last executing test programs: 2m16.616845049s ago: executing program 3 (id=246): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0) 2m16.569474559s ago: executing program 3 (id=249): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), 0x0}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0xfffffffffffffffe}, 0x18) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="6c000000100003042cbd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000003c00128009000100766c616e000000002c00028006000100000000001c0003800c00010000010000800000000c00010000000000ffffff7f0400048008000a00", @ANYRES32=r4, @ANYBLOB="08000500", @ANYRES32=r4], 0x6c}, 0x1, 0xba01}, 0x0) 2m16.44231297s ago: executing program 3 (id=255): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) listen(r2, 0x101) r3 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000580)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) close_range(r4, 0xffffffffffffffff, 0x0) 2m16.40522569s ago: executing program 3 (id=257): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r3}, 0x10) r5 = open(&(0x7f0000000280)='.\x00', 0x0, 0x8) fcntl$notify(r5, 0x402, 0x0) syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x120c480, &(0x7f0000000c80), 0x3, 0x4ea, &(0x7f0000000680)="$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") r6 = socket$inet6_tcp(0xa, 0x1, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000c40)={r1, 0xe0, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, &(0x7f0000000300)=[0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x51, &(0x7f0000000380)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000b80), &(0x7f0000000bc0), 0x8, 0x63, 0x8, 0x8, &(0x7f0000000c00)}}, 0x10) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000dc0)={{0x1, 0x1, 0x18, r4, {0xee00, 0xee01}}, './file1\x00'}) r9 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000ec0)=@generic={&(0x7f0000000e80)='./file0\x00', 0x0, 0x10}, 0x18) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000f80)={{r2, 0xffffffffffffffff}, &(0x7f0000000f00), &(0x7f0000000f40)=r1}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000010c0)={0x11, 0x4, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2f, 0x0, 0x0, 0x0, 0x9}, [@jmp={0x5, 0x1, 0xb, 0x3, 0x0, 0x2cf67d385719a9e0, 0x1}]}, &(0x7f0000000280)='GPL\x00', 0x9, 0x0, 0x0, 0x41000, 0x2, '\x00', r7, 0x0, r8, 0x8, &(0x7f0000000e00)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000e40)={0x0, 0xd, 0x2, 0x1}, 0x10, 0x0, 0x0, 0x9, &(0x7f0000000fc0)=[r9, r2, r10, r2, r0], &(0x7f0000001000)=[{0x1, 0x4, 0xe, 0x1}, {0x2, 0x2, 0x0, 0x2}, {0x3, 0x5, 0x10}, {0x3, 0x1, 0xb, 0xb}, {0x4, 0x2, 0xf, 0x9}, {0x1, 0x5, 0x4, 0x3}, {0x2, 0x5, 0xb, 0x2}, {0x0, 0x5, 0xc, 0x1}, {0x3, 0x4, 0xb, 0x7}], 0x10, 0x7, @void, @value}, 0x94) ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000080)={'macvlan0\x00', &(0x7f0000000000)=@ethtool_link_settings={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xb]}}) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x1070a, &(0x7f0000000940)={[{@grpid}, {@journal_dev={'journal_dev', 0x3d, 0x7fff}}, {@noinit_itable}, {@minixdf}, {@resgid}, {@grpquota}, {@init_itable}, {@journal_dev={'journal_dev', 0x3d, 0x7fffffff}}, {@nodiscard}]}, 0x3, 0x44a, &(0x7f0000000400)="$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") mkdir(0x0, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) munlockall() mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00003, 0x8) open(0x0, 0x143c62, 0x0) 2m16.063343281s ago: executing program 3 (id=264): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 2m15.790341503s ago: executing program 3 (id=273): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) unshare(0x26020480) unshare(0xe000480) 2m15.790233763s ago: executing program 32 (id=273): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) unshare(0x26020480) unshare(0xe000480) 56.868406762s ago: executing program 2 (id=2799): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e24, 0x8, @remote, 0x3}, 0x1c) r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r1, 0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000c40)=ANY=[], 0x14a8}, 0x0, 0x20000000, 0x2}) io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0) 56.015258916s ago: executing program 2 (id=2819): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000a50000002a"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901) fchdir(r1) mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, &(0x7f0000000200)={0x0, 0x0, 0x40000}, 0x20) 55.999604486s ago: executing program 2 (id=2820): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000a50000002a000000"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10) mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, &(0x7f0000000200)={0x0, 0x0, 0x40000}, 0x20) 55.974414077s ago: executing program 2 (id=2821): r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x444, &(0x7f0000000980)="$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") chdir(&(0x7f0000000080)='./file0\x00') creat(&(0x7f0000000040)='./bus\x00', 0x0) mount(&(0x7f00000003c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, 0x1718, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a4b78c660e677df701908b9aaa3f6a00400", "036c47c6780820d1cbf7896de1fdcf335263bdbcef0100a197fce47ddfdd753abd9501ce721b6ae9b49600002a000000000000000000000000000018c900", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"}) r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r2, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYRESDEC=r0, @ANYRES32=0x1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00 \x00'/20, @ANYRES32=r0, @ANYRES32, @ANYBLOB], 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setregid(r4, 0xffffffffffffffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x10) r5 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f00000003c0)=@broute={'broute\x00', 0x20, 0x3, 0x2f4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000b00], 0x0, &(0x7f00000002c0), &(0x7f0000000b00)=[{0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{0x9, 0x78, 0x88f7, 'bond0\x00', 'ip6tnl0\x00', 'ipvlan0\x00', 'rose0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x36}, [0xff, 0xff, 0xff, 0x0, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0x0, 0xff, 0x101], 0xae, 0xae, 0xfe, [@devgroup={{'devgroup\x00', 0x0, 0x18}, {{0x5, 0xa, 0x0, 0x80000, 0x4}}}], [], @common=@log={'log\x00', 0x28, {{0x8, "358bc696fdfd3e99d7fd1b8f64a6045425858424ce099ada2705b008d0e9", 0x1}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{0x6, 0x5, 0x8906, 'vlan0\x00', 'batadv_slave_0\x00', 'vlan0\x00', 'vlan0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2a}, [0xff, 0x0, 0xff, 0x0, 0xff], @remote, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xde, 0x12e, 0x166, [@state={{'state\x00', 0x0, 0x8}, {{0x1a1}}}, @time={{'time\x00', 0x0, 0x18}, {{0x3, 0x2, 0xc2b7, 0x1222, 0x10000, 0x3, 0x3}}}], [@common=@log={'log\x00', 0x28, {{0x80, "633f1b6a212ffad21910cb8ea3d9a389cae6b435dd4998df60ac74759c79", 0xd}}}], @common=@dnat={'dnat\x00', 0x10, {{@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 0xfffffffffffffffc}}}}]}]}, 0x36c) connect$inet(r5, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10) 55.078163241s ago: executing program 2 (id=2838): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000003c0)='kfree\x00', r2}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r1}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, 0x0, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)={{0x14}, [@NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x801, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWCHAIN={0x14, 0x3, 0xa, 0x101, 0x0, 0x0, {0x2, 0x0, 0x5}}], {0x14}}, 0x68}}, 0x0) 54.931918142s ago: executing program 2 (id=2847): socket$inet6(0xa, 0x6, 0x0) r0 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100}, &(0x7f0000000180), &(0x7f00000001c0)) io_uring_enter(r0, 0x2ded, 0x4000, 0x0, 0x0, 0x0) 54.920444312s ago: executing program 33 (id=2847): socket$inet6(0xa, 0x6, 0x0) r0 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100}, &(0x7f0000000180), &(0x7f00000001c0)) io_uring_enter(r0, 0x2ded, 0x4000, 0x0, 0x0, 0x0) 524.819898ms ago: executing program 1 (id=4609): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)={0x18, r1, 0x1, 0x0, 0x0, {0x1c}, [@HEADER={0x4}]}, 0x18}}, 0x4000000) 497.536478ms ago: executing program 1 (id=4611): r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf64(r0, 0x0, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) 464.763938ms ago: executing program 1 (id=4613): r0 = syz_io_uring_setup(0x82e, &(0x7f00000005c0)={0x0, 0x20000020, 0x10100, 0x1, 0xfffffffd}, &(0x7f0000000100)=0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000000)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r3 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, r3, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}}) io_uring_enter(r0, 0x5b43, 0x0, 0x0, 0x0, 0x0) 394.266448ms ago: executing program 1 (id=4615): unshare(0x22020400) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00'}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000240)={r0}, 0x8) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4) setsockopt$packet_int(r1, 0x107, 0x16, &(0x7f0000000000), 0x4) 393.682268ms ago: executing program 1 (id=4616): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r5}, 0x10) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r6}, 0x10) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r7, 0x20e, 0xe40, 0xfd000004, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000010a850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) rt_sigaction(0x40, 0x0, 0x0, 0x8, &(0x7f00000003c0)) vmsplice(r1, 0x0, 0x0, 0x1) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000060000000850000003e000000fc"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz1\x00', 0x200002, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') r10 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCETHTOOL(r10, 0x8946, &(0x7f0000000040)={'veth0_to_bond\x00', &(0x7f0000000540)=@ethtool_gstrings={0x1b, 0x9}}) 349.460718ms ago: executing program 0 (id=4620): r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1, 0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f00000005c0)}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r1, &(0x7f0000000000), &(0x7f00000000c0)=""/102}, 0x20) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc0004}]}) preadv2(r0, 0x0, 0x0, 0x1200, 0x0, 0x0) 319.472579ms ago: executing program 5 (id=4623): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)={0x18, r1, 0x1, 0x0, 0x0, {0x1c}, [@HEADER={0x4}]}, 0x18}}, 0x4000000) 291.845028ms ago: executing program 5 (id=4625): r0 = syz_io_uring_setup(0x82e, &(0x7f00000005c0)={0x0, 0x20000020, 0x10100, 0x1, 0xfffffffd}, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000000)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r4 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, r4, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}}) io_uring_enter(r0, 0x5b43, 0x0, 0x0, 0x0, 0x0) 288.474179ms ago: executing program 1 (id=4626): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) r2 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e24, 0x8, @remote, 0x3}, 0x1c) r3 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100}, &(0x7f0000000180), &(0x7f00000001c0)) io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0) 285.690199ms ago: executing program 0 (id=4627): r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf64(r0, 0x0, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) 251.577649ms ago: executing program 5 (id=4629): unshare(0x22020400) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00'}, 0x10) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4) setsockopt$packet_int(r0, 0x107, 0x16, &(0x7f0000000000), 0x4) 228.468399ms ago: executing program 4 (id=4631): r0 = socket(0xa, 0x40000000002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000021000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000400000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000000300000000000000ffff0000000000000000000000000000000062726983676530000000000000000000736974300000000000000000000000007465616d300000000000000000000000aaaaaaaaaaaa000000000000aaaaaaaaaabb0000000000000000d8010000d801000010020000636f6d6d656e7400000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000003f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073746174697374696300000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000736e617400"/630]}, 0x2ee) 204.907379ms ago: executing program 4 (id=4632): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba6f32}) readv(0xffffffffffffffff, &(0x7f0000001840)=[{&(0x7f0000001400)=""/227, 0xe3}, {0x0}], 0x2) prctl$PR_SET_SECCOMP(0x16, 0x0, 0xfffffffffffffffc) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = mq_open(&(0x7f0000000300)='kfree\x00', 0x40, 0x0, 0x0) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x20, &(0x7f00000002c0)={&(0x7f0000000500)=""/185, 0xb9, 0x0, &(0x7f0000000700)=""/209, 0xd1}}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xb, 0xb, &(0x7f00000001c0)=ANY=[@ANYRESDEC=r0], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfa4, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r2}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000480)=[{0x200000000006, 0x10, 0x0, 0x7ffc0002}]}) socket(0x10, 0x803, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bind$inet(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r5 = socket$kcm(0x2, 0x200000000000001, 0x106) sendmsg(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000040)="699fca", 0x3}], 0x1}, 0x4000) 204.494079ms ago: executing program 0 (id=4633): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, 0x0) syz_open_pts(r0, 0x141601) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffa}]}) close_range(r1, 0xffffffffffffffff, 0x0) 204.369489ms ago: executing program 5 (id=4634): r0 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/uevent_helper', 0x42, 0x0) fstat(r0, &(0x7f0000000600)) 171.078419ms ago: executing program 5 (id=4636): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)={0x18, r1, 0x1, 0x0, 0x0, {0x1c}, [@HEADER={0x4}]}, 0x18}}, 0x4000000) 170.591439ms ago: executing program 4 (id=4637): r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1, 0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f00000005c0)}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r1, &(0x7f0000000000), &(0x7f00000000c0)=""/102}, 0x20) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc0004}]}) preadv2(r0, 0x0, 0x0, 0x1200, 0x0, 0x0) 159.696229ms ago: executing program 6 (id=4638): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a30000000000800034000"], 0x64}}, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}}, 0x0) 136.061269ms ago: executing program 5 (id=4639): syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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") r0 = open(&(0x7f0000000300)='./file1\x00', 0x14927e, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001440)={{r1}, &(0x7f0000000180), &(0x7f0000000300)='%pB \x00'}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)={0x2c, r4, 0x1, 0x0, 0x0, {0x1c}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}]}, 0x2c}}, 0x4000000) socket$nl_route(0x10, 0x3, 0x0) socket(0x10, 0x3, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r7, &(0x7f0000002700)={0x0, 0x0, 0x0}, 0x0) recvmsg(r6, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r8, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x76}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) fallocate(r0, 0x0, 0x0, 0x1001f0) fallocate(r0, 0x3, 0x0, 0x10000) 135.822599ms ago: executing program 4 (id=4640): r0 = syz_io_uring_setup(0x82e, &(0x7f00000005c0)={0x0, 0x20000020, 0x10100, 0x1, 0xfffffffd}, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000000)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r4 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, r4, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}}) io_uring_enter(r0, 0x5b43, 0x0, 0x0, 0x0, 0x0) 128.749649ms ago: executing program 0 (id=4649): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000eb0000000001000000940000930600003e5f0000000000000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, 0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f00000005c0)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r0, &(0x7f0000000000), &(0x7f00000000c0)=""/102}, 0x20) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc0004}]}) preadv2(0xffffffffffffffff, 0x0, 0x0, 0x1200, 0x0, 0x0) 120.617349ms ago: executing program 6 (id=4641): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000a00)=@newtaction={0x44c, 0x30, 0x12f, 0x4000, 0x0, {}, [{0x438, 0x1, [@m_police={0x434, 0x1, 0x0, 0x0, {{0xb}, {0x408, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x4, 0x7c3, 0x2, 0x3, 0xffffff81, 0x10, 0xc, 0x2, 0x3, 0x40, 0x200, 0x8, 0x9, 0x6, 0x1, 0xaa21, 0x8, 0xa, 0x6, 0x200, 0x1, 0x4, 0xcc37, 0x5, 0xb5, 0x649f, 0x4, 0x0, 0x4, 0xfb1, 0x72a4, 0xd, 0x7fff, 0x5, 0x3, 0x0, 0x3, 0x7, 0x28d, 0x4, 0xc, 0x0, 0xaf, 0x1, 0x6, 0x5, 0xfffffffd, 0x5, 0x80, 0xe, 0x2, 0x7, 0x6, 0x7, 0x1991, 0x8, 0xfffffe29, 0x5, 0x3, 0x101, 0xfff, 0x4, 0x5, 0x8000, 0x4, 0x7, 0x3, 0x0, 0xfffffff3, 0x1, 0x4, 0x80000001, 0x2, 0x3, 0x5, 0x101, 0x1, 0xfffffffc, 0x6, 0xfffffffb, 0x200, 0x1, 0x7329, 0x6, 0x3, 0x100, 0x2, 0x3, 0x6d3, 0x224, 0x7ff, 0x0, 0x6, 0x8, 0xfffff001, 0x6, 0x7ed8, 0x3, 0xffff, 0x0, 0x5, 0x249, 0x5, 0x2fbf, 0x2, 0x8000, 0x7, 0x25fe9fd5, 0x1, 0x9, 0x1, 0xe, 0x9, 0x0, 0x3, 0x4f, 0xffffffff, 0x8, 0x1, 0x119203c5, 0xd0, 0x7, 0x80000001, 0x3226, 0x8, 0x3, 0x4, 0xc64f, 0xffffff6d, 0x5, 0x6, 0x6, 0xfffffff7, 0x6, 0x7, 0x5, 0xc, 0xe, 0x7, 0x200, 0x60459141, 0x1, 0x5, 0x6, 0x84, 0x0, 0x1, 0x5, 0x6, 0x29dc, 0x0, 0x2d5, 0x7, 0xfffffffa, 0x1000, 0x6, 0x94, 0x15a, 0x4, 0x6, 0x2, 0x2, 0x2, 0x4, 0xfff, 0x5, 0x1, 0x3, 0x3, 0x80, 0x7a5b054a, 0x8, 0xffffff80, 0x4b1, 0xfff, 0x3, 0xb, 0x8, 0x3, 0x4, 0x2, 0x6, 0xf, 0x2, 0x7, 0x1, 0x77, 0x9, 0x274d, 0x6, 0x40, 0xfffffffe, 0xb, 0x7, 0x1, 0x9ab, 0x7, 0xffffffc0, 0x200, 0x8, 0x3c, 0x2c7, 0x7, 0x8, 0x4, 0x0, 0x99f, 0x5, 0x800, 0x6, 0x31e1, 0x4, 0x4, 0xb, 0x7ff, 0x1e, 0x3, 0xe49, 0x56, 0x9, 0x1, 0x6, 0x2, 0x6a1c, 0x9, 0x8, 0x4dbda2da, 0x7fff, 0x5, 0x5, 0x0, 0x7, 0x8, 0x7fff, 0xed, 0x7fff, 0x1000, 0xcbe, 0x7ff, 0x6, 0x8, 0xb, 0xff, 0x5, 0x0, 0x7, 0x9, 0x0, 0x8, 0x5, 0x4, 0xfffffffd, 0x2, 0xeffe, 0xef4, 0xfffffffa]}], []]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x44c}}, 0x20000800) 87.09163ms ago: executing program 0 (id=4642): r0 = socket(0xa, 0x40000000002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000021000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000400000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000000300000000000000ffff0000000000000000000000000000000062726983676530000000000000000000736974300000000000000000000000007465616d300000000000000000000000aaaaaaaaaaaa000000000000aaaaaaaaaabb0000000000000000d8010000d801000010020000636f6d6d656e7400000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000003f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073746174697374696300000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000736e617400"/630]}, 0x2ee) 85.90358ms ago: executing program 6 (id=4643): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) close(0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='rss_stat\x00', r0}, 0x18) syz_clone(0x2005000, 0x0, 0x0, 0x0, 0x0, 0x0) 85.29302ms ago: executing program 4 (id=4644): setrlimit(0x3, &(0x7f0000008240)={0x1, 0x4}) r0 = syz_create_resource$binfmt(&(0x7f0000000e40)='./file0\x00') r1 = openat$binfmt(0xffffff9c, r0, 0x41, 0x1ff) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0xe, &(0x7f0000001100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @ldst={0x0, 0x3, 0x0, 0x8, 0x4, 0x5a, 0x1}, @exit]}, &(0x7f0000001180)='GPL\x00', 0x3, 0xed, &(0x7f00000011c0)=""/237, 0x40f00, 0x5d, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000012c0)={0xa, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000001300)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000001340)=[{0x0, 0x5, 0x1, 0x3}, {0x2, 0x2, 0x5, 0x3}, {0x0, 0x1, 0xe, 0x2}, {0x5, 0x5, 0xb, 0x9}, {0x3, 0x5, 0x6, 0x4}, {0x3ff, 0x5, 0x8, 0xa}], 0x10, 0xcfc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001480)={&(0x7f00000010c0)='f2fs_fallocate\x00', r2, 0x0, 0x7}, 0x18) write$binfmt_script(r1, &(0x7f0000000000)={'#! ', './file0'}, 0xb) r3 = memfd_create(&(0x7f0000000280)='\x01\xfd\xae.+\xa6\x8c\xb6?2\x199\x94S,|x?Ue[\xbd\xe1!\x033\xbc\'#\xff\x17\x9b%\xf3[d \x97\xf5G\x97A\xc2\xd8\xf0Uq\xe6+\xa5l\x94\v\xb6\a\x17\\\xfb\x04!\xe4\xc4\xb1\xa2\x1c\xffC;\x94Q\r\xb6}\x9c\xecC\v\xcf\xeb\xe4\x9aR\xe5,\x82\x03\x00\x19\x8d\xe8\xc6\xb9\xe4\xb4\x99\x8a\x19P\xb8\x8cx\b\x99\x04R\x05\xaf\xa2\xea5\f\xcc\x1a\x9b\x00Uf\xa5\xf7\x80Tgiz\nX\b\x91\xfd0\x8e\xb6\xa3\v#\xa1\xdf\xb4\xc0\xe6\xb4\xef\xa8i\xd8\xa2\xd2(\x98\x9bA\x8f\x13\xeb\xf4b/\xef!\x8f\xf6]-\xe9k\xb62\x89gEv\x13\xf4\xc7\xb2\xf5\\\x17\x90\xb5\xa6\xa8\xb8o\x0f\xe2 \xe7\x9c$\xd7\xf2@\xf7cdv[\t\x00\x8d\xf3\xcc1\r$\x1e\xff\xf0P\xb2\x97\xb8\xbc\xeb\x91\x87\x8bu\xbf\xd4\'\xff\x1f\f\x016\x9dQ\xeeT\xe8\bY\x00\xb2\x06\xa6\xbel\x9b.o\xbe\x80\x9dx\xd5O\xd6h\\I\xc9\x8d\a\x1d\xc9\x0f\x82\xdbs\xc7\x83L\x9e\xa2\xd1\xb3\xac\x8d\xd8\xb4\xb4\xea\x90Q\xd8\xc7\xeb%\x8bOp\x1ab\x96\xcf\xbb\x15\xcf\xfcN\xed\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00s\xaf\xa2\x14]p+\x96\x1ei|n\xda\xee\\\xae\x96*\x82*\xb8j\xda\xaa\x14\x1f\x1d\xf8\xf8\xae\xfcH\xc4\xb3j\xe8\xcfO\xef\x0e\xafe\xb5*\x89\x18\xb2w\x96\b\x1by\xeaT\xdd\xb3g6\xbc\x85\xb2Y\xccv\x06\x00\x00\x00\xc5e\x90\xc51\x9f\v_# \b\xa5\xbcP,|\xe9\xd6s\x1f\x1f\xbe\xd3\x80\xb1\xa8 \xce|df\x903\v\x02\xea.\x03X\xb5\xe4,8\xb7\xadEI\xdcA\xa7\xcc\xd7\xf9n\x1b\x95\xf8\x11Z\xe6:\x03\xce\xfe\x02\x8ctdy~_oC\x9e\xef\xf0\xa2K\xe9;\x8e:\x01\x03C\x92\xeb\x16\x1c\xbf\xbe\xef\xccUxhg\xffY\xe6\x83\xa6z\xff\x01\x9d o_{!O\xaajU\x84 \xe9\xb59r\x9cw\x18Z\xd3\xcd\x0e\xba\\\xdb\xf0\xe1\x86\t\xaf\vi\xdc\xbf?\xf5\n\xbd^\x05\xc0\xceuC}\xa8\xc7\xad\x86\xd7\x15&\xb9]1\x05J\x96\xf0\x84\xc1\f\xa6p\x96\xb8\x02\x13pA\x19\tf\x12\x88\xc8\x9c\xc9Cn\xd4\xa47V\'+\xcc\xbf\r\xa9\x10\x1d\xcf\xebKlb\xe5:\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00G\xdf\xbb\xc0_\x99F\xf4n]\x14\xbc\xcd\xd3\x9f\x9fe\xc5\xe6\xe8Mb\xc6\x82\x82\xcc\xcaXe\xe1\xa2\xaa\x02\x86\xb8\x18\xe2C\xeb\xa9\x17&\x01&\'w\xa1t0\x80\xf0\x93\x80\x9f\x9b\xe0\x9f\xea\xb9\x9eD]#V\xda\x92\xca\xc6\xfa.\xd6\xe31\xfe\xe8\x02\xebX\xbd\nz\x01O\xd3r\xa2\xa9u\x93', 0x6) fallocate(r3, 0x40, 0x0, 0x6) execve(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x99, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x7, 0x4, 0x8, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffd, 0x0, 0x0, @void, @value, @void, @value}, 0x48) execve(&(0x7f0000001040)='./file0\x00', 0x0, &(0x7f0000000040)={[&(0x7f0000000080)='#! ']}) 43.34738ms ago: executing program 0 (id=4645): r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf64(r0, &(0x7f0000000180)={{0x7f, 0x45, 0x4c, 0x46, 0xa, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3e, 0x0, 0x0, 0x40, 0x42, 0x0, 0x18, 0x38, 0x1}, [{0x3, 0x3, 0x9, 0x3, 0x4, 0x0, 0x101, 0x7}]}, 0x78) execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) 42.76968ms ago: executing program 6 (id=4646): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) close(0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='rss_stat\x00', r0}, 0x18) syz_clone(0x2005000, 0x0, 0x0, 0x0, 0x0, 0x0) 23.54575ms ago: executing program 4 (id=4647): unshare(0x22020400) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4) setsockopt$packet_int(r0, 0x107, 0x16, &(0x7f0000000000), 0x4) 17.83134ms ago: executing program 6 (id=4648): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba6f32}) readv(0xffffffffffffffff, &(0x7f0000001840)=[{&(0x7f0000001400)=""/227, 0xe3}, {0x0}], 0x2) prctl$PR_SET_SECCOMP(0x16, 0x0, 0xfffffffffffffffc) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = mq_open(&(0x7f0000000300)='kfree\x00', 0x40, 0x0, 0x0) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x20, &(0x7f00000002c0)={&(0x7f0000000500)=""/185, 0xb9, 0x0, &(0x7f0000000700)=""/209, 0xd1}}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xb, 0xb, &(0x7f00000001c0)=ANY=[@ANYRESDEC=r0], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfa4, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r2}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000480)=[{0x200000000006, 0x10, 0x0, 0x7ffc0002}]}) socket(0x10, 0x803, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bind$inet(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r5 = socket$kcm(0x2, 0x200000000000001, 0x106) sendmsg(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000040)="699fca", 0x3}], 0x1}, 0x4000) 0s ago: executing program 6 (id=4650): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, 0x0) syz_open_pts(r0, 0x141601) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffa}]}) close_range(r1, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): 8] dump_stack+0x15/0x20 [ 135.725496][T11808] should_fail_ex+0x223/0x230 [ 135.730164][T11808] ? vm_area_dup+0x98/0x130 [ 135.734653][T11808] should_failslab+0x8f/0xb0 [ 135.739251][T11808] kmem_cache_alloc_noprof+0x4c/0x290 [ 135.744659][T11808] vm_area_dup+0x98/0x130 [ 135.748989][T11808] __split_vma+0xf7/0x6a0 [ 135.753375][T11808] vma_modify+0x217/0xcd0 [ 135.757871][T11808] ? _parse_integer_limit+0x167/0x180 [ 135.763239][T11808] vma_modify_flags+0xf1/0x120 [ 135.768021][T11808] mlock_fixup+0x113/0x450 [ 135.772453][T11808] apply_vma_lock_flags+0x194/0x240 [ 135.777684][T11808] do_mlock+0x35b/0x510 [ 135.782022][T11808] ? ksys_write+0x17a/0x1b0 [ 135.786558][T11808] __x64_sys_mlock+0x36/0x40 [ 135.791192][T11808] x64_sys_call+0x822/0x2d60 [ 135.795772][T11808] do_syscall_64+0xc9/0x1c0 [ 135.800290][T11808] ? clear_bhb_loop+0x55/0xb0 [ 135.804996][T11808] ? clear_bhb_loop+0x55/0xb0 [ 135.809660][T11808] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 135.815543][T11808] RIP: 0033:0x7ff5d700e719 [ 135.819946][T11808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 135.839543][T11808] RSP: 002b:00007ff5d5c81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 135.847956][T11808] RAX: ffffffffffffffda RBX: 00007ff5d71c5f80 RCX: 00007ff5d700e719 [ 135.855925][T11808] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000000020ffd000 [ 135.863958][T11808] RBP: 00007ff5d5c81090 R08: 0000000000000000 R09: 0000000000000000 [ 135.871919][T11808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 135.879913][T11808] R13: 0000000000000001 R14: 00007ff5d71c5f80 R15: 00007ffc29d8b5d8 [ 135.887885][T11808] [ 136.124029][T11817] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11817 comm=syz.1.3289 [ 136.154771][T11820] loop4: detected capacity change from 0 to 128 [ 136.163407][T11820] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 136.175869][T11820] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 136.189020][T11820] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 136.246550][T11825] loop5: detected capacity change from 0 to 512 [ 136.253758][T11825] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 136.262895][T11825] EXT4-fs (loop5): invalid journal inode [ 136.270264][T11825] EXT4-fs (loop5): can't get journal size [ 136.277219][T10716] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.288644][T11825] EXT4-fs (loop5): 1 truncate cleaned up [ 136.294885][T11825] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.332660][T11825] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 136.380797][ T4171] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.462460][T11855] loop1: detected capacity change from 0 to 2048 [ 136.478848][T11855] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.515676][T11861] netlink: 'syz.5.3307': attribute type 3 has an invalid length. [ 136.523452][T11861] netlink: 'syz.5.3307': attribute type 2 has an invalid length. [ 136.810772][T11884] loop0: detected capacity change from 0 to 512 [ 136.817549][T11884] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 136.826023][T11884] EXT4-fs (loop0): invalid journal inode [ 136.831843][T11884] EXT4-fs (loop0): can't get journal size [ 136.838373][T11884] EXT4-fs (loop0): 1 truncate cleaned up [ 136.844234][T11884] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.857368][T11884] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 136.875709][T10638] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.010750][T11908] loop6: detected capacity change from 0 to 512 [ 137.017844][T11908] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 137.026420][T11908] EXT4-fs (loop6): invalid journal inode [ 137.032150][T11908] EXT4-fs (loop6): can't get journal size [ 137.038609][T11908] EXT4-fs (loop6): 1 truncate cleaned up [ 137.044869][T11908] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.057755][T11908] EXT4-fs warning (device loop6): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 137.075840][T10716] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.224658][T11933] loop6: detected capacity change from 0 to 512 [ 137.231502][T11933] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 137.240101][T11933] EXT4-fs (loop6): invalid journal inode [ 137.245971][T11933] EXT4-fs (loop6): can't get journal size [ 137.252605][T11933] EXT4-fs (loop6): 1 truncate cleaned up [ 137.258665][T11933] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.271558][T11933] EXT4-fs warning (device loop6): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 137.291120][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.291893][T10716] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.340941][T11938] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 137.499924][T11959] bridge0: port 3(gretap0) entered blocking state [ 137.506593][T11959] bridge0: port 3(gretap0) entered disabled state [ 137.513161][T11959] gretap0: entered allmulticast mode [ 137.518970][T11959] gretap0: entered promiscuous mode [ 137.524385][T11959] bridge0: port 3(gretap0) entered blocking state [ 137.530987][T11959] bridge0: port 3(gretap0) entered forwarding state [ 137.538999][T11959] gretap0: left allmulticast mode [ 137.544121][T11959] gretap0: left promiscuous mode [ 137.547878][T11964] loop4: detected capacity change from 0 to 2048 [ 137.549329][T11959] bridge0: port 3(gretap0) entered disabled state [ 137.579396][T11964] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.598916][T11970] loop0: detected capacity change from 0 to 512 [ 137.605829][T11970] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 137.614266][T11970] EXT4-fs (loop0): invalid journal inode [ 137.619995][T11970] EXT4-fs (loop0): can't get journal size [ 137.626410][T11970] EXT4-fs (loop0): 1 truncate cleaned up [ 137.632453][T11970] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.645809][T11970] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 137.665391][T10638] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.754257][T11974] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11974 comm=syz.0.3355 [ 137.815723][T11979] hub 9-0:1.0: USB hub found [ 137.820392][T11979] hub 9-0:1.0: 8 ports detected [ 137.827955][T11979] 9pnet_fd: p9_fd_create_tcp (11979): problem connecting socket to 127.0.0.1 [ 138.207556][ T29] kauditd_printk_skb: 1014 callbacks suppressed [ 138.207570][ T29] audit: type=1326 audit(1731680917.572:15789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11990 comm="syz.6.3363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 138.238708][ T29] audit: type=1326 audit(1731680917.572:15790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11990 comm="syz.6.3363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 138.262510][ T29] audit: type=1326 audit(1731680917.572:15791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11990 comm="syz.6.3363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 138.286174][ T29] audit: type=1326 audit(1731680917.572:15792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11990 comm="syz.6.3363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 138.309834][ T29] audit: type=1326 audit(1731680917.572:15793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11990 comm="syz.6.3363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 138.333480][ T29] audit: type=1326 audit(1731680917.572:15794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11990 comm="syz.6.3363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 138.357189][ T29] audit: type=1326 audit(1731680917.572:15795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11990 comm="syz.6.3363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=325 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 138.380895][ T29] audit: type=1326 audit(1731680917.572:15796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11990 comm="syz.6.3363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 138.404724][ T29] audit: type=1326 audit(1731680917.572:15797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11990 comm="syz.6.3363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 138.428214][ T29] audit: type=1326 audit(1731680917.572:15798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11990 comm="syz.6.3363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 138.461634][T10430] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.498950][T11996] loop4: detected capacity change from 0 to 512 [ 138.506133][T11996] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 138.518867][T11996] EXT4-fs (loop4): invalid journal inode [ 138.524700][T11996] EXT4-fs (loop4): can't get journal size [ 138.547178][T12003] bpf_get_probe_write_proto: 8 callbacks suppressed [ 138.547193][T12003] syz.6.3367[12003] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 138.553997][T12003] syz.6.3367[12003] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 138.565935][T12003] syz.6.3367[12003] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 138.579548][T11996] EXT4-fs (loop4): 1 truncate cleaned up [ 138.597284][T11996] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 138.612561][T11996] EXT4-fs warning (device loop4): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 138.647231][T12001] xt_hashlimit: max too large, truncated to 1048576 [ 138.682149][T12014] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 138.702730][T12014] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 138.745037][T12003] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12003 comm=syz.6.3367 [ 138.760452][T12003] __nla_validate_parse: 12 callbacks suppressed [ 138.760503][T12003] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3367'. [ 138.795760][T12003] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3367'. [ 138.830485][T12030] loop5: detected capacity change from 0 to 512 [ 138.837380][T12030] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 138.857278][T12030] EXT4-fs (loop5): invalid journal inode [ 138.863031][T12030] EXT4-fs (loop5): can't get journal size [ 138.872643][T12030] EXT4-fs (loop5): 1 truncate cleaned up [ 138.891602][T12030] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 139.007975][T12062] syz.5.3394[12062] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.008035][T12062] syz.5.3394[12062] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.021568][T12062] syz.5.3394[12062] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.094707][T12070] loop6: detected capacity change from 0 to 2048 [ 139.107704][T12062] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12062 comm=syz.5.3394 [ 139.127958][T12062] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3394'. [ 139.146710][T12062] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3394'. [ 139.182620][T12075] loop5: detected capacity change from 0 to 2048 [ 139.250226][T12082] loop4: detected capacity change from 0 to 512 [ 139.257200][T12082] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 139.266905][T12082] EXT4-fs (loop4): invalid journal inode [ 139.275685][T12082] EXT4-fs (loop4): can't get journal size [ 139.289031][T12088] can0: slcan on ttyS3. [ 139.295092][T12082] EXT4-fs (loop4): 1 truncate cleaned up [ 139.295662][T12086] FAULT_INJECTION: forcing a failure. [ 139.295662][T12086] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 139.302059][T12082] EXT4-fs warning (device loop4): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 139.313827][T12086] CPU: 0 UID: 0 PID: 12086 Comm: syz.5.3402 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 139.335835][T12086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 139.345879][T12086] Call Trace: [ 139.349213][T12086] [ 139.352130][T12086] dump_stack_lvl+0xf2/0x150 [ 139.356731][T12086] dump_stack+0x15/0x20 [ 139.360877][T12086] should_fail_ex+0x223/0x230 [ 139.365555][T12086] should_fail+0xb/0x10 [ 139.369884][T12086] should_fail_usercopy+0x1a/0x20 [ 139.374934][T12086] copy_fpstate_to_sigframe+0x5db/0x780 [ 139.380482][T12086] ? copy_fpstate_to_sigframe+0xe7/0x780 [ 139.386139][T12086] ? fpu__alloc_mathframe+0x95/0xd0 [ 139.391364][T12086] get_sigframe+0x2f3/0x430 [ 139.395860][T12086] x64_setup_rt_frame+0xad/0x590 [ 139.400866][T12086] arch_do_signal_or_restart+0x287/0x4b0 [ 139.406565][T12086] syscall_exit_to_user_mode+0x59/0x130 [ 139.412107][T12086] do_syscall_64+0xd6/0x1c0 [ 139.416675][T12086] ? clear_bhb_loop+0x55/0xb0 [ 139.421401][T12086] ? clear_bhb_loop+0x55/0xb0 [ 139.426066][T12086] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.431965][T12086] RIP: 0033:0x7f07ca54e717 [ 139.436417][T12086] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 [ 139.456062][T12086] RSP: 002b:00007f07c91c1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 139.465000][T12086] RAX: 000000000000002f RBX: 00007f07ca705f80 RCX: 00007f07ca54e719 [ 139.473163][T12086] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000005 [ 139.481154][T12086] RBP: 00007f07c91c1090 R08: 0000000000000000 R09: 0000000000000000 [ 139.489172][T12086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 139.497198][T12086] R13: 0000000000000000 R14: 00007f07ca705f80 R15: 00007fff0529ae28 [ 139.505216][T12086] [ 139.545062][T12087] can0 (unregistered): slcan off ttyS3. [ 139.593168][T12094] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (46336) [ 139.602986][T12094] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023 [ 139.704733][T12116] syz.1.3410[12116] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.704861][T12116] syz.1.3410[12116] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.718850][T12116] syz.1.3410[12116] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.759214][T12122] loop5: detected capacity change from 0 to 512 [ 139.796905][T12122] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 139.819884][T12122] EXT4-fs (loop5): invalid journal inode [ 139.829514][T12116] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12116 comm=syz.1.3410 [ 139.837769][T12122] EXT4-fs (loop5): can't get journal size [ 139.842383][T12116] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3410'. [ 139.895289][T12122] EXT4-fs (loop5): 1 truncate cleaned up [ 139.901632][T12142] SELinux: policydb version 1051953235 does not match my version range 15-33 [ 139.913550][T12142] SELinux: failed to load policy [ 139.914045][T12122] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 139.962578][T12149] loop0: detected capacity change from 0 to 2048 [ 139.998818][T12155] FAULT_INJECTION: forcing a failure. [ 139.998818][T12155] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 140.011956][T12155] CPU: 0 UID: 0 PID: 12155 Comm: +}[@ Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 140.017619][T12157] loop6: detected capacity change from 0 to 1024 [ 140.022184][T12155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 140.022200][T12155] Call Trace: [ 140.022208][T12155] [ 140.044727][T12155] dump_stack_lvl+0xf2/0x150 [ 140.049413][T12155] dump_stack+0x15/0x20 [ 140.053664][T12155] should_fail_ex+0x223/0x230 [ 140.058374][T12155] should_fail+0xb/0x10 [ 140.062546][T12155] should_fail_usercopy+0x1a/0x20 [ 140.067588][T12155] _copy_from_user+0x1e/0xb0 [ 140.072195][T12155] kstrtouint_from_user+0x76/0xe0 [ 140.077280][T12155] ? 0xffffffff81000000 [ 140.081577][T12155] ? selinux_file_permission+0x22a/0x360 [ 140.087361][T12155] proc_fail_nth_write+0x4f/0x150 [ 140.092373][T12155] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 140.098019][T12155] vfs_write+0x281/0x920 [ 140.102275][T12155] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 140.107825][T12155] ? __rcu_read_unlock+0x4e/0x70 [ 140.112808][T12155] ? __fget_files+0x1d4/0x210 [ 140.117550][T12155] ksys_write+0xeb/0x1b0 [ 140.121819][T12155] __x64_sys_write+0x42/0x50 [ 140.126401][T12155] x64_sys_call+0x27dd/0x2d60 [ 140.131081][T12155] do_syscall_64+0xc9/0x1c0 [ 140.135637][T12155] ? clear_bhb_loop+0x55/0xb0 [ 140.140375][T12155] ? clear_bhb_loop+0x55/0xb0 [ 140.145057][T12155] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.151010][T12155] RIP: 0033:0x7efff92dd1ff [ 140.155412][T12155] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 140.175006][T12155] RSP: 002b:00007efff7f57030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 140.183531][T12155] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efff92dd1ff [ 140.191525][T12155] RDX: 0000000000000001 RSI: 00007efff7f570a0 RDI: 0000000000000006 [ 140.199500][T12155] RBP: 00007efff7f57090 R08: 0000000000000000 R09: 0000000000000000 [ 140.207588][T12155] R10: 0000000000001200 R11: 0000000000000293 R12: 0000000000000001 [ 140.215550][T12155] R13: 0000000000000000 R14: 00007efff9495f80 R15: 00007ffd509783c8 [ 140.223524][T12155] [ 140.273154][T12168] loop6: detected capacity change from 0 to 2048 [ 140.296668][T12172] syz.1.3428[12172] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 140.350419][T12182] loop4: detected capacity change from 0 to 2048 [ 140.377804][T12172] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12172 comm=syz.1.3428 [ 140.390652][T12172] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3428'. [ 140.447766][T12191] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3433'. [ 140.457814][T12191] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3433'. [ 140.705126][T12209] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12209 comm=syz.1.3442 [ 140.717943][T12209] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3442'. [ 140.767989][T12214] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3444'. [ 141.248446][T12242] loop1: detected capacity change from 0 to 2048 [ 141.271280][T12246] loop0: detected capacity change from 0 to 512 [ 141.302298][T12251] loop6: detected capacity change from 0 to 512 [ 141.318460][T12246] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.3460: invalid indirect mapped block 4294967295 (level 1) [ 141.325246][T12240] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12240 comm=syz.5.3454 [ 141.338771][T12246] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.3460: invalid indirect mapped block 4294967295 (level 1) [ 141.356618][T12251] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.3461: invalid indirect mapped block 4294967295 (level 1) [ 141.360790][T12246] EXT4-fs (loop0): 2 truncates cleaned up [ 141.374534][T12251] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.3461: invalid indirect mapped block 4294967295 (level 1) [ 141.399700][T12251] EXT4-fs (loop6): 2 truncates cleaned up [ 141.406978][T12251] FAULT_INJECTION: forcing a failure. [ 141.406978][T12251] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 141.414198][T12259] loop0: detected capacity change from 0 to 512 [ 141.420155][T12251] CPU: 1 UID: 0 PID: 12251 Comm: syz.6.3461 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 141.437226][T12251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 141.447270][T12251] Call Trace: [ 141.450535][T12251] [ 141.453460][T12251] dump_stack_lvl+0xf2/0x150 [ 141.458067][T12251] dump_stack+0x15/0x20 [ 141.462287][T12251] should_fail_ex+0x223/0x230 [ 141.467061][T12251] should_fail+0xb/0x10 [ 141.471213][T12251] should_fail_usercopy+0x1a/0x20 [ 141.476372][T12251] _copy_from_user+0x1e/0xb0 [ 141.481035][T12251] move_addr_to_kernel+0x82/0x120 [ 141.486084][T12251] __sys_bind+0xd3/0x1c0 [ 141.490389][T12251] __x64_sys_bind+0x41/0x50 [ 141.494952][T12251] x64_sys_call+0x201c/0x2d60 [ 141.499689][T12251] do_syscall_64+0xc9/0x1c0 [ 141.504187][T12251] ? clear_bhb_loop+0x55/0xb0 [ 141.508860][T12251] ? clear_bhb_loop+0x55/0xb0 [ 141.513570][T12251] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.519495][T12251] RIP: 0033:0x7ff6a0d3e719 [ 141.523902][T12251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 141.543567][T12251] RSP: 002b:00007ff69f9b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 141.551980][T12251] RAX: ffffffffffffffda RBX: 00007ff6a0ef5f80 RCX: 00007ff6a0d3e719 [ 141.559985][T12251] RDX: 000000000000006e RSI: 00000000200002c0 RDI: 0000000000000005 [ 141.567953][T12251] RBP: 00007ff69f9b7090 R08: 0000000000000000 R09: 0000000000000000 [ 141.575950][T12251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 141.584179][T12251] R13: 0000000000000000 R14: 00007ff6a0ef5f80 R15: 00007ffdc8bed0b8 [ 141.592158][T12251] [ 141.610428][T12259] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.3463: invalid indirect mapped block 4294967295 (level 1) [ 141.625822][T12259] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.3463: invalid indirect mapped block 4294967295 (level 1) [ 141.640718][T12259] EXT4-fs (loop0): 2 truncates cleaned up [ 141.713206][T12269] loop0: detected capacity change from 0 to 2048 [ 141.860716][T12287] loop5: detected capacity change from 0 to 512 [ 141.867823][T12287] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 141.876300][T12287] EXT4-fs (loop5): invalid journal inode [ 141.881983][T12287] EXT4-fs (loop5): can't get journal size [ 141.888848][T12287] EXT4-fs (loop5): 1 truncate cleaned up [ 141.895919][T12287] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 141.942446][T12292] loop5: detected capacity change from 0 to 512 [ 141.949429][T12292] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 141.958013][T12292] EXT4-fs (loop5): invalid journal inode [ 141.963775][T12292] EXT4-fs (loop5): can't get journal size [ 141.970318][T12292] EXT4-fs (loop5): 1 truncate cleaned up [ 141.978737][T12292] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 142.216302][T12310] vhci_hcd: invalid port number 16 [ 142.219505][T12318] 8021q: adding VLAN 0 to HW filter on device bond2 [ 142.221466][T12310] vhci_hcd: default hub control req: 8005 v0072 i0010 l0 [ 142.486165][T12329] chnl_net:caif_netlink_parms(): no params data found [ 142.520565][T12329] bridge0: port 1(bridge_slave_0) entered blocking state [ 142.527655][T12329] bridge0: port 1(bridge_slave_0) entered disabled state [ 142.535528][T12329] bridge_slave_0: entered allmulticast mode [ 142.549990][T12329] bridge_slave_0: entered promiscuous mode [ 142.557157][T12329] bridge0: port 2(bridge_slave_1) entered blocking state [ 142.564259][T12329] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.571952][T12329] bridge_slave_1: entered allmulticast mode [ 142.578463][T12329] bridge_slave_1: entered promiscuous mode [ 142.596870][T12329] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 142.608428][T12329] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 142.629184][T12329] team0: Port device team_slave_0 added [ 142.637752][T12329] team0: Port device team_slave_1 added [ 142.660943][T12329] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 142.663909][T12355] loop1: detected capacity change from 0 to 512 [ 142.667979][T12329] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 142.700233][T12329] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 142.706385][T12355] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 142.724378][T12355] EXT4-fs (loop1): invalid journal inode [ 142.724579][T12329] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 142.731350][T12355] EXT4-fs (loop1): can't get journal size [ 142.737069][T12329] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 142.768753][T12329] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 142.776189][T12355] EXT4-fs (loop1): 1 truncate cleaned up [ 142.789821][T12355] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 142.818880][T12329] hsr_slave_0: entered promiscuous mode [ 142.830717][T12329] hsr_slave_1: entered promiscuous mode [ 142.838836][T12329] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 142.847671][T12329] Cannot create hsr debugfs directory [ 142.918992][T12329] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 142.936221][T12373] loop1: detected capacity change from 0 to 2048 [ 142.956128][T12329] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.006569][T12329] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.056759][T12329] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.119003][T12329] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 143.128066][T12329] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 143.137245][T12329] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 143.146233][T12329] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 143.195627][T12329] 8021q: adding VLAN 0 to HW filter on device bond0 [ 143.209894][T12329] 8021q: adding VLAN 0 to HW filter on device team0 [ 143.220185][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 143.227324][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 143.251577][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 143.258708][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 143.323683][T12329] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 143.400249][ T29] kauditd_printk_skb: 887 callbacks suppressed [ 143.400345][ T29] audit: type=1400 audit(1731680922.762:16686): avc: denied { create } for pid=12391 comm="syz.6.3504" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 143.431419][ T29] audit: type=1400 audit(1731680922.792:16687): avc: denied { create } for pid=12391 comm="syz.6.3504" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 143.455875][ T29] audit: type=1400 audit(1731680922.792:16688): avc: denied { bind } for pid=12391 comm="syz.6.3504" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 143.475710][T12329] veth0_vlan: entered promiscuous mode [ 143.475885][ T29] audit: type=1400 audit(1731680922.792:16689): avc: denied { read } for pid=12391 comm="syz.6.3504" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 143.486875][T12329] veth1_vlan: entered promiscuous mode [ 143.504115][ T29] audit: type=1400 audit(1731680922.792:16690): avc: denied { open } for pid=12391 comm="syz.6.3504" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 143.531061][T12329] veth0_macvtap: entered promiscuous mode [ 143.532945][ T29] audit: type=1400 audit(1731680922.792:16691): avc: denied { getopt } for pid=12391 comm="syz.6.3504" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 143.545395][T12329] veth1_macvtap: entered promiscuous mode [ 143.573843][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 143.584394][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.594851][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 143.605332][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.615305][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 143.625794][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.636044][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 143.646572][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.656400][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 143.666833][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.676750][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 143.687205][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.697035][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 143.707536][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.719446][T12329] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 143.727913][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 143.738447][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.748271][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 143.758767][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.768637][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 143.779196][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.789327][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 143.799862][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.809713][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 143.820239][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.830092][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 143.840530][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.843181][ T29] audit: type=1400 audit(1731680923.202:16692): avc: denied { name_bind } for pid=12407 comm="syz.4.3509" src=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 143.850350][T12329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 143.871858][ T29] audit: type=1400 audit(1731680923.202:16693): avc: denied { write } for pid=12407 comm="syz.4.3509" lport=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 143.882297][T12329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.883315][T12329] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 143.902842][ T29] audit: type=1400 audit(1731680923.202:16694): avc: denied { connect } for pid=12407 comm="syz.4.3509" lport=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 143.940608][ T29] audit: type=1400 audit(1731680923.202:16695): avc: denied { name_connect } for pid=12407 comm="syz.4.3509" dest=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 143.980454][T12329] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.982100][T12413] loop6: detected capacity change from 0 to 2048 [ 143.989286][T12329] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.004297][T12329] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.013030][T12329] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.042655][T12410] __nla_validate_parse: 6 callbacks suppressed [ 144.042669][T12410] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3511'. [ 144.068715][T12421] loop1: detected capacity change from 0 to 512 [ 144.078320][T12421] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 144.090335][T12421] EXT4-fs (loop1): invalid journal inode [ 144.096383][T12421] EXT4-fs (loop1): can't get journal size [ 144.110861][T12421] EXT4-fs (loop1): 1 truncate cleaned up [ 144.118181][T12421] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 144.216894][T12440] loop5: detected capacity change from 0 to 2048 [ 144.693410][T12449] bpf_get_probe_write_proto: 8 callbacks suppressed [ 144.693420][T12449] syz.1.3523[12449] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 144.700287][T12449] syz.1.3523[12449] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 144.711848][T12449] syz.1.3523[12449] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 144.807309][T12449] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12449 comm=syz.1.3523 [ 144.808180][T12455] loop6: detected capacity change from 0 to 512 [ 144.831912][T12449] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3523'. [ 144.847087][T12455] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 144.857492][T12455] EXT4-fs (loop6): invalid journal inode [ 144.863204][T12455] EXT4-fs (loop6): can't get journal size [ 144.877676][T12449] netlink: 96 bytes leftover after parsing attributes in process `syz.1.3523'. [ 144.888537][T12455] EXT4-fs (loop6): 1 truncate cleaned up [ 144.895666][T12455] EXT4-fs warning (device loop6): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 144.931445][T12460] ucma_write: process 282 (syz.4.3527) changed security contexts after opening file descriptor, this is not allowed. [ 144.980126][T12470] IPv6: addrconf: prefix option has invalid lifetime [ 145.022949][T12481] bridge0: port 2(bridge_slave_1) entered disabled state [ 145.062747][T12485] syz.5.3538[12485] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 145.062824][T12485] syz.5.3538[12485] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 145.078619][T12485] syz.5.3538[12485] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 145.161142][T12485] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12485 comm=syz.5.3538 [ 145.186175][T12485] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3538'. [ 145.200496][T12485] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3538'. [ 145.255520][T12492] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3540'. [ 145.266948][T12492] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3540'. [ 145.359955][T12508] loop5: detected capacity change from 0 to 128 [ 145.372686][T12508] ext4 filesystem being mounted at /12/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 145.446611][T12517] syz.5.3550[12517] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 145.446820][T12517] syz.5.3550[12517] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 145.458470][T12517] syz.5.3550[12517] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 145.552451][T12524] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3553'. [ 145.573783][T12517] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12517 comm=syz.5.3550 [ 145.573904][T12524] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3553'. [ 145.600121][T12517] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3550'. [ 145.638617][T12529] loop1: detected capacity change from 0 to 512 [ 145.647209][T12529] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 145.657522][T12529] EXT4-fs (loop1): invalid journal inode [ 145.663474][T12529] EXT4-fs (loop1): can't get journal size [ 145.673714][T12529] EXT4-fs (loop1): 1 truncate cleaned up [ 145.681013][T12529] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 145.728413][T12538] loop5: detected capacity change from 0 to 2048 [ 145.751420][T12545] FAULT_INJECTION: forcing a failure. [ 145.751420][T12545] name failslab, interval 1, probability 0, space 0, times 0 [ 145.764101][T12545] CPU: 1 UID: 0 PID: 12545 Comm: syz.1.3560 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 145.774864][T12545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 145.784907][T12545] Call Trace: [ 145.788186][T12545] [ 145.791100][T12545] dump_stack_lvl+0xf2/0x150 [ 145.795797][T12545] dump_stack+0x15/0x20 [ 145.799941][T12545] should_fail_ex+0x223/0x230 [ 145.804774][T12545] ? skb_clone+0x154/0x1f0 [ 145.809191][T12545] should_failslab+0x8f/0xb0 [ 145.813855][T12545] kmem_cache_alloc_noprof+0x4c/0x290 [ 145.819221][T12545] skb_clone+0x154/0x1f0 [ 145.823485][T12545] raw6_local_deliver+0x67b/0x790 [ 145.828517][T12545] ip6_protocol_deliver_rcu+0x25f/0x1060 [ 145.834354][T12545] ip6_input+0xbf/0x1c0 [ 145.838554][T12545] ? __pfx_ip6_input_finish+0x10/0x10 [ 145.843929][T12545] ip6_mc_input+0x349/0x480 [ 145.848487][T12545] ? __pfx_ip6_mc_input+0x10/0x10 [ 145.853562][T12545] ip6_rcv_finish+0x320/0x330 [ 145.858318][T12545] ipv6_rcv+0x74/0x150 [ 145.862387][T12545] ? __pfx_ip6_rcv_finish+0x10/0x10 [ 145.867585][T12545] __netif_receive_skb+0xa2/0x280 [ 145.872654][T12545] netif_receive_skb+0x4a/0x320 [ 145.877506][T12545] ? tun_rx_batched+0xba/0x410 [ 145.882278][T12545] tun_rx_batched+0xf0/0x410 [ 145.886880][T12545] tun_get_user+0x1eaf/0x24e0 [ 145.891581][T12545] ? ref_tracker_alloc+0x1f5/0x2f0 [ 145.896729][T12545] tun_chr_write_iter+0x188/0x240 [ 145.901786][T12545] vfs_write+0x77f/0x920 [ 145.906018][T12545] ? __pfx_kfree_link+0x10/0x10 [ 145.910866][T12545] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 145.916412][T12545] ksys_write+0xeb/0x1b0 [ 145.920695][T12545] __x64_sys_write+0x42/0x50 [ 145.925298][T12545] x64_sys_call+0x27dd/0x2d60 [ 145.929960][T12545] do_syscall_64+0xc9/0x1c0 [ 145.934479][T12545] ? clear_bhb_loop+0x55/0xb0 [ 145.939179][T12545] ? clear_bhb_loop+0x55/0xb0 [ 145.943909][T12545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.949846][T12545] RIP: 0033:0x7efff92dd1ff [ 145.954247][T12545] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 145.973844][T12545] RSP: 002b:00007efff7f57000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 145.982298][T12545] RAX: ffffffffffffffda RBX: 00007efff9495f80 RCX: 00007efff92dd1ff [ 145.990285][T12545] RDX: 000000000000006e RSI: 0000000020000340 RDI: 00000000000000c8 [ 145.998260][T12545] RBP: 00007efff7f57090 R08: 0000000000000000 R09: 0000000000000000 [ 146.006215][T12545] R10: 000000000000006e R11: 0000000000000293 R12: 0000000000000001 [ 146.014274][T12545] R13: 0000000000000000 R14: 00007efff9495f80 R15: 00007ffd509783c8 [ 146.022300][T12545] [ 146.032858][T12547] FAULT_INJECTION: forcing a failure. [ 146.032858][T12547] name failslab, interval 1, probability 0, space 0, times 0 [ 146.045605][T12547] CPU: 0 UID: 0 PID: 12547 Comm: syz.6.3561 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 146.056378][T12547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 146.066428][T12547] Call Trace: [ 146.069747][T12547] [ 146.072712][T12547] dump_stack_lvl+0xf2/0x150 [ 146.077296][T12547] dump_stack+0x15/0x20 [ 146.081510][T12547] should_fail_ex+0x223/0x230 [ 146.086175][T12547] ? bpf_test_init+0xc7/0x170 [ 146.090926][T12547] should_failslab+0x8f/0xb0 [ 146.095554][T12547] __kmalloc_noprof+0xa5/0x370 [ 146.100335][T12547] bpf_test_init+0xc7/0x170 [ 146.104912][T12547] bpf_prog_test_run_skb+0x151/0xba0 [ 146.110209][T12547] ? __fget_files+0x1d4/0x210 [ 146.114871][T12547] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 146.120667][T12547] bpf_prog_test_run+0x20f/0x3a0 [ 146.125593][T12547] __sys_bpf+0x400/0x7a0 [ 146.129821][T12547] __x64_sys_bpf+0x43/0x50 [ 146.134365][T12547] x64_sys_call+0x2625/0x2d60 [ 146.139109][T12547] do_syscall_64+0xc9/0x1c0 [ 146.143596][T12547] ? clear_bhb_loop+0x55/0xb0 [ 146.148270][T12547] ? clear_bhb_loop+0x55/0xb0 [ 146.153017][T12547] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.159048][T12547] RIP: 0033:0x7ff6a0d3e719 [ 146.163474][T12547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 146.183081][T12547] RSP: 002b:00007ff69f9b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 146.191490][T12547] RAX: ffffffffffffffda RBX: 00007ff6a0ef5f80 RCX: 00007ff6a0d3e719 [ 146.199463][T12547] RDX: 000000000000002c RSI: 0000000020000080 RDI: 000000000000000a [ 146.207518][T12547] RBP: 00007ff69f9b7090 R08: 0000000000000000 R09: 0000000000000000 [ 146.215497][T12547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 146.223504][T12547] R13: 0000000000000000 R14: 00007ff6a0ef5f80 R15: 00007ffdc8bed0b8 [ 146.231485][T12547] [ 146.260758][T12553] loop5: detected capacity change from 0 to 512 [ 146.276622][T12557] syz.4.3566[12557] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 146.371519][T12557] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12557 comm=syz.4.3566 [ 146.428861][T12566] loop6: detected capacity change from 0 to 512 [ 146.432869][T12564] loop0: detected capacity change from 0 to 1024 [ 146.448303][T12564] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 146.480808][T12564] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 146.491975][T12564] EXT4-fs (loop0): orphan cleanup on readonly fs [ 146.499612][T12564] EXT4-fs warning (device loop0): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 146.514336][T12564] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 146.521147][T12564] EXT4-fs error (device loop0): ext4_free_blocks:6589: comm syz.0.3569: Freeing blocks not in datazone - block = 0, count = 4096 [ 146.536363][T12564] EXT4-fs (loop0): Remounting filesystem read-only [ 146.562049][T12564] EXT4-fs (loop0): 1 orphan inode deleted [ 146.583135][T12564] SELinux: (dev loop0, type ext4) getxattr errno 5 [ 146.634332][T12582] loop6: detected capacity change from 0 to 2048 [ 146.751398][T12599] rdma_op ffff88811a8f2580 conn xmit_rdma 0000000000000000 [ 146.816234][T12604] FAULT_INJECTION: forcing a failure. [ 146.816234][T12604] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 146.829411][T12604] CPU: 0 UID: 0 PID: 12604 Comm: +}[@ Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 146.839729][T12604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 146.849816][T12604] Call Trace: [ 146.853119][T12604] [ 146.856088][T12604] dump_stack_lvl+0xf2/0x150 [ 146.860760][T12604] dump_stack+0x15/0x20 [ 146.864942][T12604] should_fail_ex+0x223/0x230 [ 146.869675][T12604] should_fail+0xb/0x10 [ 146.873879][T12604] should_fail_usercopy+0x1a/0x20 [ 146.878909][T12604] _copy_from_user+0x1e/0xb0 [ 146.883514][T12604] copy_from_sockptr+0x62/0xa0 [ 146.888423][T12604] packet_setsockopt+0x806/0xfd0 [ 146.893381][T12604] ? __pfx_packet_setsockopt+0x10/0x10 [ 146.898958][T12604] __sys_setsockopt+0x1cc/0x240 [ 146.903855][T12604] __x64_sys_setsockopt+0x66/0x80 [ 146.908927][T12604] x64_sys_call+0x278d/0x2d60 [ 146.913686][T12604] do_syscall_64+0xc9/0x1c0 [ 146.917511][T12606] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12606 comm=syz.0.3582 [ 146.918271][T12604] ? clear_bhb_loop+0x55/0xb0 [ 146.935370][T12604] ? clear_bhb_loop+0x55/0xb0 [ 146.940054][T12604] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.946040][T12604] RIP: 0033:0x7f87991de719 [ 146.950457][T12604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 146.970133][T12604] RSP: 002b:00007f8797e57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 146.978657][T12604] RAX: ffffffffffffffda RBX: 00007f8799395f80 RCX: 00007f87991de719 [ 146.986821][T12604] RDX: 0000000000000005 RSI: 0000000000000107 RDI: 0000000000000003 [ 146.994855][T12604] RBP: 00007f8797e57090 R08: 000000000000001c R09: 0000000000000000 [ 147.002901][T12604] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000001 [ 147.010885][T12604] R13: 0000000000000000 R14: 00007f8799395f80 R15: 00007fff7c144bd8 [ 147.018957][T12604] [ 147.108872][T12619] loop5: detected capacity change from 0 to 512 [ 147.125564][T12619] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 147.146507][T12619] ext4 filesystem being mounted at /21/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 147.218193][T12633] loop5: detected capacity change from 0 to 512 [ 147.225084][T12633] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 147.233548][T12633] EXT4-fs (loop5): invalid journal inode [ 147.239422][T12633] EXT4-fs (loop5): can't get journal size [ 147.246202][T12633] EXT4-fs (loop5): 1 truncate cleaned up [ 147.253133][T12633] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 147.351078][T12640] loop5: detected capacity change from 0 to 512 [ 147.357969][T12640] EXT4-fs: Ignoring removed oldalloc option [ 147.367049][T12640] EXT4-fs error (device loop5): ext4_xattr_inode_iget:436: comm syz.5.3596: Parent and EA inode have the same ino 15 [ 147.379833][T12640] EXT4-fs (loop5): Remounting filesystem read-only [ 147.386460][T12640] EXT4-fs warning (device loop5): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 147.396709][T12640] EXT4-fs (loop5): 1 orphan inode deleted [ 147.402797][T12640] SELinux: (dev loop5, type ext4) getxattr errno 5 [ 147.512010][T12646] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12646 comm=syz.5.3597 [ 147.546820][T12663] loop1: detected capacity change from 0 to 512 [ 147.553483][T12663] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 147.563452][T12663] EXT4-fs (loop1): invalid journal inode [ 147.570640][T12663] EXT4-fs (loop1): can't get journal size [ 147.577703][T12663] EXT4-fs (loop1): 1 truncate cleaned up [ 147.588344][T12663] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 147.644518][T12675] FAULT_INJECTION: forcing a failure. [ 147.644518][T12675] name failslab, interval 1, probability 0, space 0, times 0 [ 147.657242][T12675] CPU: 0 UID: 0 PID: 12675 Comm: syz.5.3608 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 147.668008][T12675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 147.669609][T12666] FAULT_INJECTION: forcing a failure. [ 147.669609][T12666] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 147.678076][T12675] Call Trace: [ 147.678092][T12675] [ 147.678100][T12675] dump_stack_lvl+0xf2/0x150 [ 147.701967][T12675] dump_stack+0x15/0x20 [ 147.706178][T12675] should_fail_ex+0x223/0x230 [ 147.710993][T12675] ? __alloc_skb+0x10b/0x310 [ 147.715586][T12675] should_failslab+0x8f/0xb0 [ 147.720168][T12675] kmem_cache_alloc_node_noprof+0x51/0x2b0 [ 147.726095][T12675] __alloc_skb+0x10b/0x310 [ 147.730510][T12675] audit_log_start+0x368/0x6b0 [ 147.735324][T12675] audit_seccomp+0x4b/0x130 [ 147.739814][T12675] __seccomp_filter+0x6fa/0x1180 [ 147.744790][T12675] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 147.750450][T12675] ? vfs_write+0x596/0x920 [ 147.754861][T12675] ? __schedule+0x6fa/0x930 [ 147.759383][T12675] __secure_computing+0x9f/0x1c0 [ 147.764313][T12675] syscall_trace_enter+0xd1/0x1f0 [ 147.769398][T12675] do_syscall_64+0xaa/0x1c0 [ 147.773915][T12675] ? clear_bhb_loop+0x55/0xb0 [ 147.778581][T12675] ? clear_bhb_loop+0x55/0xb0 [ 147.783269][T12675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.789170][T12675] RIP: 0033:0x7ff443e0e719 [ 147.793571][T12675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.813238][T12675] RSP: 002b:00007ff442a87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f0 [ 147.821649][T12675] RAX: ffffffffffffffda RBX: 00007ff443fc5f80 RCX: 00007ff443e0e719 [ 147.829692][T12675] RDX: 0000000000000000 RSI: 0000000000000040 RDI: 0000000020000300 [ 147.837710][T12675] RBP: 00007ff442a87090 R08: 0000000000000000 R09: 0000000000000000 [ 147.845720][T12675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 147.853687][T12675] R13: 0000000000000000 R14: 00007ff443fc5f80 R15: 00007ffd7b923fa8 [ 147.861655][T12675] [ 147.864674][T12666] CPU: 1 UID: 0 PID: 12666 Comm: syz.4.3606 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 147.875455][T12666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 147.885509][T12666] Call Trace: [ 147.888797][T12666] [ 147.891767][T12666] dump_stack_lvl+0xf2/0x150 [ 147.896375][T12666] dump_stack+0x15/0x20 [ 147.900635][T12666] should_fail_ex+0x223/0x230 [ 147.905392][T12666] should_fail+0xb/0x10 [ 147.909566][T12666] should_fail_usercopy+0x1a/0x20 [ 147.914649][T12666] copy_fpstate_to_sigframe+0x5db/0x780 [ 147.920207][T12666] ? copy_fpstate_to_sigframe+0xe7/0x780 [ 147.925840][T12666] ? fpu__alloc_mathframe+0x95/0xd0 [ 147.931125][T12666] get_sigframe+0x2f3/0x430 [ 147.935651][T12666] x64_setup_rt_frame+0xad/0x590 [ 147.940610][T12666] arch_do_signal_or_restart+0x287/0x4b0 [ 147.946249][T12666] syscall_exit_to_user_mode+0x59/0x130 [ 147.951833][T12666] do_syscall_64+0xd6/0x1c0 [ 147.956390][T12666] ? clear_bhb_loop+0x55/0xb0 [ 147.961058][T12666] ? clear_bhb_loop+0x55/0xb0 [ 147.965741][T12666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.971645][T12666] RIP: 0033:0x7f87991de719 [ 147.976047][T12666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.995653][T12666] RSP: 002b:00007f8797e57038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f7 [ 148.004137][T12666] RAX: 0000000000000000 RBX: 00007f8799395f80 RCX: 00007f87991de719 [ 148.012118][T12666] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 148.020156][T12666] RBP: 00007f8797e57090 R08: 0000000000000000 R09: 0000000000000000 [ 148.028197][T12666] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 148.036163][T12666] R13: 0000000000000000 R14: 00007f8799395f80 R15: 00007fff7c144bd8 [ 148.044219][T12666] [ 148.118002][T12698] loop0: detected capacity change from 0 to 512 [ 148.130484][T12700] loop6: detected capacity change from 0 to 2048 [ 148.137119][T12698] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 148.154818][T12698] EXT4-fs (loop0): invalid journal inode [ 148.162622][T12698] EXT4-fs (loop0): can't get journal size [ 148.171696][T12698] EXT4-fs (loop0): 1 truncate cleaned up [ 148.178980][T12698] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 148.247786][T12702] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12702 comm=syz.5.3619 [ 148.356954][T12727] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 148.365696][T12727] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 148.374390][T12727] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 148.383146][T12727] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 148.391905][T12727] vxlan0: entered promiscuous mode [ 148.581095][ T29] kauditd_printk_skb: 768 callbacks suppressed [ 148.581110][ T29] audit: type=1326 audit(1731680927.942:17460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.1.3631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 148.611218][ T29] audit: type=1326 audit(1731680927.942:17461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.1.3631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 148.634893][ T29] audit: type=1326 audit(1731680927.942:17462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.1.3631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 148.635566][T12737] loop1: detected capacity change from 0 to 128 [ 148.658487][ T29] audit: type=1326 audit(1731680927.942:17463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.1.3631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 148.658563][ T29] audit: type=1326 audit(1731680927.942:17464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.1.3631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 148.712321][ T29] audit: type=1326 audit(1731680927.952:17465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.1.3631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 148.736137][ T29] audit: type=1326 audit(1731680927.952:17466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.1.3631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 148.760111][ T29] audit: type=1326 audit(1731680927.952:17467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.1.3631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 148.784089][ T29] audit: type=1326 audit(1731680927.952:17468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.1.3631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 148.807847][ T29] audit: type=1326 audit(1731680927.952:17469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.1.3631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 148.896956][T12749] loop1: detected capacity change from 0 to 256 [ 148.909858][T12749] FAT-fs (loop1): Directory bread(block 64) failed [ 148.916822][T12749] FAT-fs (loop1): Directory bread(block 65) failed [ 148.923400][T12749] FAT-fs (loop1): Directory bread(block 66) failed [ 148.930211][T12749] FAT-fs (loop1): Directory bread(block 67) failed [ 148.936906][T12749] FAT-fs (loop1): Directory bread(block 68) failed [ 148.943442][T12749] FAT-fs (loop1): Directory bread(block 69) failed [ 148.950070][T12749] FAT-fs (loop1): Directory bread(block 70) failed [ 148.957240][T12749] FAT-fs (loop1): Directory bread(block 71) failed [ 148.963904][T12749] FAT-fs (loop1): Directory bread(block 72) failed [ 148.971985][T12749] FAT-fs (loop1): Directory bread(block 73) failed [ 148.991826][T12749] devtmpfs: Unknown parameter 'posixacl' [ 149.001696][T12749] syz.1.3635: attempt to access beyond end of device [ 149.001696][T12749] loop1: rw=0, sector=1768, nr_sectors = 4 limit=256 [ 149.015823][T12749] syz.1.3635: attempt to access beyond end of device [ 149.015823][T12749] loop1: rw=0, sector=1768, nr_sectors = 4 limit=256 [ 149.029172][T12749] Buffer I/O error on dev loop1, logical block 442, async page read [ 149.218143][T12758] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12758 comm=syz.1.3638 [ 149.242211][T12773] loop5: detected capacity change from 0 to 512 [ 149.255375][T12773] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=13 sclass=netlink_route_socket pid=12773 comm=syz.5.3644 [ 149.266229][T12777] loop6: detected capacity change from 0 to 2048 [ 149.275397][T12758] __nla_validate_parse: 17 callbacks suppressed [ 149.275409][T12758] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3638'. [ 149.367131][T12758] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3638'. [ 149.376266][T12758] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3638'. [ 149.475976][T12802] FAULT_INJECTION: forcing a failure. [ 149.475976][T12802] name failslab, interval 1, probability 0, space 0, times 0 [ 149.478884][T12800] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3654'. [ 149.488666][T12802] CPU: 0 UID: 0 PID: 12802 Comm: syz.1.3656 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 149.508348][T12802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 149.518445][T12802] Call Trace: [ 149.521757][T12802] [ 149.524724][T12802] dump_stack_lvl+0xf2/0x150 [ 149.529327][T12802] dump_stack+0x15/0x20 [ 149.533500][T12802] should_fail_ex+0x223/0x230 [ 149.538270][T12802] ? sidtab_sid2str_get+0xb8/0x140 [ 149.543424][T12802] should_failslab+0x8f/0xb0 [ 149.548036][T12802] __kmalloc_node_track_caller_noprof+0xa6/0x380 [ 149.554463][T12802] ? vsnprintf+0xdd8/0xe30 [ 149.558894][T12802] kmemdup_noprof+0x2a/0x60 [ 149.563403][T12802] sidtab_sid2str_get+0xb8/0x140 [ 149.568339][T12802] security_sid_to_context_core+0x1eb/0x2f0 [ 149.574239][T12802] security_sid_to_context+0x27/0x30 [ 149.579530][T12802] selinux_secid_to_secctx+0x22/0x30 [ 149.584832][T12802] security_secid_to_secctx+0x48/0x90 [ 149.590271][T12802] audit_log_task_context+0x8c/0x1b0 [ 149.595575][T12802] audit_log_task+0xfb/0x180 [ 149.600166][T12802] audit_seccomp+0x68/0x130 [ 149.604698][T12802] __seccomp_filter+0x6fa/0x1180 [ 149.609641][T12802] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 149.615324][T12802] ? vfs_write+0x596/0x920 [ 149.619806][T12802] ? __rcu_read_unlock+0x4e/0x70 [ 149.624897][T12802] ? __fget_files+0x1d4/0x210 [ 149.629578][T12802] __secure_computing+0x9f/0x1c0 [ 149.634567][T12802] syscall_trace_enter+0xd1/0x1f0 [ 149.639630][T12802] ? fpregs_assert_state_consistent+0x83/0xa0 [ 149.646339][T12802] do_syscall_64+0xaa/0x1c0 [ 149.650866][T12802] ? clear_bhb_loop+0x55/0xb0 [ 149.655537][T12802] ? clear_bhb_loop+0x55/0xb0 [ 149.660243][T12802] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.666152][T12802] RIP: 0033:0x7efff92de719 [ 149.670557][T12802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.690178][T12802] RSP: 002b:00007efff7f57038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ad [ 149.698583][T12802] RAX: ffffffffffffffda RBX: 00007efff9495f80 RCX: 00007efff92de719 [ 149.706545][T12802] RDX: 00000000000000de RSI: 0000000000000002 RDI: 0000000000000005 [ 149.714539][T12802] RBP: 00007efff7f57090 R08: 0000000000000000 R09: 0000000000000000 [ 149.722575][T12802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 149.730538][T12802] R13: 0000000000000000 R14: 00007efff9495f80 R15: 00007ffd509783c8 [ 149.738525][T12802] [ 149.868473][T12816] FAULT_INJECTION: forcing a failure. [ 149.868473][T12816] name failslab, interval 1, probability 0, space 0, times 0 [ 149.881140][T12816] CPU: 1 UID: 0 PID: 12816 Comm: syz.1.3660 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 149.891991][T12816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 149.902068][T12816] Call Trace: [ 149.905336][T12816] [ 149.908269][T12816] dump_stack_lvl+0xf2/0x150 [ 149.912864][T12816] dump_stack+0x15/0x20 [ 149.917082][T12816] should_fail_ex+0x223/0x230 [ 149.921820][T12816] ? __mpol_dup+0x43/0x1b0 [ 149.926355][T12816] should_failslab+0x8f/0xb0 [ 149.930952][T12816] kmem_cache_alloc_noprof+0x4c/0x290 [ 149.936338][T12816] __mpol_dup+0x43/0x1b0 [ 149.940633][T12816] mpol_set_shared_policy+0x83/0x870 [ 149.945979][T12816] ? kmem_cache_alloc_noprof+0x10c/0x290 [ 149.951669][T12816] shmem_set_policy+0x43/0x50 [ 149.956349][T12816] mbind_range+0x264/0x490 [ 149.960795][T12816] __se_sys_mbind+0x915/0x1160 [ 149.965579][T12816] __x64_sys_mbind+0x78/0x90 [ 149.970207][T12816] x64_sys_call+0x2b4d/0x2d60 [ 149.975062][T12816] do_syscall_64+0xc9/0x1c0 [ 149.979595][T12816] ? clear_bhb_loop+0x55/0xb0 [ 149.984271][T12816] ? clear_bhb_loop+0x55/0xb0 [ 149.988942][T12816] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.994850][T12816] RIP: 0033:0x7efff92de719 [ 149.999278][T12816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.018876][T12816] RSP: 002b:00007efff7f36038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 150.027310][T12816] RAX: ffffffffffffffda RBX: 00007efff9496058 RCX: 00007efff92de719 [ 150.035293][T12816] RDX: 0000000000000001 RSI: 0000000000600000 RDI: 0000000020000000 [ 150.043254][T12816] RBP: 00007efff7f36090 R08: 0000000000000000 R09: 0000000000000002 [ 150.051219][T12816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 150.059259][T12816] R13: 0000000000000001 R14: 00007efff9496058 R15: 00007ffd509783c8 [ 150.067226][T12816] [ 150.111745][T12823] loop6: detected capacity change from 0 to 512 [ 150.119140][T12823] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 150.133057][T12823] EXT4-fs (loop6): invalid journal inode [ 150.139560][T12823] EXT4-fs (loop6): can't get journal size [ 150.150243][T12823] EXT4-fs (loop6): 1 truncate cleaned up [ 150.157086][T12823] EXT4-fs warning (device loop6): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 150.169518][T12831] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3667'. [ 150.203180][T12829] loop1: detected capacity change from 0 to 2048 [ 150.222604][T12833] loop6: detected capacity change from 0 to 2048 [ 150.311130][T12848] bpf_get_probe_write_proto: 17 callbacks suppressed [ 150.311146][T12848] syz.1.3674[12848] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 150.319695][T12848] syz.1.3674[12848] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 150.331369][T12848] syz.1.3674[12848] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 150.334399][T12850] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3675'. [ 150.366954][T12850] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3675'. [ 150.441951][T12848] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12848 comm=syz.1.3674 [ 150.460082][T12859] loop5: detected capacity change from 0 to 512 [ 150.460581][T12848] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3674'. [ 150.467248][T12859] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 150.483897][T12859] EXT4-fs (loop5): invalid journal inode [ 150.489830][T12859] EXT4-fs (loop5): can't get journal size [ 150.496634][T12859] EXT4-fs (loop5): 1 truncate cleaned up [ 150.505135][T12848] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3674'. [ 150.508597][T12859] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 150.514144][T12848] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3674'. [ 150.561182][T12862] usb usb7: usbfs: process 12862 (syz.1.3680) did not claim interface 0 before use [ 150.831391][T12883] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 151.047778][T12885] loop6: detected capacity change from 0 to 2048 [ 151.101364][T12889] random: crng reseeded on system resumption [ 151.175021][T12895] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 151.184640][T12895] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 151.242659][T12894] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 151.251111][T12894] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 151.387590][T12902] syz.1.3695[12902] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 151.387738][T12902] syz.1.3695[12902] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 151.399897][T12902] syz.1.3695[12902] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 151.416398][T12904] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 151.436544][T12904] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 151.482012][T12902] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12902 comm=syz.1.3695 [ 151.546864][T12911] loop0: detected capacity change from 0 to 2048 [ 151.548493][T12909] loop1: detected capacity change from 0 to 512 [ 151.561778][T12909] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 151.571112][T12909] EXT4-fs (loop1): invalid journal inode [ 151.578635][T12909] EXT4-fs (loop1): can't get journal size [ 151.585322][T12909] EXT4-fs (loop1): 1 truncate cleaned up [ 151.592113][T12909] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 151.626806][T12917] loop1: detected capacity change from 0 to 2048 [ 151.714856][T12924] random: crng reseeded on system resumption [ 151.779139][T12926] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 152.306568][T12940] syz.6.3709[12940] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 152.306700][T12940] syz.6.3709[12940] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 152.318369][T12940] syz.6.3709[12940] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 152.416134][T12940] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12940 comm=syz.6.3709 [ 152.428419][T12945] loop0: detected capacity change from 0 to 2048 [ 152.731876][T12970] loop6: detected capacity change from 0 to 2048 [ 152.892026][T12997] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 152.955055][T12998] vhci_hcd: invalid port number 16 [ 152.960217][T12998] vhci_hcd: default hub control req: 8005 v0072 i0010 l0 [ 153.180386][T13015] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 153.190887][T13015] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 153.580205][T13034] loop6: detected capacity change from 0 to 2048 [ 153.617833][ T29] kauditd_printk_skb: 1127 callbacks suppressed [ 153.617845][ T29] audit: type=1326 audit(1731680932.982:18594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13037 comm="syz.6.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 153.647860][ T29] audit: type=1326 audit(1731680932.982:18595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13037 comm="syz.6.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 153.671548][ T29] audit: type=1326 audit(1731680932.982:18596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13037 comm="syz.6.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 153.695115][ T29] audit: type=1326 audit(1731680932.982:18597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13037 comm="syz.6.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 153.718722][ T29] audit: type=1326 audit(1731680932.982:18598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13037 comm="syz.6.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 153.739376][T13047] random: crng reseeded on system resumption [ 153.742419][ T29] audit: type=1326 audit(1731680932.982:18599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13037 comm="syz.6.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 153.771960][ T29] audit: type=1326 audit(1731680932.982:18600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13037 comm="syz.6.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 153.795642][ T29] audit: type=1326 audit(1731680932.982:18601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13037 comm="syz.6.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 153.819228][ T29] audit: type=1326 audit(1731680932.982:18602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13037 comm="syz.6.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 153.843016][ T29] audit: type=1326 audit(1731680932.982:18603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13037 comm="syz.6.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7ff6a0d3e719 code=0x7ffc0000 [ 153.920863][T13059] syz.5.3759[13059] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 154.002250][T13059] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13059 comm=syz.5.3759 [ 154.091317][T13057] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 154.102419][T13077] loop5: detected capacity change from 0 to 2048 [ 154.107548][T13057] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 154.130340][T13079] random: crng reseeded on system resumption [ 154.197009][T13075] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 154.205907][T13075] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 154.285923][T13096] __nla_validate_parse: 28 callbacks suppressed [ 154.285982][T13096] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3774'. [ 154.779907][T13107] random: crng reseeded on system resumption [ 154.833090][T13105] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13105 comm=syz.6.3778 [ 154.854405][T13105] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3778'. [ 154.879161][T13113] loop1: detected capacity change from 0 to 2048 [ 154.886861][T13105] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3778'. [ 154.901703][T13115] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 154.954106][T13123] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3785'. [ 154.966118][T13123] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3785'. [ 154.975190][T13125] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3786'. [ 155.007909][T13128] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3787'. [ 155.020834][T13128] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3787'. [ 155.194082][T13144] random: crng reseeded on system resumption [ 155.264689][T13142] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13142 comm=syz.6.3794 [ 155.271648][T13147] loop0: detected capacity change from 0 to 2048 [ 155.278523][T13142] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3794'. [ 155.307697][T13142] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3794'. [ 155.456801][T13171] random: crng reseeded on system resumption [ 155.468787][T13173] bpf_get_probe_write_proto: 8 callbacks suppressed [ 155.468802][T13173] syz.4.3806[13173] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 155.476763][T13173] syz.4.3806[13173] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 155.489581][T13173] syz.4.3806[13173] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 155.533845][T13176] loop6: detected capacity change from 0 to 2048 [ 155.574952][T13173] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13173 comm=syz.4.3806 [ 155.705822][T13194] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 155.750133][T13201] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 155.759372][T13201] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 155.967763][T13211] loop5: detected capacity change from 0 to 2048 [ 155.985635][T13211] EXT4-fs mount: 97 callbacks suppressed [ 155.985645][T13211] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 156.099389][T10638] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.149826][T13220] netlink: 'syz.0.3825': attribute type 39 has an invalid length. [ 156.336259][T13238] loop1: detected capacity change from 0 to 2048 [ 156.367136][T13238] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 156.397108][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.398961][T10716] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.465578][T13247] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 156.492319][T13249] random: crng reseeded on system resumption [ 156.546004][T13259] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 156.560933][T13259] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 156.589844][T13265] syz.6.3844[13265] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.589951][T13265] syz.6.3844[13265] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.602112][T13265] syz.6.3844[13265] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.689642][T13265] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13265 comm=syz.6.3844 [ 156.804185][T12329] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.892924][T13291] random: crng reseeded on system resumption [ 156.931840][T13297] syz.6.3857[13297] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.931893][T13297] syz.6.3857[13297] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.943769][T13297] syz.6.3857[13297] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 157.085173][T13297] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13297 comm=syz.6.3857 [ 157.156877][T13325] loop1: detected capacity change from 0 to 2048 [ 157.195875][T13325] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 157.292045][T13345] loop5: detected capacity change from 0 to 2048 [ 157.303711][T13342] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 157.357844][T13345] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 157.374198][T13357] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 157.383324][T13357] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 157.393799][T13359] loop6: detected capacity change from 0 to 164 [ 157.403627][T13359] isofs_fill_super: bread failed, dev=loop6, iso_blknum=41, block=82 [ 157.529476][T13363] loop6: detected capacity change from 0 to 2048 [ 157.556902][T13363] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 157.579246][T10716] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.601972][T13367] random: crng reseeded on system resumption [ 157.840322][T13392] random: crng reseeded on system resumption [ 157.913927][T13389] loop6: detected capacity change from 0 to 2048 [ 157.926082][T13395] netlink: 'syz.4.3896': attribute type 39 has an invalid length. [ 157.969153][T13389] Alternate GPT is invalid, using primary GPT. [ 157.975548][T13389] loop6: p2 p3 p7 [ 157.985419][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.009492][ T3016] Alternate GPT is invalid, using primary GPT. [ 158.015933][ T3016] loop6: p2 p3 p7 [ 158.023698][T13402] random: crng reseeded on system resumption [ 158.118665][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop6p7, 10) failed: No such file or directory [ 158.129181][T12329] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.130457][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory [ 158.150013][ T3578] udevd[3578]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory [ 158.178506][T13414] syz.0.3904[13414] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 158.280194][T13426] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 158.300498][T13414] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13414 comm=syz.0.3904 [ 158.308124][T13426] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 158.366004][T13430] loop6: detected capacity change from 0 to 2048 [ 158.377800][T13428] loop5: detected capacity change from 0 to 2048 [ 158.400924][T13430] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 158.417221][T13428] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 158.487370][T13436] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13436 comm=syz.0.3923 [ 158.491337][T13435] loop1: detected capacity change from 0 to 2048 [ 158.549933][T13435] Alternate GPT is invalid, using primary GPT. [ 158.556531][T13435] loop1: p2 p3 p7 [ 158.630351][T13458] loop0: detected capacity change from 0 to 512 [ 158.638709][T13458] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 158.647797][T13458] EXT4-fs (loop0): invalid journal inode [ 158.655959][T13458] EXT4-fs (loop0): can't get journal size [ 158.664232][T13458] EXT4-fs (loop0): 1 truncate cleaned up [ 158.670396][T13458] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 158.683701][T13458] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 158.702972][T10638] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.718886][ T29] kauditd_printk_skb: 1910 callbacks suppressed [ 158.718914][ T29] audit: type=1326 audit(1731680938.082:20514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13464 comm="syz.1.3924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 158.749280][ T29] audit: type=1326 audit(1731680938.082:20515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13464 comm="syz.1.3924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 158.772956][ T29] audit: type=1326 audit(1731680938.082:20516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13464 comm="syz.1.3924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 158.796616][ T29] audit: type=1326 audit(1731680938.082:20517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13464 comm="syz.1.3924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 158.820225][ T29] audit: type=1326 audit(1731680938.082:20518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13464 comm="syz.1.3924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 158.843929][ T29] audit: type=1326 audit(1731680938.082:20519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13464 comm="syz.1.3924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 158.867672][ T29] audit: type=1326 audit(1731680938.082:20520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13464 comm="syz.1.3924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 158.891414][ T29] audit: type=1326 audit(1731680938.082:20521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13464 comm="syz.1.3924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 158.915052][ T29] audit: type=1326 audit(1731680938.082:20522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13464 comm="syz.1.3924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 158.938725][ T29] audit: type=1326 audit(1731680938.082:20523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13464 comm="syz.1.3924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efff92de719 code=0x7ffc0000 [ 158.940285][T13471] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13471 comm=syz.1.3926 [ 159.143647][T13498] FAULT_INJECTION: forcing a failure. [ 159.143647][T13498] name failslab, interval 1, probability 0, space 0, times 0 [ 159.156365][T13498] CPU: 0 UID: 0 PID: 13498 Comm: syz.1.3936 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 159.167193][T13498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 159.177259][T13498] Call Trace: [ 159.180570][T13498] [ 159.183505][T13498] dump_stack_lvl+0xf2/0x150 [ 159.188188][T13498] dump_stack+0x15/0x20 [ 159.192352][T13498] should_fail_ex+0x223/0x230 [ 159.197079][T13498] ? audit_log_start+0x34c/0x6b0 [ 159.202021][T13498] should_failslab+0x8f/0xb0 [ 159.206649][T13498] kmem_cache_alloc_noprof+0x4c/0x290 [ 159.212029][T13498] audit_log_start+0x34c/0x6b0 [ 159.216791][T13498] ? kmem_cache_free+0xdc/0x2d0 [ 159.221677][T13498] audit_seccomp+0x4b/0x130 [ 159.226259][T13498] __seccomp_filter+0x6fa/0x1180 [ 159.231302][T13498] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 159.236991][T13498] ? vfs_write+0x596/0x920 [ 159.241479][T13498] ? __rcu_read_unlock+0x4e/0x70 [ 159.246438][T13498] ? __fget_files+0x1d4/0x210 [ 159.251106][T13498] __secure_computing+0x9f/0x1c0 [ 159.256098][T13498] syscall_trace_enter+0xd1/0x1f0 [ 159.261121][T13498] ? fpregs_assert_state_consistent+0x83/0xa0 [ 159.267417][T13498] do_syscall_64+0xaa/0x1c0 [ 159.271930][T13498] ? clear_bhb_loop+0x55/0xb0 [ 159.276654][T13498] ? clear_bhb_loop+0x55/0xb0 [ 159.281374][T13498] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.287299][T13498] RIP: 0033:0x7efff92dd15c [ 159.291703][T13498] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 159.311304][T13498] RSP: 002b:00007efff7f57030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 159.319742][T13498] RAX: ffffffffffffffda RBX: 00007efff9495f80 RCX: 00007efff92dd15c [ 159.327704][T13498] RDX: 000000000000000f RSI: 00007efff7f570a0 RDI: 0000000000000004 [ 159.335744][T13498] RBP: 00007efff7f57090 R08: 0000000000000000 R09: 0000000000000000 [ 159.343768][T13498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 159.351814][T13498] R13: 0000000000000000 R14: 00007efff9495f80 R15: 00007ffd509783c8 [ 159.359792][T13498] [ 159.409113][T12329] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.418689][T10716] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.423975][T13494] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13494 comm=syz.0.3944 [ 159.441959][T13494] __nla_validate_parse: 29 callbacks suppressed [ 159.442011][T13494] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3944'. [ 159.442715][T13504] loop1: detected capacity change from 0 to 2048 [ 159.480397][T13504] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 159.482240][T13509] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 159.532337][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.553338][T13509] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 159.624687][T13520] random: crng reseeded on system resumption [ 159.660940][T13529] FAULT_INJECTION: forcing a failure. [ 159.660940][T13529] name failslab, interval 1, probability 0, space 0, times 0 [ 159.673683][T13529] CPU: 0 UID: 0 PID: 13529 Comm: syz.4.3949 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 159.684572][T13529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 159.694646][T13529] Call Trace: [ 159.697947][T13529] [ 159.700878][T13529] dump_stack_lvl+0xf2/0x150 [ 159.705525][T13529] dump_stack+0x15/0x20 [ 159.709689][T13529] should_fail_ex+0x223/0x230 [ 159.714384][T13529] ? alloc_empty_file+0xd0/0x2f0 [ 159.719329][T13529] should_failslab+0x8f/0xb0 [ 159.724035][T13529] kmem_cache_alloc_noprof+0x4c/0x290 [ 159.729560][T13529] alloc_empty_file+0xd0/0x2f0 [ 159.734328][T13529] alloc_file_clone+0x3a/0xa0 [ 159.739019][T13529] create_pipe_files+0x289/0x3b0 [ 159.744077][T13529] __do_pipe_flags+0x46/0x190 [ 159.748757][T13529] do_pipe2+0x64/0x130 [ 159.752929][T13529] ? __bpf_trace_sys_enter+0x9/0x10 [ 159.758139][T13529] __x64_sys_pipe+0x21/0x30 [ 159.762737][T13529] x64_sys_call+0xd0/0x2d60 [ 159.767271][T13529] do_syscall_64+0xc9/0x1c0 [ 159.771786][T13529] ? clear_bhb_loop+0x55/0xb0 [ 159.776462][T13529] ? clear_bhb_loop+0x55/0xb0 [ 159.781192][T13529] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.787225][T13529] RIP: 0033:0x7f87991de719 [ 159.791632][T13529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 159.811256][T13529] RSP: 002b:00007f8797e57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 159.819672][T13529] RAX: ffffffffffffffda RBX: 00007f8799395f80 RCX: 00007f87991de719 [ 159.827663][T13529] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 159.835665][T13529] RBP: 00007f8797e57090 R08: 0000000000000000 R09: 0000000000000000 [ 159.843626][T13529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 159.851596][T13529] R13: 0000000000000000 R14: 00007f8799395f80 R15: 00007fff7c144bd8 [ 159.859596][T13529] [ 159.920466][T13538] loop6: detected capacity change from 0 to 2048 [ 159.948392][T13540] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 159.966812][T13538] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 160.002615][T13546] loop1: detected capacity change from 0 to 2048 [ 160.016972][T13546] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 160.038835][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 160.340871][T13567] loop0: detected capacity change from 0 to 128 [ 160.356046][T13567] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 160.368664][T13567] ext4 filesystem being mounted at /224/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 160.380085][T13567] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 160.453161][T13574] loop0: detected capacity change from 0 to 2048 [ 160.467160][T13574] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 160.489480][T10638] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 160.569772][T13585] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 160.579008][T13585] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 160.750631][T10716] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 160.784100][T13589] bpf_get_probe_write_proto: 11 callbacks suppressed [ 160.784113][T13589] syz.6.3971[13589] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 160.791080][T13589] syz.6.3971[13589] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 160.802972][T13589] syz.6.3971[13589] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 160.884853][T13589] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13589 comm=syz.6.3971 [ 160.909023][T13589] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3971'. [ 160.987620][T13603] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 161.120909][T13621] syz.4.3986[13621] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 161.121121][T13621] syz.4.3986[13621] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 161.132866][T13621] syz.4.3986[13621] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 161.219237][T13621] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13621 comm=syz.4.3986 [ 161.245475][T13621] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3986'. [ 161.258475][T13641] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 161.267223][T13641] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 161.340991][T13653] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 161.349444][T13653] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 161.528736][T13670] syz.1.4008[13670] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 161.528800][T13670] syz.1.4008[13670] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 161.540375][T13670] syz.1.4008[13670] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 161.621941][T13670] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13670 comm=syz.1.4008 [ 161.648041][T13670] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4008'. [ 161.885248][T13692] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 161.900837][T13694] loop0: detected capacity change from 0 to 512 [ 161.907712][T13694] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 161.916990][T13694] EXT4-fs (loop0): invalid journal inode [ 161.922704][T13694] EXT4-fs (loop0): can't get journal size [ 161.929120][T13694] EXT4-fs (loop0): 1 truncate cleaned up [ 161.935152][T13694] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 161.948218][T13694] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 161.966161][T10638] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.982908][T13697] syz.0.4020[13697] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 162.052504][T13697] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13697 comm=syz.0.4020 [ 162.076674][T13697] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4020'. [ 162.207590][T13710] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 162.218178][T13710] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 162.221708][T13712] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4027'. [ 162.345355][T13728] loop1: detected capacity change from 0 to 2048 [ 162.348376][T13730] random: crng reseeded on system resumption [ 162.410463][T13728] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.444074][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.475394][T13747] loop5: detected capacity change from 0 to 512 [ 162.483544][T13747] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 162.492413][T13747] EXT4-fs (loop5): invalid journal inode [ 162.500001][T13747] EXT4-fs (loop5): can't get journal size [ 162.507087][T13747] EXT4-fs (loop5): 1 truncate cleaned up [ 162.513387][T13747] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.528135][T13747] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 1935762796 (only 1 groups) [ 162.548460][T12329] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.751373][T13765] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 162.765144][T13765] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 162.783460][T13769] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 162.795947][T13767] xt_hashlimit: max too large, truncated to 1048576 [ 162.821022][T13771] random: crng reseeded on system resumption [ 163.023672][T13773] loop5: detected capacity change from 0 to 2048 [ 163.047388][T13773] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 163.068939][T13782] loop1: detected capacity change from 0 to 512 [ 163.076245][T12329] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.082922][T13782] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 163.094656][T13782] EXT4-fs (loop1): invalid journal inode [ 163.100590][T13782] EXT4-fs (loop1): can't get journal size [ 163.107692][T13782] EXT4-fs (loop1): 1 truncate cleaned up [ 163.114100][T13782] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 163.129488][T13782] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 1935762796 (only 1 groups) [ 163.154789][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.184279][T13794] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 163.195495][T13794] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 163.234989][T13791] loop1: detected capacity change from 0 to 2048 [ 163.290909][T13791] Alternate GPT is invalid, using primary GPT. [ 163.297367][T13791] loop1: p2 p3 p7 [ 163.337304][T13800] random: crng reseeded on system resumption [ 163.411287][T13806] loop1: detected capacity change from 0 to 2048 [ 163.436047][T13806] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 163.466913][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.490874][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 163.505818][T13817] loop1: detected capacity change from 0 to 512 [ 163.512710][T13817] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 163.523179][T13817] EXT4-fs (loop1): invalid journal inode [ 163.528990][T13817] EXT4-fs (loop1): can't get journal size [ 163.539343][T13817] EXT4-fs (loop1): 1 truncate cleaned up [ 163.547164][T13817] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 163.560189][T13817] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 1935762796 (only 1 groups) [ 163.580188][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.596182][T13826] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 163.615836][T13828] loop1: detected capacity change from 0 to 2048 [ 163.628303][T13828] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 163.815861][T13835] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13835 comm=syz.5.4077 [ 163.828730][T13835] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4077'. [ 163.848245][T13835] netlink: 96 bytes leftover after parsing attributes in process `syz.5.4077'. [ 163.891726][ T29] kauditd_printk_skb: 739 callbacks suppressed [ 163.891740][ T29] audit: type=1326 audit(1731680943.252:21261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13840 comm="syz.5.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 163.894955][T13841] random: crng reseeded on system resumption [ 163.899330][ T29] audit: type=1326 audit(1731680943.252:21262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13840 comm="syz.5.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 163.951299][ T29] audit: type=1326 audit(1731680943.252:21263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13840 comm="syz.5.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 163.974835][ T29] audit: type=1326 audit(1731680943.252:21264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13840 comm="syz.5.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 163.998621][ T29] audit: type=1326 audit(1731680943.252:21265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13840 comm="syz.5.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 164.022358][ T29] audit: type=1326 audit(1731680943.252:21266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13840 comm="syz.5.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 164.046313][ T29] audit: type=1326 audit(1731680943.252:21267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13840 comm="syz.5.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 164.069932][ T29] audit: type=1326 audit(1731680943.252:21268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13840 comm="syz.5.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 164.093619][ T29] audit: type=1326 audit(1731680943.252:21269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13840 comm="syz.5.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 164.117213][ T29] audit: type=1326 audit(1731680943.252:21270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13840 comm="syz.5.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 164.158151][T13851] loop6: detected capacity change from 0 to 2048 [ 164.187516][T13851] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.192984][T13858] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 164.212593][T13858] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 164.221567][T10716] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.246704][T13861] netlink: 40 bytes leftover after parsing attributes in process `syz.6.4087'. [ 164.359232][T13865] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13865 comm=syz.6.4089 [ 164.372221][T13865] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4089'. [ 164.432594][T13872] random: crng reseeded on system resumption [ 164.467451][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.560827][T13885] loop6: detected capacity change from 0 to 2048 [ 164.561934][T13883] loop1: detected capacity change from 0 to 2048 [ 164.577582][T13885] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.601987][T10716] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.612261][T13883] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.825267][T13899] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13899 comm=syz.0.4102 [ 164.838051][T13899] __nla_validate_parse: 1 callbacks suppressed [ 164.838064][T13899] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4102'. [ 164.868918][T13899] netlink: 96 bytes leftover after parsing attributes in process `syz.0.4102'. [ 165.018910][T13920] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 165.029123][T13920] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 165.087545][T13932] netlink: 40 bytes leftover after parsing attributes in process `syz.4.4117'. [ 165.148620][T13941] random: crng reseeded on system resumption [ 165.151197][T13930] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13930 comm=syz.0.4116 [ 165.168568][T13930] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4116'. [ 165.191459][T13930] netlink: 96 bytes leftover after parsing attributes in process `syz.0.4116'. [ 165.273063][T13951] loop0: detected capacity change from 0 to 512 [ 165.279786][T13951] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 165.288562][T13951] EXT4-fs (loop0): invalid journal inode [ 165.294287][T13951] EXT4-fs (loop0): can't get journal size [ 165.302868][T13951] EXT4-fs (loop0): 1 truncate cleaned up [ 165.308982][T13951] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.330120][T10638] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.388532][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.430841][T13968] random: crng reseeded on system resumption [ 165.518245][T13979] loop1: detected capacity change from 0 to 512 [ 165.532491][T13979] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 165.541468][T13969] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13969 comm=syz.0.4133 [ 165.544517][T13979] EXT4-fs (loop1): invalid journal inode [ 165.560361][T13979] EXT4-fs (loop1): can't get journal size [ 165.572356][T13969] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4133'. [ 165.589892][T13979] EXT4-fs (loop1): 1 truncate cleaned up [ 165.596843][T13979] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.630330][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.640870][T13969] netlink: 96 bytes leftover after parsing attributes in process `syz.0.4133'. [ 165.759074][T14001] loop1: detected capacity change from 0 to 2048 [ 165.771304][T14009] random: crng reseeded on system resumption [ 165.822621][T14001] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.889390][T14032] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4158'. [ 165.972262][T14047] random: crng reseeded on system resumption [ 165.992530][T14039] loop0: detected capacity change from 0 to 2048 [ 166.041432][T14039] Alternate GPT is invalid, using primary GPT. [ 166.047842][T14039] loop0: p2 p3 p7 [ 166.157506][T14061] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4171'. [ 166.230812][T14072] random: crng reseeded on system resumption [ 166.389457][T14079] loop0: detected capacity change from 0 to 2048 [ 166.429659][T14090] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4184'. [ 166.466153][T14079] Alternate GPT is invalid, using primary GPT. [ 166.472507][T14079] loop0: p2 p3 p7 [ 166.490219][T14096] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 166.536315][T14098] random: crng reseeded on system resumption [ 166.546883][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.740215][T14128] loop0: detected capacity change from 0 to 512 [ 166.749427][T14128] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 166.759098][T14128] EXT4-fs (loop0): invalid journal inode [ 166.764968][T14128] EXT4-fs (loop0): can't get journal size [ 166.771805][T14128] EXT4-fs (loop0): 1 truncate cleaned up [ 166.777926][T14128] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 166.793430][T14128] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 166.815200][T10638] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.821488][T14132] random: crng reseeded on system resumption [ 166.928689][T14146] loop1: detected capacity change from 0 to 2048 [ 166.967421][T14146] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.136901][T14187] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 167.590658][T14212] bpf_get_probe_write_proto: 17 callbacks suppressed [ 167.590675][T14212] syz.5.4236[14212] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.599106][T14210] loop0: detected capacity change from 0 to 2048 [ 167.599984][T14212] syz.5.4236[14212] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.620997][T14212] syz.5.4236[14212] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.645688][T14210] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.707466][T10638] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.728404][T14212] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14212 comm=syz.5.4236 [ 167.764108][T10215] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.842914][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 167.855421][T14247] syz.5.4261[14247] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.855491][T14247] syz.5.4261[14247] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.867794][T14247] syz.5.4261[14247] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.876878][T14249] loop0: detected capacity change from 0 to 2048 [ 167.916842][T14249] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.941977][T10638] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.008883][T14263] 8021q: adding VLAN 0 to HW filter on device bond2 [ 168.016943][T14247] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14247 comm=syz.5.4261 [ 168.061837][T14263] loop0: detected capacity change from 0 to 8192 [ 168.079981][T14263] vfat: Unknown parameter 'ÿÿÿÿ18446744073709551615' [ 168.099434][T14270] loop5: detected capacity change from 0 to 512 [ 168.112753][T14270] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 168.128347][T14270] EXT4-fs (loop5): invalid journal inode [ 168.134172][T14270] EXT4-fs (loop5): can't get journal size [ 168.141355][T14270] EXT4-fs (loop5): 1 truncate cleaned up [ 168.148236][T14270] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 168.188367][T14277] loop5: detected capacity change from 0 to 2048 [ 168.319314][T14295] loop6: detected capacity change from 0 to 2048 [ 168.696406][T14305] loop1: detected capacity change from 0 to 512 [ 168.703318][T14305] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 168.712093][T14305] EXT4-fs (loop1): invalid journal inode [ 168.718003][T14305] EXT4-fs (loop1): can't get journal size [ 168.725000][T14305] EXT4-fs (loop1): 1 truncate cleaned up [ 168.732032][T14305] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 168.863148][T14314] random: crng reseeded on system resumption [ 168.909964][ T29] kauditd_printk_skb: 1330 callbacks suppressed [ 168.909978][ T29] audit: type=1326 audit(1731680948.272:22601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.4.4278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 168.941910][ T29] audit: type=1326 audit(1731680948.272:22602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.4.4278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 168.965612][ T29] audit: type=1326 audit(1731680948.272:22603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.4.4278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 168.989319][ T29] audit: type=1326 audit(1731680948.272:22604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.4.4278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 168.989344][ T29] audit: type=1326 audit(1731680948.272:22605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.4.4278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 169.036567][ T29] audit: type=1326 audit(1731680948.272:22606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.4.4278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f87991dd0b0 code=0x7ffc0000 [ 169.036593][ T29] audit: type=1326 audit(1731680948.272:22607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.4.4278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 169.036633][ T29] audit: type=1326 audit(1731680948.272:22608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.4.4278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 169.036665][ T29] audit: type=1326 audit(1731680948.272:22609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.4.4278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 169.036768][ T29] audit: type=1326 audit(1731680948.272:22610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.4.4278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 169.250790][T14336] loop5: detected capacity change from 0 to 2048 [ 169.296212][T14348] loop0: detected capacity change from 0 to 2048 [ 169.353514][T14358] loop0: detected capacity change from 0 to 2048 [ 169.405297][T14363] syz.1.4297[14363] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 169.405385][T14363] syz.1.4297[14363] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 169.420945][T14363] syz.1.4297[14363] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 169.526190][T14363] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14363 comm=syz.1.4297 [ 169.562391][T14386] loop6: detected capacity change from 0 to 2048 [ 169.742907][T14412] loop6: detected capacity change from 0 to 2048 [ 169.884129][T14430] loop6: detected capacity change from 0 to 512 [ 169.891204][T14430] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 169.901042][T14430] EXT4-fs (loop6): invalid journal inode [ 169.906773][T14430] EXT4-fs (loop6): can't get journal size [ 169.913273][T14430] EXT4-fs (loop6): 1 truncate cleaned up [ 169.920520][T14430] EXT4-fs warning (device loop6): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 169.998962][T14439] loop6: detected capacity change from 0 to 2048 [ 170.054756][T14451] __nla_validate_parse: 12 callbacks suppressed [ 170.054768][T14451] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4334'. [ 170.132375][T14462] random: crng reseeded on system resumption [ 170.296393][T14491] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4351'. [ 170.298701][T14488] loop0: detected capacity change from 0 to 512 [ 170.312774][T14488] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 170.321615][T14488] EXT4-fs (loop0): invalid journal inode [ 170.327363][T14488] EXT4-fs (loop0): can't get journal size [ 170.343974][T14488] EXT4-fs (loop0): 1 truncate cleaned up [ 170.350935][T14488] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 170.388473][T14500] loop0: detected capacity change from 0 to 2048 [ 170.442824][T14510] random: crng reseeded on system resumption [ 170.553567][T14520] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4362'. [ 170.678964][T14527] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 170.687499][T14527] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 170.815665][T14530] loop1: detected capacity change from 0 to 512 [ 170.822554][T14530] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 170.831077][T14530] EXT4-fs (loop1): invalid journal inode [ 170.836879][T14530] EXT4-fs (loop1): can't get journal size [ 170.843349][T14530] EXT4-fs (loop1): 1 truncate cleaned up [ 170.850447][T14530] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 170.895476][T14535] loop1: detected capacity change from 0 to 2048 [ 171.005668][T14543] loop5: detected capacity change from 0 to 2048 [ 171.099825][T14559] loop5: detected capacity change from 0 to 512 [ 171.114507][T14559] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 171.133330][T14559] EXT4-fs (loop5): invalid journal inode [ 171.139189][T14559] EXT4-fs (loop5): can't get journal size [ 171.147048][T14559] EXT4-fs (loop5): 1 truncate cleaned up [ 171.154156][T14559] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 4294967295 (only 1 groups) [ 171.302387][T14585] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 171.402796][T14594] loop6: detected capacity change from 0 to 2048 [ 171.460447][T14594] Alternate GPT is invalid, using primary GPT. [ 171.466772][T14594] loop6: p2 p3 p7 [ 171.602023][T14611] loop6: detected capacity change from 0 to 2048 [ 171.763874][T14623] loop6: detected capacity change from 0 to 2048 [ 171.792679][T14623] Alternate GPT is invalid, using primary GPT. [ 171.799367][T14623] loop6: p2 p3 p7 [ 171.876924][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop6p7, 10) failed: No such file or directory [ 171.887607][ T3578] udevd[3578]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory [ 171.899538][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory [ 171.971805][T14654] loop6: detected capacity change from 0 to 2048 [ 171.985084][T14659] random: crng reseeded on system resumption [ 172.035128][T14666] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 172.170663][T14687] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4431'. [ 172.204303][T14691] random: crng reseeded on system resumption [ 172.320945][T14711] loop0: detected capacity change from 0 to 2048 [ 172.579066][T14717] loop5: detected capacity change from 0 to 2048 [ 172.771556][T14722] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4444'. [ 172.840628][T14732] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4449'. [ 172.850720][T14732] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4449'. [ 172.875785][T14734] random: crng reseeded on system resumption [ 173.081686][T14757] random: crng reseeded on system resumption [ 173.127750][T14759] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4462'. [ 173.140065][T14759] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4462'. [ 173.245590][T14781] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 173.258696][T14781] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 173.270936][T14783] random: crng reseeded on system resumption [ 173.505847][T14821] loop1: detected capacity change from 0 to 2048 [ 173.610322][T14837] loop6: detected capacity change from 0 to 2048 [ 173.732668][T14870] loop1: detected capacity change from 0 to 2048 [ 173.936317][T14910] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 173.952687][T14910] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 174.043034][ T29] kauditd_printk_skb: 949 callbacks suppressed [ 174.043048][ T29] audit: type=1326 audit(1731680953.402:23560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14930 comm="syz.4.4538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 174.073053][ T29] audit: type=1326 audit(1731680953.402:23561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14930 comm="syz.4.4538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 174.109294][ T29] audit: type=1326 audit(1731680953.402:23562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14930 comm="syz.4.4538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 174.132934][ T29] audit: type=1326 audit(1731680953.402:23563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14930 comm="syz.4.4538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87991de719 code=0x7ffc0000 [ 174.156680][ T29] audit: type=1326 audit(1731680953.422:23564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14933 comm="syz.5.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 174.173823][T14939] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4543'. [ 174.180239][ T29] audit: type=1326 audit(1731680953.422:23565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14933 comm="syz.5.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 174.212838][ T29] audit: type=1326 audit(1731680953.422:23566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14933 comm="syz.5.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 174.214270][T14941] loop0: detected capacity change from 0 to 2048 [ 174.236709][ T29] audit: type=1326 audit(1731680953.422:23567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14933 comm="syz.5.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 174.266723][ T29] audit: type=1326 audit(1731680953.422:23568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14933 comm="syz.5.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 174.290297][ T29] audit: type=1326 audit(1731680953.422:23569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14933 comm="syz.5.4539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff443e0e719 code=0x7ffc0000 [ 174.552033][T14990] loop6: detected capacity change from 0 to 2048 [ 174.582098][T14993] loop1: detected capacity change from 0 to 2048 [ 174.624511][T14993] Alternate GPT is invalid, using primary GPT. [ 174.630832][T14993] loop1: p2 p3 p7 [ 174.654732][T15007] loop0: detected capacity change from 0 to 2048 [ 174.686403][T15012] random: crng reseeded on system resumption [ 174.719610][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory [ 174.734949][ T3578] udevd[3578]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory [ 174.742436][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 174.892917][T15045] random: crng reseeded on system resumption [ 175.121948][T15080] random: crng reseeded on system resumption [ 175.171006][T15072] loop1: detected capacity change from 0 to 2048 [ 175.221218][T15072] Alternate GPT is invalid, using primary GPT. [ 175.227693][T15072] loop1: p2 p3 p7 [ 175.341673][T15101] random: crng reseeded on system resumption [ 175.728890][T15169] loop5: detected capacity change from 0 to 2048 [ 175.825052][ C0] ================================================================== [ 175.833145][ C0] BUG: KCSAN: data-race in virtqueue_disable_cb / virtqueue_disable_cb [ 175.841381][ C0] [ 175.843682][ C0] read to 0xffff88810125ee78 of 2 bytes by interrupt on cpu 1: [ 175.851201][ C0] virtqueue_disable_cb+0x63/0x180 [ 175.856302][ C0] skb_xmit_done+0x5f/0x140 [ 175.860800][ C0] vring_interrupt+0x161/0x190 [ 175.865545][ C0] __handle_irq_event_percpu+0x95/0x490 [ 175.871094][ C0] handle_irq_event+0x64/0xf0 [ 175.875761][ C0] handle_edge_irq+0x16d/0x5b0 [ 175.880521][ C0] __common_interrupt+0x58/0xe0 [ 175.885367][ C0] common_interrupt+0x7c/0x90 [ 175.890044][ C0] asm_common_interrupt+0x26/0x40 [ 175.895054][ C0] kcsan_setup_watchpoint+0x404/0x410 [ 175.900440][ C0] selinux_file_permission+0x4b/0x360 [ 175.905799][ C0] security_file_permission+0x3d/0x80 [ 175.911162][ C0] vfs_write+0x13d/0x920 [ 175.915484][ C0] ksys_write+0xeb/0x1b0 [ 175.919748][ C0] __x64_sys_write+0x42/0x50 [ 175.924327][ C0] x64_sys_call+0x27dd/0x2d60 [ 175.928989][ C0] do_syscall_64+0xc9/0x1c0 [ 175.933476][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.939355][ C0] [ 175.941661][ C0] write to 0xffff88810125ee78 of 2 bytes by interrupt on cpu 0: [ 175.949285][ C0] virtqueue_disable_cb+0x85/0x180 [ 175.954380][ C0] start_xmit+0x14b/0x1280 [ 175.958778][ C0] dev_hard_start_xmit+0x119/0x3f0 [ 175.963890][ C0] sch_direct_xmit+0x1a9/0x580 [ 175.968650][ C0] __dev_queue_xmit+0xf1a/0x2040 [ 175.973589][ C0] ip_finish_output2+0x73d/0x8b0 [ 175.978512][ C0] ip_finish_output+0x11a/0x2a0 [ 175.983349][ C0] ip_output+0xab/0x170 [ 175.987490][ C0] __ip_queue_xmit+0xbcc/0xbf0 [ 175.992236][ C0] ip_queue_xmit+0x38/0x50 [ 175.996644][ C0] __tcp_transmit_skb+0x15b0/0x1970 [ 176.001838][ C0] tcp_write_xmit+0x1410/0x3220 [ 176.006681][ C0] __tcp_push_pending_frames+0x6a/0x1a0 [ 176.012306][ C0] tcp_rcv_established+0x953/0xef0 [ 176.017401][ C0] tcp_v4_do_rcv+0x662/0x740 [ 176.022011][ C0] tcp_v4_rcv+0x1b25/0x1ee0 [ 176.026502][ C0] ip_protocol_deliver_rcu+0x370/0x720 [ 176.031957][ C0] ip_local_deliver_finish+0x17d/0x210 [ 176.037588][ C0] ip_local_deliver+0xec/0x1d0 [ 176.042368][ C0] ip_sublist_rcv+0x55a/0x640 [ 176.047032][ C0] ip_list_rcv+0x25e/0x290 [ 176.051537][ C0] __netif_receive_skb_list_core+0x4f0/0x520 [ 176.057512][ C0] netif_receive_skb_list_internal+0x4e4/0x660 [ 176.063657][ C0] napi_complete_done+0x1cb/0x450 [ 176.068716][ C0] virtnet_poll+0x1b7c/0x2110 [ 176.073404][ C0] __napi_poll+0x63/0x3c0 [ 176.077726][ C0] net_rx_action+0x3a1/0x7f0 [ 176.082301][ C0] handle_softirqs+0xbf/0x280 [ 176.086964][ C0] irq_exit_rcu+0x3e/0x90 [ 176.091277][ C0] common_interrupt+0x81/0x90 [ 176.095937][ C0] asm_common_interrupt+0x26/0x40 [ 176.100951][ C0] __sanitizer_cov_trace_const_cmp4+0x18/0x90 [ 176.107002][ C0] try_to_unlazy+0x42/0x3b0 [ 176.111485][ C0] complete_walk+0xbd/0x1f0 [ 176.115986][ C0] path_openat+0x16bb/0x1fa0 [ 176.120581][ C0] do_filp_open+0xf7/0x200 [ 176.124996][ C0] do_sys_openat2+0xab/0x120 [ 176.129597][ C0] __x64_sys_openat+0xf3/0x120 [ 176.134341][ C0] x64_sys_call+0x1025/0x2d60 [ 176.139022][ C0] do_syscall_64+0xc9/0x1c0 [ 176.143511][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.149389][ C0] [ 176.151697][ C0] value changed: 0x0000 -> 0x0001 [ 176.156701][ C0] [ 176.159001][ C0] Reported by Kernel Concurrency Sanitizer on: [ 176.165128][ C0] CPU: 0 UID: 0 PID: 10716 Comm: syz-executor Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 176.176053][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 176.186089][ C0] ==================================================================