last executing test programs:

4.923701827s ago: executing program 0 (id=1301):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1345, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40000100, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x800, 0xfffffffc, 0x7, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
pipe(&(0x7f00000008c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_io_uring_setup(0x83f, &(0x7f00000000c0)={0x0, 0xa9ee, 0x100, 0x3, 0x8002ae}, &(0x7f0000000140)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x40, 0x109880})
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
splice(r2, 0x0, r3, 0x0, 0xa, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r3, 0x89f2, 0x0)
write$P9_RWRITE(r3, &(0x7f0000000040)={0xb, 0x77, 0x87}, 0x10c00)
write$binfmt_misc(r3, &(0x7f00000002c0)="a3f1a6392822830de8169deb911b2e948d95ef1f2ae1eff3dd9e6f31753ecb593a576ac838d7da2f43c3de5dc683bd7750df9372bcc1dc0e24c8ecf6304a33a3e74f49f1695c10c5c497554f62818987db2e7149910492a9e2bb8cc7f6ecd923d4ef2318a7846d5050669dede691f0a15deb5c4fa9545951131cc170499e6f2e2d12eff1ccd9ddda5894392b0e89319350edb01b1ce55028", 0x98)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
r8 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r8, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r8, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/28, 0x1c}], 0x1}}], 0x90}, 0x0)

2.395680464s ago: executing program 1 (id=1348):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getgroups(0x0, 0x0)

2.347669435s ago: executing program 1 (id=1351):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = socket$inet6(0x10, 0x3, 0x0)
connect$pppoe(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'geneve0\x00'}}, 0x1e)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r3}, 0x10)
sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

2.02992851s ago: executing program 2 (id=1352):
creat(&(0x7f0000000200)='./file1\x00', 0x12e)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
syz_open_dev$evdev(0x0, 0x0, 0x8000)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x8, &(0x7f0000000080)={[{@sb={'sb', 0x3d, 0x1}}, {@nodioread_nolock}]}, 0x4, 0x523, &(0x7f00000018c0)="$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")

2.02956498s ago: executing program 1 (id=1353):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xe6, 0x7ffc1ff7}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)

1.863109282s ago: executing program 0 (id=1355):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000e40)=@delchain={0xe8, 0x65, 0x200, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0xa}, {0x0, 0x1}, {0x0, 0xb}}, [@TCA_RATE={0x6, 0x5, {0x4, 0x28}}, @filter_kind_options=@f_flower={{0xb}, {0x7c, 0x2, [@TCA_FLOWER_KEY_ETH_SRC={0xa}, @TCA_FLOWER_KEY_ENC_UDP_DST_PORT={0x6}, @TCA_FLOWER_KEY_VLAN_PRIO={0x5, 0x18, 0x5}, @TCA_FLOWER_KEY_MPLS_OPTS={0x8, 0x63, 0x0, 0x1, @TCA_FLOWER_KEY_MPLS_OPTS_LSE={0x4}}, @TCA_FLOWER_KEY_IP_TTL_MASK={0x5, 0x4c, 0x1}, @TCA_FLOWER_ACT={0x44, 0x3, [@m_ife={0x40, 0x12, 0x0, 0x0, {{0x8}, {0x4}, {0x15, 0x6, "7dea7fdc03dc266b4394d770e179d0165e"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}, @TCA_FLOWER_KEY_ENC_IP_TOS={0x5, 0x50, 0x2}]}}, @filter_kind_options=@f_matchall={{0xd}, {0x24, 0x2, [@TCA_MATCHALL_FLAGS={0x8, 0x3, 0x1}, @TCA_MATCHALL_CLASSID={0x8, 0x1, {0xffe0, 0xffe0}}, @TCA_MATCHALL_CLASSID={0x8, 0x1, {0xfff3, 0xd}}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x1}]}}]}, 0xe8}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x2000000, &(0x7f0000000340)=ANY=[@ANYBLOB="003531d0081634a844cb7924d87a8dce5d1a6c9ae88dce733292494dc2900e6759d69221ec8f827bc438bf6a983de5286b648195a809a18b941c6b3d090092180d1746e9c5eae6b9c2992b32ec95bffe226d2ad16124944e105e9d268dfafd74ca934a7dbef224c2293a4798904f162d126d1819febf57d3758306dadf1057fdf9ee584e"], 0x1, 0x55a, &(0x7f0000000b80)="$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")
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
r1 = dup(0xffffffffffffffff)
write$UHID_INPUT(r1, &(0x7f0000000640)={0xf, {"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", 0x1000}}, 0x1006)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x18, 0x3, "c6a41d106c720000000000000000000002000000"}, @NFTA_MATCH_NAME={0xa, 0x1, 'owner\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x4048010)

1.858609323s ago: executing program 1 (id=1356):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$kcm(0xa, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = openat$selinux_user(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$selinux_user(r3, &(0x7f00000004c0)=ANY=[@ANYBLOB="0e797374656d5f753a6f626a6563745f723a6d6f756e745f657865635f743a73302072"], 0x27)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000), 0x4)
r5 = getpid()
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r4)
sendmsg$DEVLINK_CMD_RELOAD(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r7, 0x1, 0x70bd26, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r5}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
sendmsg$kcm(r1, &(0x7f00000019c0)={&(0x7f0000000080)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x5}, 0x80, 0x0}, 0x24004059)
close(r1)

1.774314994s ago: executing program 0 (id=1359):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r0}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040)={0x0, <r2=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @ipv4=@multicast2}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid=r2}]}]}, 0x28}}, 0x0)

1.752059044s ago: executing program 0 (id=1361):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getgroups(0x0, 0x0)

1.730362914s ago: executing program 0 (id=1362):
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000b00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000540)={&(0x7f0000000380)={0x198, r0, 0x0, 0x70bd2d, 0x25dfdbff, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8}, {0x6, 0x16, 0x1}, {0x5, 0x12, 0x1}, {0x6}, {0x8, 0xb, 0x4}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0xfffff40a}, {0x6, 0x16, 0x4}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0x6}, {0x8, 0xb, 0x7}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x5}, {0x6, 0x16, 0x8}, {0x5}, {0x6, 0x11, 0x8}, {0x8, 0xb, 0x5}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x3}, {0x6, 0x16, 0x81}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0x10}, {0x8, 0xb, 0x3}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x6d90}, {0x6, 0x16, 0x5}, {0x5}, {0x6, 0x11, 0x9}, {0x8, 0xb, 0x4}}]}, 0x198}, 0x1, 0x0, 0x0, 0x41}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r2}, &(0x7f00000004c0), &(0x7f0000000500)=r3}, 0x20)
r4 = add_key$fscrypt_v1(&(0x7f0000000600), &(0x7f0000000280)={'fscrypt:', @desc2}, &(0x7f0000000740)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300", 0x10000000}, 0x48, 0xffffffffffffffff)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r7 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc4}, &(0x7f0000000500)={0x0, "6035ae1e0fe721441700322225930e6c1e3e2a51a92fd796bc34d7d56e0236805b4377f7ab1a9b01c103a4c6de62696138000000000000000000007410f44600", 0x2000033}, 0x48, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x4, r7, r4, 0x0, 0x0)
r8 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x4, r4, r8, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x808080, &(0x7f0000000000), 0x2c, 0x52c, &(0x7f0000000640)="$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")
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000006d80)={@ifindex, 0xffffffffffffffff, 0x1e, 0x4, 0xffffffffffffffff, @void, @value}, 0x20)
chmod(&(0x7f0000000180)='./file1\x00', 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r9, &(0x7f00000019c0)=[{{&(0x7f00000000c0)={0xa, 0x4e20, 0x4, @remote, 0x7}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000000280)="e9", 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r9, 0x1)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)

1.421830489s ago: executing program 3 (id=1364):
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
creat(&(0x7f00000000c0)='./bus\x00', 0x21)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
pidfd_getfd(0xffffffffffffffff, r2, 0x0)

1.421402489s ago: executing program 0 (id=1365):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1345, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40000100, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x800, 0xfffffffc, 0x7, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
pipe(&(0x7f00000008c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_io_uring_setup(0x83f, &(0x7f00000000c0)={0x0, 0xa9ee, 0x100, 0x3, 0x8002ae}, &(0x7f0000000140)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x40, 0x109880})
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
splice(r2, 0x0, r3, 0x0, 0xa, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r3, 0x89f2, 0x0)
write$P9_RWRITE(r3, &(0x7f0000000040)={0xb, 0x77, 0x87}, 0x10c00)
write$binfmt_misc(r3, &(0x7f00000002c0)="a3f1a6392822830de8169deb911b2e948d95ef1f2ae1eff3dd9e6f31753ecb593a576ac838d7da2f43c3de5dc683bd7750df9372bcc1dc0e24c8ecf6304a33a3e74f49f1695c10c5c497554f62818987db2e7149910492a9e2bb8cc7f6ecd923d4ef2318a7846d5050669dede691f0a15deb5c4fa9545951131cc170499e6f2e2d12eff1ccd9ddda5894392b0e89319350edb01b1ce55028", 0x98)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
r8 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r8, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r8, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/28, 0x1c}], 0x1}}], 0x90}, 0x0)

1.421324719s ago: executing program 3 (id=1366):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xe6, 0x7ffc1ff7}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)

1.36571122s ago: executing program 2 (id=1368):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x93}, 0x0)

1.33886411s ago: executing program 4 (id=1369):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x2000c0, &(0x7f00000005c0), 0x1, 0x54e, &(0x7f0000000600)="$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")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xe}, 0x18)
creat(&(0x7f0000001740)='./bus\x00', 0x81)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x86602, 0x330269f53da8c4ce)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x50000, 0x0, 0x0)

1.31447937s ago: executing program 2 (id=1370):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x802)
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1)
read(r0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="17000000000000001b0000000200000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000d78d24b000000000000000000000000a45f649af0780733b192bbcb9ca20feea1f16398abcfb329314a5ebe96a77683b9e9b1783d54e5ef803e9e04e5c0c118b4db15e79ffe4516b871a0e487d6a2e4350311dc16ce767fc11dcef3000000e27f4ad092"], 0x50)
unshare(0x2040600)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0x4977, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdn:Dd', 0x0)

1.217916042s ago: executing program 2 (id=1371):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e7578"], 0x2000) (fail_nth: 2)

901.347837ms ago: executing program 3 (id=1372):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r0}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040)={0x0, <r2=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @ipv4=@multicast2}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid=r2}]}]}, 0x28}}, 0x0)

850.155457ms ago: executing program 3 (id=1373):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000040)='percpu_free_percpu\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000040000000000000000000000000000000000000000000000a53cf7abb3d6259635a4a8c7bf70da144523d553a7282d799228684e52c8a795cabd26979cce6751d07f1fdd76086fcfb2d08a4d39535166e98ba9df1e1777094051a874b551508e3fdac7a147499f1993f8b14096732f196736f35dff139e46d4ef67fbcd8afded7b4d3c56a7112a"], 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x5c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0xfedd, 0x2, 0x4}, &(0x7f0000000140)=<r5=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0x200, 0x0, 0x4)
io_uring_enter(r4, 0xa32, 0x0, 0x47, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x80, 0x0, 0x0, 0x4)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_emit_ethernet(0xaa, &(0x7f0000000380)={@broadcast, @broadcast, @val={@void, {0x8100, 0x5, 0x1, 0x1}}, {@llc={0x4, {@snap={0x0, 0x1, "fc", "78c367", 0x19, "30e4101faf4a9d97a22376b5d0e4595429ce8d3d90f23e3ba5776ce6a9a8ceb9f243b367b33f907d780f4394d134f4d657ec4ad09123d6c135ce70b4861dd75436884e13d225d2519b2a2a16d21d29a570e0af92c1b6263d036352b07b29f3ab703942bce53796cd94fa3c0d560d4fe22373ebf1fcdaeeab8f6974af9dc38e5e4d3918cd5acf6e6d9306d85472005294"}}}}}, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x3b0, 0x0, 0x43, 0xa0, 0x1d0, 0x98, 0x318, 0x178, 0x178, 0x318, 0x178, 0x49, 0x0, {[{{@ip={@loopback, @local, 0x0, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00'}, 0x12a, 0x1b0, 0x1d0, 0x0, {0x0, 0x7a010000}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x8, 0x0, 'syz0\x00'}}, @common=@unspec=@helper={{0x48}, {0x0, 'ftp-20000\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@unspec=@connbytes={{0x38}, {[{0xb}]}}, @common=@set={{0x40}, {{0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x300]}}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@multicast1}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x410)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
munmap(&(0x7f0000002000/0x800000)=nil, 0x800000)

777.900938ms ago: executing program 4 (id=1374):
socket$kcm(0x10, 0x2, 0x0)
socket(0x11, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e7578"], 0x2000) (fail_nth: 2)

777.652318ms ago: executing program 1 (id=1375):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r0, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c) (fail_nth: 2)

739.282299ms ago: executing program 1 (id=1376):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000001300)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc90, 0x0, 0x0, 0x0, 0x100}, [@cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffffd}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = syz_init_net_socket$llc(0x1a, 0x0, 0x0)
connect$llc(r5, &(0x7f00000002c0)={0x1a, 0x7, 0x0, 0x2, 0x7, 0x6, @multicast}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = syz_genetlink_get_family_id$fou(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x30, r8, 0x505, 0x0, 0x25dfdbfd, {}, [@FOU_ATTR_LOCAL_V6={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @multicast1}}, @FOU_ATTR_AF={0x5, 0x2, 0xa}]}, 0x30}}, 0x10)
openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETAW(r9, 0x5407, &(0x7f0000000080)={0x0, 0x0, 0x8, 0xfffd, 0x9, "000100"})
ioctl$TIOCSTI(r9, 0x5412, &(0x7f0000000000)=0x1)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="4400000010004b04000023dc5ad93c5c2b7b0000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800500160003"], 0x44}}, 0x0)

191.482007ms ago: executing program 2 (id=1377):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f1, &(0x7f0000000080))

133.532628ms ago: executing program 4 (id=1378):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0xb76e}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYRES16=<r2=>r0, @ANYRES8=<r3=>r0, @ANYRES32=<r4=>r0], 0x48)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r5, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000b80)={0x3c, 0x0, 0x8, 0x3, 0x0, 0x0, {0x1, 0x0, 0x8}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8914}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x1}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8}]}]}, 0x3c}}, 0x4000004)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x2, &(0x7f00000003c0)=ANY=[@ANYRESHEX=r4, @ANYRES16=0x0, @ANYRES16=r2, @ANYRES16=r3], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x62, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xca)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r6}, 0x10)
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x0)

132.863208ms ago: executing program 3 (id=1379):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01032757c38d085641a7260000000c000180080001"], 0x20}, 0x1, 0x0, 0x0, 0x20040005}, 0x0)

105.095749ms ago: executing program 4 (id=1380):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x93}, 0x0)

79.544579ms ago: executing program 4 (id=1381):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00')
rmdir(0x0)

69.877909ms ago: executing program 2 (id=1382):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x3e, 0x1, 0x6, 0x52, 0x0, 0x8, 0x11000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x4c}, 0x11501, 0x5b8, 0x3, 0x4, 0x9, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x200000005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = gettid()
sendmsg$unix(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='>', 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100800001000000", @ANYRES16, @ANYRES32=r2, @ANYRES8=r4, @ANYRES32, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000000000001000000010000000000000000", @ANYRES32=r2, @ANYBLOB="e5ffff6e18"], 0xa0}, 0x4004881)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5dfa7b64963e832bb060e5a8f10f37dc289296ae547516279ee51368a7aeb0127abae1fdeafe85a6f8b38d6296bb3bb95bc3175f4f1a7cea449d086a1cf43bb6a5e60e023df2504c992c3e5656c122a5589aa0d1702bd9792d872cbf780272d2ca24c41c7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, r5, 0x0, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r7}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffd49, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000700)='signal_generate\x00', r8}, 0x18)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
mq_timedreceive(0xffffffffffffffff, &(0x7f0000000180)=""/196, 0xc4, 0x800000000000, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x3ed7, 0x0)

55.730779ms ago: executing program 3 (id=1383):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180100000000200000000000000000001819", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet6(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000300)='neigh_update\x00', r2, 0x0, 0x3}, 0x18)
sendto$inet6(r1, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

0s ago: executing program 4 (id=1384):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r0}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040)={0x0, <r2=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @ipv4=@multicast2}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid=r2}]}]}, 0x28}}, 0x0)

kernel console output (not intermixed with test programs):

T37] vhci_hcd: release socket
[   64.816626][   T37] vhci_hcd: disconnect device
[   64.867380][ T3720] usb 3-1: new low-speed USB device number 3 using vhci_hcd
[   64.874830][ T3720] usb 3-1: enqueue for inactive port 0
[   64.880770][ T3720] usb 3-1: enqueue for inactive port 0
[   64.886360][ T3720] usb 3-1: enqueue for inactive port 0
[   64.896547][   T29] audit: type=1326 audit(1748658233.993:3192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4933 comm="syz.2.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   64.912775][ T4946] loop2: detected capacity change from 0 to 1024
[   64.920090][   T29] audit: type=1326 audit(1748658233.993:3193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4933 comm="syz.2.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   64.949832][   T29] audit: type=1326 audit(1748658233.993:3194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4933 comm="syz.2.472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=225 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   64.988327][ T3720] vhci_hcd: vhci_device speed not set
[   65.055768][ T4955] loop2: detected capacity change from 0 to 512
[   65.077496][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.098850][ T4955] loop2: detected capacity change from 0 to 512
[   65.117549][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.159258][ T4955] loop2: detected capacity change from 0 to 512
[   65.214587][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.251419][ T4955] loop2: detected capacity change from 0 to 512
[   65.252163][ T4959] set match dimension is over the limit!
[   65.286367][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.321386][ T4955] loop2: detected capacity change from 0 to 512
[   65.341198][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.353641][ T4955] loop2: detected capacity change from 0 to 512
[   65.362325][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.393403][ T4955] loop2: detected capacity change from 0 to 512
[   65.420320][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.466724][ T4955] loop2: detected capacity change from 0 to 512
[   65.487116][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.515657][ T4955] loop2: detected capacity change from 0 to 512
[   65.534583][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.559979][ T4955] loop2: detected capacity change from 0 to 512
[   65.568579][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.585999][ T4955] loop2: detected capacity change from 0 to 512
[   65.597639][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.627601][ T4955] loop2: detected capacity change from 0 to 512
[   65.642490][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.679463][ T4955] loop2: detected capacity change from 0 to 512
[   65.695339][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.723385][ T4955] loop2: detected capacity change from 0 to 512
[   65.734315][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.784547][ T4955] loop2: detected capacity change from 0 to 512
[   65.793056][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.805995][ T4955] loop2: detected capacity change from 0 to 512
[   65.814288][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.826883][ T4955] loop2: detected capacity change from 0 to 512
[   65.834087][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.849135][ T4955] loop2: detected capacity change from 0 to 512
[   65.857680][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.885090][ T4955] loop2: detected capacity change from 0 to 512
[   65.893385][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.905566][ T4955] loop2: detected capacity change from 0 to 512
[   65.913110][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.926082][ T4955] loop2: detected capacity change from 0 to 512
[   65.934726][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.947724][ T4955] loop2: detected capacity change from 0 to 512
[   65.955426][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   65.982639][ T4955] loop2: detected capacity change from 0 to 512
[   65.992541][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   66.020687][ T4955] loop2: detected capacity change from 0 to 512
[   66.028097][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   66.045923][ T4955] loop2: detected capacity change from 0 to 512
[   66.054684][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   66.066599][ T4955] loop2: detected capacity change from 0 to 512
[   66.074220][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   66.090691][ T4955] loop2: detected capacity change from 0 to 512
[   66.101603][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   66.114178][ T4955] loop2: detected capacity change from 0 to 512
[   66.123081][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   66.150763][ T4955] loop2: detected capacity change from 0 to 512
[   66.159360][ T4955] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   66.267462][ T4982] set match dimension is over the limit!
[   66.605517][ T5010] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   66.614183][ T5010] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   66.625198][ T5010] loop3: detected capacity change from 0 to 512
[   66.646040][ T5010] ext4 filesystem being mounted at /112/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.718354][ T5014] loop2: detected capacity change from 0 to 1024
[   66.803019][ T5016] set match dimension is over the limit!
[   66.881988][ T5019] set match dimension is over the limit!
[   66.913715][ T5022] loop2: detected capacity change from 0 to 1024
[   66.920669][ T5022] EXT4-fs: Ignoring removed nobh option
[   66.926429][ T5022] EXT4-fs: Ignoring removed bh option
[   66.978133][ T5026] loop2: detected capacity change from 0 to 512
[   66.991013][ T5026] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.000430][ T5026] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   67.014740][ T5026] EXT4-fs (loop2): 1 truncate cleaned up
[   67.029702][ T5026] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[   67.036242][ T5026] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   67.044565][ T5026] vhci_hcd vhci_hcd.0: Device attached
[   67.061496][ T5028] vhci_hcd: connection closed
[   67.061647][   T51] vhci_hcd: stop threads
[   67.070672][   T51] vhci_hcd: release socket
[   67.075139][   T51] vhci_hcd: disconnect device
[   67.181839][ T5037] netlink: 'syz.0.503': attribute type 13 has an invalid length.
[   67.312667][ T5037] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.321744][ T5037] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.330705][ T5037] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.339615][ T5037] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.430694][ T5049] loop3: detected capacity change from 0 to 512
[   67.449560][ T5049] ext4: Invalid gid '0x00000000ffffffff'
[   67.460648][ T5052] set match dimension is over the limit!
[   67.501103][ T5055] __nla_validate_parse: 16 callbacks suppressed
[   67.501124][ T5055] netlink: 96 bytes leftover after parsing attributes in process `syz.0.509'.
[   67.590348][ T3325] EXT4-fs unmount: 21 callbacks suppressed
[   67.590367][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.684847][ T5069] loop2: detected capacity change from 0 to 1024
[   67.706107][ T5070] set match dimension is over the limit!
[   67.748638][ T5073] FAULT_INJECTION: forcing a failure.
[   67.748638][ T5073] name failslab, interval 1, probability 0, space 0, times 0
[   67.761444][ T5073] CPU: 0 UID: 0 PID: 5073 Comm: syz.3.516 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   67.761478][ T5073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   67.761534][ T5073] Call Trace:
[   67.761542][ T5073]  <TASK>
[   67.761551][ T5073]  __dump_stack+0x1d/0x30
[   67.761577][ T5073]  dump_stack_lvl+0xe8/0x140
[   67.761639][ T5073]  dump_stack+0x15/0x1b
[   67.761659][ T5073]  should_fail_ex+0x265/0x280
[   67.761701][ T5073]  should_failslab+0x8c/0xb0
[   67.761797][ T5073]  kmem_cache_alloc_node_noprof+0x57/0x320
[   67.761827][ T5073]  ? __alloc_skb+0x101/0x320
[   67.761909][ T5073]  __alloc_skb+0x101/0x320
[   67.762042][ T5073]  netlink_alloc_large_skb+0xba/0xf0
[   67.762073][ T5073]  netlink_sendmsg+0x3cf/0x6b0
[   67.762188][ T5073]  ? __pfx_netlink_sendmsg+0x10/0x10
[   67.762267][ T5073]  __sock_sendmsg+0x142/0x180
[   67.762305][ T5073]  ____sys_sendmsg+0x31e/0x4e0
[   67.762400][ T5073]  ___sys_sendmsg+0x17b/0x1d0
[   67.762576][ T5073]  __x64_sys_sendmsg+0xd4/0x160
[   67.762615][ T5073]  x64_sys_call+0x2999/0x2fb0
[   67.762662][ T5073]  do_syscall_64+0xd2/0x200
[   67.762695][ T5073]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   67.762793][ T5073]  ? clear_bhb_loop+0x40/0x90
[   67.762820][ T5073]  ? clear_bhb_loop+0x40/0x90
[   67.762848][ T5073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.762875][ T5073] RIP: 0033:0x7fdfbf83e969
[   67.762895][ T5073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.762979][ T5073] RSP: 002b:00007fdfbdea7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.763014][ T5073] RAX: ffffffffffffffda RBX: 00007fdfbfa65fa0 RCX: 00007fdfbf83e969
[   67.763030][ T5073] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000006
[   67.763045][ T5073] RBP: 00007fdfbdea7090 R08: 0000000000000000 R09: 0000000000000000
[   67.763060][ T5073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.763074][ T5073] R13: 0000000000000000 R14: 00007fdfbfa65fa0 R15: 00007fffca78cb48
[   67.763098][ T5073]  </TASK>
[   68.010296][ T5080] loop3: detected capacity change from 0 to 512
[   68.024797][ T5082] netlink: 96 bytes leftover after parsing attributes in process `syz.2.520'.
[   68.049035][ T5080] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.064097][ T5080] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.109302][ T5092] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[   68.140646][ T5092] loop2: detected capacity change from 0 to 2048
[   68.154504][ T5098] netlink: 1 bytes leftover after parsing attributes in process `syz.3.519'.
[   68.198186][ T5092] EXT4-fs (loop2): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.264229][   T51] nci: nci_add_new_protocol: the target found does not have the desired protocol
[   68.302457][ T5116] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=8192 sclass=netlink_xfrm_socket pid=5116 comm=syz.4.528
[   68.302849][ T5112] set match dimension is over the limit!
[   68.379921][ T5121] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 20001 - 0
[   68.388919][ T5121] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 20001 - 0
[   68.397847][ T5121] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 20001 - 0
[   68.406904][ T5121] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 20001 - 0
[   68.416631][ T5123] netlink: 96 bytes leftover after parsing attributes in process `syz.4.531'.
[   68.613307][ T5139] vlan2: entered allmulticast mode
[   68.618628][ T5139] bridge_slave_0: entered allmulticast mode
[   68.651847][ T5138] set match dimension is over the limit!
[   68.677833][ T5145] netlink: 96 bytes leftover after parsing attributes in process `syz.1.538'.
[   68.706980][ T5147] 9pnet_fd: Insufficient options for proto=fd
[   68.730725][ T5149] netlink: 'syz.1.540': attribute type 13 has an invalid length.
[   68.801073][ T5151] hub 4-0:1.0: USB hub found
[   68.805818][ T5151] hub 4-0:1.0: 8 ports detected
[   68.834240][ T5153] netlink: 96 bytes leftover after parsing attributes in process `syz.1.542'.
[   68.861047][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.964791][ T3325] EXT4-fs (loop2): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[   68.979374][ T5170] netlink: 96 bytes leftover after parsing attributes in process `syz.0.549'.
[   69.003608][ T5172] netlink: 'syz.1.551': attribute type 13 has an invalid length.
[   69.046693][ T5180] netlink: 96 bytes leftover after parsing attributes in process `syz.1.553'.
[   69.079953][ T5182] 9pnet_fd: Insufficient options for proto=fd
[   69.140596][ T5174] loop2: detected capacity change from 0 to 512
[   69.162978][ T5174] EXT4-fs: Ignoring removed mblk_io_submit option
[   69.178791][ T5174] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   69.209647][ T5174] EXT4-fs (loop2): 1 truncate cleaned up
[   69.236085][ T5174] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.273332][ T5174] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(11)
[   69.280074][ T5174] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   69.288680][ T5174] vhci_hcd vhci_hcd.0: Device attached
[   69.315061][ T5200] vhci_hcd: connection closed
[   69.315251][   T37] vhci_hcd: stop threads
[   69.324537][   T37] vhci_hcd: release socket
[   69.328993][   T37] vhci_hcd: disconnect device
[   69.361233][ T5210] netlink: 'syz.0.563': attribute type 13 has an invalid length.
[   69.369806][ T5210] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 20001 - 0
[   69.379004][ T5210] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 20001 - 0
[   69.388029][ T5210] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 20001 - 0
[   69.397246][ T5210] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 20001 - 0
[   69.428498][ T5212] netlink: 4 bytes leftover after parsing attributes in process `syz.0.564'.
[   69.478035][ T5218] 9pnet_fd: Insufficient options for proto=fd
[   69.582056][ T5223] set match dimension is over the limit!
[   69.846709][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.875935][ T5230] loop2: detected capacity change from 0 to 2048
[   69.907702][ T3643] Alternate GPT is invalid, using primary GPT.
[   69.914025][ T3643]  loop2: p1 p2 p3
[   69.922202][ T5230] Alternate GPT is invalid, using primary GPT.
[   69.928589][ T5230]  loop2: p1 p2 p3
[   70.015727][   T29] kauditd_printk_skb: 703 callbacks suppressed
[   70.015743][   T29] audit: type=1326 audit(1748658239.293:3898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5231 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   70.046537][   T29] audit: type=1326 audit(1748658239.303:3899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5231 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   70.069993][   T29] audit: type=1326 audit(1748658239.303:3900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5231 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   70.070291][ T5232] loop2: detected capacity change from 0 to 1024
[   70.093634][   T29] audit: type=1326 audit(1748658239.303:3901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5231 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   70.123375][   T29] audit: type=1326 audit(1748658239.303:3902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5231 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   70.146925][   T29] audit: type=1326 audit(1748658239.303:3903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5231 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   70.170704][   T29] audit: type=1326 audit(1748658239.303:3904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5231 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   70.194125][   T29] audit: type=1326 audit(1748658239.303:3905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5231 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   70.217477][   T29] audit: type=1326 audit(1748658239.303:3906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5231 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   70.240901][   T29] audit: type=1326 audit(1748658239.303:3907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5231 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   70.311941][ T5241] loop2: detected capacity change from 0 to 128
[   70.389391][ T5251] loop2: detected capacity change from 0 to 1024
[   70.637993][ T5283] loop2: detected capacity change from 0 to 1024
[   70.777448][ T5301] FAULT_INJECTION: forcing a failure.
[   70.777448][ T5301] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.790605][ T5301] CPU: 1 UID: 0 PID: 5301 Comm: syz.1.600 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   70.790695][ T5301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   70.790707][ T5301] Call Trace:
[   70.790713][ T5301]  <TASK>
[   70.790722][ T5301]  __dump_stack+0x1d/0x30
[   70.790771][ T5301]  dump_stack_lvl+0xe8/0x140
[   70.790789][ T5301]  dump_stack+0x15/0x1b
[   70.790807][ T5301]  should_fail_ex+0x265/0x280
[   70.790919][ T5301]  should_fail+0xb/0x20
[   70.790956][ T5301]  should_fail_usercopy+0x1a/0x20
[   70.790979][ T5301]  _copy_from_user+0x1c/0xb0
[   70.791014][ T5301]  do_ip_setsockopt+0x338/0x2240
[   70.791085][ T5301]  ip_setsockopt+0x58/0x110
[   70.791113][ T5301]  raw_setsockopt+0xbd/0x150
[   70.791144][ T5301]  sock_common_setsockopt+0x66/0x80
[   70.791248][ T5301]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   70.791322][ T5301]  __sys_setsockopt+0x184/0x200
[   70.791351][ T5301]  ? __secure_computing+0x82/0x150
[   70.791382][ T5301]  __x64_sys_setsockopt+0x64/0x80
[   70.791460][ T5301]  x64_sys_call+0x2bd5/0x2fb0
[   70.791481][ T5301]  do_syscall_64+0xd2/0x200
[   70.791506][ T5301]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   70.791643][ T5301]  ? clear_bhb_loop+0x40/0x90
[   70.791669][ T5301]  ? clear_bhb_loop+0x40/0x90
[   70.791698][ T5301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.791751][ T5301] RIP: 0033:0x7f21384ae969
[   70.791768][ T5301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.791830][ T5301] RSP: 002b:00007f2136b17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   70.791853][ T5301] RAX: ffffffffffffffda RBX: 00007f21386d5fa0 RCX: 00007f21384ae969
[   70.791868][ T5301] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003
[   70.791883][ T5301] RBP: 00007f2136b17090 R08: 0000000000000004 R09: 0000000000000000
[   70.791899][ T5301] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[   70.791913][ T5301] R13: 0000000000000000 R14: 00007f21386d5fa0 R15: 00007ffec77d3cf8
[   70.791937][ T5301]  </TASK>
[   70.792465][ T5299] loop2: detected capacity change from 0 to 512
[   71.029498][ T5299] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.042742][ T5299] ext4 filesystem being mounted at /110/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.051458][ T5309] set match dimension is over the limit!
[   71.534358][ T5334] loop4: detected capacity change from 0 to 1024
[   71.631533][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.696086][ T5335] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.708437][ T5341] loop2: detected capacity change from 0 to 1024
[   71.716501][ T5335] 8021q: adding VLAN 0 to HW filter on device team0
[   71.730448][ T5341] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.757049][ T5335] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   71.783569][ T5345] set match dimension is over the limit!
[   71.809059][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.869347][ T5349] loop2: detected capacity change from 0 to 1024
[   71.927093][ T5350] set match dimension is over the limit!
[   72.252442][ T5379] set match dimension is over the limit!
[   72.508948][ T5395] __nla_validate_parse: 12 callbacks suppressed
[   72.508960][ T5395] netlink: 80 bytes leftover after parsing attributes in process `syz.1.632'.
[   72.554918][ T5398] netlink: 96 bytes leftover after parsing attributes in process `syz.1.633'.
[   72.603129][ T5400] netlink: 32 bytes leftover after parsing attributes in process `syz.1.634'.
[   72.632749][ T5402] netlink: 96 bytes leftover after parsing attributes in process `syz.1.635'.
[   73.256497][ T5418] FAULT_INJECTION: forcing a failure.
[   73.256497][ T5418] name failslab, interval 1, probability 0, space 0, times 0
[   73.269388][ T5418] CPU: 1 UID: 0 PID: 5418 Comm: syz.2.640 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   73.269415][ T5418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   73.269427][ T5418] Call Trace:
[   73.269434][ T5418]  <TASK>
[   73.269443][ T5418]  __dump_stack+0x1d/0x30
[   73.269509][ T5418]  dump_stack_lvl+0xe8/0x140
[   73.269533][ T5418]  dump_stack+0x15/0x1b
[   73.269548][ T5418]  should_fail_ex+0x265/0x280
[   73.269578][ T5418]  ? __se_sys_memfd_create+0x1cc/0x590
[   73.269681][ T5418]  should_failslab+0x8c/0xb0
[   73.269705][ T5418]  __kmalloc_cache_noprof+0x4c/0x320
[   73.269740][ T5418]  __se_sys_memfd_create+0x1cc/0x590
[   73.269777][ T5418]  __x64_sys_memfd_create+0x31/0x40
[   73.269813][ T5418]  x64_sys_call+0x122f/0x2fb0
[   73.269870][ T5418]  do_syscall_64+0xd2/0x200
[   73.269897][ T5418]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.270035][ T5418]  ? clear_bhb_loop+0x40/0x90
[   73.270100][ T5418]  ? clear_bhb_loop+0x40/0x90
[   73.270121][ T5418]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.270200][ T5418] RIP: 0033:0x7f4e8778e969
[   73.270215][ T5418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.270232][ T5418] RSP: 002b:00007f4e85df6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   73.270255][ T5418] RAX: ffffffffffffffda RBX: 000000000000044b RCX: 00007f4e8778e969
[   73.270270][ T5418] RDX: 00007f4e85df6ef0 RSI: 0000000000000000 RDI: 00007f4e87811444
[   73.270285][ T5418] RBP: 0000200000000a40 R08: 00007f4e85df6bb7 R09: 00007f4e85df6e40
[   73.270370][ T5418] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000001c0
[   73.270383][ T5418] R13: 00007f4e85df6ef0 R14: 00007f4e85df6eb0 R15: 0000200000000580
[   73.270402][ T5418]  </TASK>
[   73.584352][ T5425] netlink: 80 bytes leftover after parsing attributes in process `syz.1.643'.
[   73.813027][ T5438] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2560 sclass=netlink_route_socket pid=5438 comm=syz.1.645
[   73.825663][ T5438] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2569 sclass=netlink_route_socket pid=5438 comm=syz.1.645
[   74.068504][ T5447] netlink: 4 bytes leftover after parsing attributes in process `syz.0.647'.
[   74.475317][ T5436] netlink: 256 bytes leftover after parsing attributes in process `syz.2.641'.
[   74.484422][ T5436] workqueue: Failed to create a rescuer kthread for wq "phy16": -EINTR
[   74.507636][ T5452] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5452 comm=syz.1.648
[   74.560933][ T5456] set match dimension is over the limit!
[   74.603699][ T5459] netlink: 68 bytes leftover after parsing attributes in process `syz.1.651'.
[   74.647980][ T5461] netlink: 80 bytes leftover after parsing attributes in process `syz.0.652'.
[   74.708804][ T5465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.654'.
[   74.787858][ T5476] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.796693][ T5476] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.805507][ T5476] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.814327][ T5476] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.131883][ T5494] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5494 comm=syz.4.660
[   75.261161][ T5496] loop4: detected capacity change from 0 to 512
[   75.279569][ T5496] EXT4-fs: Ignoring removed mblk_io_submit option
[   75.292794][ T5496] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   75.321997][ T5496] EXT4-fs (loop4): 1 truncate cleaned up
[   75.339713][ T5496] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.521242][ T5496] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(11)
[   75.527903][ T5496] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   75.535806][ T5496] vhci_hcd vhci_hcd.0: Device attached
[   75.574579][ T5507] netlink: 'syz.0.663': attribute type 13 has an invalid length.
[   75.583261][ T5501] vhci_hcd: connection closed
[   75.593204][   T37] vhci_hcd: stop threads
[   75.602373][   T37] vhci_hcd: release socket
[   75.607065][   T37] vhci_hcd: disconnect device
[   75.629621][ T5509] set match dimension is over the limit!
[   75.654149][   T29] kauditd_printk_skb: 1129 callbacks suppressed
[   75.654166][   T29] audit: type=1326 audit(1748658244.933:5037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5511 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   75.683875][   T29] audit: type=1326 audit(1748658244.933:5038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5511 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   75.707256][   T29] audit: type=1326 audit(1748658244.933:5039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5511 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   75.731471][   T29] audit: type=1326 audit(1748658245.013:5040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5511 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   75.755060][   T29] audit: type=1326 audit(1748658245.013:5041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5511 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   75.779238][   T29] audit: type=1326 audit(1748658245.063:5042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5511 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   75.802869][   T29] audit: type=1326 audit(1748658245.063:5043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5511 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   75.826389][   T29] audit: type=1326 audit(1748658245.063:5044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5511 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   75.851207][   T29] audit: type=1326 audit(1748658245.133:5045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5511 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   75.874592][   T29] audit: type=1326 audit(1748658245.133:5046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5511 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   76.053571][ T5532] set match dimension is over the limit!
[   76.217147][ T5539] sg_write: data in/out 25986/14 bytes for SCSI command 0x0-- guessing data in;
[   76.217147][ T5539]    program syz.2.675 not setting count and/or reply_len properly
[   76.279132][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.467350][ T5544] set match dimension is over the limit!
[   76.593354][ T5556] set match dimension is over the limit!
[   76.907226][ T5569] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[   76.913950][ T5569] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   76.922465][ T5569] vhci_hcd vhci_hcd.0: Device attached
[   76.965919][ T5579] vhci_hcd: connection closed
[   76.966174][   T37] vhci_hcd: stop threads
[   76.975231][   T37] vhci_hcd: release socket
[   76.979695][   T37] vhci_hcd: disconnect device
[   76.986035][ T5585] set match dimension is over the limit!
[   77.440882][ T5601] set match dimension is over the limit!
[   77.557940][ T5615] __nla_validate_parse: 8 callbacks suppressed
[   77.557959][ T5615] netlink: 96 bytes leftover after parsing attributes in process `syz.0.702'.
[   77.615494][ T5621] netlink: 80 bytes leftover after parsing attributes in process `syz.3.705'.
[   77.681528][ T5624] set match dimension is over the limit!
[   77.727678][ T5629] set match dimension is over the limit!
[   77.757728][ T5632] FAULT_INJECTION: forcing a failure.
[   77.757728][ T5632] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.770882][ T5632] CPU: 1 UID: 0 PID: 5632 Comm: syz.3.709 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   77.770969][ T5632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   77.770981][ T5632] Call Trace:
[   77.770986][ T5632]  <TASK>
[   77.770993][ T5632]  __dump_stack+0x1d/0x30
[   77.771083][ T5632]  dump_stack_lvl+0xe8/0x140
[   77.771104][ T5632]  dump_stack+0x15/0x1b
[   77.771124][ T5632]  should_fail_ex+0x265/0x280
[   77.771214][ T5632]  should_fail+0xb/0x20
[   77.771259][ T5632]  should_fail_usercopy+0x1a/0x20
[   77.771312][ T5632]  _copy_from_user+0x1c/0xb0
[   77.771338][ T5632]  __se_sys_mount+0x10d/0x2e0
[   77.771363][ T5632]  ? fput+0x8f/0xc0
[   77.771424][ T5632]  ? ksys_write+0x192/0x1a0
[   77.771445][ T5632]  __x64_sys_mount+0x67/0x80
[   77.771463][ T5632]  x64_sys_call+0xd36/0x2fb0
[   77.771562][ T5632]  do_syscall_64+0xd2/0x200
[   77.771593][ T5632]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.771624][ T5632]  ? clear_bhb_loop+0x40/0x90
[   77.771658][ T5632]  ? clear_bhb_loop+0x40/0x90
[   77.771678][ T5632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.771698][ T5632] RIP: 0033:0x7fdfbf83e969
[   77.771712][ T5632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.771754][ T5632] RSP: 002b:00007fdfbdea7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   77.771794][ T5632] RAX: ffffffffffffffda RBX: 00007fdfbfa65fa0 RCX: 00007fdfbf83e969
[   77.771810][ T5632] RDX: 0000200000000100 RSI: 0000200000000040 RDI: 0000000000000000
[   77.771824][ T5632] RBP: 00007fdfbdea7090 R08: 0000200000000140 R09: 0000000000000000
[   77.771839][ T5632] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000000000001
[   77.771851][ T5632] R13: 0000000000000000 R14: 00007fdfbfa65fa0 R15: 00007fffca78cb48
[   77.771869][ T5632]  </TASK>
[   77.973030][ T3707] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=3707 comm=kworker/1:8
[   78.051769][ T5644] netlink: 'syz.4.715': attribute type 7 has an invalid length.
[   78.059534][ T5644] netlink: 'syz.4.715': attribute type 8 has an invalid length.
[   78.070324][ T5646] netlink: 96 bytes leftover after parsing attributes in process `syz.3.716'.
[   78.099256][ T5644] loop4: detected capacity change from 0 to 512
[   78.125249][ T5648] netlink: 96 bytes leftover after parsing attributes in process `syz.0.717'.
[   78.137951][ T5644] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.161971][ T5655] netlink: 80 bytes leftover after parsing attributes in process `syz.3.719'.
[   78.171392][ T5644] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.201076][ T5644] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.210810][ T5636] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[   78.217474][ T5636] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   78.226552][ T5636] vhci_hcd vhci_hcd.0: Device attached
[   78.241540][ T5656] vhci_hcd: connection closed
[   78.310380][ T5666] FAULT_INJECTION: forcing a failure.
[   78.310380][ T5666] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.328360][ T5666] CPU: 1 UID: 0 PID: 5666 Comm: syz.3.724 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   78.328416][ T5666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   78.328432][ T5666] Call Trace:
[   78.328438][ T5666]  <TASK>
[   78.328448][ T5666]  __dump_stack+0x1d/0x30
[   78.328473][ T5666]  dump_stack_lvl+0xe8/0x140
[   78.328549][ T5666]  dump_stack+0x15/0x1b
[   78.328569][ T5666]  should_fail_ex+0x265/0x280
[   78.328609][ T5666]  should_fail+0xb/0x20
[   78.328774][ T5666]  should_fail_usercopy+0x1a/0x20
[   78.328797][ T5666]  _copy_from_user+0x1c/0xb0
[   78.328824][ T5666]  ___sys_sendmsg+0xc1/0x1d0
[   78.328876][ T5666]  __x64_sys_sendmsg+0xd4/0x160
[   78.328959][ T5666]  x64_sys_call+0x2999/0x2fb0
[   78.328983][ T5666]  do_syscall_64+0xd2/0x200
[   78.329012][ T5666]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   78.329112][ T5666]  ? clear_bhb_loop+0x40/0x90
[   78.329136][ T5666]  ? clear_bhb_loop+0x40/0x90
[   78.329186][ T5666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.329218][ T5666] RIP: 0033:0x7fdfbf83e969
[   78.329237][ T5666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.329329][ T5666] RSP: 002b:00007fdfbdea7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.329351][ T5666] RAX: ffffffffffffffda RBX: 00007fdfbfa65fa0 RCX: 00007fdfbf83e969
[   78.329366][ T5666] RDX: 0000000000000000 RSI: 0000200000001200 RDI: 0000000000000003
[   78.329381][ T5666] RBP: 00007fdfbdea7090 R08: 0000000000000000 R09: 0000000000000000
[   78.329395][ T5666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.329410][ T5666] R13: 0000000000000000 R14: 00007fdfbfa65fa0 R15: 00007fffca78cb48
[   78.329434][ T5666]  </TASK>
[   78.513160][   T37] vhci_hcd: stop threads
[   78.517470][   T37] vhci_hcd: release socket
[   78.521961][   T37] vhci_hcd: disconnect device
[   78.634302][ T5680] netlink: 80 bytes leftover after parsing attributes in process `syz.3.730'.
[   78.650926][ T5675] netlink: 28 bytes leftover after parsing attributes in process `syz.0.728'.
[   78.656078][ T5678] set match dimension is over the limit!
[   78.769845][ T5691] FAULT_INJECTION: forcing a failure.
[   78.769845][ T5691] name failslab, interval 1, probability 0, space 0, times 0
[   78.782567][ T5691] CPU: 1 UID: 0 PID: 5691 Comm: syz.3.735 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   78.782600][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   78.782615][ T5691] Call Trace:
[   78.782623][ T5691]  <TASK>
[   78.782633][ T5691]  __dump_stack+0x1d/0x30
[   78.782654][ T5691]  dump_stack_lvl+0xe8/0x140
[   78.782728][ T5691]  dump_stack+0x15/0x1b
[   78.782749][ T5691]  should_fail_ex+0x265/0x280
[   78.782832][ T5691]  should_failslab+0x8c/0xb0
[   78.782927][ T5691]  kmem_cache_alloc_noprof+0x50/0x310
[   78.782953][ T5691]  ? alloc_empty_file+0x76/0x200
[   78.782977][ T5691]  ? mntput+0x4b/0x80
[   78.783003][ T5691]  alloc_empty_file+0x76/0x200
[   78.783078][ T5691]  path_openat+0x68/0x2170
[   78.783112][ T5691]  ? strnchr+0x1e/0x40
[   78.783170][ T5691]  ? _parse_integer_limit+0x170/0x190
[   78.783275][ T5691]  ? kstrtoull+0x111/0x140
[   78.783302][ T5691]  ? kstrtouint+0x76/0xc0
[   78.783365][ T5691]  do_filp_open+0x109/0x230
[   78.783409][ T5691]  do_sys_openat2+0xa6/0x110
[   78.783446][ T5691]  __x64_sys_openat+0xf2/0x120
[   78.783549][ T5691]  x64_sys_call+0x1af/0x2fb0
[   78.783572][ T5691]  do_syscall_64+0xd2/0x200
[   78.783636][ T5691]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   78.783668][ T5691]  ? clear_bhb_loop+0x40/0x90
[   78.783695][ T5691]  ? clear_bhb_loop+0x40/0x90
[   78.783864][ T5691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.783931][ T5691] RIP: 0033:0x7fdfbf83e969
[   78.783950][ T5691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.783971][ T5691] RSP: 002b:00007fdfbdea7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   78.783992][ T5691] RAX: ffffffffffffffda RBX: 00007fdfbfa65fa0 RCX: 00007fdfbf83e969
[   78.784054][ T5691] RDX: 000000000018d001 RSI: 0000200000001940 RDI: ffffffffffffff9c
[   78.784067][ T5691] RBP: 00007fdfbdea7090 R08: 0000000000000000 R09: 0000000000000000
[   78.784081][ T5691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.784132][ T5691] R13: 0000000000000001 R14: 00007fdfbfa65fa0 R15: 00007fffca78cb48
[   78.784226][ T5691]  </TASK>
[   79.104613][ T5703] random: crng reseeded on system resumption
[   79.168704][ T5709] loop4: detected capacity change from 0 to 1024
[   79.244185][ T5710] FAULT_INJECTION: forcing a failure.
[   79.244185][ T5710] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.244216][ T5710] CPU: 0 UID: 0 PID: 5710 Comm: syz.3.742 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   79.244286][ T5710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   79.244297][ T5710] Call Trace:
[   79.244304][ T5710]  <TASK>
[   79.244381][ T5710]  __dump_stack+0x1d/0x30
[   79.244476][ T5710]  dump_stack_lvl+0xe8/0x140
[   79.244502][ T5710]  dump_stack+0x15/0x1b
[   79.244524][ T5710]  should_fail_ex+0x265/0x280
[   79.244614][ T5710]  should_fail+0xb/0x20
[   79.244697][ T5710]  should_fail_usercopy+0x1a/0x20
[   79.244722][ T5710]  _copy_to_user+0x20/0xa0
[   79.244795][ T5710]  simple_read_from_buffer+0xb5/0x130
[   79.244838][ T5710]  proc_fail_nth_read+0x100/0x140
[   79.244875][ T5710]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   79.244901][ T5710]  vfs_read+0x1a0/0x6f0
[   79.244942][ T5710]  ? __rcu_read_unlock+0x4f/0x70
[   79.245027][ T5710]  ? __fget_files+0x184/0x1c0
[   79.245057][ T5710]  ksys_read+0xda/0x1a0
[   79.245082][ T5710]  __x64_sys_read+0x40/0x50
[   79.245105][ T5710]  x64_sys_call+0x2d77/0x2fb0
[   79.245203][ T5710]  do_syscall_64+0xd2/0x200
[   79.245236][ T5710]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   79.245269][ T5710]  ? clear_bhb_loop+0x40/0x90
[   79.245302][ T5710]  ? clear_bhb_loop+0x40/0x90
[   79.245330][ T5710]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.245358][ T5710] RIP: 0033:0x7fdfbf83d37c
[   79.245443][ T5710] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   79.245467][ T5710] RSP: 002b:00007fdfbde86030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   79.245491][ T5710] RAX: ffffffffffffffda RBX: 00007fdfbfa66080 RCX: 00007fdfbf83d37c
[   79.245507][ T5710] RDX: 000000000000000f RSI: 00007fdfbde860a0 RDI: 0000000000000004
[   79.245522][ T5710] RBP: 00007fdfbde86090 R08: 0000000000000000 R09: 0000000000000000
[   79.245618][ T5710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.245633][ T5710] R13: 0000000000000000 R14: 00007fdfbfa66080 R15: 00007fffca78cb48
[   79.245657][ T5710]  </TASK>
[   79.621697][ T5721] loop4: detected capacity change from 0 to 1024
[   79.850897][ T5721] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.903777][ T5745] set_match_v0_checkentry: 2 callbacks suppressed
[   79.903792][ T5745] set match dimension is over the limit!
[   79.957527][ T5749] set match dimension is over the limit!
[   80.004203][ T5754] random: crng reseeded on system resumption
[   80.043718][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.130322][ T5760] netlink: 'syz.3.761': attribute type 1 has an invalid length.
[   80.138117][ T5760] netlink: 'syz.3.761': attribute type 2 has an invalid length.
[   80.150581][ T5760] netlink: 4 bytes leftover after parsing attributes in process `syz.3.761'.
[   80.170341][ T5760] sd 0:0:1:0: device reset
[   80.301279][ T5768] netlink: 'syz.3.763': attribute type 1 has an invalid length.
[   80.309132][ T5768] netlink: 'syz.3.763': attribute type 2 has an invalid length.
[   80.338365][ T5768] netlink: 4 bytes leftover after parsing attributes in process `syz.3.763'.
[   80.455160][ T5769] FAULT_INJECTION: forcing a failure.
[   80.455160][ T5769] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.468384][ T5769] CPU: 0 UID: 0 PID: 5769 Comm: syz.3.763 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   80.468414][ T5769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   80.468426][ T5769] Call Trace:
[   80.468468][ T5769]  <TASK>
[   80.468476][ T5769]  __dump_stack+0x1d/0x30
[   80.468501][ T5769]  dump_stack_lvl+0xe8/0x140
[   80.468564][ T5769]  dump_stack+0x15/0x1b
[   80.468583][ T5769]  should_fail_ex+0x265/0x280
[   80.468649][ T5769]  should_fail+0xb/0x20
[   80.468749][ T5769]  should_fail_usercopy+0x1a/0x20
[   80.468767][ T5769]  _copy_from_user+0x1c/0xb0
[   80.468789][ T5769]  kstrtouint_from_user+0x69/0xf0
[   80.468826][ T5769]  ? 0xffffffff81000000
[   80.468842][ T5769]  ? selinux_file_permission+0x1e4/0x320
[   80.468885][ T5769]  proc_fail_nth_write+0x50/0x160
[   80.468911][ T5769]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   80.468937][ T5769]  vfs_write+0x269/0x8e0
[   80.468958][ T5769]  ? vfs_read+0x47f/0x6f0
[   80.468998][ T5769]  ? __rcu_read_unlock+0x4f/0x70
[   80.469045][ T5769]  ? __fget_files+0x184/0x1c0
[   80.469074][ T5769]  ksys_write+0xda/0x1a0
[   80.469106][ T5769]  __x64_sys_write+0x40/0x50
[   80.469187][ T5769]  x64_sys_call+0x2cdd/0x2fb0
[   80.469215][ T5769]  do_syscall_64+0xd2/0x200
[   80.469297][ T5769]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.469321][ T5769]  ? clear_bhb_loop+0x40/0x90
[   80.469343][ T5769]  ? clear_bhb_loop+0x40/0x90
[   80.469405][ T5769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.469427][ T5769] RIP: 0033:0x7fdfbf83d41f
[   80.469445][ T5769] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   80.469466][ T5769] RSP: 002b:00007fdfbde86030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   80.469489][ T5769] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fdfbf83d41f
[   80.469505][ T5769] RDX: 0000000000000001 RSI: 00007fdfbde860a0 RDI: 000000000000000a
[   80.469565][ T5769] RBP: 00007fdfbde86090 R08: 0000000000000000 R09: 0000000000000000
[   80.469632][ T5769] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   80.469646][ T5769] R13: 0000000000000000 R14: 00007fdfbfa66080 R15: 00007fffca78cb48
[   80.469712][ T5769]  </TASK>
[   80.716515][ T5767] netlink: 9 bytes leftover after parsing attributes in process `syz.2.764'.
[   80.737879][ T5767] gretap0: entered promiscuous mode
[   80.747797][ T5767] 0ªX¹¦D: renamed from gretap0
[   80.758078][ T5767] 0ªX¹¦D: left promiscuous mode
[   80.763035][ T5767] 0ªX¹¦D: entered allmulticast mode
[   80.769769][ T5767] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[   80.888579][ T5778] set match dimension is over the limit!
[   80.958362][   T29] kauditd_printk_skb: 493 callbacks suppressed
[   80.958377][   T29] audit: type=1326 audit(1748658250.243:5540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5782 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   81.054398][ T5776] set match dimension is over the limit!
[   81.068139][   T29] audit: type=1326 audit(1748658250.243:5541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5782 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   81.091536][   T29] audit: type=1326 audit(1748658250.243:5542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5782 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   81.115026][   T29] audit: type=1326 audit(1748658250.243:5543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5782 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   81.138394][   T29] audit: type=1326 audit(1748658250.243:5544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5782 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   81.161824][   T29] audit: type=1326 audit(1748658250.243:5545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5782 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   81.185161][   T29] audit: type=1326 audit(1748658250.243:5546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5782 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   81.208694][   T29] audit: type=1326 audit(1748658250.243:5547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5782 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   81.232041][   T29] audit: type=1326 audit(1748658250.243:5548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5782 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   81.255361][   T29] audit: type=1326 audit(1748658250.243:5549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5782 comm="syz.0.768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[   81.453815][ T5806] 9pnet_fd: Insufficient options for proto=fd
[   81.467915][ T5807] netlink: 'syz.3.774': attribute type 1 has an invalid length.
[   81.475653][ T5807] netlink: 'syz.3.774': attribute type 2 has an invalid length.
[   81.514312][ T5801] sd 0:0:1:0: device reset
[   81.577300][ T5811] set match dimension is over the limit!
[   82.532204][ T5861] set match dimension is over the limit!
[   82.544493][ T5853] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[   82.551179][ T5853] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   82.559181][ T5853] vhci_hcd vhci_hcd.0: Device attached
[   82.611539][ T5863] vhci_hcd: connection closed
[   82.616943][ T5594] vhci_hcd: stop threads
[   82.625942][ T5594] vhci_hcd: release socket
[   82.630465][ T5594] vhci_hcd: disconnect device
[   82.657600][ T5866] __nla_validate_parse: 12 callbacks suppressed
[   82.657672][ T5866] netlink: 36 bytes leftover after parsing attributes in process `syz.4.796'.
[   82.718992][ T5872] netlink: 20 bytes leftover after parsing attributes in process `syz.0.799'.
[   82.728934][ T5871] netlink: 96 bytes leftover after parsing attributes in process `syz.2.798'.
[   82.768780][ T5875] netlink: 96 bytes leftover after parsing attributes in process `syz.1.800'.
[   82.801481][ T5879] netlink: 36 bytes leftover after parsing attributes in process `syz.2.803'.
[   82.856501][ T5885] netlink: 96 bytes leftover after parsing attributes in process `syz.2.805'.
[   82.872742][ T5889] netlink: 36 bytes leftover after parsing attributes in process `syz.4.807'.
[   82.892610][ T5891] set match dimension is over the limit!
[   82.950472][ T5897] loop4: detected capacity change from 0 to 1024
[   83.081948][ T5911] netlink: 96 bytes leftover after parsing attributes in process `syz.2.813'.
[   83.110285][ T5913] netlink: 96 bytes leftover after parsing attributes in process `syz.2.814'.
[   83.146623][ T5917] netlink: 36 bytes leftover after parsing attributes in process `syz.1.816'.
[   83.215667][ T5923] set match dimension is over the limit!
[   83.507811][ T5955] set match dimension is over the limit!
[   83.653063][ T5966] SELinux: syz.3.837 (5966) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   83.812435][ T5985] block device autoloading is deprecated and will be removed.
[   84.084479][ T3707] IPVS: starting estimator thread 0...
[   84.090228][ T6006] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[   84.176975][ T6008] IPVS: using max 2352 ests per chain, 117600 per kthread
[   84.220377][ T6010] set match dimension is over the limit!
[   84.337197][ T6020] loop2: detected capacity change from 0 to 1024
[   84.435017][ T6025] loop2: detected capacity change from 0 to 1024
[   84.453459][ T6025] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.482027][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.553960][ T6031] mmap: syz.3.861 (6031) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   84.595557][ T6031] SELinux: security_context_str_to_sid () failed with errno=-22
[   84.688752][ T6034] FAULT_INJECTION: forcing a failure.
[   84.688752][ T6034] name failslab, interval 1, probability 0, space 0, times 0
[   84.701536][ T6034] CPU: 0 UID: 0 PID: 6034 Comm: syz.2.862 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   84.701570][ T6034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   84.701585][ T6034] Call Trace:
[   84.701598][ T6034]  <TASK>
[   84.701608][ T6034]  __dump_stack+0x1d/0x30
[   84.701633][ T6034]  dump_stack_lvl+0xe8/0x140
[   84.701696][ T6034]  dump_stack+0x15/0x1b
[   84.701712][ T6034]  should_fail_ex+0x265/0x280
[   84.701814][ T6034]  should_failslab+0x8c/0xb0
[   84.701841][ T6034]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   84.701874][ T6034]  ? __d_alloc+0x3d/0x350
[   84.701930][ T6034]  __d_alloc+0x3d/0x350
[   84.701985][ T6034]  d_alloc+0x2e/0x100
[   84.702016][ T6034]  lookup_one_qstr_excl_raw+0x95/0x1b0
[   84.702045][ T6034]  filename_create+0x14a/0x290
[   84.702079][ T6034]  do_mkdirat+0x52/0x3f0
[   84.702229][ T6034]  __x64_sys_mkdirat+0x4c/0x60
[   84.702265][ T6034]  x64_sys_call+0x2be0/0x2fb0
[   84.702285][ T6034]  do_syscall_64+0xd2/0x200
[   84.702317][ T6034]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.702380][ T6034]  ? clear_bhb_loop+0x40/0x90
[   84.702455][ T6034]  ? clear_bhb_loop+0x40/0x90
[   84.702483][ T6034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.702510][ T6034] RIP: 0033:0x7f4e8778e969
[   84.702529][ T6034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.702547][ T6034] RSP: 002b:00007f4e85db5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[   84.702565][ T6034] RAX: ffffffffffffffda RBX: 00007f4e879b6160 RCX: 00007f4e8778e969
[   84.702653][ T6034] RDX: 0000000000000080 RSI: 0000200000002040 RDI: ffffffffffffff9c
[   84.702669][ T6034] RBP: 00007f4e85db5090 R08: 0000000000000000 R09: 0000000000000000
[   84.702683][ T6034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.702698][ T6034] R13: 0000000000000000 R14: 00007f4e879b6160 R15: 00007ffc80926658
[   84.702743][ T6034]  </TASK>
[   85.063644][ T6042] set match dimension is over the limit!
[   85.823626][ T6096] set match dimension is over the limit!
[   85.948721][ T6103] nfs: Unknown parameter 'uid<00000000000000000000'
[   86.046156][   T29] kauditd_printk_skb: 1529 callbacks suppressed
[   86.046173][   T29] audit: type=1326 audit(1748658255.323:7079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz.3.892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   86.076482][   T29] audit: type=1326 audit(1748658255.323:7080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz.3.892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   86.100614][   T29] audit: type=1326 audit(1748658255.323:7081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz.3.892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   86.124119][   T29] audit: type=1326 audit(1748658255.323:7082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz.3.892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   86.147732][   T29] audit: type=1326 audit(1748658255.323:7083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz.3.892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   86.171061][   T29] audit: type=1326 audit(1748658255.323:7084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz.3.892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   86.194649][   T29] audit: type=1326 audit(1748658255.323:7085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz.3.892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   86.218081][   T29] audit: type=1326 audit(1748658255.323:7086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz.3.892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   86.241448][   T29] audit: type=1326 audit(1748658255.323:7087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz.3.892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   86.264843][   T29] audit: type=1326 audit(1748658255.323:7088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz.3.892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   86.932596][ T6135] loop4: detected capacity change from 0 to 512
[   86.978193][ T6135] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.992450][ T6139] set match dimension is over the limit!
[   87.002139][ T6135] ext4 filesystem being mounted at /148/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.722401][ T6204] set match dimension is over the limit!
[   87.749919][ T6207] __nla_validate_parse: 16 callbacks suppressed
[   87.749940][ T6207] netlink: 96 bytes leftover after parsing attributes in process `syz.0.928'.
[   87.769981][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.848120][ T6212] loop4: detected capacity change from 0 to 2048
[   87.888348][ T6212] EXT4-fs (loop4): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.911349][ T6212] EXT4-fs error (device loop4): ext4_lookup:1787: inode #16: comm syz.4.929: iget: bad i_size value: 8796093031208
[   87.954081][ T3326] EXT4-fs (loop4): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[   87.989016][ T6224] netlink: 'syz.4.934': attribute type 13 has an invalid length.
[   88.042095][ T6228] netlink: 96 bytes leftover after parsing attributes in process `syz.4.936'.
[   88.086114][ T6230] 9pnet: Could not find request transport: fd0x0000000000000003
[   88.118020][ T6233] loop2: detected capacity change from 0 to 1024
[   88.130526][ T6233] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.146400][ T6236] loop4: detected capacity change from 0 to 512
[   88.149807][ T6233] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.189636][ T6236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.207243][ T6236] ext4 filesystem being mounted at /154/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.225197][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.271446][ T6243] netlink: 96 bytes leftover after parsing attributes in process `syz.2.940'.
[   88.318752][ T6247] loop2: detected capacity change from 0 to 1024
[   88.350952][ T6247] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.386413][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.407755][ T6251] netlink: 96 bytes leftover after parsing attributes in process `syz.2.943'.
[   88.478330][ T6255] netlink: 'syz.2.945': attribute type 13 has an invalid length.
[   88.892859][ T6261] netlink: 96 bytes leftover after parsing attributes in process `syz.1.947'.
[   88.959644][ T6266] 9pnet: Could not find request transport: fd0x0000000000000003
[   88.986271][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.098629][ T6275] netlink: 96 bytes leftover after parsing attributes in process `syz.4.952'.
[   89.263523][ T6285] netlink: 80 bytes leftover after parsing attributes in process `syz.4.957'.
[   89.276159][ T6282] set match dimension is over the limit!
[   89.296985][ T6286] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   89.323996][ T6285] loop4: detected capacity change from 0 to 1024
[   89.427383][ T6292] netlink: 96 bytes leftover after parsing attributes in process `syz.4.959'.
[   89.631882][ T6302] loop4: detected capacity change from 0 to 1024
[   89.658315][ T6302] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.687141][ T6302] ext4 filesystem being mounted at /162/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.775635][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.039378][ T6313] netlink: 'syz.4.965': attribute type 1 has an invalid length.
[   90.116319][ T6313] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[   90.123959][ T6313] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   90.230505][ T6313] loop4: detected capacity change from 0 to 512
[   90.274938][ T6313] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.305481][ T6313] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   90.313642][ T6313] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[   90.367026][ T6313] EXT4-fs (loop4): couldn't mount RDWR because of unsupported optional features (80)
[   90.376682][ T6313] EXT4-fs (loop4): Skipping orphan cleanup due to unknown ROCOMPAT features
[   90.386047][ T6313] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   90.515652][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.561829][ T6319] loop1: detected capacity change from 0 to 2048
[   90.614964][ T3308] Alternate GPT is invalid, using primary GPT.
[   90.621482][ T3308]  loop1: p2 p3 p7
[   90.664078][ T6319] Alternate GPT is invalid, using primary GPT.
[   90.670481][ T6319]  loop1: p2 p3 p7
[   90.721098][ T6334] netlink: 96 bytes leftover after parsing attributes in process `syz.4.974'.
[   90.772752][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   90.772868][ T3643] udevd[3643]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   90.775045][ T3642] udevd[3642]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory
[   90.780017][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   90.790260][ T3642] udevd[3642]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory
[   90.834191][ T6332] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[   90.838501][ T3643] udevd[3643]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   90.840881][ T6332] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   90.842246][ T6332] vhci_hcd vhci_hcd.0: Device attached
[   90.950180][ T6344] set match dimension is over the limit!
[   90.977023][ T6338] vhci_hcd: connection closed
[   90.999025][  T414] vhci_hcd: stop threads
[   91.008068][  T414] vhci_hcd: release socket
[   91.012519][  T414] vhci_hcd: disconnect device
[   91.077026][ T3712] vhci_hcd: vhci_device speed not set
[   91.493989][   T29] kauditd_printk_skb: 992 callbacks suppressed
[   91.494010][   T29] audit: type=1326 audit(1748658260.733:8081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.1.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21384ae969 code=0x7ffc0000
[   91.523644][   T29] audit: type=1326 audit(1748658260.733:8082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6349 comm="syz.1.979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21384ae969 code=0x7ffc0000
[   91.580993][   T29] audit: type=1326 audit(1748658260.863:8083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6368 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   91.604490][   T29] audit: type=1326 audit(1748658260.863:8084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6368 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   91.633107][   T29] audit: type=1326 audit(1748658260.913:8085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6368 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   91.656519][   T29] audit: type=1326 audit(1748658260.913:8086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6368 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   91.679939][   T29] audit: type=1326 audit(1748658260.913:8087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6368 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   91.703501][   T29] audit: type=1326 audit(1748658260.913:8088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6368 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   91.726916][   T29] audit: type=1326 audit(1748658260.913:8089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6368 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   91.750633][   T29] audit: type=1326 audit(1748658260.913:8090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6368 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf83e969 code=0x7ffc0000
[   91.845074][ T6380] set match dimension is over the limit!
[   91.858723][ T6370] loop3: detected capacity change from 0 to 1024
[   91.859806][ T6382] set match dimension is over the limit!
[   91.907993][ T6385] loop1: detected capacity change from 0 to 1024
[   91.965246][ T6385] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.985292][ T6385] ext4 filesystem being mounted at /213/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.078535][ T6401] loop4: detected capacity change from 0 to 2048
[   92.190257][ T6395] loop2: detected capacity change from 0 to 512
[   92.210549][ T6395] EXT4-fs: Ignoring removed mblk_io_submit option
[   92.224558][ T6395] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   92.262416][ T6395] EXT4-fs (loop2): 1 truncate cleaned up
[   92.274322][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.304842][ T6395] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.361571][ T6395] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(11)
[   92.368299][ T6395] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   92.376631][ T6395] vhci_hcd vhci_hcd.0: Device attached
[   92.393258][ T6409] vhci_hcd: connection closed
[   92.393585][   T12] vhci_hcd: stop threads
[   92.402632][   T12] vhci_hcd: release socket
[   92.407145][   T12] vhci_hcd: disconnect device
[   92.457211][ T6414] set match dimension is over the limit!
[   92.958642][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.063778][ T6433] loop2: detected capacity change from 0 to 1024
[   93.088350][ T6433] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.116798][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.204957][ T6445] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.213765][ T6445] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.235338][ T6445] loop1: detected capacity change from 0 to 512
[   93.241205][ T6450] set match dimension is over the limit!
[   93.268758][ T6445] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.287571][ T6445] ext4 filesystem being mounted at /215/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.301169][ T6445] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.334209][ T6459] FAULT_INJECTION: forcing a failure.
[   93.334209][ T6459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.347367][ T6459] CPU: 0 UID: 0 PID: 6459 Comm: syz.2.1017 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   93.347455][ T6459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   93.347494][ T6459] Call Trace:
[   93.347500][ T6459]  <TASK>
[   93.347507][ T6459]  __dump_stack+0x1d/0x30
[   93.347525][ T6459]  dump_stack_lvl+0xe8/0x140
[   93.347542][ T6459]  dump_stack+0x15/0x1b
[   93.347556][ T6459]  should_fail_ex+0x265/0x280
[   93.347634][ T6459]  should_fail+0xb/0x20
[   93.347659][ T6459]  should_fail_usercopy+0x1a/0x20
[   93.347675][ T6459]  _copy_from_user+0x1c/0xb0
[   93.347694][ T6459]  __sys_bpf+0x178/0x790
[   93.347735][ T6459]  __x64_sys_bpf+0x41/0x50
[   93.347759][ T6459]  x64_sys_call+0x2478/0x2fb0
[   93.347777][ T6459]  do_syscall_64+0xd2/0x200
[   93.347867][ T6459]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   93.347889][ T6459]  ? clear_bhb_loop+0x40/0x90
[   93.347907][ T6459]  ? clear_bhb_loop+0x40/0x90
[   93.347925][ T6459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.348009][ T6459] RIP: 0033:0x7f4e8778e969
[   93.348022][ T6459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.348037][ T6459] RSP: 002b:00007f4e85df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   93.348085][ T6459] RAX: ffffffffffffffda RBX: 00007f4e879b5fa0 RCX: 00007f4e8778e969
[   93.348102][ T6459] RDX: 0000000000000094 RSI: 00002000000005c0 RDI: 0000000000000005
[   93.348113][ T6459] RBP: 00007f4e85df7090 R08: 0000000000000000 R09: 0000000000000000
[   93.348123][ T6459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.348134][ T6459] R13: 0000000000000000 R14: 00007f4e879b5fa0 R15: 00007ffc80926658
[   93.348151][ T6459]  </TASK>
[   93.676521][ T6477] set match dimension is over the limit!
[   93.726046][ T6480] loop2: detected capacity change from 0 to 4096
[   93.735554][ T6480] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.758476][ T6480] program syz.2.1026 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   93.780461][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.825361][ T6483] loop2: detected capacity change from 0 to 2048
[   93.899110][ T3643] Alternate GPT is invalid, using primary GPT.
[   93.905699][ T3643]  loop2: p2 p3 p7
[   93.941794][ T6483] loop_reread_partitions: partition scan of loop2 () failed (rc=-16)
[   94.008597][ T3642] udevd[3642]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   94.009684][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   94.021319][ T3643] udevd[3643]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   95.433575][ T6506] loop3: detected capacity change from 0 to 4096
[   95.451000][ T6508] loop1: detected capacity change from 0 to 1024
[   95.797318][ T6506] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.868473][ T6506] program syz.3.1035 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   95.878943][ T6506] FAULT_INJECTION: forcing a failure.
[   95.878943][ T6506] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.892168][ T6506] CPU: 1 UID: 0 PID: 6506 Comm: syz.3.1035 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   95.892327][ T6506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   95.892342][ T6506] Call Trace:
[   95.892349][ T6506]  <TASK>
[   95.892357][ T6506]  __dump_stack+0x1d/0x30
[   95.892435][ T6506]  dump_stack_lvl+0xe8/0x140
[   95.892483][ T6506]  dump_stack+0x15/0x1b
[   95.892501][ T6506]  should_fail_ex+0x265/0x280
[   95.892542][ T6506]  should_fail+0xb/0x20
[   95.892648][ T6506]  should_fail_usercopy+0x1a/0x20
[   95.892672][ T6506]  _copy_to_user+0x20/0xa0
[   95.892717][ T6506]  scsi_ioctl+0x13c8/0x14d0
[   95.892744][ T6506]  ? avc_has_perm+0xd3/0x150
[   95.892777][ T6506]  ? file_has_perm+0x324/0x370
[   95.892822][ T6506]  ? do_vfs_ioctl+0x9df/0x11d0
[   95.892858][ T6506]  sg_ioctl+0xdf6/0x1360
[   95.892893][ T6506]  ? __pfx_sg_ioctl+0x10/0x10
[   95.892939][ T6506]  __se_sys_ioctl+0xce/0x140
[   95.892970][ T6506]  __x64_sys_ioctl+0x43/0x50
[   95.893047][ T6506]  x64_sys_call+0x19a8/0x2fb0
[   95.893069][ T6506]  do_syscall_64+0xd2/0x200
[   95.893095][ T6506]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   95.893124][ T6506]  ? clear_bhb_loop+0x40/0x90
[   95.893178][ T6506]  ? clear_bhb_loop+0x40/0x90
[   95.893206][ T6506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.893306][ T6506] RIP: 0033:0x7fdfbf83e969
[   95.893419][ T6506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.893441][ T6506] RSP: 002b:00007fdfbdea7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   95.893464][ T6506] RAX: ffffffffffffffda RBX: 00007fdfbfa65fa0 RCX: 00007fdfbf83e969
[   95.893479][ T6506] RDX: 0000200000000200 RSI: 0000000000000001 RDI: 000000000000000c
[   95.893493][ T6506] RBP: 00007fdfbdea7090 R08: 0000000000000000 R09: 0000000000000000
[   95.893508][ T6506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.893522][ T6506] R13: 0000000000000000 R14: 00007fdfbfa65fa0 R15: 00007fffca78cb48
[   95.893544][ T6506]  </TASK>
[   96.133932][ T6523] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   96.143540][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.154216][ T6523] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   96.179639][ T6523] loop1: detected capacity change from 0 to 512
[   96.203150][ T6523] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.217435][ T6523] ext4 filesystem being mounted at /221/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.239808][ T6523] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.473817][ T6548] loop2: detected capacity change from 0 to 1024
[   96.501583][   T29] kauditd_printk_skb: 339 callbacks suppressed
[   96.501604][   T29] audit: type=1326 audit(1748658265.763:8430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6546 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4e8778d5ca code=0x7ffc0000
[   96.531254][   T29] audit: type=1326 audit(1748658265.773:8431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6546 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4e8778d5ca code=0x7ffc0000
[   96.554792][   T29] audit: type=1326 audit(1748658265.773:8432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6546 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f4e8778d1d7 code=0x7ffc0000
[   96.578223][   T29] audit: type=1326 audit(1748658265.773:8433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6546 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f4e8779010a code=0x7ffc0000
[   96.601767][   T29] audit: type=1326 audit(1748658265.773:8434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6546 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4e8778d2d0 code=0x7ffc0000
[   96.625579][   T29] audit: type=1326 audit(1748658265.773:8435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6546 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4e8778e56b code=0x7ffc0000
[   96.649004][   T29] audit: type=1326 audit(1748658265.773:8436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6546 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4e8778d5ca code=0x7ffc0000
[   96.672431][   T29] audit: type=1326 audit(1748658265.773:8437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6546 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   96.696005][   T29] audit: type=1326 audit(1748658265.773:8438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6546 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   96.844076][   T29] audit: type=1326 audit(1748658266.003:8439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6546 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4e8778e969 code=0x7ffc0000
[   96.868925][ T6556] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   96.891003][ T6558] vlan2: entered allmulticast mode
[   96.907307][ T6556] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   97.037581][ T6568] set match dimension is over the limit!
[   97.070728][ T6571] netlink: 'syz.1.1056': attribute type 4 has an invalid length.
[   97.079019][ T6571] __nla_validate_parse: 4 callbacks suppressed
[   97.079035][ T6571] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1056'.
[   97.298505][ T6580] loop3: detected capacity change from 0 to 1024
[   97.388069][ T6590] loop4: detected capacity change from 0 to 512
[   97.421093][ T6592] set match dimension is over the limit!
[   97.428370][ T6589] loop3: detected capacity change from 0 to 2048
[   97.462820][ T6590] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.481364][ T6590] ext4 filesystem being mounted at /188/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.483493][ T6589] Alternate GPT is invalid, using primary GPT.
[   97.498333][ T6589]  loop3: p2 p3 p7
[   97.633210][ T3642] udevd[3642]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   97.645290][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   97.660958][ T3643] udevd[3643]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   97.857466][ T6617] loop2: detected capacity change from 0 to 1024
[   97.932893][ T6623] set match dimension is over the limit!
[   98.030114][ T6629] FAULT_INJECTION: forcing a failure.
[   98.030114][ T6629] name failslab, interval 1, probability 0, space 0, times 0
[   98.042977][ T6629] CPU: 1 UID: 0 PID: 6629 Comm: syz.3.1079 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[   98.043022][ T6629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   98.043035][ T6629] Call Trace:
[   98.043043][ T6629]  <TASK>
[   98.043053][ T6629]  __dump_stack+0x1d/0x30
[   98.043080][ T6629]  dump_stack_lvl+0xe8/0x140
[   98.043171][ T6629]  dump_stack+0x15/0x1b
[   98.043258][ T6629]  should_fail_ex+0x265/0x280
[   98.043300][ T6629]  should_failslab+0x8c/0xb0
[   98.043327][ T6629]  kmem_cache_alloc_noprof+0x50/0x310
[   98.043407][ T6629]  ? audit_log_start+0x365/0x6c0
[   98.043448][ T6629]  audit_log_start+0x365/0x6c0
[   98.043487][ T6629]  ? _raw_spin_unlock+0x26/0x50
[   98.043602][ T6629]  ? finish_task_switch+0xad/0x2b0
[   98.043633][ T6629]  audit_seccomp+0x48/0x100
[   98.043688][ T6629]  ? __seccomp_filter+0x68c/0x10d0
[   98.043714][ T6629]  __seccomp_filter+0x69d/0x10d0
[   98.043745][ T6629]  ? kfree+0xd9/0x320
[   98.043883][ T6629]  ? sctp_setsockopt_default_prinfo+0x496/0x4d0
[   98.043929][ T6629]  ? sctp_setsockopt+0xa69/0xe30
[   98.043959][ T6629]  __secure_computing+0x82/0x150
[   98.044024][ T6629]  syscall_trace_enter+0xcf/0x1e0
[   98.044055][ T6629]  do_syscall_64+0xac/0x200
[   98.044120][ T6629]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   98.044155][ T6629]  ? clear_bhb_loop+0x40/0x90
[   98.044181][ T6629]  ? clear_bhb_loop+0x40/0x90
[   98.044210][ T6629]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.044283][ T6629] RIP: 0033:0x7fdfbf83d37c
[   98.044303][ T6629] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   98.044326][ T6629] RSP: 002b:00007fdfbdea7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   98.044347][ T6629] RAX: ffffffffffffffda RBX: 00007fdfbfa65fa0 RCX: 00007fdfbf83d37c
[   98.044362][ T6629] RDX: 000000000000000f RSI: 00007fdfbdea70a0 RDI: 0000000000000004
[   98.044377][ T6629] RBP: 00007fdfbdea7090 R08: 0000000000000000 R09: 0000000000000000
[   98.044466][ T6629] R10: 0000200000000240 R11: 0000000000000246 R12: 0000000000000001
[   98.044479][ T6629] R13: 0000000000000000 R14: 00007fdfbfa65fa0 R15: 00007fffca78cb48
[   98.044504][ T6629]  </TASK>
[   98.069696][ T6627] loop2: detected capacity change from 0 to 512
[   98.291496][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.310243][ T6627] EXT4-fs: Ignoring removed mblk_io_submit option
[   98.322983][ T6627] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   98.387678][ T6636] loop4: detected capacity change from 0 to 1024
[   98.396707][ T6639] loop3: detected capacity change from 0 to 1024
[   98.406553][ T6627] EXT4-fs (loop2): 1 truncate cleaned up
[   98.431900][ T6636] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.446304][ T6627] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.460121][ T6636] ext4 filesystem being mounted at /190/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.525137][ T6645] loop3: detected capacity change from 0 to 1024
[   98.573634][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.646443][ T6655] loop3: detected capacity change from 0 to 512
[   98.669118][ T6658] set match dimension is over the limit!
[   98.682831][ T6627] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[   98.689426][ T6627] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   98.702823][ T6627] vhci_hcd vhci_hcd.0: Device attached
[   98.733531][ T6659] vhci_hcd: connection closed
[   98.733882][   T31] vhci_hcd: stop threads
[   98.742997][   T31] vhci_hcd: release socket
[   98.747494][   T31] vhci_hcd: disconnect device
[   98.755674][ T6655] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.779610][ T6655] ext4 filesystem being mounted at /242/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.834115][ T6674] set match dimension is over the limit!
[   98.848098][ T6677] loop4: detected capacity change from 0 to 2048
[   98.900309][ T6677] Alternate GPT is invalid, using primary GPT.
[   98.906893][ T6677]  loop4: p2 p3 p7
[   98.961055][ T6681] loop1: detected capacity change from 0 to 1024
[   99.057679][ T6687] loop1: detected capacity change from 0 to 1024
[   99.069506][ T6687] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.099818][ T6687] ext4 filesystem being mounted at /237/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.172523][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.209513][ T6699] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1102'.
[   99.256884][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.329313][ T6701] set match dimension is over the limit!
[   99.364919][ T6707] set match dimension is over the limit!
[   99.438491][ T6716] netdevsim netdevsim1: Direct firmware load for ÿÿÿÿ failed with error -2
[   99.475456][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.513034][ T6722] loop3: detected capacity change from 0 to 512
[   99.528501][ T6724] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1111'.
[   99.577852][ T6722] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.638063][ T6734] loop1: detected capacity change from 0 to 1024
[   99.660525][ T6722] ext4 filesystem being mounted at /243/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   99.671338][ T6736] SELinux: syz.2.1116 (6736) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   99.687376][ T6734] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.720802][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.730492][ T6734] EXT4-fs: Ignoring sb option on remount
[   99.736205][ T6734] EXT4-fs: Ignoring removed orlov option
[   99.746280][ T6734] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[   99.760013][ T6734] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[   99.784297][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.821189][ T6746] set match dimension is over the limit!
[  100.017454][ T6756] loop2: detected capacity change from 0 to 512
[  100.037843][ T6754] set match dimension is over the limit!
[  100.083226][ T6756] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.163878][ T6756] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.254108][ T6764] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1122'.
[  100.341764][ T6769] loop3: detected capacity change from 0 to 2048
[  100.477303][ T6771] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1121'.
[  100.553510][ T6777] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1125'.
[  100.723657][ T6784] set match dimension is over the limit!
[  100.878151][ T6787] loop1: detected capacity change from 0 to 8192
[  100.885870][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.919862][ T6787]  loop1: p3
[  100.925528][ T6787] loop1: p3 size 196608 extends beyond EOD, truncated
[  100.947697][ T6787] netlink: 'syz.1.1129': attribute type 10 has an invalid length.
[  100.955871][ T6787] macvlan1: entered promiscuous mode
[  100.967177][ T6787] bond0: (slave macvlan1): Enslaving as an active interface with an up link
[  101.237041][ T6805] netlink: 'syz.3.1135': attribute type 13 has an invalid length.
[  101.252748][ T6805] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 20001 - 0
[  101.261943][ T6805] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 20001 - 0
[  101.270996][ T6805] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 20001 - 0
[  101.280145][ T6805] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 20001 - 0
[  101.332978][ T6815] loop1: detected capacity change from 0 to 512
[  101.372603][ T6815] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.410369][ T6815] ext4 filesystem being mounted at /251/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.439541][ T6826] loop3: detected capacity change from 0 to 512
[  101.490046][ T6826] EXT4-fs (loop3): 1 orphan inode deleted
[  101.496440][ T6826] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.509826][   T37] __quota_error: 681 callbacks suppressed
[  101.509841][   T37] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  101.525405][   T37] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[  101.537944][ T6826] ext4 filesystem being mounted at /250/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.569013][ T6826] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.1144: iget: bad i_size value: 360287970189639690
[  101.586923][ T6826] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.1144: iget: bad i_size value: 360287970189639690
[  101.657822][ T6836] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1144'.
[  101.666777][ T6836] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1144'.
[  101.695962][ T6836] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1144'.
[  101.735080][ T6836] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1144'.
[  101.793427][ T6843] netlink: 'syz.0.1147': attribute type 1 has an invalid length.
[  101.812035][ T6843] 8021q: adding VLAN 0 to HW filter on device bond1
[  102.182870][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.289289][   T29] audit: type=1400 audit(1748658271.563:9119): avc:  denied  { read } for  pid=6866 comm="+}[@" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  102.312004][   T29] audit: type=1400 audit(1748658271.563:9120): avc:  denied  { open } for  pid=6866 comm="+}[@" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  102.335462][   T29] audit: type=1400 audit(1748658271.563:9121): avc:  denied  { ioctl } for  pid=6866 comm="+}[@" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  102.369510][ T6870] __nla_validate_parse: 6 callbacks suppressed
[  102.369574][ T6870] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1157'.
[  102.388582][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.461044][ T6875] loop3: detected capacity change from 0 to 2048
[  102.493454][ T6881] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1162'.
[  102.544455][ T6875] Alternate GPT is invalid, using primary GPT.
[  102.550853][ T6875]  loop3: p2 p3 p7
[  102.858511][ T6901] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1169'.
[  102.885152][ T6903] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1170'.
[  102.894654][ T6903] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1170'.
[  102.920838][ T6905] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1171'.
[  102.977150][ T6911] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1174'.
[  103.002922][ T6913] netlink: 'syz.0.1175': attribute type 1 has an invalid length.
[  103.015839][ T6913] 8021q: adding VLAN 0 to HW filter on device bond2
[  103.030413][ T6913] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1175'.
[  103.041425][ T6913] bond2 (unregistering): Released all slaves
[  103.130468][   T29] audit: type=1326 audit(1748658272.413:9122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6917 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[  103.154100][   T29] audit: type=1326 audit(1748658272.413:9123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6917 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[  103.177774][   T29] audit: type=1326 audit(1748658272.413:9124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6917 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[  103.201372][   T29] audit: type=1326 audit(1748658272.413:9125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6917 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[  103.224919][   T29] audit: type=1326 audit(1748658272.413:9126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6917 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[  103.248403][   T29] audit: type=1326 audit(1748658272.413:9127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6917 comm="syz.0.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[  103.316022][ T6925] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1180'.
[  103.457815][ T6933] set_match_v0_checkentry: 3 callbacks suppressed
[  103.457836][ T6933] set match dimension is over the limit!
[  104.006988][ T7013] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1191'.
[  104.668234][ T7034] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  104.675025][ T7034] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  104.689735][ T7034] vhci_hcd vhci_hcd.0: Device attached
[  104.704623][ T7035] vhci_hcd: connection closed
[  104.705756][ T6998] vhci_hcd: stop threads
[  104.714861][ T6998] vhci_hcd: release socket
[  104.719388][ T6998] vhci_hcd: disconnect device
[  105.716697][ T7078] block device autoloading is deprecated and will be removed.
[  105.829297][ T7092] loop3: detected capacity change from 0 to 1024
[  105.830839][ T7091] loop4: detected capacity change from 0 to 164
[  105.864449][ T7094] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.880263][ T7092] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  105.900757][ T7094] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  105.929067][ T7092] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.958846][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.636885][   T29] kauditd_printk_skb: 545 callbacks suppressed
[  106.636945][   T29] audit: type=1326 audit(1748658275.913:9673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7111 comm="syz.0.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[  106.666688][   T29] audit: type=1326 audit(1748658275.913:9674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7111 comm="syz.0.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8662abe969 code=0x7ffc0000
[  106.872642][   T29] audit: type=1326 audit(1748658276.143:9675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7137 comm="syz.4.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8030e969 code=0x7ffc0000
[  106.896237][   T29] audit: type=1326 audit(1748658276.143:9676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7137 comm="syz.4.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8030e969 code=0x7ffc0000
[  106.919896][   T29] audit: type=1326 audit(1748658276.143:9677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7137 comm="syz.4.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7fbc8030e969 code=0x7ffc0000
[  106.943343][   T29] audit: type=1326 audit(1748658276.143:9678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7137 comm="syz.4.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8030e969 code=0x7ffc0000
[  106.966897][   T29] audit: type=1326 audit(1748658276.143:9679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7137 comm="syz.4.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc8030e969 code=0x7ffc0000
[  106.990340][   T29] audit: type=1326 audit(1748658276.143:9680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7137 comm="syz.4.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8030e969 code=0x7ffc0000
[  107.013861][   T29] audit: type=1326 audit(1748658276.143:9681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7137 comm="syz.4.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc8030e969 code=0x7ffc0000
[  107.037315][   T29] audit: type=1326 audit(1748658276.143:9682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7137 comm="syz.4.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8030e969 code=0x7ffc0000
[  107.090241][ T7154] netlink: 'syz.2.1244': attribute type 39 has an invalid length.
[  107.423965][ T7166] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  107.430536][ T7166] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  107.438514][ T7166] vhci_hcd vhci_hcd.0: Device attached
[  107.456201][ T7171] vhci_hcd: connection closed
[  107.456475][ T5594] vhci_hcd: stop threads
[  107.465618][ T5594] vhci_hcd: release socket
[  107.470070][ T5594] vhci_hcd: disconnect device
[  108.082931][ T7191] __nla_validate_parse: 6 callbacks suppressed
[  108.082950][ T7191] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1257'.
[  108.840180][ T7215] loop4: detected capacity change from 0 to 2048
[  108.928120][ T7223] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  108.938935][ T7223] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  108.950768][ T7223] loop4: detected capacity change from 0 to 512
[  108.980722][ T7223] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.993659][ T7223] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.005096][ T7223] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.229998][ T7229] netlink: 'syz.1.1270': attribute type 8 has an invalid length.
[  109.237841][ T7229] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1270'.
[  109.636578][ T7253] loop4: detected capacity change from 0 to 512
[  109.643794][ T7253] EXT4-fs: Ignoring removed i_version option
[  109.651589][ T7253] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  109.761162][ T7258] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1278'.
[  109.798574][ T7253] EXT4-fs (loop4): 1 truncate cleaned up
[  109.893918][ T7253] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.112992][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.131828][ T7272] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  110.174066][ T7274] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1287'.
[  110.237641][ T7280] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  110.251506][ T7280] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  110.263964][ T7280] loop4: detected capacity change from 0 to 512
[  110.293376][ T7280] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.308551][ T7280] ext4 filesystem being mounted at /227/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.321561][ T7280] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.454331][ T7294] set match dimension is over the limit!
[  110.497057][ T7301] set match dimension is over the limit!
[  110.727325][ T7327] set match dimension is over the limit!
[  110.750689][ T7331] FAULT_INJECTION: forcing a failure.
[  110.750689][ T7331] name failslab, interval 1, probability 0, space 0, times 0
[  110.763461][ T7331] CPU: 0 UID: 0 PID: 7331 Comm: syz.1.1308 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[  110.763493][ T7331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  110.763509][ T7331] Call Trace:
[  110.763517][ T7331]  <TASK>
[  110.763525][ T7331]  __dump_stack+0x1d/0x30
[  110.763550][ T7331]  dump_stack_lvl+0xe8/0x140
[  110.763573][ T7331]  dump_stack+0x15/0x1b
[  110.763670][ T7331]  should_fail_ex+0x265/0x280
[  110.763715][ T7331]  should_failslab+0x8c/0xb0
[  110.763736][ T7331]  kmem_cache_alloc_node_noprof+0x57/0x320
[  110.763834][ T7331]  ? __alloc_skb+0x101/0x320
[  110.763856][ T7331]  __alloc_skb+0x101/0x320
[  110.763942][ T7331]  ? audit_log_start+0x365/0x6c0
[  110.763971][ T7331]  audit_log_start+0x380/0x6c0
[  110.764010][ T7331]  audit_seccomp+0x48/0x100
[  110.764069][ T7331]  ? __seccomp_filter+0x68c/0x10d0
[  110.764089][ T7331]  __seccomp_filter+0x69d/0x10d0
[  110.764221][ T7331]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  110.764238][ T7331]  ? vfs_write+0x75e/0x8e0
[  110.764254][ T7331]  ? __rcu_read_unlock+0x4f/0x70
[  110.764285][ T7331]  ? __fget_files+0x184/0x1c0
[  110.764307][ T7331]  __secure_computing+0x82/0x150
[  110.764326][ T7331]  syscall_trace_enter+0xcf/0x1e0
[  110.764421][ T7331]  do_syscall_64+0xac/0x200
[  110.764444][ T7331]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  110.764490][ T7331]  ? clear_bhb_loop+0x40/0x90
[  110.764508][ T7331]  ? clear_bhb_loop+0x40/0x90
[  110.764581][ T7331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.764599][ T7331] RIP: 0033:0x7f21384ae969
[  110.764613][ T7331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.764628][ T7331] RSP: 002b:00007f2136b17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  110.764681][ T7331] RAX: ffffffffffffffda RBX: 00007f21386d5fa0 RCX: 00007f21384ae969
[  110.764691][ T7331] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 00002000007d8000
[  110.764702][ T7331] RBP: 00007f2136b17090 R08: 0000000000000000 R09: 0000000000000000
[  110.764713][ T7331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.764730][ T7331] R13: 0000000000000000 R14: 00007f21386d5fa0 R15: 00007ffec77d3cf8
[  110.764755][ T7331]  </TASK>
[  111.085137][ T7333] set match dimension is over the limit!
[  111.283066][ T7347] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  111.294208][ T7347] loop3: detected capacity change from 0 to 512
[  111.337289][ T7347] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.1315: corrupted in-inode xattr: e_name out of bounds
[  111.439669][ T7347] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.1315: couldn't read orphan inode 15 (err -117)
[  111.540239][ T7347] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.701632][ T7364] SELinux:  policydb version 0 does not match my version range 15-34
[  111.710170][   T29] kauditd_printk_skb: 363 callbacks suppressed
[  111.710201][   T29] audit: type=1400 audit(1748658280.983:10042): avc:  denied  { load_policy } for  pid=7363 comm="syz.4.1320" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  111.777130][ T7365] set match dimension is over the limit!
[  111.783955][ T7364] SELinux: failed to load policy
[  111.797933][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.948219][ T7370] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  111.972436][ T7370] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  112.004175][ T7370] loop3: detected capacity change from 0 to 512
[  112.059380][   T29] audit: type=1400 audit(1748658281.293:10043): avc:  denied  { read open } for  pid=7372 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=482 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  112.085017][   T29] audit: type=1400 audit(1748658281.293:10044): avc:  denied  { getattr } for  pid=7372 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=482 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  112.128364][ T7370] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.178655][ T7370] ext4 filesystem being mounted at /265/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.211044][ T7370] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.223266][   T29] audit: type=1400 audit(1748658281.483:10045): avc:  denied  { add_name } for  pid=7371 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  112.245879][   T29] audit: type=1400 audit(1748658281.483:10046): avc:  denied  { create } for  pid=7371 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  112.268365][   T29] audit: type=1400 audit(1748658281.483:10047): avc:  denied  { write } for  pid=7371 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.sl0.link" dev="tmpfs" ino=6883 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  112.294673][   T29] audit: type=1400 audit(1748658281.483:10048): avc:  denied  { append } for  pid=7371 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" dev="tmpfs" ino=6883 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  112.401522][   T29] audit: type=1400 audit(1748658281.673:10049): avc:  denied  { remove_name } for  pid=7390 comm="rm" name="resolv.conf.sl0.link" dev="tmpfs" ino=6883 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  112.425179][   T29] audit: type=1400 audit(1748658281.673:10050): avc:  denied  { unlink } for  pid=7390 comm="rm" name="resolv.conf.sl0.link" dev="tmpfs" ino=6883 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  112.516620][ T7360] Set syz1 is full, maxelem 65536 reached
[  112.523527][   T29] audit: type=1326 audit(1748658281.813:10051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7394 comm="syz.1.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21384ae969 code=0x7ffc0000
[  112.768684][ T7432] set match dimension is over the limit!
[  113.022836][ T7473] SELinux:  policydb version 0 does not match my version range 15-34
[  113.049610][ T7473] SELinux: failed to load policy
[  113.150693][ T7493] FAULT_INJECTION: forcing a failure.
[  113.150693][ T7493] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.164018][ T7493] CPU: 1 UID: 0 PID: 7493 Comm: syz.2.1350 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[  113.164121][ T7493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  113.164137][ T7493] Call Trace:
[  113.164146][ T7493]  <TASK>
[  113.164154][ T7493]  __dump_stack+0x1d/0x30
[  113.164177][ T7493]  dump_stack_lvl+0xe8/0x140
[  113.164275][ T7493]  dump_stack+0x15/0x1b
[  113.164297][ T7493]  should_fail_ex+0x265/0x280
[  113.164340][ T7493]  should_fail+0xb/0x20
[  113.164377][ T7493]  should_fail_usercopy+0x1a/0x20
[  113.164467][ T7493]  _copy_from_user+0x1c/0xb0
[  113.164496][ T7493]  __copy_msghdr+0x244/0x300
[  113.164572][ T7493]  ___sys_sendmsg+0x109/0x1d0
[  113.164704][ T7493]  __sys_sendmmsg+0x178/0x300
[  113.164742][ T7493]  __x64_sys_sendmmsg+0x57/0x70
[  113.164770][ T7493]  x64_sys_call+0x2f2f/0x2fb0
[  113.164833][ T7493]  do_syscall_64+0xd2/0x200
[  113.164878][ T7493]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  113.164913][ T7493]  ? clear_bhb_loop+0x40/0x90
[  113.164941][ T7493]  ? clear_bhb_loop+0x40/0x90
[  113.165005][ T7493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.165033][ T7493] RIP: 0033:0x7f4e8778e969
[  113.165052][ T7493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.165148][ T7493] RSP: 002b:00007f4e85df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  113.165173][ T7493] RAX: ffffffffffffffda RBX: 00007f4e879b5fa0 RCX: 00007f4e8778e969
[  113.165185][ T7493] RDX: 0000000000000001 RSI: 00002000000019c0 RDI: 0000000000000006
[  113.165199][ T7493] RBP: 00007f4e85df7090 R08: 0000000000000000 R09: 0000000000000000
[  113.165214][ T7493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.165229][ T7493] R13: 0000000000000000 R14: 00007f4e879b5fa0 R15: 00007ffc80926658
[  113.165253][ T7493]  </TASK>
[  113.639435][ T7543] SELinux: syz.1.1356 (7543) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  113.665364][ T7546] SELinux:  policydb version 0 does not match my version range 15-34
[  113.673706][ T7546] SELinux: failed to load policy
[  113.691086][ T7543] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.736244][ T7555] netlink: 'syz.3.1360': attribute type 13 has an invalid length.
[  113.746755][ T7543] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.780506][ T7559] FAULT_INJECTION: forcing a failure.
[  113.780506][ T7559] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.793709][ T7559] CPU: 0 UID: 0 PID: 7559 Comm: syz.3.1363 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[  113.793743][ T7559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  113.793757][ T7559] Call Trace:
[  113.793763][ T7559]  <TASK>
[  113.793771][ T7559]  __dump_stack+0x1d/0x30
[  113.793835][ T7559]  dump_stack_lvl+0xe8/0x140
[  113.793859][ T7559]  dump_stack+0x15/0x1b
[  113.793879][ T7559]  should_fail_ex+0x265/0x280
[  113.793928][ T7559]  should_fail+0xb/0x20
[  113.793963][ T7559]  should_fail_usercopy+0x1a/0x20
[  113.794004][ T7559]  strncpy_from_user+0x25/0x230
[  113.794033][ T7559]  ? kmem_cache_alloc_noprof+0x186/0x310
[  113.794068][ T7559]  ? getname_flags+0x80/0x3b0
[  113.794123][ T7559]  getname_flags+0xae/0x3b0
[  113.794144][ T7559]  __se_sys_move_mount+0x16d/0x440
[  113.794212][ T7559]  __x64_sys_move_mount+0x67/0x80
[  113.794231][ T7559]  x64_sys_call+0x1f00/0x2fb0
[  113.794250][ T7559]  do_syscall_64+0xd2/0x200
[  113.794347][ T7559]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  113.794403][ T7559]  ? clear_bhb_loop+0x40/0x90
[  113.794423][ T7559]  ? clear_bhb_loop+0x40/0x90
[  113.794442][ T7559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.794468][ T7559] RIP: 0033:0x7fdfbf83e969
[  113.794562][ T7559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.794581][ T7559] RSP: 002b:00007fdfbdea7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[  113.794597][ T7559] RAX: ffffffffffffffda RBX: 00007fdfbfa65fa0 RCX: 00007fdfbf83e969
[  113.794624][ T7559] RDX: ffffffffffffff9c RSI: 0000000000000000 RDI: ffffffffffffffff
[  113.794635][ T7559] RBP: 00007fdfbdea7090 R08: 0000000000000000 R09: 0000000000000000
[  113.794645][ T7559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.794655][ T7559] R13: 0000000000000000 R14: 00007fdfbfa65fa0 R15: 00007fffca78cb48
[  113.794672][ T7559]  </TASK>
[  113.991035][ T7543] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.078888][ T7543] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.148760][ T7543] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.165329][ T7543] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.182999][ T7586] loop4: detected capacity change from 0 to 1024
[  114.190023][ T7543] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.217252][ T7586] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.243624][ T7543] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  114.257682][ T7599] FAULT_INJECTION: forcing a failure.
[  114.257682][ T7599] name failslab, interval 1, probability 0, space 0, times 0
[  114.270443][ T7599] CPU: 1 UID: 0 PID: 7599 Comm: syz.2.1371 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[  114.270486][ T7599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  114.270500][ T7599] Call Trace:
[  114.270507][ T7599]  <TASK>
[  114.270515][ T7599]  __dump_stack+0x1d/0x30
[  114.270541][ T7599]  dump_stack_lvl+0xe8/0x140
[  114.270605][ T7599]  dump_stack+0x15/0x1b
[  114.270679][ T7599]  should_fail_ex+0x265/0x280
[  114.270721][ T7599]  should_failslab+0x8c/0xb0
[  114.270750][ T7599]  __kmalloc_node_noprof+0xa9/0x410
[  114.270794][ T7599]  ? __vmalloc_node_range_noprof+0x3f9/0xe40
[  114.270872][ T7599]  __vmalloc_node_range_noprof+0x3f9/0xe40
[  114.270916][ T7599]  ? avc_has_perm_noaudit+0x1b1/0x200
[  114.270946][ T7599]  ? sel_write_load+0x158/0x380
[  114.271009][ T7599]  vmalloc_noprof+0x82/0xc0
[  114.271118][ T7599]  ? sel_write_load+0x158/0x380
[  114.271154][ T7599]  sel_write_load+0x158/0x380
[  114.271189][ T7599]  ? __pfx_sel_write_load+0x10/0x10
[  114.271224][ T7599]  vfs_write+0x269/0x8e0
[  114.271291][ T7599]  ? __rcu_read_unlock+0x4f/0x70
[  114.271319][ T7599]  ? __fget_files+0x184/0x1c0
[  114.271400][ T7599]  ksys_write+0xda/0x1a0
[  114.271425][ T7599]  __x64_sys_write+0x40/0x50
[  114.271525][ T7599]  x64_sys_call+0x2cdd/0x2fb0
[  114.271550][ T7599]  do_syscall_64+0xd2/0x200
[  114.271581][ T7599]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  114.271613][ T7599]  ? clear_bhb_loop+0x40/0x90
[  114.271640][ T7599]  ? clear_bhb_loop+0x40/0x90
[  114.271687][ T7599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.271713][ T7599] RIP: 0033:0x7f4e8778e969
[  114.271732][ T7599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.271755][ T7599] RSP: 002b:00007f4e85df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  114.271784][ T7599] RAX: ffffffffffffffda RBX: 00007f4e879b5fa0 RCX: 00007f4e8778e969
[  114.271865][ T7599] RDX: 0000000000002000 RSI: 00002000000003c0 RDI: 0000000000000003
[  114.271928][ T7599] RBP: 00007f4e85df7090 R08: 0000000000000000 R09: 0000000000000000
[  114.271943][ T7599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.271957][ T7599] R13: 0000000000000000 R14: 00007f4e879b5fa0 R15: 00007ffc80926658
[  114.272042][ T7599]  </TASK>
[  114.272052][ T7599] syz.2.1371: vmalloc error: size 8192, failed to allocated page array size 16, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null)
[  114.456982][ T7586] ext4 filesystem being mounted at /237/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.464301][ T7599] ,cpuset=/,mems_allowed=0
[  114.528371][ T7599] CPU: 1 UID: 0 PID: 7599 Comm: syz.2.1371 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[  114.528415][ T7599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  114.528430][ T7599] Call Trace:
[  114.528437][ T7599]  <TASK>
[  114.528445][ T7599]  __dump_stack+0x1d/0x30
[  114.528466][ T7599]  dump_stack_lvl+0xe8/0x140
[  114.528516][ T7599]  dump_stack+0x15/0x1b
[  114.528537][ T7599]  warn_alloc+0x12b/0x1a0
[  114.528612][ T7599]  __vmalloc_node_range_noprof+0x486/0xe40
[  114.528728][ T7599]  ? avc_has_perm_noaudit+0x1b1/0x200
[  114.528786][ T7599]  ? sel_write_load+0x158/0x380
[  114.528814][ T7599]  vmalloc_noprof+0x82/0xc0
[  114.528846][ T7599]  ? sel_write_load+0x158/0x380
[  114.528880][ T7599]  sel_write_load+0x158/0x380
[  114.528948][ T7599]  ? __pfx_sel_write_load+0x10/0x10
[  114.528982][ T7599]  vfs_write+0x269/0x8e0
[  114.528999][ T7599]  ? __rcu_read_unlock+0x4f/0x70
[  114.529021][ T7599]  ? __fget_files+0x184/0x1c0
[  114.529123][ T7599]  ksys_write+0xda/0x1a0
[  114.529145][ T7599]  __x64_sys_write+0x40/0x50
[  114.529165][ T7599]  x64_sys_call+0x2cdd/0x2fb0
[  114.529185][ T7599]  do_syscall_64+0xd2/0x200
[  114.529216][ T7599]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  114.529310][ T7599]  ? clear_bhb_loop+0x40/0x90
[  114.529338][ T7599]  ? clear_bhb_loop+0x40/0x90
[  114.529366][ T7599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.529466][ T7599] RIP: 0033:0x7f4e8778e969
[  114.529481][ T7599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.529499][ T7599] RSP: 002b:00007f4e85df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  114.529524][ T7599] RAX: ffffffffffffffda RBX: 00007f4e879b5fa0 RCX: 00007f4e8778e969
[  114.529540][ T7599] RDX: 0000000000002000 RSI: 00002000000003c0 RDI: 0000000000000003
[  114.529556][ T7599] RBP: 00007f4e85df7090 R08: 0000000000000000 R09: 0000000000000000
[  114.529571][ T7599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.529586][ T7599] R13: 0000000000000000 R14: 00007f4e879b5fa0 R15: 00007ffc80926658
[  114.529658][ T7599]  </TASK>
[  114.529677][ T7599] Mem-Info:
[  114.708036][ T7628] FAULT_INJECTION: forcing a failure.
[  114.708036][ T7628] name failslab, interval 1, probability 0, space 0, times 0
[  114.713428][ T7599] active_anon:7600 inactive_anon:7 isolated_anon:0
[  114.713428][ T7599]  active_file:17827 inactive_file:2222 isolated_file:0
[  114.713428][ T7599]  unevictable:0 dirty:506 writeback:0
[  114.713428][ T7599]  slab_reclaimable:3138 slab_unreclaimable:242259
[  114.713428][ T7599]  mapped:31219 shmem:324 pagetables:1604
[  114.713428][ T7599]  sec_pagetables:0 bounce:0
[  114.713428][ T7599]  kernel_misc_reclaimable:0
[  114.713428][ T7599]  free:1655084 free_pcp:8906 free_cma:0
[  114.721416][ T7628] CPU: 0 UID: 0 PID: 7628 Comm: syz.1.1375 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[  114.721450][ T7628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  114.721471][ T7628] Call Trace:
[  114.721482][ T7628]  <TASK>
[  114.721492][ T7628]  __dump_stack+0x1d/0x30
[  114.721535][ T7628]  dump_stack_lvl+0xe8/0x140
[  114.721562][ T7628]  dump_stack+0x15/0x1b
[  114.721582][ T7628]  should_fail_ex+0x265/0x280
[  114.721683][ T7628]  should_failslab+0x8c/0xb0
[  114.721731][ T7628]  kmem_cache_alloc_noprof+0x50/0x310
[  114.721805][ T7628]  ? sctp_get_port_local+0x420/0xab0
[  114.721837][ T7628]  sctp_get_port_local+0x420/0xab0
[  114.721900][ T7628]  sctp_do_bind+0x398/0x4b0
[  114.721929][ T7628]  sctp_connect_new_asoc+0x153/0x3a0
[  114.722020][ T7628]  sctp_sendmsg+0xf10/0x18d0
[  114.722048][ T7628]  ? selinux_socket_sendmsg+0x161/0x1b0
[  114.722166][ T7628]  ? __pfx_sctp_sendmsg+0x10/0x10
[  114.722192][ T7628]  inet_sendmsg+0xc5/0xd0
[  114.722226][ T7628]  __sock_sendmsg+0x102/0x180
[  114.722275][ T7628]  __sys_sendto+0x268/0x330
[  114.722344][ T7628]  __x64_sys_sendto+0x76/0x90
[  114.722422][ T7628]  x64_sys_call+0x2eb6/0x2fb0
[  114.722451][ T7628]  do_syscall_64+0xd2/0x200
[  114.722483][ T7628]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  114.722589][ T7628]  ? clear_bhb_loop+0x40/0x90
[  114.722616][ T7628]  ? clear_bhb_loop+0x40/0x90
[  114.722675][ T7628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.722723][ T7628] RIP: 0033:0x7f21384ae969
[  114.722807][ T7628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.722830][ T7628] RSP: 002b:00007f2136b17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  114.722855][ T7628] RAX: ffffffffffffffda RBX: 00007f21386d5fa0 RCX: 00007f21384ae969
[  114.722920][ T7628] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000003
[  114.722958][ T7628] RBP: 00007f2136b17090 R08: 0000200000000100 R09: 000000000000001c
[  114.723002][ T7628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.723018][ T7628] R13: 0000000000000000 R14: 00007f21386d5fa0 R15: 00007ffec77d3cf8
[  114.723043][ T7628]  </TASK>
[  115.017520][ T7599] Node 0 active_anon:30400kB inactive_anon:28kB active_file:71308kB inactive_file:8888kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:124876kB dirty:2024kB writeback:0kB shmem:1296kB writeback_tmp:0kB kernel_stack:4944kB pagetables:6532kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  115.046503][ T7599] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  115.073888][ T7599] lowmem_reserve[]: 0 2882 7861 7861
[  115.079294][ T7599] Node 0 DMA32 free:2947944kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951472kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:0kB free_cma:0kB
[  115.107761][ T7599] lowmem_reserve[]: 0 0 4978 4978
[  115.112837][ T7599] Node 0 Normal free:3656800kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB active_anon:30400kB inactive_anon:28kB active_file:71308kB inactive_file:8888kB unevictable:0kB writepending:2024kB present:5242880kB managed:5098232kB mlocked:0kB bounce:0kB free_pcp:32168kB local_pcp:13604kB free_cma:0kB
[  115.143185][ T7599] lowmem_reserve[]: 0 0 0 0
[  115.147765][ T7599] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  115.160535][ T7599] Node 0 DMA32: 4*4kB (M) 3*8kB (M) 4*16kB (M) 4*32kB (M) 2*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947944kB
[  115.176807][ T7599] Node 0 Normal: 5*4kB (ME) 497*8kB (UME) 295*16kB (UE) 216*32kB (UME) 304*64kB (UME) 118*128kB (UME) 50*256kB (UM) 85*512kB (UM) 57*1024kB (UME) 43*2048kB (UME) 831*4096kB (UM) = 3656716kB
[  115.195968][ T7599] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  115.205417][ T7599] 20381 total pagecache pages
[  115.210132][ T7599] 12 pages in swap cache
[  115.214396][ T7599] Free swap  = 124948kB
[  115.218609][ T7599] Total swap = 124996kB
[  115.222779][ T7599] 2097051 pages RAM
[  115.226601][ T7599] 0 pages HighMem/MovableOnly
[  115.231403][ T7599] 80785 pages reserved
[  115.238267][ T3326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.252877][ T7633] FAULT_INJECTION: forcing a failure.
[  115.252877][ T7633] name failslab, interval 1, probability 0, space 0, times 0
[  115.252906][ T7633] CPU: 1 UID: 0 PID: 7633 Comm: syz.4.1374 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[  115.253003][ T7633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  115.253020][ T7633] Call Trace:
[  115.253027][ T7633]  <TASK>
[  115.253034][ T7633]  __dump_stack+0x1d/0x30
[  115.253059][ T7633]  dump_stack_lvl+0xe8/0x140
[  115.253094][ T7633]  dump_stack+0x15/0x1b
[  115.253186][ T7633]  should_fail_ex+0x265/0x280
[  115.253281][ T7633]  should_failslab+0x8c/0xb0
[  115.253371][ T7633]  kmem_cache_alloc_node_noprof+0x57/0x320
[  115.253406][ T7633]  ? alloc_vmap_area+0x21d/0x1910
[  115.253474][ T7633]  alloc_vmap_area+0x21d/0x1910
[  115.253519][ T7633]  ? selinux_file_open+0x2df/0x330
[  115.253632][ T7633]  ? should_fail_ex+0xdb/0x280
[  115.253663][ T7633]  ? should_failslab+0x8c/0xb0
[  115.253689][ T7633]  ? __kmalloc_cache_node_noprof+0x18a/0x320
[  115.253720][ T7633]  __get_vm_area_node+0x173/0x1d0
[  115.253796][ T7633]  __vmalloc_node_range_noprof+0x273/0xe40
[  115.253833][ T7633]  ? sel_write_load+0x158/0x380
[  115.253861][ T7633]  ? _parse_integer_limit+0x170/0x190
[  115.253938][ T7633]  ? _parse_integer+0x27/0x40
[  115.253971][ T7633]  ? __rcu_read_unlock+0x4f/0x70
[  115.253998][ T7633]  ? avc_has_perm_noaudit+0x1b1/0x200
[  115.254117][ T7633]  ? sel_write_load+0x158/0x380
[  115.254148][ T7633]  vmalloc_noprof+0x82/0xc0
[  115.254176][ T7633]  ? sel_write_load+0x158/0x380
[  115.254219][ T7633]  sel_write_load+0x158/0x380
[  115.254301][ T7633]  ? __pfx_sel_write_load+0x10/0x10
[  115.254333][ T7633]  vfs_write+0x269/0x8e0
[  115.254355][ T7633]  ? __rcu_read_unlock+0x4f/0x70
[  115.254433][ T7633]  ? __fget_files+0x184/0x1c0
[  115.254464][ T7633]  ksys_write+0xda/0x1a0
[  115.254561][ T7633]  __x64_sys_write+0x40/0x50
[  115.254583][ T7633]  x64_sys_call+0x2cdd/0x2fb0
[  115.254610][ T7633]  do_syscall_64+0xd2/0x200
[  115.254642][ T7633]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  115.254749][ T7633]  ? clear_bhb_loop+0x40/0x90
[  115.254771][ T7633]  ? clear_bhb_loop+0x40/0x90
[  115.254798][ T7633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.254826][ T7633] RIP: 0033:0x7fbc8030e969
[  115.254841][ T7633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.254889][ T7633] RSP: 002b:00007fbc7e977038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  115.254909][ T7633] RAX: ffffffffffffffda RBX: 00007fbc80535fa0 RCX: 00007fbc8030e969
[  115.254925][ T7633] RDX: 0000000000002000 RSI: 00002000000003c0 RDI: 0000000000000006
[  115.255003][ T7633] RBP: 00007fbc7e977090 R08: 0000000000000000 R09: 0000000000000000
[  115.255014][ T7633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.255026][ T7633] R13: 0000000000000000 R14: 00007fbc80535fa0 R15: 00007ffdc7793ac8
[  115.255044][ T7633]  </TASK>
[  115.306375][ T7634] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1376'.
[  115.327382][ T7626] set match dimension is over the limit!
[  115.327781][ T7636] ==================================================================
[  115.327818][ T7636] BUG: KCSAN: data-race in getrusage / vms_clear_ptes
[  115.327855][ T7636] 
[  115.327862][ T7636] write to 0xffff888109064070 of 8 bytes by task 7626 on cpu 1:
[  115.327879][ T7636]  vms_clear_ptes+0x18c/0x2d0
[  115.327906][ T7636]  vms_complete_munmap_vmas+0x159/0x440
[  115.327931][ T7636]  do_vmi_align_munmap+0x383/0x3d0
[  115.327954][ T7636]  do_vmi_munmap+0x1db/0x220
[  115.327973][ T7636]  __vm_munmap+0x1a1/0x280
[  115.327994][ T7636]  __x64_sys_munmap+0x36/0x50
[  115.328012][ T7636]  x64_sys_call+0xa65/0x2fb0
[  115.328032][ T7636]  do_syscall_64+0xd2/0x200
[  115.328057][ T7636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.328076][ T7636] 
[  115.328081][ T7636] read to 0xffff888109064070 of 8 bytes by task 7636 on cpu 0:
[  115.328095][ T7636]  getrusage+0xa52/0xbb0
[  115.328117][ T7636]  io_sq_thread+0x5dd/0x1110
[  115.328139][ T7636]  ret_from_fork+0xda/0x150
[  115.328158][ T7636]  ret_from_fork_asm+0x1a/0x30
[  115.328178][ T7636] 
[  115.328182][ T7636] value changed: 0x00000000000014eb -> 0x00000000000016d5
[  115.328192][ T7636] 
[  115.328196][ T7636] Reported by Kernel Concurrency Sanitizer on:
[  115.328206][ T7636] CPU: 0 UID: 0 PID: 7636 Comm: iou-sqp-7631 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(voluntary) 
[  115.328232][ T7636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  115.328245][ T7636] ==================================================================
[  115.436696][ T7651] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1383'.