last executing test programs:

1.821878862s ago: executing program 3 (id=2336):
syz_open_dev$evdev(&(0x7f0000000240), 0x20000000089c8, 0x101000)
prctl$PR_SET_NAME(0xf, &(0x7f0000000680)='+}[@\x00[$oB\xfa=\xee\xc4F\xba\xed\x97')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x1, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x10, 0x0, @fd_index=0x7, 0x8, 0x0, 0x0, 0x9, 0x0, {0x1}})
io_uring_enter(r1, 0x75fa, 0xe475, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
r6 = dup(r5)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r6, @ANYBLOB=',msize=0x0000000000001000'])

1.820125512s ago: executing program 4 (id=2338):
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000540)={&(0x7f0000000440)=""/193, 0xc1, 0xef9, 0x7})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000f80)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>r1, {0x34d5, 0x9}}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'})
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
mq_timedsend(r2, &(0x7f0000000100)="a41f148dc855c70393246fd2ddf641612fa9f94ccde3acd58dfd14efc0465d6bbbaab3bdd48d670dc3ce5aff46", 0x2d, 0x0, &(0x7f0000000400)={0x0, 0x989680})
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014001700b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r4, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
recvfrom$inet(r4, 0x0, 0x0, 0x40000000, 0x0, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[], 0x1a000}}, 0x40)

1.750182693s ago: executing program 3 (id=2339):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000140)='contention_end\x00', r2}, 0x18)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r3 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000100)={0x20000014})
epoll_wait(r6, &(0x7f00000000c0)=[{}], 0x1, 0x1fffc002)

1.729975363s ago: executing program 4 (id=2341):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a0000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0x72, 0x101301)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000000))
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)

1.668725324s ago: executing program 4 (id=2344):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000980)={'wg2\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0xb)
sendto$packet(r1, &(0x7f0000000180)="0b031407e0ff640f0200475400f6a13bb1000e00080008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

1.653949805s ago: executing program 4 (id=2345):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='highspeed\x00', 0xa)
sendmmsg$inet(r0, &(0x7f0000000ac0)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000200)="d8f35b5e4ba31fdb108693351db8fc7765bfd2a69065dec657", 0x19}], 0x1}}, {{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000840)="dbeb5a02c82eb6e813ad57289a4d904cec88ac5fb3382f9641252d6ddb5bdfa00afa017a1953b6ac63b6d4bf3e6fa3686e820f7f62ee9a98dc360c47d48b1ba8b9330505dea72961a8ca73334dd98e6711ed6233ea7a888045a096628eee353e59163e0609fc0c0c8e60d1871f484c4a5feeade137aa3ce5db736e8871da7da4f530595c6d6e1f65723a61984228f02a4b2e7f23ac212f31a4f78dde5fdda4a7cb857766883ed161c4632ad692cb", 0xae}, {&(0x7f00000004c0)="38683f236ec70a28ca402d598c63be8457d671", 0x13}], 0x2}}], 0x2, 0xc0)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

1.612717025s ago: executing program 2 (id=2346):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0xd2, &(0x7f0000001940)={@broadcast, @dev, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00', 0x9c, 0x3c, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast2, {[], {0x0, 0x4e21, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "ec9623abcc4bd2ceffa36fadcd9330abb76fa7040ef919fc7b0f9b0da2e9e929", "6e35f0c80882f70000c08862205573dd2a5eb2f85b00", "da1274d5285d85f9776ed87dab0d73f66c063c8bc0ea74bd2ef59e05", {"b69bcf4bd1856a7a3a60c503f240ae8f"}}}}}}}}, 0x0)
socket(0x10, 0x2, 0x0)

1.597833335s ago: executing program 2 (id=2347):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="080000fa"], 0xdc)

1.500733237s ago: executing program 2 (id=2348):
r0 = io_uring_setup(0xf08, &(0x7f0000000780)={0x0, 0x64b5, 0x10000, 0x3, 0x5})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000280)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_FILES(r0, 0x1e, &(0x7f0000000000)=[r0], 0x1)

1.437264208s ago: executing program 2 (id=2349):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
getpid()
connect$unix(0xffffffffffffffff, 0x0, 0x0)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
recvmmsg(r0, &(0x7f000000ab80)=[{{&(0x7f00000001c0)=@caif=@dbg, 0x80, &(0x7f0000000880)=[{&(0x7f0000000340)=""/17, 0x11}, {&(0x7f00000004c0)=""/226, 0xe2}, {&(0x7f0000000380)=""/20, 0x14}, {&(0x7f00000005c0)=""/228, 0xe4}, {&(0x7f00000006c0)=""/209, 0xd1}, {&(0x7f00000007c0)=""/187, 0xbb}, {&(0x7f00000003c0)=""/73, 0x49}], 0x7, &(0x7f0000000900)=""/204, 0xcc}, 0x7}, {{&(0x7f0000000a00)=@in6={0xa, 0x0, 0x0, @initdev}, 0x80, &(0x7f0000002f00)=[{&(0x7f0000000a80)=""/4096, 0x1000}, {&(0x7f0000001a80)=""/4096, 0x1000}, {&(0x7f0000002a80)=""/230, 0xe6}, {&(0x7f000000adc0)=""/212, 0xd4}, {&(0x7f0000002c80)=""/228, 0xe4}, {&(0x7f0000002d80)=""/82, 0x52}, {&(0x7f0000002e00)=""/10, 0xa}, {&(0x7f0000002e40)=""/164, 0xa4}], 0x8, &(0x7f0000002f80)=""/4096, 0x1000}, 0x6}, {{&(0x7f0000003f80)=@x25, 0x80, &(0x7f0000004380)=[{&(0x7f0000004000)=""/175, 0xaf}, {&(0x7f00000040c0)=""/229, 0xe5}, {&(0x7f00000041c0)=""/69, 0x45}, {&(0x7f0000004240)=""/7, 0x7}, {&(0x7f0000004280)=""/164, 0xa4}, {&(0x7f0000004340)=""/37, 0x25}], 0x6, &(0x7f0000004400)=""/94, 0x5e}, 0x50b2}, {{&(0x7f0000004480)=@rc, 0x80, &(0x7f0000006880)=[{&(0x7f0000004500)=""/4096, 0x1000}, {&(0x7f0000005500)=""/4096, 0x1000}, {&(0x7f0000006500)=""/191, 0xbf}, {&(0x7f00000065c0)=""/82, 0x52}, {&(0x7f0000006640)=""/98, 0x62}, {&(0x7f00000066c0)=""/196, 0xc4}, {&(0x7f00000067c0)=""/192, 0xc0}], 0x7, &(0x7f0000006900)=""/231, 0xe7}, 0x9}, {{0x0, 0x0, &(0x7f0000006cc0)=[{&(0x7f0000006a00)=""/42, 0x2a}, {&(0x7f0000006a40)=""/11, 0xb}, {&(0x7f0000006a80)=""/22, 0x16}, {&(0x7f0000006ac0)=""/222, 0xde}, {&(0x7f0000006bc0)=""/205, 0xcd}], 0x5, &(0x7f0000006d40)=""/43, 0x2b}, 0x47}, {{&(0x7f0000006d80)=@ieee802154={0x24, @short}, 0x80, &(0x7f0000008040)=[{&(0x7f0000006e00)=""/182, 0xb6}, {&(0x7f0000006ec0)=""/197, 0xc5}, {&(0x7f0000006fc0)=""/4096, 0x1000}, {&(0x7f0000007fc0)=""/76, 0x4c}], 0x4, &(0x7f0000008080)=""/169, 0xa9}, 0x56b3}, {{&(0x7f0000008140)=@isdn, 0x80, &(0x7f0000009500)=[{&(0x7f00000081c0)=""/240, 0xf0}, {&(0x7f00000082c0)=""/4096, 0x1000}, {&(0x7f00000092c0)=""/176, 0xb0}, {&(0x7f0000009380)=""/115, 0x73}, {&(0x7f0000009400)=""/198, 0xc6}], 0x5, &(0x7f0000009580)=""/4096, 0x1000}, 0x6}, {{&(0x7f000000a580)=@tipc, 0x80, &(0x7f000000aa80)=[{&(0x7f000000a600)=""/119, 0x77}, {&(0x7f000000a680)=""/154, 0x9a}, {&(0x7f000000a740)=""/49, 0x31}, {&(0x7f000000a780)=""/197, 0xc5}, {&(0x7f000000a880)=""/226, 0xe2}, {&(0x7f000000a980)=""/116, 0x74}, {&(0x7f000000aa00)=""/89, 0x59}], 0x7, &(0x7f000000ab00)=""/78, 0x4e}, 0x1}], 0x8, 0x5, &(0x7f000000ad80)={0x77359400})
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f00000002c0)=[{0x6}]}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r4}, 0x10)
r5 = accept(r0, 0x0, 0x0)
sendmsg$AUDIT_USER_AVC(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000740)=ANY=[], 0x454}}, 0x0)
shutdown(r5, 0x1)
recvfrom(r2, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x0, 0x0, 0x0)

885.070886ms ago: executing program 3 (id=2358):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000580)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000300000085000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
clock_gettime(0x0, &(0x7f0000000180))

874.125356ms ago: executing program 3 (id=2360):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000980)={'wg2\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0xb)
sendto$packet(r1, &(0x7f0000000180)="0b031407e0ff640f0200475400f6a13bb1000e00080008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

851.724847ms ago: executing program 3 (id=2361):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00')
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) (async)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
getrandom(0x0, 0x0, 0x0) (async)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r2}, 0x38) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180100000100a7d9000000000020b208850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000300), 0x4)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r7, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f00000001c0)={<r8=>0x0, 0x20, &(0x7f0000000080)=[@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x4e22, @remote}]}, &(0x7f0000000180)=0x10)
syz_emit_ethernet(0xae, &(0x7f0000000000)={@link_local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010120", 0x78, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96489269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000000400260004000000"}, {0x1, 0x1, "fe906d17efe3"}]}}}}}}, 0x0) (async)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r7, 0x84, 0x1, &(0x7f0000000000)={r8, 0xe, 0x401, 0x256, 0x10001, 0x9}, &(0x7f0000000040)=0x14) (async)
sendmsg$DEVLINK_CMD_RATE_DEL(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="0100cd7881a9b45dea5e54"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x2}, 0x18)
r9 = socket(0x1, 0x803, 0x0)
r10 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)="711f334b34afd5279c17da770cf0", 0xe}, 0x1, 0x0, 0x0, 0x805}, 0x240448c4)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r11, 0x8910, &(0x7f0000000080))
recvmmsg(r10, &(0x7f0000002e40)=[{{0x0, 0xffffffffffffff22, 0x0, 0x0, 0x0, 0x3b}}], 0x40000000000019e, 0x142, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[], 0x44}}, 0x40040c0) (async)
setsockopt$IP_VS_SO_SET_ADD(r11, 0x0, 0x482, &(0x7f0000000140)={0x2e, @remote, 0x4e22, 0x3, 'lblc\x00', 0x14, 0x3, 0x38}, 0x2c)

605.635621ms ago: executing program 4 (id=2363):
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000540)={&(0x7f0000000440)=""/193, 0xc1, 0xef9, 0x7})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000f80)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>r1, {0x34d5, 0x9}}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'})
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
mq_timedsend(r2, &(0x7f0000000100)="a41f148dc855c70393246fd2ddf641612fa9f94ccde3acd58dfd14efc0465d6bbbaab3bdd48d670dc3ce5aff46", 0x2d, 0x0, &(0x7f0000000400)={0x0, 0x989680})
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014001700b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r4, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
recvfrom$inet(r4, 0x0, 0x0, 0x40000000, 0x0, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[], 0x1a000}}, 0x40)

605.281791ms ago: executing program 2 (id=2364):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000400)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x3b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x6}, 0x18)
r1 = memfd_create(&(0x7f00000001c0)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xd9\x19\x17\xb0\xed|\xb3\xc2\x017h\xe9kL\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f2\xf7]#\xed,\xc7\x03\x00\x00\x00\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4R$\xaa\x00U\x92\xd2\x99\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8\xfb\x16\x8e\x8b-W\xd4\xc9\xbc\x94CR[Du8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xbd+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96', 0x5)
fsetxattr$security_selinux(r1, &(0x7f0000000480), &(0x7f00000004c0)='system_u:object_r:hwdata_t:s0\x00', 0x1a, 0xa1ff)

558.768311ms ago: executing program 2 (id=2365):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x10, 0x10, 0x0, 0x2, 0x0, 0x5, 0x114, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x6, @perf_bp={&(0x7f0000000000), 0x9}, 0x240, 0x4, 0x1, 0x7, 0x0, 0x101, 0x2, 0x0, 0xfffffffc, 0x0, 0x1}, r0, 0x2, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x1c, 0x20000000000000bb, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x22, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r3)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000140)={0x1, [0x0]}, &(0x7f0000000240)=0x8)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES8=r1, @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r8)
socket$netlink(0x10, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)

557.940581ms ago: executing program 3 (id=2366):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/crash_elfcorehdr_size', 0x161000, 0x21)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x4}, 0x18)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000040000000110000007"], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000440), 0x0, 0x2f, 0xe8034000, 0x0, 0x0, 0x0, 0x0, 0x5dc}, 0x50)
perf_event_open(&(0x7f00000001c0)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, @perf_bp={0x0}, 0x0, 0x101, 0x0, 0x0, 0xfffffffffff7bbfe, 0x0, 0xfffd, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
getxattr(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="6f7362f2d3b85105"], 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f1, &(0x7f0000000080))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x6f, &(0x7f0000000980)={@multicast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x4d, 0x0, @opaque="49061741a8a88a9c64c5207e6c0af06215b7fb1a74c61d607d43211301300d7c274f461e9993b48c91bcdf1aecc1f39ebad04a191154d2a893447067ee92e2c86ecfd35472"}}}}}, 0x0)
recvmmsg(r2, &(0x7f00000039c0)=[{{0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000001940)=""/4096, 0x1000}], 0x2}, 0x7061ab3a}], 0x1, 0x0, 0x0)

535.969642ms ago: executing program 4 (id=2368):
r0 = add_key$keyring(&(0x7f0000000300), 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_vs\x00')
read(r1, &(0x7f0000000040)=""/181, 0xb5)
keyctl$restrict_keyring(0x1d, r0, 0x0, &(0x7f00000001c0)='/&-(\x00')
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x48)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x60}, {0x6}]})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f00000004c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x54, 0x54, 0x7, [@decl_tag={0xb, 0x0, 0x0, 0x11, 0x1, 0x5}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x8, 0x2}]}, @typedef={0x1, 0x0, 0x0, 0x8, 0x1}, @typedef={0x0, 0x0, 0x0, 0x8, 0x5}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x2, 0x8}}]}, {0x0, [0x2e, 0x61, 0x30, 0x2e, 0x0]}}, &(0x7f0000000640)=""/188, 0x73, 0xbc, 0x1, 0x4, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000900)=@bpf_tracing={0x1a, 0x12, &(0x7f0000000780)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x80000000}, {}, {}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @alu={0x4, 0x1, 0x6, 0x7, 0x4, 0x20, 0xffffffffffffffff}, @generic={0x4, 0x1, 0x5, 0x9, 0x4}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000840)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x3f, '\x00', 0x0, 0x1a, 0xffffffffffffffff, 0x8, &(0x7f0000000880)={0xa, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x28706, 0xffffffffffffffff, 0x3, 0x0, &(0x7f00000008c0)=[{0x4, 0x4, 0xd, 0x5}, {0x4, 0x4, 0x4, 0x5}, {0x3, 0x4, 0x4, 0xe}], 0x10, 0x3, @void, @value}, 0x94)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
mkdir(&(0x7f0000000c80)='./file0\x00', 0x10)
readv(r2, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)

298.793765ms ago: executing program 1 (id=2378):
prctl$PR_SET_NAME(0xf, &(0x7f0000000a40)='GPL\x00')
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xfffffffff7ffffe9}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000004440000001e0a05020000000000000000010000000900020073797a3200000000180003801400008010000180040002800800018000000000090001007379"], 0xc8}}, 0x0)

279.192555ms ago: executing program 1 (id=2380):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f0000002700)=@raw={'raw\x00', 0x8, 0x3, 0x2a0, 0x208, 0x8, 0xfa04, 0x0, 0x6c02, 0x208, 0x194, 0x194, 0x208, 0x194, 0x3, 0x0, {[{{@ip={@empty=0x1e00, @broadcast, 0x0, 0x0, 'veth0_to_hsr\x00', 'veth0_virt_wifi\x00', {}, {}, 0x6}, 0x0, 0xa0, 0xc8, 0x0, {0x0, 0x74020000}, [@common=@inet=@tcp={{0x30}, {[], [], 0x0, 0x0, 0x7a}}]}, @common=@inet=@TCPMSS={0x28}}, {{@ip={@multicast1, @rand_addr, 0x0, 0x0, 'batadv_slave_0\x00', 'pimreg\x00'}, 0x0, 0xf8, 0x140, 0x0, {}, [@common=@unspec=@helper={{0x48}, {0x0, 'amanda\x00'}}, @common=@unspec=@connlimit={{0x40}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x300)

250.506436ms ago: executing program 1 (id=2381):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0xd2, &(0x7f0000001940)={@broadcast, @dev, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00', 0x9c, 0x3c, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast2, {[], {0x0, 0x4e21, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "ec9623abcc4bd2ceffa36fadcd9330abb76fa7040ef919fc7b0f9b0da2e9e929", "6e35f0c80882f70000c08862205573dd2a5eb2f85b00", "da1274d5285d85f9776ed87dab0d73f66c063c8bc0ea74bd2ef59e05", {"b69bcf4bd1856a7a3a60c503f240ae8f"}}}}}}}}, 0x0)
socket(0x10, 0x2, 0x0)

213.366797ms ago: executing program 1 (id=2383):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000007565000000001811000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000600)='sys_enter\x00', r1}, 0x10)
epoll_wait(0xffffffffffffffff, &(0x7f00000004c0)=[{}, {}, {}], 0x3, 0x80000000)

212.971877ms ago: executing program 0 (id=2384):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='highspeed\x00', 0xa)
sendmmsg$inet(r0, &(0x7f0000000ac0)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000200)="d8f35b5e4ba31fdb108693351db8fc7765bfd2a69065dec657", 0x19}], 0x1}}, {{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000840)="dbeb5a02c82eb6e813ad57289a4d904cec88ac5fb3382f9641252d6ddb5bdfa00afa017a1953b6ac63b6d4bf3e6fa3686e820f7f62ee9a98dc360c47d48b1ba8b9330505dea72961a8ca73334dd98e6711ed6233ea7a888045a096628eee353e59163e0609fc0c0c8e60d1871f484c4a5feeade137aa3ce5db736e8871da7da4f530595c6d6e1f65723a61984228f02a4b2e7f23ac212f31a4f78dde5fdda4a7cb857766883ed161c4632ad692cb", 0xae}, {&(0x7f00000004c0)="38683f236ec70a28ca402d598c63be8457d671", 0x13}], 0x2}}], 0x2, 0xc0)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

180.196207ms ago: executing program 1 (id=2385):
syz_mount_image$ext4(&(0x7f0000000800)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2044d0, &(0x7f00000005c0)={[{@noauto_da_alloc}]}, 0xff, 0x4ab, &(0x7f0000000080)="$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")
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000980), r1)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000009c0)={'batadv0\x00', <r4=>0x0})
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010025bd7000fbdbdf250100000008000300", @ANYRES32=r4], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x8440)
sendmsg$nl_route(r0, &(0x7f0000000840)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000007c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="5c000000110004002abd7000ffdbdf2500000000", @ANYRES32=r4, @ANYBLOB="000400002000000008001e00080000001f002400150bb61852f29c41d63a0b9ee33dfc06eaa24e246d9527f6f0b8f2000a000200aaaaaaaaaabb00000800250002000000d0cbc2e4002810000000000000003607bd52286d526702c1d85b9c0a3e9c5379365be1cdf3080c2e9bcc602649124443069884f4328294baed56d1dfc1929152411c5c691856"], 0x5c}, 0x1, 0x0, 0x0, 0x14}, 0x0)
r5 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x210000, 0x0)
getsockopt$inet6_mptcp_buf(0xffffffffffffffff, 0x11c, 0x2, 0x0, &(0x7f0000000040))
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r9}, 0x18)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x4004000}, 0x20004010)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r10=>0xffffffffffffffff})
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r7, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=@newtaction={0x108, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0xf4, 0x1, [@m_mirred={0xf0, 0x1, 0x0, 0x0, {{0xb}, {0xc4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x2, 0x2}, 0x3, r11}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x800, 0x4, 0x6, 0x2, 0xfff}, 0x2, r11}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x91, 0x4, 0x9, 0x9}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x400, 0x7, 0xffffffffffffffff, 0x31, 0x8}, 0x4, r11}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0xffffffff, 0x1, 0xfa14}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x38, 0x3, 0x87, 0x8}, 0x2, r11}}]}, {0x4, 0xa}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x108}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0x88, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xffdff7e8}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x1, 0x400, 0xfffffff7}, 0x2}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000600)={'ip_vti0\x00', &(0x7f0000000540)={'syztnl0\x00', <r12=>0x0, 0x40, 0x7800, 0x0, 0x1, {{0x18, 0x4, 0x2, 0x9, 0x60, 0x65, 0x0, 0x7, 0x2f, 0x0, @private=0xa010100, @broadcast, {[@ssrr={0x89, 0x23, 0x57, [@dev={0xac, 0x14, 0x14, 0x3e}, @multicast2, @private=0xa010101, @multicast1, @remote, @multicast1, @loopback, @private=0xa010101]}, @rr={0x7, 0x27, 0x10, [@local, @multicast1, @broadcast, @multicast1, @multicast1, @rand_addr=0x64010100, @broadcast, @loopback, @broadcast]}]}}}}})
r13 = bpf$TOKEN_CREATE(0x24, &(0x7f00000006c0), 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e000000d1000014070a000000000000000e3400", @ANYRES32=r5, @ANYBLOB="0e00"/20, @ANYRES32=r12, @ANYRES32, @ANYBLOB="0300000005000000000000000700"/24, @ANYRES32=r13, @ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r14 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r14, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

175.193857ms ago: executing program 0 (id=2386):
getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, &(0x7f0000000380))
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='inet_sock_set_state\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r3 = epoll_create1(0x0)
socket(0x2, 0x80805, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r4, 0x0, 0x80}, 0x18)
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaa2aaaaaaaffffffffffff08004500001c00c3972f115517f5ce810415faca79150000008002000000000000e000030000009078006400d2"], 0x0)
readv(r2, &(0x7f0000000580)=[{&(0x7f00000004c0)=""/113, 0x71}, {&(0x7f0000000900)=""/119, 0x77}, {&(0x7f0000000300)=""/123, 0x7b}, {&(0x7f0000000980)=""/95, 0x5f}, {&(0x7f0000000840)=""/183, 0xb7}], 0x5)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x0)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000002c0), r7)
sendmsg$NLBL_MGMT_C_ADD(r6, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000780)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x24000084}, 0x4040000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)='cpuset.mem_hardwall\x00', 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6gre0\x00', 0x210})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x89f1, &(0x7f0000000080))
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x3, 0x44510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c50, 0x14000, 0x0, 0x1, 0x8, 0x20002, 0xd, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
unshare(0x10080)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)

149.357908ms ago: executing program 1 (id=2387):
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000001c0))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000200)={[{@inlinecrypt}, {@jqfmt_vfsv1}, {@quota}, {@init_itable_val={'init_itable', 0x3d, 0x8}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@sysvgroups}, {@noauto_da_alloc}, {@stripe={'stripe', 0x3d, 0x5}}, {@orlov}], [{@appraise}]}, 0x1, 0x56f, &(0x7f0000003780)="$eJzs3d9rW1UcAPDvTdPup66DMdQHGezByVy6tv6YIDgfRYcDfZ+hzcpouowmHWsduD24F19kCCIOxD/Adx+H/4B/xUAHQ0bRBxEiN73psjZp2i4z2fL5wG3Pyb23535z7vf2nNyEBDC0jqU/chEvR8Q3ScShlnX5yFYeW9tu9eH1mXRJol7/9M8kkuyx5vZJ9vtAVnkpIn79KuJkbnO71eWV+WK5XFrM6hO1hSsT1eWVU5cWinOludLlqenpM29NT737zts9i/X1839//8ndD898fXz1u5/vH76dxNk4mK1rjeMJ3GitHCv+m5VG4+yGDSd70NggSfp9AOzKSJbno5FeAw7FSJb1wPPvy4ioA0Mqkf8wpJrjgObcvkfz4GfGgw/WJkCN2Mda48+vvTYSextzo/2ryWMzo3S+O96D9tM2fvnjzu10ia1fh9jXpQ6wIzduRsTpfH7z9T/Jrn+7d7rx4vHWNrYxbP9/oJ/upuOfN9qN/3Lr459oM/450CZ3d6N7/ufu96CZjtLx33ttx7/rl67xkaz2QmPMN5pcvFQunY6IFyPiRNS73vo4s3qv3mld6/gvXdL2m2PB7Dju5/c8vs9ssVaMiLFdhvyYBzcjXsm3iz9Z7/+kTf+nz8f5bbZxtHTn1U7rusf/dNV/initbf8/6tZk6/uTE43zYaJ5Vmz2162jv3Vqv9/xp/2/f+v4x5PW+7XVnbfx495/Sp3W7fb8H0s+a5SbSXCtWKstTkaMJR9vfnzq0b7NenP7NP4Tx7e+/rU7/9PJ1+fbjP/WkVsdNx2E/p/dUf/vvHDvoy9+6NT+9vr/zUbpRPZIdv1rLztXtnuAT/r8AQAAAAAAwCDJRcTBSHKF9XIuVyisvb/jSOzPlSvV2smLlaXLs9H4rOx4jOaad7oPtbwfYjJ7P2yzPrWhPh0RhyPi25F9jXphplKe7XfwAAAAAAAAAAAAAAAAAAAAMCAOdPj8f+r3kX4fHfDUNb7YYE+/jwLoh65f+d+Lb3oCBlLX/AeeW/Ifhpf8h+El/2F4yX8YXvIfhpf8h+El/wEAAAAAAAAAAAAAAAAAAAAAAAAAAKCnzp87ly711YfXZ9L67NXlpfnK1VOzpep8YWFppjBTWbxSmKtU5sqlwkxlodvfK1cqVyanYunaRK1UrU1Ul1cuLFSWLtcuXFoozpUulEb/l6gAAAAAAAAAAAAAAAAAAADg2VJdXpkvlsulRYWOhfdjIA7jaQa4Zle75wclCoUOhZtZ9+5srz5elAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgg/8CAAD//4yLMZo=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r0, 0x20, 0x0, 0x8)
unshare(0x8000000)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
r2 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r5, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000040)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x4e23, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000200)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xfffe}}}}}}, 0x0)
add_key(&(0x7f0000000140)='asymmetric\x00', 0x0, &(0x7f00000002c0)="9fcc", 0x2, r1)
semget$private(0x0, 0x4000, 0x555)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f00000012c0)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r7, &(0x7f0000004200)='t', 0x1)
fsopen(&(0x7f0000000000)='cpuset\x00', 0x0)
sendfile(r7, r6, 0x0, 0x3ffff)
sendfile(r7, r6, 0x0, 0x7ffff000)
semtimedop(0x0, &(0x7f0000000440)=[{0x0, 0x0, 0x1000}], 0xf, 0x0)

58.415389ms ago: executing program 0 (id=2388):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="080000fa"], 0xdc)

39.315739ms ago: executing program 0 (id=2389):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
sendmsg$inet6(r2, &(0x7f0000000540)={&(0x7f0000000080)={0xa, 0x4e22, 0x20, @loopback}, 0x1c, &(0x7f00000004c0)=[{&(0x7f0000000280)="4d94df66691e838bd116816fc685e7baad264f024e480d92eb999c3505d733475f274c301a0fd89cd636a7599492d0dfafd52f9dacf3316c0ccf808dcc16c047f46cb8ce110e752e085d3c3d04d414ca96a6f495886a027d3b76fc27f662d2efe58562e84b32f4e5d2c27be3f21dc98610c749a74794c59f589e9bda275874f4d8ff9c6a2f9f6b9919ad3c0882fd9580ea7a795eb2d16a3fbe41bf800a43783a9e550c44698bafd3cab981163ceb0135d6540026871cd7", 0xb7}, {0x0}, {0x0}], 0x3}, 0x20004080)

995.27µs ago: executing program 0 (id=2390):
prctl$PR_SET_NAME(0xf, &(0x7f0000000a40)='GPL\x00')
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0xfffffffff7ffffe9}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000004440000001e0a05020000000000000000010000000900020073797a3200000000180003801400008010000180040002800800018000000000090001007379"], 0xc8}}, 0x0)

0s ago: executing program 0 (id=2391):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f1, &(0x7f0000000080))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x6f, &(0x7f0000000980)={@multicast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x4d, 0x0, @opaque="49061741a8a88a9c64c5207e6c0af06215b7fb1a74c61d607d43211301300d7c274f461e9993b48c91bcdf1aecc1f39ebad04a191154d2a893447067ee92e2c86ecfd35472"}}}}}, 0x0)
recvmmsg(r0, &(0x7f00000039c0)=[{{0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000001940)=""/4096, 0x1000}], 0x2}, 0x7061ab3a}], 0x1, 0x0, 0x0)

kernel console output (not intermixed with test programs):

[  124.398395][ T8152]  __dump_stack+0x1d/0x30
[  124.398415][ T8152]  dump_stack_lvl+0xe8/0x140
[  124.398439][ T8152]  dump_stack+0x15/0x1b
[  124.398579][ T8152]  should_fail_ex+0x265/0x280
[  124.398619][ T8152]  should_failslab+0x8c/0xb0
[  124.398683][ T8152]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  124.398720][ T8152]  ? sidtab_sid2str_get+0xa0/0x130
[  124.398748][ T8152]  kmemdup_noprof+0x2b/0x70
[  124.398810][ T8152]  sidtab_sid2str_get+0xa0/0x130
[  124.398834][ T8152]  security_sid_to_context_core+0x1eb/0x2e0
[  124.398927][ T8152]  security_sid_to_context+0x27/0x40
[  124.398954][ T8152]  selinux_lsmprop_to_secctx+0x67/0xf0
[  124.399101][ T8152]  security_lsmprop_to_secctx+0x43/0x80
[  124.399141][ T8152]  audit_log_task_context+0x77/0x190
[  124.399196][ T8152]  audit_log_task+0xf4/0x250
[  124.399274][ T8152]  audit_seccomp+0x61/0x100
[  124.399307][ T8152]  ? __seccomp_filter+0x68c/0x10d0
[  124.399345][ T8152]  __seccomp_filter+0x69d/0x10d0
[  124.399376][ T8152]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  124.399468][ T8152]  ? vfs_write+0x75e/0x8e0
[  124.399508][ T8152]  ? kmem_cache_free+0xdf/0x300
[  124.399540][ T8152]  __secure_computing+0x82/0x150
[  124.399630][ T8152]  syscall_trace_enter+0xcf/0x1e0
[  124.399655][ T8152]  do_syscall_64+0xac/0x200
[  124.399678][ T8152]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  124.399787][ T8152]  ? clear_bhb_loop+0x40/0x90
[  124.399809][ T8152]  ? clear_bhb_loop+0x40/0x90
[  124.399908][ T8152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.399936][ T8152] RIP: 0033:0x7f889399d33c
[  124.399951][ T8152] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  124.399969][ T8152] RSP: 002b:00007f8892007030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  124.399992][ T8152] RAX: ffffffffffffffda RBX: 00007f8893bc5fa0 RCX: 00007f889399d33c
[  124.400050][ T8152] RDX: 000000000000000f RSI: 00007f88920070a0 RDI: 0000000000000004
[  124.400065][ T8152] RBP: 00007f8892007090 R08: 0000000000000000 R09: 0000000000000000
[  124.400105][ T8152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.400120][ T8152] R13: 0000000000000000 R14: 00007f8893bc5fa0 R15: 00007ffc55d5df98
[  124.400138][ T8152]  </TASK>
[  124.723851][ T8160] loop4: detected capacity change from 0 to 256
[  124.731434][ T8160] FAT-fs (loop4): Directory bread(block 1285) failed
[  124.749628][ T8160] FAT-fs (loop4): Directory bread(block 1285) failed
[  124.767145][ T8160] FAT-fs (loop4): Directory bread(block 1285) failed
[  124.769491][ T8164] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1710'.
[  124.777341][ T8160] FAT-fs (loop4): Directory bread(block 1285) failed
[  124.792317][ T8163] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1711'.
[  124.801928][ T8163] netem: change failed
[  124.809567][ T8163] loop2: detected capacity change from 0 to 512
[  124.816467][ T8160] FAT-fs (loop4): Directory bread(block 1285) failed
[  124.818901][ T8163] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  124.836989][ T8163] EXT4-fs (loop2): 1 truncate cleaned up
[  124.840581][ T8164] program syz.1.1710 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  124.851723][ T8160] FAT-fs (loop4): Directory bread(block 1285) failed
[  124.858859][ T8164] loop1: detected capacity change from 0 to 512
[  124.865860][ T8160] FAT-fs (loop4): FAT read failed (blocknr 1281)
[  124.873061][ T8160] FAT-fs (loop4): Directory bread(block 1285) failed
[  124.879888][ T8164] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  124.889551][ T8164] EXT4-fs (loop1): warning: maximal mount count reached, running e2fsck is recommended
[  124.909712][ T8164] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.1710: inode #15: comm syz.1.1710: iget: illegal inode #
[  124.935775][ T8164] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.1710: couldn't read orphan inode 15 (err -117)
[  124.941854][ T8175] xt_CT: You must specify a L4 protocol and not use inversions on it
[  125.032614][ T8187] FAULT_INJECTION: forcing a failure.
[  125.032614][ T8187] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.045923][ T8187] CPU: 0 UID: 0 PID: 8187 Comm: syz.1.1720 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  125.045955][ T8187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  125.045969][ T8187] Call Trace:
[  125.045976][ T8187]  <TASK>
[  125.045984][ T8187]  __dump_stack+0x1d/0x30
[  125.046009][ T8187]  dump_stack_lvl+0xe8/0x140
[  125.046072][ T8187]  dump_stack+0x15/0x1b
[  125.046090][ T8187]  should_fail_ex+0x265/0x280
[  125.046127][ T8187]  should_fail+0xb/0x20
[  125.046205][ T8187]  should_fail_usercopy+0x1a/0x20
[  125.046313][ T8187]  _copy_from_user+0x1c/0xb0
[  125.046337][ T8187]  ___sys_sendmsg+0xc1/0x1d0
[  125.046371][ T8187]  __x64_sys_sendmsg+0xd4/0x160
[  125.046393][ T8187]  x64_sys_call+0x2999/0x2fb0
[  125.046412][ T8187]  do_syscall_64+0xd2/0x200
[  125.046450][ T8187]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  125.046481][ T8187]  ? clear_bhb_loop+0x40/0x90
[  125.046507][ T8187]  ? clear_bhb_loop+0x40/0x90
[  125.046612][ T8187]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.046684][ T8187] RIP: 0033:0x7f7ba4f5e929
[  125.046727][ T8187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.046745][ T8187] RSP: 002b:00007f7ba35c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  125.046793][ T8187] RAX: ffffffffffffffda RBX: 00007f7ba5185fa0 RCX: 00007f7ba4f5e929
[  125.046807][ T8187] RDX: 0000000000000000 RSI: 00002000000012c0 RDI: 0000000000000004
[  125.046822][ T8187] RBP: 00007f7ba35c7090 R08: 0000000000000000 R09: 0000000000000000
[  125.046836][ T8187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.046891][ T8187] R13: 0000000000000000 R14: 00007f7ba5185fa0 R15: 00007ffd7469fd28
[  125.046913][ T8187]  </TASK>
[  125.271009][ T8201] loop4: detected capacity change from 0 to 256
[  125.296102][ T8201] FAT-fs (loop4): Directory bread(block 1285) failed
[  125.313170][ T8201] FAT-fs (loop4): Directory bread(block 1285) failed
[  125.343051][ T8201] FAT-fs (loop4): Directory bread(block 1285) failed
[  125.374196][ T8201] FAT-fs (loop4): Directory bread(block 1285) failed
[  125.389296][ T8201] FAT-fs (loop4): Directory bread(block 1285) failed
[  125.396382][ T8201] FAT-fs (loop4): Directory bread(block 1285) failed
[  125.415608][ T8201] FAT-fs (loop4): FAT read failed (blocknr 1281)
[  125.425212][ T8201] FAT-fs (loop4): Directory bread(block 1285) failed
[  125.441603][ T8207] loop0: detected capacity change from 0 to 512
[  125.467369][ T8207] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  125.476924][ T8222] FAULT_INJECTION: forcing a failure.
[  125.476924][ T8222] name failslab, interval 1, probability 0, space 0, times 0
[  125.489684][ T8222] CPU: 0 UID: 0 PID: 8222 Comm: syz.4.1733 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  125.489735][ T8222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  125.489747][ T8222] Call Trace:
[  125.489753][ T8222]  <TASK>
[  125.489762][ T8222]  __dump_stack+0x1d/0x30
[  125.489787][ T8222]  dump_stack_lvl+0xe8/0x140
[  125.489811][ T8222]  dump_stack+0x15/0x1b
[  125.489832][ T8222]  should_fail_ex+0x265/0x280
[  125.489943][ T8222]  should_failslab+0x8c/0xb0
[  125.489966][ T8222]  kmem_cache_alloc_node_noprof+0x57/0x320
[  125.490000][ T8222]  ? __alloc_skb+0x101/0x320
[  125.490110][ T8222]  __alloc_skb+0x101/0x320
[  125.490142][ T8222]  netlink_alloc_large_skb+0xba/0xf0
[  125.490208][ T8222]  netlink_sendmsg+0x3cf/0x6b0
[  125.490269][ T8222]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.490316][ T8222]  __sock_sendmsg+0x142/0x180
[  125.490348][ T8222]  sock_write_iter+0x165/0x1b0
[  125.490382][ T8222]  do_iter_readv_writev+0x421/0x4c0
[  125.490413][ T8222]  vfs_writev+0x2df/0x8b0
[  125.490485][ T8222]  do_writev+0xe7/0x210
[  125.490561][ T8222]  __x64_sys_writev+0x45/0x50
[  125.490634][ T8222]  x64_sys_call+0x2006/0x2fb0
[  125.490654][ T8222]  do_syscall_64+0xd2/0x200
[  125.490674][ T8222]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  125.490707][ T8222]  ? clear_bhb_loop+0x40/0x90
[  125.490771][ T8222]  ? clear_bhb_loop+0x40/0x90
[  125.490945][ T8222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.490972][ T8222] RIP: 0033:0x7f889399e929
[  125.490997][ T8222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.491021][ T8222] RSP: 002b:00007f8892007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  125.491039][ T8222] RAX: ffffffffffffffda RBX: 00007f8893bc5fa0 RCX: 00007f889399e929
[  125.491109][ T8222] RDX: 0000000000000001 RSI: 0000200000000300 RDI: 0000000000000003
[  125.491124][ T8222] RBP: 00007f8892007090 R08: 0000000000000000 R09: 0000000000000000
[  125.491206][ T8222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.491217][ T8222] R13: 0000000000000000 R14: 00007f8893bc5fa0 R15: 00007ffc55d5df98
[  125.491237][ T8222]  </TASK>
[  125.758762][ T8207] ext4 filesystem being mounted at /360/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.843773][ T8242] xt_time: invalid argument - start or stop time greater than 23:59:59
[  125.852317][ T8241] xt_time: invalid argument - start or stop time greater than 23:59:59
[  125.887507][ T8248] xt_CT: You must specify a L4 protocol and not use inversions on it
[  125.889679][ T8246] loop3: detected capacity change from 0 to 128
[  125.914445][ T8239] hub 4-0:1.0: USB hub found
[  125.925511][ T8239] hub 4-0:1.0: 8 ports detected
[  126.020451][ T8253] loop4: detected capacity change from 0 to 8192
[  126.032618][ T8253] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1746'.
[  126.142781][ T8267] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  126.150966][ T8267] macsec1: entered allmulticast mode
[  126.156644][ T8267] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  126.166029][ T8267] netdevsim netdevsim2 netdevsim0: left allmulticast mode
[  126.173283][ T8267] netdevsim netdevsim2 netdevsim0: left promiscuous mode
[  126.242227][ T3663] hid-generic 0000:0000:0000.0040: unknown main item tag 0x0
[  126.250666][ T3663] hid-generic 0000:0000:0000.0040: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  126.311390][ T8272] loop1: detected capacity change from 0 to 512
[  126.328255][ T8272] ext4 filesystem being mounted at /315/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  126.452358][ T8286] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8286 comm=syz.1.1758
[  126.464945][ T8286] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=8286 comm=syz.1.1758
[  126.519824][ T3409] hid-generic 0000:0000:0000.0041: unknown main item tag 0x0
[  126.527531][ T8290] loop3: detected capacity change from 0 to 1024
[  126.532812][ T3409] hid-generic 0000:0000:0000.0041: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  126.536581][ T8290] EXT4-fs: Ignoring removed nomblk_io_submit option
[  126.551946][ T8290] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  126.568030][ T8290] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.1760' sets config #0
[  126.578222][ T8290] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.1760' sets config #1
[  126.622386][ T8297] loop3: detected capacity change from 0 to 2048
[  126.637918][   T29] kauditd_printk_skb: 975 callbacks suppressed
[  126.637934][   T29] audit: type=1326 audit(1750000207.439:10763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.1.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  126.667760][   T29] audit: type=1326 audit(1750000207.439:10764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.1.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  126.694447][ T8297] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1763'.
[  126.704957][   T29] audit: type=1326 audit(1750000207.439:10765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.1.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  126.705898][ T8297] hsr_slave_0: left promiscuous mode
[  126.728646][   T29] audit: type=1326 audit(1750000207.439:10766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.1.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  126.757593][   T29] audit: type=1326 audit(1750000207.439:10767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.1.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  126.781131][   T29] audit: type=1326 audit(1750000207.439:10768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.1.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  126.804926][   T29] audit: type=1326 audit(1750000207.439:10769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.1.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  126.828548][   T29] audit: type=1326 audit(1750000207.439:10770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.1.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  126.852100][   T29] audit: type=1326 audit(1750000207.439:10771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.1.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  126.875638][   T29] audit: type=1326 audit(1750000207.439:10772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.1.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  126.899287][ T8297] hsr_slave_1: left promiscuous mode
[  127.026475][ T8318] loop0: detected capacity change from 0 to 128
[  127.070826][ T3395] hid-generic 0000:0000:0000.0042: unknown main item tag 0x0
[  127.079455][ T3395] hid-generic 0000:0000:0000.0042: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  127.089216][ T8323] loop3: detected capacity change from 0 to 1024
[  127.096283][ T8323] EXT4-fs: Ignoring removed nomblk_io_submit option
[  127.103258][ T8323] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  127.116523][ T8323] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.1773' sets config #0
[  127.126571][ T8323] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.1773' sets config #1
[  127.219554][ T8328] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  127.283213][ T8332] xt_CT: You must specify a L4 protocol and not use inversions on it
[  127.482430][ T8343] loop1: detected capacity change from 0 to 512
[  127.491688][ T8343] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.1781: corrupted in-inode xattr: invalid ea_ino
[  127.505894][ T8343] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.1781: couldn't read orphan inode 15 (err -117)
[  127.630589][ T8354] loop1: detected capacity change from 0 to 1024
[  127.637507][ T8354] EXT4-fs: Ignoring removed bh option
[  127.643409][ T8354] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  127.654756][ T8354] EXT4-fs error (device loop1): ext4_quota_enable:7124: comm syz.1.1786: inode #2304: comm syz.1.1786: iget: illegal inode #
[  127.668995][ T8354] EXT4-fs (loop1): Remounting filesystem read-only
[  127.675580][ T8354] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  127.691578][ T8354] EXT4-fs (loop1): mount failed
[  127.842536][ T8372] loop1: detected capacity change from 0 to 512
[  127.852865][ T8373] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  127.869520][ T8372] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.1793: corrupted in-inode xattr: invalid ea_ino
[  127.884538][ T8372] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.1793: couldn't read orphan inode 15 (err -117)
[  127.957896][ T8377] xt_CT: You must specify a L4 protocol and not use inversions on it
[  128.030673][ T3388] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0
[  128.042544][ T8381] loop0: detected capacity change from 0 to 1024
[  128.052265][ T3388] hid-generic 0000:0000:0000.0043: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  128.053506][ T8381] EXT4-fs: Ignoring removed nomblk_io_submit option
[  128.068814][ T8369] loop4: detected capacity change from 0 to 1024
[  128.069837][ T8381] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  128.075903][ T8369] EXT4-fs: Ignoring removed bh option
[  128.090581][ T8369] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  128.102120][ T8381] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1797' sets config #0
[  128.113066][ T8381] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1797' sets config #1
[  128.122611][ T8369] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  128.132489][ T8369] EXT4-fs (loop4): orphan cleanup on readonly fs
[  128.153116][ T8369] EXT4-fs error (device loop4): ext4_quota_enable:7124: inode #3: comm syz.4.1792: iget: bad i_size value: 1407392063428608
[  128.168375][ T8369] EXT4-fs error (device loop4): ext4_quota_enable:7127: comm syz.4.1792: Bad quota inode: 3, type: 0
[  128.179603][ T8369] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  128.194326][ T8369] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  128.203400][ T8391] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  128.286655][ T8400] FAULT_INJECTION: forcing a failure.
[  128.286655][ T8400] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  128.300019][ T8400] CPU: 0 UID: 0 PID: 8400 Comm: syz.0.1805 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  128.300135][ T8400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  128.300152][ T8400] Call Trace:
[  128.300160][ T8400]  <TASK>
[  128.300170][ T8400]  __dump_stack+0x1d/0x30
[  128.300197][ T8400]  dump_stack_lvl+0xe8/0x140
[  128.300221][ T8400]  dump_stack+0x15/0x1b
[  128.300241][ T8400]  should_fail_ex+0x265/0x280
[  128.300314][ T8400]  should_fail_alloc_page+0xf2/0x100
[  128.300346][ T8400]  __alloc_frozen_pages_noprof+0xff/0x360
[  128.300409][ T8400]  alloc_pages_mpol+0xb3/0x250
[  128.300447][ T8400]  alloc_pages_noprof+0x90/0x130
[  128.300483][ T8400]  __pud_alloc+0x47/0x4c0
[  128.300509][ T8400]  handle_mm_fault+0x1882/0x2be0
[  128.300565][ T8400]  ? __rcu_read_unlock+0x4f/0x70
[  128.300595][ T8400]  do_user_addr_fault+0x3fe/0x1090
[  128.300661][ T8400]  ? __rcu_read_unlock+0x4f/0x70
[  128.300688][ T8400]  exc_page_fault+0x62/0xa0
[  128.300723][ T8400]  asm_exc_page_fault+0x26/0x30
[  128.300777][ T8400] RIP: 0010:__put_user_4+0xd/0x20
[  128.300819][ T8400] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 c7 77 01 00 90 90 90 90 90 90 90 90 90 90
[  128.300836][ T8400] RSP: 0018:ffffc900115dbe78 EFLAGS: 00050206
[  128.300854][ T8400] RAX: 0000000000000004 RBX: 0000000000000000 RCX: 0000200000000000
[  128.300869][ T8400] RDX: ffff88811a2330c0 RSI: 0000000000000005 RDI: 0000000000000000
[  128.300883][ T8400] RBP: 0000000000000004 R08: 0001ffff86848a7f R09: 0000000000000000
[  128.300957][ T8400] R10: 000188811ee59440 R11: 000188811ee59447 R12: 0000200000000000
[  128.301014][ T8400] R13: 0000000000000000 R14: 0000000000000018 R15: 0000000000000000
[  128.301039][ T8400]  __sys_socketpair+0xa6/0x430
[  128.301073][ T8400]  ? ksys_write+0x192/0x1a0
[  128.301097][ T8400]  __x64_sys_socketpair+0x52/0x60
[  128.301185][ T8400]  x64_sys_call+0x23f2/0x2fb0
[  128.301209][ T8400]  do_syscall_64+0xd2/0x200
[  128.301231][ T8400]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  128.301265][ T8400]  ? clear_bhb_loop+0x40/0x90
[  128.301310][ T8400]  ? clear_bhb_loop+0x40/0x90
[  128.301331][ T8400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.301371][ T8400] RIP: 0033:0x7fa926c3e929
[  128.301389][ T8400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.301412][ T8400] RSP: 002b:00007fa9252a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  128.301434][ T8400] RAX: ffffffffffffffda RBX: 00007fa926e65fa0 RCX: 00007fa926c3e929
[  128.301531][ T8400] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000018
[  128.301546][ T8400] RBP: 00007fa9252a7090 R08: 0000000000000000 R09: 0000000000000000
[  128.301561][ T8400] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  128.301575][ T8400] R13: 0000000000000001 R14: 00007fa926e65fa0 R15: 00007fff293423c8
[  128.301598][ T8400]  </TASK>
[  128.661533][ T3395] hid-generic 0000:0000:0000.0044: unknown main item tag 0x0
[  128.674545][ T8416] loop3: detected capacity change from 0 to 1024
[  128.682587][ T8416] EXT4-fs: Ignoring removed nomblk_io_submit option
[  128.689603][ T3395] hid-generic 0000:0000:0000.0044: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  128.700194][ T8416] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  128.743662][ T8416] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.1810' sets config #0
[  128.754133][ T8416] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.1810' sets config #1
[  128.797289][ T8425] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  128.832759][ T8430] xt_CT: You must specify a L4 protocol and not use inversions on it
[  128.924822][ T8432] netlink: 296 bytes leftover after parsing attributes in process `syz.4.1818'.
[  128.937356][ T8432] loop4: detected capacity change from 0 to 128
[  128.973818][ T8432] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF
[  128.982649][ T8432] FAT-fs (loop4): Filesystem has been set read-only
[  128.986812][   T36] hid-generic 0000:0000:0000.0045: unknown main item tag 0x0
[  128.996830][ T8452] loop0: detected capacity change from 0 to 1024
[  128.997450][   T36] hid-generic 0000:0000:0000.0045: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  129.013759][ T8452] EXT4-fs: Ignoring removed nomblk_io_submit option
[  129.021350][ T8452] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  129.035157][ T8452] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1827' sets config #0
[  129.045110][ T8452] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1827' sets config #1
[  129.062850][ T8457] loop4: detected capacity change from 0 to 256
[  129.070258][ T8457] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.078593][ T8457] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.085425][ T8457] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.092315][ T8457] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.099432][ T8457] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.106607][ T8457] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.113589][ T8457] FAT-fs (loop4): FAT read failed (blocknr 1281)
[  129.120521][ T8457] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.129043][ T8461] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  129.186588][ T8467] loop4: detected capacity change from 0 to 1024
[  129.193748][ T8467] EXT4-fs: Ignoring removed bh option
[  129.200242][ T8467] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  129.202599][ T8469] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1834'.
[  129.212551][ T8467] EXT4-fs error (device loop4): ext4_quota_enable:7124: comm syz.4.1833: inode #2304: comm syz.4.1833: iget: illegal inode #
[  129.220326][ T8469] IPVS: Error joining to the multicast group
[  129.234291][ T8467] EXT4-fs (loop4): Remounting filesystem read-only
[  129.245461][ T8467] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  129.261969][ T8467] EXT4-fs (loop4): mount failed
[  129.279203][ T8472] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1835'.
[  129.288387][ T8472] IPVS: Error joining to the multicast group
[  129.440657][ T8481] hub 4-0:1.0: USB hub found
[  129.445487][ T8481] hub 4-0:1.0: 8 ports detected
[  129.483903][ T8487] loop4: detected capacity change from 0 to 256
[  129.491762][ T8487] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.500596][ T8487] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.507694][ T8487] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.514495][ T8487] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.522107][ T8487] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.529042][ T8487] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.535846][ T8487] FAT-fs (loop4): FAT read failed (blocknr 1281)
[  129.542470][ T8487] FAT-fs (loop4): Directory bread(block 1285) failed
[  129.571748][ T8489] hub 4-0:1.0: USB hub found
[  129.576554][ T8489] hub 4-0:1.0: 8 ports detected
[  129.610521][ T8495] loop0: detected capacity change from 0 to 128
[  129.621953][ T8491] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  129.746756][ T8504] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1848'.
[  129.905062][ T8518] loop3: detected capacity change from 0 to 256
[  129.925770][ T8520] loop2: detected capacity change from 0 to 1024
[  129.935411][ T8520] EXT4-fs: Ignoring removed orlov option
[  129.943827][ T8518] FAT-fs (loop3): Directory bread(block 1285) failed
[  129.954501][ T8520] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #4: comm syz.2.1855: iget: bad extended attribute block 4
[  130.149958][ T8518] FAT-fs (loop3): Directory bread(block 1285) failed
[  130.160724][ T8524] loop0: detected capacity change from 0 to 1024
[  130.167924][ T8518] FAT-fs (loop3): Directory bread(block 1285) failed
[  130.175594][ T8524] EXT4-fs: Ignoring removed nobh option
[  130.181233][ T8524] EXT4-fs: inline encryption not supported
[  130.187105][ T8524] EXT4-fs: Ignoring removed bh option
[  130.193773][ T8520] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1855: Bad quota inode: 4, type: 1
[  130.205608][ T8518] FAT-fs (loop3): Directory bread(block 1285) failed
[  130.215138][ T8525] FAT-fs (loop3): Directory bread(block 1285) failed
[  130.222477][ T8520] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  130.240685][ T8524] EXT4-fs mount: 58 callbacks suppressed
[  130.240705][ T8524] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.262033][ T8518] FAT-fs (loop3): Directory bread(block 1285) failed
[  130.269052][ T8518] FAT-fs (loop3): FAT read failed (blocknr 1281)
[  130.275682][ T8520] EXT4-fs (loop2): mount failed
[  130.282416][ T8518] FAT-fs (loop3): Directory bread(block 1285) failed
[  130.439252][ T8541] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1861'.
[  130.595319][ T8534] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1855'.
[  130.628757][ T8554] loop4: detected capacity change from 0 to 256
[  130.635790][ T8554] FAT-fs (loop4): Directory bread(block 1285) failed
[  130.643942][ T8554] FAT-fs (loop4): Directory bread(block 1285) failed
[  130.651646][ T8554] FAT-fs (loop4): Directory bread(block 1285) failed
[  130.659035][ T8554] FAT-fs (loop4): Directory bread(block 1285) failed
[  130.666309][ T8554] FAT-fs (loop4): Directory bread(block 1285) failed
[  130.673220][ T8554] FAT-fs (loop4): Directory bread(block 1285) failed
[  130.680955][ T8554] FAT-fs (loop4): FAT read failed (blocknr 1281)
[  130.688880][ T8554] FAT-fs (loop4): Directory bread(block 1285) failed
[  130.784904][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.839798][ T8561] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1872'.
[  131.187159][ T8569] loop1: detected capacity change from 0 to 1024
[  131.212576][ T8569] EXT4-fs: Ignoring removed bh option
[  131.254669][ T8573] netlink: 'syz.2.1876': attribute type 21 has an invalid length.
[  131.262987][ T8569] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  131.273677][ T8573] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1876'.
[  131.287147][ T8569] EXT4-fs error (device loop1): ext4_quota_enable:7124: comm syz.1.1874: inode #2304: comm syz.1.1874: iget: illegal inode #
[  131.303178][ T8569] EXT4-fs (loop1): Remounting filesystem read-only
[  131.309853][ T8569] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  131.327051][ T8569] EXT4-fs (loop1): mount failed
[  131.345667][ T8577] loop0: detected capacity change from 0 to 512
[  131.734168][   T29] kauditd_printk_skb: 1230 callbacks suppressed
[  131.734185][   T29] audit: type=1326 audit(1750000224.356:11999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8590 comm="syz.3.1881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f914d40d290 code=0x7ffc0000
[  131.765906][ T8591] FAULT_INJECTION: forcing a failure.
[  131.765906][ T8591] name failslab, interval 1, probability 0, space 0, times 0
[  131.778648][ T8591] CPU: 1 UID: 0 PID: 8591 Comm: syz.3.1881 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  131.778676][ T8591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  131.778688][ T8591] Call Trace:
[  131.778735][ T8591]  <TASK>
[  131.778745][ T8591]  __dump_stack+0x1d/0x30
[  131.778768][ T8591]  dump_stack_lvl+0xe8/0x140
[  131.778786][ T8591]  dump_stack+0x15/0x1b
[  131.778835][ T8591]  should_fail_ex+0x265/0x280
[  131.778866][ T8591]  should_failslab+0x8c/0xb0
[  131.778892][ T8591]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  131.778959][ T8591]  ? cond_bools_copy+0x30/0x80
[  131.779055][ T8591]  ? __pfx_cond_bools_destroy+0x10/0x10
[  131.779092][ T8591]  kmemdup_noprof+0x2b/0x70
[  131.779122][ T8591]  ? __pfx_cond_bools_destroy+0x10/0x10
[  131.779215][ T8591]  cond_bools_copy+0x30/0x80
[  131.779241][ T8591]  ? __pfx_cond_bools_destroy+0x10/0x10
[  131.779272][ T8591]  hashtab_duplicate+0x11b/0x360
[  131.779304][ T8591]  ? __pfx_cond_bools_copy+0x10/0x10
[  131.779340][ T8591]  cond_policydb_dup+0xd2/0x4e0
[  131.779371][ T8591]  security_set_bools+0xa0/0x340
[  131.779415][ T8591]  sel_commit_bools_write+0x1ea/0x270
[  131.779460][ T8591]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  131.779553][ T8591]  vfs_write+0x269/0x8e0
[  131.779667][ T8591]  ? __cond_resched+0x4e/0x90
[  131.779700][ T8591]  ksys_write+0xda/0x1a0
[  131.779724][ T8591]  __x64_sys_write+0x40/0x50
[  131.779771][ T8591]  x64_sys_call+0x2cdd/0x2fb0
[  131.779797][ T8591]  do_syscall_64+0xd2/0x200
[  131.779814][ T8591]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  131.779839][ T8591]  ? clear_bhb_loop+0x40/0x90
[  131.779900][ T8591]  ? clear_bhb_loop+0x40/0x90
[  131.779937][ T8591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.780038][ T8591] RIP: 0033:0x7f914d40e929
[  131.780057][ T8591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.780078][ T8591] RSP: 002b:00007f914ba77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  131.780097][ T8591] RAX: ffffffffffffffda RBX: 00007f914d635fa0 RCX: 00007f914d40e929
[  131.780114][ T8591] RDX: 0000000000000003 RSI: 0000200000000800 RDI: 0000000000000006
[  131.780130][ T8591] RBP: 00007f914ba77090 R08: 0000000000000000 R09: 0000000000000000
[  131.780215][ T8591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  131.780293][ T8591] R13: 0000000000000000 R14: 00007f914d635fa0 R15: 00007fff893e3398
[  131.780313][ T8591]  </TASK>
[  132.029537][   T29] audit: type=1326 audit(1750000224.576:12000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8590 comm="syz.3.1881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f914d40d3df code=0x7ffc0000
[  132.053201][   T29] audit: type=1326 audit(1750000224.576:12001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8590 comm="syz.3.1881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  132.076700][   T29] audit: type=1326 audit(1750000224.746:12002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8590 comm="syz.3.1881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f914d40d33c code=0x7ffc0000
[  132.100257][   T29] audit: type=1326 audit(1750000224.746:12003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8590 comm="syz.3.1881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f914d40d3df code=0x7ffc0000
[  132.123878][   T29] audit: type=1326 audit(1750000224.746:12004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8590 comm="syz.3.1881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f914d40d58a code=0x7ffc0000
[  132.147266][   T29] audit: type=1326 audit(1750000224.746:12005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8590 comm="syz.3.1881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  132.171254][   T29] audit: type=1326 audit(1750000224.746:12006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8590 comm="syz.3.1881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  132.199238][ T8597] hub 4-0:1.0: USB hub found
[  132.206291][ T8597] hub 4-0:1.0: 8 ports detected
[  132.240070][ T3409] hid-generic 0000:0000:0000.0046: unknown main item tag 0x0
[  132.257080][   T29] audit: type=1326 audit(1750000225.066:12007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8603 comm="syz.2.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  132.293253][ T8602] loop4: detected capacity change from 0 to 1024
[  132.301799][ T3409] hid-generic 0000:0000:0000.0046: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  132.311443][ T8602] EXT4-fs: Ignoring removed nomblk_io_submit option
[  132.320974][   T29] audit: type=1326 audit(1750000225.086:12008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8603 comm="syz.2.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  132.348880][ T8602] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  132.396652][ T8602] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.421567][ T8612] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  132.457176][ T8602] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1884' sets config #0
[  132.485877][ T8602] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1884' sets config #1
[  132.514385][ T8605] loop2: detected capacity change from 0 to 512
[  132.526375][ T8605] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  132.544060][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.581021][ T8605] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.603062][ T8629] loop1: detected capacity change from 0 to 128
[  132.610474][ T8605] ext4 filesystem being mounted at /388/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.621618][ T8605] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.632628][ T8632] loop3: detected capacity change from 0 to 164
[  132.639611][ T8632] iso9660: Bad value for 'block'
[  132.648531][ T8632] lo speed is unknown, defaulting to 1000
[  132.654340][ T8632] lo speed is unknown, defaulting to 1000
[  132.654616][ T8632] lo speed is unknown, defaulting to 1000
[  132.667315][ T8632] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  132.674943][ T8632] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  132.698222][ T8632] lo speed is unknown, defaulting to 1000
[  132.709219][ T8632] lo speed is unknown, defaulting to 1000
[  132.721663][ T8635] netlink: 'syz.3.1892': attribute type 21 has an invalid length.
[  132.730746][ T8632] lo speed is unknown, defaulting to 1000
[  132.737071][ T8632] lo speed is unknown, defaulting to 1000
[  132.742967][ T8635] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1892'.
[  132.752159][ T8632] lo speed is unknown, defaulting to 1000
[  132.839442][ T8644] hub 4-0:1.0: USB hub found
[  132.844284][ T8644] hub 4-0:1.0: 8 ports detected
[  133.283652][ T8665] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  133.452070][ T8679] FAULT_INJECTION: forcing a failure.
[  133.452070][ T8679] name failslab, interval 1, probability 0, space 0, times 0
[  133.464907][ T8679] CPU: 0 UID: 0 PID: 8679 Comm: syz.0.1914 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  133.464939][ T8679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  133.464969][ T8679] Call Trace:
[  133.464988][ T8679]  <TASK>
[  133.464998][ T8679]  __dump_stack+0x1d/0x30
[  133.465024][ T8679]  dump_stack_lvl+0xe8/0x140
[  133.465181][ T8679]  dump_stack+0x15/0x1b
[  133.465273][ T8679]  should_fail_ex+0x265/0x280
[  133.465380][ T8679]  ? __se_sys_mount+0xef/0x2e0
[  133.465398][ T8679]  should_failslab+0x8c/0xb0
[  133.465420][ T8679]  __kmalloc_cache_noprof+0x4c/0x320
[  133.465449][ T8679]  ? memdup_user+0x99/0xd0
[  133.465530][ T8679]  __se_sys_mount+0xef/0x2e0
[  133.465547][ T8679]  ? fput+0x8f/0xc0
[  133.465664][ T8679]  ? ksys_write+0x192/0x1a0
[  133.465687][ T8679]  __x64_sys_mount+0x67/0x80
[  133.465708][ T8679]  x64_sys_call+0xd36/0x2fb0
[  133.465735][ T8679]  do_syscall_64+0xd2/0x200
[  133.465789][ T8679]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  133.465828][ T8679]  ? clear_bhb_loop+0x40/0x90
[  133.465855][ T8679]  ? clear_bhb_loop+0x40/0x90
[  133.465883][ T8679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.465953][ T8679] RIP: 0033:0x7fa926c3e929
[  133.466012][ T8679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.466033][ T8679] RSP: 002b:00007fa9252a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  133.466052][ T8679] RAX: ffffffffffffffda RBX: 00007fa926e65fa0 RCX: 00007fa926c3e929
[  133.466065][ T8679] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 0000000000000000
[  133.466076][ T8679] RBP: 00007fa9252a7090 R08: 0000200000000140 R09: 0000000000000000
[  133.466130][ T8679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.466146][ T8679] R13: 0000000000000000 R14: 00007fa926e65fa0 R15: 00007fff293423c8
[  133.466170][ T8679]  </TASK>
[  133.722634][ T8685] xt_CT: You must specify a L4 protocol and not use inversions on it
[  133.755507][ T8690] loop3: detected capacity change from 0 to 512
[  133.773942][ T8690] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.787675][ T8690] ext4 filesystem being mounted at /412/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.805481][ T8695] loop2: detected capacity change from 0 to 256
[  133.917959][ T8696] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.1919: corrupted xattr block 19: overlapping e_value 
[  133.932635][ T8696] EXT4-fs (loop3): Remounting filesystem read-only
[  133.939215][ T8696] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  133.949082][ T8696] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[  134.089878][ T8699] loop2: detected capacity change from 0 to 8192
[  134.166556][ T8699]  loop2: p1 p2 p3
[  134.171369][ T8699] loop2: p2 start 3506442254 is beyond EOD, truncated
[  134.178206][ T8699] loop2: p3 size 49412 extends beyond EOD, truncated
[  134.206459][ T8701] loop1: detected capacity change from 0 to 256
[  134.232758][ T8701] FAT-fs (loop1): bogus number of FAT sectors
[  134.238923][ T8701] FAT-fs (loop1): Can't find a valid FAT filesystem
[  134.295108][ T8701] FAULT_INJECTION: forcing a failure.
[  134.295108][ T8701] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.308256][ T8701] CPU: 1 UID: 0 PID: 8701 Comm: syz.1.1921 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  134.308340][ T8701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  134.308366][ T8701] Call Trace:
[  134.308374][ T8701]  <TASK>
[  134.308382][ T8701]  __dump_stack+0x1d/0x30
[  134.308401][ T8701]  dump_stack_lvl+0xe8/0x140
[  134.308425][ T8701]  dump_stack+0x15/0x1b
[  134.308458][ T8701]  should_fail_ex+0x265/0x280
[  134.308496][ T8701]  should_fail+0xb/0x20
[  134.308656][ T8701]  should_fail_usercopy+0x1a/0x20
[  134.308711][ T8701]  _copy_from_user+0x1c/0xb0
[  134.308731][ T8701]  do_arpt_set_ctl+0x3aa/0x9a0
[  134.308828][ T8701]  ? kstrtoull+0x111/0x140
[  134.308863][ T8701]  ? _raw_spin_unlock_bh+0x36/0x40
[  134.308898][ T8701]  nf_setsockopt+0x199/0x1b0
[  134.308926][ T8701]  ip_setsockopt+0x102/0x110
[  134.308986][ T8701]  udp_setsockopt+0x99/0xb0
[  134.309023][ T8701]  sock_common_setsockopt+0x66/0x80
[  134.309056][ T8701]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  134.309083][ T8701]  __sys_setsockopt+0x181/0x200
[  134.309199][ T8701]  __x64_sys_setsockopt+0x64/0x80
[  134.309238][ T8701]  x64_sys_call+0x2bd5/0x2fb0
[  134.309318][ T8701]  do_syscall_64+0xd2/0x200
[  134.309367][ T8701]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  134.309400][ T8701]  ? clear_bhb_loop+0x40/0x90
[  134.309419][ T8701]  ? clear_bhb_loop+0x40/0x90
[  134.309441][ T8701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.309483][ T8701] RIP: 0033:0x7f7ba4f5e929
[  134.309497][ T8701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.309518][ T8701] RSP: 002b:00007f7ba35c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  134.309535][ T8701] RAX: ffffffffffffffda RBX: 00007f7ba5185fa0 RCX: 00007f7ba4f5e929
[  134.309551][ T8701] RDX: 0000000000000060 RSI: 0a02000000000000 RDI: 0000000000000003
[  134.309566][ T8701] RBP: 00007f7ba35c7090 R08: 0000000000000438 R09: 0000000000000000
[  134.309620][ T8701] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.309677][ T8701] R13: 0000000000000000 R14: 00007f7ba5185fa0 R15: 00007ffd7469fd28
[  134.309699][ T8701]  </TASK>
[  134.597595][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.642465][ T8710] loop1: detected capacity change from 0 to 256
[  134.652579][ T8710] FAT-fs (loop1): bogus number of FAT sectors
[  134.658748][ T8710] FAT-fs (loop1): Can't find a valid FAT filesystem
[  134.797977][ T8728] loop2: detected capacity change from 0 to 512
[  134.805965][ T8728] EXT4-fs error (device loop2): ext4_iget_extra_inode:5035: inode #15: comm syz.2.1931: corrupted in-inode xattr: invalid ea_ino
[  134.820314][ T8728] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.1931: couldn't read orphan inode 15 (err -117)
[  134.833169][ T8728] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.859204][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.913745][ T8731] loop2: detected capacity change from 0 to 8192
[  134.920573][ T8731] vfat: Unknown parameter ''
[  134.978920][ T8735] FAULT_INJECTION: forcing a failure.
[  134.978920][ T8735] name failslab, interval 1, probability 0, space 0, times 0
[  134.991645][ T8735] CPU: 1 UID: 0 PID: 8735 Comm: syz.2.1935 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  134.991681][ T8735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  134.991709][ T8735] Call Trace:
[  134.991727][ T8735]  <TASK>
[  134.991734][ T8735]  __dump_stack+0x1d/0x30
[  134.991753][ T8735]  dump_stack_lvl+0xe8/0x140
[  134.991772][ T8735]  dump_stack+0x15/0x1b
[  134.991792][ T8735]  should_fail_ex+0x265/0x280
[  134.991831][ T8735]  should_failslab+0x8c/0xb0
[  134.991932][ T8735]  kmem_cache_alloc_node_noprof+0x57/0x320
[  134.992030][ T8735]  ? __alloc_skb+0x101/0x320
[  134.992088][ T8735]  __alloc_skb+0x101/0x320
[  134.992122][ T8735]  ? audit_log_start+0x365/0x6c0
[  134.992153][ T8735]  audit_log_start+0x380/0x6c0
[  134.992195][ T8735]  audit_seccomp+0x48/0x100
[  134.992229][ T8735]  ? __seccomp_filter+0x68c/0x10d0
[  134.992259][ T8735]  __seccomp_filter+0x69d/0x10d0
[  134.992345][ T8735]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  134.992364][ T8735]  ? vfs_write+0x75e/0x8e0
[  134.992410][ T8735]  __secure_computing+0x82/0x150
[  134.992452][ T8735]  syscall_trace_enter+0xcf/0x1e0
[  134.992479][ T8735]  do_syscall_64+0xac/0x200
[  134.992498][ T8735]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  134.992522][ T8735]  ? clear_bhb_loop+0x40/0x90
[  134.992583][ T8735]  ? clear_bhb_loop+0x40/0x90
[  134.992604][ T8735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.992625][ T8735] RIP: 0033:0x7f16e15be929
[  134.992643][ T8735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.992666][ T8735] RSP: 002b:00007f16dfc27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  134.992729][ T8735] RAX: ffffffffffffffda RBX: 00007f16e17e5fa0 RCX: 00007f16e15be929
[  134.992741][ T8735] RDX: 0000000000000006 RSI: 0000000000000407 RDI: 0000000000000008
[  134.992752][ T8735] RBP: 00007f16dfc27090 R08: 0000000000000000 R09: 0000000000000000
[  134.992764][ T8735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.992778][ T8735] R13: 0000000000000000 R14: 00007f16e17e5fa0 R15: 00007ffdf2357f98
[  134.992798][ T8735]  </TASK>
[  135.236024][ T8744] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1937'.
[  135.245265][ T8744] IPVS: Error joining to the multicast group
[  135.276222][ T8750] ipip0: entered promiscuous mode
[  135.290023][ T8752] FAULT_INJECTION: forcing a failure.
[  135.290023][ T8752] name failslab, interval 1, probability 0, space 0, times 0
[  135.302819][ T8752] CPU: 1 UID: 0 PID: 8752 Comm: syz.4.1941 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  135.302846][ T8752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  135.302858][ T8752] Call Trace:
[  135.302864][ T8752]  <TASK>
[  135.302890][ T8752]  __dump_stack+0x1d/0x30
[  135.302916][ T8752]  dump_stack_lvl+0xe8/0x140
[  135.303004][ T8752]  dump_stack+0x15/0x1b
[  135.303027][ T8752]  should_fail_ex+0x265/0x280
[  135.303068][ T8752]  should_failslab+0x8c/0xb0
[  135.303097][ T8752]  kmem_cache_alloc_noprof+0x50/0x310
[  135.303186][ T8752]  ? audit_log_start+0x365/0x6c0
[  135.303229][ T8752]  audit_log_start+0x365/0x6c0
[  135.303328][ T8752]  audit_seccomp+0x48/0x100
[  135.303359][ T8752]  ? __seccomp_filter+0x68c/0x10d0
[  135.303389][ T8752]  __seccomp_filter+0x69d/0x10d0
[  135.303421][ T8752]  ? __list_add_valid_or_report+0x38/0xe0
[  135.303451][ T8752]  ? free_frozen_page_commit+0x6f/0x2a0
[  135.303612][ T8752]  __secure_computing+0x82/0x150
[  135.303635][ T8752]  syscall_trace_enter+0xcf/0x1e0
[  135.303665][ T8752]  do_syscall_64+0xac/0x200
[  135.303687][ T8752]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  135.303719][ T8752]  ? clear_bhb_loop+0x40/0x90
[  135.303748][ T8752]  ? clear_bhb_loop+0x40/0x90
[  135.303773][ T8752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.303800][ T8752] RIP: 0033:0x7f889399d33c
[  135.303819][ T8752] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  135.303843][ T8752] RSP: 002b:00007f8892007030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  135.303884][ T8752] RAX: ffffffffffffffda RBX: 00007f8893bc5fa0 RCX: 00007f889399d33c
[  135.303901][ T8752] RDX: 000000000000000f RSI: 00007f88920070a0 RDI: 0000000000000005
[  135.303916][ T8752] RBP: 00007f8892007090 R08: 0000000000000000 R09: 0000000000000000
[  135.304092][ T8752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.304108][ T8752] R13: 0000000000000000 R14: 00007f8893bc5fa0 R15: 00007ffc55d5df98
[  135.304131][ T8752]  </TASK>
[  135.526620][ T8758] program syz.4.1944 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  135.537099][ T8758] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  135.574788][ T8762] loop4: detected capacity change from 0 to 512
[  135.584469][ T8762] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  135.604678][ T8760] netlink: 596 bytes leftover after parsing attributes in process `+}[@'.
[  135.632719][ T8762] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  135.661468][ T8767] hub 4-0:1.0: USB hub found
[  135.666547][ T8767] hub 4-0:1.0: 8 ports detected
[  135.699967][ T3315] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  135.736110][ T8777] syzkaller0: entered promiscuous mode
[  135.741929][ T8777] syzkaller0: entered allmulticast mode
[  135.772568][ T8773] loop1: detected capacity change from 0 to 8192
[  135.782160][ T8782] loop4: detected capacity change from 0 to 512
[  135.792883][ T8782] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  135.797444][ T8785] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1953'.
[  135.814854][ T8785] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1953'.
[  135.827902][ T8785] ipt_REJECT: TCP_RESET invalid for non-tcp
[  135.948644][ T8791] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1955'.
[  136.028170][ T8792] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  136.279067][ T8796] netlink: 2048 bytes leftover after parsing attributes in process `syz.0.1956'.
[  136.288345][ T8796] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1956'.
[  136.461108][ T8799] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1956'.
[  136.529866][ T8802] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1956'.
[  136.774356][   T29] kauditd_printk_skb: 299 callbacks suppressed
[  136.774372][   T29] audit: type=1326 audit(1750000229.536:12302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  136.804395][   T29] audit: type=1326 audit(1750000229.536:12303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  136.827936][   T29] audit: type=1326 audit(1750000229.546:12304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  136.851626][   T29] audit: type=1326 audit(1750000229.546:12305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  136.875152][   T29] audit: type=1326 audit(1750000229.546:12306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  136.898780][   T29] audit: type=1326 audit(1750000229.546:12307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  136.922552][   T29] audit: type=1326 audit(1750000229.546:12308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8804 comm="syz.2.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  136.974607][ T3315] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  137.030436][   T29] audit: type=1326 audit(1750000229.836:12309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8819 comm="syz.1.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  137.054150][   T29] audit: type=1326 audit(1750000229.836:12310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8819 comm="syz.1.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  137.091110][   T29] audit: type=1326 audit(1750000229.886:12311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8819 comm="syz.1.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ba4f5e929 code=0x7ffc0000
[  137.142079][ T8826] xt_CT: You must specify a L4 protocol and not use inversions on it
[  137.189103][ T8832] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1969'.
[  137.217063][ T8834] loop1: detected capacity change from 0 to 128
[  137.369804][ T8843] loop0: detected capacity change from 0 to 512
[  137.429095][ T8842] FAULT_INJECTION: forcing a failure.
[  137.429095][ T8842] name failslab, interval 1, probability 0, space 0, times 0
[  137.441794][ T8842] CPU: 0 UID: 0 PID: 8842 Comm: syz.4.1972 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  137.441823][ T8842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  137.441851][ T8842] Call Trace:
[  137.441860][ T8842]  <TASK>
[  137.441868][ T8842]  __dump_stack+0x1d/0x30
[  137.441892][ T8842]  dump_stack_lvl+0xe8/0x140
[  137.441916][ T8842]  dump_stack+0x15/0x1b
[  137.441935][ T8842]  should_fail_ex+0x265/0x280
[  137.441973][ T8842]  should_failslab+0x8c/0xb0
[  137.442066][ T8842]  __kmalloc_noprof+0xa5/0x3e0
[  137.442096][ T8842]  ? bpf_test_init+0xa9/0x160
[  137.442135][ T8842]  bpf_test_init+0xa9/0x160
[  137.442167][ T8842]  bpf_prog_test_run_skb+0x144/0xbd0
[  137.442216][ T8842]  ? __rcu_read_unlock+0x4f/0x70
[  137.442239][ T8842]  ? __fget_files+0x184/0x1c0
[  137.442298][ T8842]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  137.442391][ T8842]  bpf_prog_test_run+0x22a/0x390
[  137.442410][ T8842]  __sys_bpf+0x3dc/0x790
[  137.442451][ T8842]  __x64_sys_bpf+0x41/0x50
[  137.442552][ T8842]  x64_sys_call+0x2478/0x2fb0
[  137.442593][ T8842]  do_syscall_64+0xd2/0x200
[  137.442654][ T8842]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  137.442680][ T8842]  ? clear_bhb_loop+0x40/0x90
[  137.442835][ T8842]  ? clear_bhb_loop+0x40/0x90
[  137.442858][ T8842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.442877][ T8842] RIP: 0033:0x7f889399e929
[  137.442890][ T8842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.442952][ T8842] RSP: 002b:00007f8892007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  137.442974][ T8842] RAX: ffffffffffffffda RBX: 00007f8893bc5fa0 RCX: 00007f889399e929
[  137.442989][ T8842] RDX: 000000000000001e RSI: 0000200000000080 RDI: 000000000000000a
[  137.443038][ T8842] RBP: 00007f8892007090 R08: 0000000000000000 R09: 0000000000000000
[  137.443071][ T8842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.443086][ T8842] R13: 0000000000000000 R14: 00007f8893bc5fa0 R15: 00007ffc55d5df98
[  137.443106][ T8842]  </TASK>
[  137.722343][ T8847] loop4: detected capacity change from 0 to 512
[  137.747793][ T8847] EXT4-fs: quotafile must be on filesystem root
[  137.819700][ T8847] loop4: detected capacity change from 0 to 512
[  137.908173][ T8840] syzkaller0: entered promiscuous mode
[  137.913709][ T8840] syzkaller0: entered allmulticast mode
[  137.927862][ T8853] syz2: rxe_newlink: already configured on veth0_to_bond
[  138.086440][ T8859] loop2: detected capacity change from 0 to 1024
[  138.093899][ T8859] EXT4-fs: Ignoring removed bh option
[  138.267965][ T8847] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  138.278880][ T8859] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  138.299910][ T8859] EXT4-fs error (device loop2): ext4_quota_enable:7124: comm syz.2.1979: inode #2304: comm syz.2.1979: iget: illegal inode #
[  138.315081][ T8843] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.327721][ T8843] ext4 filesystem being mounted at /422/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  138.338784][ T8843] FAULT_INJECTION: forcing a failure.
[  138.338784][ T8843] name failslab, interval 1, probability 0, space 0, times 0
[  138.351487][ T8843] CPU: 0 UID: 0 PID: 8843 Comm: syz.0.1967 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  138.351521][ T8843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  138.351536][ T8843] Call Trace:
[  138.351543][ T8843]  <TASK>
[  138.351550][ T8843]  __dump_stack+0x1d/0x30
[  138.351571][ T8843]  dump_stack_lvl+0xe8/0x140
[  138.351589][ T8843]  dump_stack+0x15/0x1b
[  138.351673][ T8843]  should_fail_ex+0x265/0x280
[  138.351712][ T8843]  should_failslab+0x8c/0xb0
[  138.351825][ T8843]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  138.351859][ T8843]  ? __d_alloc+0x3d/0x350
[  138.351993][ T8843]  __d_alloc+0x3d/0x350
[  138.352015][ T8843]  ? _raw_spin_unlock+0x26/0x50
[  138.352040][ T8843]  d_alloc_parallel+0x53/0xc40
[  138.352083][ T8843]  ? __rcu_read_unlock+0x4f/0x70
[  138.352111][ T8843]  ? __d_lookup+0x316/0x340
[  138.352160][ T8843]  path_openat+0x6b5/0x2170
[  138.352195][ T8843]  ? trace_reschedule_exit+0xd/0xc0
[  138.352232][ T8843]  do_filp_open+0x109/0x230
[  138.352269][ T8843]  do_sys_openat2+0xa6/0x110
[  138.352310][ T8843]  __x64_sys_openat+0xf2/0x120
[  138.352346][ T8843]  x64_sys_call+0x1af/0x2fb0
[  138.352421][ T8843]  do_syscall_64+0xd2/0x200
[  138.352444][ T8843]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  138.352472][ T8843]  ? clear_bhb_loop+0x40/0x90
[  138.352531][ T8843]  ? clear_bhb_loop+0x40/0x90
[  138.352608][ T8843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.352711][ T8843] RIP: 0033:0x7fa926c3e929
[  138.352729][ T8843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.352751][ T8843] RSP: 002b:00007fa925265038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  138.352775][ T8843] RAX: ffffffffffffffda RBX: 00007fa926e66160 RCX: 00007fa926c3e929
[  138.352791][ T8843] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c
[  138.352867][ T8843] RBP: 00007fa925265090 R08: 0000000000000000 R09: 0000000000000000
[  138.352883][ T8843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.352899][ T8843] R13: 0000000000000000 R14: 00007fa926e66160 R15: 00007fff293423c8
[  138.352934][ T8843]  </TASK>
[  138.573445][ T8847] EXT4-fs (loop4): 1 orphan inode deleted
[  138.579325][ T8847] EXT4-fs (loop4): 1 truncate cleaned up
[  138.585347][ T8859] EXT4-fs (loop2): Remounting filesystem read-only
[  138.591890][ T8859] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  138.609145][ T8847] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.621535][ T8859] EXT4-fs (loop2): mount failed
[  138.698531][ T8873] xt_CT: You must specify a L4 protocol and not use inversions on it
[  138.741599][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.850896][ T8877] vhci_hcd: invalid port number 96
[  138.856434][ T8877] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  139.260406][ T8898] lo speed is unknown, defaulting to 1000
[  139.609086][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.627140][ T8905] loop2: detected capacity change from 0 to 128
[  139.661548][ T8907] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  139.729324][ T8917] netlink: 202920 bytes leftover after parsing attributes in process `syz.4.2003'.
[  139.738920][ T8917] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  139.761084][ T8917] loop4: detected capacity change from 0 to 512
[  139.771888][ T8917] journal_path: Non-blockdev passed as './bus'
[  139.778358][ T8917] EXT4-fs: error: could not find journal device path
[  139.884490][ T8931] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=22 sclass=netlink_tcpdiag_socket pid=8931 comm=syz.4.2007
[  139.921331][ T8935] FAULT_INJECTION: forcing a failure.
[  139.921331][ T8935] name failslab, interval 1, probability 0, space 0, times 0
[  139.934043][ T8935] CPU: 0 UID: 0 PID: 8935 Comm: syz.0.2008 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  139.934075][ T8935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  139.934088][ T8935] Call Trace:
[  139.934143][ T8935]  <TASK>
[  139.934149][ T8935]  __dump_stack+0x1d/0x30
[  139.934170][ T8935]  dump_stack_lvl+0xe8/0x140
[  139.934194][ T8935]  dump_stack+0x15/0x1b
[  139.934215][ T8935]  should_fail_ex+0x265/0x280
[  139.934312][ T8935]  should_failslab+0x8c/0xb0
[  139.934339][ T8935]  kmem_cache_alloc_node_noprof+0x57/0x320
[  139.934369][ T8935]  ? __alloc_skb+0x101/0x320
[  139.934463][ T8935]  __alloc_skb+0x101/0x320
[  139.934503][ T8935]  netlink_alloc_large_skb+0xba/0xf0
[  139.934545][ T8935]  netlink_sendmsg+0x3cf/0x6b0
[  139.934573][ T8935]  ? __pfx_netlink_sendmsg+0x10/0x10
[  139.934643][ T8935]  __sock_sendmsg+0x142/0x180
[  139.934677][ T8935]  ____sys_sendmsg+0x31e/0x4e0
[  139.934731][ T8935]  ___sys_sendmsg+0x17b/0x1d0
[  139.934781][ T8935]  __x64_sys_sendmsg+0xd4/0x160
[  139.934805][ T8935]  x64_sys_call+0x2999/0x2fb0
[  139.934831][ T8935]  do_syscall_64+0xd2/0x200
[  139.934848][ T8935]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  139.934935][ T8935]  ? clear_bhb_loop+0x40/0x90
[  139.934964][ T8935]  ? clear_bhb_loop+0x40/0x90
[  139.934993][ T8935]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.935020][ T8935] RIP: 0033:0x7fa926c3e929
[  139.935039][ T8935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.935064][ T8935] RSP: 002b:00007fa9252a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  139.935112][ T8935] RAX: ffffffffffffffda RBX: 00007fa926e65fa0 RCX: 00007fa926c3e929
[  139.935129][ T8935] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  139.935226][ T8935] RBP: 00007fa9252a7090 R08: 0000000000000000 R09: 0000000000000000
[  139.935243][ T8935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.935259][ T8935] R13: 0000000000000000 R14: 00007fa926e65fa0 R15: 00007fff293423c8
[  139.935281][ T8935]  </TASK>
[  140.144823][ T8936] loop9: detected capacity change from 0 to 7
[  140.151187][ T8936] Buffer I/O error on dev loop9, logical block 0, async page read
[  140.159436][ T8936] Buffer I/O error on dev loop9, logical block 0, async page read
[  140.167489][ T8936]  loop9: unable to read partition table
[  140.173209][ T8936] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  140.173209][ T8936] 
U�������) failed (rc=-5)
[  140.192505][ T8936] loop3: detected capacity change from 0 to 512
[  140.204653][ T8938] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[  140.238420][ T8936] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.251136][ T8936] ext4 filesystem being mounted at /428/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  140.253164][ T8938] wireguard0: entered promiscuous mode
[  140.267220][ T8938] wireguard0: entered allmulticast mode
[  140.314902][ T8957] FAULT_INJECTION: forcing a failure.
[  140.314902][ T8957] name failslab, interval 1, probability 0, space 0, times 0
[  140.327692][ T8957] CPU: 1 UID: 0 PID: 8957 Comm: syz.0.2015 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  140.327728][ T8957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  140.327744][ T8957] Call Trace:
[  140.327750][ T8957]  <TASK>
[  140.327831][ T8957]  __dump_stack+0x1d/0x30
[  140.327849][ T8957]  dump_stack_lvl+0xe8/0x140
[  140.327906][ T8957]  dump_stack+0x15/0x1b
[  140.327920][ T8957]  should_fail_ex+0x265/0x280
[  140.328023][ T8957]  should_failslab+0x8c/0xb0
[  140.328045][ T8957]  __kmalloc_noprof+0xa5/0x3e0
[  140.328118][ T8957]  ? genl_family_rcv_msg_attrs_parse+0x75/0x190
[  140.328145][ T8957]  genl_family_rcv_msg_attrs_parse+0x75/0x190
[  140.328220][ T8957]  genl_family_rcv_msg_doit+0x48/0x1b0
[  140.328243][ T8957]  ? security_capable+0x83/0x90
[  140.328267][ T8957]  ? ns_capable+0x7d/0xb0
[  140.328285][ T8957]  genl_rcv_msg+0x422/0x460
[  140.328337][ T8957]  ? __pfx_ethnl_act_cable_test_tdr+0x10/0x10
[  140.328370][ T8957]  netlink_rcv_skb+0x123/0x220
[  140.328398][ T8957]  ? __pfx_genl_rcv_msg+0x10/0x10
[  140.328486][ T8957]  genl_rcv+0x28/0x40
[  140.328505][ T8957]  netlink_unicast+0x59e/0x670
[  140.328534][ T8957]  netlink_sendmsg+0x58b/0x6b0
[  140.328553][ T8957]  ? __pfx_netlink_sendmsg+0x10/0x10
[  140.328628][ T8957]  __sock_sendmsg+0x142/0x180
[  140.328658][ T8957]  ____sys_sendmsg+0x31e/0x4e0
[  140.328691][ T8957]  ___sys_sendmsg+0x17b/0x1d0
[  140.328743][ T8957]  __x64_sys_sendmsg+0xd4/0x160
[  140.328772][ T8957]  x64_sys_call+0x2999/0x2fb0
[  140.328800][ T8957]  do_syscall_64+0xd2/0x200
[  140.328818][ T8957]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  140.328842][ T8957]  ? clear_bhb_loop+0x40/0x90
[  140.328897][ T8957]  ? clear_bhb_loop+0x40/0x90
[  140.328956][ T8957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.329059][ T8957] RIP: 0033:0x7fa926c3e929
[  140.329134][ T8957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.329150][ T8957] RSP: 002b:00007fa9252a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  140.329166][ T8957] RAX: ffffffffffffffda RBX: 00007fa926e65fa0 RCX: 00007fa926c3e929
[  140.329177][ T8957] RDX: 0000000000000000 RSI: 0000200000001540 RDI: 0000000000000006
[  140.329187][ T8957] RBP: 00007fa9252a7090 R08: 0000000000000000 R09: 0000000000000000
[  140.329197][ T8957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.329208][ T8957] R13: 0000000000000000 R14: 00007fa926e65fa0 R15: 00007fff293423c8
[  140.329225][ T8957]  </TASK>
[  140.645256][ T8959] loop1: detected capacity change from 0 to 512
[  140.652324][ T8959] EXT4-fs: Ignoring removed oldalloc option
[  140.659948][ T8959] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  140.671244][ T8959] EXT4-fs (loop1): orphan cleanup on readonly fs
[  140.679128][ T8959] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2014: Failed to acquire dquot type 1
[  140.693252][ T8959] EXT4-fs (loop1): 1 truncate cleaned up
[  140.700255][ T8959] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  140.868756][ T8959] lo speed is unknown, defaulting to 1000
[  140.943146][ T8959] EXT4-fs error (device loop1): ext4_lookup:1791: inode #2: comm syz.1.2014: deleted inode referenced: 12
[  140.980719][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.520469][ T8980] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  141.560098][ T3395] hid-generic 0000:0000:0000.0047: unknown main item tag 0x0
[  141.571064][ T3395] hid-generic 0000:0000:0000.0047: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  141.597099][ T8982] loop3: detected capacity change from 0 to 1024
[  141.611084][ T8982] EXT4-fs: Ignoring removed nomblk_io_submit option
[  141.626678][ T8982] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  141.649712][ T8982] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.680397][ T8982] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2016' sets config #0
[  141.702276][ T8982] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2016' sets config #1
[  141.730931][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.808888][ T8990] loop3: detected capacity change from 0 to 512
[  141.853595][   T29] kauditd_printk_skb: 462 callbacks suppressed
[  141.853609][   T29] audit: type=1326 audit(1750000234.656:12772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8992 comm="syz.3.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  141.903618][   T29] audit: type=1326 audit(1750000234.686:12773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8992 comm="syz.3.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  141.927357][   T29] audit: type=1326 audit(1750000234.686:12774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8992 comm="syz.3.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  141.951192][   T29] audit: type=1326 audit(1750000234.686:12775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8992 comm="syz.3.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  141.974925][   T29] audit: type=1326 audit(1750000234.686:12776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8992 comm="syz.3.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  141.998820][   T29] audit: type=1326 audit(1750000234.686:12777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8992 comm="syz.3.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  142.022528][   T29] audit: type=1326 audit(1750000234.686:12778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8992 comm="syz.3.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  142.022598][   T29] audit: type=1326 audit(1750000234.686:12779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8992 comm="syz.3.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  142.022630][   T29] audit: type=1326 audit(1750000234.686:12780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8992 comm="syz.3.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  142.022664][   T29] audit: type=1326 audit(1750000234.696:12781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8992 comm="syz.3.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914d40e929 code=0x7ffc0000
[  142.089548][ T8995] loop3: detected capacity change from 0 to 512
[  142.089869][ T8995] EXT4-fs: Ignoring removed orlov option
[  142.134761][ T8995] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  142.162144][ T8995] EXT4-fs (loop3): orphan cleanup on readonly fs
[  142.162674][ T8995] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2028: bg 0: block 248: padding at end of block bitmap is not set
[  142.162902][ T8995] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2028: Failed to acquire dquot type 1
[  142.163380][ T8995] EXT4-fs (loop3): 1 truncate cleaned up
[  142.163888][ T8995] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  142.165140][ T8995] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2028'.
[  142.408037][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.521421][ T3395] hid-generic 0000:0000:0000.0048: unknown main item tag 0x0
[  142.534530][ T9017] loop1: detected capacity change from 0 to 1024
[  142.541554][ T9017] EXT4-fs: Ignoring removed nomblk_io_submit option
[  142.558508][ T3395] hid-generic 0000:0000:0000.0048: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  142.559269][ T9018] syzkaller0: entered promiscuous mode
[  142.573708][ T9018] syzkaller0: entered allmulticast mode
[  142.578831][ T9017] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  142.592493][ T9017] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.619032][ T9017] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.2036' sets config #0
[  142.629151][ T9017] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.2036' sets config #1
[  142.653073][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.754763][ T9032] 9pnet_fd: Insufficient options for proto=fd
[  142.761522][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.855442][ T9032] lo speed is unknown, defaulting to 1000
[  142.934471][ T9043] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[  142.972341][ T3409] hid-generic 0000:0000:0000.0049: unknown main item tag 0x0
[  142.980723][ T3409] hid-generic 0000:0000:0000.0049: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  142.996879][ T9047] loop3: detected capacity change from 0 to 1024
[  143.004083][ T9047] EXT4-fs: Ignoring removed nomblk_io_submit option
[  143.011918][ T9047] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  143.022864][ T9047] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.039688][ T9047] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2048' sets config #0
[  143.059108][ T9047] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2048' sets config #1
[  143.091897][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.251696][ T9065] hub 4-0:1.0: USB hub found
[  143.256744][ T9065] hub 4-0:1.0: 8 ports detected
[  143.280936][ T9074] loop1: detected capacity change from 0 to 512
[  143.290371][ T9074] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  143.314364][ T9074] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  143.322656][ T9074] System zones: 0-2, 18-18, 34-34
[  143.333332][ T9074] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.351970][ T9074] ext4 filesystem being mounted at /371/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.393554][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.415044][ T9082] loop1: detected capacity change from 0 to 512
[  143.422128][ T9082] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  143.433645][ T9082] EXT4-fs (loop1): 1 truncate cleaned up
[  143.440406][ T9082] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.473508][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.485431][ T9088] xt_CT: You must specify a L4 protocol and not use inversions on it
[  143.684074][ T9112] loop2: detected capacity change from 0 to 2048
[  143.693158][ T9112] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.721548][ T9106] loop0: detected capacity change from 0 to 8192
[  143.760345][ T9106] 9pnet_fd: Insufficient options for proto=fd
[  143.770042][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.902492][ T9116] lo speed is unknown, defaulting to 1000
[  144.122219][ T9118] loop9: detected capacity change from 0 to 7
[  144.144010][ T9118] Buffer I/O error on dev loop9, logical block 0, async page read
[  144.151936][ T9118] Buffer I/O error on dev loop9, logical block 0, async page read
[  144.159904][ T9118]  loop9: unable to read partition table
[  144.165573][ T9118] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  144.165573][ T9118] 
U�������) failed (rc=-5)
[  144.231324][ T9127] xt_CT: You must specify a L4 protocol and not use inversions on it
[  144.265635][ T9131] ipvlan2: entered promiscuous mode
[  144.271586][ T9131] bridge0: port 1(ipvlan2) entered blocking state
[  144.278159][ T9131] bridge0: port 1(ipvlan2) entered disabled state
[  144.284826][ T9131] ipvlan2: entered allmulticast mode
[  144.290256][ T9131] bridge0: entered allmulticast mode
[  144.296027][ T9131] ipvlan2: left allmulticast mode
[  144.301109][ T9131] bridge0: left allmulticast mode
[  144.329711][ T9138] loop0: detected capacity change from 0 to 128
[  144.336187][ T9130] syzkaller0: entered promiscuous mode
[  144.341683][ T9130] syzkaller0: entered allmulticast mode
[  144.419546][ T9145] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2080'.
[  144.448066][ T9145] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  144.986869][ T9156] xt_CT: You must specify a L4 protocol and not use inversions on it
[  145.431626][ T9167] lo speed is unknown, defaulting to 1000
[  145.699749][ T9177] loop1: detected capacity change from 0 to 128
[  145.724709][ T9181] delete_channel: no stack
[  145.733526][ T9181] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  145.745362][ T9181] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  145.754983][ T9181] 9pnet: p9_errstr2errno: server reported unknown error 
[  145.931620][ T9193] loop9: detected capacity change from 0 to 7
[  145.938433][ T9193] Buffer I/O error on dev loop9, logical block 0, async page read
[  145.946453][ T9193] Buffer I/O error on dev loop9, logical block 0, async page read
[  145.954369][ T9193]  loop9: unable to read partition table
[  145.960648][ T9193] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  145.960648][ T9193] 
U�������) failed (rc=-5)
[  146.012919][ T9196] syzkaller0: entered promiscuous mode
[  146.018489][ T9196] syzkaller0: entered allmulticast mode
[  146.033170][ T9200] FAULT_INJECTION: forcing a failure.
[  146.033170][ T9200] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.046481][ T9200] CPU: 0 UID: 0 PID: 9200 Comm: syz.0.2106 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  146.046546][ T9200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  146.046563][ T9200] Call Trace:
[  146.046570][ T9200]  <TASK>
[  146.046579][ T9200]  __dump_stack+0x1d/0x30
[  146.046648][ T9200]  dump_stack_lvl+0xe8/0x140
[  146.046724][ T9200]  dump_stack+0x15/0x1b
[  146.046739][ T9200]  should_fail_ex+0x265/0x280
[  146.046827][ T9200]  should_fail+0xb/0x20
[  146.046858][ T9200]  should_fail_usercopy+0x1a/0x20
[  146.046898][ T9200]  strncpy_from_user+0x25/0x230
[  146.046996][ T9200]  ? __kmalloc_cache_noprof+0x189/0x320
[  146.047036][ T9200]  __se_sys_memfd_create+0x1ff/0x590
[  146.047159][ T9200]  __x64_sys_memfd_create+0x31/0x40
[  146.047198][ T9200]  x64_sys_call+0x122f/0x2fb0
[  146.047224][ T9200]  do_syscall_64+0xd2/0x200
[  146.047251][ T9200]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  146.047357][ T9200]  ? clear_bhb_loop+0x40/0x90
[  146.047438][ T9200]  ? clear_bhb_loop+0x40/0x90
[  146.047478][ T9200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.047529][ T9200] RIP: 0033:0x7fa926c3e929
[  146.047548][ T9200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.047570][ T9200] RSP: 002b:00007fa9252a6d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  146.047593][ T9200] RAX: ffffffffffffffda RBX: 00000000000005c8 RCX: 00007fa926c3e929
[  146.047608][ T9200] RDX: 00007fa9252a6dec RSI: 0000000000000000 RDI: 00007fa926cc14cc
[  146.047676][ T9200] RBP: 0000200000000600 R08: 00007fa9252a6b07 R09: 0000000000000000
[  146.047688][ T9200] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[  146.047701][ T9200] R13: 00007fa9252a6dec R14: 00007fa9252a6df0 R15: 00007fff293423c8
[  146.047724][ T9200]  </TASK>
[  146.274483][ T9207] loop0: detected capacity change from 0 to 1024
[  146.283391][ T9207] EXT4-fs: Ignoring removed bh option
[  146.289784][ T9207] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  146.301606][ T9207] EXT4-fs error (device loop0): ext4_quota_enable:7124: comm syz.0.2109: inode #2304: comm syz.0.2109: iget: illegal inode #
[  146.314854][ T9207] EXT4-fs (loop0): Remounting filesystem read-only
[  146.321464][ T9207] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  146.356452][ T9207] EXT4-fs (loop0): mount failed
[  146.565107][ T9218] xt_CT: You must specify a L4 protocol and not use inversions on it
[  146.596029][ T9222] xt_CT: You must specify a L4 protocol and not use inversions on it
[  146.620986][ T9224] loop0: detected capacity change from 0 to 512
[  146.630963][ T9224] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.2116: corrupted in-inode xattr: invalid ea_ino
[  146.644763][ T9224] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.2116: couldn't read orphan inode 15 (err -117)
[  146.657151][ T9224] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.686789][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.707415][ T3663] hid-generic 0000:0000:0000.004A: unknown main item tag 0x0
[  146.720114][ T3663] hid-generic 0000:0000:0000.004A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  146.730313][ T9230] loop0: detected capacity change from 0 to 1024
[  146.737489][ T9230] EXT4-fs: Ignoring removed nomblk_io_submit option
[  146.747450][ T9230] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  146.762270][ T9230] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.781597][ T9230] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2118' sets config #0
[  146.783118][ T9234] syz2: rxe_newlink: already configured on veth0_to_bond
[  146.792177][ T9230] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2118' sets config #1
[  146.826695][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.842771][ T2961] hid-generic 0000:0000:0000.004B: unknown main item tag 0x0
[  146.845958][ T9239] loop9: detected capacity change from 0 to 7
[  146.856540][ T9237] loop3: detected capacity change from 0 to 1024
[  146.863396][ T9237] EXT4-fs: Ignoring removed nomblk_io_submit option
[  146.864662][ T9239] Buffer I/O error on dev loop9, logical block 0, async page read
[  146.870331][ T2961] hid-generic 0000:0000:0000.004B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  146.879148][ T9239] Buffer I/O error on dev loop9, logical block 0, async page read
[  146.895613][ T9239]  loop9: unable to read partition table
[  146.902471][ T9237] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  146.913400][ T9237] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.926926][ T9239] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  146.926926][ T9239] 
U�������) failed (rc=-5)
[  146.958055][ T9237] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2121' sets config #0
[  146.968602][ T9237] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2121' sets config #1
[  146.996840][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.024869][   T29] kauditd_printk_skb: 512 callbacks suppressed
[  147.024883][   T29] audit: type=1326 audit(1750000239.826:13292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9256 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  147.060491][   T29] audit: type=1326 audit(1750000239.836:13293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9256 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  147.084111][   T29] audit: type=1326 audit(1750000239.836:13294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9256 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  147.107987][   T29] audit: type=1326 audit(1750000239.836:13295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9256 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  147.131678][   T29] audit: type=1326 audit(1750000239.836:13296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9256 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  147.155575][   T29] audit: type=1326 audit(1750000239.836:13297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9256 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  147.180128][   T29] audit: type=1326 audit(1750000239.836:13298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9256 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  147.204775][   T29] audit: type=1326 audit(1750000239.836:13299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9256 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  147.228375][   T29] audit: type=1326 audit(1750000239.836:13300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9256 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  147.252025][   T29] audit: type=1326 audit(1750000239.836:13301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9256 comm="syz.2.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  147.285686][ T9267] FAULT_INJECTION: forcing a failure.
[  147.285686][ T9267] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  147.299006][ T9267] CPU: 0 UID: 0 PID: 9267 Comm: syz.2.2133 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  147.299113][ T9267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  147.299130][ T9267] Call Trace:
[  147.299139][ T9267]  <TASK>
[  147.299149][ T9267]  __dump_stack+0x1d/0x30
[  147.299177][ T9267]  dump_stack_lvl+0xe8/0x140
[  147.299204][ T9267]  dump_stack+0x15/0x1b
[  147.299266][ T9267]  should_fail_ex+0x265/0x280
[  147.299309][ T9267]  should_fail+0xb/0x20
[  147.299345][ T9267]  should_fail_usercopy+0x1a/0x20
[  147.299442][ T9267]  _copy_from_user+0x1c/0xb0
[  147.299469][ T9267]  do_ipv6_setsockopt+0x220/0x22e0
[  147.299497][ T9267]  ? _parse_integer+0x27/0x40
[  147.299545][ T9267]  ? kstrtoull+0x111/0x140
[  147.299579][ T9267]  ? __rcu_read_unlock+0x4f/0x70
[  147.299608][ T9267]  ? avc_has_perm_noaudit+0x1b1/0x200
[  147.299649][ T9267]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[  147.299712][ T9267]  ipv6_setsockopt+0x59/0x130
[  147.299738][ T9267]  rawv6_setsockopt+0x1d2/0x420
[  147.299833][ T9267]  sock_common_setsockopt+0x66/0x80
[  147.299930][ T9267]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  147.299964][ T9267]  __sys_setsockopt+0x181/0x200
[  147.300016][ T9267]  __x64_sys_setsockopt+0x64/0x80
[  147.300067][ T9267]  x64_sys_call+0x2bd5/0x2fb0
[  147.300095][ T9267]  do_syscall_64+0xd2/0x200
[  147.300119][ T9267]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  147.300174][ T9267]  ? clear_bhb_loop+0x40/0x90
[  147.300324][ T9267]  ? clear_bhb_loop+0x40/0x90
[  147.300347][ T9267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.300369][ T9267] RIP: 0033:0x7f16e15be929
[  147.300446][ T9267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.300471][ T9267] RSP: 002b:00007f16dfc27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  147.300496][ T9267] RAX: ffffffffffffffda RBX: 00007f16e17e5fa0 RCX: 00007f16e15be929
[  147.300511][ T9267] RDX: 0000000000000016 RSI: 0000000000000029 RDI: 0000000000000004
[  147.300524][ T9267] RBP: 00007f16dfc27090 R08: 0000000000000004 R09: 0000000000000000
[  147.300536][ T9267] R10: 0000200000fcb000 R11: 0000000000000246 R12: 0000000000000001
[  147.300583][ T9267] R13: 0000000000000000 R14: 00007f16e17e5fa0 R15: 00007ffdf2357f98
[  147.300610][ T9267]  </TASK>
[  147.558830][ T9269] loop1: detected capacity change from 0 to 1024
[  147.576706][ T9269] EXT4-fs: Ignoring removed oldalloc option
[  147.582772][ T9269] EXT4-fs: Ignoring removed orlov option
[  147.591603][ T9269] EXT4-fs (loop1): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  147.612851][ T9281] loop4: detected capacity change from 0 to 1024
[  147.612851][ T9269] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.641056][ T3663] hid-generic 0000:0000:0000.004C: unknown main item tag 0x0
[  147.650043][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.659657][ T9287] loop2: detected capacity change from 0 to 1024
[  147.660159][ T3663] hid-generic 0000:0000:0000.004C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  147.666729][ T9287] EXT4-fs: Ignoring removed nomblk_io_submit option
[  147.683539][ T9287] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  147.703752][ T9287] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.753556][ T9287] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.2138' sets config #0
[  147.774104][ T9287] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.2138' sets config #1
[  147.805359][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.862906][ T9310] wireguard0: entered promiscuous mode
[  147.868548][ T9310] wireguard0: entered allmulticast mode
[  147.891842][ T9305] hub 4-0:1.0: USB hub found
[  147.905745][ T9305] hub 4-0:1.0: 8 ports detected
[  147.911559][ T9283] lo speed is unknown, defaulting to 1000
[  147.942480][ T9316] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.023355][ T9316] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.055251][ T9281] lo speed is unknown, defaulting to 1000
[  148.099964][ T9316] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.168635][ T9316] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.184019][ T9340] FAULT_INJECTION: forcing a failure.
[  148.184019][ T9340] name failslab, interval 1, probability 0, space 0, times 0
[  148.196849][ T9340] CPU: 0 UID: 0 PID: 9340 Comm: syz.2.2150 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  148.196957][ T9340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  148.196969][ T9340] Call Trace:
[  148.196977][ T9340]  <TASK>
[  148.196986][ T9340]  __dump_stack+0x1d/0x30
[  148.197007][ T9340]  dump_stack_lvl+0xe8/0x140
[  148.197025][ T9340]  dump_stack+0x15/0x1b
[  148.197040][ T9340]  should_fail_ex+0x265/0x280
[  148.197094][ T9340]  should_failslab+0x8c/0xb0
[  148.197126][ T9340]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  148.197209][ T9340]  ? security_set_bools+0x85/0x340
[  148.197237][ T9340]  kmemdup_noprof+0x2b/0x70
[  148.197338][ T9340]  security_set_bools+0x85/0x340
[  148.197417][ T9340]  sel_commit_bools_write+0x1ea/0x270
[  148.197447][ T9340]  vfs_writev+0x403/0x8b0
[  148.197474][ T9340]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  148.197592][ T9340]  ? mutex_lock+0xd/0x30
[  148.197627][ T9340]  do_writev+0xe7/0x210
[  148.197719][ T9340]  __x64_sys_writev+0x45/0x50
[  148.197746][ T9340]  x64_sys_call+0x2006/0x2fb0
[  148.197774][ T9340]  do_syscall_64+0xd2/0x200
[  148.197792][ T9340]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  148.197821][ T9340]  ? clear_bhb_loop+0x40/0x90
[  148.197848][ T9340]  ? clear_bhb_loop+0x40/0x90
[  148.197912][ T9340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.197931][ T9340] RIP: 0033:0x7f16e15be929
[  148.197947][ T9340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.197970][ T9340] RSP: 002b:00007f16dfc27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  148.197993][ T9340] RAX: ffffffffffffffda RBX: 00007f16e17e5fa0 RCX: 00007f16e15be929
[  148.198071][ T9340] RDX: 0000000000000001 RSI: 00002000000025c0 RDI: 0000000000000003
[  148.198082][ T9340] RBP: 00007f16dfc27090 R08: 0000000000000000 R09: 0000000000000000
[  148.198093][ T9340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.198114][ T9340] R13: 0000000000000000 R14: 00007f16e17e5fa0 R15: 00007ffdf2357f98
[  148.198137][ T9340]  </TASK>
[  148.471195][ T9316] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  148.494537][ T9316] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  148.514387][ T9316] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  148.517165][ T9353] loop1: detected capacity change from 0 to 1764
[  148.524756][ T9354] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2152'.
[  148.544361][ T9316] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  148.547196][ T9353] iso9660: Bad value for 'uid'
[  148.557545][ T9353] iso9660: Bad value for 'uid'
[  148.587415][ T9354] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=39 sclass=netlink_route_socket pid=9354 comm=syz.2.2152
[  148.643809][ T9354] netlink: 'syz.2.2152': attribute type 10 has an invalid length.
[  148.666571][ T9353] loop1: detected capacity change from 0 to 1024
[  148.673433][ T9353] EXT4-fs: Ignoring removed nobh option
[  148.679085][ T9353] EXT4-fs: Ignoring removed bh option
[  148.690223][ T9353] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.712096][ T9354] 8021q: adding VLAN 0 to HW filter on device bond0
[  148.720242][ T9354] bond0: entered promiscuous mode
[  148.725394][ T9354] bond0: entered allmulticast mode
[  148.748225][ T9354] team0: Port device bond0 added
[  148.825012][ T9369] syzkaller0: entered promiscuous mode
[  148.830623][ T9369] syzkaller0: entered allmulticast mode
[  148.861196][ T9379] loop3: detected capacity change from 0 to 8192
[  148.879334][ T9379] 9pnet_fd: Insufficient options for proto=fd
[  149.117727][ T9398] bond0: left promiscuous mode
[  149.122684][ T9398] bond0: left allmulticast mode
[  149.207987][ T9398] team0: Port device bond0 removed
[  149.213837][ T9398] team0: left allmulticast mode
[  149.229679][ T9398] team0: left promiscuous mode
[  149.240049][ T9398] kfree: port 1(team0) entered disabled state
[  149.376639][ T9391] lo speed is unknown, defaulting to 1000
[  149.429400][ T9401] vlan2: entered allmulticast mode
[  149.434627][ T9401] bond0: entered allmulticast mode
[  149.749175][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.810069][ T9411] xt_CT: You must specify a L4 protocol and not use inversions on it
[  149.915971][ T9422] syz2: rxe_newlink: already configured on veth0_to_bond
[  149.929958][ T9424] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  149.975248][   T23] hid-generic 0000:0000:0000.004D: unknown main item tag 0x0
[  149.987778][   T23] hid-generic 0000:0000:0000.004D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  150.000476][ T9432] loop3: detected capacity change from 0 to 1024
[  150.007758][ T9432] EXT4-fs: Ignoring removed nomblk_io_submit option
[  150.014920][ T9432] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  150.041808][ T9432] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.060470][ T9432] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2181' sets config #0
[  150.070640][ T9432] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2181' sets config #1
[  150.094021][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.118298][ T9445] loop3: detected capacity change from 0 to 1024
[  150.125256][ T9445] EXT4-fs: Ignoring removed bh option
[  150.131100][ T9445] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  150.142835][ T9445] EXT4-fs error (device loop3): ext4_quota_enable:7124: comm syz.3.2186: inode #2304: comm syz.3.2186: iget: illegal inode #
[  150.156544][ T9445] EXT4-fs (loop3): Remounting filesystem read-only
[  150.163077][ T9445] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  150.178968][ T9445] EXT4-fs (loop3): mount failed
[  150.263485][ T9463] syzkaller1: entered promiscuous mode
[  150.269118][ T9463] syzkaller1: entered allmulticast mode
[  150.326765][ T9470] netlink: zone id is out of range
[  150.331950][ T9470] netlink: zone id is out of range
[  150.337244][ T9470] netlink: zone id is out of range
[  150.342374][ T9470] netlink: zone id is out of range
[  150.347709][ T9470] netlink: zone id is out of range
[  150.355277][ T9470] netlink: zone id is out of range
[  150.360462][ T9470] netlink: zone id is out of range
[  150.365657][ T9470] netlink: zone id is out of range
[  150.370859][ T9470] netlink: zone id is out of range
[  150.376072][ T9470] netlink: zone id is out of range
[  150.409116][ T9472] loop3: detected capacity change from 0 to 8192
[  150.444425][ T9475] loop2: detected capacity change from 0 to 2048
[  150.468431][ T9475] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.481072][ T9475] ext4 filesystem being mounted at /465/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.497398][ T9486] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2202'.
[  150.522931][ T9486] 8021q: adding VLAN 0 to HW filter on device bond0
[  150.531487][ T9486] 8021q: adding VLAN 0 to HW filter on device team0
[  150.674941][ T9496] loop3: detected capacity change from 0 to 512
[  150.682920][ T9496] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  150.692038][ T9496] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  150.701066][ T9496] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[  150.710768][ T9496] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  150.719214][ T9496] System zones: 0-2, 18-18, 34-35
[  150.722929][ T9501] xt_CT: You must specify a L4 protocol and not use inversions on it
[  150.724992][ T9496] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.748708][ T9496] netlink: 'syz.3.2207': attribute type 10 has an invalid length.
[  150.761322][ T9496] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[  150.772554][ T9496] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2207'.
[  150.802098][ T9496] netlink: 'syz.3.2207': attribute type 9 has an invalid length.
[  150.809972][ T9496] netlink: 'syz.3.2207': attribute type 6 has an invalid length.
[  150.819117][ T9496] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2207'.
[  150.839553][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.858321][ T9511] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2211'.
[  150.868050][ T9511] FAULT_INJECTION: forcing a failure.
[  150.868050][ T9511] name failslab, interval 1, probability 0, space 0, times 0
[  150.880895][ T9511] CPU: 1 UID: 0 PID: 9511 Comm: syz.3.2211 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  150.881002][ T9511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  150.881013][ T9511] Call Trace:
[  150.881019][ T9511]  <TASK>
[  150.881025][ T9511]  __dump_stack+0x1d/0x30
[  150.881083][ T9511]  dump_stack_lvl+0xe8/0x140
[  150.881100][ T9511]  dump_stack+0x15/0x1b
[  150.881144][ T9511]  should_fail_ex+0x265/0x280
[  150.881172][ T9511]  should_failslab+0x8c/0xb0
[  150.881193][ T9511]  kmem_cache_alloc_node_noprof+0x57/0x320
[  150.881218][ T9511]  ? __alloc_skb+0x101/0x320
[  150.881297][ T9511]  __alloc_skb+0x101/0x320
[  150.881324][ T9511]  netlink_alloc_large_skb+0xba/0xf0
[  150.881409][ T9511]  netlink_sendmsg+0x3cf/0x6b0
[  150.881429][ T9511]  ? __pfx_netlink_sendmsg+0x10/0x10
[  150.881447][ T9511]  __sock_sendmsg+0x142/0x180
[  150.881470][ T9511]  ____sys_sendmsg+0x31e/0x4e0
[  150.881572][ T9511]  ___sys_sendmsg+0x17b/0x1d0
[  150.881615][ T9511]  __x64_sys_sendmsg+0xd4/0x160
[  150.881636][ T9511]  x64_sys_call+0x2999/0x2fb0
[  150.881663][ T9511]  do_syscall_64+0xd2/0x200
[  150.881679][ T9511]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  150.881703][ T9511]  ? clear_bhb_loop+0x40/0x90
[  150.881735][ T9511]  ? clear_bhb_loop+0x40/0x90
[  150.881754][ T9511]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.881773][ T9511] RIP: 0033:0x7f914d40e929
[  150.881842][ T9511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.881872][ T9511] RSP: 002b:00007f914ba77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  150.881895][ T9511] RAX: ffffffffffffffda RBX: 00007f914d635fa0 RCX: 00007f914d40e929
[  150.881910][ T9511] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000006
[  150.881921][ T9511] RBP: 00007f914ba77090 R08: 0000000000000000 R09: 0000000000000000
[  150.881932][ T9511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.881942][ T9511] R13: 0000000000000000 R14: 00007f914d635fa0 R15: 00007fff893e3398
[  150.882033][ T9511]  </TASK>
[  151.282675][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.304984][ T9523] program syz.2.2215 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  151.314698][ T9523] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  151.407111][ T9525] loop2: detected capacity change from 0 to 8192
[  151.499948][ T9531] FAULT_INJECTION: forcing a failure.
[  151.499948][ T9531] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.513251][ T9531] CPU: 0 UID: 0 PID: 9531 Comm: syz.1.2219 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  151.513286][ T9531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  151.513313][ T9531] Call Trace:
[  151.513320][ T9531]  <TASK>
[  151.513328][ T9531]  __dump_stack+0x1d/0x30
[  151.513353][ T9531]  dump_stack_lvl+0xe8/0x140
[  151.513378][ T9531]  dump_stack+0x15/0x1b
[  151.513397][ T9531]  should_fail_ex+0x265/0x280
[  151.513428][ T9531]  should_fail+0xb/0x20
[  151.513542][ T9531]  should_fail_usercopy+0x1a/0x20
[  151.513582][ T9531]  _copy_from_user+0x1c/0xb0
[  151.513662][ T9531]  proc_do_submiturb+0x866/0x1d00
[  151.513692][ T9531]  ? proc_do_submiturb+0x101/0x1d00
[  151.513719][ T9531]  ? should_fail_ex+0xdb/0x280
[  151.513811][ T9531]  proc_submiturb+0x7b/0xa0
[  151.513851][ T9531]  usbdev_ioctl+0xcc2/0x1710
[  151.513884][ T9531]  ? __pfx_usbdev_ioctl+0x10/0x10
[  151.513929][ T9531]  __se_sys_ioctl+0xcb/0x140
[  151.513964][ T9531]  __x64_sys_ioctl+0x43/0x50
[  151.514039][ T9531]  x64_sys_call+0x19a8/0x2fb0
[  151.514129][ T9531]  do_syscall_64+0xd2/0x200
[  151.514152][ T9531]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  151.514178][ T9531]  ? clear_bhb_loop+0x40/0x90
[  151.514197][ T9531]  ? clear_bhb_loop+0x40/0x90
[  151.514236][ T9531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.514289][ T9531] RIP: 0033:0x7f7ba4f5e929
[  151.514303][ T9531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.514454][ T9531] RSP: 002b:00007f7ba35c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  151.514476][ T9531] RAX: ffffffffffffffda RBX: 00007f7ba5185fa0 RCX: 00007f7ba4f5e929
[  151.514491][ T9531] RDX: 0000200000000e00 RSI: 000000008038550a RDI: 0000000000000004
[  151.514506][ T9531] RBP: 00007f7ba35c7090 R08: 0000000000000000 R09: 0000000000000000
[  151.514521][ T9531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.514535][ T9531] R13: 0000000000000000 R14: 00007f7ba5185fa0 R15: 00007ffd7469fd28
[  151.514559][ T9531]  </TASK>
[  151.519822][ T9533] loop2: detected capacity change from 0 to 512
[  151.699260][ T9537] sch_tbf: peakrate 64 is lower than or equals to rate 7885539481860180092 !
[  151.706376][ T9533] EXT4-fs (loop2): 1 truncate cleaned up
[  151.745012][ T9533] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.762845][ T9533] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2218'.
[  151.783351][ T9533] netlink: 'syz.2.2218': attribute type 4 has an invalid length.
[  151.800049][ T9545] loop7: detected capacity change from 0 to 16384
[  151.821370][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.858676][ T9545] I/O error, dev loop7, sector 10240 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[  151.870349][ T9545] I/O error, dev loop7, sector 10496 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[  151.881975][ T9545] I/O error, dev loop7, sector 10240 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  151.891823][ T9545] Buffer I/O error on dev loop7, logical block 1280, async page read
[  151.934886][ T9543] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  151.944764][ T9543] Buffer I/O error on dev loop7, logical block 0, lost async page write
[  151.953234][ T9543] Buffer I/O error on dev loop7, logical block 1, lost async page write
[  151.960100][ T9557] hub 4-0:1.0: USB hub found
[  151.961672][ T9543] Buffer I/O error on dev loop7, logical block 2, lost async page write
[  151.966399][ T9557] hub 4-0:1.0: 8 ports detected
[  151.974652][ T9543] Buffer I/O error on dev loop7, logical block 3, lost async page write
[  151.988056][ T9543] Buffer I/O error on dev loop7, logical block 4, lost async page write
[  151.988079][ T9543] Buffer I/O error on dev loop7, logical block 5, lost async page write
[  151.988100][ T9543] Buffer I/O error on dev loop7, logical block 6, lost async page write
[  151.988171][ T9543] Buffer I/O error on dev loop7, logical block 7, lost async page write
[  151.988226][ T9543] Buffer I/O error on dev loop7, logical block 8, lost async page write
[  152.008623][ T9543] I/O error, dev loop7, sector 1024 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  152.011774][ T9543] I/O error, dev loop7, sector 2048 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  152.015512][ T9543] I/O error, dev loop7, sector 3072 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  152.018974][ T9543] I/O error, dev loop7, sector 4096 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  152.024392][ T9543] I/O error, dev loop7, sector 5120 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  152.042696][   T29] kauditd_printk_skb: 441 callbacks suppressed
[  152.042725][   T29] audit: type=1326 audit(1750000244.846:13743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9562 comm="syz.2.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  152.087112][ T9543] I/O error, dev loop7, sector 6144 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  152.094001][   T29] audit: type=1326 audit(1750000244.846:13744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9562 comm="syz.2.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  152.167619][   T29] audit: type=1326 audit(1750000244.846:13745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9562 comm="syz.2.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  152.167655][   T29] audit: type=1326 audit(1750000244.846:13746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9562 comm="syz.2.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  152.167688][   T29] audit: type=1326 audit(1750000244.846:13747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9562 comm="syz.2.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  152.167766][   T29] audit: type=1326 audit(1750000244.846:13748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9562 comm="syz.2.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  152.167792][   T29] audit: type=1326 audit(1750000244.846:13749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9562 comm="syz.2.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  152.167876][   T29] audit: type=1326 audit(1750000244.846:13750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9562 comm="syz.2.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  152.167901][   T29] audit: type=1326 audit(1750000244.846:13751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9562 comm="syz.2.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  152.167928][   T29] audit: type=1326 audit(1750000244.846:13752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9562 comm="syz.2.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16e15be929 code=0x7ffc0000
[  152.199730][ T9563] syz2: rxe_newlink: already configured on veth0_to_bond
[  152.374175][ T9575] loop9: detected capacity change from 0 to 7
[  152.374459][ T9575]  loop9: unable to read partition table
[  152.374527][ T9575] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  152.374527][ T9575] 
U�������) failed (rc=-5)
[  152.578672][ T3409] hid-generic 0000:0000:0000.004E: unknown main item tag 0x0
[  152.624737][ T9592] loop3: detected capacity change from 0 to 1024
[  152.634032][ T9592] EXT4-fs: Ignoring removed nomblk_io_submit option
[  152.641680][ T9592] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  152.651217][ T3409] hid-generic 0000:0000:0000.004E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  152.668529][ T9592] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.709308][ T9592] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2242' sets config #0
[  152.720844][ T9592] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2242' sets config #1
[  152.773222][ T9606] loop2: detected capacity change from 0 to 2048
[  152.783418][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.827831][ T9606] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.858281][ T9613] loop9: detected capacity change from 0 to 7
[  152.864636][ T9613]  loop9: unable to read partition table
[  152.870580][ T9613] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  152.870580][ T9613] 
U�������) failed (rc=-5)
[  152.916474][ T9606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.997192][ T9631] loop2: detected capacity change from 0 to 1024
[  153.005381][ T9631] EXT4-fs: Ignoring removed orlov option
[  153.036307][ T9631] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.074418][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.193079][ T9643] syz2: rxe_newlink: already configured on veth0_to_bond
[  153.383643][ T9656] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2263'.
[  153.600451][ T9672] loop3: detected capacity change from 0 to 8192
[  153.858667][ T9685] hub 4-0:1.0: USB hub found
[  153.863358][ T9685] hub 4-0:1.0: 8 ports detected
[  153.927305][ T9689] loop0: detected capacity change from 0 to 8192
[  154.224338][ T9695] x_tables: ip6_tables: mh match: only valid for protocol 135
[  154.292586][ T9699] loop9: detected capacity change from 0 to 7
[  154.298983][ T9699]  loop9: unable to read partition table
[  154.304676][ T9699] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  154.304676][ T9699] 
U�������) failed (rc=-5)
[  154.342201][ T9703] xt_CT: You must specify a L4 protocol and not use inversions on it
[  154.785615][ T9716] lo speed is unknown, defaulting to 1000
[  155.176970][ T9719] xt_CT: You must specify a L4 protocol and not use inversions on it
[  155.452360][ T9734] syzkaller1: entered promiscuous mode
[  155.458117][ T9734] syzkaller1: entered allmulticast mode
[  155.472372][ T9738] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2293'.
[  155.493035][ T9736] syzkaller1: entered promiscuous mode
[  155.498663][ T9736] syzkaller1: entered allmulticast mode
[  155.515559][ T9723] netlink: 'syz.1.2293': attribute type 10 has an invalid length.
[  155.849978][ T9747] loop3: detected capacity change from 0 to 512
[  155.888378][ T9748] loop0: detected capacity change from 0 to 1024
[  155.908514][ T9747] EXT4-fs (loop3): 1 truncate cleaned up
[  155.923256][ T9748] EXT4-fs: Ignoring removed bh option
[  155.938959][ T9747] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.964515][ T9748] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  156.021108][ T9748] EXT4-fs error (device loop0): ext4_quota_enable:7124: comm syz.0.2301: inode #2304: comm syz.0.2301: iget: illegal inode #
[  156.067339][ T9754] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2302'.
[  156.084833][ T9748] EXT4-fs (loop0): Remounting filesystem read-only
[  156.091513][ T9748] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  156.111995][ T9748] EXT4-fs (loop0): mount failed
[  156.122281][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.188280][ T9767] loop2: detected capacity change from 0 to 512
[  156.214550][ T9767] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  156.223400][ T9767] EXT4-fs (loop2): orphan cleanup on readonly fs
[  156.287295][ T9767] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.2307: corrupted inode contents
[  156.299536][ T9767] EXT4-fs (loop2): Remounting filesystem read-only
[  156.306956][ T9767] EXT4-fs (loop2): 1 truncate cleaned up
[  156.312925][   T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  156.323498][   T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  156.334174][   T12] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  156.514543][ T9781] lo speed is unknown, defaulting to 1000
[  156.626999][ T9784] loop0: detected capacity change from 0 to 512
[  156.658449][ T9784] EXT4-fs (loop0): 1 truncate cleaned up
[  156.670517][ T9784] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2315'.
[  156.925243][ T9799] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2314'.
[  156.934890][ T9789] netlink: 'syz.2.2314': attribute type 10 has an invalid length.
[  156.998569][ T9805] syzkaller1: entered promiscuous mode
[  157.004131][ T9805] syzkaller1: entered allmulticast mode
[  157.056855][ T9809] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2323'.
[  157.065994][ T9809] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2323'.
[  157.091286][ T9811] loop3: detected capacity change from 0 to 512
[  157.099584][ T9811] EXT4-fs (loop3): 1 truncate cleaned up
[  157.162645][ T9811] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2324'.
[  157.220356][ T9819] hub 4-0:1.0: USB hub found
[  157.232714][ T9819] hub 4-0:1.0: 8 ports detected
[  157.282804][   T29] kauditd_printk_skb: 856 callbacks suppressed
[  157.282818][   T29] audit: type=1326 audit(1750000250.086:14603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9828 comm="syz.0.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa926c3e929 code=0x7ffc0000
[  157.313421][   T29] audit: type=1326 audit(1750000250.086:14604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9828 comm="syz.0.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa926c3e929 code=0x7ffc0000
[  157.346128][ T9826] net_ratelimit: 63 callbacks suppressed
[  157.346143][ T9826] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  157.350290][   T29] audit: type=1326 audit(1750000250.086:14605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9828 comm="syz.0.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa926c3e929 code=0x7ffc0000
[  157.353903][   T36] lo speed is unknown, defaulting to 1000
[  157.367274][   T29] audit: type=1326 audit(1750000250.086:14606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9828 comm="syz.0.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa926c3e929 code=0x7ffc0000
[  157.420184][   T29] audit: type=1326 audit(1750000250.086:14607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9828 comm="syz.0.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa926c3e929 code=0x7ffc0000
[  157.443728][   T29] audit: type=1326 audit(1750000250.086:14608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9828 comm="syz.0.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa926c3e929 code=0x7ffc0000
[  157.448590][ T9837] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2329'.
[  157.467359][   T29] audit: type=1326 audit(1750000250.086:14609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9828 comm="syz.0.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa926c3e929 code=0x7ffc0000
[  157.467450][   T29] audit: type=1326 audit(1750000250.086:14610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9828 comm="syz.0.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa926c3e929 code=0x7ffc0000
[  157.523554][   T29] audit: type=1326 audit(1750000250.086:14611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9828 comm="syz.0.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa926c3e929 code=0x7ffc0000
[  157.547068][   T29] audit: type=1326 audit(1750000250.086:14612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9828 comm="syz.0.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fa926c3e929 code=0x7ffc0000
[  157.577267][ T9824] netlink: 'syz.4.2329': attribute type 10 has an invalid length.
[  157.646875][ T9847] loop2: detected capacity change from 0 to 764
[  157.665553][ T9846] batadv0: entered promiscuous mode
[  157.674651][ T9846] batadv0: left promiscuous mode
[  157.782420][ T9866] hub 4-0:1.0: USB hub found
[  157.787371][ T9866] hub 4-0:1.0: 8 ports detected
[  157.889285][ T9880] syzkaller1: entered promiscuous mode
[  157.894811][ T9880] syzkaller1: entered allmulticast mode
[  158.131681][ T9887] xt_CT: You must specify a L4 protocol and not use inversions on it
[  158.203530][ T9889] loop1: detected capacity change from 0 to 1024
[  158.210520][ T9889] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[  158.598041][ T9910] FAULT_INJECTION: forcing a failure.
[  158.598041][ T9910] name failslab, interval 1, probability 0, space 0, times 0
[  158.610823][ T9910] CPU: 0 UID: 0 PID: 9910 Comm: syz.0.2359 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  158.610894][ T9910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.610909][ T9910] Call Trace:
[  158.610917][ T9910]  <TASK>
[  158.610925][ T9910]  __dump_stack+0x1d/0x30
[  158.610952][ T9910]  dump_stack_lvl+0xe8/0x140
[  158.610979][ T9910]  dump_stack+0x15/0x1b
[  158.611019][ T9910]  should_fail_ex+0x265/0x280
[  158.611131][ T9910]  ? sctp_add_bind_addr+0x71/0x1e0
[  158.611156][ T9910]  should_failslab+0x8c/0xb0
[  158.611181][ T9910]  __kmalloc_cache_noprof+0x4c/0x320
[  158.611216][ T9910]  sctp_add_bind_addr+0x71/0x1e0
[  158.611248][ T9910]  sctp_copy_local_addr_list+0x199/0x220
[  158.611331][ T9910]  sctp_copy_one_addr+0x7f/0x280
[  158.611361][ T9910]  sctp_bind_addr_copy+0x79/0x290
[  158.611394][ T9910]  sctp_assoc_set_bind_addr_from_ep+0xce/0xe0
[  158.611447][ T9910]  sctp_connect_new_asoc+0x1c3/0x3a0
[  158.611490][ T9910]  sctp_sendmsg+0xf10/0x18d0
[  158.611588][ T9910]  ? __pfx_sctp_sendmsg+0x10/0x10
[  158.611626][ T9910]  inet_sendmsg+0xc5/0xd0
[  158.611651][ T9910]  __sock_sendmsg+0x102/0x180
[  158.611719][ T9910]  ____sys_sendmsg+0x31e/0x4e0
[  158.611762][ T9910]  ___sys_sendmsg+0x17b/0x1d0
[  158.611844][ T9910]  __x64_sys_sendmsg+0xd4/0x160
[  158.611864][ T9910]  x64_sys_call+0x2999/0x2fb0
[  158.611943][ T9910]  do_syscall_64+0xd2/0x200
[  158.612008][ T9910]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  158.612031][ T9910]  ? clear_bhb_loop+0x40/0x90
[  158.612050][ T9910]  ? clear_bhb_loop+0x40/0x90
[  158.612069][ T9910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.612111][ T9910] RIP: 0033:0x7fa926c3e929
[  158.612124][ T9910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.612140][ T9910] RSP: 002b:00007fa9252a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  158.612157][ T9910] RAX: ffffffffffffffda RBX: 00007fa926e65fa0 RCX: 00007fa926c3e929
[  158.612168][ T9910] RDX: 0000000020004001 RSI: 0000200000000400 RDI: 0000000000000003
[  158.612179][ T9910] RBP: 00007fa9252a7090 R08: 0000000000000000 R09: 0000000000000000
[  158.612189][ T9910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  158.612200][ T9910] R13: 0000000000000000 R14: 00007fa926e65fa0 R15: 00007fff293423c8
[  158.612261][ T9910]  </TASK>
[  159.203448][ T9960] xt_CT: You must specify a L4 protocol and not use inversions on it
[  159.219571][ T9958] hub 4-0:1.0: USB hub found
[  159.224757][ T9958] hub 4-0:1.0: 8 ports detected
[  159.273998][ T9970] loop1: detected capacity change from 0 to 512
[  159.282246][ T9970] EXT4-fs (loop1): 1 truncate cleaned up
[  159.291259][ T9970] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2385'.
[  159.302855][ T9970] netlink: 'syz.1.2385': attribute type 4 has an invalid length.
[  159.335530][ T9975] loop1: detected capacity change from 0 to 1024
[  159.342389][ T9975] EXT4-fs: inline encryption not supported
[  159.348598][ T9975] EXT4-fs: Ignoring removed orlov option
[  159.354460][ T9975] ext4: Unknown parameter 'appraise'
[  159.372754][ T9975] loop1: detected capacity change from 0 to 1024
[  159.379707][ T9975] EXT4-fs: Ignoring removed orlov option
[  159.679207][ T9975] ==================================================================
[  159.687373][ T9975] BUG: KCSAN: data-race in generic_buffers_fsync_noflush / inode_cgwb_move_to_attached
[  159.697046][ T9975] 
[  159.699384][ T9975] write to 0xffff888106ff1758 of 4 bytes by task 9983 on cpu 0:
[  159.707037][ T9975]  inode_cgwb_move_to_attached+0x9b/0x310
[  159.712801][ T9975]  writeback_single_inode+0x2af/0x3e0
[  159.718299][ T9975]  sync_inode_metadata+0x5b/0x90
[  159.723272][ T9975]  generic_buffers_fsync_noflush+0xd9/0x120
[  159.729235][ T9975]  ext4_sync_file+0x1ab/0x690
[  159.733948][ T9975]  vfs_fsync_range+0x10a/0x130
[  159.738726][ T9975]  ext4_buffered_write_iter+0x34f/0x3c0
[  159.744307][ T9975]  ext4_file_write_iter+0x383/0xf00
[  159.749538][ T9975]  iter_file_splice_write+0x5ef/0x970
[  159.754947][ T9975]  direct_splice_actor+0x153/0x2a0
[  159.760103][ T9975]  splice_direct_to_actor+0x30f/0x680
[  159.765533][ T9975]  do_splice_direct+0xda/0x150
[  159.770336][ T9975]  do_sendfile+0x380/0x650
[  159.774781][ T9975]  __x64_sys_sendfile64+0x105/0x150
[  159.780003][ T9975]  x64_sys_call+0xb39/0x2fb0
[  159.784643][ T9975]  do_syscall_64+0xd2/0x200
[  159.789181][ T9975]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.795112][ T9975] 
[  159.797452][ T9975] read to 0xffff888106ff1758 of 4 bytes by task 9975 on cpu 1:
[  159.805010][ T9975]  generic_buffers_fsync_noflush+0x80/0x120
[  159.810974][ T9975]  ext4_sync_file+0x1ab/0x690
[  159.815696][ T9975]  vfs_fsync_range+0x10a/0x130
[  159.820487][ T9975]  ext4_buffered_write_iter+0x34f/0x3c0
[  159.826063][ T9975]  ext4_file_write_iter+0x383/0xf00
[  159.831286][ T9975]  iter_file_splice_write+0x5ef/0x970
[  159.836705][ T9975]  direct_splice_actor+0x153/0x2a0
[  159.841862][ T9975]  splice_direct_to_actor+0x30f/0x680
[  159.847266][ T9975]  do_splice_direct+0xda/0x150
[  159.852063][ T9975]  do_sendfile+0x380/0x650
[  159.856512][ T9975]  __x64_sys_sendfile64+0x105/0x150
[  159.861737][ T9975]  x64_sys_call+0xb39/0x2fb0
[  159.866363][ T9975]  do_syscall_64+0xd2/0x200
[  159.870891][ T9975]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.876817][ T9975] 
[  159.879170][ T9975] value changed: 0x00000002 -> 0x00000020
[  159.884907][ T9975] 
[  159.887249][ T9975] Reported by Kernel Concurrency Sanitizer on:
[  159.893427][ T9975] CPU: 1 UID: 0 PID: 9975 Comm: syz.1.2387 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  159.905881][ T9975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.915962][ T9975] ==================================================================