64+0xd0/0x1a0
[   83.324186][ T6192]  ? clear_bhb_loop+0x40/0x90
[   83.324221][ T6192]  ? clear_bhb_loop+0x40/0x90
[   83.324280][ T6192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.324308][ T6192] RIP: 0033:0x7fec461ae969
[   83.324329][ T6192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.324354][ T6192] RSP: 002b:00007fec44817038 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[   83.324380][ T6192] RAX: ffffffffffffffda RBX: 00007fec463d5fa0 RCX: 00007fec461ae969
[   83.324395][ T6192] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffff9c
[   83.324413][ T6192] RBP: 00007fec44817090 R08: 0000000000000000 R09: 0000000000000000
[   83.324427][ T6192] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[   83.324442][ T6192] R13: 0000000000000000 R14: 00007fec463d5fa0 R15: 00007ffcb76a8998
[   83.324466][ T6192]  </TASK>
[   83.689519][ T6232] __nla_validate_parse: 7 callbacks suppressed
[   83.689541][ T6232] netlink: 76 bytes leftover after parsing attributes in process `syz.2.823'.
[   83.778019][ T6247] netlink: 12 bytes leftover after parsing attributes in process `syz.1.827'.
[   83.854157][ T6255] wireguard0: entered promiscuous mode
[   83.859704][ T6255] wireguard0: entered allmulticast mode
[   83.952237][   T29] kauditd_printk_skb: 119 callbacks suppressed
[   83.952255][   T29] audit: type=1326 audit(1748170471.548:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6265 comm="syz.4.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   83.989842][   T29] audit: type=1326 audit(1748170471.578:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6265 comm="syz.4.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   84.013223][   T29] audit: type=1326 audit(1748170471.578:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6265 comm="syz.4.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   84.036645][   T29] audit: type=1326 audit(1748170471.578:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6265 comm="syz.4.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   84.060092][   T29] audit: type=1326 audit(1748170471.578:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6265 comm="syz.4.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   84.083555][   T29] audit: type=1326 audit(1748170471.578:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6265 comm="syz.4.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   84.107286][   T29] audit: type=1326 audit(1748170471.578:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6265 comm="syz.4.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   84.130654][   T29] audit: type=1326 audit(1748170471.578:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6265 comm="syz.4.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   84.130686][   T29] audit: type=1326 audit(1748170471.578:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6265 comm="syz.4.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   84.177205][   T29] audit: type=1326 audit(1748170471.578:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6265 comm="syz.4.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[   84.233625][ T6275] netlink: 76 bytes leftover after parsing attributes in process `syz.2.837'.
[   84.274893][ T6279] netlink: 8 bytes leftover after parsing attributes in process `syz.1.839'.
[   84.284536][ T6279] netlink: 8 bytes leftover after parsing attributes in process `syz.1.839'.
[   84.323627][ T6279] bond7: entered promiscuous mode
[   84.329247][ T6279] bond7: entered allmulticast mode
[   84.341636][ T6279] 8021q: adding VLAN 0 to HW filter on device bond7
[   84.367820][ T6283] pimreg: entered allmulticast mode
[   84.402343][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.416766][ T6278] pimreg: left allmulticast mode
[   84.418967][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.456246][ T6294] block device autoloading is deprecated and will be removed.
[   84.469918][ T6294] netlink: 28 bytes leftover after parsing attributes in process `syz.2.844'.
[   84.593074][ T6313] netlink: 8 bytes leftover after parsing attributes in process `syz.3.847'.
[   84.594860][ T6314] netlink: 76 bytes leftover after parsing attributes in process `syz.2.853'.
[   84.607083][ T6311] netlink: 8 bytes leftover after parsing attributes in process `syz.1.852'.
[   84.627503][ T6311] netlink: 8 bytes leftover after parsing attributes in process `syz.1.852'.
[   84.757448][ T6311] bond8: entered promiscuous mode
[   84.763830][ T6311] bond8: entered allmulticast mode
[   84.770602][ T6311] 8021q: adding VLAN 0 to HW filter on device bond8
[   84.785965][ T6318] pimreg: entered allmulticast mode
[   84.792192][ T6309] pimreg: left allmulticast mode
[   85.304209][ T6332] binfmt_misc: register: failed to install interpreter file ./file2
[   85.429803][ T6334] bond9: entered promiscuous mode
[   85.434970][ T6334] bond9: entered allmulticast mode
[   85.441804][ T6334] 8021q: adding VLAN 0 to HW filter on device bond9
[   85.804411][ T6363] loop3: detected capacity change from 0 to 512
[   85.845883][ T6370] netlink: 'syz.0.872': attribute type 10 has an invalid length.
[   85.859889][ T6368] bond10: entered promiscuous mode
[   85.865157][ T6368] bond10: entered allmulticast mode
[   85.887161][ T6368] 8021q: adding VLAN 0 to HW filter on device bond10
[   85.897119][ T6370] batadv0: left allmulticast mode
[   85.902534][ T6370] batadv0: left promiscuous mode
[   85.907816][ T6370] bridge0: port 3(batadv0) entered disabled state
[   85.934390][ T6370] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.959090][ T6370] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   85.980148][ T6363] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.001224][ T6363] ext4 filesystem being mounted at /161/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.017265][ T6381] netlink: 'syz.1.876': attribute type 13 has an invalid length.
[   86.036292][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.072157][ T6384] binfmt_misc: register: failed to install interpreter file ./file2
[   86.512350][ T6397] loop3: detected capacity change from 0 to 128
[   86.520655][ T6397] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   86.533442][ T6397] ext4 filesystem being mounted at /163/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   86.653965][ T6405] netlink: 'syz.4.884': attribute type 13 has an invalid length.
[   86.677977][ T6403] vhci_hcd: invalid port number 254
[   86.683275][ T6403] vhci_hcd: GetPortErrorCount req not supported for USB 2.0 roothub
[   86.793662][ T6418] netlink: 'syz.4.889': attribute type 10 has an invalid length.
[   86.801934][ T6418] batadv0: left allmulticast mode
[   86.807010][ T6418] batadv0: left promiscuous mode
[   86.812337][ T6418] bridge0: port 3(batadv0) entered disabled state
[   86.822568][ T6418] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.830505][ T6418] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   86.929062][ T6427] netlink: 'syz.4.893': attribute type 13 has an invalid length.
[   86.974851][ T6436] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[   86.981561][ T6436] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   86.989341][ T6436] vhci_hcd vhci_hcd.0: Device attached
[   86.995530][ T6437] vhci_hcd: connection closed
[   86.995607][ T3345] vhci_hcd: stop threads
[   87.004679][ T3345] vhci_hcd: release socket
[   87.009156][ T3345] vhci_hcd: disconnect device
[   87.132144][ T6450] netlink: 'syz.0.900': attribute type 10 has an invalid length.
[   87.165663][ T6452] bond8: entered promiscuous mode
[   87.171382][ T6452] bond8: entered allmulticast mode
[   87.186365][ T6452] 8021q: adding VLAN 0 to HW filter on device bond8
[   87.412248][ T3315] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   87.748941][ T6463] bond7: entered promiscuous mode
[   87.754650][ T6463] bond7: entered allmulticast mode
[   87.762986][ T6463] 8021q: adding VLAN 0 to HW filter on device bond7
[   87.806562][ T6468] pimreg: entered allmulticast mode
[   87.847922][ T6479] bond9: entered promiscuous mode
[   87.853281][ T6479] bond9: entered allmulticast mode
[   87.872132][ T6479] 8021q: adding VLAN 0 to HW filter on device bond9
[   87.942315][ T6479] pimreg: entered allmulticast mode
[   87.951530][ T6478] pimreg: left allmulticast mode
[   87.965065][ T6492] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[   87.971727][ T6492] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   87.979531][ T6492] vhci_hcd vhci_hcd.0: Device attached
[   88.013100][ T6490] wireguard0: entered promiscuous mode
[   88.018649][ T6490] wireguard0: entered allmulticast mode
[   88.112367][ T6493] vhci_hcd: connection closed
[   88.112808][   T37] vhci_hcd: stop threads
[   88.121928][   T37] vhci_hcd: release socket
[   88.126423][   T37] vhci_hcd: disconnect device
[   88.170813][ T3374] vhci_hcd: vhci_device speed not set
[   88.375360][ T6507] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[   88.381932][ T6507] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   88.389768][ T6507] vhci_hcd vhci_hcd.0: Device attached
[   88.462274][ T6512] vhci_hcd: connection closed
[   88.462529][ T3345] vhci_hcd: stop threads
[   88.471648][ T3345] vhci_hcd: release socket
[   88.476148][ T3345] vhci_hcd: disconnect device
[   88.578622][ T6515] bond8: entered promiscuous mode
[   88.594881][ T6515] bond8: entered allmulticast mode
[   88.603150][ T6515] 8021q: adding VLAN 0 to HW filter on device bond8
[   88.720234][ T6524] __nla_validate_parse: 16 callbacks suppressed
[   88.720259][ T6524] netlink: 76 bytes leftover after parsing attributes in process `syz.3.928'.
[   89.268202][ T6544] block device autoloading is deprecated and will be removed.
[   89.312308][ T6544] netlink: 28 bytes leftover after parsing attributes in process `syz.1.936'.
[   89.591589][ T6568] netlink: 8 bytes leftover after parsing attributes in process `syz.1.945'.
[   89.600466][ T6568] netlink: 8 bytes leftover after parsing attributes in process `syz.1.945'.
[   89.616518][ T6568] bond10: entered promiscuous mode
[   89.621783][ T6568] bond10: entered allmulticast mode
[   89.627299][ T6568] 8021q: adding VLAN 0 to HW filter on device bond10
[   89.645669][ T6568] pimreg: entered allmulticast mode
[   89.653001][ T6567] pimreg: left allmulticast mode
[   89.731192][ T6579] netlink: 28 bytes leftover after parsing attributes in process `syz.2.949'.
[   89.746483][ T6579] blktrace: Concurrent blktraces are not allowed on loop5
[   89.864464][   T29] kauditd_printk_skb: 160 callbacks suppressed
[   89.864481][   T29] audit: type=1400 audit(1748170477.458:723): avc:  denied  { read write } for  pid=3315 comm="syz-executor" name="loop3" dev="devtmpfs" ino=674 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   89.901651][   T29] audit: type=1400 audit(1748170477.498:724): avc:  denied  { open } for  pid=3315 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=674 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   89.924846][   T29] audit: type=1400 audit(1748170477.498:725): avc:  denied  { ioctl } for  pid=3315 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=674 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   89.951368][ T6582] block device autoloading is deprecated and will be removed.
[   89.966701][ T6582] netlink: 28 bytes leftover after parsing attributes in process `syz.3.950'.
[   90.006088][   T29] audit: type=1326 audit(1748170477.598:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6588 comm="syz.2.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[   90.061443][   T29] audit: type=1326 audit(1748170477.598:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6588 comm="syz.2.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[   90.084864][   T29] audit: type=1326 audit(1748170477.598:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6588 comm="syz.2.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[   90.108353][   T29] audit: type=1326 audit(1748170477.598:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6588 comm="syz.2.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[   90.131659][   T29] audit: type=1326 audit(1748170477.598:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6588 comm="syz.2.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[   90.155141][   T29] audit: type=1326 audit(1748170477.628:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6588 comm="syz.2.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[   90.178405][   T29] audit: type=1326 audit(1748170477.628:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6588 comm="syz.2.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[   90.360886][ T6608] netlink: 76 bytes leftover after parsing attributes in process `syz.3.961'.
[   90.407468][ T6618] netlink: 'syz.3.967': attribute type 10 has an invalid length.
[   90.416855][ T6618] batadv0: left allmulticast mode
[   90.421977][ T6618] batadv0: left promiscuous mode
[   90.427146][ T6618] bridge0: port 3(batadv0) entered disabled state
[   90.447420][ T6618] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.457836][ T6618] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   90.596300][ T6630] wireguard0: entered promiscuous mode
[   90.602066][ T6630] wireguard0: entered allmulticast mode
[   90.683356][ T6639] netlink: 'syz.2.976': attribute type 13 has an invalid length.
[   90.747469][ T6645] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[   90.754044][ T6645] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   90.761759][ T6645] vhci_hcd vhci_hcd.0: Device attached
[   90.767758][ T6647] vhci_hcd: connection closed
[   90.767930][   T37] vhci_hcd: stop threads
[   90.777159][   T37] vhci_hcd: release socket
[   90.781645][   T37] vhci_hcd: disconnect device
[   90.863421][ T6658] vhci_hcd: invalid port number 254
[   90.868703][ T6658] vhci_hcd: GetPortErrorCount req not supported for USB 2.0 roothub
[   91.287725][ T6664] blktrace: Concurrent blktraces are not allowed on loop9
[   91.585438][ T6678] netlink: 'syz.0.990': attribute type 13 has an invalid length.
[   91.661330][ T6679] vhci_hcd: invalid port number 254
[   91.666597][ T6679] vhci_hcd: GetPortErrorCount req not supported for USB 2.0 roothub
[   91.729226][ T6687] netlink: 28 bytes leftover after parsing attributes in process `syz.3.994'.
[   91.987006][ T6700] netlink: 'syz.3.1001': attribute type 13 has an invalid length.
[   92.097007][ T6702] netlink: 'syz.3.1002': attribute type 13 has an invalid length.
[   92.349282][ T6720] binfmt_misc: register: failed to install interpreter file ./file2
[   92.650451][ T6728] netlink: 'syz.2.1012': attribute type 10 has an invalid length.
[   92.682911][ T6728] batadv0: left allmulticast mode
[   92.688194][ T6728] batadv0: left promiscuous mode
[   92.693551][ T6728] bridge0: port 3(batadv0) entered disabled state
[   92.720505][ T6728] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.730421][ T6728] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   92.753341][ T6730] wireguard0: entered promiscuous mode
[   92.758866][ T6730] wireguard0: entered allmulticast mode
[   92.926496][ T6749] binfmt_misc: register: failed to install interpreter file ./file2
[   93.067519][ T6759] netlink: 'syz.2.1025': attribute type 10 has an invalid length.
[   93.078355][ T6760] netlink: 'syz.0.1024': attribute type 13 has an invalid length.
[   93.175079][ T6763] block device autoloading is deprecated and will be removed.
[   93.191049][ T6763] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1027'.
[   93.482683][ T6779] netlink: 'syz.3.1032': attribute type 13 has an invalid length.
[   93.555657][ T6786] netlink: 'syz.2.1036': attribute type 10 has an invalid length.
[   93.620125][ T6788] binfmt_misc: register: failed to install interpreter file ./file2
[   93.826231][ T6799] block device autoloading is deprecated and will be removed.
[   93.855713][ T6799] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1040'.
[   93.988270][ T6802] wireguard0: entered promiscuous mode
[   93.993848][ T6802] wireguard0: entered allmulticast mode
[   94.153736][ T6820] netlink: 'syz.3.1047': attribute type 10 has an invalid length.
[   94.263984][ T6831] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1052'.
[   94.280988][ T6831] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1052'.
[   94.335013][ T6841] block device autoloading is deprecated and will be removed.
[   94.389317][ T6846] netlink: 'syz.0.1058': attribute type 10 has an invalid length.
[   94.402617][ T6841] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1056'.
[   94.417780][ T6831] bond9: entered promiscuous mode
[   94.423578][ T6831] bond9: entered allmulticast mode
[   94.429816][ T6831] 8021q: adding VLAN 0 to HW filter on device bond9
[   94.642335][ T6868] binfmt_misc: register: failed to install interpreter file ./file2
[   95.241311][ T6910] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1082'.
[   95.250250][ T6910] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1082'.
[   95.272403][ T6905] binfmt_misc: register: failed to install interpreter file ./file2
[   95.347682][ T6910] bond11: entered promiscuous mode
[   95.352915][ T6910] bond11: entered allmulticast mode
[   95.370851][ T6910] 8021q: adding VLAN 0 to HW filter on device bond11
[   95.393470][ T6911] pimreg: entered allmulticast mode
[   95.409145][ T6908] pimreg: left allmulticast mode
[   96.938846][ T6946] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1096'.
[   96.947798][ T6946] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1096'.
[   97.037005][ T6946] bond11: entered promiscuous mode
[   97.042284][ T6946] bond11: entered allmulticast mode
[   97.116567][ T6946] 8021q: adding VLAN 0 to HW filter on device bond11
[   97.232984][ T6964] validate_nla: 4 callbacks suppressed
[   97.233004][ T6964] netlink: 'syz.1.1104': attribute type 13 has an invalid length.
[   97.352351][ T6974] netlink: 'syz.0.1107': attribute type 13 has an invalid length.
[   97.734416][ T7022] wireguard0: entered promiscuous mode
[   97.739941][ T7022] wireguard0: entered allmulticast mode
[   97.860041][ T7033] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[   97.866615][ T7033] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   97.874431][ T7033] vhci_hcd vhci_hcd.0: Device attached
[   97.902485][ T7034] vhci_hcd: connection closed
[   97.902704][   T37] vhci_hcd: stop threads
[   97.911834][   T37] vhci_hcd: release socket
[   97.916327][   T37] vhci_hcd: disconnect device
[   97.925331][ T7039] netlink: 'syz.0.1113': attribute type 10 has an invalid length.
[   97.955674][ T7043] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1114'.
[   97.964766][ T7043] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1114'.
[   97.988247][ T7043] bond9: entered promiscuous mode
[   97.993521][ T7043] bond9: entered allmulticast mode
[   98.014392][ T7043] 8021q: adding VLAN 0 to HW filter on device bond9
[   98.044762][ T7049] wireguard0: entered promiscuous mode
[   98.050324][ T7049] wireguard0: entered allmulticast mode
[   98.225221][   T29] kauditd_printk_skb: 179 callbacks suppressed
[   98.225239][   T29] audit: type=1326 audit(1748170485.818:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7071 comm="syz.0.1119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   98.280561][   T29] audit: type=1326 audit(1748170485.858:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7071 comm="syz.0.1119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   98.304253][   T29] audit: type=1326 audit(1748170485.858:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7071 comm="syz.0.1119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   98.327723][   T29] audit: type=1326 audit(1748170485.858:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7071 comm="syz.0.1119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   98.351108][   T29] audit: type=1326 audit(1748170485.858:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7071 comm="syz.0.1119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   98.374589][   T29] audit: type=1326 audit(1748170485.858:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7071 comm="syz.0.1119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   98.374659][   T29] audit: type=1326 audit(1748170485.858:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7071 comm="syz.0.1119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   98.374697][   T29] audit: type=1326 audit(1748170485.858:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7071 comm="syz.0.1119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   98.374791][   T29] audit: type=1326 audit(1748170485.858:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7071 comm="syz.0.1119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   98.374826][   T29] audit: type=1326 audit(1748170485.858:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7071 comm="syz.0.1119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[   98.514763][ T7093] block device autoloading is deprecated and will be removed.
[   98.738119][ T7116] netlink: 'syz.0.1124': attribute type 13 has an invalid length.
[   98.779991][ T7117] binfmt_misc: register: failed to install interpreter file ./file2
[   98.989028][ T7144] FAULT_INJECTION: forcing a failure.
[   98.989028][ T7144] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   99.002378][ T7144] CPU: 1 UID: 0 PID: 7144 Comm: syz.1.1128 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[   99.002411][ T7144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   99.002428][ T7144] Call Trace:
[   99.002485][ T7144]  <TASK>
[   99.002493][ T7144]  __dump_stack+0x1d/0x30
[   99.002521][ T7144]  dump_stack_lvl+0xe8/0x140
[   99.002540][ T7144]  dump_stack+0x15/0x1b
[   99.002561][ T7144]  should_fail_ex+0x265/0x280
[   99.002607][ T7144]  should_fail+0xb/0x20
[   99.002710][ T7144]  should_fail_usercopy+0x1a/0x20
[   99.002730][ T7144]  _copy_to_user+0x20/0xa0
[   99.002816][ T7144]  simple_read_from_buffer+0xb5/0x130
[   99.002846][ T7144]  proc_fail_nth_read+0x100/0x140
[   99.002946][ T7144]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   99.002981][ T7144]  vfs_read+0x19d/0x6f0
[   99.003014][ T7144]  ? __rcu_read_unlock+0x4f/0x70
[   99.003043][ T7144]  ? __fget_files+0x184/0x1c0
[   99.003151][ T7144]  ksys_read+0xda/0x1a0
[   99.003183][ T7144]  __x64_sys_read+0x40/0x50
[   99.003212][ T7144]  x64_sys_call+0x2d77/0x2fb0
[   99.003240][ T7144]  do_syscall_64+0xd0/0x1a0
[   99.003338][ T7144]  ? clear_bhb_loop+0x40/0x90
[   99.003400][ T7144]  ? clear_bhb_loop+0x40/0x90
[   99.003429][ T7144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.003490][ T7144] RIP: 0033:0x7fec461ad37c
[   99.003508][ T7144] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   99.003526][ T7144] RSP: 002b:00007fec44817030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   99.003545][ T7144] RAX: ffffffffffffffda RBX: 00007fec463d5fa0 RCX: 00007fec461ad37c
[   99.003557][ T7144] RDX: 000000000000000f RSI: 00007fec448170a0 RDI: 0000000000000004
[   99.003569][ T7144] RBP: 00007fec44817090 R08: 0000000000000000 R09: 0000000000000000
[   99.003617][ T7144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.003703][ T7144] R13: 0000000000000000 R14: 00007fec463d5fa0 R15: 00007ffcb76a8998
[   99.003730][ T7144]  </TASK>
[   99.010756][ T7142] wireguard0: entered promiscuous mode
[   99.010777][ T7142] wireguard0: entered allmulticast mode
[   99.106685][ T7147] __nla_validate_parse: 2 callbacks suppressed
[   99.106706][ T7147] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1130'.
[   99.274000][ T7159] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[   99.280560][ T7159] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   99.288278][ T7159] vhci_hcd vhci_hcd.0: Device attached
[   99.296304][ T7160] vhci_hcd: connection closed
[   99.296571][   T37] vhci_hcd: stop threads
[   99.305796][   T37] vhci_hcd: release socket
[   99.310378][   T37] vhci_hcd: disconnect device
[   99.325956][ T7157] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[   99.332590][ T7157] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   99.340333][ T7157] vhci_hcd vhci_hcd.0: Device attached
[   99.349014][ T7168] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1135'.
[   99.355482][ T7165] vhci_hcd: connection closed
[   99.359752][ T7168] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1135'.
[   99.360147][   T37] vhci_hcd: stop threads
[   99.360157][   T37] vhci_hcd: release socket
[   99.360172][   T37] vhci_hcd: disconnect device
[   99.531783][ T7168] bond8: entered promiscuous mode
[   99.537854][ T7168] bond8: entered allmulticast mode
[   99.546294][ T7168] 8021q: adding VLAN 0 to HW filter on device bond8
[   99.570745][ T7173] pimreg: entered allmulticast mode
[   99.583549][ T7167] pimreg: left allmulticast mode
[   99.645649][ T7203] wireguard0: entered promiscuous mode
[   99.651452][ T7203] wireguard0: entered allmulticast mode
[   99.844776][ T7233] binfmt_misc: register: failed to install interpreter file ./file2
[   99.845850][ T7236] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1143'.
[   99.962314][ T7247] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1147'.
[  100.217065][ T7272] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1150'.
[  100.246221][ T7276] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1151'.
[  100.283913][ T7281] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1152'.
[  100.298212][ T7281] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1152'.
[  100.325358][ T7286] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  100.331959][ T7286] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  100.339649][ T7286] vhci_hcd vhci_hcd.0: Device attached
[  100.362115][ T7287] vhci_hcd: connection closed
[  100.362610][   T12] vhci_hcd: stop threads
[  100.371651][   T12] vhci_hcd: release socket
[  100.376115][   T12] vhci_hcd: disconnect device
[  100.533275][ T7281] bond12: entered promiscuous mode
[  100.539347][ T7281] bond12: entered allmulticast mode
[  100.551154][ T7281] 8021q: adding VLAN 0 to HW filter on device bond12
[  100.625126][ T7325] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1156'.
[  100.637570][ T7320] vhci_hcd: invalid port number 254
[  100.643090][ T7320] vhci_hcd: GetPortErrorCount req not supported for USB 2.0 roothub
[  100.702797][ T7337] netlink: 'syz.3.1159': attribute type 10 has an invalid length.
[  100.722843][ T7337] netlink: 'syz.3.1159': attribute type 10 has an invalid length.
[  100.732703][ T7337] batadv0: entered promiscuous mode
[  100.738034][ T7337] batadv0: entered allmulticast mode
[  100.743758][ T7343] block device autoloading is deprecated and will be removed.
[  100.757014][ T7337] bond0: (slave batadv0): Releasing backup interface
[  100.764458][ T7337] bridge0: port 3(batadv0) entered blocking state
[  100.771001][ T7337] bridge0: port 3(batadv0) entered disabled state
[  100.909718][ T7362] bond12: entered promiscuous mode
[  100.915179][ T7362] bond12: entered allmulticast mode
[  100.920785][ T7362] 8021q: adding VLAN 0 to HW filter on device bond12
[  100.943556][ T7362] pimreg: entered allmulticast mode
[  100.949698][ T7361] pimreg: left allmulticast mode
[  101.041048][   T59] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  101.050336][   T59] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  101.101988][ T7368] bond9: entered promiscuous mode
[  101.109021][ T7368] bond9: entered allmulticast mode
[  101.120796][ T7368] 8021q: adding VLAN 0 to HW filter on device bond9
[  101.145267][ T7372] pimreg: entered allmulticast mode
[  101.153587][ T7380] pimreg: entered allmulticast mode
[  101.176717][ T7375] bond13: entered promiscuous mode
[  101.181959][ T7375] bond13: entered allmulticast mode
[  101.187539][ T7375] 8021q: adding VLAN 0 to HW filter on device bond13
[  101.208393][ T7370] pimreg: left allmulticast mode
[  101.240147][ T7392] wireguard0: entered promiscuous mode
[  101.245831][ T7392] wireguard0: entered allmulticast mode
[  101.280454][ T7398] FAULT_INJECTION: forcing a failure.
[  101.280454][ T7398] name failslab, interval 1, probability 0, space 0, times 0
[  101.293197][ T7398] CPU: 1 UID: 0 PID: 7398 Comm: syz.1.1178 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[  101.293234][ T7398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  101.293251][ T7398] Call Trace:
[  101.293261][ T7398]  <TASK>
[  101.293271][ T7398]  __dump_stack+0x1d/0x30
[  101.293299][ T7398]  dump_stack_lvl+0xe8/0x140
[  101.293356][ T7398]  dump_stack+0x15/0x1b
[  101.293375][ T7398]  should_fail_ex+0x265/0x280
[  101.293421][ T7398]  should_failslab+0x8c/0xb0
[  101.293466][ T7398]  kmem_cache_alloc_noprof+0x50/0x310
[  101.293549][ T7398]  ? getname_flags+0x80/0x3b0
[  101.293667][ T7398]  ? kstrtouint+0x76/0xc0
[  101.293698][ T7398]  getname_flags+0x80/0x3b0
[  101.293781][ T7398]  __se_sys_newlstat+0x4b/0x270
[  101.293813][ T7398]  ? fput+0x8f/0xc0
[  101.293878][ T7398]  ? ksys_write+0x16e/0x1a0
[  101.293941][ T7398]  __x64_sys_newlstat+0x31/0x40
[  101.293966][ T7398]  x64_sys_call+0x1c47/0x2fb0
[  101.293995][ T7398]  do_syscall_64+0xd0/0x1a0
[  101.294102][ T7398]  ? clear_bhb_loop+0x40/0x90
[  101.294176][ T7398]  ? clear_bhb_loop+0x40/0x90
[  101.294233][ T7398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.294256][ T7398] RIP: 0033:0x7fec461ae969
[  101.294276][ T7398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.294301][ T7398] RSP: 002b:00007fec44817038 EFLAGS: 00000246 ORIG_RAX: 0000000000000006
[  101.294326][ T7398] RAX: ffffffffffffffda RBX: 00007fec463d5fa0 RCX: 00007fec461ae969
[  101.294343][ T7398] RDX: 0000000000000000 RSI: 0000200000000d80 RDI: 0000200000000d40
[  101.294385][ T7398] RBP: 00007fec44817090 R08: 0000000000000000 R09: 0000000000000000
[  101.294400][ T7398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.294417][ T7398] R13: 0000000000000000 R14: 00007fec463d5fa0 R15: 00007ffcb76a8998
[  101.294441][ T7398]  </TASK>
[  101.661305][ T7420] 9pnet_fd: Insufficient options for proto=fd
[  101.712869][ T7418] tipc: Started in network mode
[  101.717818][ T7418] tipc: Node identity 4, cluster identity 4711
[  101.724127][ T7418] tipc: Node number set to 4
[  101.836753][ T7440] bond14: entered promiscuous mode
[  101.844464][ T7440] bond14: entered allmulticast mode
[  101.850661][ T7440] 8021q: adding VLAN 0 to HW filter on device bond14
[  101.865048][ T7444] pimreg: entered allmulticast mode
[  101.890250][ T7446] wireguard0: entered promiscuous mode
[  101.895865][ T7446] wireguard0: entered allmulticast mode
[  102.106080][ T7455] bond15: entered promiscuous mode
[  102.112172][ T7455] bond15: entered allmulticast mode
[  102.118793][ T7455] 8021q: adding VLAN 0 to HW filter on device bond15
[  102.153162][ T7459] block device autoloading is deprecated and will be removed.
[  102.331656][ T7471] loop3: detected capacity change from 0 to 512
[  102.338900][ T7471] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  102.349958][ T7471] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c019, mo2=0002]
[  102.358437][ T7471] System zones: 1-12
[  102.364315][ T7471] EXT4-fs (loop3): 1 truncate cleaned up
[  102.370524][ T7471] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.393148][ T7476] netlink: '+}[@': attribute type 16 has an invalid length.
[  102.400514][ T7476] netlink: '+}[@': attribute type 17 has an invalid length.
[  102.415617][ T3315] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.425782][ T7476] 8021q: adding VLAN 0 to HW filter on device bond0
[  102.434279][ T7476] 8021q: adding VLAN 0 to HW filter on device team0
[  102.462239][ T7476] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  102.472886][ T7482] netlink: 'syz.3.1207': attribute type 10 has an invalid length.
[  102.493598][ T7480] netlink: 'syz.1.1208': attribute type 13 has an invalid length.
[  102.511065][ T7482] batadv0: left allmulticast mode
[  102.516162][ T7482] batadv0: left promiscuous mode
[  102.521313][ T7482] bridge0: port 3(batadv0) entered disabled state
[  102.532173][ T7485] netlink: 'syz.3.1207': attribute type 10 has an invalid length.
[  102.532604][ T7482] 8021q: adding VLAN 0 to HW filter on device batadv0
[  102.549863][ T7482] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  102.558725][ T7485] batadv0: entered promiscuous mode
[  102.564094][ T7485] batadv0: entered allmulticast mode
[  102.578508][ T7485] bond0: (slave batadv0): Releasing backup interface
[  102.612256][ T7493] netlink: 'syz.1.1213': attribute type 10 has an invalid length.
[  102.613295][ T7485] bridge0: port 3(batadv0) entered blocking state
[  102.626693][ T7485] bridge0: port 3(batadv0) entered disabled state
[  102.642114][ T7493] batadv0: left allmulticast mode
[  102.647235][ T7493] batadv0: left promiscuous mode
[  102.652323][ T7493] bridge0: port 3(batadv0) entered disabled state
[  102.669439][ T7493] 8021q: adding VLAN 0 to HW filter on device batadv0
[  102.669861][ T7496] netlink: 'syz.1.1213': attribute type 10 has an invalid length.
[  102.691658][ T7493] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  102.700623][ T7496] batadv0: entered promiscuous mode
[  102.706009][ T7496] batadv0: entered allmulticast mode
[  102.722398][ T7496] bond0: (slave batadv0): Releasing backup interface
[  102.730539][ T7496] bridge0: port 3(batadv0) entered blocking state
[  102.737130][ T7496] bridge0: port 3(batadv0) entered disabled state
[  102.844339][ T7514] binfmt_misc: register: failed to install interpreter file ./file2
[  102.951811][ T7528] loop3: detected capacity change from 0 to 128
[  103.093159][ T1842] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  103.102584][ T1842] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  103.260543][   T29] kauditd_printk_skb: 315 callbacks suppressed
[  103.260641][   T29] audit: type=1326 audit(1748170490.848:1237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7533 comm="syz.0.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[  103.290353][   T29] audit: type=1326 audit(1748170490.848:1238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7533 comm="syz.0.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa770cfe969 code=0x7ffc0000
[  103.512498][ T7568] binfmt_misc: register: failed to install interpreter file ./file2
[  104.085174][   T29] audit: type=1326 audit(1748170491.678:1239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[  104.113095][   T29] audit: type=1326 audit(1748170491.678:1240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[  104.139544][   T29] audit: type=1326 audit(1748170491.678:1241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[  104.168404][   T29] audit: type=1326 audit(1748170491.678:1242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd06bd2e9a3 code=0x7ffc0000
[  104.252199][   T29] audit: type=1326 audit(1748170491.768:1243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd06bd2d41f code=0x7ffc0000
[  104.294624][   T29] audit: type=1326 audit(1748170491.768:1244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd06bd2e9f7 code=0x7ffc0000
[  104.325678][   T29] audit: type=1326 audit(1748170491.798:1245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd06bd2d2d0 code=0x7ffc0000
[  104.363681][   T29] audit: type=1326 audit(1748170491.798:1246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.2.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd06bd2d5ca code=0x7ffc0000
[  104.435328][ T7633] binfmt_misc: register: failed to install interpreter file ./file2
[  104.948919][ T7674] netlink: 'syz.2.1238': attribute type 10 has an invalid length.
[  104.971240][ T7674] netlink: 'syz.2.1238': attribute type 10 has an invalid length.
[  104.979187][ T7674] __nla_validate_parse: 21 callbacks suppressed
[  104.979206][ T7674] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1238'.
[  105.011991][ T7674] batadv0: entered promiscuous mode
[  105.017438][ T7674] batadv0: entered allmulticast mode
[  105.024897][ T7679] binfmt_misc: register: failed to install interpreter file ./file2
[  105.077811][ T7674] bond0: (slave batadv0): Releasing backup interface
[  105.111739][ T7674] bridge0: port 3(batadv0) entered blocking state
[  105.118341][ T7674] bridge0: port 3(batadv0) entered disabled state
[  105.202965][ T7695] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1242'.
[  105.300805][   T12] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  105.310167][   T12] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  105.416630][ T7708] binfmt_misc: register: failed to install interpreter file ./file2
[  105.673550][ T7718] FAULT_INJECTION: forcing a failure.
[  105.673550][ T7718] name failslab, interval 1, probability 0, space 0, times 0
[  105.686395][ T7718] CPU: 1 UID: 0 PID: 7718 Comm: syz.0.1250 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[  105.686434][ T7718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  105.686448][ T7718] Call Trace:
[  105.686454][ T7718]  <TASK>
[  105.686470][ T7718]  __dump_stack+0x1d/0x30
[  105.686575][ T7718]  dump_stack_lvl+0xe8/0x140
[  105.686603][ T7718]  dump_stack+0x15/0x1b
[  105.686632][ T7718]  should_fail_ex+0x265/0x280
[  105.686694][ T7718]  ? wakeup_source_sysfs_add+0x39/0x1b0
[  105.686727][ T7718]  should_failslab+0x8c/0xb0
[  105.686764][ T7718]  __kmalloc_cache_noprof+0x4c/0x320
[  105.686787][ T7718]  wakeup_source_sysfs_add+0x39/0x1b0
[  105.686824][ T7718]  wakeup_source_register+0xfd/0x240
[  105.686853][ T7718]  ep_insert+0x7fe/0xd10
[  105.686899][ T7718]  do_epoll_ctl+0x6c3/0x870
[  105.686935][ T7718]  __x64_sys_epoll_ctl+0xcb/0x100
[  105.687031][ T7718]  x64_sys_call+0x26ef/0x2fb0
[  105.687061][ T7718]  do_syscall_64+0xd0/0x1a0
[  105.687148][ T7718]  ? clear_bhb_loop+0x40/0x90
[  105.687175][ T7718]  ? clear_bhb_loop+0x40/0x90
[  105.687201][ T7718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.687252][ T7718] RIP: 0033:0x7fa770cfe969
[  105.687267][ T7718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.687337][ T7718] RSP: 002b:00007fa76f367038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  105.687362][ T7718] RAX: ffffffffffffffda RBX: 00007fa770f25fa0 RCX: 00007fa770cfe969
[  105.687379][ T7718] RDX: 0000000000000007 RSI: 0000000000000001 RDI: 0000000000000006
[  105.687396][ T7718] RBP: 00007fa76f367090 R08: 0000000000000000 R09: 0000000000000000
[  105.687412][ T7718] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  105.687429][ T7718] R13: 0000000000000000 R14: 00007fa770f25fa0 R15: 00007ffe6a2c9cd8
[  105.687456][ T7718]  </TASK>
[  105.891282][ T7720] netlink: 'syz.1.1251': attribute type 13 has an invalid length.
[  105.899169][ T7720] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1251'.
[  105.926560][ T7722] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1252'.
[  106.008112][ T7730] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1256'.
[  106.235862][ T7744] block device autoloading is deprecated and will be removed.
[  106.238249][ T7746] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1263'.
[  106.265441][ T7746] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1263'.
[  106.281121][ T7744] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1262'.
[  106.551165][ T7756] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1265'.
[  106.709935][ T7760] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1266'.
[  107.082580][ T7770] bond10: entered promiscuous mode
[  107.088432][ T7770] bond10: entered allmulticast mode
[  107.109182][ T7770] 8021q: adding VLAN 0 to HW filter on device bond10
[  107.328424][ T7787] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  107.335113][ T7787] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  107.342899][ T7787] vhci_hcd vhci_hcd.0: Device attached
[  107.376797][ T7778] bond10: entered promiscuous mode
[  107.382014][ T7778] bond10: entered allmulticast mode
[  107.388899][ T7778] 8021q: adding VLAN 0 to HW filter on device bond10
[  107.398575][ T7789] vhci_hcd: connection closed
[  107.480397][ T1842] vhci_hcd: stop threads
[  107.489523][ T1842] vhci_hcd: release socket
[  107.494012][ T1842] vhci_hcd: disconnect device
[  107.622737][ T7812] batman_adv: batadv0: Removing interface: batadv_slave_0
[  107.632006][ T7812] batman_adv: batadv0: Removing interface: batadv_slave_1
[  107.640597][ T7812] bridge0: port 3(batadv0) entered disabled state
[  107.793770][ T7821] block device autoloading is deprecated and will be removed.
[  107.933798][ T7836] vhci_hcd: invalid port number 254
[  107.939160][ T7836] vhci_hcd: GetPortErrorCount req not supported for USB 2.0 roothub
[  108.213824][ T7861] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  108.220399][ T7861] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  108.228040][ T7861] vhci_hcd vhci_hcd.0: Device attached
[  108.265107][ T7864] vhci_hcd: connection closed
[  108.265536][   T59] vhci_hcd: stop threads
[  108.274547][   T59] vhci_hcd: release socket
[  108.278977][   T59] vhci_hcd: disconnect device
[  108.404323][   T29] kauditd_printk_skb: 48 callbacks suppressed
[  108.404341][   T29] audit: type=1326 audit(1748170495.998:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.4.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[  108.442251][   T29] audit: type=1326 audit(1748170496.028:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.4.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[  108.466045][   T29] audit: type=1326 audit(1748170496.028:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.4.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f438cdde9a3 code=0x7ffc0000
[  108.492746][   T29] audit: type=1326 audit(1748170496.028:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.4.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f438cddd41f code=0x7ffc0000
[  108.521251][   T29] audit: type=1326 audit(1748170496.028:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.4.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f438cdde9f7 code=0x7ffc0000
[  108.522262][ T7875] FAULT_INJECTION: forcing a failure.
[  108.522262][ T7875] name failslab, interval 1, probability 0, space 0, times 0
[  108.544990][   T29] audit: type=1326 audit(1748170496.028:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.4.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f438cddd2d0 code=0x7ffc0000
[  108.557696][ T7875] CPU: 1 UID: 0 PID: 7875 Comm: syz.2.1308 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[  108.557789][ T7875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  108.557808][ T7875] Call Trace:
[  108.557819][ T7875]  <TASK>
[  108.557831][ T7875]  __dump_stack+0x1d/0x30
[  108.557861][ T7875]  dump_stack_lvl+0xe8/0x140
[  108.557888][ T7875]  dump_stack+0x15/0x1b
[  108.557911][ T7875]  should_fail_ex+0x265/0x280
[  108.558026][ T7875]  ? audit_log_d_path+0x8d/0x150
[  108.558070][ T7875]  should_failslab+0x8c/0xb0
[  108.558163][ T7875]  __kmalloc_cache_noprof+0x4c/0x320
[  108.558202][ T7875]  audit_log_d_path+0x8d/0x150
[  108.558247][ T7875]  audit_log_d_path_exe+0x42/0x70
[  108.558346][ T7875]  audit_log_task+0x1e9/0x250
[  108.558389][ T7875]  audit_seccomp+0x61/0x100
[  108.558484][ T7875]  ? __seccomp_filter+0x68c/0x10d0
[  108.558526][ T7875]  __seccomp_filter+0x69d/0x10d0
[  108.558553][ T7875]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  108.558590][ T7875]  ? vfs_write+0x75e/0x8d0
[  108.558626][ T7875]  ? __rcu_read_unlock+0x4f/0x70
[  108.558731][ T7875]  ? __fget_files+0x184/0x1c0
[  108.558845][ T7875]  __secure_computing+0x82/0x150
[  108.558876][ T7875]  syscall_trace_enter+0xcf/0x1e0
[  108.558909][ T7875]  do_syscall_64+0xaa/0x1a0
[  108.559010][ T7875]  ? clear_bhb_loop+0x40/0x90
[  108.559040][ T7875]  ? clear_bhb_loop+0x40/0x90
[  108.559070][ T7875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.559100][ T7875] RIP: 0033:0x7fd06bd2e969
[  108.559123][ T7875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.559204][ T7875] RSP: 002b:00007fd06a376038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  108.559238][ T7875] RAX: ffffffffffffffda RBX: 00007fd06bf56080 RCX: 00007fd06bd2e969
[  108.559257][ T7875] RDX: 0000000000000000 RSI: 00000000000000d4 RDI: 00002000000000c0
[  108.559275][ T7875] RBP: 00007fd06a376090 R08: 0000000000000000 R09: 0000000000000000
[  108.559292][ T7875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.559309][ T7875] R13: 0000000000000000 R14: 00007fd06bf56080 R15: 00007ffee1b4a228
[  108.559364][ T7875]  </TASK>
[  108.797802][   T29] audit: type=1326 audit(1748170496.028:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.4.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f438cddd5ca code=0x7ffc0000
[  108.821134][   T29] audit: type=1326 audit(1748170496.038:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.4.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f438cdde969 code=0x7ffc0000
[  108.899191][   T29] audit: type=1326 audit(1748170496.098:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7873 comm="syz.2.1308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[  108.922792][   T29] audit: type=1326 audit(1748170496.098:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7873 comm="syz.2.1308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd06bd2e969 code=0x7ffc0000
[  108.947214][ T7887] binfmt_misc: register: failed to install interpreter file ./file2
[  109.263354][ T7890] bond11: entered promiscuous mode
[  109.269403][ T7890] bond11: entered allmulticast mode
[  109.276944][ T7890] 8021q: adding VLAN 0 to HW filter on device bond11
[  109.340848][ T7898] batman_adv: batadv0: Removing interface: batadv_slave_0
[  109.350251][ T7898] batman_adv: batadv0: Removing interface: batadv_slave_1
[  109.360171][ T7898] bond0: (slave batadv0): Releasing backup interface
[  109.445942][ T7911] vhci_hcd: invalid port number 254
[  109.451230][ T7911] vhci_hcd: GetPortErrorCount req not supported for USB 2.0 roothub
[  109.496807][ T7914] sd 0:0:1:0: device reset
[  110.004214][ T7932] FAULT_INJECTION: forcing a failure.
[  110.004214][ T7932] name failslab, interval 1, probability 0, space 0, times 0
[  110.017042][ T7932] CPU: 0 UID: 0 PID: 7932 Comm: +}[@ Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[  110.017071][ T7932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  110.017145][ T7932] Call Trace:
[  110.017153][ T7932]  <TASK>
[  110.017163][ T7932]  __dump_stack+0x1d/0x30
[  110.017186][ T7932]  dump_stack_lvl+0xe8/0x140
[  110.017205][ T7932]  dump_stack+0x15/0x1b
[  110.017302][ T7932]  should_fail_ex+0x265/0x280
[  110.017338][ T7932]  ? __se_sys_memfd_create+0x1cc/0x590
[  110.017373][ T7932]  should_failslab+0x8c/0xb0
[  110.017416][ T7932]  __kmalloc_cache_noprof+0x4c/0x320
[  110.017445][ T7932]  ? fput+0x8f/0xc0
[  110.017465][ T7932]  __se_sys_memfd_create+0x1cc/0x590
[  110.017512][ T7932]  __x64_sys_memfd_create+0x31/0x40
[  110.017607][ T7932]  x64_sys_call+0x122f/0x2fb0
[  110.017631][ T7932]  do_syscall_64+0xd0/0x1a0
[  110.017663][ T7932]  ? clear_bhb_loop+0x40/0x90
[  110.017691][ T7932]  ? clear_bhb_loop+0x40/0x90
[  110.017744][ T7932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.017766][ T7932] RIP: 0033:0x7fa770cfe969
[  110.017780][ T7932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.017800][ T7932] RSP: 002b:00007fa76f366e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  110.017825][ T7932] RAX: ffffffffffffffda RBX: 0000000000000512 RCX: 00007fa770cfe969
[  110.017842][ T7932] RDX: 00007fa76f366ef0 RSI: 0000000000000000 RDI: 00007fa770d81444
[  110.017935][ T7932] RBP: 0000200000000c40 R08: 00007fa76f366bb7 R09: 00007fa76f366e40
[  110.017948][ T7932] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000200
[  110.017962][ T7932] R13: 00007fa76f366ef0 R14: 00007fa76f366eb0 R15: 00002000000006c0
[  110.017987][ T7932]  </TASK>
[  110.097324][ T7931] __nla_validate_parse: 21 callbacks suppressed
[  110.097385][ T7931] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1328'.
[  110.221828][ T7931] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1328'.
[  110.424133][ T7949] vhci_hcd: invalid port number 254
[  110.429387][ T7949] vhci_hcd: GetPortErrorCount req not supported for USB 2.0 roothub
[  110.470308][ T7931] bond11: entered promiscuous mode
[  110.477275][ T7931] bond11: entered allmulticast mode
[  110.503317][ T7931] 8021q: adding VLAN 0 to HW filter on device bond11
[  110.549162][ T7937] wireguard1: entered promiscuous mode
[  110.554737][ T7937] wireguard1: entered allmulticast mode
[  110.604579][ T7958] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1339'.
[  110.670076][ T7963] validate_nla: 1 callbacks suppressed
[  110.670103][ T7963] netlink: 'syz.0.1341': attribute type 1 has an invalid length.
[  110.683449][ T7963] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1341'.
[  110.742015][ T7968] FAULT_INJECTION: forcing a failure.
[  110.742015][ T7968] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.755329][ T7968] CPU: 0 UID: 0 PID: 7968 Comm: syz.3.1342 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[  110.755360][ T7968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  110.755377][ T7968] Call Trace:
[  110.755386][ T7968]  <TASK>
[  110.755396][ T7968]  __dump_stack+0x1d/0x30
[  110.755423][ T7968]  dump_stack_lvl+0xe8/0x140
[  110.755454][ T7968]  dump_stack+0x15/0x1b
[  110.755477][ T7968]  should_fail_ex+0x265/0x280
[  110.755517][ T7968]  should_fail+0xb/0x20
[  110.755590][ T7968]  should_fail_usercopy+0x1a/0x20
[  110.755664][ T7968]  _copy_from_user+0x1c/0xb0
[  110.755688][ T7968]  memdup_user_nul+0x5f/0xe0
[  110.755714][ T7968]  sel_commit_bools_write+0xd2/0x270
[  110.755837][ T7968]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  110.755879][ T7968]  vfs_write+0x266/0x8d0
[  110.755916][ T7968]  ? __rcu_read_unlock+0x4f/0x70
[  110.755939][ T7968]  ? __fget_files+0x184/0x1c0
[  110.755972][ T7968]  __x64_sys_pwrite64+0xfd/0x150
[  110.756017][ T7968]  x64_sys_call+0xe45/0x2fb0
[  110.756046][ T7968]  do_syscall_64+0xd0/0x1a0
[  110.756077][ T7968]  ? clear_bhb_loop+0x40/0x90
[  110.756105][ T7968]  ? clear_bhb_loop+0x40/0x90
[  110.756188][ T7968]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.756223][ T7968] RIP: 0033:0x7f31b5dee969
[  110.756243][ T7968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.756267][ T7968] RSP: 002b:00007f31b4457038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  110.756291][ T7968] RAX: ffffffffffffffda RBX: 00007f31b6015fa0 RCX: 00007f31b5dee969
[  110.756309][ T7968] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000003
[  110.756326][ T7968] RBP: 00007f31b4457090 R08: 0000000000000000 R09: 0000000000000000
[  110.756377][ T7968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.756394][ T7968] R13: 0000000000000000 R14: 00007f31b6015fa0 R15: 00007ffdbb3e8698
[  110.756419][ T7968]  </TASK>
[  111.037635][ T7979] binfmt_misc: register: failed to install interpreter file ./file2
[  111.068361][ T7981] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  111.075048][ T7981] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  111.082956][ T7981] vhci_hcd vhci_hcd.0: Device attached
[  111.135319][ T7982] vhci_hcd: connection closed
[  111.136017][   T59] vhci_hcd: stop threads
[  111.145149][   T59] vhci_hcd: release socket
[  111.149576][   T59] vhci_hcd: disconnect device
[  111.480745][ T7999] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1351'.
[  111.510667][ T8003] netlink: 'syz.2.1353': attribute type 10 has an invalid length.
[  111.519200][ T8003] netlink: 'syz.2.1353': attribute type 10 has an invalid length.
[  111.527214][ T8003] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1353'.
[  111.537328][ T8005] openvswitch: netlink: Message has 6 unknown bytes.
[  111.564059][ T8009] FAULT_INJECTION: forcing a failure.
[  111.564059][ T8009] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  111.573774][ T8011] vhci_hcd: invalid port number 254
[  111.577204][ T8009] CPU: 0 UID: 0 PID: 8009 Comm: syz.2.1356 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[  111.577247][ T8009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  111.577266][ T8009] Call Trace:
[  111.577273][ T8009]  <TASK>
[  111.577285][ T8009]  __dump_stack+0x1d/0x30
[  111.577314][ T8009]  dump_stack_lvl+0xe8/0x140
[  111.577408][ T8009]  dump_stack+0x15/0x1b
[  111.577478][ T8009]  should_fail_ex+0x265/0x280
[  111.577526][ T8009]  should_fail+0xb/0x20
[  111.577628][ T8009]  should_fail_usercopy+0x1a/0x20
[  111.577656][ T8009]  _copy_from_user+0x1c/0xb0
[  111.577687][ T8009]  ___sys_sendmsg+0xc1/0x1d0
[  111.577794][ T8009]  __x64_sys_sendmsg+0xd4/0x160
[  111.577828][ T8009]  x64_sys_call+0x2999/0x2fb0
[  111.577857][ T8009]  do_syscall_64+0xd0/0x1a0
[  111.577915][ T8009]  ? clear_bhb_loop+0x40/0x90
[  111.577944][ T8009]  ? clear_bhb_loop+0x40/0x90
[  111.578029][ T8009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.578058][ T8009] RIP: 0033:0x7fd06bd2e969
[  111.578082][ T8009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.578108][ T8009] RSP: 002b:00007fd06a397038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  111.578134][ T8009] RAX: ffffffffffffffda RBX: 00007fd06bf55fa0 RCX: 00007fd06bd2e969
[  111.578268][ T8009] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[  111.578285][ T8009] RBP: 00007fd06a397090 R08: 0000000000000000 R09: 0000000000000000
[  111.578301][ T8009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.578318][ T8009] R13: 0000000000000000 R14: 00007fd06bf55fa0 R15: 00007ffee1b4a228
[  111.578344][ T8009]  </TASK>
[  111.752937][ T8011] vhci_hcd: GetPortErrorCount req not supported for USB 2.0 roothub
[  111.753438][ T8020] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1359'.
[  111.769912][ T8020] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1359'.
[  111.884201][ T8020] bond13: entered promiscuous mode
[  111.889487][ T8020] bond13: entered allmulticast mode
[  111.895056][ T8020] 8021q: adding VLAN 0 to HW filter on device bond13
[  112.020460][ T8036] binfmt_misc: register: failed to install interpreter file ./file2
[  112.467741][ T8043] ==================================================================
[  112.475911][ T8043] BUG: KCSAN: data-race in vmalloc_info_show / vmalloc_info_show
[  112.483697][ T8043] 
[  112.486120][ T8043] write to 0xffff88810120e218 of 4 bytes by task 8036 on cpu 1:
[  112.494149][ T8043]  vmalloc_info_show+0x421/0x790
[  112.499104][ T8043]  seq_read_iter+0x316/0x940
[  112.503700][ T8043]  proc_reg_read_iter+0x10d/0x180
[  112.508740][ T8043]  vfs_read+0x5cd/0x6f0
[  112.512910][ T8043]  ksys_read+0xda/0x1a0
[  112.517095][ T8043]  __x64_sys_read+0x40/0x50
[  112.521617][ T8043]  x64_sys_call+0x2d77/0x2fb0
[  112.526327][ T8043]  do_syscall_64+0xd0/0x1a0
[  112.530840][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.536741][ T8043] 
[  112.539060][ T8043] read-write to 0xffff88810120e218 of 4 bytes by task 8043 on cpu 0:
[  112.547119][ T8043]  vmalloc_info_show+0x481/0x790
[  112.552093][ T8043]  seq_read_iter+0x316/0x940
[  112.556692][ T8043]  proc_reg_read_iter+0x10d/0x180
[  112.561731][ T8043]  vfs_read+0x5cd/0x6f0
[  112.565902][ T8043]  ksys_read+0xda/0x1a0
[  112.570059][ T8043]  __x64_sys_read+0x40/0x50
[  112.574567][ T8043]  x64_sys_call+0x2d77/0x2fb0
[  112.579247][ T8043]  do_syscall_64+0xd0/0x1a0
[  112.583777][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.589771][ T8043] 
[  112.592097][ T8043] value changed: 0x00000113 -> 0x00000000
[  112.597818][ T8043] 
[  112.600137][ T8043] Reported by Kernel Concurrency Sanitizer on:
[  112.606287][ T8043] CPU: 0 UID: 0 PID: 8043 Comm: syz.0.1367 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[  112.618701][ T8043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  112.628759][ T8043] ==================================================================
[  112.778046][ T8036] ==================================================================
[  112.786185][ T8036] BUG: KCSAN: data-race in vmalloc_info_show / vmalloc_info_show
[  112.793949][ T8036] 
[  112.796318][ T8036] read-write to 0xffff88810120e218 of 4 bytes by task 8043 on cpu 1:
[  112.804474][ T8036]  vmalloc_info_show+0x481/0x790
[  112.809421][ T8036]  seq_read_iter+0x316/0x940
[  112.814014][ T8036]  proc_reg_read_iter+0x10d/0x180
[  112.819056][ T8036]  vfs_read+0x5cd/0x6f0
[  112.823237][ T8036]  ksys_read+0xda/0x1a0
[  112.827410][ T8036]  __x64_sys_read+0x40/0x50
[  112.831926][ T8036]  x64_sys_call+0x2d77/0x2fb0
[  112.836620][ T8036]  do_syscall_64+0xd0/0x1a0
[  112.841134][ T8036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.847060][ T8036] 
[  112.849387][ T8036] read-write to 0xffff88810120e218 of 4 bytes by task 8036 on cpu 0:
[  112.857455][ T8036]  vmalloc_info_show+0x481/0x790
[  112.862424][ T8036]  seq_read_iter+0x316/0x940
[  112.867046][ T8036]  proc_reg_read_iter+0x10d/0x180
[  112.872127][ T8036]  vfs_read+0x5cd/0x6f0
[  112.876301][ T8036]  ksys_read+0xda/0x1a0
[  112.880461][ T8036]  __x64_sys_read+0x40/0x50
[  112.884988][ T8036]  x64_sys_call+0x2d77/0x2fb0
[  112.889842][ T8036]  do_syscall_64+0xd0/0x1a0
[  112.894356][ T8036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.900251][ T8036] 
[  112.902575][ T8036] value changed: 0x00000462 -> 0x00000007
[  112.908293][ T8036] 
[  112.910610][ T8036] Reported by Kernel Concurrency Sanitizer on:
[  112.916756][ T8036] CPU: 0 UID: 0 PID: 8036 Comm: syz.3.1366 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(voluntary) 
[  112.929178][ T8036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  112.939258][ T8036] ==================================================================